Pomalé PC + samovolný upload

Zpráva

milinn · #1 Příspěvek od **milinn** » 05 zář 2011 08:59

Zdravím vás, po nějaké době máme zase problémek na rodinném stolním PC. Bratr mi volal, že samovolně počítač uploaduje data na internet a je poslední dobou strašně pomalý. Zde vkládám Log z rsitu. Děkuji za jakoukoliv pomoc.

Logfile of random's system information tool 1.09 (written by random/random)
Run by milcek at 2011-09-05 09:56:38
Microsoft Windows 7 Ultimate
System drive C: has 23 GB (8%) free of 305 GB
Total RAM: 2047 MB (34% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:56:46, on 5.9.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe
C:\Program Files\CyberLink\Shared Files\brs.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\opwareSE2.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
C:\Program Files\Epson Software\Event Manager\EEventManager.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Windows\sysdriver32.exe
C:\Windows\sysdriver32_.exe
C:\Windows\l1rezerv.exe
C:\Windows\update.3\svchost.exe
C:\Windows\systemup.exe
C:\Windows\update.tray-8-0\svchost.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Windows\System32\spool\drivers\w32x86\3\E_FATIGDE.EXE
C:\Program Files\Pando Networks\Media Booster\PMB.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\milcek\Desktop\RSIT.exe
C:\Program Files\trend micro\milcek.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: TorrentMan Toolbar - {7c5c0f58-e061-457d-9033-77307f5ed00c} - C:\Program Files\TorrentMan\tbTorr.dll
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MIF5BA~1\Office12\GR469A~1.DLL
O2 - BHO: TorrentMan Toolbar - {7c5c0f58-e061-457d-9033-77307f5ed00c} - C:\Program Files\TorrentMan\tbTorr.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: TorrentMan Toolbar - {7c5c0f58-e061-457d-9033-77307f5ed00c} - C:\Program Files\TorrentMan\tbTorr.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [RemoteControl9] "C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe"
O4 - HKLM\..\Run: [PDVD9LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD9\Language\Language.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files\Cyberlink\Shared Files\brs.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe"
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [wxpdrv] C:\Windows\services32.exe
O4 - HKLM\..\Run: [8209809.exe] "C:\Users\milcek\AppData\Local\temp\8209809.exe"
O4 - HKLM\..\Run: [sysdriver32.exe] "C:\Windows\sysdriver32.exe" rezerv
O4 - HKLM\..\Run: [sysdriver32_.exe] "C:\Windows\sysdriver32_.exe" rezerv
O4 - HKLM\..\Run: [1144195.exe] "C:\Windows\temp\1144195.exe"
O4 - HKLM\..\Run: [7616802.exe] "C:\Users\milcek\AppData\Local\temp\7616802.exe"
O4 - HKLM\..\Run: [62333690-loader2.exe] "C:\Windows\temp\62333690-loader2.exe"
O4 - HKLM\..\Run: [9447995.exe] "C:\Windows\temp\9447995.exe"
O4 - HKLM\..\Run: [l1rezerv.exe] "C:\Windows\l1rezerv.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [w_distrib.exe] "C:\Windows\update.3\svchost.exe" stand
O4 - HKLM\..\Run: [systemup] "C:\Windows\systemup.exe" stand
O4 - HKLM\..\Run: [9588798.exe] "C:\Windows\temp\9588798.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [tray_ico0] C:\Windows\update.tray-8-0\svchost.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [EPSON SX218 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGDE.EXE /FU "C:\Windows\TEMP\E_S8452.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIF5BA~1\Office12\REFIEBAR.DLL
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MIF5BA~1\Office12\GRA32A~1.DLL
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Unknown owner - C:\Program Files\Avira\AntiVir Desktop\sched.exe (file missing)
O23 - Service: Avira AntiVir Guard (AntiVirService) - Unknown owner - C:\Program Files\Avira\AntiVir Desktop\avguard.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Autodesk Data Management Job Dispatch - Autodesk - C:\Program Files\Autodesk\Data Management Server 2009\Server\Dispatch\Connectivity.WindowsService.JobDispatch.exe
O23 - Service: Autodesk EDM Server - Autodesk - C:\Program Files\Autodesk\Data Management Server 2009\Server\Webserver\Connectivity.EDMWS.Server.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ddservice - Unknown owner - C:\Windows\update.7.1\svchostdriver.exe
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - FirebirdSQL Project - C:\Program Files\Firebird\Firebird_2_0\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - FirebirdSQL Project - C:\Program Files\Firebird\Firebird_2_0\bin\fbserver.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate1caa8b87ad3559b) (gupdate1caa8b87ad3559b) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: srvbtcclient - Unknown owner - C:\Windows\update.5.0\svchost.exe
O23 - Service: srviecheck - Unknown owner - C:\Windows\update.2\svchost.exe
O23 - Service: srvsysdriver32 - Unknown owner - C:\Windows\sysdriver32.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: wxpdrivers - Unknown owner - C:\Windows\update.1\svchost.exe

--
End of file - 11481 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\milcek\AppData\Roaming\Mozilla\Firefox\Profiles\l2qoapqo.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.21, nasanightlaunch@example.com:0.6.20100112"
prefs.js - "keyword.URL" - "http://search.icq.com/search/afe_result ... r=1.1.9&q="

"bkmrksync@nokia.com"=C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0]
"Description"=DivX® Player Plugin for VOD Content
"Path"=C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.0.41108.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.12.450]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448]
"Description"=6.0.12.448
"Path"=C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
components.list
compreg.dat
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsINIProcessor.js
nsIQTScriptablePlugin.xpt
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js
xpti.dat

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
npDivxPlayerPlugin.dll
npnul32.dll
NPOFF12.DLL
nppdf32.dll
nsIDivxPlayerPlugin.xpt
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\milcek\AppData\Roaming\Mozilla\Firefox\Profiles\l2qoapqo.default\extensions\
nasanightlaunch@example.com

C:\Users\milcek\AppData\Roaming\Mozilla\Firefox\Profiles\l2qoapqo.default\searchplugins\
daemon-search.xml
icqplugin.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MIF5BA~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7c5c0f58-e061-457d-9033-77307f5ed00c}]
TorrentMan Toolbar - C:\Program Files\TorrentMan\tbTorr.dll [2008-07-27 1606680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-03-29 266240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-11-24 953800]
{327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2004-08-26 405504]
{7c5c0f58-e061-457d-9033-77307f5ed00c} - TorrentMan Toolbar - C:\Program Files\TorrentMan\tbTorr.dll [2008-07-27 1606680]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-03-29 266240]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RemoteControl9"=C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe [2009-02-16 87336]
"PDVD9LanguageShortcut"=C:\Program Files\CyberLink\PowerDVD9\Language\Language.exe [2008-10-13 50472]
"BDRegion"=C:\Program Files\Cyberlink\Shared Files\brs.exe [2009-02-28 75048]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-10-29 141600]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-11-11 417792]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-05-23 7514656]
"ATICustomerCare"=C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe [2009-06-14 307200]
"OpwareSE2"=C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe [2003-05-08 49152]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-10-29 249064]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-06-08 37296]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-30 937920]
"EEventManager"=C:\Program Files\Epson Software\Event Manager\EEventManager.exe [2009-12-03 976320]
"LogMeIn Hamachi Ui"=C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2011-08-04 1955208]
"wxpdrv"=C:\Windows\services32.exe [2011-08-19 1215488]
"8209809.exe"=C:\Users\milcek\AppData\Local\temp\8209809.exe [2011-08-19 258048]
"sysdriver32.exe"=C:\Windows\sysdriver32.exe [2011-08-19 258048]
"sysdriver32_.exe"=C:\Windows\sysdriver32_.exe [2011-08-19 258048]
"1144195.exe"=C:\Windows\temp\1144195.exe [2011-08-19 258048]
"7616802.exe"=C:\Users\milcek\AppData\Local\temp\7616802.exe [2011-08-19 258048]
"62333690-loader2.exe"=C:\Windows\temp\62333690-loader2.exe [2011-08-19 258048]
"9447995.exe"=C:\Windows\temp\9447995.exe [2011-08-19 258048]
"l1rezerv.exe"=C:\Windows\l1rezerv.exe [2011-08-19 232960]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-05-24 336384]
"w_distrib.exe"=C:\Windows\update.3\svchost.exe [2011-08-21 273920]
"systemup"=C:\Windows\systemup.exe [2011-08-28 130560]
"9588798.exe"=C:\Windows\temp\9588798.exe [2011-08-24 636416]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe /min []
"tray_ico"= []
"tray_ico0"=C:\Windows\update.tray-8-0\svchost.exe [2011-08-19 1215488]
"tray_ico1"= []
"tray_ico2"= []
"tray_ico3"= []
"tray_ico4"= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1173504]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2010-01-08 1200128]
"Steam"=C:\Program Files\Steam\steam.exe [2011-08-02 1242448]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2010-12-21 1483264]
"EPSON SX218 Series"=C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGDE.EXE [2009-09-14 200704]
"Pando Media Booster"=C:\Program Files\Pando Networks\Media Booster\PMB.exe [2011-08-10 3077528]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2009-07-14 229376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MIF5BA~1\Office12\GR469A~1.DLL [2006-10-27 2210608]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\wxpdrivers]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\wxpdrivers]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableSecureUIAPaths"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Users\milcek\Downloads\P17535732.JPG-www.facebook.exe"="C:\Windows\nvsvc32.exe:*:Enabled:NVIDIA driver monitor"
"C:\Users\milcek\Downloads\Flash-Player.exe"="C:\Users\milcek\Downloads\Flash-Player.exe:*:Enabled:C:\Users\milcek\Downloads\Flash-Player.exe"
"C:\Windows\update.1\svchost.exe"="C:\Windows\update.1\svchost.exe:*:Enabled:C:\Windows\update.1\svchost.exe"
"C:\Windows\update.2\svchost.exe"="C:\Windows\update.2\svchost.exe:*:Enabled:C:\Windows\update.2\svchost.exe"
"C:\Windows\update.3\svchost.exe"="C:\Windows\update.3\svchost.exe:*:Enabled:C:\Windows\update.3\svchost.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=DivX.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"msacm.siren"=sirenacm.dll
"VIDC.XFR1"=xfcodec.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2011-09-05 09:56:15 ----D---- C:\Windows\av_ico
2011-09-05 09:54:19 ----HD---- C:\Windows\update.tray-8-0-lnk
2011-09-05 09:54:19 ----HD---- C:\Windows\update.tray-8-0
2011-09-05 09:52:10 ----A---- C:\Windows\winlog-ids.txt
2011-09-05 09:52:10 ----A---- C:\Windows\winlog-dirs.txt
2011-09-05 09:51:49 ----A---- C:\Windows\system32\drivers\ssmdrv.sys
2011-09-05 09:51:49 ----A---- C:\Windows\system32\drivers\avipbb.sys
2011-09-05 09:51:49 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2011-08-30 13:03:36 ----D---- C:\Users\milcek\AppData\Roaming\Opera
2011-08-30 13:03:02 ----D---- C:\Program Files\Opera
2011-08-27 14:26:26 ----HD---- C:\Windows\update.8.1
2011-08-27 00:21:30 ----A---- C:\Windows\system32\xfcodec.dll
2011-08-22 08:41:46 ----A---- C:\Windows\systemup.exe
2011-08-21 20:46:58 ----A---- C:\Windows\w_distrib_iplist.txt
2011-08-21 20:46:28 ----HD---- C:\Windows\update.3
2011-08-19 14:44:28 ----D---- C:\ProgramData\ATI
2011-08-19 14:44:24 ----D---- C:\Program Files\AMD APP
2011-08-19 14:24:00 ----D---- C:\Windows\ufa
2011-08-19 14:24:00 ----D---- C:\Windows\rpcminer
2011-08-19 14:24:00 ----D---- C:\Windows\phoenix
2011-08-19 14:23:48 ----A---- C:\Windows\l1rezerv.exe
2011-08-19 14:22:43 ----A---- C:\Windows\btc_client_iplist.txt
2011-08-19 14:21:26 ----HD---- C:\Windows\update.5.0
2011-08-19 14:20:06 ----A---- C:\Windows\iecheck_iplist.txt
2011-08-19 14:19:34 ----HD---- C:\Windows\update.2
2011-08-19 14:19:06 ----HD---- C:\Windows\update.7.1
2011-08-19 14:18:24 ----A---- C:\Windows\unrar.exe
2011-08-19 14:17:56 ----A---- C:\Windows\iplist.txt
2011-08-19 14:17:30 ----A---- C:\Windows\sysdriver32_.exe
2011-08-19 14:17:16 ----A---- C:\Windows\sysdriver32.exe
2011-08-19 14:17:01 ----A---- C:\Windows\front_ip_list.txt
2011-08-19 14:16:55 ----HD---- C:\Windows\update.1
2011-08-19 14:16:55 ----A---- C:\Windows\services32.exe
2011-08-15 09:04:27 ----D---- C:\Program Files\LogMeIn Hamachi
2011-08-11 02:00:35 ----D---- C:\gPotato.com

======List of files/folders modified in the last 1 month======

2011-09-05 09:56:41 ----D---- C:\Program Files\trend micro
2011-09-05 09:56:18 ----D---- C:\Program Files\Steam
2011-09-05 09:56:15 ----D---- C:\Windows
2011-09-05 09:56:05 ----D---- C:\Windows\temp
2011-09-05 09:56:04 ----D---- C:\Program Files\Common Files\Akamai
2011-09-05 09:54:20 ----RD---- C:\Program Files
2011-09-05 09:54:20 ----D---- C:\ProgramData
2011-09-05 09:52:27 ----D---- C:\Windows\Prefetch
2011-09-05 09:51:49 ----D---- C:\Windows\system32\drivers
2011-09-03 12:16:38 ----D---- C:\Windows\System32
2011-09-03 12:16:38 ----D---- C:\Windows\inf
2011-09-03 12:16:38 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-09-02 12:52:07 ----D---- C:\ProgramData\PMB Files
2011-09-02 10:28:28 ----D---- C:\ProgramData\Xfire
2011-09-01 13:22:53 ----D---- C:\Users\milcek\AppData\Roaming\Xfire
2011-08-31 16:13:42 ----D---- C:\Program Files\Mozilla Firefox
2011-08-31 12:23:33 ----D---- C:\Users\milcek\AppData\Roaming\AIMP
2011-08-31 07:49:07 ----D---- C:\Program Files\Xfire
2011-08-30 14:21:50 ----D---- C:\Users\milcek\AppData\Roaming\Epson
2011-08-30 12:19:29 ----D---- C:\Windows\system32\config
2011-08-30 12:08:01 ----SHD---- C:\System Volume Information
2011-08-22 14:02:40 ----D---- C:\Windows\Tasks
2011-08-22 14:02:40 ----D---- C:\Windows\system32\wfp
2011-08-22 14:02:39 ----D---- C:\Windows\system32\wbem
2011-08-22 14:01:41 ----D---- C:\Windows\system32\DriverStore
2011-08-22 14:01:41 ----D---- C:\Windows\system32\drivers\etc
2011-08-22 14:01:41 ----D---- C:\Windows\system32\catroot2
2011-08-22 14:01:41 ----D---- C:\Program Files\RocketDock
2011-08-22 14:01:41 ----D---- C:\Program Files\Mv2Player
2011-08-22 14:01:40 ----D---- C:\Windows\system32\drivers\UMDF
2011-08-22 14:01:40 ----D---- C:\Windows\AppCompat
2011-08-22 14:01:39 ----D---- C:\Program Files\AIMP2
2011-08-22 14:01:38 ----D---- C:\Windows\registration
2011-08-19 16:06:08 ----D---- C:\Windows\system32\catroot
2011-08-19 14:44:26 ----SHD---- C:\Windows\Installer
2011-08-19 14:44:25 ----SHD---- C:\Config.Msi
2011-08-19 14:44:01 ----D---- C:\Program Files\ATI Technologies

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-10-28 691696]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2010-08-02 126856]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-07-18 218688]
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2009-06-18 142832]
R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2010-06-17 28520]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2010/02/01 20:19:41]; \??\C:\Program Files\CyberLink\PowerDVD9\000.fcl [2009-02-28 87536]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2010-08-02 60936]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-05-25 7800832]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-05-25 245760]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW73.sys [2011-03-30 100880]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-09-23 26176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-05-23 2361952]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 a30s7t4f;a30s7t4f; C:\Windows\system32\drivers\a30s7t4f.sys []
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-11-19 100352]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-05-25 7800832]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 392704]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 58880]
S3 catchme;catchme; \??\C:\Users\milcek\AppData\Local\Temp\catchme.sys []
S3 FStarForce;FStarForce; C:\Windows\system32\DRIVERS\FStarForce.sys [2009-04-08 8704]
S3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2009-06-18 42480]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2010-07-30 18048]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2010-07-30 23040]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsu.sys [2010-07-26 137600]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsuc.sys [2010-07-26 8576]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2009-07-14 43008]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2010-07-30 8192]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-07-14 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2010-07-30 8192]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
R2 Akamai;Akamai NetSession Interface; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-05-25 176128]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-29 144672]
R2 Autodesk Data Management Job Dispatch;Autodesk Data Management Job Dispatch; C:\Program Files\Autodesk\Data Management Server 2009\Server\Dispatch\Connectivity.WindowsService.JobDispatch.exe [2008-02-18 32768]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ddservice;ddservice; C:\Windows\update.7.1\svchostdriver.exe [2011-08-19 382464]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [2009-09-14 153600]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [2009-09-14 121856]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files\Firebird\Firebird_2_0\bin\fbguard.exe [2008-11-11 81920]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2011-08-04 1361288]
R2 MSSQL$AUTODESKVAULT;SQL Server (AUTODESKVAULT); C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2008-01-22 29178224]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2010-11-22 75136]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2007-02-10 89968]
R2 srvbtcclient;srvbtcclient; C:\Windows\update.5.0\svchost.exe [2011-08-21 355840]
R2 srviecheck;srviecheck; C:\Windows\update.2\svchost.exe [2011-08-24 636416]
R2 srvsysdriver32;srvsysdriver32; C:\Windows\sysdriver32.exe [2011-08-19 258048]
R2 wxpdrivers;wxpdrivers; C:\Windows\update.1\svchost.exe [2011-08-19 1215488]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files\Firebird\Firebird_2_0\bin\fbserver.exe [2008-11-11 2015232]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2009-10-29 545568]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-12-08 628736]
R3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe []
S2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe []
S2 Autodesk EDM Server;Autodesk EDM Server; C:\Program Files\Autodesk\Data Management Server 2009\Server\Webserver\Connectivity.EDMWS.Server.exe [2008-02-18 57344]
S2 gupdate1caa8b87ad3559b;Služba Google Update (gupdate1caa8b87ad3559b); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-08 133104]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2010-05-14 79360]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-03-08 651720]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-08 133104]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2011-03-23 403240]
S4 MsMpSvc;@c:\Program Files\Microsoft Security Essentials\MpAsDesc.dll,-241; c:\Program Files\Microsoft Security Essentials\MsMpEng.exe [2009-07-02 17904]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-01-22 45272]
S4 SQLBrowser;SQL Server Browser; C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-01-22 242544]

-----------------EOF-----------------

#2 Příspěvek od **vyosek** » 05 zář 2011 09:01

Zdravim a pekny den preji

Ono si totiz bratr natahl vir z FB co ted leti - info zde http://www.viry.cz/go.php?p=viry&t=novinka&id=2690

Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe

Ukoncete vsechny programy
Pokud pouzivate Win Vista ci W7, kliknete na RogueKiller pravym a dejte Run As Administrator ci Spustit jako spravce
Zvolte moznost 2 a potvrte enterem
Utilita provede svou cinnost a da log - ten sem vlozte
Nyni znovu, ale zvolte moznost 3 a pote jeste 4 - logy opet vlozte

milinn · #3 Příspěvek od **milinn** » 05 zář 2011 09:06

RogueKiller V5.3.4 [08/30/2011] by Tigzy
contact at http://www.sur-la-toile.com
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.sur-la-toile.com/discussion- ... ntees.html

Operating System: Windows 7 (6.1.7600 ) 32 bits version
Started in : Normal mode
User: milcek [Admin rights]
Mode: Remove -- Date : 09/05/2011 10:05:29

Bad processes: 9
[HJ NAME] svchost.exe -- c:\windows\update.5.0\svchost.exe -> KILLED [TermProc]
[HJ NAME] svchost.exe -- c:\windows\update.2\svchost.exe -> KILLED [TermProc]
[SVCHOST] svchost.exe -- c:\windows\update.5.0\svchost.exe -> KILLED [TermProc]
[SUSP PATH] sysdriver32.exe -- c:\windows\sysdriver32.exe -> KILLED [TermProc]
[HJ NAME] svchost.exe -- c:\windows\update.1\svchost.exe -> KILLED [TermProc]
[SVCHOST] svchost.exe -- c:\windows\update.2\svchost.exe -> KILLED [TermProc]
[SUSP PATH] l1rezerv.exe -- c:\windows\l1rezerv.exe -> KILLED [TermProc]
[SUSP PATH] systemup.exe -- c:\windows\systemup.exe -> KILLED [TermProc]
[SVCHOST] svchost.exe -- c:\windows\update.tray-8-0\svchost.exe -> KILLED [TermProc]

Registry Entries: 30
[SUSP PATH] HKLM\[...]\Run : wxpdrv (C:\Windows\services32.exe) -> DELETED
[SUSP PATH] HKLM\[...]\Run : 8209809.exe ("C:\Users\milcek\AppData\Local\temp\8209809.exe") -> DELETED
[SUSP PATH] HKLM\[...]\Run : sysdriver32.exe ("C:\Windows\sysdriver32.exe" rezerv) -> DELETED
[SUSP PATH] HKLM\[...]\Run : sysdriver32_.exe ("C:\Windows\sysdriver32_.exe" rezerv) -> DELETED
[SUSP PATH] HKLM\[...]\Run : 1144195.exe ("C:\Windows\temp\1144195.exe") -> DELETED
[SUSP PATH] HKLM\[...]\Run : 7616802.exe ("C:\Users\milcek\AppData\Local\temp\7616802.exe") -> DELETED
[SUSP PATH] HKLM\[...]\Run : 62333690-loader2.exe ("C:\Windows\temp\62333690-loader2.exe") -> DELETED
[SUSP PATH] HKLM\[...]\Run : 9447995.exe ("C:\Windows\temp\9447995.exe") -> DELETED
[SUSP PATH] HKLM\[...]\Run : l1rezerv.exe ("C:\Windows\l1rezerv.exe") -> DELETED
[HJ NAME] HKLM\[...]\Run : w_distrib.exe ("C:\Windows\update.3\svchost.exe" stand) -> DELETED
[SUSP PATH] HKLM\[...]\Run : systemup ("C:\Windows\systemup.exe" stand) -> DELETED
[SUSP PATH] HKLM\[...]\Run : 9588798.exe ("C:\Windows\temp\9588798.exe") -> DELETED
[HJ NAME] HKLM\[...]\Run : tray_ico0 (C:\Windows\update.tray-8-0\svchost.exe) -> DELETED
[BLACKLIST] HKLM\[...]\services : srvbtcclient (C:\Windows\update.5.0\svchost.exe srv) -> DELETED
[BLACKLIST] HKLM\[...]\services : srviecheck (C:\Windows\update.2\svchost.exe srv) -> DELETED
[BLACKLIST] HKLM\[...]\services : srvsysdriver32 (C:\Windows\sysdriver32.exe srv) -> DELETED
[BLACKLIST] HKLM\[...]\services : wxpdrivers (C:\Windows\update.1\svchost.exe srv) -> DELETED
[BLACKLIST] HKLM\[...]\services : srvbtcclient (C:\Windows\update.5.0\svchost.exe srv) -> DELETED
[BLACKLIST] HKLM\[...]\services : srviecheck (C:\Windows\update.2\svchost.exe srv) -> DELETED
[BLACKLIST] HKLM\[...]\services : srvsysdriver32 (C:\Windows\sysdriver32.exe srv) -> DELETED
[BLACKLIST] HKLM\[...]\services : wxpdrivers (C:\Windows\update.1\svchost.exe srv) -> DELETED
[SUSP PATH] {F44ED8E5-F7D6-465C-91D3-C7B0C66A3EBC}.job : C:\Users\milcek\Desktop\two worlds\Setup.exe -> DELETED
[HJ] HKCU\[...]\Internet Settings : WarnOnHTTPSToHTTPRedirect (0) -> REPLACED (1)
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> REPLACED (2)
[HJ] HKLM\[...]\System : EnableLUA (0) -> REPLACED (1)
[HJ] HKLM\[...]\Security Center : AntiVirusDisableNotify (1) -> REPLACED (0)
[HJ] HKLM\[...]\Security Center : FirewallDisableNotify (1) -> REPLACED (0)
[HJ] HKLM\[...]\Security Center : UpdatesDisableNotify (1) -> REPLACED (0)
[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

Particular Files / Folders:

HOSTS File:
127.0.0.1 localhost
127.0.0.1 facebook.com
127.0.0.1 www.facebook.com
127.0.0.1 af-za.facebook.com
127.0.0.1 az-az.facebook.com
127.0.0.1 id-id.facebook.com
127.0.0.1 ms-my.facebook.com
127.0.0.1 bs-ba.facebook.com
127.0.0.1 ca-es.facebook.com
127.0.0.1 cs-cz.facebook.com
127.0.0.1 cy-gb.facebook.com
127.0.0.1 da-dk.facebook.com
127.0.0.1 de-de.facebook.com
127.0.0.1 et-ee.facebook.com
127.0.0.1 en-gb.facebook.com
127.0.0.1 es-la.facebook.com
127.0.0.1 eo-eo.facebook.com
127.0.0.1 eu-es.facebook.com
127.0.0.1 tl-ph.facebook.com
127.0.0.1 fo-fo.facebook.com
[...]

Finished : << RKreport[1].txt >>
RKreport[1].txt

RogueKiller V5.3.4 [08/30/2011] by Tigzy
contact at http://www.sur-la-toile.com
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.sur-la-toile.com/discussion- ... ntees.html

Operating System: Windows 7 (6.1.7600 ) 32 bits version
Started in : Normal mode
User: milcek [Admin rights]
Mode: HOSTSFix -- Date : 09/05/2011 10:06:18

Bad processes: 0

HOSTS File:
127.0.0.1 localhost
127.0.0.1 facebook.com
127.0.0.1 www.facebook.com
127.0.0.1 af-za.facebook.com
127.0.0.1 az-az.facebook.com
127.0.0.1 id-id.facebook.com
127.0.0.1 ms-my.facebook.com
127.0.0.1 bs-ba.facebook.com
127.0.0.1 ca-es.facebook.com
127.0.0.1 cs-cz.facebook.com
127.0.0.1 cy-gb.facebook.com
127.0.0.1 da-dk.facebook.com
127.0.0.1 de-de.facebook.com
127.0.0.1 et-ee.facebook.com
127.0.0.1 en-gb.facebook.com
127.0.0.1 es-la.facebook.com
127.0.0.1 eo-eo.facebook.com
127.0.0.1 eu-es.facebook.com
127.0.0.1 tl-ph.facebook.com
127.0.0.1 fo-fo.facebook.com
[...]

Resetted HOSTS:
127.0.0.1 localhost

Finished : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt

RogueKiller V5.3.4 [08/30/2011] by Tigzy
contact at http://www.sur-la-toile.com
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.sur-la-toile.com/discussion- ... ntees.html

Operating System: Windows 7 (6.1.7600 ) 32 bits version
Started in : Normal mode
User: milcek [Admin rights]
Mode: ProxyFix -- Date : 09/05/2011 10:06:32

Bad processes: 0

Registry Entries: 0

Finished : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt

#4 Příspěvek od **vyosek** » 05 zář 2011 09:08

Fajn, jdeme dale...

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK

Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Pokud mate Win XP spustte pod uctem Spravce\Administratora
Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

milinn · #5 Příspěvek od **milinn** » 05 zář 2011 09:30

ComboFix 11-09-04.03 - milcek 05.09.2011 10:14:58.3.2 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.2047.1140 [GMT 2:00]
Spuštěný z: c:\users\milcek\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {2E6C4BAB-3371-CD46-62DC-0E0A86B42619}
SP: Microsoft Security Essentials *Disabled/Updated* {950DAA4F-154B-C2C8-586C-3578FD336CA4}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\CFLog
c:\windows\btc_client_iplist.txt
c:\windows\front_ip_list.txt
c:\windows\geoiplist
c:\windows\geoiplist.rar
c:\windows\iecheck_iplist.txt
c:\windows\info1
c:\windows\iplist.txt
c:\windows\l1rezerv.exe
c:\windows\loader2.exe_ok
c:\windows\phoenix
c:\windows\phoenix.rar
c:\windows\phoenix\kernels\phatk\__init__.py
c:\windows\phoenix\kernels\phatk\__init__.pyc
c:\windows\phoenix\kernels\phatk\BFIPatcher.py
c:\windows\phoenix\kernels\phatk\BFIPatcher.pyc
c:\windows\phoenix\kernels\phatk\d6135d2efd05a27f2e4524d913b71a77.elf
c:\windows\phoenix\kernels\phatk\fadac13819d5bf7c3465fb19175a8223.elf
c:\windows\phoenix\kernels\phatk\kernel.cl
c:\windows\phoenix\kernels\poclbm\__init__.py
c:\windows\phoenix\kernels\poclbm\__init__.pyc
c:\windows\phoenix\kernels\poclbm\99e7ff988279a208b895347511865fc1.elf
c:\windows\phoenix\kernels\poclbm\BFIPatcher.py
c:\windows\phoenix\kernels\poclbm\BFIPatcher.pyc
c:\windows\phoenix\kernels\poclbm\e1c6605bcab7224f6738d60fe9acee8f.elf
c:\windows\phoenix\kernels\poclbm\kernel.cl
c:\windows\phoenix\phoenix.exe
c:\windows\proc_list1.log
c:\windows\rpcminer
c:\windows\rpcminer.rar
c:\windows\rpcminer\bitcoinminercuda_10.cubin
c:\windows\rpcminer\bitcoinminercuda_11.cubin
c:\windows\rpcminer\bitcoinminercuda_20.cubin
c:\windows\rpcminer\bitcoinmineropencl.cl
c:\windows\rpcminer\cudart32_32_16.dll
c:\windows\rpcminer\curllib.dll
c:\windows\rpcminer\libeay32.dll
c:\windows\rpcminer\libsasl.dll
c:\windows\rpcminer\openldap.dll
c:\windows\rpcminer\rpcminer-4way.exe
c:\windows\rpcminer\rpcminer-cpu.exe
c:\windows\rpcminer\rpcminer-cuda.exe
c:\windows\rpcminer\rpcminer-opencl.exe
c:\windows\rpcminer\ssleay32.dll
c:\windows\services32.exe
c:\windows\sysdriver32.exe
c:\windows\sysdriver32_.exe
c:\windows\system32\mfc100deu.dll
c:\windows\system32\User
c:\windows\systemup.exe
c:\windows\ufa.rar
c:\windows\update.1
c:\windows\update.1\svchost.exe
c:\windows\update.2
c:\windows\update.2\svchost.exe
c:\windows\update.3
c:\windows\update.3\svchost.exe
c:\windows\update.5.0
c:\windows\update.5.0\svchost.exe
c:\windows\update.7.1
c:\windows\update.7.1\svchostdriver.exe
c:\windows\w_distrib_iplist.txt
c:\windows\winlog-dirs.txt
c:\windows\winlog-ids.txt
c:\windows\winsetupapi.log
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_ddservice
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-08-05 do 2011-09-05 )))))))))))))))))))))))))))))))
.
.
2011-09-05 08:22 . 2011-09-05 08:22 -------- d-----w- c:\users\Public\AppData\Local\temp
2011-09-05 08:22 . 2011-09-05 08:22 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-09-05 07:56 . 2011-09-05 07:56 -------- d-----w- c:\windows\av_ico
2011-09-05 07:54 . 2011-09-05 07:54 -------- d--h--w- c:\windows\update.tray-8-0
2011-09-05 07:54 . 2011-09-05 07:54 -------- d--h--w- c:\windows\update.tray-8-0-lnk
2011-09-05 07:51 . 2010-08-02 14:10 60936 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-09-05 07:51 . 2010-08-02 14:10 126856 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-08-30 11:03 . 2011-08-30 11:03 -------- d-----w- c:\users\milcek\AppData\Local\Opera
2011-08-30 11:03 . 2011-09-05 08:06 -------- d-----w- c:\program files\Opera
2011-08-27 12:26 . 2011-08-27 12:26 -------- d--h--w- c:\windows\update.8.1
2011-08-26 22:21 . 2011-08-26 22:21 42392 ----a-w- c:\windows\system32\xfcodec.dll
2011-08-19 12:44 . 2011-08-19 12:44 -------- d-----w- c:\programdata\ATI
2011-08-19 12:44 . 2011-08-19 12:44 -------- d-----w- c:\program files\AMD APP
2011-08-19 12:39 . 2011-08-19 12:39 -------- d-----w- c:\users\Default\AppData\Roaming\ATI
2011-08-19 12:39 . 2011-08-19 12:39 -------- d-----w- c:\users\Default\AppData\Local\ATI
2011-08-19 12:24 . 2011-08-19 12:24 -------- d-----w- c:\windows\ufa
2011-08-19 12:18 . 2011-08-19 12:23 246272 ----a-w- c:\windows\unrar.exe
2011-08-15 07:04 . 2011-08-15 07:04 -------- d-----w- c:\program files\LogMeIn Hamachi
2011-08-11 00:00 . 2011-08-11 00:00 -------- d-----w- C:\gPotato.com
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-07-18 13:26 . 2011-07-18 13:26 218688 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-06-23 06:53 . 2011-06-02 07:49 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2010-10-26 13:12 . 2010-10-26 15:38 675840 ----a-w- c:\program files\Uninstall SmileyCentral.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2010-10-28_09.58.47 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-05-19 11:40 . 2009-01-10 22:00 45056 c:\windows\twain_32\escndv\local\0809\escndvrs.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\local\0427\escndvrs.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\local\0426\escndvrs.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\local\0425\escndvrs.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\local\041F\escndvrs.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\local\041D\escndvrs.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\local\041B\escndvrs.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\local\0418\escndvrs.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\local\0415\escndvrs.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\local\0414\escndvrs.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\local\040E\escndvrs.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\local\040B\escndvrs.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\local\0408\escndvrs.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\local\0406\escndvrs.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\local\0405\escndvrs.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\local\0402\escndvrs.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 49152 c:\windows\twain_32\escndv\estwm.exe
+ 2011-05-19 11:40 . 2009-01-09 22:00 86016 c:\windows\twain_32\escndv\es00a8\local\0809\esmpsres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 73728 c:\windows\twain_32\escndv\es00a8\local\0427\esmpsres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 73728 c:\windows\twain_32\escndv\es00a8\local\0426\esmpsres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 73728 c:\windows\twain_32\escndv\es00a8\local\0425\esmpsres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 73728 c:\windows\twain_32\escndv\es00a8\local\041F\esmpsres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 73728 c:\windows\twain_32\escndv\es00a8\local\041D\esmpsres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 73728 c:\windows\twain_32\escndv\es00a8\local\041B\esmpsres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 73728 c:\windows\twain_32\escndv\es00a8\local\0418\esmpsres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 73728 c:\windows\twain_32\escndv\es00a8\local\0415\esmpsres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 73728 c:\windows\twain_32\escndv\es00a8\local\0414\esmpsres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 73728 c:\windows\twain_32\escndv\es00a8\local\040E\esmpsres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 73728 c:\windows\twain_32\escndv\es00a8\local\040B\esmpsres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 73728 c:\windows\twain_32\escndv\es00a8\local\0408\esmpsres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 73728 c:\windows\twain_32\escndv\es00a8\local\0406\esmpsres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 73728 c:\windows\twain_32\escndv\es00a8\local\0405\esmpsres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 73728 c:\windows\twain_32\escndv\es00a8\local\0402\esmpsres.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 45056 c:\windows\twain_32\escndv\es00a8\ffmt\local\0809\eptifres.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 45056 c:\windows\twain_32\escndv\es00a8\ffmt\local\0809\eppitres.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 45056 c:\windows\twain_32\escndv\es00a8\ffmt\local\0809\eppijres.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 49152 c:\windows\twain_32\escndv\es00a8\ffmt\local\0809\eppdfres.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 45056 c:\windows\twain_32\escndv\es00a8\ffmt\local\0809\epmtfres.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 45056 c:\windows\twain_32\escndv\es00a8\ffmt\local\0809\epjpgres.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 45056 c:\windows\twain_32\escndv\es00a8\ffmt\local\0809\epbmpres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0427\eptifres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0427\eppitres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0427\eppijres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 36864 c:\windows\twain_32\escndv\es00a8\ffmt\local\0427\eppdfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0427\epmtfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0427\epjpgres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0427\epbmpres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0426\eptifres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0426\eppitres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0426\eppijres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 36864 c:\windows\twain_32\escndv\es00a8\ffmt\local\0426\eppdfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0426\epmtfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0426\epjpgres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0426\epbmpres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0425\eptifres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0425\eppitres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0425\eppijres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 36864 c:\windows\twain_32\escndv\es00a8\ffmt\local\0425\eppdfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0425\epmtfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0425\epjpgres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0425\epbmpres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\041F\eptifres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\041F\eppitres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\041F\eppijres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 36864 c:\windows\twain_32\escndv\es00a8\ffmt\local\041F\eppdfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\041F\epmtfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\041F\epjpgres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\041F\epbmpres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\041D\eptifres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\041D\eppitres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\041D\eppijres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 36864 c:\windows\twain_32\escndv\es00a8\ffmt\local\041D\eppdfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\041D\epmtfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\041D\epjpgres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\041D\epbmpres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\041B\eptifres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\041B\eppitres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\041B\eppijres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 36864 c:\windows\twain_32\escndv\es00a8\ffmt\local\041B\eppdfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\041B\epmtfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\041B\epjpgres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\041B\epbmpres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0418\eptifres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0418\eppitres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0418\eppijres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 36864 c:\windows\twain_32\escndv\es00a8\ffmt\local\0418\eppdfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0418\epmtfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0418\epjpgres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0418\epbmpres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0415\eptifres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0415\eppitres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0415\eppijres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 36864 c:\windows\twain_32\escndv\es00a8\ffmt\local\0415\eppdfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0415\epmtfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0415\epjpgres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0415\epbmpres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0414\eptifres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0414\eppitres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0414\eppijres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 36864 c:\windows\twain_32\escndv\es00a8\ffmt\local\0414\eppdfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0414\epmtfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0414\epjpgres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0414\epbmpres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\040E\eptifres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\040E\eppitres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\040E\eppijres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 36864 c:\windows\twain_32\escndv\es00a8\ffmt\local\040E\eppdfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\040E\epmtfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\040E\epjpgres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\040E\epbmpres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\040B\eptifres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\040B\eppitres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\040B\eppijres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 36864 c:\windows\twain_32\escndv\es00a8\ffmt\local\040B\eppdfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\040B\epmtfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\040B\epjpgres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\040B\epbmpres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0408\eptifres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0408\eppitres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0408\eppijres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 40960 c:\windows\twain_32\escndv\es00a8\ffmt\local\0408\eppdfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0408\epmtfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0408\epjpgres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0408\epbmpres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0406\eptifres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0406\eppitres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0406\eppijres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 36864 c:\windows\twain_32\escndv\es00a8\ffmt\local\0406\eppdfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0406\epmtfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0406\epjpgres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0406\epbmpres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0405\eptifres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0405\eppitres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0405\eppijres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 36864 c:\windows\twain_32\escndv\es00a8\ffmt\local\0405\eppdfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0405\epmtfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0405\epjpgres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0405\epbmpres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0402\eptifres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0402\eppitres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0402\eppijres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 40960 c:\windows\twain_32\escndv\es00a8\ffmt\local\0402\eppdfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0402\epmtfres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0402\epjpgres.dll
+ 2011-05-19 11:40 . 2009-01-11 22:00 32768 c:\windows\twain_32\escndv\es00a8\ffmt\local\0402\epbmpres.dll
+ 2011-05-19 11:40 . 2005-08-28 22:00 98304 c:\windows\twain_32\escndv\es00a8\ffmt\espimtif.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 90112 c:\windows\twain_32\escndv\es00a8\ffmt\epbmp.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 49152 c:\windows\twain_32\escndv\es00a8\estwm.exe
+ 2011-05-19 11:40 . 2008-04-10 22:00 53248 c:\windows\twain_32\escndv\es00a8\esicm.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 36864 c:\windows\twain_32\escndv\es00a8\esdscl.dll
+ 2011-05-19 11:40 . 2008-07-15 22:00 94208 c:\windows\twain_32\escndv\es00a8\esdde.dll
+ 2011-05-19 11:40 . 2006-11-01 22:00 90112 c:\windows\twain_32\escndv\es00a8\esddc.dll
+ 2010-11-18 19:22 . 2010-06-02 03:55 74072 c:\windows\System32\XAPOFX1_5.dll
+ 2010-11-18 19:22 . 2010-02-04 09:01 74072 c:\windows\System32\XAPOFX1_4.dll
- 2010-06-26 11:58 . 2010-02-04 08:01 74072 c:\windows\System32\XAPOFX1_4.dll
- 2010-06-26 11:58 . 2010-02-04 08:01 22360 c:\windows\System32\X3DAudio1_7.dll
+ 2010-11-18 19:22 . 2010-02-04 09:01 22360 c:\windows\System32\X3DAudio1_7.dll
+ 2010-02-01 19:29 . 2011-09-05 07:57 48048 c:\windows\System32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 04:55 . 2011-09-05 08:26 40584 c:\windows\System32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2010-02-01 19:07 . 2011-09-03 06:20 15450 c:\windows\System32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2632823556-2644389418-2631035079-1000_UserData.bin
+ 2010-03-18 07:15 . 2010-03-18 07:15 51024 c:\windows\System32\vcomp100.dll
+ 2007-05-03 17:04 . 2007-05-03 17:04 69632 c:\windows\System32\TWUNK_32.EXE
+ 2007-05-03 17:04 . 2007-05-03 17:04 48560 c:\windows\System32\TWUNK_16.EXE
+ 2007-05-03 17:04 . 2007-05-03 17:04 77312 c:\windows\System32\TWAIN_32.DLL
+ 2011-05-19 11:40 . 2007-12-07 06:06 45056 c:\windows\System32\spool\drivers\w32x86\3\EBPBIDI.DLL
+ 2011-05-19 11:40 . 2009-09-14 05:00 68096 c:\windows\System32\spool\drivers\w32x86\3\E_FREDGDE.DLL
+ 2011-05-19 11:40 . 2009-08-11 04:30 54272 c:\windows\System32\spool\drivers\w32x86\3\E_FMW0GDE.DLL
+ 2011-05-19 11:40 . 2009-11-10 01:00 33280 c:\windows\System32\spool\drivers\w32x86\3\E_FHSRGDE.DLL
+ 2011-05-19 11:40 . 2009-08-10 03:07 23040 c:\windows\System32\spool\drivers\w32x86\3\E_FGRCGDE.DLL
+ 2011-05-19 11:40 . 2009-11-05 01:06 18944 c:\windows\System32\spool\drivers\w32x86\3\E_FGEPGDE.DLL
+ 2011-05-19 11:40 . 2009-08-24 06:08 47104 c:\windows\System32\spool\drivers\w32x86\3\E_FBL6GDE.DLL
+ 2011-05-19 11:40 . 2007-12-07 06:03 42496 c:\windows\System32\spool\drivers\w32x86\3\E_FBA6GDE.DLL
+ 2011-05-19 11:40 . 2006-11-13 01:00 23552 c:\windows\System32\spool\drivers\w32x86\3\E_FAUDGDE.DLL
+ 2011-05-19 11:40 . 2009-11-10 07:00 55296 c:\windows\System32\spool\drivers\w32x86\3\E_FASRGDE.DLL
+ 2010-02-03 08:28 . 2010-11-22 09:54 75136 c:\windows\System32\PnkBstrA.exe
+ 2011-05-24 21:44 . 2011-05-24 21:44 59904 c:\windows\System32\OVDecode.dll
+ 2011-03-21 17:56 . 2011-03-21 17:56 51712 c:\windows\System32\OpenCL.dll
+ 2010-07-13 15:21 . 2010-07-30 13:17 75264 c:\windows\System32\nmwcdcls.dll
+ 2010-03-18 07:15 . 2010-03-18 07:15 80720 c:\windows\System32\mfcm100u.dll
+ 2010-03-18 07:15 . 2010-03-18 07:15 80208 c:\windows\System32\mfcm100.dll
+ 2010-03-18 07:15 . 2010-03-18 07:15 60752 c:\windows\System32\mfc100rus.dll
+ 2010-03-18 07:15 . 2010-03-18 07:15 43344 c:\windows\System32\mfc100kor.dll
+ 2010-03-18 07:15 . 2010-03-18 07:15 43856 c:\windows\System32\mfc100jpn.dll
+ 2010-03-18 07:15 . 2010-03-18 07:15 62288 c:\windows\System32\mfc100ita.dll
+ 2010-03-18 07:15 . 2010-03-18 07:15 36176 c:\windows\System32\mfc100cht.dll
+ 2010-03-18 07:15 . 2010-03-18 07:15 36176 c:\windows\System32\mfc100chs.dll
+ 2010-03-18 07:15 . 2010-03-18 07:15 64336 c:\windows\System32\mfc100fra.dll
+ 2010-03-18 07:15 . 2010-03-18 07:15 63824 c:\windows\System32\mfc100esn.dll
+ 2010-03-18 07:15 . 2010-03-18 07:15 55120 c:\windows\System32\mfc100enu.dll
+ 2010-04-20 12:09 . 2009-03-18 15:35 26176 c:\windows\System32\hamachi.sys
- 2010-04-20 12:09 . 2010-02-03 13:56 26176 c:\windows\System32\hamachi.sys
+ 2011-05-19 11:40 . 2009-04-30 22:00 15872 c:\windows\System32\escdev.dll
+ 2011-05-19 11:40 . 2008-11-12 03:00 93696 c:\windows\System32\E_FLBGDE.DLL
+ 2011-05-19 11:40 . 2009-10-01 03:01 63488 c:\windows\System32\E_FD4BGDE.DLL
- 2010-07-13 15:21 . 2008-08-26 08:26 18816 c:\windows\System32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.sys
+ 2011-01-28 12:32 . 2008-08-26 08:26 18816 c:\windows\System32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.sys
- 2009-07-14 04:50 . 2010-10-25 18:52 86016 c:\windows\System32\DriverStore\infpub.dat
+ 2009-07-14 04:50 . 2011-09-03 10:14 86016 c:\windows\System32\DriverStore\infpub.dat
+ 2011-05-19 11:40 . 2009-01-09 22:00 49152 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\estwm.exe
+ 2011-05-19 11:40 . 2008-04-10 22:00 53248 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\esicm.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 36864 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\esdscl.dll
+ 2011-05-19 11:40 . 2008-07-15 22:00 94208 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\esdde.dll
+ 2011-05-19 11:40 . 2006-11-01 22:00 90112 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\esddc.dll
+ 2011-05-19 11:40 . 2009-04-30 22:00 15872 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\escdev.dll
+ 2011-05-19 11:40 . 2009-08-10 03:07 23040 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\EPIPGI20.DLL
+ 2011-05-19 11:40 . 2009-10-01 03:01 63488 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\ECBTEGB.DLL
+ 2011-05-19 11:40 . 2008-11-12 03:00 77824 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\ECBTEG.DLL
+ 2011-05-19 11:40 . 2006-11-22 01:05 94208 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\EBPSHRE4.DLL
+ 2011-05-19 11:40 . 2008-11-12 03:00 93696 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\EBPMONB.DLL
+ 2011-05-19 11:40 . 2009-02-03 06:01 93245 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\EBPMON25.DLL
+ 2011-05-19 11:40 . 2000-06-07 01:01 34304 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\EBPCHP.DLL
+ 2011-05-19 11:40 . 2009-08-24 06:08 47104 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\EBPBIDI6.DLL
+ 2011-05-19 11:40 . 2007-12-07 06:06 45056 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\EBPBIDI.DLL
+ 2011-05-19 11:40 . 2007-12-07 06:03 42496 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\EBAPI6.DLL
+ 2011-05-19 11:40 . 2009-11-10 07:00 55296 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_SCE0D7.DLL
+ 2011-05-19 11:40 . 2009-11-10 01:00 33280 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_HCE0D7.DLL
+ 2011-05-19 11:40 . 2009-09-14 05:00 68096 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DRED10.DLL
+ 2011-05-19 11:40 . 2009-08-11 04:30 54272 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DIRCF5.DLL
+ 2011-05-19 11:40 . 2009-11-05 01:06 18944 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DGE321.DLL
+ 2011-05-19 11:40 . 2006-11-13 01:00 23552 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DAUDF1.DLL
+ 2011-05-25 02:18 . 2011-05-25 02:18 52736 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\coinst.dll
+ 2011-05-25 02:24 . 2011-05-25 02:24 31744 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atiuxpag.dll
+ 2011-05-25 02:24 . 2011-05-25 02:24 29184 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atiu9pag.dll
+ 2009-06-22 15:34 . 2009-06-22 15:34 45056 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\ATIODCLI.exe
+ 2011-05-25 03:01 . 2011-05-25 03:01 15872 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atimuixx.dll
+ 2011-05-25 02:38 . 2011-05-25 02:38 52736 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atimpc32.dll
+ 2011-05-25 02:26 . 2011-05-25 02:26 12800 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atiglpxx.dll
+ 2011-05-25 02:25 . 2011-05-25 02:25 32768 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atigktxx.dll
+ 2011-05-25 02:47 . 2011-05-25 02:47 46080 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\aticalrt.dll
+ 2011-05-25 02:47 . 2011-05-25 02:47 44032 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\aticalcl.dll
+ 2011-05-25 02:24 . 2011-05-25 02:24 53248 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\ati2erec.dll
+ 2011-05-25 03:01 . 2011-05-25 03:01 43520 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\ati2edxx.dll
+ 2011-03-09 04:11 . 2011-03-09 04:11 52736 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\coinst.dll
+ 2011-03-09 04:17 . 2011-03-09 04:17 31232 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atiuxpag.dll
+ 2011-03-09 04:16 . 2011-03-09 04:16 28672 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atiu9pag.dll
+ 2009-06-22 16:34 . 2009-06-22 16:34 45056 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\ATIODCLI.exe
+ 2011-03-09 04:51 . 2011-03-09 04:51 15872 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atimuixx.dll
+ 2011-03-09 03:18 . 2011-03-09 03:18 52736 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atimpc32.dll
+ 2011-03-09 04:17 . 2011-03-09 04:17 12800 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atiglpxx.dll
+ 2011-03-09 04:17 . 2011-03-09 04:17 32768 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atigktxx.dll
+ 2011-03-09 04:34 . 2011-03-09 04:34 46080 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\aticalrt.dll
+ 2011-03-09 04:34 . 2011-03-09 04:34 44032 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\aticalcl.dll
+ 2011-03-09 04:16 . 2011-03-09 04:16 53248 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\ati2erec.dll
+ 2011-03-09 04:51 . 2011-03-09 04:51 43520 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\ati2edxx.dll
+ 2010-07-30 13:16 . 2010-07-30 13:16 23040 c:\windows\System32\DriverStore\FileRepository\ccdcmbo.inf_x86_neutral_2c498d06c9a2d750\ccdcmbo.sys
+ 2010-07-30 13:17 . 2010-07-30 13:17 75264 c:\windows\System32\DriverStore\FileRepository\ccdcmb.inf_x86_neutral_71602fdaa88d0dad\nmwcdcls.dll
+ 2010-07-30 13:16 . 2010-07-30 13:16 18048 c:\windows\System32\DriverStore\FileRepository\ccdcmb.inf_x86_neutral_71602fdaa88d0dad\ccdcmb.sys
+ 2009-07-13 23:51 . 2009-07-13 23:51 27648 c:\windows\System32\drivers\usbser.sys
+ 2011-09-05 07:51 . 2010-06-17 13:27 28520 c:\windows\System32\drivers\ssmdrv.sys
+ 2010-07-30 13:16 . 2010-07-30 13:16 23040 c:\windows\System32\drivers\ccdcmbo.sys
+ 2010-07-30 13:16 . 2010-07-30 13:16 18048 c:\windows\System32\drivers\ccdcmb.sys
- 2009-12-11 19:52 . 2009-12-11 19:52 53248 c:\windows\System32\drivers\ati2erec.dll
+ 2011-05-25 02:24 . 2011-05-25 02:24 53248 c:\windows\System32\drivers\ati2erec.dll
+ 2006-02-28 10:41 . 2006-02-28 10:41 53248 c:\windows\System32\dnssd.dll
+ 2006-02-28 10:41 . 2006-02-28 10:41 61440 c:\windows\System32\dns-sd.exe
+ 2011-08-21 17:06 . 2011-08-30 15:10 32768 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\PrivacIE\index.dat
+ 2010-02-01 19:02 . 2011-09-05 07:59 32768 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2011-08-30 14:05 . 2011-09-01 18:14 32768 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Internet Explorer\UserData\index.dat
+ 2011-09-02 07:46 . 2011-09-02 11:30 49152 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012011090220110903\index.dat
+ 2011-09-01 06:42 . 2011-09-01 20:06 65536 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012011090120110902\index.dat
+ 2011-08-31 05:20 . 2011-08-31 20:14 49152 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012011083120110901\index.dat
+ 2011-08-30 08:03 . 2011-08-30 07:57 49152 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012011082220110829\index.dat
+ 2009-07-14 04:41 . 2011-09-05 07:59 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-08-21 17:06 . 2011-08-21 17:06 10240 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{F1EFE4C8-CC17-11E0-9BFC-001FC61BEE81}.dat
+ 2011-08-21 17:37 . 2011-08-21 17:38 15872 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{467A4453-CC1C-11E0-9BFC-001FC61BEE81}.dat
+ 2011-08-19 12:20 . 2011-08-19 12:20 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\MSIMGSIZ.DAT
+ 2011-08-19 21:53 . 2011-09-02 08:16 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\DOMStore\index.dat
+ 2009-12-11 20:11 . 2011-05-25 02:18 52736 c:\windows\System32\coinst.dll
+ 2009-12-11 19:50 . 2011-05-25 02:24 31744 c:\windows\System32\atiuxpag.dll
+ 2009-12-11 19:50 . 2011-05-25 02:24 29184 c:\windows\System32\atiu9pag.dll
+ 2009-06-22 16:34 . 2009-06-22 16:34 45056 c:\windows\System32\ATIODCLI.exe
- 2009-02-03 19:52 . 2009-02-03 19:52 45056 c:\windows\System32\ATIODCLI.exe
+ 2011-05-25 03:01 . 2011-05-25 03:01 15872 c:\windows\System32\atimuixx.dll
+ 2011-05-25 02:38 . 2011-05-25 02:38 52736 c:\windows\System32\atimpc32.dll
- 2009-12-11 19:51 . 2009-12-11 19:51 12800 c:\windows\System32\atiglpxx.dll
+ 2011-05-25 02:26 . 2011-05-25 02:26 12800 c:\windows\System32\atiglpxx.dll
+ 2011-05-25 02:25 . 2011-05-25 02:25 32768 c:\windows\System32\atigktxx.dll
+ 2011-05-25 02:47 . 2011-05-25 02:47 46080 c:\windows\System32\aticalrt.dll
+ 2011-05-25 02:47 . 2011-05-25 02:47 44032 c:\windows\System32\aticalcl.dll
- 2009-12-11 20:42 . 2009-12-11 20:42 43520 c:\windows\System32\ati2edxx.dll
+ 2011-05-25 03:01 . 2011-05-25 03:01 43520 c:\windows\System32\ati2edxx.dll
+ 2011-05-25 02:38 . 2011-05-25 02:38 52736 c:\windows\System32\amdpcom32.dll
+ 2010-02-01 19:13 . 2011-02-23 20:44 87711 c:\windows\System32\Adobe\Shockwave 11\uninstaller.exe
+ 2011-02-02 13:46 . 2011-02-02 13:46 98304 c:\windows\System32\Adobe\Shockwave 11\SwMenu.dll
+ 2011-02-02 13:35 . 2011-02-02 13:35 79488 c:\windows\System32\Adobe\Shockwave 11\gtapi.dll
+ 2011-02-02 13:55 . 2011-02-02 13:55 68536 c:\windows\System32\Adobe\Director\SWDNLD.EXE
+ 2010-02-01 19:12 . 2011-09-05 08:25 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-02-01 19:12 . 2010-10-28 07:07 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:34 . 2011-04-08 06:47 73256 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
+ 2010-02-01 19:12 . 2011-09-05 08:25 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2010-02-01 19:12 . 2010-10-28 07:07 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2010-02-01 19:12 . 2011-09-05 08:25 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2010-02-01 19:12 . 2010-10-28 07:07 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-02-01 19:12 . 2011-09-05 08:25 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-02-01 19:12 . 2010-10-28 07:07 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-02-01 19:12 . 2010-10-28 07:07 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-02-01 19:12 . 2011-09-05 08:25 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-12-12 16:35 . 2010-12-12 16:35 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\autodeskdm_services\b2eebf01\564e7b31\App_Web_defaultwsdlhelpgenerator.aspx.cdcab7d2.akbpm3-a.dll
+ 2011-07-29 22:07 . 2011-07-29 22:07 25088 c:\windows\Installer\3506780.msi
+ 2011-05-19 11:42 . 2011-05-19 11:42 25214 c:\windows\Installer\{F9000000-0018-0000-0000-074957833700}\ICON_Sprint.exe
+ 2011-05-19 11:42 . 2011-05-19 11:42 25214 c:\windows\Installer\{F9000000-0018-0000-0000-074957833700}\ICON_Bonus.ScreenshotReader.exe
+ 2011-05-19 11:42 . 2011-05-19 11:42 25214 c:\windows\Installer\{F9000000-0018-0000-0000-074957833700}\ARPPRODUCTICON.exe
+ 2011-01-28 12:33 . 2011-01-28 12:33 15086 c:\windows\Installer\{F38FD0E4-B991-462B-873D-F2115EADD093}\ARPPRODUCTICON.exe
+ 2011-01-28 12:32 . 2011-01-28 12:32 10134 c:\windows\Installer\{D4AEC53C-1720-41D9-B6D7-6A60DE62D444}\ARPPRODUCTICON.exe
+ 2011-08-19 12:40 . 2011-08-19 12:40 77542 c:\windows\Installer\{B8FA4B2B-67A0-18D0-77DD-F08405016F37}\NewShortcut5_4DEA5338A7B840A3B51CDC742625BF49.exe
+ 2011-08-19 12:40 . 2011-08-19 12:40 77542 c:\windows\Installer\{B8FA4B2B-67A0-18D0-77DD-F08405016F37}\NewShortcut4_4DEA5338A7B840A3B51CDC742625BF49.exe
+ 2011-08-19 12:40 . 2011-08-19 12:40 77542 c:\windows\Installer\{B8FA4B2B-67A0-18D0-77DD-F08405016F37}\NewShortcut3_4DEA5338A7B840A3B51CDC742625BF49.exe
+ 2011-08-19 12:40 . 2011-08-19 12:40 77542 c:\windows\Installer\{B8FA4B2B-67A0-18D0-77DD-F08405016F37}\NewShortcut2_4DEA5338A7B840A3B51CDC742625BF49.exe
+ 2011-08-19 12:40 . 2011-08-19 12:40 77542 c:\windows\Installer\{B8FA4B2B-67A0-18D0-77DD-F08405016F37}\ARPPRODUCTICON.exe
+ 2011-08-19 12:44 . 2011-08-19 12:44 10134 c:\windows\Installer\{A25FF1C0-80B6-4B8B-A551-DC525697A408}\ARPPRODUCTICON.exe
+ 2011-04-08 07:00 . 2011-04-08 07:00 77542 c:\windows\Installer\{67E0C987-AAC3-E5A2-B32D-1BE48BC297E1}\NewShortcut5_4DEA5338A7B840A3B51CDC742625BF49.exe
+ 2011-04-08 07:00 . 2011-04-08 07:00 77542 c:\windows\Installer\{67E0C987-AAC3-E5A2-B32D-1BE48BC297E1}\NewShortcut4_4DEA5338A7B840A3B51CDC742625BF49.exe
+ 2011-04-08 07:00 . 2011-04-08 07:00 77542 c:\windows\Installer\{67E0C987-AAC3-E5A2-B32D-1BE48BC297E1}\NewShortcut3_4DEA5338A7B840A3B51CDC742625BF49.exe
+ 2011-04-08 07:00 . 2011-04-08 07:00 77542 c:\windows\Installer\{67E0C987-AAC3-E5A2-B32D-1BE48BC297E1}\NewShortcut2_4DEA5338A7B840A3B51CDC742625BF49.exe
+ 2011-02-10 08:59 . 2011-02-10 08:59 49152 c:\windows\Installer\{4D568C38-0552-4CDD-A643-01FAFA2957EF}\Uninstall_QA_OTI_H_FE5D756F71E147C4972AD6775344B40B.exe
+ 2011-02-10 08:59 . 2011-02-10 08:59 49152 c:\windows\Installer\{4D568C38-0552-4CDD-A643-01FAFA2957EF}\NewShortcut31_E2CBBE559A074AF98E8596196B075190.exe
+ 2011-02-10 08:59 . 2011-02-10 08:59 49152 c:\windows\Installer\{4D568C38-0552-4CDD-A643-01FAFA2957EF}\NewShortcut2_1C7B7089989A424FB39D41A32581C775.exe
+ 2011-02-10 08:59 . 2011-02-10 08:59 53248 c:\windows\Installer\{4D568C38-0552-4CDD-A643-01FAFA2957EF}\ARPPRODUCTICON.exe
+ 2011-08-19 12:43 . 2011-08-19 12:43 10134 c:\windows\Installer\{19A492A0-888F-44A0-9B21-D91700763F62}\ARPPRODUCTICON.exe
+ 2010-11-28 14:40 . 2010-11-28 14:40 27648 c:\windows\Installer\{048298C9-A4D3-490B-9FF9-AB023A9238F3}\Icon048298C91.exe
+ 2010-09-23 02:47 . 2010-09-23 02:47 35760 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\reader_sl.exe
+ 2010-09-23 01:03 . 2010-09-23 01:03 99776 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\eula.exe
+ 2010-09-20 21:07 . 2010-09-20 21:07 70584 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\adobeextractfiles.dll
+ 2010-09-23 00:52 . 2010-09-23 00:52 27048 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\acrotextextractor.exe
+ 2010-09-22 16:12 . 2010-09-22 16:12 15800 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\AcroRd32Info.exe
- 2010-06-26 11:58 . 2010-06-26 11:58 12800 c:\windows\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll
+ 2011-02-02 18:46 . 2011-02-02 18:46 12800 c:\windows\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll
- 2010-06-26 11:58 . 2010-06-26 11:58 53248 c:\windows\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll
+ 2011-02-02 18:46 . 2011-02-02 18:46 53248 c:\windows\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll
+ 2010-02-10 23:44 . 2011-08-16 21:43 5156 c:\windows\System32\wdi\ERCQueuedResolutions.dat
+ 2011-05-19 11:40 . 2009-11-10 07:00 3750 c:\windows\System32\spool\drivers\w32x86\3\E_FAIFGDE.DAT
+ 2011-05-19 11:40 . 2008-10-15 03:02 7168 c:\windows\System32\spool\drivers\w32x86\3\E_DUPA3E.DLL
+ 2011-05-19 11:40 . 2007-04-10 01:06 8192 c:\windows\System32\E_DCINST.DLL
+ 2010-07-26 11:24 . 2010-07-26 11:24 8576 c:\windows\System32\DriverStore\FileRepository\nmwcdnsuc.inf_x86_neutral_2852ce7266f65fcc\nmwcdnsuc.sys
+ 2011-05-19 11:40 . 2009-11-10 07:00 3750 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_SCX0D7.DAT
+ 2011-05-19 11:40 . 2008-10-15 03:02 7168 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DUPA3E.DLL
+ 2011-05-19 11:40 . 2007-04-10 01:06 8192 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DCINST.DLL
+ 2011-07-30 17:40 . 2009-04-08 09:59 8704 c:\windows\System32\DriverStore\FileRepository\dev000.inf_x86_neutral_d7ae7773b3a3fc1d\FStarForce.sys
+ 2011-03-17 17:51 . 2011-03-17 17:51 3929 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atipblag.dat
+ 2011-01-13 03:03 . 2011-01-13 03:03 3155 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atipblag.dat
+ 2010-07-30 13:16 . 2010-07-30 13:16 8192 c:\windows\System32\DriverStore\FileRepository\ccdcmbm.inf_x86_neutral_683562188440f27f\usbser_lowerflt.sys
+ 2010-07-30 13:16 . 2010-07-30 13:16 8192 c:\windows\System32\DriverStore\FileRepository\ccdcmbj.inf_x86_neutral_bb71d7fbb913a31b\usbser_lowerfltj.sys
+ 2010-07-30 13:16 . 2010-07-30 13:16 8192 c:\windows\System32\drivers\usbser_lowerfltj.sys
+ 2010-07-30 13:16 . 2010-07-30 13:16 8192 c:\windows\System32\drivers\usbser_lowerflt.sys
+ 2010-07-26 11:24 . 2010-07-26 11:24 8576 c:\windows\System32\drivers\nmwcdnsuc.sys
+ 2011-07-30 17:40 . 2009-04-08 09:59 8704 c:\windows\System32\drivers\FStarForce.sys
+ 2011-08-21 17:06 . 2011-08-21 17:37 5120 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{F1EFE4C7-CC17-11E0-9BFC-001FC61BEE81}.dat
+ 2011-08-30 11:22 . 2011-08-30 15:14 7680 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{57A13A3E-D2FA-11E0-BA73-001FC61BEE81}.dat
+ 2011-08-30 11:27 . 2011-08-30 11:27 6144 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{FCA83635-D2FA-11E0-BA73-001FC61BEE81}.dat
+ 2011-08-30 12:02 . 2011-08-30 12:02 6144 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{EC96C314-D2FF-11E0-BA73-001FC61BEE81}.dat
+ 2011-08-30 15:14 . 2011-08-30 15:14 4096 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{D247829C-D31A-11E0-BA73-001FC61BEE81}.dat
+ 2011-08-30 14:10 . 2011-08-30 14:10 6144 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{C28EA0B7-D311-11E0-BA73-001FC61BEE81}.dat
+ 2011-08-30 12:07 . 2011-08-30 12:07 6144 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{91837A71-D300-11E0-BA73-001FC61BEE81}.dat
+ 2011-08-30 15:05 . 2011-08-30 15:05 6144 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{87A15D8B-D319-11E0-BA73-001FC61BEE81}.dat
+ 2011-08-30 11:22 . 2011-08-30 11:22 6144 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{57A13A41-D2FA-11E0-BA73-001FC61BEE81}.dat
+ 2011-08-30 11:22 . 2011-08-30 11:22 6144 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{57A13A3F-D2FA-11E0-BA73-001FC61BEE81}.dat
+ 2011-08-30 12:11 . 2011-08-30 12:11 6144 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{372E9FE1-D301-11E0-BA73-001FC61BEE81}.dat
+ 2011-08-30 15:10 . 2011-08-30 15:10 6144 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{2CFDF594-D31A-11E0-BA73-001FC61BEE81}.dat
+ 2011-08-30 14:05 . 2011-08-30 14:05 6144 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1CCBAD81-D311-11E0-BA73-001FC61BEE81}.dat
+ 2011-03-17 17:51 . 2011-03-17 17:51 3929 c:\windows\System32\atipblag.dat
- 2009-10-29 05:29 . 2009-10-29 05:29 9216 c:\windows\System32\Adobe\Shockwave 11\DynaPlayer.dll
+ 2011-02-02 13:47 . 2011-02-02 13:47 9216 c:\windows\System32\Adobe\Shockwave 11\DynaPlayer.dll
- 2010-07-13 21:27 . 2010-10-25 20:31 8983 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Bluetooth\bthservsdp.dat
+ 2010-07-13 21:27 . 2011-09-03 15:10 8983 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Bluetooth\bthservsdp.dat
+ 2011-09-05 07:55 . 2011-09-05 08:24 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2010-10-28 07:06 . 2010-10-28 09:50 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-09-05 07:55 . 2011-09-05 08:24 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2010-10-28 07:06 . 2010-10-28 09:50 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-08-19 12:44 . 2011-08-19 12:44 9158 c:\windows\Installer\{D751FC11-146D-9848-6993-9A567E05B1EF}\ARPPRODUCTICON.exe
+ 2011-08-19 12:39 . 2011-08-19 12:39 9158 c:\windows\Installer\{C1392D78-3958-03C8-E747-51DE7CEE8E03}\ARPPRODUCTICON.exe
+ 2011-08-19 12:44 . 2011-08-19 12:44 9158 c:\windows\Installer\{938F03A3-9932-DA4F-DDC1-49FABFD41B23}\ARPPRODUCTICON.exe
+ 2011-04-08 07:01 . 2011-04-08 07:01 9158 c:\windows\Installer\{74FF7860-85D8-D261-52C6-D41E946235F1}\ARPPRODUCTICON.exe
+ 2011-08-19 12:44 . 2011-08-19 12:44 9158 c:\windows\Installer\{6BCC0A09-6235-C2DE-4E3D-09F7793C6FB3}\ARPPRODUCTICON.exe
+ 2011-01-28 12:31 . 2011-01-28 12:31 3262 c:\windows\Installer\{4216D328-0FE8-48B8-85B8-BD300E6F080F}\ARPPRODUCTICON.exe
+ 2011-08-19 12:44 . 2011-08-19 12:44 9158 c:\windows\Installer\{027B17C7-C291-6FB5-0C82-8BC157599201}\ARPPRODUCTICON.exe
+ 2011-04-03 13:54 . 2011-04-03 13:54 626688 c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.163_none_10b3ea459bfee365\msvcr80.dll
+ 2011-04-03 13:54 . 2011-04-03 13:54 548864 c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.163_none_10b3ea459bfee365\msvcp80.dll
+ 2011-04-03 13:54 . 2011-04-03 13:54 479232 c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.163_none_10b3ea459bfee365\msvcm80.dll
+ 2011-08-19 12:24 . 2011-06-29 10:20 743936 c:\windows\ufa\ufa.exe
+ 2011-05-19 11:40 . 2009-01-09 22:00 155648 c:\windows\twain_32\escndv\escndv.exe
+ 2011-05-19 11:40 . 2009-01-12 22:00 131072 c:\windows\twain_32\escndv\es00a8\local\0809\esres.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 135168 c:\windows\twain_32\escndv\es00a8\local\0427\esres.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 135168 c:\windows\twain_32\escndv\es00a8\local\0426\esres.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 131072 c:\windows\twain_32\escndv\es00a8\local\0425\esres.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 131072 c:\windows\twain_32\escndv\es00a8\local\041F\esres.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 131072 c:\windows\twain_32\escndv\es00a8\local\041D\esres.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 135168 c:\windows\twain_32\escndv\es00a8\local\041B\esres.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 135168 c:\windows\twain_32\escndv\es00a8\local\0418\esres.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 139264 c:\windows\twain_32\escndv\es00a8\local\0415\esres.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 131072 c:\windows\twain_32\escndv\es00a8\local\0414\esres.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 135168 c:\windows\twain_32\escndv\es00a8\local\040E\esres.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 131072 c:\windows\twain_32\escndv\es00a8\local\040B\esres.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 143360 c:\windows\twain_32\escndv\es00a8\local\0408\esres.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 131072 c:\windows\twain_32\escndv\es00a8\local\0406\esres.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 131072 c:\windows\twain_32\escndv\es00a8\local\0405\esres.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 143360 c:\windows\twain_32\escndv\es00a8\local\0402\esres.dll
+ 2011-05-19 11:40 . 2009-09-29 22:00 622592 c:\windows\twain_32\escndv\es00a8\ffmt\pdflib.dll
+ 2011-05-19 11:40 . 2009-09-07 22:00 180224 c:\windows\twain_32\escndv\es00a8\ffmt\pdffile.dll
+ 2011-05-19 11:40 . 2005-08-28 22:00 143360 c:\windows\twain_32\escndv\es00a8\ffmt\esexf.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 106496 c:\windows\twain_32\escndv\es00a8\ffmt\eptif.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 102400 c:\windows\twain_32\escndv\es00a8\ffmt\eppit.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 106496 c:\windows\twain_32\escndv\es00a8\ffmt\eppij.dll
+ 2011-05-19 11:40 . 2009-01-12 22:00 126976 c:\windows\twain_32\escndv\es00a8\ffmt\eppdf.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 106496 c:\windows\twain_32\escndv\es00a8\ffmt\epmtf.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 159744 c:\windows\twain_32\escndv\es00a8\ffmt\epjpg.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 131072 c:\windows\twain_32\escndv\es00a8\esutwb.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 266240 c:\windows\twain_32\escndv\es00a8\estwpmg.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 462848 c:\windows\twain_32\escndv\es00a8\esscncl.dll
+ 2011-05-19 11:40 . 2009-01-12 22:00 131072 c:\windows\twain_32\escndv\es00a8\esres.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 368734 c:\windows\twain_32\escndv\es00a8\esmps.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 229376 c:\windows\twain_32\escndv\es00a8\esimgctl.dll
+ 2011-05-19 11:40 . 2008-11-13 22:00 626688 c:\windows\twain_32\escndv\es00a8\esimfl.dll
+ 2011-05-19 11:40 . 2009-05-24 22:00 192512 c:\windows\twain_32\escndv\es00a8\esfit.dll
+ 2011-05-19 11:40 . 2009-10-26 22:00 454656 c:\windows\twain_32\escndv\es00a8\esdtr2.dll
+ 2011-05-19 11:40 . 2009-10-19 22:00 425984 c:\windows\twain_32\escndv\es00a8\esdtr.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 135168 c:\windows\twain_32\escndv\es00a8\esdevif.dll
+ 2011-05-19 11:40 . 2009-01-12 22:00 192512 c:\windows\twain_32\escndv\es00a8\esdevcl.dll
+ 2010-11-18 19:22 . 2010-06-02 03:55 527192 c:\windows\System32\XAudio2_7.dll
- 2010-06-26 11:58 . 2010-02-04 08:01 528216 c:\windows\System32\XAudio2_6.dll
+ 2010-11-18 19:22 . 2010-02-04 09:01 528216 c:\windows\System32\XAudio2_6.dll
+ 2010-11-18 19:22 . 2010-06-02 03:55 239960 c:\windows\System32\xactengine3_7.dll
+ 2010-11-18 19:22 . 2010-02-04 09:01 238936 c:\windows\System32\xactengine3_6.dll
- 2010-06-26 11:58 . 2010-02-04 08:01 238936 c:\windows\System32\xactengine3_6.dll
+ 2010-02-03 03:30 . 2011-04-20 22:18 193622 c:\windows\System32\wdi\SuspendPerformanceDiagnostics_SystemData_FastS4.bin
+ 2011-05-19 11:40 . 2009-11-11 01:03 542680 c:\windows\System32\spool\drivers\w32x86\3\OSASOI.EXE
+ 2011-05-19 11:40 . 2008-07-15 03:17 295424 c:\windows\System32\spool\drivers\w32x86\3\EPSET32.DLL
+ 2011-05-19 11:40 . 2007-11-28 05:15 172032 c:\windows\System32\spool\drivers\w32x86\3\EBAPI4.DLL
+ 2011-05-19 11:40 . 2009-09-14 05:00 153600 c:\windows\System32\spool\drivers\w32x86\3\E_S50ST7.EXE
+ 2011-05-19 11:40 . 2009-09-14 05:00 121856 c:\windows\System32\spool\drivers\w32x86\3\E_S50RP7.EXE
+ 2011-05-19 11:40 . 2009-08-06 08:01 310272 c:\windows\System32\spool\drivers\w32x86\3\E_FUIXGDE.DLL
+ 2011-05-19 11:40 . 2009-10-05 08:01 209920 c:\windows\System32\spool\drivers\w32x86\3\E_FUIRGDE.DLL
+ 2011-05-19 11:40 . 2009-10-05 08:01 999936 c:\windows\System32\spool\drivers\w32x86\3\E_FUI1GDE.DLL
+ 2011-05-19 11:40 . 2009-10-13 04:00 630784 c:\windows\System32\spool\drivers\w32x86\3\E_FPRUGDE.DLL
+ 2011-05-19 11:40 . 2009-10-13 04:00 204800 c:\windows\System32\spool\drivers\w32x86\3\E_FPREGDE.EXE
+ 2011-05-19 11:40 . 2009-10-23 05:00 170496 c:\windows\System32\spool\drivers\w32x86\3\E_FMAIGDE.DLL
+ 2011-05-19 11:40 . 2008-09-29 01:00 138240 c:\windows\System32\spool\drivers\w32x86\3\E_FLMWGDE.DLL
+ 2011-05-19 11:40 . 2009-10-23 04:00 574976 c:\windows\System32\spool\drivers\w32x86\3\E_FJBCGDE.DLL
+ 2011-05-19 11:40 . 2009-06-16 07:05 812984 c:\windows\System32\spool\drivers\w32x86\3\E_FINSGDE.EXE
+ 2011-05-19 11:40 . 2006-11-02 07:21 319456 c:\windows\System32\spool\drivers\w32x86\3\E_FINSGDE.DLL
+ 2011-05-19 11:40 . 2009-11-19 00:00 329074 c:\windows\System32\spool\drivers\w32x86\3\E_FINSGDE.DAT
+ 2011-05-19 11:40 . 2009-10-21 11:01 136192 c:\windows\System32\spool\drivers\w32x86\3\E_FHUTGDE.EXE
+ 2011-05-19 11:40 . 2009-10-21 11:01 293888 c:\windows\System32\spool\drivers\w32x86\3\E_FHUTGDE.DLL
+ 2011-05-19 11:40 . 2008-10-27 04:30 109056 c:\windows\System32\spool\drivers\w32x86\3\E_FHT0GDE.DLL
+ 2011-05-19 11:40 . 2009-07-16 04:30 360448 c:\windows\System32\spool\drivers\w32x86\3\E_FHM0GDE.DLL
+ 2011-05-19 11:40 . 2009-11-10 01:00 507392 c:\windows\System32\spool\drivers\w32x86\3\E_FHBRGDE.DLL
+ 2011-05-19 11:40 . 2009-10-23 05:00 103936 c:\windows\System32\spool\drivers\w32x86\3\E_FDSPGDE.DLL
+ 2011-05-19 11:40 . 2009-02-20 04:02 382976 c:\windows\System32\spool\drivers\w32x86\3\E_FCONGDE.DLL
+ 2011-05-19 11:40 . 2009-09-14 02:00 176128 c:\windows\System32\spool\drivers\w32x86\3\E_FBCSGDE.EXE
+ 2011-05-19 11:40 . 2007-11-28 05:15 172032 c:\windows\System32\spool\drivers\w32x86\3\E_FBAPGDE.DLL
+ 2011-05-19 11:40 . 2009-09-14 07:00 200704 c:\windows\System32\spool\drivers\w32x86\3\E_FATIGDE.EXE
+ 2011-05-19 11:40 . 2009-11-10 07:01 634880 c:\windows\System32\spool\drivers\w32x86\3\E_FASOGDE.DLL
+ 2011-05-19 11:40 . 2008-09-12 05:02 131584 c:\windows\System32\spool\drivers\w32x86\3\E_FASKGDE.DLL
+ 2011-05-19 11:40 . 2009-09-14 07:00 217600 c:\windows\System32\spool\drivers\w32x86\3\E_FARNGDE.EXE
+ 2011-05-19 11:40 . 2009-11-17 07:00 820224 c:\windows\System32\spool\drivers\w32x86\3\E_FAPRGDE.DLL
+ 2011-05-19 11:40 . 2009-11-10 01:00 167424 c:\windows\System32\spool\drivers\w32x86\3\E_FAIRGDE.DLL
+ 2011-05-19 11:40 . 2009-11-17 07:00 532480 c:\windows\System32\spool\drivers\w32x86\3\E_FABRGDE.DLL
+ 2011-05-19 11:40 . 2009-10-06 21:21 325600 c:\windows\System32\spool\drivers\w32x86\3\E_DUPA30.EXE
+ 2011-05-19 11:40 . 2009-11-17 01:02 239584 c:\windows\System32\spool\drivers\w32x86\3\E_DATO46.EXE
+ 2010-02-03 08:29 . 2011-06-06 07:38 271200 c:\windows\System32\PnkBstrB.exe
+ 2009-07-14 02:05 . 2011-09-03 10:16 653700 c:\windows\System32\perfh009.dat
- 2009-07-14 02:05 . 2010-10-25 18:53 653700 c:\windows\System32\perfh009.dat
- 2009-07-14 08:44 . 2010-10-25 18:53 669130 c:\windows\System32\perfh005.dat
+ 2009-07-14 08:44 . 2011-09-03 10:16 669130 c:\windows\System32\perfh005.dat
+ 2009-07-14 02:05 . 2011-09-03 10:16 121192 c:\windows\System32\perfc009.dat
- 2009-07-14 02:05 . 2010-10-25 18:53 121192 c:\windows\System32\perfc009.dat
+ 2009-07-14 08:44 . 2011-09-03 10:16 136426 c:\windows\System32\perfc005.dat
- 2009-07-14 08:44 . 2010-10-25 18:53 136426 c:\windows\System32\perfc005.dat
+ 2011-05-25 03:02 . 2011-05-25 03:02 278528 c:\windows\System32\Oemdspif.dll
+ 2010-07-30 13:17 . 2010-07-30 13:17 604160 c:\windows\System32\nmwcdcocls.dll
+ 2010-03-18 07:15 . 2010-03-18 07:15 770384 c:\windows\System32\msvcr100.dll
+ 2010-03-18 07:15 . 2010-03-18 07:15 421200 c:\windows\System32\msvcp100.dll
+ 2010-02-01 20:04 . 2011-02-02 17:11 222080 c:\windows\System32\MpSigStub.exe
- 2010-02-01 20:04 . 2010-10-19 09:41 222080 c:\windows\System32\MpSigStub.exe
+ 2011-05-18 09:16 . 2011-05-18 09:16 202496 c:\windows\System32\mlfcache.dat
+ 2011-06-23 06:53 . 2011-06-23 06:53 240288 c:\windows\System32\Macromed\Flash\FlashUtil10t_Plugin.exe
+ 2011-03-18 07:55 . 2011-02-02 20:40 157472 c:\windows\System32\javaws.exe
+ 2011-03-18 07:55 . 2011-02-02 20:40 145184 c:\windows\System32\javaw.exe
- 2010-02-01 19:15 . 2010-02-01 19:15 145184 c:\windows\System32\javaw.exe
- 2010-02-01 19:15 . 2010-02-01 19:15 145184 c:\windows\System32\java.exe
+ 2011-03-18 07:55 . 2011-02-02 20:40 145184 c:\windows\System32\java.exe
+ 2010-10-09 07:30 . 2011-04-03 14:05 157584 c:\windows\System32\GDIPFONTCACHEV1.DAT
- 2010-10-09 07:30 . 2010-10-09 07:30 157584 c:\windows\System32\GDIPFONTCACHEV1.DAT
+ 2011-05-19 11:40 . 2009-11-19 22:00 341504 c:\windows\System32\esw2ud.dll
+ 2011-05-19 11:40 . 2009-04-30 22:00 128392 c:\windows\System32\esdevapp.exe
+ 2009-07-14 04:50 . 2011-09-03 10:14 143360 c:\windows\System32\DriverStore\infstrng.dat
- 2009-07-14 04:50 . 2010-10-25 18:52 143360 c:\windows\System32\DriverStore\infstrng.dat
+ 2009-07-14 04:50 . 2011-08-19 12:41 143360 c:\windows\System32\DriverStore\infstor.dat
- 2009-07-14 04:50 . 2010-07-13 16:04 143360 c:\windows\System32\DriverStore\infstor.dat
+ 2010-07-26 11:24 . 2010-07-26 11:24 137600 c:\windows\System32\DriverStore\FileRepository\nmwcdnsu.inf_x86_neutral_719db2d600d3889a\nmwcdnsu.sys

milinn · #6 Příspěvek od **milinn** » 05 zář 2011 09:30

+ 2011-05-19 11:40 . 2009-09-16 22:00 342016 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\eswiaud.dll
+ 2011-05-19 11:40 . 2009-11-19 22:00 341504 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\esw2ud.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 131072 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\esutwb.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 266240 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\estwpmg.dll
+ 2011-05-19 11:40 . 2009-01-13 22:00 462848 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\esscncl.dll
+ 2011-05-19 11:40 . 2009-01-12 22:00 131072 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\esres.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 229376 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\esimgctl.dll
+ 2011-05-19 11:40 . 2008-11-13 22:00 626688 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\esimfl.dll
+ 2011-05-19 11:40 . 2009-05-24 22:00 192512 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\esfit.dll
+ 2011-05-19 11:40 . 2009-10-26 22:00 454656 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\esdtr2.dll
+ 2011-05-19 11:40 . 2009-10-19 22:00 425984 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\esdtr.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 135168 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\esdevif.dll
+ 2011-05-19 11:40 . 2009-01-12 22:00 192512 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\esdevcl.dll
+ 2011-05-19 11:40 . 2009-04-30 22:00 128392 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\esdevapp.exe
+ 2011-05-19 11:40 . 2007-11-28 01:15 131072 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\SAGENT4.EXE
+ 2011-05-19 11:40 . 2009-11-11 01:03 542680 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\OSASOI.EXE
+ 2011-05-19 11:40 . 2009-10-21 11:01 136192 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\EPUTY297.EXE
+ 2011-05-19 11:40 . 2009-10-21 11:01 293888 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\EPUTY297.DLL
+ 2011-05-19 11:40 . 2009-06-16 07:05 812984 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\EPUPDATE.EXE
+ 2011-05-19 11:40 . 2009-11-19 00:00 329074 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\EPUPDATE.DAT
+ 2011-05-19 11:40 . 2008-07-15 03:17 295424 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\EPSET32.DLL
+ 2011-05-19 11:40 . 2009-10-01 05:10 290894 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\EBPLPT5.DLL
+ 2011-05-19 11:40 . 2007-11-28 05:15 172032 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\EBAPI5.DLL
+ 2011-05-19 11:40 . 2007-11-28 05:15 172032 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\EBAPI4.DLL
+ 2011-05-19 11:40 . 2008-09-12 05:02 131584 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_SKU327.DLL
+ 2011-05-19 11:40 . 2009-11-17 07:00 532480 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_SCB0D5.DLL
+ 2011-05-19 11:40 . 2006-04-24 02:00 110592 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_SAGSET.DLL
+ 2011-05-19 11:40 . 2009-09-14 02:00 176128 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_SACS27.EXE
+ 2011-05-19 11:40 . 2009-09-14 05:00 153600 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_S50ST7.EXE
+ 2011-05-19 11:40 . 2009-11-10 07:01 634880 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_S50SO7.DLL
+ 2011-05-19 11:40 . 2009-09-14 05:00 121856 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_S50RP7.EXE
+ 2011-05-19 11:40 . 2009-09-14 07:00 217600 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_S50RN7.EXE
+ 2011-05-19 11:40 . 2009-11-17 07:00 820224 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_S50P07.DLL
+ 2011-05-19 11:40 . 2009-09-14 07:00 200704 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_S50IC7.EXE
+ 2011-05-19 11:40 . 2009-11-10 01:00 507392 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_HCB0D5.DLL
+ 2011-05-19 11:40 . 2009-11-10 01:00 167424 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_H6UIR7.DLL
+ 2011-05-19 11:40 . 2009-10-06 21:21 325600 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DUPA30.EXE
+ 2011-05-19 11:40 . 2009-10-13 04:00 630784 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DPUI07.DLL
+ 2011-05-19 11:40 . 2009-10-13 04:00 204800 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DPPE06.EXE
+ 2011-05-19 11:40 . 2009-10-23 05:00 170496 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DMAI30.DLL
+ 2011-05-19 11:40 . 2008-09-29 01:00 138240 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DLMW01.DLL
+ 2011-05-19 11:40 . 2009-10-23 04:00 574976 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DJB727.DLL
+ 2011-05-19 11:40 . 2009-08-06 08:01 310272 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DIX0RE.DLL
+ 2011-05-19 11:40 . 2006-11-02 07:21 319456 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DIFX01.DLL
+ 2011-05-19 11:40 . 2009-10-05 08:01 999936 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DI1GEE.DLL
+ 2011-05-19 11:40 . 2009-10-05 08:01 209920 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DI0GEE.DLL
+ 2011-05-19 11:40 . 2009-07-16 04:30 360448 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DHMM89.DLL
+ 2011-05-19 11:40 . 2008-10-27 04:30 109056 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DHB750.DLL
+ 2011-05-19 11:40 . 2009-10-23 05:00 103936 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DDSP30.DLL
+ 2011-05-19 11:40 . 2009-02-20 04:02 382976 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DCON04.DLL
+ 2011-05-19 11:40 . 2009-11-17 01:02 239584 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DATO46.EXE
+ 2011-07-18 13:26 . 2011-07-18 13:26 218688 c:\windows\System32\DriverStore\FileRepository\dtsoftbus01.inf_x86_neutral_f1339962f25d449e\dtsoftbus01.sys
+ 2011-05-25 03:02 . 2011-05-25 03:02 278528 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\Oemdspif.dll
+ 2011-05-25 03:02 . 2011-05-25 03:02 159744 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atitmmxx.dll
+ 2011-05-25 03:02 . 2011-05-25 03:02 356352 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atipdlxx.dll
+ 2010-08-27 18:32 . 2010-08-27 18:32 294912 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\ATIODE.exe
+ 2011-05-25 02:25 . 2011-05-25 02:25 245760 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atikmpag.sys
+ 2011-04-20 16:30 . 2011-04-20 16:30 233765 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atiicdxx.dat
+ 2011-05-25 03:03 . 2011-05-25 03:03 176128 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atiesrxx.exe
+ 2011-05-25 03:03 . 2011-05-25 03:03 401408 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atieclxx.exe
+ 2011-05-25 03:04 . 2011-05-25 03:04 462848 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\ATIDEMGX.dll
+ 2011-05-25 03:07 . 2011-05-25 03:07 688128 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\aticfx32.dll
+ 2009-05-11 21:35 . 2009-05-11 21:35 118784 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atibtmon.exe
+ 2011-05-25 03:07 . 2011-05-25 03:07 151552 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atiapfxx.exe
+ 2011-05-25 02:26 . 2011-05-25 02:26 262144 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atiadlxx.dll
+ 2011-03-09 04:51 . 2011-03-09 04:51 278528 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\Oemdspif.dll
+ 2011-03-09 04:51 . 2011-03-09 04:51 159744 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atitmmxx.dll
+ 2011-03-09 04:51 . 2011-03-09 04:51 356352 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atipdlxx.dll
+ 2010-08-27 19:32 . 2010-08-27 19:32 294912 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\ATIODE.exe
+ 2011-03-09 04:17 . 2011-03-09 04:17 239616 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atikmpag.sys
+ 2011-02-01 22:01 . 2011-02-01 22:01 227586 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atiicdxx.dat
+ 2011-03-09 04:52 . 2011-03-09 04:52 176128 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atiesrxx.exe
+ 2011-03-09 04:53 . 2011-03-09 04:53 393216 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atieclxx.exe
+ 2011-03-09 04:53 . 2011-03-09 04:53 462848 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\ATIDEMGX.dll
+ 2011-03-09 04:56 . 2011-03-09 04:56 679424 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\aticfx32.dll
+ 2009-05-11 22:35 . 2009-05-11 22:35 118784 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atibtmon.exe
+ 2011-03-09 04:57 . 2011-03-09 04:57 143360 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atiapfxx.exe
+ 2011-03-09 04:18 . 2011-03-09 04:18 258048 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atiadlxx.dll
+ 2010-07-30 13:17 . 2010-07-30 13:17 604160 c:\windows\System32\DriverStore\FileRepository\ccdcmb.inf_x86_neutral_71602fdaa88d0dad\nmwcdcocls.dll
+ 2010-07-30 13:17 . 2010-07-30 13:17 111104 c:\windows\System32\DriverStore\FileRepository\ccdcmb.inf_x86_neutral_71602fdaa88d0dad\ccdcmbwu.dll
+ 2010-11-17 12:04 . 2010-11-17 12:04 101392 c:\windows\System32\DriverStore\FileRepository\atihdw73.inf_x86_neutral_86e73f0eb44e57d8\AtihdW73.sys
+ 2011-03-30 18:46 . 2011-03-30 18:46 100880 c:\windows\System32\DriverStore\FileRepository\atihdw73.inf_x86_neutral_6188541b3955a76c\AtihdW73.sys
+ 2010-02-01 19:17 . 2010-10-28 11:49 691696 c:\windows\System32\drivers\sptd.sys
- 2010-02-01 19:17 . 2010-02-01 19:17 691696 c:\windows\System32\drivers\sptd.sys
+ 2010-02-03 08:29 . 2011-06-06 07:38 138160 c:\windows\System32\drivers\PnkBstrK.sys
+ 2010-07-26 11:24 . 2010-07-26 11:24 137600 c:\windows\System32\drivers\nmwcdnsu.sys
+ 2011-05-25 02:25 . 2011-05-25 02:25 245760 c:\windows\System32\drivers\atikmpag.sys
+ 2011-03-30 18:46 . 2011-03-30 18:46 100880 c:\windows\System32\drivers\AtihdW73.sys
+ 2010-12-12 08:59 . 2011-02-02 20:40 472808 c:\windows\System32\deployJava1.dll
+ 2010-11-18 19:22 . 2010-05-26 10:41 248672 c:\windows\System32\d3dx11_43.dll
+ 2010-11-18 19:22 . 2010-05-26 10:41 470880 c:\windows\System32\d3dx10_43.dll
- 2010-02-01 19:13 . 2008-07-10 10:01 467984 c:\windows\System32\d3dx10_39.dll
+ 2011-05-09 08:00 . 2008-07-12 06:18 467984 c:\windows\System32\d3dx10_39.dll
+ 2010-02-01 19:08 . 2011-09-02 11:30 245760 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
- 2010-02-01 19:08 . 2010-08-23 18:10 245760 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2011-08-30 08:03 . 2011-08-30 21:01 131072 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012011083020110831\index.dat
+ 2011-08-22 07:10 . 2011-08-22 12:02 163840 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012011081520110822\index.dat
+ 2010-07-30 13:17 . 2010-07-30 13:17 111104 c:\windows\System32\ccdcmbwu.dll
+ 2010-03-18 07:15 . 2010-03-18 07:15 138056 c:\windows\System32\atl100.dll
+ 2011-05-25 03:02 . 2011-05-25 03:02 159744 c:\windows\System32\atitmmxx.dll
- 2009-12-11 20:43 . 2009-12-11 20:43 159744 c:\windows\System32\atitmmxx.dll
- 2009-12-11 20:42 . 2009-12-11 20:42 356352 c:\windows\System32\atipdlxx.dll
+ 2011-05-25 03:02 . 2011-05-25 03:02 356352 c:\windows\System32\atipdlxx.dll
+ 2010-08-27 19:32 . 2010-08-27 19:32 294912 c:\windows\System32\ATIODE.exe
- 2009-02-18 16:55 . 2009-02-18 16:55 294912 c:\windows\System32\ATIODE.exe
+ 2011-04-20 16:30 . 2011-04-20 16:30 233765 c:\windows\System32\atiicdxx.dat
+ 2011-05-25 03:03 . 2011-05-25 03:03 176128 c:\windows\System32\atiesrxx.exe
+ 2011-05-25 03:03 . 2011-05-25 03:03 401408 c:\windows\System32\atieclxx.exe
+ 2011-05-25 03:04 . 2011-05-25 03:04 462848 c:\windows\System32\ATIDEMGX.dll
+ 2009-12-11 20:35 . 2011-05-25 03:07 688128 c:\windows\System32\aticfx32.dll
+ 2011-05-25 03:07 . 2011-05-25 03:07 151552 c:\windows\System32\atiapfxx.exe
+ 2011-05-25 02:26 . 2011-05-25 02:26 262144 c:\windows\System32\atiadlxx.dll
- 2009-10-29 05:27 . 2009-10-29 05:27 114688 c:\windows\System32\Adobe\Shockwave 11\SwInit.exe
+ 2011-02-02 13:46 . 2011-02-02 13:46 114688 c:\windows\System32\Adobe\Shockwave 11\SwInit.exe
+ 2011-02-02 13:55 . 2011-02-02 13:55 469944 c:\windows\System32\Adobe\Shockwave 11\SwHelper_1159620.exe
+ 2011-02-02 13:35 . 2011-02-02 13:35 136568 c:\windows\System32\Adobe\Shockwave 11\SCC.dll
+ 2011-02-02 13:48 . 2011-02-02 13:48 446464 c:\windows\System32\Adobe\Shockwave 11\Proj.dll
- 2009-10-29 05:29 . 2009-10-29 05:29 446464 c:\windows\System32\Adobe\Shockwave 11\Proj.dll
+ 2011-02-02 13:47 . 2011-02-02 13:47 372736 c:\windows\System32\Adobe\Shockwave 11\Plugin.dll
- 2009-10-29 05:28 . 2009-10-29 05:28 372736 c:\windows\System32\Adobe\Shockwave 11\Plugin.dll
+ 2011-02-02 13:35 . 2011-02-02 13:35 798208 c:\windows\System32\Adobe\Shockwave 11\gi.dll
- 2009-10-29 05:26 . 2009-10-29 05:26 503808 c:\windows\System32\Adobe\Shockwave 11\Control.dll
+ 2011-02-02 13:46 . 2011-02-02 13:46 503808 c:\windows\System32\Adobe\Shockwave 11\Control.dll
+ 2011-02-02 13:55 . 2011-02-02 13:55 215992 c:\windows\System32\Adobe\Director\SwDir.dll
+ 2011-02-02 13:47 . 2011-02-02 13:47 135168 c:\windows\System32\Adobe\Director\np32dsw.dll
+ 2009-07-14 04:47 . 2011-09-05 07:52 534092 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2010-04-20 21:47 . 2010-04-20 21:47 155136 c:\windows\Installer\df367.msi
+ 2011-03-18 07:55 . 2011-03-18 07:55 183808 c:\windows\Installer\1bf53.msi
+ 2011-06-01 21:25 . 2011-06-01 21:25 202752 c:\windows\Installer\156c377.msi
+ 2011-03-14 19:37 . 2011-03-14 19:37 528896 c:\windows\Installer\156c36d.msi
+ 2011-06-01 21:25 . 2011-06-01 21:25 514560 c:\windows\Installer\156c1f7.msi
+ 2011-02-10 08:59 . 2011-02-10 08:59 458752 c:\windows\Installer\{4D568C38-0552-4CDD-A643-01FAFA2957EF}\NewShortcut20_F7578A24A4B240E4BA057EF931EB25B5.exe
+ 2011-02-10 08:59 . 2011-02-10 08:59 458752 c:\windows\Installer\{4D568C38-0552-4CDD-A643-01FAFA2957EF}\NewShortcut16_F7578A24A4B240E4BA057EF931EB25B5.exe
+ 2010-09-20 21:07 . 2010-09-20 21:07 338856 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\readerupdater.exe
+ 2010-09-22 16:10 . 2010-09-22 16:10 103864 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\nppdf32.dll
+ 2010-09-10 16:17 . 2010-09-10 16:17 684032 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\JP2KLib.dll
+ 2010-09-22 18:41 . 2010-09-22 18:41 542168 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\AdobeCollabSync.exe
+ 2010-09-20 21:07 . 2010-09-20 21:07 932288 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\adobearm.exe
+ 2010-09-23 02:47 . 2010-09-23 02:47 349616 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\AcroRd32.exe
+ 2010-09-22 16:04 . 2010-09-22 16:04 660912 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\AcroPDF.dll
+ 2010-09-22 17:39 . 2010-09-22 17:39 280024 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\acrobroker.exe
+ 2010-09-20 21:07 . 2010-09-20 21:07 338856 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\acrobatupdater.exe
+ 2010-09-22 16:50 . 2010-09-22 16:50 251296 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\a3dutility.exe
- 2010-06-26 11:58 . 2010-06-26 11:58 223232 c:\windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
+ 2011-02-02 18:46 . 2011-02-02 18:46 223232 c:\windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
+ 2011-02-02 18:46 . 2011-02-02 18:46 178176 c:\windows\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll
- 2010-06-26 11:58 . 2010-06-26 11:58 178176 c:\windows\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll
- 2010-06-26 11:58 . 2010-06-26 11:58 364544 c:\windows\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll
+ 2011-02-02 18:46 . 2011-02-02 18:46 364544 c:\windows\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll
+ 2011-02-02 18:46 . 2011-02-02 18:46 159232 c:\windows\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll
- 2010-06-26 11:58 . 2010-06-26 11:58 159232 c:\windows\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll
- 2010-06-26 11:58 . 2010-06-26 11:58 145920 c:\windows\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll
+ 2011-02-02 18:46 . 2011-02-02 18:46 145920 c:\windows\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll
- 2010-06-26 11:58 . 2010-06-26 11:58 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-02-02 18:46 . 2011-02-02 18:46 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2010-06-26 11:58 . 2010-06-26 11:58 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-02-02 18:46 . 2011-02-02 18:46 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2010-06-26 11:58 . 2010-06-26 11:58 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-02-02 18:46 . 2011-02-02 18:46 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-02-02 18:46 . 2011-02-02 18:46 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2010-06-26 11:58 . 2010-06-26 11:58 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-02-02 18:46 . 2011-02-02 18:46 577024 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2010-06-26 11:58 . 2010-06-26 11:58 577024 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-02-02 18:46 . 2011-02-02 18:46 576000 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2010-06-26 11:58 . 2010-06-26 11:58 576000 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2010-06-26 11:58 . 2010-06-26 11:58 567296 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-02-02 18:46 . 2011-02-02 18:46 567296 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-02-02 18:46 . 2011-02-02 18:46 563712 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2010-06-26 11:58 . 2010-06-26 11:58 563712 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2010-06-26 11:58 . 2010-06-26 11:58 473600 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
+ 2011-02-02 18:46 . 2011-02-02 18:46 473600 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
+ 2011-09-05 07:54 . 2011-08-19 12:16 1215488 c:\windows\update.tray-8-0\svchost.exe
+ 2011-09-05 07:54 . 2011-08-19 12:16 1215488 c:\windows\update.tray-8-0-lnk\svchost.exe
+ 2011-05-19 11:40 . 2009-01-12 22:00 1060864 c:\windows\twain_32\escndv\es00a8\esui.dll
+ 2011-05-19 11:40 . 2009-02-03 22:00 1961984 c:\windows\twain_32\escndv\es00a8\esimgdet.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 3588096 c:\windows\twain_32\escndv\es00a8\escires.dll
+ 2010-02-26 13:19 . 2010-02-26 13:19 1461992 c:\windows\System32\wdfcoinstaller01009.dll
+ 2011-05-19 11:40 . 2009-11-17 06:00 1468416 c:\windows\System32\spool\drivers\w32x86\3\E_FUICGDE.DLL
+ 2011-05-19 11:40 . 2009-09-10 04:30 1057280 c:\windows\System32\spool\drivers\w32x86\3\E_FSR0GDE.DLL
+ 2009-07-14 02:03 . 2011-08-30 10:19 6815744 c:\windows\System32\SMI\Store\Machine\schema.dat
- 2009-07-14 02:03 . 2010-10-27 15:24 6815744 c:\windows\System32\SMI\Store\Machine\schema.dat
+ 2010-03-18 07:15 . 2010-03-18 07:15 4368720 c:\windows\System32\mfc100u.dll
+ 2010-03-18 07:15 . 2010-03-18 07:15 4342088 c:\windows\System32\mfc100.dll
+ 2010-01-27 01:07 . 2011-06-23 06:53 6271136 c:\windows\System32\Macromed\Flash\NPSWF32.dll
+ 2009-07-14 04:33 . 2011-04-04 04:28 1854008 c:\windows\System32\FNTCACHE.DAT
+ 2011-05-19 11:40 . 2009-01-12 22:00 1060864 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\esui.dll
+ 2011-05-19 11:40 . 2009-02-03 22:00 1961984 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\esimgdet.dll
+ 2011-05-19 11:40 . 2009-01-09 22:00 3588096 c:\windows\System32\DriverStore\FileRepository\esa8.inf_x86_neutral_479d5e115ec3fb41\escires.dll
+ 2011-05-19 11:40 . 2009-11-17 06:00 1468416 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DU3GAE.DLL
+ 2011-05-19 11:40 . 2009-09-10 04:30 1057280 c:\windows\System32\DriverStore\FileRepository\e_df1gde.inf_x86_neutral_5a14cfd32c016a16\WINX86\E_DSG0DE.DLL
+ 2011-05-25 02:50 . 2011-05-25 02:50 4017152 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atiumdva.dll
+ 2011-05-25 02:59 . 2011-05-25 02:59 1828864 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atiumdmv.dll
+ 2011-05-25 02:39 . 2011-05-25 02:39 4330496 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atiumdag.dll
+ 2011-05-25 04:25 . 2011-05-25 04:25 7800832 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atikmdag.sys
+ 2011-05-25 02:58 . 2011-05-25 02:58 4219904 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atidxx32.dll
+ 2011-05-25 02:43 . 2011-05-25 02:43 6847488 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\aticaldd.dll
+ 2011-03-09 03:34 . 2011-03-09 03:34 3471872 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atiumdva.dll
+ 2011-03-09 03:42 . 2011-03-09 03:42 1912832 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atiumdmv.dll
+ 2011-03-09 04:30 . 2011-03-09 04:30 4294656 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atiumdag.dll
+ 2011-03-09 09:21 . 2011-03-09 09:21 7723008 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atikmdag.sys
+ 2011-03-09 04:48 . 2011-03-09 04:48 4277760 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atidxx32.dll
+ 2011-03-09 04:32 . 2011-03-09 04:32 5618688 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\aticaldd.dll
+ 2010-02-26 13:19 . 2010-02-26 13:19 1461992 c:\windows\System32\DriverStore\FileRepository\ccdcmb.inf_x86_neutral_71602fdaa88d0dad\wdfcoinstaller01009.dll
+ 2011-05-25 04:25 . 2011-05-25 04:25 7800832 c:\windows\System32\drivers\atikmdag.sys
+ 2010-11-18 19:22 . 2010-05-26 10:41 1998168 c:\windows\System32\D3DX9_43.dll
- 2010-02-01 19:13 . 2008-07-10 10:00 3851784 c:\windows\System32\D3DX9_39.dll
+ 2011-05-09 08:00 . 2008-07-12 06:18 3851784 c:\windows\System32\D3DX9_39.dll
+ 2010-11-18 19:22 . 2010-05-26 10:41 1868128 c:\windows\System32\d3dcsx_43.dll
+ 2010-11-18 19:22 . 2010-05-26 10:41 2106216 c:\windows\System32\D3DCompiler_43.dll
- 2010-02-01 19:13 . 2008-07-10 10:00 1493528 c:\windows\System32\D3DCompiler_39.dll
+ 2011-05-09 08:00 . 2008-07-12 06:18 1493528 c:\windows\System32\D3DCompiler_39.dll
+ 2010-02-01 19:02 . 2011-09-05 07:59 2752512 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-13 22:09 . 2011-05-25 02:50 4017152 c:\windows\System32\atiumdva.dll
+ 2011-05-25 02:59 . 2011-05-25 02:59 1828864 c:\windows\System32\atiumdmv.dll
+ 2009-06-10 21:19 . 2011-05-25 02:39 4330496 c:\windows\System32\atiumdag.dll
+ 2009-07-13 22:09 . 2011-05-25 02:58 4219904 c:\windows\System32\atidxx32.dll
+ 2011-05-25 02:43 . 2011-05-25 02:43 6847488 c:\windows\System32\aticaldd.dll
+ 2011-02-02 13:39 . 2011-02-02 13:39 1019904 c:\windows\System32\Adobe\Shockwave 11\iml32.dll
+ 2011-02-02 13:35 . 2011-02-02 13:35 2224816 c:\windows\System32\Adobe\Shockwave 11\gt.exe
+ 2011-02-02 13:41 . 2011-02-02 13:41 1802240 c:\windows\System32\Adobe\Shockwave 11\dirapi.dll
- 2009-07-14 04:34 . 2010-09-23 07:04 3607895 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
+ 2009-07-14 04:34 . 2011-04-04 04:31 3607895 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
+ 2011-08-20 11:33 . 2011-09-05 07:52 1827152 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2010-11-22 21:38 . 2011-09-05 07:52 2725868 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2632823556-2644389418-2631035079-1000-12288.dat
+ 2011-03-24 16:10 . 2011-03-24 16:10 1477120 c:\windows\Installer\df49b.msi
+ 2011-04-14 14:46 . 2011-04-14 14:46 3854848 c:\windows\Installer\a7947.msp
+ 2011-08-15 07:04 . 2011-08-15 07:04 3820544 c:\windows\Installer\a40c.msi
+ 2007-09-26 08:53 . 2007-09-26 08:53 3034624 c:\windows\Installer\8d5e62.msi
+ 2007-09-26 08:49 . 2007-09-26 08:49 1761280 c:\windows\Installer\8d5e5c.msi
+ 2007-09-26 08:29 . 2007-09-26 08:29 1829376 c:\windows\Installer\8d5e56.msi
+ 2007-09-26 08:46 . 2007-09-26 08:46 1763840 c:\windows\Installer\8d5e50.msi
+ 2007-09-26 08:44 . 2007-09-26 08:44 1771520 c:\windows\Installer\8d5e4b.msi
+ 2007-09-26 08:52 . 2007-09-26 08:52 2256384 c:\windows\Installer\8d5e46.msi
+ 2007-09-26 08:49 . 2007-09-26 08:49 1772544 c:\windows\Installer\8d5e41.msi
+ 2007-09-26 08:49 . 2007-09-26 08:49 2476032 c:\windows\Installer\8d5e3c.msi
+ 2007-09-26 08:42 . 2007-09-26 08:42 1775616 c:\windows\Installer\8d5e37.msi
+ 2007-09-26 08:54 . 2007-09-26 08:54 1807360 c:\windows\Installer\8d5e32.msi
+ 2007-09-26 08:48 . 2007-09-26 08:48 1781248 c:\windows\Installer\8d5e2d.msi
+ 2007-09-26 08:46 . 2007-09-26 08:46 1790464 c:\windows\Installer\8d5e28.msi
+ 2007-09-26 08:49 . 2007-09-26 08:49 2439680 c:\windows\Installer\8d5e23.msi
+ 2007-09-26 08:50 . 2007-09-26 08:50 2204160 c:\windows\Installer\8d5e1d.msi
+ 2007-09-26 08:43 . 2007-09-26 08:43 1761792 c:\windows\Installer\8d5e18.msi
+ 2007-09-26 08:49 . 2007-09-26 08:49 1762304 c:\windows\Installer\8d5e12.msi
+ 2007-09-26 08:54 . 2007-09-26 08:54 1761792 c:\windows\Installer\8d5e0c.msi
+ 2007-09-26 08:55 . 2007-09-26 08:55 1773568 c:\windows\Installer\8d5e06.msi
+ 2007-09-26 08:33 . 2007-09-26 08:33 1763840 c:\windows\Installer\8d5e01.msi
+ 2007-09-26 08:54 . 2007-09-26 08:54 1807360 c:\windows\Installer\8d5dfc.msi
+ 2007-09-26 08:45 . 2007-09-26 08:45 1798656 c:\windows\Installer\8d5df7.msi
+ 2007-09-26 08:46 . 2007-09-26 08:46 1766400 c:\windows\Installer\8d5df2.msi
+ 2007-09-26 08:52 . 2007-09-26 08:52 2635776 c:\windows\Installer\8d5ded.msi
+ 2007-09-26 08:38 . 2007-09-26 08:38 2424320 c:\windows\Installer\8d5de8.msi
+ 2007-09-26 08:37 . 2007-09-26 08:37 1762304 c:\windows\Installer\8d5de3.msi
+ 2007-09-26 08:34 . 2007-09-26 08:34 1900544 c:\windows\Installer\8d5dde.msi
+ 2011-01-28 12:31 . 2011-01-28 12:31 7855616 c:\windows\Installer\18dc11e.msi
+ 2010-11-28 14:39 . 2010-11-28 14:39 1588224 c:\windows\Installer\182bd7d.msi
+ 2011-06-01 21:26 . 2011-06-01 21:26 6746624 c:\windows\Installer\156c393.msi
+ 2011-06-01 21:22 . 2011-06-01 21:22 1566720 c:\windows\Installer\156c386.msi
+ 2011-06-01 21:26 . 2011-06-01 21:26 1778176 c:\windows\Installer\156c372.msi
+ 2011-06-01 21:22 . 2011-06-01 21:22 5539328 c:\windows\Installer\156c1fd.msi
+ 2011-05-19 11:44 . 2011-05-19 11:44 1193920 c:\windows\Installer\{03B8AA32-F23C-4178-B8E6-09ECD07EAA47}\icon.exe
+ 2010-09-22 16:05 . 2010-09-22 16:05 2405784 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\rt3d.dll
+ 2010-09-16 01:08 . 2010-09-16 01:08 6210560 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\authplay.dll
+ 2010-06-19 15:51 . 2010-06-19 15:51 5713920 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\AGM.dll
+ 2011-02-02 18:46 . 2011-02-02 18:46 2846720 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2010-06-26 11:58 . 2010-06-26 11:58 2846720 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2010-06-26 11:58 . 2010-06-26 11:58 2676224 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-02-02 18:46 . 2011-02-02 18:46 2676224 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2009-07-14 08:40 . 2011-04-03 13:54 21254007 c:\windows\winsxs\ManifestCache\e4e8be02b8fae2a7_blobs.bin
+ 2011-05-25 03:31 . 2011-05-25 03:31 17940992 c:\windows\System32\DriverStore\FileRepository\cw119605.inf_x86_neutral_38ff10d2dbfcb0a5\B119700\atioglxx.dll
+ 2011-03-09 05:19 . 2011-03-09 05:19 17397248 c:\windows\System32\DriverStore\FileRepository\cw115927.inf_x86_neutral_cf034335eb39af16\B114839\atioglxx.dll
+ 2011-05-25 03:31 . 2011-05-25 03:31 17940992 c:\windows\System32\atioglxx.dll
+ 2011-05-24 21:43 . 2011-05-24 21:43 12798976 c:\windows\System32\amdocl.dll
+ 2011-06-08 04:39 . 2011-06-08 04:39 19798016 c:\windows\Installer\35e91.msp
+ 2011-02-10 08:59 . 2011-02-10 08:59 16220160 c:\windows\Installer\1fc1ed.msi
+ 2011-01-28 12:31 . 2011-01-28 12:31 62055424 c:\windows\Installer\18dc1f6.msi
+ 2011-01-28 12:31 . 2011-01-28 12:31 24739328 c:\windows\Installer\18dc152.msi
+ 2009-12-17 18:08 . 2009-12-17 18:08 24360960 c:\windows\Installer\1597fca.msi
+ 2009-11-25 22:14 . 2009-11-25 22:14 81089024 c:\windows\Installer\1597fc5.msi
+ 2011-06-01 21:24 . 2011-06-01 21:24 11005440 c:\windows\Installer\156c37d.msi
+ 2011-01-31 10:45 . 2011-01-31 10:45 11135488 c:\windows\Installer\14fc9.msp
+ 2011-03-13 01:02 . 2011-03-13 01:02 15139328 c:\windows\Installer\14fc8.msp
+ 2010-09-23 14:17 . 2010-09-23 14:17 46407168 c:\windows\Installer\14f4b.msi
+ 2010-09-23 01:03 . 2010-09-23 01:03 20460984 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\AcroRd32.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{7c5c0f58-e061-457d-9033-77307f5ed00c}"= "c:\program files\TorrentMan\tbTorr.dll" [2008-07-27 1606680]
.
[HKEY_CLASSES_ROOT\clsid\{7c5c0f58-e061-457d-9033-77307f5ed00c}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7c5c0f58-e061-457d-9033-77307f5ed00c}]
2008-07-27 20:11 1606680 ----a-w- c:\program files\TorrentMan\tbTorr.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{7c5c0f58-e061-457d-9033-77307f5ed00c}"= "c:\program files\TorrentMan\tbTorr.dll" [2008-07-27 1606680]
.
[HKEY_CLASSES_ROOT\clsid\{7c5c0f58-e061-457d-9033-77307f5ed00c}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{7C5C0F58-E061-457D-9033-77307F5ED00C}"= "c:\program files\TorrentMan\tbTorr.dll" [2008-07-27 1606680]
.
[HKEY_CLASSES_ROOT\clsid\{7c5c0f58-e061-457d-9033-77307f5ed00c}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2010-01-08 1200128]
"Steam"="c:\program files\Steam\steam.exe" [2011-08-02 1242448]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2010-12-21 1483264]
"Pando Media Booster"="c:\program files\Pando Networks\Media Booster\PMB.exe" [2011-08-10 3077528]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NokiaMServer"="c:\program files\Common Files\Nokia\MPlatform\NokiaMServer" [X]
"RemoteControl9"="c:\program files\CyberLink\PowerDVD9\PDVD9Serv.exe" [2009-02-16 87336]
"PDVD9LanguageShortcut"="c:\program files\CyberLink\PowerDVD9\Language\Language.exe" [2008-10-13 50472]
"BDRegion"="c:\program files\Cyberlink\Shared Files\brs.exe" [2009-02-28 75048]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-10-29 141600]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-11-11 417792]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2009-05-22 7514656]
"ATICustomerCare"="c:\program files\ATI\ATICustomerCare\ATICustomerCare.exe" [2009-06-14 307200]
"OpwareSE2"="c:\program files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" [2003-05-08 49152]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-06-08 37296]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
"EEventManager"="c:\program files\Epson Software\Event Manager\EEventManager.exe" [2009-12-03 976320]
"LogMeIn Hamachi Ui"="c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe" [2011-08-04 1955208]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-05-24 336384]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableSecureUIAPaths"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"FirewallOverride"=dword:00000001
"DisableThumbnailCache"=dword:00000001
.
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [x]
R2 gupdate1caa8b87ad3559b;Služba Google Update (gupdate1caa8b87ad3559b);c:\program files\Google\Update\GoogleUpdate.exe [2010-02-08 133104]
R3 FStarForce;FStarForce;c:\windows\system32\DRIVERS\FStarForce.sys [2009-04-08 8704]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2010-02-08 133104]
R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [2009-06-18 42480]
R3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [2010-07-26 137600]
R3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [2010-07-26 8576]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-10-28 691696]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-07-18 218688]
S2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2010/02/01 20:19];c:\program files\CyberLink\PowerDVD9\000.fcl [2009-02-28 18:40 87536]
S2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
S2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-05-25 176128]
S2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [2009-09-14 153600]
S2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [2009-09-14 121856]
S2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\Firebird\Firebird_2_0\bin\fbguard.exe [2008-11-11 81920]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2011-08-04 1361288]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2011-05-25 7800832]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2011-05-25 245760]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2011-03-30 100880]
S3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\Firebird\Firebird_2_0\bin\fbserver.exe [2008-11-11 2015232]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x86.sys [2009-09-28 315392]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
Obsah adresáře 'Naplánované úlohy'
.
2011-09-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-08 12:15]
.
2011-09-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-08 12:15]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://start.icq.com/
uInternet Settings,ProxyOverride = *.local
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MIF5BA~1\Office12\EXCEL.EXE/3000
IE: Easy-WebPrint Add To Print List - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
IE: Easy-WebPrint High Speed Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
IE: Easy-WebPrint Preview - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
IE: Easy-WebPrint Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
FF - ProfilePath - c:\users\milcek\AppData\Roaming\Mozilla\Firefox\Profiles\l2qoapqo.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.1.9&q=
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
FF - Ext: NASA Night Launch: nasanightlaunch@example.com - %profile%\extensions\nasanightlaunch@example.com
.
.
------- Asociace souborů -------
.
.scr=AOEMViewScriptFile
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-Run-avgnt - c:\program files\Avira\AntiVir Desktop\avgnt.exe
HKLM-Run-tray_ico - (no file)
HKLM-Run-tray_ico1 - (no file)
HKLM-Run-tray_ico2 - (no file)
HKLM-Run-tray_ico3 - (no file)
HKLM-Run-tray_ico4 - (no file)
AddRemove-Avira AntiVir Desktop - c:\program files\Avira\AntiVir Desktop\setup.exe
AddRemove-DAEMON Tools Lite - c:\program files\DAEMON Tools Lite\uninst.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD9\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-2632823556-2644389418-2631035079-1000\Software\SecuROM\License information*]
"datasecu"=hex:b1,62,1c,90,bb,28,9b,cf,c5,2f,ff,e3,c6,02,48,3d,de,c9,b4,16,bd,
27,e3,ce,77,d1,e6,cb,b1,86,19,49,70,8c,4f,ae,94,7d,07,dd,67,13,0f,3c,0d,0a,\
"rkeysecu"=hex:29,23,be,84,e1,6c,d6,ae,52,90,49,f1,f1,bb,e9,eb
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(1164)
c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
c:\windows\system32\FXSRESM.DLL
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\atieclxx.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Autodesk\Data Management Server 2009\Server\Dispatch\Connectivity.WindowsService.JobDispatch.exe
c:\program files\Autodesk\Data Management Server 2009\Server\Webserver\Connectivity.EDMWS.Server.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
c:\windows\system32\PnkBstrA.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\windows\system32\taskhost.exe
c:\program files\Google\Update\1.3.21.65\GoogleCrashHandler.exe
c:\windows\system32\conhost.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\sppsvc.exe
.
**************************************************************************
.
Celkový čas: 2011-09-05 10:28:25 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-09-05 08:28
ComboFix2.txt 2010-10-28 10:41
ComboFix3.txt 2010-10-28 09:59
.
Před spuštěním: Volných bajtů: 24 461 844 480
Po spuštění: Volných bajtů: 24 595 931 136
.
- - End Of File - - 278C77732A962D107112ED08BDB9AFA7

#7 Příspěvek od **vyosek** » 05 zář 2011 09:53

Pokud nemate, tak presunte Combofix na plochu

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

KillAll::

Folder::
c:\windows\av_ico
c:\windows\update.tray-8-0
c:\windows\update.tray-8-0-lnk
c:\windows\update.8.1
c:\windows\ufa
C:\Program Files\Common Files\Akamai
C:\Program Files\DAEMON Tools Toolbar

File::
C:\Users\milcek\AppData\Roaming\Mozilla\Firefox\Profiles\l2qoapqo.default\searchplugins\daemon-search.xml
C:\Users\milcek\AppData\Roaming\Mozilla\Firefox\Profiles\l2qoapqo.default\searchplugins\icqplugin.xml
c:\program files\TorrentMan\tbTorr.dll
c:\windows\unrar.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

Collect::
C:\gPotato.com
C:\Users\milcek\Downloads\P17535732.JPG-www.facebook.exe
C:\Users\milcek\Downloads\Flash-Player.exe

Registry::
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Users\milcek\Downloads\P17535732.JPG-www.facebook.exe"=-
"C:\Users\milcek\Downloads\Flash-Player.exe"=-
"C:\Windows\update.1\svchost.exe"=-
"C:\Windows\update.2\svchost.exe"=-
"C:\Windows\update.3\svchost.exe"=-
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{7c5c0f58-e061-457d-9033-77307f5ed00c}"=-
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7c5c0f58-e061-457d-9033-77307f5ed00c}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{7c5c0f58-e061-457d-9033-77307f5ed00c}"=-
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{7C5C0F58-E061-457D-9033-77307F5ED00C}"=-
[-HKEY_CLASSES_ROOT\clsid\{7c5c0f58-e061-457d-9033-77307f5ed00c}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"="-
"Steam"=-
"PC Suite Tray"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NokiaMServer"=-
"RemoteControl9"=-
"PDVD9LanguageShortcut"=-
"BDRegion"=-
"iTunesHelper"=-
"QuickTime Task"=-
"SunJavaUpdateSched"=-
"Adobe Reader Speed Launcher"="-
"Adobe ARM"=-
"LogMeIn Hamachi Ui"=-
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"FirewallOverride"=dword:00000000
"DisableThumbnailCache"=dword:00000000

Driver::
gupdate1caa8b87ad3559b
gupdatem
Akamai

NetSvc::
Akamai

DDS::
uStart Page = hxxp://start.icq.com/

Firefox::
FF - ProfilePath - c:\users\milcek\AppData\Roaming\Mozilla\Firefox\Profiles\l2qoapqo.default\
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_result ... r=1.1.9&q=

RegNull::
[HKEY_USERS\S-1-5-21-2632823556-2644389418-2631035079-1000\Software\SecuROM\License information*]

RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

Reboot::

Ulozte vytvoreny TXT jako CFScript.txt
Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte

Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci

milinn · #8 Příspěvek od **milinn** » 05 zář 2011 11:58

ComboFix 11-09-04.03 - milcek 05.09.2011 10:59:48.4.2 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.2047.1132 [GMT 2:00]
Spuštěný z: c:\users\milcek\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\milcek\Desktop\cfscript.txt
AV: Microsoft Security Essentials *Disabled/Updated* {2E6C4BAB-3371-CD46-62DC-0E0A86B42619}
SP: Microsoft Security Essentials *Disabled/Updated* {950DAA4F-154B-C2C8-586C-3578FD336CA4}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\program files\TorrentMan\tbTorr.dll"
"c:\users\milcek\AppData\Roaming\Mozilla\Firefox\Profiles\l2qoapqo.default\searchplugins\daemon-search.xml"
"c:\users\milcek\AppData\Roaming\Mozilla\Firefox\Profiles\l2qoapqo.default\searchplugins\icqplugin.xml"
"c:\windows\tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\unrar.exe"
.
file zipped: c:\users\milcek\Downloads\P17535732.JPG-www.facebook.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Common Files\Akamai
c:\program files\Common Files\Akamai\AdminTool.exe
c:\program files\Common Files\Akamai\appregistry.dat
c:\program files\Common Files\Akamai\Cache\37309\Autodesk_Inventor_Professional_2009_Czech_Win_64-32bit.part2(2).rar
c:\program files\Common Files\Akamai\client.ini
c:\program files\Common Files\Akamai\client.ini.json
c:\program files\Common Files\Akamai\ControlPanel.exe
c:\program files\Common Files\Akamai\CplTasks.xml
c:\program files\Common Files\Akamai\data.dat
c:\program files\Common Files\Akamai\euc_state.json
c:\program files\Common Files\Akamai\guid.ini
c:\program files\Common Files\Akamai\installer.txt
c:\program files\Common Files\Akamai\Languages\csy.dll
c:\program files\Common Files\Akamai\Languages\dan.dll
c:\program files\Common Files\Akamai\Languages\deu.dll
c:\program files\Common Files\Akamai\Languages\esp.dll
c:\program files\Common Files\Akamai\Languages\fin.dll
c:\program files\Common Files\Akamai\Languages\fra.dll
c:\program files\Common Files\Akamai\Languages\chs.dll
c:\program files\Common Files\Akamai\Languages\cht.dll
c:\program files\Common Files\Akamai\Languages\ita.dll
c:\program files\Common Files\Akamai\Languages\jpn.dll
c:\program files\Common Files\Akamai\Languages\kor.dll
c:\program files\Common Files\Akamai\Languages\nld.dll
c:\program files\Common Files\Akamai\Languages\nor.dll
c:\program files\Common Files\Akamai\Languages\plk.dll
c:\program files\Common Files\Akamai\Languages\ptb.dll
c:\program files\Common Files\Akamai\Languages\ptg.dll
c:\program files\Common Files\Akamai\Languages\rus.dll
c:\program files\Common Files\Akamai\Languages\sve.dll
c:\program files\Common Files\Akamai\Languages\trk.dll
c:\program files\Common Files\Akamai\Logs\debug.log
c:\program files\Common Files\Akamai\Logs\debug.log.110830_075749.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110830_085749.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110830_095750.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110830_105750.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110830_115751.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110830_125752.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110830_135752.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110830_145753.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110830_155754.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110830_165754.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110830_175754.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110830_185754.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110830_195755.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110830_205755.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110830_210925.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110831_051833.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110831_061833.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110831_071834.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110831_081834.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110831_091835.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110831_101835.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110831_111836.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110831_121837.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110831_131837.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110831_141837.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110831_151838.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110831_161839.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110831_171840.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110831_181840.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110831_191841.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110831_201841.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110831_203844.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110901_064213.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110901_074214.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110901_084214.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110901_094215.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110901_104215.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110901_114216.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110901_124216.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110901_134217.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110901_144217.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110901_154217.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110901_164218.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110901_174219.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110901_184219.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110901_194219.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110901_201015.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110902_074641.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110902_084642.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110902_094643.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110902_104643.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110902_113118.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110903_061926.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110903_071926.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110903_081926.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110903_091927.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110903_101928.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110903_111929.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110903_121929.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110903_131930.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110903_141930.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110903_151035.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110904_073920.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110904_074937.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110905_074949.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110905_075249.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110905_075610.sent
c:\program files\Common Files\Akamai\Logs\debug.log.110905_082436.sent
c:\program files\Common Files\Akamai\netsession_win_2da1ebd.dll
c:\program files\Common Files\Akamai\readme.txt
c:\program files\Common Files\Akamai\root.pem
c:\program files\Common Files\Akamai\rswinui.exe
c:\program files\Common Files\Akamai\uninstall.exe
c:\program files\Common Files\Akamai\vcredist_x86.exe
c:\program files\DAEMON Tools Toolbar
c:\program files\DAEMON Tools Toolbar\DTToolbar.dll
c:\program files\DAEMON Tools Toolbar\Resources\about.ico
c:\program files\DAEMON Tools Toolbar\Resources\AboutWindow.ico
c:\program files\DAEMON Tools Toolbar\Resources\accept.ico
c:\program files\DAEMON Tools Toolbar\Resources\AddRadioStation.ico
c:\program files\DAEMON Tools Toolbar\Resources\as.ico
c:\program files\DAEMON Tools Toolbar\Resources\as.png
c:\program files\DAEMON Tools Toolbar\Resources\astro.ico
c:\program files\DAEMON Tools Toolbar\Resources\astro_buy.ico
c:\program files\DAEMON Tools Toolbar\Resources\astro_download.ico
c:\program files\DAEMON Tools Toolbar\Resources\astro_feedback.ico
c:\program files\DAEMON Tools Toolbar\Resources\astro_forum.ico
c:\program files\DAEMON Tools Toolbar\Resources\astro_home.ico
c:\program files\DAEMON Tools Toolbar\Resources\astro_lite.ico
c:\program files\DAEMON Tools Toolbar\Resources\astroburn_site.ico
c:\program files\DAEMON Tools Toolbar\Resources\astroLite_16.ico
c:\program files\DAEMON Tools Toolbar\Resources\az.ico
c:\program files\DAEMON Tools Toolbar\Resources\b1.png
c:\program files\DAEMON Tools Toolbar\Resources\burn_files.ico
c:\program files\DAEMON Tools Toolbar\Resources\burn_image.ico
c:\program files\DAEMON Tools Toolbar\Resources\burn_imgs.ico
c:\program files\DAEMON Tools Toolbar\Resources\BurnImage.ico
c:\program files\DAEMON Tools Toolbar\Resources\buy.ico
c:\program files\DAEMON Tools Toolbar\Resources\Config.ico
c:\program files\DAEMON Tools Toolbar\Resources\d.ico
c:\program files\DAEMON Tools Toolbar\Resources\d2.ico
c:\program files\DAEMON Tools Toolbar\Resources\daemon.ico
c:\program files\DAEMON Tools Toolbar\Resources\daemon_search.ico
c:\program files\DAEMON Tools Toolbar\Resources\daemon_search_site.ico
c:\program files\DAEMON Tools Toolbar\Resources\dot_disabled.bmp
c:\program files\DAEMON Tools Toolbar\Resources\dot_enabled.bmp
c:\program files\DAEMON Tools Toolbar\Resources\dot_on_over.bmp
c:\program files\DAEMON Tools Toolbar\Resources\download.ico
c:\program files\DAEMON Tools Toolbar\Resources\ds.ico
c:\program files\DAEMON Tools Toolbar\Resources\dsearch.ico
c:\program files\DAEMON Tools Toolbar\Resources\dt-home.ico
c:\program files\DAEMON Tools Toolbar\Resources\dt.ico
c:\program files\DAEMON Tools Toolbar\Resources\dt_about.ico
c:\program files\DAEMON Tools Toolbar\Resources\dt_buy.ico
c:\program files\DAEMON Tools Toolbar\Resources\dt_download.ico
c:\program files\DAEMON Tools Toolbar\Resources\dt_faq.ico
c:\program files\DAEMON Tools Toolbar\Resources\dt_feedback.ico
c:\program files\DAEMON Tools Toolbar\Resources\dt_forum.ico
c:\program files\DAEMON Tools Toolbar\Resources\dt_line.ico
c:\program files\DAEMON Tools Toolbar\Resources\dt_lite.ico
c:\program files\DAEMON Tools Toolbar\Resources\dt_manual.ico
c:\program files\DAEMON Tools Toolbar\Resources\dt_pro.ico
c:\program files\DAEMON Tools Toolbar\Resources\DTPro.ico
c:\program files\DAEMON Tools Toolbar\Resources\dtt16.ico
c:\program files\DAEMON Tools Toolbar\Resources\dtt32.ico
c:\program files\DAEMON Tools Toolbar\Resources\Dwnl.ico
c:\program files\DAEMON Tools Toolbar\Resources\emulation.ico
c:\program files\DAEMON Tools Toolbar\Resources\favicon.ico
c:\program files\DAEMON Tools Toolbar\Resources\features.ico
c:\program files\DAEMON Tools Toolbar\Resources\feedback.ico
c:\program files\DAEMON Tools Toolbar\Resources\forum.ico
c:\program files\DAEMON Tools Toolbar\Resources\GameCentrix.ico
c:\program files\DAEMON Tools Toolbar\Resources\GameCentrixCristals.ico
c:\program files\DAEMON Tools Toolbar\Resources\GameCentrixDownload.ico
c:\program files\DAEMON Tools Toolbar\Resources\GameCentrixPlayOnline.ico
c:\program files\DAEMON Tools Toolbar\Resources\GameCentrixTop.ico
c:\program files\DAEMON Tools Toolbar\Resources\GameS.ico
c:\program files\DAEMON Tools Toolbar\Resources\games_search.ico
c:\program files\DAEMON Tools Toolbar\Resources\games_search_SA.ico
c:\program files\DAEMON Tools Toolbar\Resources\GameSA.ico
c:\program files\DAEMON Tools Toolbar\Resources\gct16.ico
c:\program files\DAEMON Tools Toolbar\Resources\gd.ico
c:\program files\DAEMON Tools Toolbar\Resources\genre.xml
c:\program files\DAEMON Tools Toolbar\Resources\globe.ico
c:\program files\DAEMON Tools Toolbar\Resources\GrabImage.ico
c:\program files\DAEMON Tools Toolbar\Resources\hb.bmp
c:\program files\DAEMON Tools Toolbar\Resources\hb.ico
c:\program files\DAEMON Tools Toolbar\Resources\help.ico
c:\program files\DAEMON Tools Toolbar\Resources\hide.ico
c:\program files\DAEMON Tools Toolbar\Resources\home.ico
c:\program files\DAEMON Tools Toolbar\Resources\image_search.ico
c:\program files\DAEMON Tools Toolbar\Resources\image_search_SA.ico
c:\program files\DAEMON Tools Toolbar\Resources\ImageS.ico
c:\program files\DAEMON Tools Toolbar\Resources\ImageSA.ico
c:\program files\DAEMON Tools Toolbar\Resources\ip.ico
c:\program files\DAEMON Tools Toolbar\Resources\lang.xml
c:\program files\DAEMON Tools Toolbar\Resources\lingvo.ico
c:\program files\DAEMON Tools Toolbar\Resources\m.ico
c:\program files\DAEMON Tools Toolbar\Resources\mail.bmp
c:\program files\DAEMON Tools Toolbar\Resources\mail_disable.bmp
c:\program files\DAEMON Tools Toolbar\Resources\mail_down.bmp
c:\program files\DAEMON Tools Toolbar\Resources\mail_m.bmp
c:\program files\DAEMON Tools Toolbar\Resources\mail_under.bmp
c:\program files\DAEMON Tools Toolbar\Resources\mailc.bmp
c:\program files\DAEMON Tools Toolbar\Resources\mailc_disable.bmp
c:\program files\DAEMON Tools Toolbar\Resources\mailc_down.bmp
c:\program files\DAEMON Tools Toolbar\Resources\mailc_m.bmp
c:\program files\DAEMON Tools Toolbar\Resources\mailc_under.bmp
c:\program files\DAEMON Tools Toolbar\Resources\MenuRadioConfig.ico
c:\program files\DAEMON Tools Toolbar\Resources\MenuRadioStation.ico
c:\program files\DAEMON Tools Toolbar\Resources\MenuRSCur.ico
c:\program files\DAEMON Tools Toolbar\Resources\MenuTr.ico
c:\program files\DAEMON Tools Toolbar\Resources\mount.ico
c:\program files\DAEMON Tools Toolbar\Resources\mount_n_drive.ico
c:\program files\DAEMON Tools Toolbar\Resources\next.bmp
c:\program files\DAEMON Tools Toolbar\Resources\next_down.bmp
c:\program files\DAEMON Tools Toolbar\Resources\next_m.bmp
c:\program files\DAEMON Tools Toolbar\Resources\next_under.bmp
c:\program files\DAEMON Tools Toolbar\Resources\none.bmp
c:\program files\DAEMON Tools Toolbar\Resources\none_m.bmp
c:\program files\DAEMON Tools Toolbar\Resources\op.ico
c:\program files\DAEMON Tools Toolbar\Resources\play.bmp
c:\program files\DAEMON Tools Toolbar\Resources\play.ico
c:\program files\DAEMON Tools Toolbar\Resources\play_down.bmp
c:\program files\DAEMON Tools Toolbar\Resources\play_m.bmp
c:\program files\DAEMON Tools Toolbar\Resources\play_under.bmp
c:\program files\DAEMON Tools Toolbar\Resources\pragma.ico
c:\program files\DAEMON Tools Toolbar\Resources\prev.bmp
c:\program files\DAEMON Tools Toolbar\Resources\prev_down.bmp
c:\program files\DAEMON Tools Toolbar\Resources\prev_m.bmp
c:\program files\DAEMON Tools Toolbar\Resources\prev_under.bmp
c:\program files\DAEMON Tools Toolbar\Resources\prod.ico
c:\program files\DAEMON Tools Toolbar\Resources\Radio.ico
c:\program files\DAEMON Tools Toolbar\Resources\RadioBg.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioBg.ico
c:\program files\DAEMON Tools Toolbar\Resources\RadioBgMask.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioDisp.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioDisp_m.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioDown.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioDown.ico
c:\program files\DAEMON Tools Toolbar\Resources\RadioDown_down.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioDown_m.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioDown_under.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioE.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioG.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioL.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioLDotMask.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioLeft.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioLeftMask.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioLM.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioM.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioN.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioR.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioR.ico
c:\program files\DAEMON Tools Toolbar\Resources\RadioRM.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioRU.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioVolume.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioVolume_down.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioVolume_m.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioVolume_under.bmp
c:\program files\DAEMON Tools Toolbar\Resources\RadioW.bmp
c:\program files\DAEMON Tools Toolbar\Resources\rbcheck.ico
c:\program files\DAEMON Tools Toolbar\Resources\rbtxt.ico
c:\program files\DAEMON Tools Toolbar\Resources\refresh.bmp
c:\program files\DAEMON Tools Toolbar\Resources\refresh_down.bmp
c:\program files\DAEMON Tools Toolbar\Resources\refresh_m.bmp
c:\program files\DAEMON Tools Toolbar\Resources\refresh_under.bmp
c:\program files\DAEMON Tools Toolbar\Resources\Rss.ico
c:\program files\DAEMON Tools Toolbar\Resources\Rss1.ico
c:\program files\DAEMON Tools Toolbar\Resources\RssA.ico
c:\program files\DAEMON Tools Toolbar\Resources\RssA1.ico
c:\program files\DAEMON Tools Toolbar\Resources\rssClose.ico
c:\program files\DAEMON Tools Toolbar\Resources\rssL.bmp
c:\program files\DAEMON Tools Toolbar\Resources\rssOpen.ico
c:\program files\DAEMON Tools Toolbar\Resources\RssRefresh.ico
c:\program files\DAEMON Tools Toolbar\Resources\s2.ico
c:\program files\DAEMON Tools Toolbar\Resources\show.ico
c:\program files\DAEMON Tools Toolbar\Resources\size.bmp
c:\program files\DAEMON Tools Toolbar\Resources\size_lr.ico
c:\program files\DAEMON Tools Toolbar\Resources\size_m.bmp
c:\program files\DAEMON Tools Toolbar\Resources\size_rl.ico
c:\program files\DAEMON Tools Toolbar\Resources\skins.ico
c:\program files\DAEMON Tools Toolbar\Resources\spt.ico
c:\program files\DAEMON Tools Toolbar\Resources\stop.bmp
c:\program files\DAEMON Tools Toolbar\Resources\stop.ico
c:\program files\DAEMON Tools Toolbar\Resources\stop_down.bmp
c:\program files\DAEMON Tools Toolbar\Resources\stop_m.bmp
c:\program files\DAEMON Tools Toolbar\Resources\stop_under.bmp
c:\program files\DAEMON Tools Toolbar\Resources\style.ico
c:\program files\DAEMON Tools Toolbar\Resources\SupportRequest.ico
c:\program files\DAEMON Tools Toolbar\Resources\timer.ico
c:\program files\DAEMON Tools Toolbar\Resources\TitleIcon.ico
c:\program files\DAEMON Tools Toolbar\Resources\toolbar.xml
c:\program files\DAEMON Tools Toolbar\Resources\trans.ico
c:\program files\DAEMON Tools Toolbar\Resources\Trash.bmp
c:\program files\DAEMON Tools Toolbar\Resources\Trash_disable.bmp
c:\program files\DAEMON Tools Toolbar\Resources\Trash_down.bmp
c:\program files\DAEMON Tools Toolbar\Resources\Trash_m.bmp
c:\program files\DAEMON Tools Toolbar\Resources\Trash_under.bmp
c:\program files\DAEMON Tools Toolbar\Resources\u.ico
c:\program files\DAEMON Tools Toolbar\Resources\unmount-all.ico
c:\program files\DAEMON Tools Toolbar\Resources\vol.bmp
c:\program files\DAEMON Tools Toolbar\Resources\vol.ico
c:\program files\DAEMON Tools Toolbar\Resources\vol_back.bmp
c:\program files\DAEMON Tools Toolbar\Resources\vol_dott.bmp
c:\program files\DAEMON Tools Toolbar\Resources\vol_dott_m.bmp
c:\program files\DAEMON Tools Toolbar\Resources\vol_down.bmp
c:\program files\DAEMON Tools Toolbar\Resources\vol_m.bmp
c:\program files\DAEMON Tools Toolbar\Resources\vol_mute.bmp
c:\program files\DAEMON Tools Toolbar\Resources\vol_mute_check.bmp
c:\program files\DAEMON Tools Toolbar\Resources\vol_under.bmp
c:\program files\DAEMON Tools Toolbar\Resources\wBtClose.bmp
c:\program files\DAEMON Tools Toolbar\Resources\wBtClose_down.bmp
c:\program files\DAEMON Tools Toolbar\Resources\wBtClose_m.bmp
c:\program files\DAEMON Tools Toolbar\Resources\wBtClose_under.bmp
c:\program files\DAEMON Tools Toolbar\Resources\wBtText.bmp
c:\program files\DAEMON Tools Toolbar\Resources\wBtText_down.bmp
c:\program files\DAEMON Tools Toolbar\Resources\wBtText_m.bmp
c:\program files\DAEMON Tools Toolbar\Resources\wBtText_under.bmp
c:\program files\DAEMON Tools Toolbar\Resources\web_resources.ico
c:\program files\DAEMON Tools Toolbar\Resources\web_search.ico
c:\program files\DAEMON Tools Toolbar\Resources\web_search_SA.ico
c:\program files\DAEMON Tools Toolbar\Resources\WebS.ico
c:\program files\DAEMON Tools Toolbar\Resources\WebSa.ico
c:\program files\DAEMON Tools Toolbar\Resources\wi.ico
c:\program files\DAEMON Tools Toolbar\Resources\wi0.ico
c:\program files\DAEMON Tools Toolbar\Resources\wi1.ico
c:\program files\DAEMON Tools Toolbar\Resources\wi10.ico
c:\program files\DAEMON Tools Toolbar\Resources\wi11.ico
c:\program files\DAEMON Tools Toolbar\Resources\wi12.ico
c:\program files\DAEMON Tools Toolbar\Resources\wi13.ico
c:\program files\DAEMON Tools Toolbar\Resources\wi14.ico
c:\program files\DAEMON Tools Toolbar\Resources\wi2.ico
c:\program files\DAEMON Tools Toolbar\Resources\wi3.ico
c:\program files\DAEMON Tools Toolbar\Resources\wi4.ico
c:\program files\DAEMON Tools Toolbar\Resources\wi5.ico
c:\program files\DAEMON Tools Toolbar\Resources\wi6.ico
c:\program files\DAEMON Tools Toolbar\Resources\wi7.ico
c:\program files\DAEMON Tools Toolbar\Resources\wi8.ico
c:\program files\DAEMON Tools Toolbar\Resources\wi9.ico
c:\program files\DAEMON Tools Toolbar\uninst.exe
c:\program files\TorrentMan\tbTorr.dll
c:\users\milcek\AppData\Roaming\Mozilla\Firefox\Profiles\l2qoapqo.default\searchplugins\daemon-search.xml
c:\users\milcek\AppData\Roaming\Mozilla\Firefox\Profiles\l2qoapqo.default\searchplugins\icqplugin.xml
c:\users\milcek\Downloads\P17535732.JPG-www.facebook.exe
c:\windows\av_ico
c:\windows\av_ico\ico_avira_start.ico
c:\windows\tasks\GoogleUpdateTaskMachineCore.job
c:\windows\tasks\GoogleUpdateTaskMachineUA.job
c:\windows\ufa
c:\windows\ufa\ufa.exe
c:\windows\unrar.exe
c:\windows\update.8.1
c:\windows\update.tray-8-0-lnk
c:\windows\update.tray-8-0-lnk\svchost.exe
c:\windows\update.tray-8-0
c:\windows\update.tray-8-0\svchost.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_Akamai
-------\Service_gupdate1caa8b87ad3559b
-------\Service_gupdatem
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-08-05 do 2011-09-05 )))))))))))))))))))))))))))))))
.
.
2011-09-05 09:06 . 2011-09-05 10:46 -------- d-----w- c:\users\milcek\AppData\Local\temp
2011-09-05 09:06 . 2011-09-05 09:06 -------- d-----w- c:\users\Public\AppData\Local\temp
2011-09-05 09:06 . 2011-09-05 09:06 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-09-05 07:51 . 2010-08-02 14:10 60936 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-09-05 07:51 . 2010-08-02 14:10 126856 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-08-30 11:03 . 2011-08-30 11:03 -------- d-----w- c:\users\milcek\AppData\Local\Opera
2011-08-30 11:03 . 2011-09-05 08:06 -------- d-----w- c:\program files\Opera
2011-08-26 22:21 . 2011-08-26 22:21 42392 ----a-w- c:\windows\system32\xfcodec.dll
2011-08-19 12:44 . 2011-08-19 12:44 -------- d-----w- c:\programdata\ATI
2011-08-19 12:44 . 2011-08-19 12:44 -------- d-----w- c:\program files\AMD APP
2011-08-19 12:39 . 2011-08-19 12:39 -------- d-----w- c:\users\Default\AppData\Roaming\ATI
2011-08-19 12:39 . 2011-08-19 12:39 -------- d-----w- c:\users\Default\AppData\Local\ATI
2011-08-15 07:04 . 2011-08-15 07:04 -------- d-----w- c:\program files\LogMeIn Hamachi
2011-08-11 00:00 . 2011-08-11 00:00 -------- d-----w- C:\gPotato.com
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-07-18 13:26 . 2011-07-18 13:26 218688 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-06-23 06:53 . 2011-06-02 07:49 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2010-10-26 13:12 . 2010-10-26 15:38 675840 ----a-w- c:\program files\Uninstall SmileyCentral.dll
.
.
((((((((((((((((((((((((((((( SnapShot_2011-09-05_08.24.49 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-02-01 19:12 . 2011-09-05 09:10 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-02-01 19:12 . 2011-09-05 08:25 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-02-01 19:12 . 2011-09-05 08:25 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2010-02-01 19:12 . 2011-09-05 09:10 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2010-02-01 19:12 . 2011-09-05 09:10 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2010-02-01 19:12 . 2011-09-05 08:25 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2010-02-01 19:12 . 2011-09-05 08:25 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2010-02-01 19:12 . 2011-09-05 09:10 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2010-02-01 19:12 . 2011-09-05 09:10 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2010-02-01 19:12 . 2011-09-05 08:25 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-09-05 07:55 . 2011-09-05 09:08 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2011-09-05 07:55 . 2011-09-05 08:24 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2011-09-05 07:55 . 2011-09-05 08:24 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-09-05 07:55 . 2011-09-05 09:08 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2009-07-14 02:03 . 2011-09-05 09:55 6815744 c:\windows\System32\SMI\Store\Machine\schema.dat
- 2009-07-14 02:03 . 2011-08-30 10:19 6815744 c:\windows\System32\SMI\Store\Machine\schema.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2010-01-08 1200128]
"Pando Media Booster"="c:\program files\Pando Networks\Media Booster\PMB.exe" [2011-08-10 3077528]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2009-05-22 7514656]
"ATICustomerCare"="c:\program files\ATI\ATICustomerCare\ATICustomerCare.exe" [2009-06-14 307200]
"OpwareSE2"="c:\program files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" [2003-05-08 49152]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-06-08 37296]
"EEventManager"="c:\program files\Epson Software\Event Manager\EEventManager.exe" [2009-12-03 976320]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-05-24 336384]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableSecureUIAPaths"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [x]
R3 CFcatchme;CFcatchme;c:\users\milcek\AppData\Local\Temp\CFcatchme.sys [x]
R3 FStarForce;FStarForce;c:\windows\system32\DRIVERS\FStarForce.sys [2009-04-08 8704]
R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [2009-06-18 42480]
R3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [2010-07-26 137600]
R3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [2010-07-26 8576]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-10-28 691696]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-07-18 218688]
S2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2010/02/01 20:19];c:\program files\CyberLink\PowerDVD9\000.fcl [2009-02-28 18:40 87536]
S2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-05-25 176128]
S2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [2009-09-14 153600]
S2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [2009-09-14 121856]
S2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\Firebird\Firebird_2_0\bin\fbguard.exe [2008-11-11 81920]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2011-08-04 1361288]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2011-05-25 7800832]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2011-05-25 245760]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2011-03-30 100880]
S3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\Firebird\Firebird_2_0\bin\fbserver.exe [2008-11-11 2015232]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x86.sys [2009-09-28 315392]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
.
------- Doplňkový sken -------
.
uInternet Settings,ProxyOverride = *.local
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MIF5BA~1\Office12\EXCEL.EXE/3000
IE: Easy-WebPrint Add To Print List - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
IE: Easy-WebPrint High Speed Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
IE: Easy-WebPrint Preview - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
IE: Easy-WebPrint Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\milcek\AppData\Roaming\Mozilla\Firefox\Profiles\l2qoapqo.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
FF - Ext: NASA Night Launch: nasanightlaunch@example.com - %profile%\extensions\nasanightlaunch@example.com
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-Akamai - c:\program files\Common Files\Akamai\uninstall.exe
AddRemove-DAEMON Tools Toolbar - c:\program files\DAEMON Tools Toolbar\uninst.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD9\000.fcl"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(2880)
c:\windows\System32\ieframe.dll
c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\atieclxx.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Autodesk\Data Management Server 2009\Server\Dispatch\Connectivity.WindowsService.JobDispatch.exe
c:\program files\Autodesk\Data Management Server 2009\Server\Webserver\Connectivity.EDMWS.Server.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
c:\windows\system32\PnkBstrA.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\taskhost.exe
c:\program files\Google\Update\GoogleUpdate.exe
c:\program files\Google\Update\1.3.21.65\GoogleCrashHandler.exe
c:\windows\system32\conhost.exe
.
**************************************************************************
.
Celkový čas: 2011-09-05 12:48:44 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-09-05 10:48
ComboFix2.txt 2011-09-05 08:28
ComboFix3.txt 2010-10-28 10:41
ComboFix4.txt 2010-10-28 09:59
.
Před spuštěním: Volných bajtů: 24 650 821 632
Po spuštění: Volných bajtů: 24 612 540 416
.
- - End Of File - - 1713325E96B3B58986081DECF373CE3F
Nahr nˇ probŘhlo ŁspŘçnŘ

#9 Příspěvek od **vyosek** » 05 zář 2011 12:19

Odinstalujte Combofix

Prejmenujte ComboFix na Uninstall
Spustte jej
Tohle smaze Combofix a jeho slozky

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

v nouzovem rezimu (restart PC, mackat F8, zvolit Stav nouze s praci v siti) projedte PC temito utilitami, at se zbavime zbytku antiviru co tam mate

http://dlpro.antivir.com/package/remova ... n32-en.exe

Stahnete Ccleaner (viz muj podpis)
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

Nainstalujte Avast nebo Aviru

Dejte novy log z RSIT a napiste jak se chova PC

VIRY.CZ

Pomalé PC + samovolný upload

Pomalé PC + samovolný upload

Re: Pomalé PC + samovolný upload

Re: Pomalé PC + samovolný upload

Re: Pomalé PC + samovolný upload

Re: Pomalé PC + samovolný upload

Re: Pomalé PC + samovolný upload

Re: Pomalé PC + samovolný upload

Re: Pomalé PC + samovolný upload

Re: Pomalé PC + samovolný upload