chtěl bych požadat o pomoc:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Jetyxx at 2011-11-14 17:59:08
Microsoft Windows XP Home Edition Service Pack 2
System drive C: has 104 GB (54%) free of 191 GB
Total RAM: 1023 MB (25% free)
HijackThis download failed
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL [2006-10-26 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-11-09 42272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-11-09 79648]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"CHotkey"=C:\WINDOWS\mHotkey.exe [2002-07-23 477184]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2005-01-20 77824]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-11-17 7700480]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2006-11-17 86016]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-26 31016]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]
"HTC Sync Loader"=C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2011-03-08 585728]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]
"Malwarebytes' Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2010-11-29 963976]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-08-02 4910912]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2004-08-18 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2010-10-11 14940040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL [2006-10-26 2210608]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\BitTorrent\BitTorrent.exe"="C:\Program Files\BitTorrent\BitTorrent.exe:*:Enabled:BitTorrent"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Garena Classic\Garena.exe"="C:\Program Files\Garena Classic\Garena.exe:*:Enabled:Garena"
"C:\Program Files\Garena Plus\Room\garena_room.exe"="C:\Program Files\Garena Plus\Room\garena_room.exe:*:Enabled:Garena"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"msacm.lhacm"=lhacm.acm
======List of files/folders created in the last 1 month======
2011-11-14 17:28:26 ----A---- C:\WINDOWS\system32\drivers\giiht.sys
2011-11-14 13:55:37 ----A---- C:\Documents and Settings\Jetyxx\Data aplikací\7.exe
2011-11-14 13:55:33 ----A---- C:\Documents and Settings\Jetyxx\Data aplikací\6.tmp
2011-11-12 11:42:04 ----SHD---- C:\RECYCLER
2011-11-12 03:59:34 ----A---- C:\Documents and Settings\Jetyxx\Data aplikací\6.exe
2011-11-11 14:29:23 ----A---- C:\Documents and Settings\Jetyxx\Data aplikací\14B.tmp
2011-11-11 12:43:54 ----RD---- C:\Program Files\Skype
2011-11-11 12:43:54 ----D---- C:\Program Files\Common Files\Skype
2011-11-11 06:34:44 ----A---- C:\Documents and Settings\Jetyxx\Data aplikací\5.tmp
2011-11-11 06:34:41 ----A---- C:\Documents and Settings\Jetyxx\Data aplikací\4.exe
2011-11-10 17:22:36 ----A---- C:\Documents and Settings\Jetyxx\Data aplikací\4A.exe
2011-11-10 13:56:14 ----D---- C:\Documents and Settings\Jetyxx\Data aplikací\Malwarebytes
2011-11-10 13:56:06 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2011-11-10 13:56:06 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2011-11-10 13:56:03 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-11-10 13:56:03 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2011-11-10 13:55:25 ----A---- C:\TDSSKiller.2.5.1.0_10.11.2011_13.55.25_log.txt
2011-11-10 13:35:55 ----A---- C:\ComboFix.txt
2011-11-10 11:50:01 ----A---- C:\Boot.bak
2011-11-10 11:49:58 ----RASHD---- C:\cmdcons
2011-11-10 11:48:14 ----A---- C:\WINDOWS\NIRCMD.exe
2011-11-10 11:38:45 ----A---- C:\WINDOWS\zip.exe
2011-11-10 11:38:45 ----A---- C:\WINDOWS\SWXCACLS.exe
2011-11-10 11:38:45 ----A---- C:\WINDOWS\SWSC.exe
2011-11-10 11:38:45 ----A---- C:\WINDOWS\SWREG.exe
2011-11-10 11:38:45 ----A---- C:\WINDOWS\sed.exe
2011-11-10 11:38:45 ----A---- C:\WINDOWS\PEV.exe
2011-11-10 11:38:45 ----A---- C:\WINDOWS\MBR.exe
2011-11-10 11:38:45 ----A---- C:\WINDOWS\grep.exe
2011-11-10 11:38:35 ----D---- C:\WINDOWS\ERDNT
2011-11-10 11:34:37 ----D---- C:\Qoobox
2011-11-10 11:24:23 ----D---- C:\Program Files\trend micro
2011-11-10 11:24:22 ----D---- C:\rsit
2011-11-09 23:24:19 ----D---- C:\Documents and Settings\Jetyxx\Data aplikací\ESET
2011-11-09 23:22:50 ----D---- C:\Program Files\Common Files\Java
2011-11-09 23:22:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2011-11-09 23:22:42 ----A---- C:\WINDOWS\system32\javaws.exe
2011-11-09 23:22:42 ----A---- C:\WINDOWS\system32\javaw.exe
2011-11-09 23:22:42 ----A---- C:\WINDOWS\system32\java.exe
2011-11-09 23:22:42 ----A---- C:\WINDOWS\system32\deployJava1.dll
2011-11-09 23:22:34 ----D---- C:\Program Files\Java
2011-11-09 23:21:54 ----D---- C:\Documents and Settings\Jetyxx\Data aplikací\Sun
2011-11-09 23:21:13 ----D---- C:\Program Files\ESET
2011-11-08 19:27:29 ----D---- C:\Program Files\CCleaner
2011-11-07 23:44:13 ----D---- C:\Documents and Settings\Jetyxx\Data aplikací\HTC.388BC06ACDAB6261375BCE37FBA2E023C0D7EE34.1
2011-11-06 20:30:55 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll
2011-11-05 18:12:26 ----A---- C:\WINDOWS\system32\drivers\usb8023x.sys
2011-11-05 18:12:26 ----A---- C:\WINDOWS\system32\drivers\rndismpx.sys
2011-11-05 17:39:20 ----A---- C:\WINDOWS\system32\WdfCoInstaller01007.dll
2011-11-05 17:39:20 ----A---- C:\WINDOWS\system32\drivers\ANDROIDUSB.sys
2011-11-05 17:39:18 ----D---- C:\Program Files\Spirent Communications
2011-11-05 17:38:52 ----D---- C:\WINDOWS\system32\drivers\umdf
2011-11-05 14:47:42 ----D---- C:\Config.Msi
2011-11-05 13:31:36 ----AH---- C:\WINDOWS\system32\ezsidmv.dat
2011-11-05 13:31:34 ----D---- C:\Documents and Settings\Jetyxx\Data aplikací\skypePM
2011-11-05 13:30:37 ----D---- C:\Program Files\Skype(2)
2011-11-04 22:01:39 ----HDC---- C:\WINDOWS\$NtUninstallWdf01007$
2011-11-04 21:49:13 ----D---- C:\Documents and Settings\Jetyxx\Data aplikací\HTC
2011-11-04 21:47:52 ----D---- C:\Program Files\HTC
2011-11-04 21:47:50 ----D---- C:\Program Files\Common Files\Adobe AIR
2011-11-04 21:47:21 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2011-11-04 21:46:57 ----D---- C:\Program Files\MSXML 4.0
2011-10-27 20:41:12 ----D---- C:\Documents and Settings\Jetyxx\Data aplikací\teamspeak2
2011-10-27 20:40:43 ----D---- C:\Program Files\Teamspeak2_RC2
2011-10-21 16:46:11 ----D---- C:\Documents and Settings\Jetyxx\Data aplikací\Dev-Cpp
2011-10-21 16:45:58 ----D---- C:\Dev-Cpp
2011-10-21 15:10:38 ----D---- C:\Program Files\Stardock
2011-10-21 15:02:04 ----D---- C:\Documents and Settings\Jetyxx\Data aplikací\Rainmeter
2011-10-21 14:44:03 ----A---- C:\WINDOWS\msvcr90.dll
2011-10-21 14:44:03 ----A---- C:\WINDOWS\msvcr80.dll
2011-10-21 14:44:03 ----A---- C:\WINDOWS\msvcr71.dll
2011-10-21 14:44:03 ----A---- C:\WINDOWS\msvcr70.dll
2011-10-21 14:44:03 ----A---- C:\WINDOWS\msvcr100.dll
2011-10-21 14:44:03 ----A---- C:\WINDOWS\msvcp80.dll
2011-10-21 14:44:03 ----A---- C:\WINDOWS\msvcp71.dll
2011-10-21 14:17:30 ----D---- C:\WINDOWS\SxsCaPendDel
2011-10-21 14:16:25 ----A---- C:\WINDOWS\spyxx.INI
2011-10-21 13:56:41 ----D---- C:\Documents and Settings\Jetyxx\Data aplikací\GetRightToGo
2011-10-19 14:08:35 ----D---- C:\Documents and Settings\Jetyxx\Data aplikací\GarenaPlus
2011-10-19 14:08:11 ----D---- C:\Program Files\Garena Plus
2011-10-19 14:08:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\GarenaMessenger
======List of files/folders modified in the last 1 month======
2011-11-14 17:57:23 ----D---- C:\Documents and Settings\Jetyxx\Data aplikací\Skype
2011-11-14 17:28:26 ----D---- C:\WINDOWS\system32\drivers
2011-11-14 17:08:19 ----D---- C:\WINDOWS\Prefetch
2011-11-14 16:37:25 ----D---- C:\Program Files\Warcraft III Frozen Throne eSK
2011-11-14 16:02:39 ----D---- C:\WINDOWS\system32\CatRoot2
2011-11-14 13:59:15 ----D---- C:\WINDOWS\system32
2011-11-14 13:59:15 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-11-14 13:57:17 ----D---- C:\WINDOWS\Temp
2011-11-14 13:54:49 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2011-11-14 07:53:25 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-11-14 07:18:01 ----RSD---- C:\WINDOWS\assembly
2011-11-14 07:17:30 ----D---- C:\WINDOWS\Microsoft.NET
2011-11-14 00:49:46 ----SHD---- C:\WINDOWS\Installer
2011-11-14 00:49:10 ----D---- C:\WINDOWS\WinSxS
2011-11-14 00:48:45 ----D---- C:\WINDOWS\system32\mui
2011-11-14 00:48:45 ----D---- C:\Program Files\Internet Explorer
2011-11-13 14:07:13 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2011-11-13 00:06:24 ----D---- C:\WINDOWS
2011-11-12 11:39:55 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2011-11-12 09:50:57 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2011-11-11 12:43:54 ----RD---- C:\Program Files
2011-11-11 12:43:54 ----D---- C:\Program Files\Common Files
2011-11-11 12:43:52 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2011-11-10 19:38:19 ----HD---- C:\WINDOWS\inf
2011-11-10 14:00:58 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2011-11-10 13:34:54 ----A---- C:\WINDOWS\system.ini
2011-11-10 13:33:01 ----D---- C:\WINDOWS\AppPatch
2011-11-10 11:55:30 ----SD---- C:\WINDOWS\Tasks
2011-11-10 11:54:32 ----D---- C:\WINDOWS\system32\drivers\etc
2011-11-10 11:50:01 ----RASH---- C:\boot.ini
2011-11-08 19:27:58 ----D---- C:\Documents and Settings\Jetyxx\Data aplikací\BitTorrent
2011-11-05 18:12:33 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-11-05 17:39:21 ----DC---- C:\WINDOWS\system32\DRVSTORE
2011-11-05 17:39:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2011-11-05 17:38:52 ----D---- C:\Program Files\Windows Media Player
2011-11-05 15:06:14 ----D---- C:\WINDOWS\system32\CatRoot
2011-11-05 14:48:27 ----D---- C:\WINDOWS\system32\config
2011-11-05 14:48:15 ----D---- C:\WINDOWS\system32\wbem
2011-11-05 14:48:14 ----D---- C:\WINDOWS\Registration
2011-11-05 13:26:04 ----SD---- C:\Documents and Settings\Jetyxx\Data aplikací\Microsoft
2011-11-04 21:47:51 ----D---- C:\Documents and Settings\Jetyxx\Data aplikací\Adobe
2011-11-04 21:47:50 ----D---- C:\Program Files\Adobe
2011-11-03 19:20:01 ----D---- C:\Documents and Settings\Jetyxx\Data aplikací\DAEMON Tools Lite
2011-11-03 19:20:00 ----D---- C:\WINDOWS\Logs
2011-11-03 19:20:00 ----D---- C:\WINDOWS\Debug
2011-11-02 21:02:32 ----D---- C:\WINDOWS\system32\Restore
2011-10-28 14:06:07 ----D---- C:\WINDOWS\system32\DirectX
2011-10-28 14:05:09 ----D---- C:\Documents and Settings
2011-10-25 18:12:26 ----D---- C:\Documents and Settings\Jetyxx\Data aplikací\vlc
2011-10-21 15:01:56 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-10-21 14:35:52 ----D---- C:\Program Files\Microsoft Visual Studio
2011-10-21 14:35:48 ----D---- C:\WINDOWS\Help
2011-10-21 14:12:18 ----A---- C:\WINDOWS\ODBCINST.INI
2011-10-19 14:06:05 ----D---- C:\Program Files\Garena Classic
2011-10-18 19:30:55 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 nv_agp;NVIDIA nForce AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\nv_agp.sys [2004-04-02 21760]
R0 nvatabus;nvatabus; C:\WINDOWS\system32\DRIVERS\nvatabus.sys [2004-06-03 79360]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2004-08-18 61056]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2011-10-10 232512]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-01-28 2310272]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-18 60800]
R3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files\Garena Plus\Room\safedrv.sys []
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2004-08-18 9600]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-18 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-18 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-11-17 3994688]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2004-05-17 33280]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2004-05-17 12928]
S0 nneavi;nneavi; C:\WINDOWS\System32\drivers\giiht.sys [2011-11-14 54016]
S3 BrScnUsb;Brother USB Still Image driver; C:\WINDOWS\system32\DRIVERS\BrScnUsb.sys [2004-10-15 15295]
S3 catchme;catchme; \??\C:\DOCUME~1\Jetyxx\LOCALS~1\Temp\catchme.sys []
S3 HTCAND32;HTC Device Driver; C:\WINDOWS\System32\Drivers\ANDROIDUSB.sys [2009-06-10 24576]
S3 htcnprot;HTC NDIS Protocol Driver; C:\WINDOWS\system32\DRIVERS\htcnprot.sys [2010-06-22 21248]
S3 usb_rndisx;Adaptér USB RNDIS; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2004-08-03 12672]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-01-19 503144]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-11-09 153376]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-11-17 159811]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [2010-09-16 80896]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-26 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
sekne se myš cca po 30min na 10s
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119510
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: sekne se myš cca po 30min na 10s
Poprosím o log z ComboFix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
pote spustte aplikaci pod uctem s administratorskym opravnenim
hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.
v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se
jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine
aplikace ani nic jineho
behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)
upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,
pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k
nezadoucim kolizim s rezidentem antispyware
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: sekne se myš cca po 30min na 10s
ComboFix 11-11-14.02 - Jetyxx 14.11.2011 21:17:36.5.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.2.1250.420.1029.18.1023.549 [GMT 1:00]
Spuštěný z: c:\documents and settings\Jetyxx\Plocha\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Jetyxx\Data aplikací\14B.tmp
c:\documents and settings\Jetyxx\Data aplikací\4.exe
c:\documents and settings\Jetyxx\Data aplikací\4A.exe
c:\documents and settings\Jetyxx\Data aplikací\5.tmp
c:\documents and settings\Jetyxx\Data aplikací\6.exe
c:\documents and settings\Jetyxx\Data aplikací\6.tmp
c:\documents and settings\Jetyxx\Data aplikací\7.exe
c:\documents and settings\Jetyxx\Data aplikací\Ipnunc.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-14 do 2011-11-14 )))))))))))))))))))))))))))))))
.
.
2011-11-14 17:04 . 2011-11-14 17:04 54016 ----a-w- c:\windows\system32\drivers\xqontpno.sys
2011-11-14 16:28 . 2011-11-14 16:28 54016 ----a-w- c:\windows\system32\drivers\giiht.sys
2011-11-11 11:43 . 2011-11-11 11:43 -------- d-----w- c:\program files\Common Files\Skype
2011-11-11 11:43 . 2011-11-11 11:43 -------- d-----r- c:\program files\Skype
2011-11-10 12:56 . 2011-11-10 12:56 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\Malwarebytes
2011-11-10 12:56 . 2011-11-10 12:56 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2011-11-10 12:56 . 2010-11-29 16:42 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-11-10 12:56 . 2011-11-10 12:56 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-11-10 12:56 . 2010-11-29 16:42 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-10 10:24 . 2011-11-10 10:24 -------- d-----w- c:\program files\trend micro
2011-11-10 10:24 . 2011-11-10 10:24 -------- d-----w- C:\rsit
2011-11-09 22:24 . 2011-11-09 22:24 -------- d-----w- c:\documents and settings\Jetyxx\Local Settings\Data aplikací\ESET
2011-11-09 22:24 . 2011-11-09 22:24 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\ESET
2011-11-09 22:23 . 2011-11-09 22:23 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\ESET
2011-11-09 22:22 . 2011-11-09 22:22 -------- d-----w- c:\program files\Common Files\Java
2011-11-09 22:22 . 2011-11-09 22:22 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-11-09 22:22 . 2011-11-09 22:22 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-11-09 22:22 . 2011-11-09 22:22 -------- d-----w- c:\program files\Java
2011-11-09 22:21 . 2011-11-10 10:42 -------- d-----w- c:\program files\ESET
2011-11-08 18:27 . 2011-11-08 18:27 -------- d-----w- c:\program files\CCleaner
2011-11-06 19:30 . 2007-11-27 02:24 14640 ------w- c:\windows\system32\spmsgXP_2k3.dll
2011-11-05 17:12 . 2004-08-03 22:04 12672 -c--a-w- c:\windows\system32\dllcache\usb8023x.sys
2011-11-05 17:12 . 2004-08-03 22:04 12672 ----a-w- c:\windows\system32\drivers\usb8023x.sys
2011-11-05 17:12 . 2004-08-03 22:04 30080 -c--a-w- c:\windows\system32\dllcache\rndismpx.sys
2011-11-05 17:12 . 2004-08-03 22:04 30080 ----a-w- c:\windows\system32\drivers\rndismpx.sys
2011-11-05 16:39 . 2011-11-05 16:39 -------- d-----w- c:\documents and settings\Jetyxx\Local Settings\Data aplikací\Downloaded Installations
2011-11-05 16:39 . 2009-06-09 23:49 24576 ----a-w- c:\windows\system32\drivers\ANDROIDUSB.sys
2011-11-05 16:39 . 2009-06-09 13:41 1122664 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2011-11-05 16:39 . 2011-11-05 16:39 -------- d-----w- c:\program files\Spirent Communications
2011-11-05 16:38 . 2011-11-05 16:38 -------- d-----w- c:\windows\system32\drivers\umdf
2011-11-05 13:48 . 2011-11-05 13:48 -------- d-----w- c:\windows\system32\wbem\Repository
2011-11-05 12:31 . 2011-11-14 15:05 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\skypePM
2011-11-04 20:49 . 2011-11-14 17:41 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\HTC
2011-11-04 20:47 . 2011-11-05 16:39 -------- d-----w- c:\program files\HTC
2011-11-04 20:47 . 2011-11-05 16:39 -------- d-----w- c:\program files\Common Files\Adobe AIR
2011-11-04 20:46 . 2011-11-04 20:46 -------- d-----w- c:\program files\MSXML 4.0
2011-10-27 20:27 . 2011-10-27 20:28 -------- d-----w- c:\documents and settings\Jetyxx\Local Settings\Data aplikací\TeamSpeak 3 Client
2011-10-27 19:41 . 2011-10-27 19:42 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\teamspeak2
2011-10-27 19:41 . 2011-10-27 19:41 34064 ----a-w- c:\windows\system32\lhacm.acm
2011-10-27 19:40 . 2011-10-27 20:25 -------- d-----w- c:\program files\Teamspeak2_RC2
2011-10-21 15:46 . 2011-10-21 15:50 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\Dev-Cpp
2011-10-21 15:45 . 2011-10-29 20:48 -------- d-----w- C:\Dev-Cpp
2011-10-21 14:10 . 2011-10-21 14:10 -------- d-----w- c:\program files\Stardock
2011-10-21 14:02 . 2011-10-21 14:03 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\Rainmeter
2011-10-21 13:44 . 2009-08-24 07:15 761152 ----a-w- c:\windows\msvcr100.dll
2011-10-21 13:44 . 2007-11-06 22:19 655872 ----a-w- c:\windows\msvcr90.dll
2011-10-21 13:44 . 2007-04-05 10:16 626688 ----a-w- c:\windows\msvcr80.dll
2011-10-21 13:44 . 2005-10-20 20:31 540672 ----a-w- c:\windows\msvcp80.dll
2011-10-21 13:44 . 2004-01-11 21:00 348160 ----a-w- c:\windows\msvcr71.dll
2011-10-21 13:44 . 2003-03-19 00:14 499712 ----a-w- c:\windows\msvcp71.dll
2011-10-21 13:44 . 2000-11-29 00:07 307200 ----a-w- c:\windows\msvcr70.dll
2011-10-21 13:17 . 2011-10-21 13:37 -------- d-----w- c:\windows\SxsCaPendDel
2011-10-21 12:56 . 2011-10-21 12:57 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\GetRightToGo
2011-10-19 13:08 . 2011-11-14 15:03 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\GarenaPlus
2011-10-19 13:08 . 2011-11-05 15:14 -------- d-----w- c:\program files\Garena Plus
2011-10-19 13:08 . 2011-11-14 15:03 -------- d-----w- c:\documents and settings\All Users\Data aplikací\GarenaMessenger
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-14 15:05 . 2011-11-14 15:05 147456 ----a-w- c:\documents and settings\Jetyxx\Data aplikací\Ipnunc.exe
2011-10-11 15:32 . 2011-10-11 15:32 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-10 17:23 . 2011-10-10 17:23 232512 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
.
.
((((((((((((((((((((((((((((( SnapShot@2011-11-10_10.54.38 )))))))))))))))))))))))))))))))))))))))))
.
+ 2006-12-01 23:46 . 2006-12-01 23:46 65536 c:\windows\WinSxS\x86_Microsoft.VC80.OpenMP_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6c18549a\vcomp.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80KOR.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80JPN.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ITA.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 45056 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHT.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 40960 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHS.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80FRA.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ESP.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 57344 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ENU.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 65536 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80DEU.dll
+ 2006-12-01 23:26 . 2006-12-01 23:26 57856 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80u.dll
+ 2006-12-01 23:25 . 2006-12-01 23:25 69632 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80.dll
+ 2006-12-01 21:56 . 2006-12-01 21:56 96256 c:\windows\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.dll
+ 2011-11-14 12:55 . 2011-11-14 12:55 16384 c:\windows\Temp\Perflib_Perfdata_220.dat
+ 2004-08-18 12:00 . 2011-11-14 18:00 60376 c:\windows\system32\perfc009.dat
+ 2004-08-18 12:00 . 2011-11-14 18:00 71282 c:\windows\system32\perfc005.dat
+ 2008-07-25 10:17 . 2008-07-25 10:17 15360 c:\windows\system32\mui\0409\mscorees.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 83968 c:\windows\system32\mscories.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 96760 c:\windows\system32\dfshim.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 37896 c:\windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 81400 c:\windows\Microsoft.NET\Framework\v2.0.50727\TLBREF.DLL
+ 2008-07-25 10:17 . 2008-07-25 10:17 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.RegularExpressions.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 57392 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Thunk.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.Design.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.Design.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Configuration.Install.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Configuration.Install.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 95232 c:\windows\Microsoft.NET\Framework\v2.0.50727\ShFusRes.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 16896 c:\windows\Microsoft.NET\Framework\v2.0.50727\sbscmp20_mscorlib.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 61952 c:\windows\Microsoft.NET\Framework\v2.0.50727\regtlibv12.exe
- 2005-09-23 05:28 . 2005-09-23 05:28 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe
- 2005-09-23 05:28 . 2005-09-23 05:28 53248 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 53248 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 88584 c:\windows\Microsoft.NET\Framework\v2.0.50727\PerfCounter.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 24584 c:\windows\Microsoft.NET\Framework\v2.0.50727\normalization.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 31744 c:\windows\Microsoft.NET\Framework\v2.0.50727\MUI\0409\mscorsecr.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 19456 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscortim.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 69632 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
+ 2008-07-25 10:16 . 2008-07-25 10:16 18944 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsn.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 77312 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 94208 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorld.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 46592 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorie.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 83456 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordbc.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 69632 c:\windows\Microsoft.NET\Framework\v2.0.50727\MSBuild.exe
- 2005-09-23 05:28 . 2005-09-23 05:28 69632 c:\windows\Microsoft.NET\Framework\v2.0.50727\MSBuild.exe
+ 2008-07-25 10:16 . 2008-07-25 10:16 97792 c:\windows\Microsoft.NET\Framework\v2.0.50727\MmcAspExt.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 12800 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 12800 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Vsa.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Vsa.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Vsa.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Vsa.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Utilities.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Framework.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Framework.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 40960 c:\windows\Microsoft.NET\Framework\v2.0.50727\jsc.exe
- 2005-09-23 05:28 . 2005-09-23 05:28 40960 c:\windows\Microsoft.NET\Framework\v2.0.50727\jsc.exe
- 2005-09-23 05:28 . 2005-09-23 05:28 72192 c:\windows\Microsoft.NET\Framework\v2.0.50727\ISymWrapper.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 72192 c:\windows\Microsoft.NET\Framework\v2.0.50727\ISymWrapper.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 65032 c:\windows\Microsoft.NET\Framework\v2.0.50727\InstallUtilLib.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEHost.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 18936 c:\windows\Microsoft.NET\Framework\v2.0.50727\fusion.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 62968 c:\windows\Microsoft.NET\Framework\v2.0.50727\dfdll.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 35320 c:\windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 69120 c:\windows\Microsoft.NET\Framework\v2.0.50727\CustomMarshalers.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 27136 c:\windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 13312 c:\windows\Microsoft.NET\Framework\v2.0.50727\cscompmgd.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 13312 c:\windows\Microsoft.NET\Framework\v2.0.50727\cscompmgd.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 80376 c:\windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 89608 c:\windows\Microsoft.NET\Framework\v2.0.50727\CORPerfMonExt.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 33792 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_wp.exe
+ 2008-07-25 10:16 . 2008-07-25 10:16 34312 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
+ 2008-07-25 10:16 . 2008-07-25 10:16 33288 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regiis.exe
+ 2008-07-25 10:16 . 2008-07-25 10:16 24576 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regbrowsers.exe
+ 2008-07-25 10:16 . 2008-07-25 10:16 84480 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_rc.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 33800 c:\windows\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 17416 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 22024 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_filter.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_compiler.exe
- 2005-09-23 05:28 . 2005-09-23 05:28 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_compiler.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 58880 c:\windows\Microsoft.NET\Framework\v2.0.50727\AppLaunch.exe
+ 2008-07-25 10:16 . 2008-07-25 10:16 98808 c:\windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 10752 c:\windows\Microsoft.NET\Framework\v2.0.50727\Accessibility.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 10752 c:\windows\Microsoft.NET\Framework\v2.0.50727\Accessibility.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 13824 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\CvtResUI.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\alinkui.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 96768 c:\windows\Microsoft.NET\Framework\v1.0.3705\mscormmc.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 16896 c:\windows\Microsoft.NET\Framework\SharedReg12.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 16896 c:\windows\Microsoft.NET\Framework\sbscmp20_perfcounter.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 16896 c:\windows\Microsoft.NET\Framework\sbscmp20_mscorwks.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 16896 c:\windows\Microsoft.NET\Framework\sbscmp10.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 82944 c:\windows\Microsoft.NET\Framework\NETFXSBS10.exe
+ 2011-11-13 23:49 . 2011-11-13 23:49 88576 c:\windows\Installer\24a6af0.msi
+ 2011-11-14 06:17 . 2011-11-14 06:17 65024 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\36dbc4689f7c51e393504230004c9dec\Microsoft.Build.Framework.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 14336 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\a2865dcec9c5d3cc9c55f026cbad6fcc\dfsvc.ni.exe
+ 2011-11-14 06:17 . 2011-11-14 06:17 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\c2af7cfbb47c077029a2645930b4eeac\Accessibility.ni.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 7168 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft_VsaVb.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 7168 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft_VsaVb.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 5632 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualC.Dll
- 2005-09-23 05:29 . 2005-09-23 05:29 5632 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualC.Dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 6656 c:\windows\Microsoft.NET\Framework\v2.0.50727\IIEHost.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 8192 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExecRemote.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 8192 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExecRemote.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 9728 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExec.exe
- 2005-09-23 05:28 . 2005-09-23 05:28 9728 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExec.exe
+ 2008-07-25 10:16 . 2008-07-25 10:16 5120 c:\windows\Microsoft.NET\Framework\v2.0.50727\dfsvc.exe
- 2011-10-12 10:01 . 2011-10-12 10:01 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2011-10-12 10:01 . 2011-10-12 10:01 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2006-12-01 21:54 . 2006-12-01 21:54 626688 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcr80.dll
+ 2006-12-01 21:54 . 2006-12-01 21:54 548864 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcp80.dll
+ 2006-12-01 21:54 . 2006-12-01 21:54 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcm80.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 635904 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcr80.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 558080 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcp80.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcm80.dll
+ 2004-08-18 12:00 . 2011-11-14 18:00 399964 c:\windows\system32\perfh009.dat
+ 2004-08-18 12:00 . 2011-11-14 18:00 397586 c:\windows\system32\perfh005.dat
+ 2008-07-25 10:16 . 2008-07-25 10:16 158720 c:\windows\system32\mscorier.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 282112 c:\windows\system32\mscoree.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 438272 c:\windows\Microsoft.NET\Framework\v2.0.50727\webengine.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 839680 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Services.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 835584 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Mobile.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 835584 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Mobile.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 261632 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Transactions.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 114688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.ServiceProcess.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 114688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.ServiceProcess.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Security.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Security.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 131072 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 131072 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 303104 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Remoting.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Messaging.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Messaging.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 372736 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Management.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 113664 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Wrapper.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 626688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 188416 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.Protocols.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 188416 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.Protocols.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 401408 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 970752 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Deployment.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 745472 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.SqlXml.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 486400 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.OracleClient.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 425984 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.configuration.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\sysglobl.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\sysglobl.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 392184 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 118784 c:\windows\Microsoft.NET\Framework\v2.0.50727\shfusion.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 143360 c:\windows\Microsoft.NET\Framework\v2.0.50727\peverify.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 100856 c:\windows\Microsoft.NET\Framework\v2.0.50727\ngen.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 230912 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvc.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 345600 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorrc.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 114176 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 367104 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 308224 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordbi.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 998408 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 659456 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 372736 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.dll
- 2005-09-23 05:29 . 2005-09-23 05:29 372736 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.Data.dll
- 2005-09-23 05:29 . 2005-09-23 05:29 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 749568 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.JScript.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 655360 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Tasks.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 348160 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Engine.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 230904 c:\windows\Microsoft.NET\Framework\v2.0.50727\ilasm.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 798224 c:\windows\Microsoft.NET\Framework\v2.0.50727\EventLogMessages.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 575496 c:\windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\CasPol.exe
- 2005-09-23 05:28 . 2005-09-23 05:28 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\CasPol.exe
+ 2008-07-25 10:16 . 2008-07-25 10:16 507904 c:\windows\Microsoft.NET\Framework\v2.0.50727\AspNetMMCExt.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regsql.exe
- 2005-09-23 05:28 . 2005-09-23 05:28 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regsql.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 147968 c:\windows\Microsoft.NET\Framework\v2.0.50727\AdoNetDiag.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 218112 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\Vsavb7rtUI.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 193016 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\vbc7ui.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 145408 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\cscompui.dll
+ 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\24a6af5.msp
+ 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\24a6af3.msp
+ 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\24a6af2.msp
+ 2011-11-13 23:47 . 2011-11-13 23:47 331264 c:\windows\Installer\24a259a.msi
+ 2011-11-11 11:43 . 2011-11-11 11:43 371272 c:\windows\Installer\{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}\SkypeIcon.exe
+ 2011-11-14 06:17 . 2011-11-14 06:17 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\70764208219715962d310336b5959dfa\System.Web.RegularExpressions.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\12903c3843fe923d1977801ffa3cf26c\System.Transactions.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\a9e71dda6389403be4db7b567592e3b8\System.ServiceProcess.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 676352 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\0418eb6dbffe9b46aa4c989153d6a3b5\System.Security.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\5f9cd5bfebcb94175d440ebab3aa412f\System.EnterpriseServices.Wrapper.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\5f9cd5bfebcb94175d440ebab3aa412f\System.EnterpriseServices.ni.dll
+ 2011-11-13 23:58 . 2011-11-13 23:58 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\5f5d64dd0e7991aaaad2d98ee52afe42\System.Drawing.Design.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\44de75caba2b9711b3d9030a30767f8b\System.DirectoryServices.Protocols.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 970752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cb4cb21d14767292e079366a5d3d76cd\System.Configuration.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\43dceeb2d0601d79af40752fb20283c2\Microsoft.Build.Utilities.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 838656 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\daf5ff5e06c80eefa80c6fcc79aec963\Microsoft.Build.Engine.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 220672 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\e148983beeb0f30918b0564849a16456\CustomMarshalers.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\c7ffd8c23e8de4018a88185b3b60631e\AspNetMMCExt.ni.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2006-12-01 23:25 . 2006-12-01 23:25 1093120 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80u.dll
+ 2006-12-01 23:25 . 2006-12-01 23:25 1101824 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 1344000 c:\windows\Microsoft.NET\Framework\v2.0.50727\VsaVb7rt.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 1172472 c:\windows\Microsoft.NET\Framework\v2.0.50727\vbc.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 2048000 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.XML.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 5025792 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 5238784 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 3149824 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 5062656 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Design.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 2933248 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 5815296 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 4546560 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 1163768 c:\windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
+ 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\24a6af9.msp
+ 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\24a6af8.msp
+ 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\24a6af7.msp
+ 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\24a6af6.msp
+ 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\24a6af4.msp
+ 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\24a6af1.msp
+ 2011-11-11 11:43 . 2011-11-11 11:43 1580544 c:\windows\Installer\151c5b9.msi
+ 2011-11-13 23:52 . 2011-11-13 23:52 7867392 c:\windows\assembly\NativeImages_v2.0.50727_32\System\aa7926460a336408c8041330ad90929d\System.ni.dll
+ 2011-11-14 00:03 . 2011-11-14 00:03 5449728 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\36f3953f24d4f0b767bf172331ad6f3e\System.Xml.ni.dll
+ 2011-11-14 06:18 . 2011-11-14 06:18 1840128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\1dad08772eb89d48a8a0cfe9b0467eb0\System.Web.Services.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\e5995a34d44ad5af7d9f335075bded4d\System.Web.Mobile.ni.dll
+ 2011-11-13 23:58 . 2011-11-13 23:58 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6978f2e90f13bc720d57fa6895c911e2\System.Drawing.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\6bcc481030a56c24d5990d199812c594\System.DirectoryServices.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 1800704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\df1efcbac5973454c608890f72eb994d\System.Deployment.ni.dll
+ 2011-11-13 23:55 . 2011-11-13 23:55 6614016 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\0b40341027c01716cec1dd97592698e0\System.Data.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 1711104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\5b3d048d8c003d743ea5e72caf07773a\Microsoft.VisualBasic.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 1620480 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\152cf75db013f0523933ac45177b4217\Microsoft.Build.Tasks.ni.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 3149824 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 5238784 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 4546560 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2011-11-14 00:00 . 2011-11-14 00:01 12428800 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\9a254c455892c02355ab0ab0f0727c5b\System.Windows.Forms.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 11791360 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\50ea744ffc3cb7f09b027fd6c5c93b2b\System.Web.ni.dll
+ 2011-11-13 23:56 . 2011-11-13 23:57 10681344 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\204db7071fb26343b0fd3f3d140c0bf8\System.Design.ni.dll
+ 2011-11-13 23:50 . 2011-11-13 23:51 11485184 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9adb89fa22fd5b4ce433b5aca7fb1b07\mscorlib.ni.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-10-11 14940040]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-10-11 14940040]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CHotkey"="mHotkey.exe" [2002-07-23 477184]
"SoundMan"="SOUNDMAN.EXE" [2005-01-20 77824]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-11-17 7700480]
"nwiz"="nwiz.exe" [2006-11-17 1622016]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-11-17 86016]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
"HTC Sync Loader"="c:\program files\HTC\HTC Sync 3.0\htcUPCTLoader.exe" [2011-03-08 585728]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2010-11-29 963976]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-18 15360]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\BitTorrent\\BitTorrent.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Garena Classic\\Garena.exe"=
"c:\\Program Files\\Garena Plus\\Room\\garena_room.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [10.10.2011 18:23 232512]
R2 PassThru Service;Internet Pass-Through Service;c:\program files\HTC\Internet Pass-Through\PassThruSvr.exe [16.9.2010 14:06 80896]
R3 GGSAFERDriver;GGSAFER Driver;\??\c:\program files\Garena Plus\Room\safedrv.sys --> c:\program files\Garena Plus\Room\safedrv.sys [?]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\drivers\htcnprot.sys [22.6.2010 18:01 21248]
S3 HTCAND32;HTC Device Driver;c:\windows\system32\drivers\ANDROIDUSB.sys [5.11.2011 17:39 24576]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-14 21:21
Windows 5.1.2600 Service Pack 2 NTFS
.
detected NTDLL code modification:
ZwEnumerateValueKey, ZwQueryDirectoryFile
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Ipnunc = c:\documents and settings\Jetyxx\Data aplikac?\Ipnunc.exe
.
skenování skrytých souborů ...
.
.
c:\documents and settings\Jetyxx\Data aplikací\Ipnunc.exe 147456 bytes executable
.
sken byl úspešně dokončen
skryté soubory: 1
.
**************************************************************************
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Ipnunc"="c:\\Documents and Settings\\Jetyxx\\Data aplikací\\Ipnunc.exe"
.
Celkový čas: 2011-11-14 21:22:50
ComboFix-quarantined-files.txt 2011-11-14 20:22
ComboFix2.txt 2011-11-10 12:35
ComboFix3.txt 2011-11-10 11:42
ComboFix4.txt 2011-11-10 11:21
ComboFix5.txt 2011-11-14 20:16
.
Před spuštěním: Volných bajtů: 108 799 324 160
Po spuštění: Volných bajtů: 108 963 217 408
.
- - End Of File - - EDE7A01D8DC0208A6994796D57EFA489
Microsoft Windows XP Home Edition 5.1.2600.2.1250.420.1029.18.1023.549 [GMT 1:00]
Spuštěný z: c:\documents and settings\Jetyxx\Plocha\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Jetyxx\Data aplikací\14B.tmp
c:\documents and settings\Jetyxx\Data aplikací\4.exe
c:\documents and settings\Jetyxx\Data aplikací\4A.exe
c:\documents and settings\Jetyxx\Data aplikací\5.tmp
c:\documents and settings\Jetyxx\Data aplikací\6.exe
c:\documents and settings\Jetyxx\Data aplikací\6.tmp
c:\documents and settings\Jetyxx\Data aplikací\7.exe
c:\documents and settings\Jetyxx\Data aplikací\Ipnunc.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-14 do 2011-11-14 )))))))))))))))))))))))))))))))
.
.
2011-11-14 17:04 . 2011-11-14 17:04 54016 ----a-w- c:\windows\system32\drivers\xqontpno.sys
2011-11-14 16:28 . 2011-11-14 16:28 54016 ----a-w- c:\windows\system32\drivers\giiht.sys
2011-11-11 11:43 . 2011-11-11 11:43 -------- d-----w- c:\program files\Common Files\Skype
2011-11-11 11:43 . 2011-11-11 11:43 -------- d-----r- c:\program files\Skype
2011-11-10 12:56 . 2011-11-10 12:56 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\Malwarebytes
2011-11-10 12:56 . 2011-11-10 12:56 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2011-11-10 12:56 . 2010-11-29 16:42 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-11-10 12:56 . 2011-11-10 12:56 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-11-10 12:56 . 2010-11-29 16:42 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-10 10:24 . 2011-11-10 10:24 -------- d-----w- c:\program files\trend micro
2011-11-10 10:24 . 2011-11-10 10:24 -------- d-----w- C:\rsit
2011-11-09 22:24 . 2011-11-09 22:24 -------- d-----w- c:\documents and settings\Jetyxx\Local Settings\Data aplikací\ESET
2011-11-09 22:24 . 2011-11-09 22:24 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\ESET
2011-11-09 22:23 . 2011-11-09 22:23 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\ESET
2011-11-09 22:22 . 2011-11-09 22:22 -------- d-----w- c:\program files\Common Files\Java
2011-11-09 22:22 . 2011-11-09 22:22 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-11-09 22:22 . 2011-11-09 22:22 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-11-09 22:22 . 2011-11-09 22:22 -------- d-----w- c:\program files\Java
2011-11-09 22:21 . 2011-11-10 10:42 -------- d-----w- c:\program files\ESET
2011-11-08 18:27 . 2011-11-08 18:27 -------- d-----w- c:\program files\CCleaner
2011-11-06 19:30 . 2007-11-27 02:24 14640 ------w- c:\windows\system32\spmsgXP_2k3.dll
2011-11-05 17:12 . 2004-08-03 22:04 12672 -c--a-w- c:\windows\system32\dllcache\usb8023x.sys
2011-11-05 17:12 . 2004-08-03 22:04 12672 ----a-w- c:\windows\system32\drivers\usb8023x.sys
2011-11-05 17:12 . 2004-08-03 22:04 30080 -c--a-w- c:\windows\system32\dllcache\rndismpx.sys
2011-11-05 17:12 . 2004-08-03 22:04 30080 ----a-w- c:\windows\system32\drivers\rndismpx.sys
2011-11-05 16:39 . 2011-11-05 16:39 -------- d-----w- c:\documents and settings\Jetyxx\Local Settings\Data aplikací\Downloaded Installations
2011-11-05 16:39 . 2009-06-09 23:49 24576 ----a-w- c:\windows\system32\drivers\ANDROIDUSB.sys
2011-11-05 16:39 . 2009-06-09 13:41 1122664 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2011-11-05 16:39 . 2011-11-05 16:39 -------- d-----w- c:\program files\Spirent Communications
2011-11-05 16:38 . 2011-11-05 16:38 -------- d-----w- c:\windows\system32\drivers\umdf
2011-11-05 13:48 . 2011-11-05 13:48 -------- d-----w- c:\windows\system32\wbem\Repository
2011-11-05 12:31 . 2011-11-14 15:05 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\skypePM
2011-11-04 20:49 . 2011-11-14 17:41 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\HTC
2011-11-04 20:47 . 2011-11-05 16:39 -------- d-----w- c:\program files\HTC
2011-11-04 20:47 . 2011-11-05 16:39 -------- d-----w- c:\program files\Common Files\Adobe AIR
2011-11-04 20:46 . 2011-11-04 20:46 -------- d-----w- c:\program files\MSXML 4.0
2011-10-27 20:27 . 2011-10-27 20:28 -------- d-----w- c:\documents and settings\Jetyxx\Local Settings\Data aplikací\TeamSpeak 3 Client
2011-10-27 19:41 . 2011-10-27 19:42 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\teamspeak2
2011-10-27 19:41 . 2011-10-27 19:41 34064 ----a-w- c:\windows\system32\lhacm.acm
2011-10-27 19:40 . 2011-10-27 20:25 -------- d-----w- c:\program files\Teamspeak2_RC2
2011-10-21 15:46 . 2011-10-21 15:50 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\Dev-Cpp
2011-10-21 15:45 . 2011-10-29 20:48 -------- d-----w- C:\Dev-Cpp
2011-10-21 14:10 . 2011-10-21 14:10 -------- d-----w- c:\program files\Stardock
2011-10-21 14:02 . 2011-10-21 14:03 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\Rainmeter
2011-10-21 13:44 . 2009-08-24 07:15 761152 ----a-w- c:\windows\msvcr100.dll
2011-10-21 13:44 . 2007-11-06 22:19 655872 ----a-w- c:\windows\msvcr90.dll
2011-10-21 13:44 . 2007-04-05 10:16 626688 ----a-w- c:\windows\msvcr80.dll
2011-10-21 13:44 . 2005-10-20 20:31 540672 ----a-w- c:\windows\msvcp80.dll
2011-10-21 13:44 . 2004-01-11 21:00 348160 ----a-w- c:\windows\msvcr71.dll
2011-10-21 13:44 . 2003-03-19 00:14 499712 ----a-w- c:\windows\msvcp71.dll
2011-10-21 13:44 . 2000-11-29 00:07 307200 ----a-w- c:\windows\msvcr70.dll
2011-10-21 13:17 . 2011-10-21 13:37 -------- d-----w- c:\windows\SxsCaPendDel
2011-10-21 12:56 . 2011-10-21 12:57 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\GetRightToGo
2011-10-19 13:08 . 2011-11-14 15:03 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\GarenaPlus
2011-10-19 13:08 . 2011-11-05 15:14 -------- d-----w- c:\program files\Garena Plus
2011-10-19 13:08 . 2011-11-14 15:03 -------- d-----w- c:\documents and settings\All Users\Data aplikací\GarenaMessenger
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-14 15:05 . 2011-11-14 15:05 147456 ----a-w- c:\documents and settings\Jetyxx\Data aplikací\Ipnunc.exe
2011-10-11 15:32 . 2011-10-11 15:32 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-10 17:23 . 2011-10-10 17:23 232512 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
.
.
((((((((((((((((((((((((((((( SnapShot@2011-11-10_10.54.38 )))))))))))))))))))))))))))))))))))))))))
.
+ 2006-12-01 23:46 . 2006-12-01 23:46 65536 c:\windows\WinSxS\x86_Microsoft.VC80.OpenMP_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6c18549a\vcomp.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80KOR.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80JPN.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ITA.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 45056 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHT.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 40960 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHS.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80FRA.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ESP.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 57344 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ENU.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 65536 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80DEU.dll
+ 2006-12-01 23:26 . 2006-12-01 23:26 57856 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80u.dll
+ 2006-12-01 23:25 . 2006-12-01 23:25 69632 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80.dll
+ 2006-12-01 21:56 . 2006-12-01 21:56 96256 c:\windows\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.dll
+ 2011-11-14 12:55 . 2011-11-14 12:55 16384 c:\windows\Temp\Perflib_Perfdata_220.dat
+ 2004-08-18 12:00 . 2011-11-14 18:00 60376 c:\windows\system32\perfc009.dat
+ 2004-08-18 12:00 . 2011-11-14 18:00 71282 c:\windows\system32\perfc005.dat
+ 2008-07-25 10:17 . 2008-07-25 10:17 15360 c:\windows\system32\mui\0409\mscorees.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 83968 c:\windows\system32\mscories.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 96760 c:\windows\system32\dfshim.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 37896 c:\windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 81400 c:\windows\Microsoft.NET\Framework\v2.0.50727\TLBREF.DLL
+ 2008-07-25 10:17 . 2008-07-25 10:17 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.RegularExpressions.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 57392 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Thunk.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.Design.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.Design.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Configuration.Install.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Configuration.Install.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 95232 c:\windows\Microsoft.NET\Framework\v2.0.50727\ShFusRes.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 16896 c:\windows\Microsoft.NET\Framework\v2.0.50727\sbscmp20_mscorlib.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 61952 c:\windows\Microsoft.NET\Framework\v2.0.50727\regtlibv12.exe
- 2005-09-23 05:28 . 2005-09-23 05:28 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe
- 2005-09-23 05:28 . 2005-09-23 05:28 53248 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 53248 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 88584 c:\windows\Microsoft.NET\Framework\v2.0.50727\PerfCounter.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 24584 c:\windows\Microsoft.NET\Framework\v2.0.50727\normalization.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 31744 c:\windows\Microsoft.NET\Framework\v2.0.50727\MUI\0409\mscorsecr.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 19456 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscortim.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 69632 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
+ 2008-07-25 10:16 . 2008-07-25 10:16 18944 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsn.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 77312 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 94208 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorld.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 46592 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorie.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 83456 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordbc.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 69632 c:\windows\Microsoft.NET\Framework\v2.0.50727\MSBuild.exe
- 2005-09-23 05:28 . 2005-09-23 05:28 69632 c:\windows\Microsoft.NET\Framework\v2.0.50727\MSBuild.exe
+ 2008-07-25 10:16 . 2008-07-25 10:16 97792 c:\windows\Microsoft.NET\Framework\v2.0.50727\MmcAspExt.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 12800 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 12800 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Vsa.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Vsa.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Vsa.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Vsa.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Utilities.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Framework.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Framework.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 40960 c:\windows\Microsoft.NET\Framework\v2.0.50727\jsc.exe
- 2005-09-23 05:28 . 2005-09-23 05:28 40960 c:\windows\Microsoft.NET\Framework\v2.0.50727\jsc.exe
- 2005-09-23 05:28 . 2005-09-23 05:28 72192 c:\windows\Microsoft.NET\Framework\v2.0.50727\ISymWrapper.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 72192 c:\windows\Microsoft.NET\Framework\v2.0.50727\ISymWrapper.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 65032 c:\windows\Microsoft.NET\Framework\v2.0.50727\InstallUtilLib.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEHost.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 18936 c:\windows\Microsoft.NET\Framework\v2.0.50727\fusion.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 62968 c:\windows\Microsoft.NET\Framework\v2.0.50727\dfdll.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 35320 c:\windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 69120 c:\windows\Microsoft.NET\Framework\v2.0.50727\CustomMarshalers.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 27136 c:\windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 13312 c:\windows\Microsoft.NET\Framework\v2.0.50727\cscompmgd.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 13312 c:\windows\Microsoft.NET\Framework\v2.0.50727\cscompmgd.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 80376 c:\windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 89608 c:\windows\Microsoft.NET\Framework\v2.0.50727\CORPerfMonExt.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 33792 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_wp.exe
+ 2008-07-25 10:16 . 2008-07-25 10:16 34312 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
+ 2008-07-25 10:16 . 2008-07-25 10:16 33288 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regiis.exe
+ 2008-07-25 10:16 . 2008-07-25 10:16 24576 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regbrowsers.exe
+ 2008-07-25 10:16 . 2008-07-25 10:16 84480 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_rc.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 33800 c:\windows\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 17416 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 22024 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_filter.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_compiler.exe
- 2005-09-23 05:28 . 2005-09-23 05:28 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_compiler.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 58880 c:\windows\Microsoft.NET\Framework\v2.0.50727\AppLaunch.exe
+ 2008-07-25 10:16 . 2008-07-25 10:16 98808 c:\windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 10752 c:\windows\Microsoft.NET\Framework\v2.0.50727\Accessibility.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 10752 c:\windows\Microsoft.NET\Framework\v2.0.50727\Accessibility.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 13824 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\CvtResUI.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\alinkui.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 96768 c:\windows\Microsoft.NET\Framework\v1.0.3705\mscormmc.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 16896 c:\windows\Microsoft.NET\Framework\SharedReg12.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 16896 c:\windows\Microsoft.NET\Framework\sbscmp20_perfcounter.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 16896 c:\windows\Microsoft.NET\Framework\sbscmp20_mscorwks.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 16896 c:\windows\Microsoft.NET\Framework\sbscmp10.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 82944 c:\windows\Microsoft.NET\Framework\NETFXSBS10.exe
+ 2011-11-13 23:49 . 2011-11-13 23:49 88576 c:\windows\Installer\24a6af0.msi
+ 2011-11-14 06:17 . 2011-11-14 06:17 65024 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\36dbc4689f7c51e393504230004c9dec\Microsoft.Build.Framework.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 14336 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\a2865dcec9c5d3cc9c55f026cbad6fcc\dfsvc.ni.exe
+ 2011-11-14 06:17 . 2011-11-14 06:17 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\c2af7cfbb47c077029a2645930b4eeac\Accessibility.ni.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 7168 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft_VsaVb.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 7168 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft_VsaVb.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 5632 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualC.Dll
- 2005-09-23 05:29 . 2005-09-23 05:29 5632 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualC.Dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 6656 c:\windows\Microsoft.NET\Framework\v2.0.50727\IIEHost.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 8192 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExecRemote.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 8192 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExecRemote.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 9728 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExec.exe
- 2005-09-23 05:28 . 2005-09-23 05:28 9728 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExec.exe
+ 2008-07-25 10:16 . 2008-07-25 10:16 5120 c:\windows\Microsoft.NET\Framework\v2.0.50727\dfsvc.exe
- 2011-10-12 10:01 . 2011-10-12 10:01 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2011-10-12 10:01 . 2011-10-12 10:01 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2006-12-01 21:54 . 2006-12-01 21:54 626688 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcr80.dll
+ 2006-12-01 21:54 . 2006-12-01 21:54 548864 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcp80.dll
+ 2006-12-01 21:54 . 2006-12-01 21:54 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcm80.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 635904 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcr80.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 558080 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcp80.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcm80.dll
+ 2004-08-18 12:00 . 2011-11-14 18:00 399964 c:\windows\system32\perfh009.dat
+ 2004-08-18 12:00 . 2011-11-14 18:00 397586 c:\windows\system32\perfh005.dat
+ 2008-07-25 10:16 . 2008-07-25 10:16 158720 c:\windows\system32\mscorier.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 282112 c:\windows\system32\mscoree.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 438272 c:\windows\Microsoft.NET\Framework\v2.0.50727\webengine.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 839680 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Services.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 835584 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Mobile.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 835584 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Mobile.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 261632 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Transactions.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 114688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.ServiceProcess.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 114688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.ServiceProcess.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Security.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Security.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 131072 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 131072 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 303104 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Remoting.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Messaging.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Messaging.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 372736 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Management.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 113664 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Wrapper.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 626688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 188416 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.Protocols.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 188416 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.Protocols.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 401408 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 970752 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Deployment.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 745472 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.SqlXml.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 486400 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.OracleClient.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 425984 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.configuration.dll
- 2005-09-23 05:28 . 2005-09-23 05:28 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\sysglobl.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\sysglobl.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 392184 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 118784 c:\windows\Microsoft.NET\Framework\v2.0.50727\shfusion.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 143360 c:\windows\Microsoft.NET\Framework\v2.0.50727\peverify.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 100856 c:\windows\Microsoft.NET\Framework\v2.0.50727\ngen.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 230912 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvc.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 345600 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorrc.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 114176 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 367104 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 308224 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordbi.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 998408 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 659456 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 372736 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.dll
- 2005-09-23 05:29 . 2005-09-23 05:29 372736 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.Data.dll
- 2005-09-23 05:29 . 2005-09-23 05:29 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 749568 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.JScript.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 655360 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Tasks.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 348160 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Engine.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 230904 c:\windows\Microsoft.NET\Framework\v2.0.50727\ilasm.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 798224 c:\windows\Microsoft.NET\Framework\v2.0.50727\EventLogMessages.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 575496 c:\windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\CasPol.exe
- 2005-09-23 05:28 . 2005-09-23 05:28 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\CasPol.exe
+ 2008-07-25 10:16 . 2008-07-25 10:16 507904 c:\windows\Microsoft.NET\Framework\v2.0.50727\AspNetMMCExt.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regsql.exe
- 2005-09-23 05:28 . 2005-09-23 05:28 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regsql.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 147968 c:\windows\Microsoft.NET\Framework\v2.0.50727\AdoNetDiag.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 218112 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\Vsavb7rtUI.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 193016 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\vbc7ui.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 145408 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\cscompui.dll
+ 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\24a6af5.msp
+ 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\24a6af3.msp
+ 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\24a6af2.msp
+ 2011-11-13 23:47 . 2011-11-13 23:47 331264 c:\windows\Installer\24a259a.msi
+ 2011-11-11 11:43 . 2011-11-11 11:43 371272 c:\windows\Installer\{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}\SkypeIcon.exe
+ 2011-11-14 06:17 . 2011-11-14 06:17 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\70764208219715962d310336b5959dfa\System.Web.RegularExpressions.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\12903c3843fe923d1977801ffa3cf26c\System.Transactions.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\a9e71dda6389403be4db7b567592e3b8\System.ServiceProcess.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 676352 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\0418eb6dbffe9b46aa4c989153d6a3b5\System.Security.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\5f9cd5bfebcb94175d440ebab3aa412f\System.EnterpriseServices.Wrapper.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\5f9cd5bfebcb94175d440ebab3aa412f\System.EnterpriseServices.ni.dll
+ 2011-11-13 23:58 . 2011-11-13 23:58 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\5f5d64dd0e7991aaaad2d98ee52afe42\System.Drawing.Design.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\44de75caba2b9711b3d9030a30767f8b\System.DirectoryServices.Protocols.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 970752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cb4cb21d14767292e079366a5d3d76cd\System.Configuration.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\43dceeb2d0601d79af40752fb20283c2\Microsoft.Build.Utilities.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 838656 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\daf5ff5e06c80eefa80c6fcc79aec963\Microsoft.Build.Engine.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 220672 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\e148983beeb0f30918b0564849a16456\CustomMarshalers.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\c7ffd8c23e8de4018a88185b3b60631e\AspNetMMCExt.ni.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2011-10-12 10:01 . 2011-10-12 10:01 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2006-12-01 23:25 . 2006-12-01 23:25 1093120 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80u.dll
+ 2006-12-01 23:25 . 2006-12-01 23:25 1101824 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 1344000 c:\windows\Microsoft.NET\Framework\v2.0.50727\VsaVb7rt.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 1172472 c:\windows\Microsoft.NET\Framework\v2.0.50727\vbc.exe
+ 2008-07-25 10:17 . 2008-07-25 10:17 2048000 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.XML.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 5025792 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 5238784 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 3149824 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 5062656 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Design.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 2933248 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 5815296 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
+ 2008-07-25 10:17 . 2008-07-25 10:17 4546560 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2008-07-25 10:16 . 2008-07-25 10:16 1163768 c:\windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
+ 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\24a6af9.msp
+ 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\24a6af8.msp
+ 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\24a6af7.msp
+ 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\24a6af6.msp
+ 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\24a6af4.msp
+ 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\24a6af1.msp
+ 2011-11-11 11:43 . 2011-11-11 11:43 1580544 c:\windows\Installer\151c5b9.msi
+ 2011-11-13 23:52 . 2011-11-13 23:52 7867392 c:\windows\assembly\NativeImages_v2.0.50727_32\System\aa7926460a336408c8041330ad90929d\System.ni.dll
+ 2011-11-14 00:03 . 2011-11-14 00:03 5449728 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\36f3953f24d4f0b767bf172331ad6f3e\System.Xml.ni.dll
+ 2011-11-14 06:18 . 2011-11-14 06:18 1840128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\1dad08772eb89d48a8a0cfe9b0467eb0\System.Web.Services.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\e5995a34d44ad5af7d9f335075bded4d\System.Web.Mobile.ni.dll
+ 2011-11-13 23:58 . 2011-11-13 23:58 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6978f2e90f13bc720d57fa6895c911e2\System.Drawing.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\6bcc481030a56c24d5990d199812c594\System.DirectoryServices.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 1800704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\df1efcbac5973454c608890f72eb994d\System.Deployment.ni.dll
+ 2011-11-13 23:55 . 2011-11-13 23:55 6614016 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\0b40341027c01716cec1dd97592698e0\System.Data.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 1711104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\5b3d048d8c003d743ea5e72caf07773a\Microsoft.VisualBasic.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 1620480 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\152cf75db013f0523933ac45177b4217\Microsoft.Build.Tasks.ni.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 3149824 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 5238784 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2011-11-13 23:49 . 2011-11-13 23:49 4546560 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2011-11-14 00:00 . 2011-11-14 00:01 12428800 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\9a254c455892c02355ab0ab0f0727c5b\System.Windows.Forms.ni.dll
+ 2011-11-14 06:17 . 2011-11-14 06:17 11791360 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\50ea744ffc3cb7f09b027fd6c5c93b2b\System.Web.ni.dll
+ 2011-11-13 23:56 . 2011-11-13 23:57 10681344 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\204db7071fb26343b0fd3f3d140c0bf8\System.Design.ni.dll
+ 2011-11-13 23:50 . 2011-11-13 23:51 11485184 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9adb89fa22fd5b4ce433b5aca7fb1b07\mscorlib.ni.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-10-11 14940040]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-10-11 14940040]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CHotkey"="mHotkey.exe" [2002-07-23 477184]
"SoundMan"="SOUNDMAN.EXE" [2005-01-20 77824]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-11-17 7700480]
"nwiz"="nwiz.exe" [2006-11-17 1622016]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-11-17 86016]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
"HTC Sync Loader"="c:\program files\HTC\HTC Sync 3.0\htcUPCTLoader.exe" [2011-03-08 585728]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2010-11-29 963976]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-18 15360]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\BitTorrent\\BitTorrent.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Garena Classic\\Garena.exe"=
"c:\\Program Files\\Garena Plus\\Room\\garena_room.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [10.10.2011 18:23 232512]
R2 PassThru Service;Internet Pass-Through Service;c:\program files\HTC\Internet Pass-Through\PassThruSvr.exe [16.9.2010 14:06 80896]
R3 GGSAFERDriver;GGSAFER Driver;\??\c:\program files\Garena Plus\Room\safedrv.sys --> c:\program files\Garena Plus\Room\safedrv.sys [?]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\drivers\htcnprot.sys [22.6.2010 18:01 21248]
S3 HTCAND32;HTC Device Driver;c:\windows\system32\drivers\ANDROIDUSB.sys [5.11.2011 17:39 24576]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-14 21:21
Windows 5.1.2600 Service Pack 2 NTFS
.
detected NTDLL code modification:
ZwEnumerateValueKey, ZwQueryDirectoryFile
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Ipnunc = c:\documents and settings\Jetyxx\Data aplikac?\Ipnunc.exe
.
skenování skrytých souborů ...
.
.
c:\documents and settings\Jetyxx\Data aplikací\Ipnunc.exe 147456 bytes executable
.
sken byl úspešně dokončen
skryté soubory: 1
.
**************************************************************************
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Ipnunc"="c:\\Documents and Settings\\Jetyxx\\Data aplikací\\Ipnunc.exe"
.
Celkový čas: 2011-11-14 21:22:50
ComboFix-quarantined-files.txt 2011-11-14 20:22
ComboFix2.txt 2011-11-10 12:35
ComboFix3.txt 2011-11-10 11:42
ComboFix4.txt 2011-11-10 11:21
ComboFix5.txt 2011-11-14 20:16
.
Před spuštěním: Volných bajtů: 108 799 324 160
Po spuštění: Volných bajtů: 108 963 217 408
.
- - End Of File - - EDE7A01D8DC0208A6994796D57EFA489
-
Rudy
- Site Admin
- Příspěvky: 119510
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: sekne se myš cca po 30min na 10s
Ještě dočistíme. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.Collect::
c:\windows\system32\drivers\xqontpno.sys
c:\windows\system32\drivers\giiht.sys
c:\documents and settings\Jetyxx\Data aplikací\Ipnunc.exe
Driver::
xqontpno
giiht
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: sekne se myš cca po 30min na 10s
ComboFix 11-11-14.02 - Jetyxx 14.11.2011 21:58:55.6.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.2.1250.420.1029.18.1023.535 [GMT 1:00]
Spuštěný z: c:\documents and settings\Jetyxx\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Jetyxx\Plocha\CFScript.txt
.
file zipped: c:\documents and settings\Jetyxx\Data aplikací\Ipnunc.exe
file zipped: c:\windows\system32\drivers\giiht.sys
file zipped: c:\windows\system32\drivers\xqontpno.sys
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Jetyxx\Data aplikací\BC.exe
c:\windows\system32\drivers\giiht.sys
c:\windows\system32\drivers\xqontpno.sys
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_aqauh
-------\Service_nneavi
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-14 do 2011-11-14 )))))))))))))))))))))))))))))))
.
.
2011-11-14 20:23 . 2011-11-14 20:23 147456 ----a-w- c:\documents and settings\Jetyxx\Data aplikací\Ipnunc.exe
2011-11-11 11:43 . 2011-11-11 11:43 -------- d-----w- c:\program files\Common Files\Skype
2011-11-11 11:43 . 2011-11-11 11:43 -------- d-----r- c:\program files\Skype
2011-11-10 12:56 . 2011-11-10 12:56 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\Malwarebytes
2011-11-10 12:56 . 2011-11-10 12:56 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2011-11-10 12:56 . 2010-11-29 16:42 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-11-10 12:56 . 2011-11-10 12:56 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-11-10 12:56 . 2010-11-29 16:42 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-10 10:24 . 2011-11-10 10:24 -------- d-----w- c:\program files\trend micro
2011-11-10 10:24 . 2011-11-10 10:24 -------- d-----w- C:\rsit
2011-11-09 22:24 . 2011-11-09 22:24 -------- d-----w- c:\documents and settings\Jetyxx\Local Settings\Data aplikací\ESET
2011-11-09 22:24 . 2011-11-09 22:24 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\ESET
2011-11-09 22:23 . 2011-11-09 22:23 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\ESET
2011-11-09 22:22 . 2011-11-09 22:22 -------- d-----w- c:\program files\Common Files\Java
2011-11-09 22:22 . 2011-11-09 22:22 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-11-09 22:22 . 2011-11-09 22:22 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-11-09 22:22 . 2011-11-09 22:22 -------- d-----w- c:\program files\Java
2011-11-09 22:21 . 2011-11-10 10:42 -------- d-----w- c:\program files\ESET
2011-11-08 18:27 . 2011-11-08 18:27 -------- d-----w- c:\program files\CCleaner
2011-11-06 19:30 . 2007-11-27 02:24 14640 ------w- c:\windows\system32\spmsgXP_2k3.dll
2011-11-05 17:12 . 2004-08-03 22:04 12672 -c--a-w- c:\windows\system32\dllcache\usb8023x.sys
2011-11-05 17:12 . 2004-08-03 22:04 12672 ----a-w- c:\windows\system32\drivers\usb8023x.sys
2011-11-05 17:12 . 2004-08-03 22:04 30080 -c--a-w- c:\windows\system32\dllcache\rndismpx.sys
2011-11-05 17:12 . 2004-08-03 22:04 30080 ----a-w- c:\windows\system32\drivers\rndismpx.sys
2011-11-05 16:39 . 2011-11-05 16:39 -------- d-----w- c:\documents and settings\Jetyxx\Local Settings\Data aplikací\Downloaded Installations
2011-11-05 16:39 . 2009-06-09 23:49 24576 ----a-w- c:\windows\system32\drivers\ANDROIDUSB.sys
2011-11-05 16:39 . 2009-06-09 13:41 1122664 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2011-11-05 16:39 . 2011-11-05 16:39 -------- d-----w- c:\program files\Spirent Communications
2011-11-05 16:38 . 2011-11-05 16:38 -------- d-----w- c:\windows\system32\drivers\umdf
2011-11-05 13:48 . 2011-11-05 13:48 -------- d-----w- c:\windows\system32\wbem\Repository
2011-11-05 12:31 . 2011-11-14 15:05 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\skypePM
2011-11-04 20:49 . 2011-11-14 17:41 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\HTC
2011-11-04 20:47 . 2011-11-05 16:39 -------- d-----w- c:\program files\HTC
2011-11-04 20:47 . 2011-11-05 16:39 -------- d-----w- c:\program files\Common Files\Adobe AIR
2011-11-04 20:46 . 2011-11-04 20:46 -------- d-----w- c:\program files\MSXML 4.0
2011-10-27 20:27 . 2011-10-27 20:28 -------- d-----w- c:\documents and settings\Jetyxx\Local Settings\Data aplikací\TeamSpeak 3 Client
2011-10-27 19:41 . 2011-10-27 19:42 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\teamspeak2
2011-10-27 19:41 . 2011-10-27 19:41 34064 ----a-w- c:\windows\system32\lhacm.acm
2011-10-27 19:40 . 2011-10-27 20:25 -------- d-----w- c:\program files\Teamspeak2_RC2
2011-10-21 15:46 . 2011-10-21 15:50 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\Dev-Cpp
2011-10-21 15:45 . 2011-10-29 20:48 -------- d-----w- C:\Dev-Cpp
2011-10-21 14:10 . 2011-10-21 14:10 -------- d-----w- c:\program files\Stardock
2011-10-21 14:02 . 2011-10-21 14:03 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\Rainmeter
2011-10-21 13:44 . 2009-08-24 07:15 761152 ----a-w- c:\windows\msvcr100.dll
2011-10-21 13:44 . 2007-11-06 22:19 655872 ----a-w- c:\windows\msvcr90.dll
2011-10-21 13:44 . 2007-04-05 10:16 626688 ----a-w- c:\windows\msvcr80.dll
2011-10-21 13:44 . 2005-10-20 20:31 540672 ----a-w- c:\windows\msvcp80.dll
2011-10-21 13:44 . 2004-01-11 21:00 348160 ----a-w- c:\windows\msvcr71.dll
2011-10-21 13:44 . 2003-03-19 00:14 499712 ----a-w- c:\windows\msvcp71.dll
2011-10-21 13:44 . 2000-11-29 00:07 307200 ----a-w- c:\windows\msvcr70.dll
2011-10-21 13:17 . 2011-10-21 13:37 -------- d-----w- c:\windows\SxsCaPendDel
2011-10-21 12:56 . 2011-10-21 12:57 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\GetRightToGo
2011-10-19 13:08 . 2011-11-14 15:03 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\GarenaPlus
2011-10-19 13:08 . 2011-11-05 15:14 -------- d-----w- c:\program files\Garena Plus
2011-10-19 13:08 . 2011-11-14 15:03 -------- d-----w- c:\documents and settings\All Users\Data aplikací\GarenaMessenger
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-11 15:32 . 2011-10-11 15:32 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-10 17:23 . 2011-10-10 17:23 232512 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
.
.
((((((((((((((((((((((((((((( SnapShot_2011-11-14_20.21.36 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-11-14 21:03 . 2011-11-14 21:03 16384 c:\windows\Temp\Perflib_Perfdata_ac0.dat
+ 2011-11-14 21:03 . 2011-11-14 21:03 16384 c:\windows\Temp\Perflib_Perfdata_6d4.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-10-11 14940040]
"Ipnunc"="c:\documents and settings\Jetyxx\Data aplikací\Ipnunc.exe" [2011-11-14 147456]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CHotkey"="mHotkey.exe" [2002-07-23 477184]
"SoundMan"="SOUNDMAN.EXE" [2005-01-20 77824]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-11-17 7700480]
"nwiz"="nwiz.exe" [2006-11-17 1622016]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-11-17 86016]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
"HTC Sync Loader"="c:\program files\HTC\HTC Sync 3.0\htcUPCTLoader.exe" [2011-03-08 585728]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-18 15360]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\BitTorrent\\BitTorrent.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Garena Classic\\Garena.exe"=
"c:\\Program Files\\Garena Plus\\Room\\garena_room.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [10.10.2011 18:23 232512]
R2 PassThru Service;Internet Pass-Through Service;c:\program files\HTC\Internet Pass-Through\PassThruSvr.exe [16.9.2010 14:06 80896]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\drivers\htcnprot.sys [22.6.2010 18:01 21248]
S3 GGSAFERDriver;GGSAFER Driver;\??\c:\program files\Garena Plus\Room\safedrv.sys --> c:\program files\Garena Plus\Room\safedrv.sys [?]
S3 HTCAND32;HTC Device Driver;c:\windows\system32\drivers\ANDROIDUSB.sys [5.11.2011 17:39 24576]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-14 22:03
Windows 5.1.2600 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(3688)
c:\windows\system32\msi.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\mHotkey.exe
c:\windows\SOUNDMAN.EXE
c:\windows\system32\RUNDLL32.EXE
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\nvsvc32.exe
c:\program files\Skype\Plugin Manager\skypePM.exe
c:\program files\HTC\Internet Pass-Through\htcnat.exe
c:\windows\system32\wscntfy.exe
c:\windows\system32\imapi.exe
.
**************************************************************************
.
Celkový čas: 2011-11-14 22:05:17 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-11-14 21:05
ComboFix2.txt 2011-11-14 20:22
ComboFix3.txt 2011-11-10 12:35
ComboFix4.txt 2011-11-10 11:42
ComboFix5.txt 2011-11-14 20:58
.
Před spuštěním: Volných bajtů: 108 954 136 576
Po spuštění: Volných bajtů: 108 886 220 800
.
- - End Of File - - CB0076B1A4743E22F422F02ECE550D0A
Nahr nˇ probŘhlo ŁspŘçnŘ
Microsoft Windows XP Home Edition 5.1.2600.2.1250.420.1029.18.1023.535 [GMT 1:00]
Spuštěný z: c:\documents and settings\Jetyxx\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Jetyxx\Plocha\CFScript.txt
.
file zipped: c:\documents and settings\Jetyxx\Data aplikací\Ipnunc.exe
file zipped: c:\windows\system32\drivers\giiht.sys
file zipped: c:\windows\system32\drivers\xqontpno.sys
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Jetyxx\Data aplikací\BC.exe
c:\windows\system32\drivers\giiht.sys
c:\windows\system32\drivers\xqontpno.sys
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_aqauh
-------\Service_nneavi
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-14 do 2011-11-14 )))))))))))))))))))))))))))))))
.
.
2011-11-14 20:23 . 2011-11-14 20:23 147456 ----a-w- c:\documents and settings\Jetyxx\Data aplikací\Ipnunc.exe
2011-11-11 11:43 . 2011-11-11 11:43 -------- d-----w- c:\program files\Common Files\Skype
2011-11-11 11:43 . 2011-11-11 11:43 -------- d-----r- c:\program files\Skype
2011-11-10 12:56 . 2011-11-10 12:56 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\Malwarebytes
2011-11-10 12:56 . 2011-11-10 12:56 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2011-11-10 12:56 . 2010-11-29 16:42 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-11-10 12:56 . 2011-11-10 12:56 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-11-10 12:56 . 2010-11-29 16:42 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-10 10:24 . 2011-11-10 10:24 -------- d-----w- c:\program files\trend micro
2011-11-10 10:24 . 2011-11-10 10:24 -------- d-----w- C:\rsit
2011-11-09 22:24 . 2011-11-09 22:24 -------- d-----w- c:\documents and settings\Jetyxx\Local Settings\Data aplikací\ESET
2011-11-09 22:24 . 2011-11-09 22:24 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\ESET
2011-11-09 22:23 . 2011-11-09 22:23 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\ESET
2011-11-09 22:22 . 2011-11-09 22:22 -------- d-----w- c:\program files\Common Files\Java
2011-11-09 22:22 . 2011-11-09 22:22 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-11-09 22:22 . 2011-11-09 22:22 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-11-09 22:22 . 2011-11-09 22:22 -------- d-----w- c:\program files\Java
2011-11-09 22:21 . 2011-11-10 10:42 -------- d-----w- c:\program files\ESET
2011-11-08 18:27 . 2011-11-08 18:27 -------- d-----w- c:\program files\CCleaner
2011-11-06 19:30 . 2007-11-27 02:24 14640 ------w- c:\windows\system32\spmsgXP_2k3.dll
2011-11-05 17:12 . 2004-08-03 22:04 12672 -c--a-w- c:\windows\system32\dllcache\usb8023x.sys
2011-11-05 17:12 . 2004-08-03 22:04 12672 ----a-w- c:\windows\system32\drivers\usb8023x.sys
2011-11-05 17:12 . 2004-08-03 22:04 30080 -c--a-w- c:\windows\system32\dllcache\rndismpx.sys
2011-11-05 17:12 . 2004-08-03 22:04 30080 ----a-w- c:\windows\system32\drivers\rndismpx.sys
2011-11-05 16:39 . 2011-11-05 16:39 -------- d-----w- c:\documents and settings\Jetyxx\Local Settings\Data aplikací\Downloaded Installations
2011-11-05 16:39 . 2009-06-09 23:49 24576 ----a-w- c:\windows\system32\drivers\ANDROIDUSB.sys
2011-11-05 16:39 . 2009-06-09 13:41 1122664 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2011-11-05 16:39 . 2011-11-05 16:39 -------- d-----w- c:\program files\Spirent Communications
2011-11-05 16:38 . 2011-11-05 16:38 -------- d-----w- c:\windows\system32\drivers\umdf
2011-11-05 13:48 . 2011-11-05 13:48 -------- d-----w- c:\windows\system32\wbem\Repository
2011-11-05 12:31 . 2011-11-14 15:05 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\skypePM
2011-11-04 20:49 . 2011-11-14 17:41 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\HTC
2011-11-04 20:47 . 2011-11-05 16:39 -------- d-----w- c:\program files\HTC
2011-11-04 20:47 . 2011-11-05 16:39 -------- d-----w- c:\program files\Common Files\Adobe AIR
2011-11-04 20:46 . 2011-11-04 20:46 -------- d-----w- c:\program files\MSXML 4.0
2011-10-27 20:27 . 2011-10-27 20:28 -------- d-----w- c:\documents and settings\Jetyxx\Local Settings\Data aplikací\TeamSpeak 3 Client
2011-10-27 19:41 . 2011-10-27 19:42 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\teamspeak2
2011-10-27 19:41 . 2011-10-27 19:41 34064 ----a-w- c:\windows\system32\lhacm.acm
2011-10-27 19:40 . 2011-10-27 20:25 -------- d-----w- c:\program files\Teamspeak2_RC2
2011-10-21 15:46 . 2011-10-21 15:50 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\Dev-Cpp
2011-10-21 15:45 . 2011-10-29 20:48 -------- d-----w- C:\Dev-Cpp
2011-10-21 14:10 . 2011-10-21 14:10 -------- d-----w- c:\program files\Stardock
2011-10-21 14:02 . 2011-10-21 14:03 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\Rainmeter
2011-10-21 13:44 . 2009-08-24 07:15 761152 ----a-w- c:\windows\msvcr100.dll
2011-10-21 13:44 . 2007-11-06 22:19 655872 ----a-w- c:\windows\msvcr90.dll
2011-10-21 13:44 . 2007-04-05 10:16 626688 ----a-w- c:\windows\msvcr80.dll
2011-10-21 13:44 . 2005-10-20 20:31 540672 ----a-w- c:\windows\msvcp80.dll
2011-10-21 13:44 . 2004-01-11 21:00 348160 ----a-w- c:\windows\msvcr71.dll
2011-10-21 13:44 . 2003-03-19 00:14 499712 ----a-w- c:\windows\msvcp71.dll
2011-10-21 13:44 . 2000-11-29 00:07 307200 ----a-w- c:\windows\msvcr70.dll
2011-10-21 13:17 . 2011-10-21 13:37 -------- d-----w- c:\windows\SxsCaPendDel
2011-10-21 12:56 . 2011-10-21 12:57 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\GetRightToGo
2011-10-19 13:08 . 2011-11-14 15:03 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\GarenaPlus
2011-10-19 13:08 . 2011-11-05 15:14 -------- d-----w- c:\program files\Garena Plus
2011-10-19 13:08 . 2011-11-14 15:03 -------- d-----w- c:\documents and settings\All Users\Data aplikací\GarenaMessenger
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-11 15:32 . 2011-10-11 15:32 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-10 17:23 . 2011-10-10 17:23 232512 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
.
.
((((((((((((((((((((((((((((( SnapShot_2011-11-14_20.21.36 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-11-14 21:03 . 2011-11-14 21:03 16384 c:\windows\Temp\Perflib_Perfdata_ac0.dat
+ 2011-11-14 21:03 . 2011-11-14 21:03 16384 c:\windows\Temp\Perflib_Perfdata_6d4.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-10-11 14940040]
"Ipnunc"="c:\documents and settings\Jetyxx\Data aplikací\Ipnunc.exe" [2011-11-14 147456]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CHotkey"="mHotkey.exe" [2002-07-23 477184]
"SoundMan"="SOUNDMAN.EXE" [2005-01-20 77824]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-11-17 7700480]
"nwiz"="nwiz.exe" [2006-11-17 1622016]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-11-17 86016]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
"HTC Sync Loader"="c:\program files\HTC\HTC Sync 3.0\htcUPCTLoader.exe" [2011-03-08 585728]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-18 15360]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\BitTorrent\\BitTorrent.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Garena Classic\\Garena.exe"=
"c:\\Program Files\\Garena Plus\\Room\\garena_room.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [10.10.2011 18:23 232512]
R2 PassThru Service;Internet Pass-Through Service;c:\program files\HTC\Internet Pass-Through\PassThruSvr.exe [16.9.2010 14:06 80896]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\drivers\htcnprot.sys [22.6.2010 18:01 21248]
S3 GGSAFERDriver;GGSAFER Driver;\??\c:\program files\Garena Plus\Room\safedrv.sys --> c:\program files\Garena Plus\Room\safedrv.sys [?]
S3 HTCAND32;HTC Device Driver;c:\windows\system32\drivers\ANDROIDUSB.sys [5.11.2011 17:39 24576]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-14 22:03
Windows 5.1.2600 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(3688)
c:\windows\system32\msi.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\mHotkey.exe
c:\windows\SOUNDMAN.EXE
c:\windows\system32\RUNDLL32.EXE
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\nvsvc32.exe
c:\program files\Skype\Plugin Manager\skypePM.exe
c:\program files\HTC\Internet Pass-Through\htcnat.exe
c:\windows\system32\wscntfy.exe
c:\windows\system32\imapi.exe
.
**************************************************************************
.
Celkový čas: 2011-11-14 22:05:17 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-11-14 21:05
ComboFix2.txt 2011-11-14 20:22
ComboFix3.txt 2011-11-10 12:35
ComboFix4.txt 2011-11-10 11:42
ComboFix5.txt 2011-11-14 20:58
.
Před spuštěním: Volných bajtů: 108 954 136 576
Po spuštění: Volných bajtů: 108 886 220 800
.
- - End Of File - - CB0076B1A4743E22F422F02ECE550D0A
Nahr nˇ probŘhlo ŁspŘçnŘ
-
Rudy
- Site Admin
- Příspěvky: 119510
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: sekne se myš cca po 30min na 10s
Ještě jednou spusťte CF tímto skriptem:
Registry::
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Ipnunc"=-
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: sekne se myš cca po 30min na 10s
děkuji za trpělivost nedostal jsem se na pc
ComboFix 11-11-15.06 - Jetyxx 16.11.2011 13:04:21.7.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.2.1250.420.1029.18.1023.636 [GMT 1:00]
Spuštěný z: c:\documents and settings\Jetyxx\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Jetyxx\Plocha\CFScript.txt
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-16 do 2011-11-16 )))))))))))))))))))))))))))))))
.
.
2011-11-16 06:45 . 2011-11-16 06:45 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\LolClient
2011-11-15 23:40 . 2011-11-15 23:40 -------- d-----w- C:\Riot Games
2011-11-14 20:23 . 2011-11-14 20:23 147456 ----a-w- c:\documents and settings\Jetyxx\Data aplikací\Ipnunc.exe
2011-11-11 11:43 . 2011-11-11 11:43 -------- d-----w- c:\program files\Common Files\Skype
2011-11-11 11:43 . 2011-11-11 11:43 -------- d-----r- c:\program files\Skype
2011-11-10 12:56 . 2011-11-10 12:56 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\Malwarebytes
2011-11-10 12:56 . 2011-11-10 12:56 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2011-11-10 12:56 . 2010-11-29 16:42 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-11-10 12:56 . 2011-11-10 12:56 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-11-10 12:56 . 2010-11-29 16:42 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-10 10:24 . 2011-11-10 10:24 -------- d-----w- c:\program files\trend micro
2011-11-10 10:24 . 2011-11-10 10:24 -------- d-----w- C:\rsit
2011-11-09 22:24 . 2011-11-09 22:24 -------- d-----w- c:\documents and settings\Jetyxx\Local Settings\Data aplikací\ESET
2011-11-09 22:24 . 2011-11-09 22:24 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\ESET
2011-11-09 22:23 . 2011-11-09 22:23 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\ESET
2011-11-09 22:22 . 2011-11-09 22:22 -------- d-----w- c:\program files\Common Files\Java
2011-11-09 22:22 . 2011-11-09 22:22 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-11-09 22:22 . 2011-11-09 22:22 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-11-09 22:22 . 2011-11-09 22:22 -------- d-----w- c:\program files\Java
2011-11-09 22:21 . 2011-11-10 10:42 -------- d-----w- c:\program files\ESET
2011-11-08 18:27 . 2011-11-08 18:27 -------- d-----w- c:\program files\CCleaner
2011-11-06 19:30 . 2007-11-27 02:24 14640 ------w- c:\windows\system32\spmsgXP_2k3.dll
2011-11-05 17:12 . 2004-08-03 22:04 12672 -c--a-w- c:\windows\system32\dllcache\usb8023x.sys
2011-11-05 17:12 . 2004-08-03 22:04 12672 ----a-w- c:\windows\system32\drivers\usb8023x.sys
2011-11-05 17:12 . 2004-08-03 22:04 30080 -c--a-w- c:\windows\system32\dllcache\rndismpx.sys
2011-11-05 17:12 . 2004-08-03 22:04 30080 ----a-w- c:\windows\system32\drivers\rndismpx.sys
2011-11-05 16:39 . 2011-11-05 16:39 -------- d-----w- c:\documents and settings\Jetyxx\Local Settings\Data aplikací\Downloaded Installations
2011-11-05 16:39 . 2009-06-09 23:49 24576 ----a-w- c:\windows\system32\drivers\ANDROIDUSB.sys
2011-11-05 16:39 . 2009-06-09 13:41 1122664 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2011-11-05 16:39 . 2011-11-05 16:39 -------- d-----w- c:\program files\Spirent Communications
2011-11-05 16:38 . 2011-11-05 16:38 -------- d-----w- c:\windows\system32\drivers\umdf
2011-11-05 13:48 . 2011-11-05 13:48 -------- d-----w- c:\windows\system32\wbem\Repository
2011-11-05 12:31 . 2011-11-16 11:50 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\skypePM
2011-11-04 20:49 . 2011-11-14 17:41 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\HTC
2011-11-04 20:47 . 2011-11-05 16:39 -------- d-----w- c:\program files\HTC
2011-11-04 20:47 . 2011-11-05 16:39 -------- d-----w- c:\program files\Common Files\Adobe AIR
2011-11-04 20:46 . 2011-11-04 20:46 -------- d-----w- c:\program files\MSXML 4.0
2011-10-27 20:27 . 2011-10-27 20:28 -------- d-----w- c:\documents and settings\Jetyxx\Local Settings\Data aplikací\TeamSpeak 3 Client
2011-10-27 19:41 . 2011-10-27 19:42 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\teamspeak2
2011-10-27 19:41 . 2011-10-27 19:41 34064 ----a-w- c:\windows\system32\lhacm.acm
2011-10-27 19:40 . 2011-10-27 20:25 -------- d-----w- c:\program files\Teamspeak2_RC2
2011-10-21 15:46 . 2011-10-21 15:50 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\Dev-Cpp
2011-10-21 15:45 . 2011-10-29 20:48 -------- d-----w- C:\Dev-Cpp
2011-10-21 14:10 . 2011-10-21 14:10 -------- d-----w- c:\program files\Stardock
2011-10-21 14:02 . 2011-10-21 14:03 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\Rainmeter
2011-10-21 13:44 . 2009-08-24 07:15 761152 ----a-w- c:\windows\msvcr100.dll
2011-10-21 13:44 . 2007-11-06 22:19 655872 ----a-w- c:\windows\msvcr90.dll
2011-10-21 13:44 . 2007-04-05 10:16 626688 ----a-w- c:\windows\msvcr80.dll
2011-10-21 13:44 . 2005-10-20 20:31 540672 ----a-w- c:\windows\msvcp80.dll
2011-10-21 13:44 . 2004-01-11 21:00 348160 ----a-w- c:\windows\msvcr71.dll
2011-10-21 13:44 . 2003-03-19 00:14 499712 ----a-w- c:\windows\msvcp71.dll
2011-10-21 13:44 . 2000-11-29 00:07 307200 ----a-w- c:\windows\msvcr70.dll
2011-10-21 13:17 . 2011-10-21 13:37 -------- d-----w- c:\windows\SxsCaPendDel
2011-10-21 12:56 . 2011-10-21 12:57 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\GetRightToGo
2011-10-19 13:08 . 2011-11-15 15:58 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\GarenaPlus
2011-10-19 13:08 . 2011-11-05 15:14 -------- d-----w- c:\program files\Garena Plus
2011-10-19 13:08 . 2011-11-15 15:17 -------- d-----w- c:\documents and settings\All Users\Data aplikací\GarenaMessenger
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-11 15:32 . 2011-10-11 15:32 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-10 17:23 . 2011-10-10 17:23 232512 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
.
.
((((((((((((((((((((((((((((( SnapShot_2011-11-14_20.21.36 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-11-16 11:50 . 2011-11-16 11:50 16384 c:\windows\Temp\Perflib_Perfdata_24c.dat
+ 2011-10-10 12:35 . 2008-07-31 09:41 68616 c:\windows\system32\XAPOFX1_1.dll
- 2011-10-10 12:35 . 2008-07-31 08:41 68616 c:\windows\system32\XAPOFX1_1.dll
- 2004-08-18 12:00 . 2011-11-14 18:00 60376 c:\windows\system32\perfc009.dat
+ 2004-08-18 12:00 . 2011-11-16 11:54 60376 c:\windows\system32\perfc009.dat
+ 2004-08-18 12:00 . 2011-11-16 11:54 71282 c:\windows\system32\perfc005.dat
- 2004-08-18 12:00 . 2011-11-14 18:00 71282 c:\windows\system32\perfc005.dat
+ 2011-10-10 12:35 . 2008-07-31 09:40 509448 c:\windows\system32\XAudio2_2.dll
- 2011-10-10 12:35 . 2008-07-31 08:40 509448 c:\windows\system32\XAudio2_2.dll
+ 2004-08-18 12:00 . 2011-11-16 11:54 399964 c:\windows\system32\perfh009.dat
- 2004-08-18 12:00 . 2011-11-14 18:00 399964 c:\windows\system32\perfh009.dat
- 2004-08-18 12:00 . 2011-11-14 18:00 397586 c:\windows\system32\perfh005.dat
+ 2004-08-18 12:00 . 2011-11-16 11:54 397586 c:\windows\system32\perfh005.dat
- 2011-10-10 12:35 . 2008-07-10 09:01 467984 c:\windows\system32\d3dx10_39.dll
+ 2011-10-10 12:35 . 2008-07-12 07:18 467984 c:\windows\system32\d3dx10_39.dll
- 2011-10-10 12:35 . 2008-07-10 09:00 3851784 c:\windows\system32\D3DX9_39.dll
+ 2011-10-10 12:35 . 2008-07-12 07:18 3851784 c:\windows\system32\D3DX9_39.dll
- 2011-10-10 12:35 . 2008-07-10 09:00 1493528 c:\windows\system32\D3DCompiler_39.dll
+ 2011-10-10 12:35 . 2008-07-12 07:18 1493528 c:\windows\system32\D3DCompiler_39.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-10-11 14940040]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CHotkey"="mHotkey.exe" [2002-07-23 477184]
"SoundMan"="SOUNDMAN.EXE" [2005-01-20 77824]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-11-17 7700480]
"nwiz"="nwiz.exe" [2006-11-17 1622016]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-11-17 86016]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
"HTC Sync Loader"="c:\program files\HTC\HTC Sync 3.0\htcUPCTLoader.exe" [2011-03-08 585728]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-18 15360]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\BitTorrent\\BitTorrent.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Garena Classic\\Garena.exe"=
"c:\\Program Files\\Garena Plus\\Room\\garena_room.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [10.10.2011 18:23 232512]
R2 PassThru Service;Internet Pass-Through Service;c:\program files\HTC\Internet Pass-Through\PassThruSvr.exe [16.9.2010 14:06 80896]
S3 GGSAFERDriver;GGSAFER Driver;\??\c:\program files\Garena Plus\Room\safedrv.sys --> c:\program files\Garena Plus\Room\safedrv.sys [?]
S3 HTCAND32;HTC Device Driver;c:\windows\system32\drivers\ANDROIDUSB.sys [5.11.2011 17:39 24576]
S3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\drivers\htcnprot.sys [22.6.2010 18:01 21248]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.1
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-16 13:08
Windows 5.1.2600 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(3596)
c:\windows\system32\msi.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Celkový čas: 2011-11-16 13:09:14
ComboFix-quarantined-files.txt 2011-11-16 12:09
ComboFix2.txt 2011-11-14 21:10
ComboFix3.txt 2011-11-14 20:22
ComboFix4.txt 2011-11-10 12:35
ComboFix5.txt 2011-11-16 12:03
.
Před spuštěním: Volných bajtů: 106 570 600 448
Po spuštění: Volných bajtů: 106 587 148 288
.
- - End Of File - - FC2B0A4DD9EECDD1DC282D434DCAF0D2
ComboFix 11-11-15.06 - Jetyxx 16.11.2011 13:04:21.7.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.2.1250.420.1029.18.1023.636 [GMT 1:00]
Spuštěný z: c:\documents and settings\Jetyxx\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Jetyxx\Plocha\CFScript.txt
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-16 do 2011-11-16 )))))))))))))))))))))))))))))))
.
.
2011-11-16 06:45 . 2011-11-16 06:45 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\LolClient
2011-11-15 23:40 . 2011-11-15 23:40 -------- d-----w- C:\Riot Games
2011-11-14 20:23 . 2011-11-14 20:23 147456 ----a-w- c:\documents and settings\Jetyxx\Data aplikací\Ipnunc.exe
2011-11-11 11:43 . 2011-11-11 11:43 -------- d-----w- c:\program files\Common Files\Skype
2011-11-11 11:43 . 2011-11-11 11:43 -------- d-----r- c:\program files\Skype
2011-11-10 12:56 . 2011-11-10 12:56 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\Malwarebytes
2011-11-10 12:56 . 2011-11-10 12:56 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2011-11-10 12:56 . 2010-11-29 16:42 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-11-10 12:56 . 2011-11-10 12:56 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-11-10 12:56 . 2010-11-29 16:42 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-10 10:24 . 2011-11-10 10:24 -------- d-----w- c:\program files\trend micro
2011-11-10 10:24 . 2011-11-10 10:24 -------- d-----w- C:\rsit
2011-11-09 22:24 . 2011-11-09 22:24 -------- d-----w- c:\documents and settings\Jetyxx\Local Settings\Data aplikací\ESET
2011-11-09 22:24 . 2011-11-09 22:24 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\ESET
2011-11-09 22:23 . 2011-11-09 22:23 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\ESET
2011-11-09 22:22 . 2011-11-09 22:22 -------- d-----w- c:\program files\Common Files\Java
2011-11-09 22:22 . 2011-11-09 22:22 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-11-09 22:22 . 2011-11-09 22:22 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-11-09 22:22 . 2011-11-09 22:22 -------- d-----w- c:\program files\Java
2011-11-09 22:21 . 2011-11-10 10:42 -------- d-----w- c:\program files\ESET
2011-11-08 18:27 . 2011-11-08 18:27 -------- d-----w- c:\program files\CCleaner
2011-11-06 19:30 . 2007-11-27 02:24 14640 ------w- c:\windows\system32\spmsgXP_2k3.dll
2011-11-05 17:12 . 2004-08-03 22:04 12672 -c--a-w- c:\windows\system32\dllcache\usb8023x.sys
2011-11-05 17:12 . 2004-08-03 22:04 12672 ----a-w- c:\windows\system32\drivers\usb8023x.sys
2011-11-05 17:12 . 2004-08-03 22:04 30080 -c--a-w- c:\windows\system32\dllcache\rndismpx.sys
2011-11-05 17:12 . 2004-08-03 22:04 30080 ----a-w- c:\windows\system32\drivers\rndismpx.sys
2011-11-05 16:39 . 2011-11-05 16:39 -------- d-----w- c:\documents and settings\Jetyxx\Local Settings\Data aplikací\Downloaded Installations
2011-11-05 16:39 . 2009-06-09 23:49 24576 ----a-w- c:\windows\system32\drivers\ANDROIDUSB.sys
2011-11-05 16:39 . 2009-06-09 13:41 1122664 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2011-11-05 16:39 . 2011-11-05 16:39 -------- d-----w- c:\program files\Spirent Communications
2011-11-05 16:38 . 2011-11-05 16:38 -------- d-----w- c:\windows\system32\drivers\umdf
2011-11-05 13:48 . 2011-11-05 13:48 -------- d-----w- c:\windows\system32\wbem\Repository
2011-11-05 12:31 . 2011-11-16 11:50 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\skypePM
2011-11-04 20:49 . 2011-11-14 17:41 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\HTC
2011-11-04 20:47 . 2011-11-05 16:39 -------- d-----w- c:\program files\HTC
2011-11-04 20:47 . 2011-11-05 16:39 -------- d-----w- c:\program files\Common Files\Adobe AIR
2011-11-04 20:46 . 2011-11-04 20:46 -------- d-----w- c:\program files\MSXML 4.0
2011-10-27 20:27 . 2011-10-27 20:28 -------- d-----w- c:\documents and settings\Jetyxx\Local Settings\Data aplikací\TeamSpeak 3 Client
2011-10-27 19:41 . 2011-10-27 19:42 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\teamspeak2
2011-10-27 19:41 . 2011-10-27 19:41 34064 ----a-w- c:\windows\system32\lhacm.acm
2011-10-27 19:40 . 2011-10-27 20:25 -------- d-----w- c:\program files\Teamspeak2_RC2
2011-10-21 15:46 . 2011-10-21 15:50 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\Dev-Cpp
2011-10-21 15:45 . 2011-10-29 20:48 -------- d-----w- C:\Dev-Cpp
2011-10-21 14:10 . 2011-10-21 14:10 -------- d-----w- c:\program files\Stardock
2011-10-21 14:02 . 2011-10-21 14:03 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\Rainmeter
2011-10-21 13:44 . 2009-08-24 07:15 761152 ----a-w- c:\windows\msvcr100.dll
2011-10-21 13:44 . 2007-11-06 22:19 655872 ----a-w- c:\windows\msvcr90.dll
2011-10-21 13:44 . 2007-04-05 10:16 626688 ----a-w- c:\windows\msvcr80.dll
2011-10-21 13:44 . 2005-10-20 20:31 540672 ----a-w- c:\windows\msvcp80.dll
2011-10-21 13:44 . 2004-01-11 21:00 348160 ----a-w- c:\windows\msvcr71.dll
2011-10-21 13:44 . 2003-03-19 00:14 499712 ----a-w- c:\windows\msvcp71.dll
2011-10-21 13:44 . 2000-11-29 00:07 307200 ----a-w- c:\windows\msvcr70.dll
2011-10-21 13:17 . 2011-10-21 13:37 -------- d-----w- c:\windows\SxsCaPendDel
2011-10-21 12:56 . 2011-10-21 12:57 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\GetRightToGo
2011-10-19 13:08 . 2011-11-15 15:58 -------- d-----w- c:\documents and settings\Jetyxx\Data aplikací\GarenaPlus
2011-10-19 13:08 . 2011-11-05 15:14 -------- d-----w- c:\program files\Garena Plus
2011-10-19 13:08 . 2011-11-15 15:17 -------- d-----w- c:\documents and settings\All Users\Data aplikací\GarenaMessenger
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-11 15:32 . 2011-10-11 15:32 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-10 17:23 . 2011-10-10 17:23 232512 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
.
.
((((((((((((((((((((((((((((( SnapShot_2011-11-14_20.21.36 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-11-16 11:50 . 2011-11-16 11:50 16384 c:\windows\Temp\Perflib_Perfdata_24c.dat
+ 2011-10-10 12:35 . 2008-07-31 09:41 68616 c:\windows\system32\XAPOFX1_1.dll
- 2011-10-10 12:35 . 2008-07-31 08:41 68616 c:\windows\system32\XAPOFX1_1.dll
- 2004-08-18 12:00 . 2011-11-14 18:00 60376 c:\windows\system32\perfc009.dat
+ 2004-08-18 12:00 . 2011-11-16 11:54 60376 c:\windows\system32\perfc009.dat
+ 2004-08-18 12:00 . 2011-11-16 11:54 71282 c:\windows\system32\perfc005.dat
- 2004-08-18 12:00 . 2011-11-14 18:00 71282 c:\windows\system32\perfc005.dat
+ 2011-10-10 12:35 . 2008-07-31 09:40 509448 c:\windows\system32\XAudio2_2.dll
- 2011-10-10 12:35 . 2008-07-31 08:40 509448 c:\windows\system32\XAudio2_2.dll
+ 2004-08-18 12:00 . 2011-11-16 11:54 399964 c:\windows\system32\perfh009.dat
- 2004-08-18 12:00 . 2011-11-14 18:00 399964 c:\windows\system32\perfh009.dat
- 2004-08-18 12:00 . 2011-11-14 18:00 397586 c:\windows\system32\perfh005.dat
+ 2004-08-18 12:00 . 2011-11-16 11:54 397586 c:\windows\system32\perfh005.dat
- 2011-10-10 12:35 . 2008-07-10 09:01 467984 c:\windows\system32\d3dx10_39.dll
+ 2011-10-10 12:35 . 2008-07-12 07:18 467984 c:\windows\system32\d3dx10_39.dll
- 2011-10-10 12:35 . 2008-07-10 09:00 3851784 c:\windows\system32\D3DX9_39.dll
+ 2011-10-10 12:35 . 2008-07-12 07:18 3851784 c:\windows\system32\D3DX9_39.dll
- 2011-10-10 12:35 . 2008-07-10 09:00 1493528 c:\windows\system32\D3DCompiler_39.dll
+ 2011-10-10 12:35 . 2008-07-12 07:18 1493528 c:\windows\system32\D3DCompiler_39.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-10-11 14940040]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CHotkey"="mHotkey.exe" [2002-07-23 477184]
"SoundMan"="SOUNDMAN.EXE" [2005-01-20 77824]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-11-17 7700480]
"nwiz"="nwiz.exe" [2006-11-17 1622016]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-11-17 86016]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
"HTC Sync Loader"="c:\program files\HTC\HTC Sync 3.0\htcUPCTLoader.exe" [2011-03-08 585728]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-18 15360]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\BitTorrent\\BitTorrent.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Garena Classic\\Garena.exe"=
"c:\\Program Files\\Garena Plus\\Room\\garena_room.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [10.10.2011 18:23 232512]
R2 PassThru Service;Internet Pass-Through Service;c:\program files\HTC\Internet Pass-Through\PassThruSvr.exe [16.9.2010 14:06 80896]
S3 GGSAFERDriver;GGSAFER Driver;\??\c:\program files\Garena Plus\Room\safedrv.sys --> c:\program files\Garena Plus\Room\safedrv.sys [?]
S3 HTCAND32;HTC Device Driver;c:\windows\system32\drivers\ANDROIDUSB.sys [5.11.2011 17:39 24576]
S3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\drivers\htcnprot.sys [22.6.2010 18:01 21248]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.1
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-16 13:08
Windows 5.1.2600 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(3596)
c:\windows\system32\msi.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Celkový čas: 2011-11-16 13:09:14
ComboFix-quarantined-files.txt 2011-11-16 12:09
ComboFix2.txt 2011-11-14 21:10
ComboFix3.txt 2011-11-14 20:22
ComboFix4.txt 2011-11-10 12:35
ComboFix5.txt 2011-11-16 12:03
.
Před spuštěním: Volných bajtů: 106 570 600 448
Po spuštění: Volných bajtů: 106 587 148 288
.
- - End Of File - - FC2B0A4DD9EECDD1DC282D434DCAF0D2
-
Rudy
- Site Admin
- Příspěvky: 119510
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: sekne se myš cca po 30min na 10s
Log již vypadá čistý. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?