Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu, zmenilo mi domovskú adresu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
michajlo
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 65
Registrován: 27 dub 2007 12:38

Re: Prosím o kontrolu logu, zmenilo mi domovskú adresu

#16 Příspěvek od michajlo »

:D uložte Vámi vytvořený TXT soubor jako CFScript.txt na plochu
-po uložení uchopte vámi vytvořený skript levým myšítkem a -přesuňte ho nad ikonu Combofixu, kde ho upustíte:

Obrázek
-po aplikaci na Vás vypadne další log,vložte ho sem


To som spravil a bolo to veľké na to, aby som ten log sem vložil... :)
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosím o kontrolu logu, zmenilo mi domovskú adresu

#17 Příspěvek od motji »

:D ten log rozdělte do více příspěvků :) . Pokud je moc velký, dejte ho na www.leteckaposta.cz a sem vložte link :)
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
michajlo
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 65
Registrován: 27 dub 2007 12:38

Re: Prosím o kontrolu logu, zmenilo mi domovskú adresu

#18 Příspěvek od michajlo »

Skôr sme o tom písali... :)

Fajn, připojte ji k pc :)

:arrow: Pokud nemáte, přesuňte Combofix na plochu
-otevřete si Poznámkový blok
-Do něj zkopírujte text z tohoto okénka

Kód:
Collect::
D:\vlvtdflx.exe
C:\vlvtdflx.exe
D:\AdobeR.exe

Registry::
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5aa4244b-f6db-11dd-9395-00037a8dd304}]
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{87e15f13-02a9-11de-8b33-00037a8dd304}]
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]
[HKCU\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"=""
[HKCU\Software\Microsoft\Internet Explorer\Main]
"Search Page"=""
[HKCU\Software\Microsoft\Internet Explorer\SearchURL]
"(Default)"=""
[HKCU\Software\Microsoft\Internet Explorer\Main]
"Search Bar"=""
[HKCU\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"=""

Extra::

Firefox::
FF - ProfilePath - c:\users\Andrejko\AppData\Roaming\Mozilla\Firefox\Profiles\vyyfj8i8.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search13.net/search.php?clid=486&q=
FF - prefs.js: browser.search.selectedEngine - DAEMON Search
FF - prefs.js: browser.startup.homepage - hxxp://search13.net?clid=486
FF - prefs.js: keyword.URL - hxxp://search13.net/search.php?clid=486&q=

DDS::
uDefault_Search_URL = hxxp://search13.net/




-uložte Vámi vytvořený TXT soubor jako CFScript.txt na plochu
-po uložení uchopte vámi vytvořený skript levým myšítkem a -přesuňte ho nad ikonu Combofixu, kde ho upustíte:


-po aplikaci na Vás vypadne další log,vložte ho sem
Nahoru
michajlo
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 65
Registrován: 27 dub 2007 12:38

Re: Prosím o kontrolu logu, zmenilo mi domovskú adresu

#19 Příspěvek od michajlo »

pardon, už idem posielať.. :D
Nahoru
michajlo
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 65
Registrován: 27 dub 2007 12:38

Re: Prosím o kontrolu logu, zmenilo mi domovskú adresu

#20 Příspěvek od michajlo »

Tu je ten link... http://leteckaposta.cz/306938024
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosím o kontrolu logu, zmenilo mi domovskú adresu

#21 Příspěvek od motji »

Já si sem ten log upravený zkopíruji, at je to přehlednější
:D

ComboFix 10-02-22.07 - Andrejko . 02. 2010 12:05:16.6.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.421.1051.18.3069.2267 [GMT 1:00]
Running from: c:\users\Andrejko\Desktop\ComboFix.exe
Command switches used :: c:\users\Andrejko\Desktop\CFScript.txt
SP: SUPERAntiSpyware *disabled* (Updated) {222A897C-5018-402e-943F-7E7AC8560DA7}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\SIntf16.dll
c:\windows\system32\vbzlib1.dll

.
((((((((((((((((((((((((( Files Created from 2010-01-23 to 2010-02-23 )))))))))))))))))))))))))))))))
.

2010-02-23 11:12 . 2010-02-23 11:12 -------- d-----w- c:\users\Andrejko\AppData\Local\temp
2010-02-23 11:12 . 2010-02-23 11:12 -------- d-----w- c:\users\Public\AppData\Local\temp
2010-02-23 11:12 . 2010-02-23 11:12 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-02-23 11:01 . 2010-02-12 16:41 558448 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\coFFPlgn\components\coFFPlgn.dll
2010-02-23 11:00 . 2010-02-01 18:20 165240 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\IPSFFPlgn\components\IPSFFPl.dll
2010-02-23 10:58 . 2010-02-23 10:59 -------- d-----w- C:\32788R22FWJFW
2010-02-23 09:15 . 2010-02-07 09:00 84912 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20100222.039\NAVENG.SYS
2010-02-23 09:15 . 2010-02-07 09:00 1324720 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20100222.039\NAVEX15.SYS
2010-02-23 09:15 . 2010-01-09 03:27 371248 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20100222.039\EECTRL.SYS
2010-02-23 09:15 . 2010-01-09 03:27 2747440 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20100222.039\CCERASER.DLL
2010-02-23 09:15 . 2010-01-09 03:27 259440 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20100222.039\ECMSVR32.DLL
2010-02-23 09:15 . 2010-01-09 03:27 177520 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20100222.039\NAVENG32.DLL
2010-02-23 09:15 . 2010-01-09 03:27 1647984 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20100222.039\NAVEX32A.DLL
2010-02-23 09:15 . 2010-01-09 03:27 102448 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20100222.039\ERASER.SYS
2010-02-21 21:18 . 2009-10-28 22:37 343088 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20100218.001\IDSvix86.sys
2010-02-21 21:18 . 2009-10-28 22:37 329592 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20100218.001\IDSXpx86.sys
2010-02-21 21:18 . 2009-10-28 22:37 811896 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20100218.001\Scxpx86.dll
2010-02-21 21:18 . 2009-10-28 22:37 488312 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20100218.001\IDSxpx86.dll
2010-02-21 21:18 . 2009-10-28 22:37 466992 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20100218.001\IDSviA64.sys
2010-02-17 11:40 . 2010-02-17 11:40 -------- d-----w- c:\windows\74224F8D4A1748169EDB7BB854DE532C.TMP
2010-02-17 11:39 . 2010-02-17 11:39 -------- d-----w- c:\program files\Ubisoft
2010-02-16 23:38 . 2010-02-16 23:40 -------- d-----w- c:\program files\Armies of Exigo
2010-02-14 21:29 . 2009-10-28 22:37 343088 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20100210.001\IDSvix86.sys
2010-02-14 21:29 . 2009-10-28 22:37 329592 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20100210.001\IDSXpx86.sys
2010-02-14 21:29 . 2009-10-28 22:37 811896 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20100210.001\Scxpx86.dll
2010-02-14 21:29 . 2009-10-28 22:37 488312 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20100210.001\IDSxpx86.dll
2010-02-14 21:29 . 2009-10-28 22:37 466992 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20100210.001\IDSviA64.sys
2010-02-10 08:48 . 2009-12-11 11:43 302080 ----a-w- c:\windows\system32\drivers\srv.sys
2010-02-10 08:48 . 2009-12-11 11:43 98816 ----a-w- c:\windows\system32\drivers\srvnet.sys
2010-02-10 08:48 . 2009-12-08 20:01 3600456 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-02-10 08:48 . 2009-12-08 20:01 3548216 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-01-31 10:20 . 2010-01-31 10:20 -------- d-----w- c:\program files\Common Files\Apple
2010-01-31 10:20 . 2010-01-31 10:20 -------- d-----w- c:\users\Andrejko\AppData\Local\Apple
2010-01-31 10:20 . 2010-01-31 10:20 -------- d-----w- c:\program files\Apple Software Update
2010-01-31 10:20 . 2010-01-31 10:20 -------- d-----w- c:\programdata\Apple
2010-01-31 10:19 . 2010-01-31 10:23 -------- d-----w- c:\program files\QuickTime
2010-01-31 10:17 . 2010-01-31 10:17 -------- d-----w- c:\users\Andrejko\AppData\Roaming\Thinstall
2010-01-30 21:43 . 2010-01-31 10:30 -------- d-----w- c:\program files\Pcsx2
2010-01-25 14:02 . 2009-06-30 08:37 28552 ----a-w- c:\windows\system32\drivers\pavboot.sys
2010-01-25 14:02 . 2010-01-25 14:02 -------- d-----w- c:\program files\Panda Security

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-02-17 12:51 . 2009-03-25 14:18 117760 ----a-w- c:\users\Andrejko\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
2010-02-17 11:40 . 2008-10-22 13:45 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-02-15 11:35 . 2009-07-23 20:21 680 ----a-w- c:\users\Andrejko\AppData\Local\d3d9caps.dat
2010-02-13 21:11 . 2008-04-24 06:44 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-02-13 21:11 . 2009-11-26 09:43 -------- d-----w- c:\program files\Activision
2010-02-11 21:41 . 2010-01-13 00:43 -------- d-----w- c:\programdata\Media Center Programs
2010-02-11 08:21 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2010-02-10 21:30 . 2008-04-24 07:18 -------- d-----w- c:\program files\Google
2010-01-31 10:22 . 2008-11-20 21:10 -------- d-----w- c:\programdata\Apple Computer
2010-01-21 09:38 . 2008-10-22 13:53 1 ----a-w- c:\users\Andrejko\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\stamp.sys
2010-01-13 09:20 . 2010-01-13 09:20 -------- d-----w- c:\programdata\BioWare
2010-01-13 08:44 . 2010-01-13 07:23 -------- d-----w- c:\program files\Common Files\BioWare
2010-01-13 00:44 . 2008-10-26 15:59 -------- d-----w- c:\program files\AGEIA Technologies
2010-01-11 20:48 . 2008-11-28 14:33 -------- d-----w- c:\users\Andrejko\AppData\Roaming\dvdcss
2010-01-11 15:55 . 2010-01-11 15:54 -------- d-----w- c:\users\Andrejko\AppData\Roaming\uTorrent
2010-01-06 10:23 . 2010-01-06 10:23 -------- d-----w- c:\program files\MSXML 4.0
2010-01-06 10:18 . 2010-01-06 10:18 96 ----a-w- c:\users\Andrejko\AppData\Local\fusioncache.dat
2010-01-06 10:13 . 2010-01-06 10:13 -------- d-----w- c:\programdata\Pinnacle
2010-01-02 06:38 . 2010-01-24 20:46 916480 ----a-w- c:\windows\system32\wininet.dll
2010-01-02 06:32 . 2010-01-24 20:46 71680 ----a-w- c:\windows\system32\iesetup.dll
2010-01-02 06:32 . 2010-01-24 20:46 109056 ----a-w- c:\windows\system32\iesysprep.dll
2010-01-02 04:57 . 2010-01-24 20:46 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2009-12-08 20:01 . 2010-02-10 08:47 904776 ----a-w- c:\windows\system32\drivers\tcpip.sys
2009-12-08 18:33 . 2009-12-08 18:33 253139 ----a-w- c:\windows\PDFCreator_Toolbar_Uninstaller_408.exe
2009-12-08 17:26 . 2010-02-10 08:47 30720 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2009-12-04 18:30 . 2010-02-10 08:47 12288 ----a-w- c:\windows\system32\tsbyuv.dll
2009-12-04 18:29 . 2010-02-10 08:47 1314816 ----a-w- c:\windows\system32\quartz.dll
2009-12-04 18:28 . 2010-02-10 08:47 22528 ----a-w- c:\windows\system32\msyuv.dll
2009-12-04 18:28 . 2010-02-10 08:47 31744 ----a-w- c:\windows\system32\msvidc32.dll
2009-12-04 18:28 . 2010-02-10 08:47 123904 ----a-w- c:\windows\system32\msvfw32.dll
2009-12-04 18:28 . 2010-02-10 08:47 13312 ----a-w- c:\windows\system32\msrle32.dll
2009-12-04 18:28 . 2010-02-10 08:47 82944 ----a-w- c:\windows\system32\mciavi32.dll
2009-12-04 18:28 . 2010-02-10 08:47 50176 ----a-w- c:\windows\system32\iyuv_32.dll
2009-12-04 18:27 . 2010-02-10 08:47 91136 ----a-w- c:\windows\system32\avifil32.dll
2009-12-04 15:56 . 2010-02-10 08:47 212992 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2009-12-04 15:56 . 2010-02-10 08:47 105984 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2009-12-02 12:50 . 2009-12-02 12:39 1776 ----a-w- c:\users\Andrejko\AppData\Roaming\ntlog.sys
2009-12-02 12:50 . 2009-12-02 12:39 1776 ----a-w- c:\users\Andrejko\AppData\Roaming\ntlog.sys
2009-12-02 12:18 . 2009-12-02 12:14 7494337 ----a-w- c:\users\Andrejko\AppData\Roaming\FIFA10.exe
2009-12-02 12:18 . 2009-12-02 12:14 7494337 ----a-w- c:\users\Andrejko\AppData\Roaming\FIFA10.exe
2009-11-25 12:11 . 2009-07-14 10:02 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2009-03-31 20:47 . 2009-04-22 10:33 324976 ----a-w- c:\program files\mozilla firefox\components\coFFPlgn.dll
2009-03-01 22:08 . 2009-03-01 21:15 895008 --sha-w- c:\windows\System32\drivers\fidbox.dat
.

((((((((((((((((((((((((((((( SnapShot@2009-12-01_14.16.17 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-01-11 07:16 . 2010-01-11 07:16 91656 c:\windows\winsxs\x86_microsoft.msxml2r_6bd6b9abf345378f_4.1.1.0_none_365945b9da656e4d\msxml4r.dll
+ 2010-01-06 10:24 . 2010-01-06 10:24 82432 c:\windows\winsxs\x86_microsoft.msxml2r_6bd6b9abf345378f_4.1.0.0_none_3658456fda6654f6\msxml4r.dll
+ 2010-02-10 08:47 . 2009-12-28 12:05 31744 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.22295_none_9445b91c9f4a779f\msvidc32.dll
+ 2010-02-10 08:47 . 2009-12-28 12:04 13312 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.22295_none_9445b91c9f4a779f\msrle32.dll
+ 2010-02-10 08:47 . 2009-12-28 12:04 82944 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.22295_none_9445b91c9f4a779f\mciavi32.dll
+ 2010-02-10 08:47 . 2009-12-28 12:02 91136 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.22295_none_9445b91c9f4a779f\avifil32.dll
+ 2010-02-10 08:47 . 2009-12-28 12:02 65024 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.22295_none_9445b91c9f4a779f\avicap32.dll
+ 2010-02-10 08:47 . 2009-12-04 18:28 31744 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.18158_none_93ea5cdf8609b416\msvidc32.dll
+ 2009-12-09 21:57 . 2009-11-09 12:53 22528 c:\windows\winsxs\x86_microsoft-windows-processmodellibraries_31bf3856ad364e35_6.0.6002.22261_none_dccc93dec1560594\wbhst_pm.dll
+ 2009-12-09 21:57 . 2009-11-09 12:53 48128 c:\windows\winsxs\x86_microsoft-windows-processmodellibraries_31bf3856ad364e35_6.0.6002.22261_none_dccc93dec1560594\w3wphost.dll

+ 2009-12-12 00:12 . 2009-12-12 00:12 543744 c:\windows\assembly\NativeImages_v2.0.50727_32\EventViewer\2bcdc9c4b2d9b6fe5f34b2556d937b1d\EventViewer.ni.dll
+ 2009-12-12 00:11 . 2009-12-12 00:11 103936 c:\windows\assembly\NativeImages_v2.0.50727_32\ehiWUapi\9bbb6b6e4992b9aef63f5f299d479a9d\ehiWUapi.ni.dll
+ 2009-12-12 00:11 . 2009-12-12 00:11 338432 c:\windows\assembly\NativeImages_v2.0.50727_32\ehiwmp\94f6a3674e8f4e4e8fa82e4e93bb4094\ehiwmp.ni.dll
+ 2009-12-12 00:11 . 2009-12-12 00:11 797696 c:\windows\assembly\NativeImages_v2.0.50727_32\ehiVidCtl\54c4dad0ab77449a338f9b0e17f7b7d0\ehiVidCtl.ni.dll
+ 2009-12-12 00:10 . 2009-12-12 00:10 965632 c:\windows\assembly\NativeImages_v2.0.50727_32\ehiProxy\266cdaf9ab6478fe4dfad14dccd6434c\ehiProxy.ni.dll
+ 2009-12-12 00:11 . 2009-12-12 00:11 565760 c:\windows\assembly\NativeImages_v2.0.50727_32\ehiPlay\ef0016884aa8f2aff3b31dcc02b96ed0\ehiPlay.ni.dll
+ 2009-12-12 00:10 . 2009-12-12 00:10 160768 c:\windows\assembly\NativeImages_v2.0.50727_32\ehiExtens\d33a77b9163bfb5a488ed34cea5ef217\ehiExtens.ni.dll
+ 2009-12-12 00:10 . 2009-12-12 00:10 243200 c:\windows\assembly\NativeImages_v2.0.50727_32\ehExtHost\6da0bd473a25740c9f037c3c180bd5d2\ehExtHost.ni.exe
+ 2009-12-12 00:11 . 2009-12-12 00:11 305152 c:\windows\assembly\NativeImages_v2.0.50727_32\ehepgdat\934e9445770ccc7acac7fb36f6202a0f\ehepgdat.ni.dll
+ 2009-12-12 00:12 . 2009-12-12 00:12 220160 c:\windows\assembly\NativeImages_v2.0.50727_32\ehCIR\2993150a626a90f2bd7853457f9fd6ac\ehCIR.ni.dll
+ 2009-12-12 00:12 . 2009-12-12 00:12 220672 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\5499b7db34d8390a9dd11cce08a2a0a7\CustomMarshalers.ni.dll
+ 2009-12-12 00:09 . 2009-12-12 00:09 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\8cdd74f26f632d6087e8f79651870033\ComSvcConfig.ni.exe
+ 2009-12-12 00:09 . 2009-12-12 00:09 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\BDATunePIA\9dc4a984d53e09ced0de5b7fc30ff07c\BDATunePIA.ni.dll
+ 2009-12-12 00:12 . 2009-12-12 00:12 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\5f5dce4fc044ca88c9be8513d05fd5c6\AspNetMMCExt.ni.dll
+ 2009-12-11 23:50 . 2009-12-11 23:50 139264 c:\windows\assembly\GAC_MSIL\System.Xml.Linq\3.5.0.0__b77a5c561934e089\System.Xml.Linq.dll
+ 2009-12-11 23:50 . 2009-12-11 23:50 517152 c:\windows\assembly\GAC_MSIL\System.WorkflowServices\3.5.0.0__31bf3856ad364e35\System.WorkflowServices.dll
+ 2009-12-11 23:50 . 2009-12-11 23:50 327680 c:\windows\assembly\GAC_MSIL\System.Web.Extensions.Design\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.Design.dll
+ 2009-12-11 23:50 . 2009-12-11 23:50 496672 c:\windows\assembly\GAC_MSIL\System.ServiceModel.Web\3.5.0.0__31bf3856ad364e35\System.ServiceModel.Web.dll
+ 2009-12-11 23:50 . 2009-12-11 23:50 233472 c:\windows\assembly\GAC_MSIL\System.Net\3.5.0.0__b03f5f7f11d50a3a\System.Net.dll
+ 2009-12-11 23:50 . 2009-12-11 23:50 139264 c:\windows\assembly\GAC_MSIL\System.Management.Instrumentation\3.5.0.0__b77a5c561934e089\System.Management.Instrumentation.dll
+ 2009-12-11 23:50 . 2009-12-11 23:50 282624 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement\3.5.0.0__b77a5c561934e089\System.DirectoryServices.AccountManagement.dll
+ 2009-12-11 23:50 . 2009-12-11 23:50 667648 c:\windows\assembly\GAC_MSIL\System.Data.Linq\3.5.0.0__b77a5c561934e089\System.Data.Linq.dll
+ 2009-12-11 23:50 . 2009-12-11 23:50 663552 c:\windows\assembly\GAC_MSIL\System.Core\3.5.0.0__b77a5c561934e089\System.Core.dll
+ 2009-12-11 23:50 . 2009-12-11 23:50 159744 c:\windows\assembly\GAC_MSIL\System.AddIn\3.5.0.0__b77a5c561934e089\System.AddIn.dll
+ 2009-12-11 23:50 . 2009-12-11 23:50 794624 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks.v3.5\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.v3.5.dll
+ 2009-12-11 23:50 . 2009-12-11 23:50 737280 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2009-12-11 23:50 . 2009-12-11 23:50 106496 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Conversion.v3.5\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Conversion.v3.5.dll
+ 2010-01-06 10:18 . 2010-01-06 10:18 573440 c:\windows\assembly\GAC\System.Web.Services\1.0.5000.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2010-01-06 10:18 . 2010-01-06 10:18 819200 c:\windows\assembly\GAC\System.Web.Mobile\1.0.5000.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2010-01-06 10:18 . 2010-01-06 10:18 126976 c:\windows\assembly\GAC\System.ServiceProcess\1.0.5000.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2010-01-06 10:18 . 2010-01-06 10:18 131072 c:\windows\assembly\GAC\System.Runtime.Serialization.Formatters.Soap\1.0.5000.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2010-01-06 10:18 . 2010-01-06 10:18 323584 c:\windows\assembly\GAC\System.Runtime.Remoting\1.0.5000.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2010-01-06 10:18 . 2010-01-06 10:18 241664 c:\windows\assembly\GAC\System.Messaging\1.0.5000.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2010-01-06 10:18 . 2010-01-06 10:18 372736 c:\windows\assembly\GAC\System.Management\1.0.5000.0__b03f5f7f11d50a3a\System.Management.dll
+ 2010-01-06 10:18 . 2010-01-06 10:18 241664 c:\windows\assembly\GAC\System.EnterpriseServices\1.0.5000.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2010-01-06 10:18 . 2010-01-06 10:18 466944 c:\windows\assembly\GAC\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2010-01-06 10:18 . 2010-01-06 10:18 303104 c:\windows\assembly\GAC\System.Data.OracleClient\1.0.5000.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2010-01-06 10:18 . 2010-01-06 10:18 299008 c:\windows\assembly\GAC\Microsoft.VisualBasic\7.0.5000.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2010-01-06 10:18 . 2010-01-06 10:18 720896 c:\windows\assembly\GAC\Microsoft.JScript\7.0.5000.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2010-02-19 20:33 . 2010-02-19 20:33 223232 c:\windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
- 2009-11-26 10:33 . 2009-11-26 10:33 223232 c:\windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
+ 2010-02-19 20:34 . 2010-02-19 20:34 178176 c:\windows\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll
- 2009-11-26 10:33 . 2009-11-26 10:33 178176 c:\windows\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll
+ 2010-02-19 20:34 . 2010-02-19 20:34 364544 c:\windows\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll
- 2009-11-26 10:33 . 2009-11-26 10:33 364544 c:\windows\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll
- 2009-11-26 10:33 . 2009-11-26 10:33 159232 c:\windows\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll
+ 2010-02-19 20:33 . 2010-02-19 20:33 159232 c:\windows\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll
- 2009-11-26 10:33 . 2009-11-26 10:33 145920 c:\windows\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll
+ 2010-02-19 20:33 . 2010-02-19 20:33 145920 c:\windows\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll
+ 2010-02-19 20:33 . 2010-02-19 20:33 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-11-26 10:33 . 2009-11-26 10:33 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-11-26 10:33 . 2009-11-26 10:33 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-02-19 20:33 . 2010-02-19 20:33 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-11-26 10:33 . 2009-11-26 10:33 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-02-19 20:33 . 2010-02-19 20:33 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-02-19 20:33 . 2010-02-19 20:33 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-11-26 10:33 . 2009-11-26 10:33 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-02-19 20:33 . 2010-02-19 20:33 577024 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-11-26 10:33 . 2009-11-26 10:33 577024 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-02-19 20:33 . 2010-02-19 20:33 576000 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-11-26 10:33 . 2009-11-26 10:33 576000 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-02-19 20:33 . 2010-02-19 20:33 567296 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-11-26 10:33 . 2009-11-26 10:33 567296 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-02-19 20:33 . 2010-02-19 20:33 563712 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-11-26 10:33 . 2009-11-26 10:33 563712 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-11-26 10:33 . 2009-11-26 10:33 473600 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
+ 2010-02-19 20:33 . 2010-02-19 20:33 473600 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
+ 2010-02-17 11:40 . 2010-02-19 20:32 155648 c:\windows\74224F8D4A1748169EDB7BB854DE532C.TMP\WiseCustomCalla.dll
+ 2010-01-11 07:16 . 2010-01-11 07:16 1348432 c:\windows\winsxs\x86_microsoft.msxml2_6bd6b9abf345378f_4.20.9876.0_none_b7e610287b2b4ea5\msxml4.dll
+ 2010-01-11 07:17 . 2010-01-11 07:17 1286152 c:\windows\winsxs\x86_microsoft.msxml2_6bd6b9abf345378f_4.20.9870.0_none_b7e00e6c7b30b69b\msxml4.dll
+ 2010-01-11 07:18 . 2010-01-11 07:18 1245696 c:\windows\winsxs\x86_microsoft.msxml2_6bd6b9abf345378f_4.20.9841.0_none_b7e10f227b2fceff\msxml4.dll
+ 2010-01-06 10:23 . 2010-01-06 10:23 1233920 c:\windows\winsxs\x86_microsoft.msxml2_6bd6b9abf345378f_4.20.9818.0_none_b7e811947b297f6d\msxml4.dll
+ 2010-02-10 08:48 . 2009-12-08 20:14 3550264 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22283_none_6e4cf969caa5277f\ntoskrnl.exe
+ 2010-02-10 08:48 . 2009-12-08 20:14 3601464 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22283_none_6e4cf969caa5277f\ntkrnlpa.exe
+ 2010-02-10 08:48 . 2009-12-08 20:01 3548216 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18160_none_6dd5fb98b17a03ce\ntoskrnl.exe
+ 2010-02-10 08:48 . 2009-12-08 20:01 3600456 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18160_none_6dd5fb98b17a03ce\ntkrnlpa.exe
+ 2010-02-10 08:48 . 2009-12-08 20:36 3548760 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22577_none_6c755895cd731bc6\ntoskrnl.exe
+ 2010-02-10 08:48 . 2009-12-08 20:36 3600472 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22577_none_6c755895cd731bc6\ntkrnlpa.exe
+ 2010-02-10 08:48 . 2009-12-08 20:52 3546200 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18377_none_6bebb9e4b4557ed5\ntoskrnl.exe
+ 2010-02-10 08:48 . 2009-12-08 20:52 3597912 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18377_none_6bebb9e4b4557ed5\ntkrnlpa.exe
+ 2010-02-10 08:48 . 2009-12-08 22:29 3469912 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21175_none_6a8cef97d04e8e42\ntoskrnl.exe
+ 2010-02-10 08:48 . 2009-12-08 22:29 3503704 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21175_none_6a8cef97d04e8e42\ntkrnlpa.exe
+ 2010-02-10 08:48 . 2009-12-08 20:54 3467848 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16973_none_6a017a16b7328888\ntoskrnl.exe
+ 2010-02-10 08:48 . 2009-12-08 20:54 3502168 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16973_none_6a017a16b7328888\ntkrnlpa.exe
+ 2010-02-10 08:47 . 2010-01-07 08:15 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6002.22311_none_f4ee62b381c56f20\OESpamFilter.dat
+ 2010-02-10 08:47 . 2010-01-07 08:15 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6002.18184_none_f41c156c68dde1cb\OESpamFilter.dat
+ 2010-02-10 08:47 . 2010-01-07 08:14 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6001.22605_none_f316c1df84936367\OESpamFilter.dat
+ 2010-02-10 08:47 . 2010-01-07 08:16 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6001.18404_none_f28c22e46b76ad1f\OESpamFilter.dat
+ 2010-02-10 08:47 . 2010-01-07 08:16 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6000.21203_none_f12e58e1876ed5e3\OESpamFilter.dat
+ 2010-02-10 08:47 . 2010-01-08 14:05 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6000.17002_none_f0a3b9e66e521f9b\OESpamFilter.dat
+ 2010-01-24 20:46 . 2010-01-02 14:50 1986048 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.22973_none_2acdbc3abba51a7f\iertutil.dll
+ 2009-12-09 11:40 . 2009-11-21 14:59 1986048 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.22956_none_2ae65cf0bb922ea2\iertutil.dll
+ 2010-01-24 20:46 . 2010-01-02 06:32 1985536 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.18882_none_2a384f39a2907d4f\iertutil.dll
+ 2009-12-09 11:40 . 2009-11-21 06:34 1985536 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.18865_none_2a50efefa27d9172\iertutil.dll
+ 2010-01-24 20:46 . 2010-01-02 14:51 5945856 c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.22973_none_f66d247d514a6558\mshtml.dll
+ 2009-12-09 11:40 . 2009-11-21 15:00 5944320 c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.22956_none_f685c5335137797b\mshtml.dll
+ 2010-01-24 20:46 . 2010-01-02 06:33 5942784 c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.18882_none_f5d7b77c3835c828\mshtml.dll
+ 2009-12-09 11:40 . 2009-11-21 06:35 5940736 c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.18865_none_f5f058323822dc4b\mshtml.dll
+ 2010-01-24 20:46 . 2010-01-02 14:56 1209344 c:\windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.22973_none_980d29bd05ead58f\urlmon.dll
+ 2009-12-09 11:40 . 2009-11-21 15:03 1209344 c:\windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.22956_none_9825ca7305d7e9b2\urlmon.dll
+ 2010-01-24 20:46 . 2010-01-02 06:38 1208832 c:\windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.18882_none_9777bcbbecd6385f\urlmon.dll
+ 2009-12-09 11:40 . 2009-11-21 06:40 1208832 c:\windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.18865_none_97905d71ecc34c82\urlmon.dll
+ 2010-02-10 08:47 . 2009-12-28 12:06 1314304 c:\windows\winsxs\x86_microsoft-windows-directshow-core_31bf3856ad364e35_6.0.6002.22295_none_a8840052046e8f42\quartz.dll
+ 2010-02-10 08:47 . 2009-12-04 18:29 1314816 c:\windows\winsxs\x86_microsoft-windows-directshow-core_31bf3856ad364e35_6.0.6002.18158_none_a828a414eb2dcbb9\quartz.dll
+ 2010-02-10 08:47 . 2009-12-28 13:41 1314816 c:\windows\winsxs\x86_microsoft-windows-directshow-core_31bf3856ad364e35_6.0.6001.22590_none_a6988cf8074cbb6b\quartz.dll
+ 2010-02-10 08:47 . 2009-12-28 12:35 1314816 c:\windows\winsxs\x86_microsoft-windows-directshow-core_31bf3856ad364e35_6.0.6001.18389_none_a622c0ccee1ee698\quartz.dll
+ 2010-02-10 08:47 . 2009-12-28 12:31 1327616 c:\windows\winsxs\x86_microsoft-windows-directshow-core_31bf3856ad364e35_6.0.6000.21188_none_a4c4f6ca0a170f5c\quartz.dll
+ 2010-02-10 08:47 . 2009-12-28 12:35 1327616 c:\windows\winsxs\x86_microsoft-windows-directshow-core_31bf3856ad364e35_6.0.6000.16986_none_a4398148f0fb09a2\quartz.dll
- 2009-10-14 05:31 . 2009-08-27 05:22 1208832 c:\windows\System32\urlmon.dll
+ 2010-01-24 20:46 . 2010-01-02 06:38 1208832 c:\windows\System32\urlmon.dll
- 2006-11-02 10:22 . 2009-11-27 10:14 6553600 c:\windows\System32\SMI\Store\Machine\schema.dat
+ 2006-11-02 10:22 . 2010-02-11 12:13 6553600 c:\windows\System32\SMI\Store\Machine\schema.dat
+ 2009-09-24 09:59 . 2009-09-24 09:59 1695368 c:\windows\System32\nagasoft\vjocx.dll
+ 2009-07-20 23:05 . 2009-07-20 23:05 1348432 c:\windows\System32\msxml4.dll
+ 2010-01-24 20:46 . 2010-01-02 06:33 5942784 c:\windows\System32\mshtml.dll
+ 2010-01-06 10:18 . 2003-03-19 07:12 1047552 c:\windows\System32\MFC71u.dll
+ 2010-01-06 10:19 . 2003-03-19 05:28 2179072 c:\windows\System32\mfc71d.dll
+ 2003-03-19 05:19 . 2003-03-19 06:20 1060864 c:\windows\System32\MFC71.dll
- 2003-03-19 05:19 . 2003-03-19 05:19 1060864 c:\windows\System32\MFC71.dll
- 2009-10-14 05:31 . 2009-08-27 05:17 1985536 c:\windows\System32\iertutil.dll
+ 2010-01-24 20:46 . 2010-01-02 06:32 1985536 c:\windows\System32\iertutil.dll
+ 2008-10-18 13:57 . 2010-02-23 10:59 2752280 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
- 2008-10-18 13:57 . 2009-12-01 14:03 2752280 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2007-11-07 18:02 . 2007-11-07 18:02 1710584 c:\windows\Microsoft.NET\Framework\v3.5\vbc.exe
+ 2007-11-07 15:26 . 2007-11-07 15:26 1045504 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5\vs_setup.dll
+ 2007-11-07 15:26 . 2007-11-07 15:26 1361920 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5\SITSetup.dll
+ 2007-11-07 15:26 . 2007-11-07 15:26 1059328 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5\gencomp.dll
+ 2007-11-07 18:02 . 2007-11-07 18:02 1545720 c:\windows\Microsoft.NET\Framework\v3.5\csc.exe
+ 2004-07-15 07:15 . 2004-07-15 07:15 1032192 c:\windows\Microsoft.NET\Framework\v1.1.4322\VsaVb7rt.dll
+ 2004-07-15 13:29 . 2004-07-15 13:29 1339392 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.XML.dll
+ 2004-07-15 13:32 . 2004-07-15 13:32 2052096 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Windows.Forms.dll
+ 2008-05-28 00:35 . 2008-05-28 00:35 1265664 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.dll
+ 2008-05-28 00:35 . 2008-05-28 00:35 1232896 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.dll
+ 2004-07-15 13:29 . 2004-07-15 13:29 1703936 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Design.dll
+ 2004-07-15 13:32 . 2004-07-15 13:32 1294336 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Data.dll
+ 2008-05-27 23:48 . 2008-05-27 23:48 2514944 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll
+ 2008-05-27 23:48 . 2008-05-27 23:48 2523136 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsvr.dll
+ 2008-05-27 23:43 . 2008-05-27 23:43 2142208 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll
+ 2003-02-21 06:25 . 2003-02-21 06:25 1564672 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorcfg.dll
+ 2010-01-31 10:22 . 2010-01-31 10:22 9473024 c:\windows\Installer\4726c4.msi
+ 2010-01-31 10:20 . 2010-01-31 10:20 1549312 c:\windows\Installer\4726b8.msi
+ 2010-01-06 10:16 . 2010-01-06 10:16 3443712 c:\windows\Installer\449b4.msi
+ 2010-02-10 21:31 . 2010-02-10 21:31 1262080 c:\windows\Installer\3063519.msi
+ 2009-12-16 07:11 . 2009-12-16 07:11 3700736 c:\windows\Installer\1f283e.msi
+ 2010-01-13 00:43 . 2010-01-13 00:43 1500160 c:\windows\Installer\13667bb.msi
+ 2009-12-13 11:25 . 2009-12-13 11:25 4369408 c:\windows\Installer\{F2B5A2A7-2DF9-4361-8BD5-362714528B51}\EAregister.exe
+ 2009-12-06 23:58 . 2009-12-06 23:58 4369408 c:\windows\Installer\{2315B23D-3E21-4920-837D-AE6460934ECB}\EAregister.exe
+ 2010-01-06 10:22 . 2005-05-03 22:21 2481664 c:\windows\Cache\MSDERelASP4\Setup\SqlRun16.msi
+ 2010-01-06 10:22 . 2005-05-03 22:21 2481664 c:\windows\Cache\MSDERelASP4\Setup\SqlRun15.msi
+ 2010-01-06 10:22 . 2005-05-03 22:21 2481664 c:\windows\Cache\MSDERelASP4\Setup\SqlRun14.msi
+ 2010-01-06 10:22 . 2005-05-03 22:21 2481664 c:\windows\Cache\MSDERelASP4\Setup\SqlRun13.msi
+ 2010-01-06 10:22 . 2005-05-03 22:21 2481664 c:\windows\Cache\MSDERelASP4\Setup\SqlRun12.msi
+ 2010-01-06 10:22 . 2005-05-03 22:21 2481664 c:\windows\Cache\MSDERelASP4\Setup\SqlRun11.msi
+ 2010-01-06 10:22 . 2005-05-03 22:21 2481664 c:\windows\Cache\MSDERelASP4\Setup\SqlRun10.msi
+ 2010-01-06 10:22 . 2005-05-03 22:21 2481664 c:\windows\Cache\MSDERelASP4\Setup\SqlRun09.msi
+ 2010-01-06 10:22 . 2005-05-03 22:21 2481664 c:\windows\Cache\MSDERelASP4\Setup\SqlRun08.msi
+ 2010-01-06 10:22 . 2005-05-03 22:21 2481664 c:\windows\Cache\MSDERelASP4\Setup\SqlRun07.msi
+ 2010-01-06 10:22 . 2005-05-03 22:21 2481664 c:\windows\Cache\MSDERelASP4\Setup\SqlRun06.msi
+ 2010-01-06 10:22 . 2005-05-03 22:21 2481664 c:\windows\Cache\MSDERelASP4\Setup\SqlRun05.msi
+ 2010-01-06 10:22 . 2005-05-03 22:21 2481664 c:\windows\Cache\MSDERelASP4\Setup\SqlRun04.msi
+ 2010-01-06 10:22 . 2005-05-03 22:21 2481664 c:\windows\Cache\MSDERelASP4\Setup\SqlRun03.msi
+ 2010-01-06 10:22 . 2005-05-03 22:21 2481664 c:\windows\Cache\MSDERelASP4\Setup\SqlRun02.msi
+ 2010-01-06 10:22 . 2005-05-03 22:21 2481664 c:\windows\Cache\MSDERelASP4\Setup\SqlRun01.msi
+ 2010-01-06 10:22 . 2005-05-03 22:16 2481664 c:\windows\Cache\MSDERelASP4\Setup\Sql2000.msi
+ 2010-01-06 10:22 . 2004-04-25 17:41 1821008 c:\windows\Cache\MSDERelASP4\Msi\InstMsiW20.exe
+ 2010-01-06 10:22 . 2004-04-25 17:41 1505032 c:\windows\Cache\MSDERelASP4\Msi\InstMsiW.exe
+ 2010-01-06 10:22 . 2004-04-25 17:41 1709896 c:\windows\Cache\MSDERelASP4\Msi\InstMsi20.exe
+ 2010-01-06 10:22 . 2004-04-25 17:41 1494280 c:\windows\Cache\MSDERelASP4\Msi\InstMsi.exe
+ 2010-01-11 07:18 . 2010-01-11 07:18 1966080 c:\windows\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_3b7f6e08\System.dll
+ 2010-01-11 07:18 . 2010-01-11 07:18 4792320 c:\windows\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_3a921601\System.dll
+ 2010-01-11 07:18 . 2010-01-11 07:18 5513216 c:\windows\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_b8946ed5\System.Xml.dll
+ 2010-01-11 07:18 . 2010-01-11 07:18 2088960 c:\windows\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_4b80dac8\System.Xml.dll
+ 2010-01-11 07:18 . 2010-01-11 07:18 7884800 c:\windows\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_85283a16\System.Windows.Forms.dll
+ 2010-01-11 07:18 . 2010-01-11 07:18 3018752 c:\windows\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_3b1229eb\System.Windows.Forms.dll
+ 2010-01-11 07:18 . 2010-01-11 07:18 2244608 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_e9789794\System.Drawing.dll
+ 2010-01-11 07:18 . 2010-01-11 07:18 3395584 c:\windows\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_c6aed1e1\System.Design.dll
+ 2010-01-11 07:18 . 2010-01-11 07:18 1470464 c:\windows\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_33c7c356\System.Design.dll
+ 2010-01-11 07:18 . 2010-01-11 07:18 3391488 c:\windows\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_a6f7295e\mscorlib.dll
+ 2010-01-11 07:18 . 2010-01-11 07:18 8908800 c:\windows\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_1b2f8fe5\mscorlib.dll
+ 2009-12-11 23:51 . 2009-12-11 23:51 3314176 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\c681da7e1c7b648cb456f2d90e7c50fe\WindowsBase.ni.dll
+ 2009-12-12 00:14 . 2009-12-12 00:14 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\2105c56c3fe48843fcb0b488cbe3a9d4\UIAutomationClientsideProviders.ni.dll
+ 2009-12-11 23:51 . 2009-12-11 23:51 7868416 c:\windows\assembly\NativeImages_v2.0.50727_32\System\13cce38e8de5fd54853390e4e98abd0e\System.ni.dll
+ 2009-12-11 23:53 . 2009-12-11 23:53 5450752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\99e7927ccb9099e607035349814d4cf6\System.Xml.ni.dll
+ 2009-12-12 00:14 . 2009-12-12 00:14 1340416 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\c5d92da5f97c9439361880ccea60538b\System.WorkflowServices.ni.dll
+ 2009-12-11 23:53 . 2009-12-11 23:53 1911296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\1f48aa633e1390542786d1f4aadf4d9c\System.Workflow.Runtime.ni.dll
+ 2009-12-11 23:53 . 2009-12-11 23:53 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\ea04089f9339c24a5b9049f225d644d6\System.Workflow.ComponentModel.ni.dll
+ 2009-12-11 23:53 . 2009-12-11 23:53 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\d0cab30213f071a1d29756cc384b1c40\System.Workflow.Activities.ni.dll
+ 2009-12-12 00:09 . 2009-12-12 00:09 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\3ac86230f8672732e33a9607b9d850c0\System.Web.Services.ni.dll
+ 2009-12-12 00:14 . 2009-12-12 00:14 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\40409c8e5284e8a59e3ea9d2969be855\System.Web.Mobile.ni.dll
+ 2009-12-12 00:13 . 2009-12-12 00:13 2323456 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\1c3d8fb739703ea29da0e5ae99f0e5e9\System.Web.Extensions.ni.dll
+ 2009-12-12 00:13 . 2009-12-12 00:13 1917440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\a9bb974635790a38d3530b441a9c93cc\System.Speech.ni.dll
+ 2009-12-12 00:13 . 2009-12-12 00:13 1387520 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\3b477d573038e7ed5c054e9ad20d40f2\System.ServiceModel.Web.ni.dll
+ 2009-12-12 00:10 . 2009-12-12 00:10 2346496 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\d70a3a621f0536c8cb151dc4775d3409\System.Runtime.Serialization.ni.dll
+ 2009-12-12 00:12 . 2009-12-12 00:12 1035776 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\1386aa85ade6f468adf995f3d5ff99ec\System.Printing.ni.dll
+ 2009-12-12 00:10 . 2009-12-12 00:10 1056768 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\22c0c18be8858e433fe561c693a2c556\System.IdentityModel.ni.dll
+ 2009-12-11 23:52 . 2009-12-11 23:52 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\57e722244d3b48cb92b340bc92d7a191\System.Drawing.ni.dll
+ 2009-12-12 00:09 . 2009-12-12 00:09 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\f8f2dbea11afbca27219a6aca87a60f9\System.DirectoryServices.ni.dll
+ 2009-12-12 00:09 . 2009-12-12 00:09 1801216 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\4edeee9bfffbaea5bc43ebdac1db3580\System.Deployment.ni.dll
+ 2009-12-11 23:52 . 2009-12-11 23:52 6621696 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\052af33a372077a017c56d32627461b0\System.Data.ni.dll
+ 2009-12-12 00:09 . 2009-12-12 00:09 2510336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\84b5a57d2a24d4fdda2f25e93fdd4c65\System.Data.SqlXml.ni.dll
+ 2009-12-12 00:09 . 2009-12-12 00:09 1119232 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.OracleC#\2bb30ff2d0a55b5ba2ce23ff331cdd38\System.Data.OracleClient.ni.dll
+ 2009-12-11 23:52 . 2009-12-11 23:52 2438144 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\6ab82a51fb24c9c991920a05e4637a9d\System.Data.Linq.ni.dll
+ 2009-12-11 23:52 . 2009-12-11 23:52 2195968 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\9995b3437b669c392d97a10ce414d47c\System.Core.ni.dll
+ 2009-12-12 00:12 . 2009-12-12 00:12 2146816 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\316de585c1205c92cf4b0a70fa34c874\ReachFramework.ni.dll
+ 2009-12-12 00:12 . 2009-12-12 00:12 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\52d83973b6c5886042800865d5321ef9\PresentationUI.ni.dll
+ 2009-12-12 00:13 . 2009-12-12 00:13 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\03a073b4f13b073e27c0b2c8629fa7b8\PresentationBuildTasks.ni.dll
+ 2009-12-12 00:13 . 2009-12-12 00:13 2538496 c:\windows\assembly\NativeImages_v2.0.50727_32\Narrator\6d984081192a52d32ed475100a28b6c5\Narrator.ni.exe
+ 2009-12-12 00:11 . 2009-12-12 00:11 1536512 c:\windows\assembly\NativeImages_v2.0.50727_32\MMCEx\8de0a36d04d521a7287537f5d90f9c66\MMCEx.ni.dll
+ 2009-12-12 00:11 . 2009-12-12 00:11 6340096 c:\windows\assembly\NativeImages_v2.0.50727_32\MIGUIControls\cdbb5f1840a16aea2579a03a61ab56a2\MIGUIControls.ni.dll
+ 2009-12-12 00:13 . 2009-12-12 00:13 1711616 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\e3d4c11809bddd2154fe7b704695e070\Microsoft.VisualBasic.ni.dll
+ 2009-12-12 00:10 . 2009-12-12 00:10 1093120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\e39b79c69a798731568441a7d2fe90b6\Microsoft.Transactions.Bridge.ni.dll
+ 2009-12-12 00:10 . 2009-12-12 00:10 5486080 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.MediaCent#\edbd7d666fb3b01d2eb15a9b86c75e40\Microsoft.MediaCenter.UI.ni.dll
+ 2009-12-12 00:12 . 2009-12-12 00:12 2332160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\a385166106bab1601126773d27135895\Microsoft.JScript.ni.dll
+ 2009-12-12 00:11 . 2009-12-12 00:11 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Ink\8685307d6582feb851388fff44046b56\Microsoft.Ink.ni.dll
+ 2009-12-12 00:12 . 2009-12-12 00:12 1620992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\c3369952e0cde298bed8a00aa548123d\Microsoft.Build.Tasks.ni.dll
+ 2009-12-12 00:13 . 2009-12-12 00:13 1880064 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\7753cd9f60e05963ec7b6fa206cc7827\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2009-12-12 00:12 . 2009-12-12 00:12 1837568 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\52f6c1cf635ce4cbd28629a3bbd3a35e\Microsoft.Build.Engine.ni.dll
+ 2009-12-12 00:11 . 2009-12-12 00:11 1732608 c:\windows\assembly\NativeImages_v2.0.50727_32\ehRecObj\e6b488913d24a333cdb8b0dde82eed76\ehRecObj.ni.dll
+ 2009-12-12 00:10 . 2009-12-12 00:10 2130432 c:\windows\assembly\NativeImages_v2.0.50727_32\ehepg\f5d8c5451c6a49960dc7cde827d4909f\ehepg.ni.dll
+ 2009-12-11 23:50 . 2009-12-11 23:50 1253376 c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll
+ 2010-01-11 07:18 . 2010-01-11 07:18 1232896 c:\windows\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll
+ 2010-01-06 10:18 . 2010-01-06 10:18 1339392 c:\windows\assembly\GAC\System.Xml\1.0.5000.0__b77a5c561934e089\System.XML.dll
+ 2010-01-06 10:18 . 2010-01-06 10:18 2052096 c:\windows\assembly\GAC\System.Windows.Forms\1.0.5000.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2010-01-11 07:18 . 2010-01-11 07:18 1265664 c:\windows\assembly\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\System.Web.dll
+ 2010-01-06 10:18 . 2010-01-06 10:18 1703936 c:\windows\assembly\GAC\System.Design\1.0.5000.0__b03f5f7f11d50a3a\System.Design.dll
+ 2010-01-06 10:18 . 2010-01-06 10:18 1294336 c:\windows\assembly\GAC\System.Data\1.0.5000.0__b77a5c561934e089\System.Data.dll
+ 2010-01-06 10:15 . 2010-01-06 10:15 1564672 c:\windows\assembly\GAC\mscorcfg\1.0.5000.0__b03f5f7f11d50a3a\mscorcfg.dll
- 2009-11-26 10:33 . 2009-11-26 10:33 2846720 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-02-19 20:33 . 2010-02-19 20:33 2846720 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-11-26 10:33 . 2009-11-26 10:33 2676224 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-02-19 20:33 . 2010-02-19 20:33 2676224 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-01-24 20:46 . 2010-01-02 14:50 11070976 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.22973_none_47cc7e80dd3ff385\ieframe.dll
+ 2009-12-09 11:40 . 2009-11-21 14:59 11071488 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.22956_none_47e51f36dd2d07a8\ieframe.dll
+ 2010-01-24 20:46 . 2010-01-02 06:32 11070464 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18882_none_4737117fc42b5655\ieframe.dll
+ 2009-12-09 11:40 . 2009-11-21 06:34 11069952 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18865_none_474fb235c4186a78\ieframe.dll
+ 2006-11-02 10:24 . 2010-02-01 19:26 30364104 c:\windows\System32\mrt.exe
+ 2010-01-24 20:46 . 2010-01-02 06:32 11070464 c:\windows\System32\ieframe.dll
+ 2009-08-10 20:08 . 2009-08-10 20:08 11315712 c:\windows\Microsoft.NET\Framework\v1.1.4322\Updates\M953297\M953297Uninstall.msp
+ 2009-08-10 13:09 . 2009-08-10 13:09 17254912 c:\windows\Installer\773ab.msp
+ 2010-01-06 10:17 . 2010-01-06 10:17 19210240 c:\windows\Installer\629c6.msp
+ 2009-12-11 23:53 . 2009-12-11 23:53 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\425e95df110b77abad261a46fca54e99\System.Windows.Forms.ni.dll
+ 2009-12-12 00:09 . 2009-12-12 00:09 11800576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\7742aef93bc3679a986cb5dab148cd76\System.Web.ni.dll
+ 2009-12-12 00:10 . 2009-12-12 00:10 17328640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\830b346e51c9671cacaa75c4fd9bcfb3\System.ServiceModel.ni.dll
+ 2009-12-11 23:52 . 2009-12-11 23:52 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\1097f0aba9cd9bdb9295ab05ca7e68b8\System.Design.ni.dll
+ 2009-12-11 23:52 . 2009-12-11 23:52 14327808 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\4c7b48925c68369dc0e063ca5d5153ff\PresentationFramework.ni.dll
+ 2009-12-11 23:51 . 2009-12-11 23:51 12216320 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\46ee728a6afb2343606451fe98cd8343\PresentationCore.ni.dll
+ 2009-12-12 00:11 . 2009-12-12 00:11 11587584 c:\windows\assembly\NativeImages_v2.0.50727_32\ehshell\a2a3779d05fd2f244006562903f3bd37\ehshell.ni.dll
+ 2009-08-07 18:56 . 2010-02-11 00:40 164060828 c:\windows\winsxs\ManifestCache\6.0.6002.18005_001c11ba_blobs.bin
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
"TOSCDSPD"="c:\program files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe" [2008-01-29 430080]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2009-10-30 369200]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="RtHDVCpl.exe" [2008-01-29 4911104]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-12-06 1029416]
"ITSecMng"="c:\program files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe" [2007-09-28 75136]
"topi"="c:\program files\TOSHIBA\Toshiba Online Product Information\topi.exe" [2007-07-10 581632]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]
"Camera Assistant Software"="c:\program files\Camera Assistant Software for Toshiba\traybar.exe" [2007-10-25 413696]
"TPwrMain"="c:\program files\TOSHIBA\Power Saver\TPwrMain.EXE" [2008-01-17 431456]
"HSON"="c:\program files\TOSHIBA\TBS\HSON.exe" [2007-10-31 54608]
"SmoothView"="c:\program files\Toshiba\SmoothView\SmoothView.exe" [2008-01-25 509816]
"00TCrdMain"="c:\program files\TOSHIBA\FlashCards\TCrdMain.exe" [2008-01-22 712704]
"Toshiba Registration"="c:\program files\Toshiba\Registration\ToshibaRegistration.exe" [2007-05-04 571024]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-03-07 198160]
"Skytel"="Skytel.exe" [2007-11-20 1826816]
"Windows Mobile-based device management"="c:\windows\WindowsMobile\wmdSync.exe" [2008-01-21 215552]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-10-11 149280]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
"PinnacleDriverCheck"="c:\windows\system32\PSDrvCheck.exe" [2003-11-10 406016]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-11-10 417792]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2009-3-25 113664]
Bluetooth Manager.lnk - c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2008-1-25 2938184]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2008-12-22 10:05 356352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SymEFA.sys]
@="FSFilter Activity Monitor"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-01-11 21:16 39792 ----a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Desktop SMS]
2007-06-18 08:51 1507328 ----a-w- c:\program files\IDM\Desktop SMS\DesktopSMS.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2006-01-12 15:40 155648 ----a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Picasa Media Detector]
2006-12-06 01:44 366400 ----a-w- c:\program files\Picasa2\PicasaMediaDetector.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
2008-01-21 02:23 1008184 ----a-w- c:\program files\Windows Defender\MSASCui.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):91,64,a1,74,da,51,ca,01

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-2706454667-533331120-2221285752-1000]
"EnableNotificationsRef"=dword:00000001

R0 pavboot;pavboot;c:\windows\System32\drivers\pavboot.sys [25. 1. 2010 15:02 28552]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\System32\drivers\N360\0308000.029\SymEFA.sys [7. 2. 2010 22:23 310320]
R1 BHDrvx86;Symantec Heuristics Driver;c:\windows\System32\drivers\N360\0308000.029\BHDrvx86.sys [7. 2. 2010 22:23 259632]
R1 ccHP;Symantec Hash Provider;c:\windows\System32\drivers\N360\0308000.029\cchpx86.sys [7. 2. 2010 22:23 482432]
R1 IDSVix86;IDSVix86;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20100218.001\IDSvix86.sys [21. 2. 2010 22:18 343088]
R2 ConfigFree Service;ConfigFree Service;c:\program files\Toshiba\ConfigFree\CFSvcs.exe [25. 12. 2007 12:07 40960]
R2 N360;Norton 360;c:\program files\Norton 360\Engine\3.8.0.41\ccSvcHst.exe [7. 2. 2010 22:23 117640]
R2 TOSHIBA SMART Log Service;TOSHIBA SMART Log Service;c:\program files\Toshiba\SMARTLogService\TosIPCSrv.exe [3. 12. 2007 16:03 126976]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [1. 12. 2009 17:20 102448]
R3 FwLnk;FwLnk Driver;c:\windows\System32\drivers\FwLnk.sys [24. 4. 2008 8:02 7168]
R3 SYMNDISV;Symantec Network Filter Driver;c:\windows\System32\drivers\N360\0308000.029\symndisv.sys [7. 2. 2010 22:23 48688]
S0 sptd;sptd;c:\windows\System32\drivers\sptd.sys [14. 7. 2009 11:02 691696]
S2 gupdate1ca5670872813c8;Služba Google Update (gupdate1ca5670872813c8);c:\program files\Google\Update\GoogleUpdate.exe [26. 10. 2009 20:14 133104]
S3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [17. 2. 2009 11:43 7408]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
getPlusHelper REG_MULTI_SZ getPlusHelper
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
vvdsvc REG_MULTI_SZ vvdsvc
.
Contents of the 'Scheduled Tasks' folder


[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\N360]
"ImagePath"="\"c:\program files\Norton 360\Engine\3.8.0.41\ccSvcHst.exe\" /s \"N360\" /m \"c:\program files\Norton 360\Engine\3.8.0.41\diMaster.dll\" /prefetch:1"
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosím o kontrolu logu, zmenilo mi domovskú adresu

#22 Příspěvek od motji »

:arrow: Dejte soubor otestovat na http://www.virustotal.com


c:\windows\system32\drivers\tcpip.sys
c:\users\Andrejko\AppData\Roaming\FIFA10.exe


-Na virustotalu dáte procházet, a do spodního okénka nakopírujete přímo cestu k souboru a dáte odeslat
-z prohlížeče zkopírujete adresu ke stránce s výsledky
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
michajlo
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 65
Registrován: 27 dub 2007 12:38

Re: Prosím o kontrolu logu, zmenilo mi domovskú adresu

#23 Příspěvek od michajlo »

Všetko je čisté, nič nenašlo ani v jednom z tých súborov... :)
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosím o kontrolu logu, zmenilo mi domovskú adresu

#24 Příspěvek od motji »

Jak to vypadá s počítačem ted?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
michajlo
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 65
Registrován: 27 dub 2007 12:38

Re: Prosím o kontrolu logu, zmenilo mi domovskú adresu

#25 Příspěvek od michajlo »

Domovská stránka je už v poriadku. Ale vyskytol sa nový problém... Keď zadám do googlu nejaký výraz a dám možnosť, že chcem aby mi vyhodilo len stránky písané v slovenčine, tak mi to vyhodí poľské stránky :D Chcem svoju slovenčinu a nie poľštinu... :D A keď dám potom možnosť ,,späť", už mi ukáže slovenské stránky... nechápem..
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosím o kontrolu logu, zmenilo mi domovskú adresu

#26 Příspěvek od motji »

:o :D s tím jsem se ještě nesetkala.
Poprosím o nový log ze Rsitu.
Dělá Vám to všech prohlížečích?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
michajlo
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 65
Registrován: 27 dub 2007 12:38

Re: Prosím o kontrolu logu, zmenilo mi domovskú adresu

#27 Příspěvek od michajlo »

Logfile of random's system information tool 1.06 (written by random/random)
Run by Andrejko at 2010-02-24 13:10:59
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 48 GB (40%) free of 119 GB
Total RAM: 3069 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:11:16, on 24. 2. 2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Norton 360\Engine\3.8.0.41\ccSvcHst.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
C:\Program Files\Toshiba\Power Saver\TPwrMain.exe
C:\Program Files\Toshiba\SmoothView\SmoothView.exe
C:\Program Files\Toshiba\FlashCards\TCrdMain.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Andrejko\Downloads\RSIT.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\trend micro\Andrejko.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Podpora odkazu pre aplikáciu Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360\Engine\3.8.0.41\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton 360\Engine\3.8.0.41\IPSBHO.DLL
O2 - BHO: tom for ie - {8AA217B9-D729-4ee0-AED7-E93D695E94A2} - C:\Program Files\Stylish Profile\tom4ie.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\3.8.0.41\coIEPlg.dll
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
O4 - HKLM\..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [Camera Assistant Software] "C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe" /start
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\Windows\system32\PSDrvCheck.exe -CheckReg
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: StylishProfile - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Stylish Profile\ct.htm
O9 - Extra 'Tools' menuitem: StylishProfile - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Stylish Profile\ct.htm
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net ... plugin.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {D4003189-95B1-4A2F-9A87-F2B03665960D} (VodClient Control Class) - http://www.vexcast.com/download/vexcast.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{4E7532CE-EE46-4735-BEC1-40CECF5761DC}: NameServer = 10.0.0.254
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: symres - {AA1061FE-6C41-421F-9344-69640C9732AB} - C:\Program Files\Norton 360\Engine\3.8.0.41\coIEPlg.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Služba Google Update (gupdate1ca5670872813c8) (gupdate1ca5670872813c8) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files\Norton 360\Engine\3.8.0.41\ccSvcHst.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 7678 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pre aplikáciu Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files\Norton 360\Engine\3.8.0.41\coIEPlg.dll [2009-10-04 378736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files\Norton 360\Engine\3.8.0.41\IPSBHO.DLL [2009-10-04 107896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8AA217B9-D729-4ee0-AED7-E93D695E94A2}]
TomBHO Class - C:\Program Files\Stylish Profile\tom4ie.dll [2009-09-24 213504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-11 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files\Norton 360\Engine\3.8.0.41\coIEPlg.dll [2009-10-04 378736]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-01-29 4911104]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-12-06 1029416]
"ITSecMng"=C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [2007-09-28 75136]
"topi"=C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe [2007-07-10 581632]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
"Camera Assistant Software"=C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe [2007-10-25 413696]
"TPwrMain"=C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2008-01-17 431456]
"HSON"=C:\Program Files\TOSHIBA\TBS\HSON.exe [2007-10-31 54608]
"SmoothView"=C:\Program Files\Toshiba\SmoothView\SmoothView.exe [2008-01-25 509816]
"00TCrdMain"=C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2008-01-22 712704]
"Toshiba Registration"=C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe [2007-05-04 571024]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2009-03-07 198160]
"Skytel"=C:\Windows\Skytel.exe [2007-11-20 1826816]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-10-11 149280]
"PinnacleDriverCheck"=C:\Windows\system32\PSDrvCheck.exe [2003-11-10 406016]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"TOSCDSPD"=C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [2008-01-29 430080]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Desktop SMS]
C:\Program Files\IDM\Desktop SMS\DesktopSMS.exe [2007-06-18 1507328]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe]
C:\Windows\ehome\ehTray.exe [2008-01-21 125952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Picasa Media Detector]
C:\Program Files\Picasa2\PicasaMediaDetector.exe [2006-12-06 366400]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2009-11-10 417792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile-based device management]
C:\Windows\WindowsMobile\wmdSync.exe [2008-01-21 215552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth Manager.lnk]
C:\PROGRA~1\Toshiba\BLUETO~1\TosBtMng.exe [2008-01-25 2938184]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2008-12-22 356352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SymEFA.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SymEFA.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
"DisableStatusMessages"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=149
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{aa22c719-206a-11df-bd7f-00037a8dd304}]
shell\AutoRun\command - D:\vlvtdflx.exe
shell\open\command - D:\vlvtdflx.exe


======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2010-02-24 11:23:27 ----D---- C:\Program Files\Wise Registry Cleaner
2010-02-24 11:12:46 ----D---- C:\Program Files\VS Revo Group
2010-02-24 08:42:27 ----D---- C:\Program Files\ESET
2010-02-23 16:47:38 ----D---- C:\Windows\pss
2010-02-23 16:20:07 ----N---- C:\Windows\system32\MpSigStub.exe
2010-02-23 12:16:20 ----A---- C:\log.txt
2010-02-23 12:15:44 ----SHD---- C:\$RECYCLE.BIN
2010-02-23 12:15:37 ----A---- C:\ComboFix.txt
2010-02-23 11:59:20 ----D---- C:\ComboFix
2010-02-23 11:58:30 ----A---- C:\Windows\SWXCACLS.exe
2010-02-23 11:58:25 ----D---- C:\32788R22FWJFW
2010-02-17 12:40:20 ----D---- C:\Windows\74224F8D4A1748169EDB7BB854DE532C.TMP
2010-02-17 12:39:54 ----D---- C:\Program Files\Ubisoft
2010-02-17 00:38:15 ----D---- C:\Program Files\Armies of Exigo
2010-02-10 09:48:04 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-02-10 09:48:04 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-02-10 09:47:42 ----A---- C:\Windows\system32\tsbyuv.dll
2010-02-10 09:47:42 ----A---- C:\Windows\system32\quartz.dll
2010-02-10 09:47:42 ----A---- C:\Windows\system32\msyuv.dll
2010-02-10 09:47:42 ----A---- C:\Windows\system32\msvidc32.dll
2010-02-10 09:47:42 ----A---- C:\Windows\system32\msrle32.dll
2010-02-10 09:47:42 ----A---- C:\Windows\system32\iyuv_32.dll
2010-02-10 09:47:41 ----A---- C:\Windows\system32\msvfw32.dll
2010-02-10 09:47:41 ----A---- C:\Windows\system32\mciavi32.dll
2010-02-10 09:47:41 ----A---- C:\Windows\system32\avifil32.dll
2010-01-31 11:20:47 ----D---- C:\Program Files\Common Files\Apple
2010-01-31 11:20:33 ----D---- C:\Program Files\Apple Software Update
2010-01-31 11:20:32 ----D---- C:\ProgramData\Apple
2010-01-31 11:19:04 ----D---- C:\Program Files\QuickTime
2010-01-31 11:17:04 ----D---- C:\Users\Andrejko\AppData\Roaming\Thinstall
2010-01-30 22:43:57 ----D---- C:\Program Files\Pcsx2
2010-01-25 15:02:15 ----D---- C:\Program Files\Panda Security

======List of files/folders modified in the last 1 months======

2010-02-24 13:11:17 ----D---- C:\Windows\Prefetch
2010-02-24 13:11:16 ----D---- C:\Program Files\Trend Micro
2010-02-24 13:11:01 ----D---- C:\Windows\temp
2010-02-24 11:57:13 ----AD---- C:\Windows\System32
2010-02-24 11:57:12 ----D---- C:\Windows\inf
2010-02-24 11:57:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-02-24 11:46:17 ----SHD---- C:\Windows\Installer
2010-02-24 11:45:04 ----RSD---- C:\Windows\assembly
2010-02-24 11:44:51 ----A---- C:\Windows\win.ini
2010-02-24 11:43:40 ----D---- C:\Program Files\Common Files\microsoft shared
2010-02-24 11:43:22 ----RSD---- C:\Windows\Fonts
2010-02-24 11:41:54 ----D---- C:\Program Files\Microsoft Works
2010-02-24 11:40:48 ----D---- C:\Windows\winsxs
2010-02-24 11:40:22 ----D---- C:\Windows
2010-02-24 11:39:12 ----SHD---- C:\System Volume Information
2010-02-24 11:33:01 ----D---- C:\Windows\system32\config
2010-02-24 11:23:27 ----RD---- C:\Program Files
2010-02-23 16:47:35 ----SD---- C:\ProgramData\Microsoft
2010-02-23 16:47:34 ----D---- C:\Windows\system32\drivers
2010-02-23 16:16:05 ----D---- C:\Windows\system32\catroot
2010-02-23 15:53:54 ----D---- C:\Program Files\Mozilla Firefox
2010-02-23 12:15:41 ----D---- C:\Qoobox
2010-02-23 12:12:23 ----A---- C:\Windows\system.ini
2010-02-23 12:09:08 ----D---- C:\Windows\AppPatch
2010-02-23 12:09:07 ----D---- C:\Program Files\Common Files
2010-02-17 12:40:14 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-02-16 08:48:45 ----D---- C:\Windows\system32\catroot2
2010-02-13 22:11:34 ----HD---- C:\Program Files\InstallShield Installation Information
2010-02-13 22:11:31 ----D---- C:\Program Files\Activision
2010-02-11 22:52:57 ----D---- C:\Windows\Debug
2010-02-11 22:41:10 ----D---- C:\ProgramData\Media Center Programs
2010-02-11 09:21:04 ----D---- C:\Program Files\Windows Mail
2010-02-10 22:30:40 ----D---- C:\Program Files\Google
2010-02-01 20:26:20 ----A---- C:\Windows\system32\mrt.exe
2010-01-31 11:22:11 ----D---- C:\ProgramData\Apple Computer
2010-01-31 11:20:36 ----D---- C:\Windows\system32\Tasks
2010-01-31 11:20:32 ----D---- C:\ProgramData
2010-01-31 11:19:06 ----SD---- C:\Windows\Downloaded Program Files
2010-01-27 10:14:37 ----D---- C:\Program Files\Internet Explorer
2010-01-25 00:54:02 ----D---- C:\Windows\system32\migration

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 BHDrvx86;Symantec Heuristics Driver; C:\Windows\System32\Drivers\N360\0308000.029\BHDrvx86.sys [2009-10-04 259632]
R1 ccHP;Symantec Hash Provider; C:\Windows\System32\Drivers\N360\0308000.029\ccHPx86.sys [2009-10-04 482432]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2009-10-04 371248]
R1 IDSVix86;IDSVix86; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\ipsdefs\20100218.001\IDSvix86.sys [2009-10-28 343088]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL); C:\Windows\system32\drivers\N360\0308000.029\SRTSPX.SYS [2009-10-04 43696]
R1 SymIM;Symantec Network Security Intermediate Filter Driver; C:\Windows\system32\DRIVERS\SymIMv.sys [2009-10-04 25648]
R1 SYMTDI;Symantec Network Dispatch Driver; C:\Windows\System32\Drivers\N360\0308000.029\SYMTDI.SYS [2009-10-04 217136]
R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2007-10-02 64128]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2008-02-15 46592]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-07-30 43008]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-07-30 38400]
R3 AgereSoftModem;TOSHIBA V92 Software Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2006-11-28 1161888]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2008-01-30 3483648]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-21 14208]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2009-10-04 102448]
R3 FwLnk;FwLnk Driver; C:\Windows\system32\DRIVERS\FwLnk.sys [2006-11-20 7168]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2009-10-04 26600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-01-30 2058528]
R3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20100223.048\NAVENG.SYS [2010-02-07 84912]
R3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20100223.048\NAVEX15.SYS [2010-02-07 1324720]
R3 NETw3v32;Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2008-01-21 2225664]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2008-01-21 8192]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-12-28 104448]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 SRTSP;Symantec Real Time Storage Protection; C:\Windows\System32\Drivers\N360\0308000.029\SRTSP.SYS [2009-10-04 308272]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2009-10-04 124976]
R3 SYMFW;Symantec Network Filter Driver; C:\Windows\System32\Drivers\N360\0308000.029\SYMFW.SYS [2009-10-04 89904]
R3 SYMNDISV;Symantec Network Filter Driver; C:\Windows\System32\Drivers\N360\0308000.029\SYMNDISV.SYS [2009-10-04 48688]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-12-06 196400]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2006-10-18 16128]
R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2006-10-10 41600]
R3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2007-12-26 131584]
R3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2007-11-29 36608]
R3 tosrfec;Bluetooth ACPI; C:\Windows\system32\DRIVERS\tosrfec.sys [2006-10-23 9216]
R3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2007-11-29 74240]
R3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2005-01-07 18612]
R3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2007-10-18 41856]
R3 usbvideo;Chicony USB 2.0 Camera; C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
R3 UVCFTR;UVCFTR; C:\Windows\System32\Drivers\UVCFTR_S.SYS [2007-12-17 18432]
S3 as23oywp;as23oywp; C:\Windows\system32\drivers\as23oywp.sys []
S3 catchme;catchme; \??\C:\Users\Andrejko\AppData\Local\Temp\catchme.sys []
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS [2009-02-17 7408]
S3 winusb;WinUSB Service; C:\Windows\system32\DRIVERS\winusb.sys [2009-04-11 31616]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2008-01-21 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2006-10-05 9216]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2008-01-30 643072]
R2 ConfigFree Service;ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [2007-12-25 40960]
R2 N360;Norton 360; C:\Program Files\Norton 360\Engine\3.8.0.41\ccSvcHst.exe [2009-10-04 117640]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 TNaviSrv;TOSHIBA Navi Support Service; C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe [2008-01-21 83312]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2007-11-21 129632]
R2 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe [2008-01-17 431456]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-09-28 128360]
R2 TOSHIBA SMART Log Service;TOSHIBA SMART Log Service; C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe [2007-12-03 126976]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2006-08-23 49152]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S2 gupdate1ca5670872813c8;Služba Google Update (gupdate1ca5670872813c8); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-10-26 133104]
S2 vvdsvc;VJVodClientServices; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-03-30 31048]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 getPlusHelper;@C:\Program Files\NOS\bin\getPlus_Helper.dll,-101; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-04-24 138168]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosím o kontrolu logu, zmenilo mi domovskú adresu

#28 Příspěvek od motji »

:arrow: Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT :!:
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
michajlo
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 65
Registrován: 27 dub 2007 12:38

Re: Prosím o kontrolu logu, zmenilo mi domovskú adresu

#29 Příspěvek od michajlo »

Dali sme preskenovať, ale nič nenašlo... :o Ale medzitým mi google vyhadzuje nielen poľské, ale aj maďarské stránky... :D Asi to budeme riešiť preinštalovaním systému... :(
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosím o kontrolu logu, zmenilo mi domovskú adresu

#30 Příspěvek od motji »

:arrow: Stáhněte Gmer http://www.viry.cz/forum/viewtopic.php?f=29&t=62878
- rozbalte a spusťte
-proběhne sken, po skončení se otevře okno s výsledky, klikněte na Save a tím si uložíte log,který sem vložíte

-Podle návodu v odkazu provedete druhý sken a log sem také vložíte.


:arrow: Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
- spustte, klikněte na Run Scan
- po skončení skenu sem vložte obsah logů z OTL.Txt a Extras.txt
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Odpovědět

Zpět na „Preventivní kontroly logů“