Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu po opravě Combofixem

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
aweiss
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 17 lis 2010 01:06

Prosím o kontrolu po opravě Combofixem

#1 Příspěvek od aweiss »

Rád bych poprosil o konrolu logu z combofixu, použil jsem je kvůli opakovaným restartům a chybovým hlášením ohledně services.exe, problém je pryč, ale počítač je stále pomalejší, než odpovídá jeho kvalitě a stáří, a stále se objevují různá chybová hlášení. Děkuji:

ComboFix 10-11-16.02 - oem 17.11.2010 0:51.2.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1015.589 [GMT 1:00]
Spuštěný z: c:\documents and settings\oem\Plocha\ComboFix.exe
AV: ESET NOD32 Antivirus 3.0 *On-access scanning disabled* (Outdated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-10-16 do 2010-11-16 )))))))))))))))))))))))))))))))
.

2010-11-16 23:17 . 2010-11-16 23:17 -------- d-----w- c:\documents and settings\oem\Data aplikací\Malwarebytes
2010-11-16 23:17 . 2010-04-29 14:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-11-16 23:17 . 2010-11-16 23:17 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2010-11-16 23:17 . 2010-04-29 14:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-11-16 23:17 . 2010-11-16 23:17 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-11-16 22:43 . 2010-11-16 23:55 45056 ----a-w- c:\windows\system32\acovcnt.exe
2010-11-16 20:55 . 2010-11-16 20:55 -------- d-----w- C:\!KillBox
2010-11-16 16:24 . 2010-11-16 16:24 -------- d-----w- c:\documents and settings\oem\Local Settings\Data aplikací\PCHealth
2010-11-15 08:58 . 2010-09-18 06:53 974848 -c----w- c:\windows\system32\dllcache\mfc42.dll
2010-11-15 08:58 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2010-10-24 21:42 . 2010-10-24 21:42 -------- d--h--w- c:\windows\PIF
2010-10-24 20:17 . 2010-10-24 20:17 -------- d-----w- c:\documents and settings\oem\Local Settings\Data aplikací\DOSBox
2010-10-24 20:17 . 2010-10-25 18:54 -------- d-----w- C:\Doom2

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-18 11:23 . 2006-03-02 12:00 974848 ----a-w- c:\windows\system32\mfc42u.dll
2010-09-18 06:53 . 2006-03-02 12:00 974848 ----a-w- c:\windows\system32\mfc42.dll
2010-09-18 06:53 . 2006-03-02 12:00 954368 ----a-w- c:\windows\system32\mfc40.dll
2010-09-18 06:53 . 2006-03-02 12:00 953856 ----a-w- c:\windows\system32\mfc40u.dll
2010-09-09 13:34 . 2006-03-02 12:00 832512 ----a-w- c:\windows\system32\wininet.dll
2010-09-09 13:34 . 2006-03-02 12:00 1830912 ----a-w- c:\windows\system32\inetcpl.cpl
2010-09-09 13:34 . 2006-03-02 12:00 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-09-09 13:34 . 2006-03-02 12:00 17408 ------w- c:\windows\system32\corpol.dll
2010-09-08 15:57 . 2006-03-02 12:00 389120 ----a-w- c:\windows\system32\html.iec
2010-09-01 11:52 . 2006-03-02 12:00 285824 ----a-w- c:\windows\system32\atmfd.dll
2010-09-01 07:57 . 2006-03-02 12:00 1852800 ----a-w- c:\windows\system32\win32k.sys
2010-08-27 08:03 . 2006-03-02 12:00 119808 ----a-w- c:\windows\system32\t2embed.dll
2010-08-27 05:54 . 2006-03-02 12:00 99840 ----a-w- c:\windows\system32\srvsvc.dll
2010-08-27 01:43 . 2008-05-05 05:25 5632 ----a-w- c:\windows\system32\xpsp4res.dll
2010-08-26 13:39 . 2006-03-02 12:00 357248 ----a-w- c:\windows\system32\drivers\srv.sys
2010-08-23 16:12 . 2006-03-02 12:00 617472 ----a-w- c:\windows\system32\comctl32.dll
.

((((((((((((((((((((((((((((( SnapShot@2010-11-16_22.44.00 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-05-21 12:41 . 2007-07-27 22:11 26488 c:\windows\system32\spupdsvc.exe
- 2008-05-21 12:41 . 2007-11-30 11:18 26488 c:\windows\system32\spupdsvc.exe
- 2006-03-02 12:00 . 2010-06-24 12:19 44544 c:\windows\system32\pngfilt.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 44544 c:\windows\system32\pngfilt.dll
+ 2006-03-02 12:00 . 2010-11-16 23:06 72238 c:\windows\system32\perfc009.dat
- 2006-03-02 12:00 . 2010-11-16 09:38 72238 c:\windows\system32\perfc009.dat
+ 2006-03-02 12:00 . 2010-11-16 23:06 83940 c:\windows\system32\perfc005.dat
- 2006-03-02 12:00 . 2010-11-16 09:38 83940 c:\windows\system32\perfc005.dat
- 2007-08-13 16:54 . 2010-06-24 12:19 52224 c:\windows\system32\msfeedsbs.dll
+ 2007-08-13 16:54 . 2010-09-09 13:34 52224 c:\windows\system32\msfeedsbs.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 27648 c:\windows\system32\jsproxy.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 27648 c:\windows\system32\jsproxy.dll
+ 2007-08-13 16:39 . 2010-09-08 15:57 13824 c:\windows\system32\ieudinit.exe
- 2007-08-13 16:39 . 2010-06-23 12:06 13824 c:\windows\system32\ieudinit.exe
- 2006-03-02 12:00 . 2010-06-24 12:19 44544 c:\windows\system32\iernonce.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 44544 c:\windows\system32\iernonce.dll
- 2006-03-02 12:00 . 2010-06-23 12:06 70656 c:\windows\system32\ie4uinit.exe
+ 2006-03-02 12:00 . 2010-09-08 15:57 70656 c:\windows\system32\ie4uinit.exe
- 2007-08-13 16:36 . 2010-06-24 12:19 63488 c:\windows\system32\icardie.dll
+ 2007-08-13 16:36 . 2010-09-09 13:34 63488 c:\windows\system32\icardie.dll
+ 2010-08-27 05:54 . 2010-08-27 05:54 99840 c:\windows\system32\dllcache\srvsvc.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 44544 c:\windows\system32\dllcache\pngfilt.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 44544 c:\windows\system32\dllcache\pngfilt.dll
- 2008-05-21 14:46 . 2010-06-24 12:19 52224 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2008-05-21 14:46 . 2010-09-09 13:34 52224 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 27648 c:\windows\system32\dllcache\jsproxy.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 27648 c:\windows\system32\dllcache\jsproxy.dll
- 2008-05-21 14:46 . 2010-06-23 12:06 13824 c:\windows\system32\dllcache\ieudinit.exe
+ 2008-05-21 14:46 . 2010-09-08 15:57 13824 c:\windows\system32\dllcache\ieudinit.exe
- 2006-03-02 12:00 . 2010-06-24 12:19 44544 c:\windows\system32\dllcache\iernonce.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 44544 c:\windows\system32\dllcache\iernonce.dll
+ 2010-06-24 12:19 . 2010-09-09 13:34 78336 c:\windows\system32\dllcache\ieencode.dll
- 2010-06-24 12:19 . 2010-06-24 12:19 78336 c:\windows\system32\dllcache\ieencode.dll
- 2006-03-02 12:00 . 2010-06-23 12:06 70656 c:\windows\system32\dllcache\ie4uinit.exe
+ 2006-03-02 12:00 . 2010-09-08 15:57 70656 c:\windows\system32\dllcache\ie4uinit.exe
+ 2008-05-21 14:46 . 2010-09-09 13:34 63488 c:\windows\system32\dllcache\icardie.dll
- 2008-05-21 14:46 . 2010-06-24 12:19 63488 c:\windows\system32\dllcache\icardie.dll
+ 2010-06-24 12:19 . 2010-09-09 13:34 17408 c:\windows\system32\dllcache\corpol.dll
- 2010-06-24 12:19 . 2010-06-24 12:19 17408 c:\windows\system32\dllcache\corpol.dll
- 2010-03-23 03:31 . 2010-03-23 03:31 30544 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_wp.exe
+ 2010-09-22 08:43 . 2010-09-22 08:43 30544 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_wp.exe
+ 2008-05-21 13:48 . 2010-11-16 23:11 35088 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\oisicon.exe
- 2008-05-21 13:48 . 2010-11-16 09:28 35088 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\oisicon.exe
+ 2008-05-21 13:48 . 2010-11-16 23:11 18704 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\mspicons.exe
- 2008-05-21 13:48 . 2010-11-16 09:28 18704 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\mspicons.exe
+ 2008-05-21 13:48 . 2010-11-16 23:11 20240 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\cagicon.exe
- 2008-05-21 13:48 . 2010-11-16 09:28 20240 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\cagicon.exe
- 2010-09-01 07:06 . 2010-09-01 07:06 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
+ 2010-09-01 07:06 . 2010-11-16 23:07 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 44544 c:\windows\ie7updates\KB2360131-IE7\pngfilt.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 52224 c:\windows\ie7updates\KB2360131-IE7\msfeedsbs.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 27648 c:\windows\ie7updates\KB2360131-IE7\jsproxy.dll
+ 2010-11-16 23:09 . 2010-06-23 12:06 13824 c:\windows\ie7updates\KB2360131-IE7\ieudinit.exe
+ 2010-11-16 23:09 . 2010-06-24 12:19 44544 c:\windows\ie7updates\KB2360131-IE7\iernonce.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 78336 c:\windows\ie7updates\KB2360131-IE7\ieencode.dll
+ 2010-11-16 23:09 . 2010-06-23 12:06 70656 c:\windows\ie7updates\KB2360131-IE7\ie4uinit.exe
+ 2010-11-16 23:09 . 2010-06-24 12:19 63488 c:\windows\ie7updates\KB2360131-IE7\icardie.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 17408 c:\windows\ie7updates\KB2360131-IE7\corpol.dll
+ 2010-11-16 23:11 . 2010-11-16 23:11 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\70ee6267f7bad40e8707d402277770c3\System.Web.DynamicData.Design.ni.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2010-08-31 07:11 . 2010-08-31 07:11 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2010-08-31 07:11 . 2010-08-31 07:11 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 233472 c:\windows\system32\webcheck.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 233472 c:\windows\system32\webcheck.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 105984 c:\windows\system32\url.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 105984 c:\windows\system32\url.dll
+ 2006-03-02 12:00 . 2010-11-16 23:06 444362 c:\windows\system32\perfh009.dat
- 2006-03-02 12:00 . 2010-11-16 09:38 444362 c:\windows\system32\perfh009.dat
+ 2006-03-02 12:00 . 2010-11-16 23:06 441324 c:\windows\system32\perfh005.dat
- 2006-03-02 12:00 . 2010-11-16 09:38 441324 c:\windows\system32\perfh005.dat
+ 2006-03-02 12:00 . 2010-09-09 13:34 102912 c:\windows\system32\occache.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 102912 c:\windows\system32\occache.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 671232 c:\windows\system32\mstime.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 671232 c:\windows\system32\mstime.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 193024 c:\windows\system32\msrating.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 193024 c:\windows\system32\msrating.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 478208 c:\windows\system32\mshtmled.dll
+ 2007-08-13 16:54 . 2010-09-09 13:34 468480 c:\windows\system32\msfeeds.dll
- 2007-08-13 16:34 . 2010-06-24 12:19 268288 c:\windows\system32\iertutil.dll
+ 2007-08-13 16:34 . 2010-09-09 13:34 268288 c:\windows\system32\iertutil.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 192512 c:\windows\system32\iepeers.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 192512 c:\windows\system32\iepeers.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 384512 c:\windows\system32\iedkcs32.dll
+ 2007-07-11 10:27 . 2010-09-09 13:34 380928 c:\windows\system32\ieapfltr.dll
- 2007-07-11 10:27 . 2010-06-24 12:19 380928 c:\windows\system32\ieapfltr.dll
+ 2006-03-02 12:00 . 2010-08-25 11:29 161792 c:\windows\system32\ieakui.dll
- 2006-03-02 12:00 . 2010-06-17 15:11 161792 c:\windows\system32\ieakui.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 230400 c:\windows\system32\ieaksie.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 230400 c:\windows\system32\ieaksie.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 153088 c:\windows\system32\ieakeng.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 153088 c:\windows\system32\ieakeng.dll
+ 2008-05-21 20:17 . 2010-11-16 23:13 290888 c:\windows\system32\FNTCACHE.DAT
- 2008-05-21 20:17 . 2010-08-30 09:49 290888 c:\windows\system32\FNTCACHE.DAT
+ 2006-03-02 12:00 . 2010-09-09 13:34 133120 c:\windows\system32\extmgr.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 133120 c:\windows\system32\extmgr.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 214528 c:\windows\system32\dxtrans.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 214528 c:\windows\system32\dxtrans.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 347136 c:\windows\system32\dxtmsft.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 347136 c:\windows\system32\dxtmsft.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 832512 c:\windows\system32\dllcache\wininet.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 832512 c:\windows\system32\dllcache\wininet.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 233472 c:\windows\system32\dllcache\webcheck.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 233472 c:\windows\system32\dllcache\webcheck.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 105984 c:\windows\system32\dllcache\url.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 105984 c:\windows\system32\dllcache\url.dll
+ 2010-08-28 19:16 . 2010-08-27 08:03 119808 c:\windows\system32\dllcache\t2embed.dll
- 2010-08-28 19:16 . 2009-10-15 16:32 119808 c:\windows\system32\dllcache\t2embed.dll
+ 2010-08-28 19:19 . 2010-08-26 13:39 357248 c:\windows\system32\dllcache\srv.sys
- 2006-03-02 12:00 . 2010-06-24 12:19 102912 c:\windows\system32\dllcache\occache.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 102912 c:\windows\system32\dllcache\occache.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 671232 c:\windows\system32\dllcache\mstime.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 671232 c:\windows\system32\dllcache\mstime.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 193024 c:\windows\system32\dllcache\msrating.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 193024 c:\windows\system32\dllcache\msrating.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 478208 c:\windows\system32\dllcache\mshtmled.dll
+ 2008-05-21 14:46 . 2010-09-09 13:34 468480 c:\windows\system32\dllcache\msfeeds.dll
+ 2006-03-02 12:00 . 2010-09-18 11:23 974848 c:\windows\system32\dllcache\mfc42u.dll
+ 2006-03-02 12:00 . 2010-09-18 06:53 953856 c:\windows\system32\dllcache\mfc40u.dll
+ 2006-03-02 12:00 . 2010-09-18 06:53 954368 c:\windows\system32\dllcache\mfc40.dll
+ 2008-05-21 12:23 . 2010-08-25 11:30 634648 c:\windows\system32\dllcache\iexplore.exe
+ 2008-05-21 14:46 . 2010-09-09 13:34 268288 c:\windows\system32\dllcache\iertutil.dll
- 2008-05-21 14:46 . 2010-06-24 12:19 268288 c:\windows\system32\dllcache\iertutil.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 192512 c:\windows\system32\dllcache\iepeers.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 192512 c:\windows\system32\dllcache\iepeers.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 384512 c:\windows\system32\dllcache\iedkcs32.dll
+ 2008-05-21 14:46 . 2010-09-09 13:34 380928 c:\windows\system32\dllcache\ieapfltr.dll
- 2008-05-21 14:46 . 2010-06-24 12:19 380928 c:\windows\system32\dllcache\ieapfltr.dll
- 2006-03-02 12:00 . 2010-06-17 15:11 161792 c:\windows\system32\dllcache\ieakui.dll
+ 2006-03-02 12:00 . 2010-08-25 11:29 161792 c:\windows\system32\dllcache\ieakui.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 230400 c:\windows\system32\dllcache\ieaksie.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 230400 c:\windows\system32\dllcache\ieaksie.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 153088 c:\windows\system32\dllcache\ieakeng.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 153088 c:\windows\system32\dllcache\ieakeng.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 133120 c:\windows\system32\dllcache\extmgr.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 133120 c:\windows\system32\dllcache\extmgr.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 214528 c:\windows\system32\dllcache\dxtrans.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 214528 c:\windows\system32\dllcache\dxtrans.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 347136 c:\windows\system32\dllcache\dxtmsft.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 347136 c:\windows\system32\dllcache\dxtmsft.dll
+ 2010-04-20 05:32 . 2010-09-01 11:52 285824 c:\windows\system32\dllcache\atmfd.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 124928 c:\windows\system32\dllcache\advpack.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 124928 c:\windows\system32\dllcache\advpack.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 124928 c:\windows\system32\advpack.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 124928 c:\windows\system32\advpack.dll
- 2010-03-23 03:31 . 2010-03-23 03:31 435024 c:\windows\Microsoft.NET\Framework\v2.0.50727\webengine.dll
+ 2010-09-22 08:43 . 2010-09-22 08:43 435024 c:\windows\Microsoft.NET\Framework\v2.0.50727\webengine.dll
- 2008-05-21 13:48 . 2010-11-16 09:28 888080 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\wordicon.exe
+ 2008-05-21 13:48 . 2010-11-16 23:11 888080 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\wordicon.exe
+ 2008-05-21 13:48 . 2010-11-16 23:11 272648 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\pubs.exe
- 2008-05-21 13:48 . 2010-11-16 09:28 272648 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\pubs.exe
+ 2008-05-21 13:48 . 2010-11-16 23:11 922384 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\pptico.exe
- 2008-05-21 13:48 . 2010-11-16 09:28 922384 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\pptico.exe
- 2008-05-21 13:48 . 2010-11-16 09:28 845584 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\outicon.exe
+ 2008-05-21 13:48 . 2010-11-16 23:11 845584 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\outicon.exe
- 2008-05-21 13:48 . 2010-11-16 09:28 217864 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\misc.exe
+ 2008-05-21 13:48 . 2010-11-16 23:11 217864 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\misc.exe
+ 2010-11-16 23:09 . 2010-06-24 12:19 832512 c:\windows\ie7updates\KB2360131-IE7\wininet.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 233472 c:\windows\ie7updates\KB2360131-IE7\webcheck.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 105984 c:\windows\ie7updates\KB2360131-IE7\url.dll
+ 2010-11-16 23:09 . 2010-02-22 14:21 391032 c:\windows\ie7updates\KB2360131-IE7\spuninst\updspapi.dll
+ 2010-11-16 23:09 . 2010-02-22 14:20 233848 c:\windows\ie7updates\KB2360131-IE7\spuninst\spuninst.exe
+ 2010-11-16 23:09 . 2010-06-24 12:19 102912 c:\windows\ie7updates\KB2360131-IE7\occache.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 671232 c:\windows\ie7updates\KB2360131-IE7\mstime.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 193024 c:\windows\ie7updates\KB2360131-IE7\msrating.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 477696 c:\windows\ie7updates\KB2360131-IE7\mshtmled.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 459264 c:\windows\ie7updates\KB2360131-IE7\msfeeds.dll
+ 2010-11-16 23:09 . 2010-06-17 15:12 634656 c:\windows\ie7updates\KB2360131-IE7\iexplore.exe
+ 2010-11-16 23:09 . 2010-06-24 12:19 268288 c:\windows\ie7updates\KB2360131-IE7\iertutil.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 192512 c:\windows\ie7updates\KB2360131-IE7\iepeers.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 385024 c:\windows\ie7updates\KB2360131-IE7\iedkcs32.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 380928 c:\windows\ie7updates\KB2360131-IE7\ieapfltr.dll
+ 2010-11-16 23:09 . 2010-06-17 15:11 161792 c:\windows\ie7updates\KB2360131-IE7\ieakui.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 230400 c:\windows\ie7updates\KB2360131-IE7\ieaksie.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 153088 c:\windows\ie7updates\KB2360131-IE7\ieakeng.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 133120 c:\windows\ie7updates\KB2360131-IE7\extmgr.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 214528 c:\windows\ie7updates\KB2360131-IE7\dxtrans.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 347136 c:\windows\ie7updates\KB2360131-IE7\dxtmsft.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 124928 c:\windows\ie7updates\KB2360131-IE7\advpack.dll
+ 2010-11-16 23:11 . 2010-11-16 23:11 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\7f9a1ae146571025fd49914b5c71a39b\System.Web.Routing.ni.dll
+ 2010-11-16 23:11 . 2010-11-16 23:11 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\b1646e54b708b9824f4193f87eb00c0e\System.Web.Extensions.Design.ni.dll
+ 2010-11-16 23:11 . 2010-11-16 23:11 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\504a93e73da77c502ecf98bfdfc1485e\System.Web.Entity.ni.dll
+ 2010-11-16 23:11 . 2010-11-16 23:11 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\f22334fbd9497d79448fffef515ae0cc\System.Web.Entity.Design.ni.dll
+ 2010-11-16 23:11 . 2010-11-16 23:11 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\af5452305588da228a74e30324681d20\System.Web.DynamicData.ni.dll
+ 2010-11-16 23:11 . 2010-11-16 23:11 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\9d9bca1a8993c427984aa1bc9c165a33\System.Web.Abstractions.ni.dll
+ 2010-11-16 23:07 . 2010-11-16 23:07 771584 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\a140e8da81b3af34c864ad851fe150fd\System.Runtime.Remoting.ni.dll
+ 2010-11-16 23:10 . 2010-11-16 23:10 756736 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity.#\165bd290e518b9397ca55192985fdee3\System.Data.Entity.Design.ni.dll
+ 2010-11-16 23:09 . 2010-11-16 23:09 320512 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\72d3aacfca2e1ce835c210f5a1decb36\ServiceModelReg.ni.exe
+ 2010-11-16 23:09 . 2010-11-16 23:09 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\af4a3ae6d5c1cafa57002beb487b8d7a\AspNetMMCExt.ni.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2010-11-15 08:58 . 2010-08-23 16:12 1054208 c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 1168384 c:\windows\system32\urlmon.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 1168384 c:\windows\system32\urlmon.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 3601920 c:\windows\system32\mshtml.dll
+ 2007-08-13 16:54 . 2010-09-09 13:34 6075904 c:\windows\system32\ieframe.dll
+ 2010-06-24 09:02 . 2010-09-01 07:57 1852800 c:\windows\system32\dllcache\win32k.sys
+ 2006-03-02 12:00 . 2010-09-09 13:34 1168384 c:\windows\system32\dllcache\urlmon.dll
- 2006-03-02 12:00 . 2010-06-24 12:19 1168384 c:\windows\system32\dllcache\urlmon.dll
+ 2006-03-02 12:00 . 2010-09-09 13:34 3601920 c:\windows\system32\dllcache\mshtml.dll
+ 2008-05-21 14:46 . 2010-09-09 13:34 6075904 c:\windows\system32\dllcache\ieframe.dll
- 2010-03-23 03:32 . 2010-03-23 03:32 5242880 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.dll
+ 2010-09-22 08:44 . 2010-09-22 08:44 5242880 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.dll
+ 2010-09-17 05:04 . 2010-09-17 05:04 9401856 c:\windows\Installer\136d47.msp
+ 2010-10-21 17:12 . 2010-10-21 17:12 3359744 c:\windows\Installer\136d34.msp
+ 2010-08-13 17:01 . 2010-08-13 17:01 8993280 c:\windows\Installer\136d21.msp
+ 2010-08-13 16:59 . 2010-08-13 16:59 8182272 c:\windows\Installer\136d0e.msp
+ 2010-08-13 17:02 . 2010-08-13 17:02 2545664 c:\windows\Installer\136cfb.msp
+ 2010-09-23 06:39 . 2010-09-23 06:39 4265472 c:\windows\Installer\136cde.msp
+ 2008-05-21 13:48 . 2010-11-16 23:11 1172240 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\xlicons.exe
- 2008-05-21 13:48 . 2010-11-16 09:28 1172240 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\xlicons.exe
- 2008-05-21 13:48 . 2010-11-16 09:28 1165584 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\accicons.exe
+ 2008-05-21 13:48 . 2010-11-16 23:11 1165584 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\accicons.exe
+ 2010-11-16 23:09 . 2010-06-24 12:19 1168384 c:\windows\ie7updates\KB2360131-IE7\urlmon.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 3600896 c:\windows\ie7updates\KB2360131-IE7\mshtml.dll
+ 2010-11-16 23:09 . 2010-06-24 12:19 6067200 c:\windows\ie7updates\KB2360131-IE7\ieframe.dll
+ 2010-11-16 23:24 . 2010-11-16 23:24 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\bec60fe2e934a6284224ab45b0e981e2\System.WorkflowServices.ni.dll
+ 2010-11-16 23:11 . 2010-11-16 23:11 1908224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\09da139c48e2f5e76994a5c0f2e5b19e\System.Workflow.Runtime.ni.dll
+ 2010-11-16 23:11 . 2010-11-16 23:11 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\6809417da74ff937e18b3034f1eac2f2\System.Workflow.ComponentModel.ni.dll
+ 2010-11-16 23:11 . 2010-11-16 23:11 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\6c91ee82035d30efa8893e7b0396bbb0\System.Workflow.Activities.ni.dll
+ 2010-11-16 23:07 . 2010-11-16 23:07 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\181254ba0cb690decedb950fd26d7bea\System.Web.Services.ni.dll
+ 2010-11-16 23:11 . 2010-11-16 23:11 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\4200f716e9a41cb91d17516ba864e586\System.Web.Mobile.ni.dll
+ 2010-11-16 23:11 . 2010-11-16 23:11 2405376 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\da367bc2ecf2c9c5b4f858b6dba9e2ea\System.Web.Extensions.ni.dll
+ 2010-11-16 23:11 . 2010-11-16 23:11 1706496 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\8e34e273d036b7468fc4e951a1fde437\System.ServiceModel.Web.ni.dll
+ 2010-11-16 23:09 . 2010-11-16 23:09 1070080 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\095bb4f033374647b6d66c51f16bb886\System.IdentityModel.ni.dll
+ 2010-11-16 23:10 . 2010-11-16 23:10 1328128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Services\b8c9267d87b7358e1a5f00bf1572c313\System.Data.Services.ni.dll
+ 2010-11-16 23:10 . 2010-11-16 23:10 1712128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\a27783547338dbebf84101a685ba641b\Microsoft.VisualBasic.ni.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 3182592 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 3182592 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2010-11-16 23:05 . 2010-11-16 23:05 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
- 2010-08-31 07:11 . 2010-08-31 07:11 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2006-03-02 12:00 . 2010-08-25 22:36 10841088 c:\windows\system32\wmp.dll
- 2006-03-02 12:00 . 2009-07-13 21:43 10841088 c:\windows\system32\wmp.dll
+ 2006-03-02 12:00 . 2010-08-25 22:36 10841088 c:\windows\system32\dllcache\wmp.dll
- 2006-03-02 12:00 . 2009-07-13 21:43 10841088 c:\windows\system32\dllcache\wmp.dll
+ 2010-11-16 23:06 . 2010-11-16 23:06 20303872 c:\windows\Installer\136ce9.msp
+ 2010-11-16 23:07 . 2010-11-16 23:07 11800576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\41f436dae3c8146752d06130f7331527\System.Web.ni.dll
+ 2010-11-16 23:09 . 2010-11-16 23:09 17403904 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\75aeb590008d6e166f7be18f935c52d2\System.ServiceModel.ni.dll
+ 2010-11-16 23:07 . 2010-11-16 23:07 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\fdc42078fd10e4dc8b05087900c63977\System.Design.ni.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-01 15:08 143360 ----a-w- c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MultiFrame"="c:\program files\ASUS\Asus MultiFrame\MultiFrame.exe" [2007-06-21 999792]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2006-12-23 143360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATKHOTKEY"="c:\program files\ATK Hotkey\Hcontrol.exe" [2007-06-29 225280]
"ATKOSD2"="c:\program files\ATKOSD2\ATKOSD2.exe" [2007-07-03 7708672]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-06-13 142104]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-06-13 162584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-06-13 138008]
"RTHDCPL"="RTHDCPL.EXE" [2006-11-14 16270848]
"SkyTel"="SkyTel.EXE" [2006-05-16 2879488]
"SMSERIAL"="c:\program files\Motorola\SMSERIAL\sm56hlpr.exe" [2006-11-24 630784]
"Wireless Console 2"="c:\program files\Wireless Console 2\wcourier.exe" [2007-07-05 1040384]
"ACU"="c:\program files\Atheros\ACU.exe" [2006-11-17 348249]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-05-25 786521]
"ASUS Live Update"="c:\program files\ASUS\ASUS Live Update\ALU.exe" [2007-07-19 49520]
"ATKMEDIA"="c:\program files\ASUS\ATK Media\DMEDIA.EXE" [2006-11-02 61440]
"Power_Gear"="c:\program files\ASUS\Power4 Gear\BatteryLife.exe" [2006-07-26 90112]
"PowerForPhone"="c:\program files\P4P\P4P.exe" [2007-07-19 778240]
"ACMON"="c:\program files\ASUS\Splendid\ACMON.exe" [2007-06-26 851968]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2006-11-23 56928]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2006-12-05 54832]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2008-03-13 1443072]
"DAEMON Tools"="c:\program files\DAEMON Tools\daemon.exe" [2006-11-12 157592]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\oem\Nabˇdka Start\Programy\Po spuçtŘnˇ\
OpenOffice.org 2.4.lnk - c:\program files\OpenOffice.org 2.4\program\quickstart.exe [2008-3-16 393216]

c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 40048]
Adobe Reader Synchronizer.lnk - c:\program files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-22 734872]
Bluetooth Manager.lnk - c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2007-5-22 2756608]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\EA GAMES\\MOHAA\\MOHAA.exe"=

R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [8.5.2010 12:29 639224]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [13.3.2008 15:52 33800]
R2 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [13.3.2008 15:49 472320]
R3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\l151x86.sys [21.5.2008 13:41 39424]
S2 bhouejbneioywuo;Crypkey License;c:\windows\system32\zoby.exe --> c:\windows\system32\zoby.exe [?]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

SafeBoot-muiogxml.sys



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-11-17 00:55
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'explorer.exe'(3120)
c:\program files\ASUS\Asus MultiFrame\HookTitle.dll
c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt.dll
c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Celkový čas: 2010-11-17 00:56:52
ComboFix-quarantined-files.txt 2010-11-16 23:56
ComboFix2.txt 2010-11-16 22:46

Před spuštěním: Volných bajtů: 140 774 928 384
Po spuštění: Volných bajtů: 140 768 800 768

- - End Of File - - C277BD3624719ABF0F1DCD85AB4F7A43
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119428
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu po opravě Combofixem

#2 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Collect::
c:\windows\system32\acovcnt.exe
c:\windows\system32\zoby.exe

Driver::
bhouejbneioywuo
Uložte na plochu jako CFScript.txt. pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

Obrázek
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
aweiss
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 17 lis 2010 01:06

Re: Prosím o kontrolu po opravě Combofixem

#3 Příspěvek od aweiss »

Děkuji, propvedl jsem. Combofix mi napsal, že potřebuje poslat malware k analýze, ale nezdařilo se mu to, ani následně mně ne. Pro všechyn případy posílám log:

ComboFix 10-11-16.02 - oem 18.11.2010 11:27:07.3.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1015.579 [GMT 1:00]
Spuštěný z: c:\documents and settings\oem\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\oem\Plocha\CFScript.txt.txt
AV: ESET NOD32 Antivirus 3.0 *On-access scanning disabled* (Outdated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
* Vytvořen nový Bod Obnovení

file zipped: c:\windows\system32\acovcnt.exe
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\acovcnt.exe

.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_BHOUEJBNEIOYWUO
-------\Service_bhouejbneioywuo


((((((((((((((((((((((((( Soubory vytvořené od 2010-10-18 do 2010-11-18 )))))))))))))))))))))))))))))))
.

2010-11-16 23:17 . 2010-11-16 23:17 -------- d-----w- c:\documents and settings\oem\Data aplikací\Malwarebytes
2010-11-16 23:17 . 2010-04-29 14:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-11-16 23:17 . 2010-11-16 23:17 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2010-11-16 23:17 . 2010-04-29 14:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-11-16 23:17 . 2010-11-16 23:17 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-11-16 20:55 . 2010-11-16 20:55 -------- d-----w- C:\!KillBox
2010-11-16 16:24 . 2010-11-16 16:24 -------- d-----w- c:\documents and settings\oem\Local Settings\Data aplikací\PCHealth
2010-11-15 08:58 . 2010-09-18 06:53 974848 -c----w- c:\windows\system32\dllcache\mfc42.dll
2010-11-15 08:58 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2010-10-24 21:42 . 2010-10-24 21:42 -------- d--h--w- c:\windows\PIF
2010-10-24 20:17 . 2010-10-24 20:17 -------- d-----w- c:\documents and settings\oem\Local Settings\Data aplikací\DOSBox
2010-10-24 20:17 . 2010-10-25 18:54 -------- d-----w- C:\Doom2

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-18 11:23 . 2006-03-02 12:00 974848 ----a-w- c:\windows\system32\mfc42u.dll
2010-09-18 06:53 . 2006-03-02 12:00 974848 ----a-w- c:\windows\system32\mfc42.dll
2010-09-18 06:53 . 2006-03-02 12:00 954368 ----a-w- c:\windows\system32\mfc40.dll
2010-09-18 06:53 . 2006-03-02 12:00 953856 ----a-w- c:\windows\system32\mfc40u.dll
2010-09-09 13:34 . 2006-03-02 12:00 832512 ----a-w- c:\windows\system32\wininet.dll
2010-09-09 13:34 . 2006-03-02 12:00 1830912 ----a-w- c:\windows\system32\inetcpl.cpl
2010-09-09 13:34 . 2006-03-02 12:00 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-09-09 13:34 . 2006-03-02 12:00 17408 ------w- c:\windows\system32\corpol.dll
2010-09-08 15:57 . 2006-03-02 12:00 389120 ----a-w- c:\windows\system32\html.iec
2010-09-01 11:52 . 2006-03-02 12:00 285824 ----a-w- c:\windows\system32\atmfd.dll
2010-09-01 07:57 . 2006-03-02 12:00 1852800 ----a-w- c:\windows\system32\win32k.sys
2010-08-27 08:03 . 2006-03-02 12:00 119808 ----a-w- c:\windows\system32\t2embed.dll
2010-08-27 05:54 . 2006-03-02 12:00 99840 ----a-w- c:\windows\system32\srvsvc.dll
2010-08-27 01:43 . 2008-05-05 05:25 5632 ----a-w- c:\windows\system32\xpsp4res.dll
2010-08-26 13:39 . 2006-03-02 12:00 357248 ----a-w- c:\windows\system32\drivers\srv.sys
2010-08-23 16:12 . 2006-03-02 12:00 617472 ----a-w- c:\windows\system32\comctl32.dll
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-01 15:08 143360 ----a-w- c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MultiFrame"="c:\program files\ASUS\Asus MultiFrame\MultiFrame.exe" [2007-06-21 999792]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2006-12-23 143360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATKHOTKEY"="c:\program files\ATK Hotkey\Hcontrol.exe" [2007-06-29 225280]
"ATKOSD2"="c:\program files\ATKOSD2\ATKOSD2.exe" [2007-07-03 7708672]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-06-13 142104]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-06-13 162584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-06-13 138008]
"RTHDCPL"="RTHDCPL.EXE" [2006-11-14 16270848]
"SkyTel"="SkyTel.EXE" [2006-05-16 2879488]
"SMSERIAL"="c:\program files\Motorola\SMSERIAL\sm56hlpr.exe" [2006-11-24 630784]
"Wireless Console 2"="c:\program files\Wireless Console 2\wcourier.exe" [2007-07-05 1040384]
"ACU"="c:\program files\Atheros\ACU.exe" [2006-11-17 348249]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-05-25 786521]
"ASUS Live Update"="c:\program files\ASUS\ASUS Live Update\ALU.exe" [2007-07-19 49520]
"ATKMEDIA"="c:\program files\ASUS\ATK Media\DMEDIA.EXE" [2006-11-02 61440]
"Power_Gear"="c:\program files\ASUS\Power4 Gear\BatteryLife.exe" [2006-07-26 90112]
"PowerForPhone"="c:\program files\P4P\P4P.exe" [2007-07-19 778240]
"ACMON"="c:\program files\ASUS\Splendid\ACMON.exe" [2007-06-26 851968]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2006-11-23 56928]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2006-12-05 54832]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2008-03-13 1443072]
"DAEMON Tools"="c:\program files\DAEMON Tools\daemon.exe" [2006-11-12 157592]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\oem\Nabˇdka Start\Programy\Po spuçtŘnˇ\
OpenOffice.org 2.4.lnk - c:\program files\OpenOffice.org 2.4\program\quickstart.exe [2008-3-16 393216]

c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 40048]
Adobe Reader Synchronizer.lnk - c:\program files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-22 734872]
Bluetooth Manager.lnk - c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2007-5-22 2756608]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\EA GAMES\\MOHAA\\MOHAA.exe"=

R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [8.5.2010 12:29 639224]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [13.3.2008 15:52 33800]
R2 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [13.3.2008 15:49 472320]
R3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\l151x86.sys [21.5.2008 13:41 39424]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-11-18 11:34
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'explorer.exe'(3676)
c:\program files\ASUS\Asus MultiFrame\HookTitle.dll
c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt.dll
c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
c:\program files\ATKGFNEX\GFNEXSrv.exe
c:\windows\system32\acs.exe
c:\program files\CyberLink\Shared Files\RichVideo.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
c:\windows\system32\wscntfy.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\igfxsrvc.exe
c:\windows\system32\ACEngSvr.exe
c:\program files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
c:\program files\OpenOffice.org 2.4\program\soffice.exe
c:\program files\Common Files\Ahead\Lib\NMIndexingService.exe
c:\program files\OpenOffice.org 2.4\program\soffice.BIN
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
c:\windows\system32\acovcnt.exe
.
**************************************************************************
.
Celkový čas: 2010-11-18 11:36:58 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-11-18 10:36
ComboFix2.txt 2010-11-16 23:56
ComboFix3.txt 2010-11-16 22:46

Před spuštěním: Volných bajtů: 140 867 690 496
Po spuštění: Volných bajtů: 140 858 372 096

- - End Of File - - F3C18213E5B5890D8DF089D3D825648A
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119428
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu po opravě Combofixem

#4 Příspěvek od Rudy »

Všechno bylo smazáno, zbytek logu vypadá čistý.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
aweiss
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 17 lis 2010 01:06

Re: Prosím o kontrolu po opravě Combofixem

#5 Příspěvek od aweiss »

Díky
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119428
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu po opravě Combofixem

#6 Příspěvek od Rudy »

Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“