preventivka & problém z cpu

[David777]

ok. cache jsem přes ccleaner smazal a pořád to blbne jinač když ho reinstallnu smažou se mi aj záložky? asi jo že, bo já jich tu mám zlehka víc no a mám tu aj dosti tak hesel uložených
jnač někdy už ani ne, aspíš je to takhle: spustím chrome, chvíli to je normální (max 20% vytížení procesoru) a pak to zase vyskočí (asi tak na 60%)

[vyosek]

Muzete zazalohovat pomoci Chrome BackUp http://www.slunecnice.cz/sw/google-chrome-backup/

[David777]

večer to vyskouším a pak napíšu jak to dopadlo, díky moc

[vyosek]

Jasny, v pohode...

Prozatim nemate zac...

[David777]

a doprdele, je tu další problém, dnes se mi to stalo už po druhé, včera po prvé, vyhledám si něco googlem, kliknu na odkaz a naskočí mi nějaka porno stránka, zavřu to, kliknu na odkaz ještě jednou a pak to najede už normálně

[David777]

jinač mám to přeinstalované, ale pořád mu jebe (

[vyosek]

Stahnete RKill http://download.bleepingcomputer.com/grinler/rkill.com

• Pokud ho havet blokuje, pouzijte jeden z nasledujicich

  Rkill EXE:
  http://download.bleepingcomputer.com/grinler/rkill.exe
  
  Rkill SCR:
  http://download.bleepingcomputer.com/grinler/rkill.scr
  
  Rkill PIF:
  http://download.bleepingcomputer.com/grinler/rkill.pif

• Ulozte nejlepena plochu a ukoncete vsechny aplikace (jinak to udela RKill za Vas)
• Spustte tradicne dvojklikem - program probehne temer okamzite a ukonci i svou cinnost
• RKill ukonci vsechny ne-systemove procesy - tedy i procesy, pod kterymi bezi havet
• Ted nerestartujte PC - prisli byste o ucinek RKillu

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK
Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

• Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
• Pokud mate Win XP spustte pod uctem Spravce\Administratora
• Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
• Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
• Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
• Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
• Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
• Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
• Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

[David777]

v popisu máš napsané ať se raději 3x zeptám než jak ybch udělal něco špatně, tak bych se chtěl zeptat na bod
Ted nerestartujte PC - prisli byste o ucinek RKillu
jestli bys to mohl blíže specifikovat co mám dělat? vlastně proces explorer.exe není systémový ne? takže tu pak nic neuvidím nebo co mm dělat jsem z toho trošku zmetěný

[vyosek]

RKill explorer neukonci, ukoncuje jen ne-systemove procesy, takze v pohode spustit a pokracovat dale...
Proces explorer.exe je systemovy, takze ukoncen nebude

[David777]

This log file is located at C:\rkill.log.
Please post this only if requested to by the person helping you.
Otherwise you can close this log when you wish.

Rkill was run on 06.06.2011 at 14:00:42.
Operating System: Windows 7 Home Premium


Processes terminated by Rkill or while it was running:

C:\Users\David\AppData\Local\Google\Update\1.3.21.57\GoogleCrashHandler.exe


Rkill completed on 06.06.2011 at 14:02:18.

[vyosek]

Ou Kej, to je zprava co RKill ukoncoval, ted vzhuru co CFka

[David777]

j, tak už chápu na co ten rkiller je... takhle z textu jsem se moc nechytal... jinač tu je log z combofixu:




ComboFix 11-06-05.06 - David 06.06.2011 14:17:33.3.2 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.4061.2527 [GMT 2:00]
Spuštěný z: c:\users\David\Desktop\ComboFix.exe
AV: ESET NOD32 Antivirus 4.2 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 4.2 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\clofghls.dll
.
---- Předchozí spuštění -------
.
c:\program files (x86)\Ask.com
c:\program files (x86)\Ask.com\cobrand.ico
c:\program files (x86)\Ask.com\config.xml
c:\program files (x86)\Ask.com\favicon.ico
c:\program files (x86)\Ask.com\fv_5f11.ico
c:\program files (x86)\Ask.com\GenericAskToolbar.dll
c:\program files (x86)\Ask.com\mupcfg.xml
c:\program files (x86)\Ask.com\SaUpdate.exe
c:\program files (x86)\Ask.com\UpdateTask.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-05-06 do 2011-06-06 )))))))))))))))))))))))))))))))
.
.
2011-06-06 12:28 . 2011-06-06 12:28 -------- d-----w- c:\users\Public\AppData\Local\temp
2011-06-06 12:28 . 2011-06-06 12:28 -------- d-----w- c:\users\Guest\AppData\Local\temp
2011-06-06 12:28 . 2011-06-06 12:28 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-06-05 18:32 . 2011-06-05 18:32 -------- d-----w- C:\sss
2011-06-05 18:23 . 2011-06-05 19:11 -------- d-----w- c:\users\David\AppData\Roaming\Google Chrome Backup
2011-06-05 18:23 . 2011-06-05 18:23 -------- d-----w- c:\program files (x86)\Google Chrome Backup
2011-06-05 15:51 . 2011-06-05 15:51 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi
2011-06-05 07:32 . 2011-06-05 07:32 -------- d-----w- C:\_OTL
2011-06-04 19:55 . 2011-06-04 19:56 -------- d-----w- c:\program files (x86)\DiskCheckup
2011-06-04 19:35 . 2011-06-05 18:43 -------- d-----w- c:\users\David\AppData\Local\Cooliris
2011-06-04 18:55 . 2011-06-04 18:55 77824 --sha-r- c:\windows\SysWow64\MSVCP50G.dll
2011-06-04 16:57 . 2011-06-04 16:57 -------- d-----w- c:\program files\BatteryBar
2011-06-03 20:00 . 2011-05-09 22:00 8718160 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0FB73C8E-A358-4973-BACF-506BF0455888}\mpengine.dll
2011-05-27 19:13 . 2011-04-22 20:18 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2011-05-24 18:47 . 2011-05-24 18:47 -------- d-----w- c:\program files (x86)\GamePark2
2011-05-22 18:39 . 2011-05-22 18:39 -------- d-----w- c:\program files (x86)\Common Files\xing shared
2011-05-22 18:39 . 2011-05-22 18:39 -------- d-----w- c:\program files (x86)\Real
2011-05-15 20:08 . 2009-03-18 15:35 33856 ---ha-w- c:\windows\system32\hamachi.sys
2011-05-15 20:04 . 2011-06-06 11:51 -------- d-----w- c:\users\David\AppData\Local\LogMeIn Hamachi
2011-05-13 20:18 . 2011-05-13 20:18 -------- d-----w- c:\program files (x86)\WinSCP
2011-05-12 19:05 . 2011-05-12 21:21 -------- d-----w- c:\users\David\VirtualBox VMs
2011-05-12 19:04 . 2011-05-27 21:34 -------- d-----w- c:\users\David\.VirtualBox
2011-05-12 19:02 . 2011-04-26 12:38 231600 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2011-05-12 19:02 . 2011-04-26 12:37 56816 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2011-05-12 19:02 . 2011-05-12 19:02 -------- d-----w- c:\program files\VirtualBox
2011-05-11 18:18 . 2011-04-09 06:58 142336 ----a-w- c:\windows\system32\poqexec.exe
2011-05-11 18:18 . 2011-04-09 05:56 123904 ----a-w- c:\windows\SysWow64\poqexec.exe
2011-05-11 18:18 . 2011-01-17 06:17 197120 ----a-w- c:\windows\system32\d3d10_1.dll
2011-05-11 18:18 . 2011-01-17 05:38 161792 ----a-w- c:\windows\SysWow64\d3d10_1.dll
2011-05-11 12:49 . 2011-04-09 06:45 5509504 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-05-11 12:49 . 2011-04-09 06:13 3957632 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2011-05-11 12:49 . 2011-04-09 06:13 3901824 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2011-05-11 12:48 . 2011-03-25 03:23 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2011-05-11 12:48 . 2011-03-25 03:23 98816 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2011-05-11 12:48 . 2011-03-25 03:23 324608 ----a-w- c:\windows\system32\drivers\usbport.sys
2011-05-11 12:48 . 2011-03-25 03:22 52224 ----a-w- c:\windows\system32\drivers\usbehci.sys
2011-05-11 12:48 . 2011-03-25 03:22 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2011-05-11 12:48 . 2011-03-25 03:22 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2011-05-11 12:48 . 2011-03-25 03:22 7936 ----a-w- c:\windows\system32\drivers\usbd.sys
2011-05-09 16:04 . 2011-05-09 16:04 25608 ----a-w- c:\windows\SysWow64\drivers\DKbFltr.sys
2011-05-09 16:02 . 2011-05-09 16:02 132648 ----a-w- c:\windows\system32\drivers\btwavdt.sys
2011-05-09 16:00 . 2011-05-09 16:00 63016 ----a-w- c:\windows\system32\drivers\L1E60x64.sys
2011-05-09 15:41 . 2011-05-09 15:41 -------- d-----w- c:\programdata\Uniblue
2011-05-08 10:27 . 2011-05-08 10:30 -------- d-----w- c:\program files (x86)\ICQ7.1
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-04 22:37 . 2010-06-07 12:30 214520 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2011-06-04 22:37 . 2010-06-07 12:30 214520 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2011-06-04 21:53 . 2010-06-07 12:30 214520 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2011-05-29 07:11 . 2010-09-28 14:09 39984 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-05-29 07:11 . 2010-09-28 14:09 25912 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-05-24 17:14 . 2010-09-26 19:46 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-05-22 18:39 . 2009-10-16 05:09 499712 ----a-w- c:\windows\SysWow64\msvcp71.dll
2011-05-22 18:39 . 2009-10-16 05:09 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll
2011-05-14 20:40 . 2010-04-30 16:20 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2011-05-14 20:30 . 2010-04-30 16:20 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-05-05 19:08 . 2010-06-07 12:30 75136 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2011-04-26 12:37 . 2011-04-26 12:37 156912 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2011-04-26 12:37 . 2011-04-26 12:37 320816 ----a-w- c:\windows\system32\VBoxNetFltNotify.dll
2011-04-26 12:37 . 2011-04-26 12:37 176560 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys
2011-04-07 20:31 . 2010-07-01 13:35 310728 ----a-w- c:\windows\system32\drivers\atksgt.sys
2011-04-02 10:41 . 2011-04-02 10:41 86016 ----a-w- c:\windows\SysWow64\frapsvid.dll
2011-04-02 10:41 . 2011-04-02 10:41 84992 ----a-w- c:\windows\system32\frapsv64.dll
2011-03-29 11:48 . 2010-07-31 21:26 669184 ----a-w- c:\windows\SysWow64\pbsvc.exe
2011-03-15 14:45 . 2011-03-15 14:45 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2011-03-15 14:45 . 2011-03-15 14:45 1797632 ----a-w- c:\windows\SysWow64\jscript9.dll
2011-03-15 14:45 . 2011-03-15 14:45 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2011-03-15 14:45 . 2011-03-15 14:45 1126912 ----a-w- c:\windows\SysWow64\wininet.dll
2011-03-15 14:45 . 2011-03-15 14:45 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-03-15 14:45 . 2011-03-15 14:45 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2011-03-15 14:45 . 2011-03-15 14:45 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2011-03-15 14:45 . 2011-03-15 14:45 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2011-03-15 14:45 . 2011-03-15 14:45 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2011-03-15 14:45 . 2011-03-15 14:45 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2011-03-15 14:45 . 2011-03-15 14:45 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2011-03-15 14:45 . 2011-03-15 14:45 367104 ----a-w- c:\windows\SysWow64\html.iec
2011-03-15 14:45 . 2011-03-15 14:45 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2011-03-15 14:45 . 2011-03-15 14:45 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2011-03-15 14:45 . 2011-03-15 14:45 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2011-03-15 14:45 . 2011-03-15 14:45 222208 ----a-w- c:\windows\system32\msls31.dll
2011-03-15 14:45 . 2011-03-15 14:45 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2011-03-15 14:45 . 2011-03-15 14:45 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2011-03-15 14:45 . 2011-03-15 14:45 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2011-03-15 14:45 . 2011-03-15 14:45 1427456 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2011-03-15 14:45 . 2011-03-15 14:45 1389056 ----a-w- c:\windows\system32\wininet.dll
2011-03-15 14:45 . 2011-03-15 14:45 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2011-03-15 14:45 . 2011-03-15 14:45 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2011-03-15 14:45 . 2011-03-15 14:45 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2011-03-15 14:45 . 2011-03-15 14:45 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-03-15 14:45 . 2011-03-15 14:45 85504 ----a-w- c:\windows\system32\iesetup.dll
2011-03-15 14:45 . 2011-03-15 14:45 76800 ----a-w- c:\windows\system32\tdc.ocx
2011-03-15 14:45 . 2011-03-15 14:45 603648 ----a-w- c:\windows\system32\vbscript.dll
2011-03-15 14:45 . 2011-03-15 14:45 49664 ----a-w- c:\windows\system32\imgutil.dll
2011-03-15 14:45 . 2011-03-15 14:45 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-03-15 14:45 . 2011-03-15 14:45 448512 ----a-w- c:\windows\system32\html.iec
2011-03-15 14:45 . 2011-03-15 14:45 30720 ----a-w- c:\windows\system32\licmgr10.dll
2011-03-15 14:45 . 2011-03-15 14:45 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-03-15 14:45 . 2011-03-15 14:45 2303488 ----a-w- c:\windows\system32\jscript9.dll
2011-03-15 14:45 . 2011-03-15 14:45 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2011-03-15 14:45 . 2011-03-15 14:45 165888 ----a-w- c:\windows\system32\iexpress.exe
2011-03-15 14:45 . 2011-03-15 14:45 160256 ----a-w- c:\windows\system32\wextract.exe
2011-03-15 14:45 . 2011-03-15 14:45 1492992 ----a-w- c:\windows\system32\inetcpl.cpl
2011-03-15 14:45 . 2011-03-15 14:45 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-03-15 14:45 . 2011-03-15 14:45 12288 ----a-w- c:\windows\system32\mshta.exe
2011-03-15 14:45 . 2011-03-15 14:45 114176 ----a-w- c:\windows\system32\admparse.dll
2011-03-15 14:45 . 2011-03-15 14:45 111616 ----a-w- c:\windows\system32\iesysprep.dll
2011-03-14 22:44 . 2011-03-14 22:44 1386496 ----a-w- c:\windows\SysWow64\GLaux.dll
2011-03-14 22:44 . 2011-03-14 22:44 710796 ----a-w- c:\windows\SysWow64\Matrix2Screensaver.scr
2011-03-12 12:03 . 2011-04-28 13:59 662528 ----a-w- c:\windows\system32\XpsPrint.dll
2011-03-12 11:31 . 2011-04-28 13:59 442880 ----a-w- c:\windows\SysWow64\XpsPrint.dll
2011-03-11 06:23 . 2011-04-28 13:59 187264 ----a-w- c:\windows\system32\drivers\storport.sys
2011-03-11 06:23 . 2011-04-28 13:59 1657216 ----a-w- c:\windows\system32\drivers\ntfs.sys
2011-03-11 06:23 . 2011-04-28 13:59 166272 ----a-w- c:\windows\system32\drivers\nvstor.sys
2011-03-11 06:23 . 2011-04-28 13:59 148352 ----a-w- c:\windows\system32\drivers\nvraid.sys
2011-03-11 06:23 . 2011-04-28 13:59 410496 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2011-03-11 06:22 . 2011-04-28 13:59 107904 ----a-w- c:\windows\system32\drivers\amdsata.sys
2011-03-11 06:22 . 2011-04-28 13:59 27008 ----a-w- c:\windows\system32\drivers\amdxata.sys
2011-03-11 06:19 . 2011-04-12 17:18 1359872 ----a-w- c:\windows\system32\mfc42u.dll
2011-03-11 06:19 . 2011-04-12 17:18 1395712 ----a-w- c:\windows\system32\mfc42.dll
2011-03-11 06:18 . 2011-04-28 13:59 2566144 ----a-w- c:\windows\system32\esent.dll
2011-03-11 06:15 . 2011-04-28 13:59 96768 ----a-w- c:\windows\system32\fsutil.exe
2011-03-11 05:40 . 2011-04-12 17:18 1164288 ----a-w- c:\windows\SysWow64\mfc42u.dll
2011-03-11 05:40 . 2011-04-12 17:18 1137664 ----a-w- c:\windows\SysWow64\mfc42.dll
2011-03-11 05:39 . 2011-04-28 13:59 1686016 ----a-w- c:\windows\SysWow64\esent.dll
2011-03-11 05:37 . 2011-04-28 13:59 74240 ----a-w- c:\windows\SysWow64\fsutil.exe
2009-04-08 18:31 . 2009-04-08 18:31 106496 ----a-w- c:\program files (x86)\Common Files\CPInstallAction.dll
2008-08-12 05:45 . 2008-08-12 05:45 155648 ----a-w- c:\program files (x86)\Common Files\MSIactionall.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-04-17_09.54.32 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-04-28 13:59 . 2011-02-18 05:33 31232 c:\windows\SysWOW64\prevhost.exe
- 2009-07-13 23:39 . 2009-07-14 01:14 31232 c:\windows\SysWOW64\prevhost.exe
+ 2011-02-11 16:41 . 2011-02-11 16:41 23552 c:\windows\SysWOW64\igfxexps32.dll
- 2010-08-25 18:00 . 2010-08-25 18:00 23552 c:\windows\SysWOW64\igfxexps32.dll
- 2009-07-14 04:54 . 2011-04-17 07:13 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:54 . 2011-06-06 11:51 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-07-14 04:54 . 2011-04-17 07:13 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2011-06-06 11:51 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2011-06-06 11:51 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-07-14 04:54 . 2011-04-17 07:13 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-12-29 17:16 . 2011-04-20 22:47 16384 c:\windows\SysWOW64\%APPDATA%\Microsoft\Windows\IETldCache\index.dat
- 2010-12-29 17:16 . 2011-02-16 22:17 16384 c:\windows\SysWOW64\%APPDATA%\Microsoft\Windows\IETldCache\index.dat
+ 2010-02-10 18:22 . 2011-06-06 11:53 80196 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2011-06-06 11:53 51944 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2010-04-29 21:20 . 2011-06-06 11:53 19070 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2239340465-1001483360-3508777747-1000_UserData.bin
+ 2011-04-28 13:59 . 2011-02-18 06:33 31232 c:\windows\system32\prevhost.exe
- 2009-07-13 23:55 . 2009-07-14 01:39 31232 c:\windows\system32\prevhost.exe
+ 2010-05-01 16:59 . 2011-05-28 18:02 67584 c:\windows\system32\LogFiles\Srt\bootstat.dat
- 2010-05-01 16:59 . 2010-06-18 18:23 67584 c:\windows\system32\LogFiles\Srt\bootstat.dat
- 2009-12-14 09:53 . 2010-08-25 18:04 61952 c:\windows\system32\igfxsrvc.dll
+ 2009-12-14 09:53 . 2011-02-11 16:46 61952 c:\windows\system32\igfxsrvc.dll
- 2010-08-25 18:04 . 2010-08-25 18:04 27648 c:\windows\system32\igfxexps.dll
+ 2011-02-11 16:46 . 2011-02-11 16:46 27648 c:\windows\system32\igfxexps.dll
+ 2011-02-11 17:21 . 2011-02-11 17:21 90112 c:\windows\system32\igfxCoIn_v2302.dll
+ 2011-05-12 19:02 . 2011-04-26 12:37 56816 c:\windows\system32\DRVSTORE\VBoxUSBMon_26719D2209AB1FE4CAC176977E5BD9594C56BB9D\VBoxUSBMon.sys
- 2009-07-14 05:30 . 2011-03-02 18:55 86016 c:\windows\system32\DriverStore\infpub.dat
+ 2009-07-14 05:30 . 2011-05-12 19:03 86016 c:\windows\system32\DriverStore\infpub.dat
+ 2011-04-26 12:37 . 2011-04-26 12:37 45616 c:\windows\system32\DriverStore\FileRepository\vboxusb.inf_amd64_neutral_305073c1c8dc3317\VBoxUSB.sys
+ 2011-04-28 13:59 . 2011-03-11 04:31 91136 c:\windows\system32\DriverStore\FileRepository\usbstor.inf_amd64_neutral_dd8b7470ecdd8b8b\USBSTOR.SYS
+ 2011-05-11 12:48 . 2011-03-25 03:22 30720 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_36529aeb1510bb0c\usbuhci.sys
+ 2011-05-11 12:48 . 2011-03-25 03:22 25600 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_36529aeb1510bb0c\usbohci.sys
+ 2011-05-11 12:48 . 2011-03-25 03:22 52224 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_36529aeb1510bb0c\usbehci.sys
+ 2011-05-11 12:48 . 2011-03-25 03:23 98816 c:\windows\system32\DriverStore\FileRepository\usb.inf_amd64_neutral_d378b476be3d939d\usbccgp.sys
+ 2011-05-09 16:04 . 2011-05-09 16:04 25608 c:\windows\system32\DriverStore\FileRepository\pkbftcbofficekb.inf_amd64_neutral_c0e3ac8b504057e9\DKbFltr.sys
+ 2011-05-09 16:00 . 2011-05-09 16:00 63016 c:\windows\system32\DriverStore\FileRepository\l1e60x64.inf_amd64_neutral_f23dfe07a6c5082f\L1E60x64.sys
+ 2011-02-11 17:21 . 2011-02-11 17:21 90112 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igxpco64.dll
+ 2011-02-11 16:46 . 2011-02-11 16:46 61952 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igfxsrvc.dll
+ 2011-02-11 16:41 . 2011-02-11 16:41 23552 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igfxexps32.dll
+ 2011-02-11 16:46 . 2011-02-11 16:46 27648 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igfxexps.dll
+ 2011-02-11 17:15 . 2011-02-11 17:15 92356 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igfcg500m.bin
+ 2011-05-09 15:48 . 2011-05-09 15:48 78848 c:\windows\system32\DriverStore\FileRepository\etd.inf_amd64_neutral_eec238afa2cd3400\ETDMag.exe
+ 2011-05-09 16:02 . 2011-05-09 16:02 53800 c:\windows\system32\DriverStore\FileRepository\bcbtums-vistax64-brcm.inf_amd64_neutral_c41d1cdac1a715e6\btusbflt.sys
+ 2011-04-28 13:59 . 2011-03-11 06:22 27008 c:\windows\system32\DriverStore\FileRepository\amdsata.inf_amd64_neutral_66a166f5508d8f1c\amdxata.sys
+ 2011-04-28 13:59 . 2011-03-11 04:31 91136 c:\windows\system32\drivers\USBSTOR.SYS
+ 2009-03-18 15:35 . 2009-03-18 15:35 33856 c:\windows\system32\drivers\hamachi.sys
+ 2010-04-30 06:13 . 2011-06-06 12:01 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-04-30 06:13 . 2011-04-17 07:17 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2010-04-30 06:13 . 2011-06-06 12:01 49152 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2010-04-30 06:13 . 2011-04-17 07:17 49152 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2011-04-17 07:17 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2011-06-06 12:01 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:46 . 2011-05-29 18:38 80352 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
- 2010-04-30 18:15 . 2011-03-25 05:44 12450 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Bluetooth\bthservsdp.dat
+ 2010-04-30 18:15 . 2011-06-05 11:44 12450 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Bluetooth\bthservsdp.dat
+ 2011-06-03 15:48 . 2011-06-03 15:48 25088 c:\windows\Installer\30fa1e.msi
+ 2011-05-12 18:32 . 2011-05-12 18:32 32256 c:\windows\Installer\16a82a2.msi
+ 2011-05-11 12:49 . 2011-05-11 12:49 34632 c:\windows\Installer\{90120000-0020-0409-0000-0000000FF1CE}\O12ConvIcon.exe
- 2011-04-12 17:27 . 2011-04-12 17:27 34632 c:\windows\Installer\{90120000-0020-0409-0000-0000000FF1CE}\O12ConvIcon.exe
+ 2011-01-30 19:25 . 2011-05-11 12:50 23040 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\unbndico.exe
- 2011-01-30 19:25 . 2011-04-12 17:29 23040 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\unbndico.exe
- 2011-01-30 19:25 . 2011-04-12 17:29 61440 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\pubs.exe
+ 2011-01-30 19:25 . 2011-05-11 12:50 61440 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\pubs.exe
+ 2011-01-30 19:25 . 2011-05-11 12:50 27136 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\oisicon.exe
- 2011-01-30 19:25 . 2011-04-12 17:29 27136 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\oisicon.exe
- 2011-01-30 19:25 . 2011-04-12 17:29 11264 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\mspicons.exe
+ 2011-01-30 19:25 . 2011-05-11 12:50 11264 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\mspicons.exe
- 2011-01-30 19:25 . 2011-04-12 17:29 86016 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\inficon.exe
+ 2011-01-30 19:25 . 2011-05-11 12:50 86016 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\inficon.exe
+ 2011-01-30 19:25 . 2011-05-11 12:50 12288 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\cagicon.exe
- 2011-01-30 19:25 . 2011-04-12 17:29 12288 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2010-10-10 18:15 . 2011-04-20 22:48 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
- 2010-10-10 18:15 . 2011-02-16 22:18 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
+ 2011-05-05 20:41 . 2011-05-05 20:41 12800 c:\windows\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll
- 2011-04-07 20:15 . 2011-04-07 20:15 12800 c:\windows\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll
+ 2011-05-05 20:41 . 2011-05-05 20:41 53248 c:\windows\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll
- 2011-04-07 20:15 . 2011-04-07 20:15 53248 c:\windows\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll
+ 2011-05-22 18:39 . 2011-05-22 18:39 5632 c:\windows\SysWOW64\pndx5032.dll
+ 2011-05-22 18:39 . 2011-05-22 18:39 6656 c:\windows\SysWOW64\pndx5016.dll
+ 2010-05-07 16:49 . 2011-06-01 17:00 3554 c:\windows\system32\wdi\ERCQueuedResolutions.dat
+ 2011-05-15 20:10 . 2011-05-15 20:10 9560 c:\windows\system32\NetworkList\Icons\{08B1398A-3C63-4868-B666-CA3CBA43451E}_48.bin
+ 2011-05-15 20:10 . 2011-05-15 20:10 4280 c:\windows\system32\NetworkList\Icons\{08B1398A-3C63-4868-B666-CA3CBA43451E}_32.bin
+ 2011-05-15 20:10 . 2011-05-15 20:10 2456 c:\windows\system32\NetworkList\Icons\{08B1398A-3C63-4868-B666-CA3CBA43451E}_24.bin
+ 2011-05-02 13:28 . 2011-05-05 18:33 8192 c:\windows\system32\Microsoft\Protect\Recovery\Recovery.dat
+ 2011-02-11 16:45 . 2011-02-11 16:45 4096 c:\windows\system32\IGFXDEVLib.dll
- 2010-08-25 18:03 . 2010-08-25 18:03 4096 c:\windows\system32\IGFXDEVLib.dll
+ 2011-05-11 12:48 . 2011-03-25 03:22 7936 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_36529aeb1510bb0c\usbd.sys
+ 2011-02-11 16:45 . 2011-02-11 16:45 4096 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\IGFXDEVLib.dll
- 2011-04-17 07:12 . 2011-04-17 07:12 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-06-06 11:50 . 2011-06-06 11:50 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-06-06 11:50 . 2011-06-06 11:50 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2011-04-17 07:12 . 2011-04-17 07:12 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2011-01-30 19:25 . 2011-04-12 17:29 4096 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2011-01-30 19:25 . 2011-05-11 12:50 4096 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2011-05-22 18:39 . 2011-05-22 18:39 198848 c:\windows\SysWOW64\rmoc3260.dll
- 2010-07-28 10:13 . 2002-12-06 06:02 272896 c:\windows\SysWOW64\pncrt.dll
+ 2010-07-28 10:13 . 2011-05-22 18:39 272896 c:\windows\SysWOW64\pncrt.dll
- 2009-12-14 09:42 . 2009-12-14 09:42 208896 c:\windows\SysWOW64\iglhsip32.dll
+ 2011-02-11 16:35 . 2011-02-11 16:35 208896 c:\windows\SysWOW64\iglhsip32.dll
+ 2011-02-11 16:35 . 2011-02-11 16:35 147456 c:\windows\SysWOW64\iglhcp32.dll
+ 2011-02-11 16:40 . 2011-02-11 16:40 228864 c:\windows\SysWOW64\igfxdv32.dll
- 2010-08-25 17:59 . 2010-08-25 17:59 228864 c:\windows\SysWOW64\igfxdv32.dll
- 2010-08-25 18:28 . 2010-08-25 18:28 571904 c:\windows\SysWOW64\igdumdx32.dll
+ 2010-08-25 18:28 . 2011-02-11 17:09 571904 c:\windows\SysWOW64\igdumdx32.dll
+ 2010-09-27 06:38 . 2011-06-05 07:25 262144 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
- 2010-09-27 06:38 . 2011-04-17 07:13 262144 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2010-04-30 15:36 . 2011-06-05 17:20 380028 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S4.bin
+ 2010-04-30 15:35 . 2011-06-05 16:55 655536 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2009-07-14 02:36 . 2011-06-06 11:55 624776 c:\windows\system32\perfh009.dat
- 2009-07-14 02:36 . 2011-04-17 09:25 624776 c:\windows\system32\perfh009.dat
+ 2009-08-03 20:00 . 2011-06-06 11:55 639986 c:\windows\system32\perfh005.dat
- 2009-08-03 20:00 . 2011-04-17 09:25 639986 c:\windows\system32\perfh005.dat
+ 2009-07-14 02:36 . 2011-06-06 11:55 110414 c:\windows\system32\perfc009.dat
- 2009-07-14 02:36 . 2011-04-17 09:25 110414 c:\windows\system32\perfc009.dat
+ 2009-08-03 20:00 . 2011-06-06 11:55 126866 c:\windows\system32\perfc005.dat
- 2009-08-03 20:00 . 2011-04-17 09:25 126866 c:\windows\system32\perfc005.dat
+ 2011-02-11 16:35 . 2011-02-11 16:35 206336 c:\windows\system32\iglhsip64.dll
+ 2011-02-11 16:35 . 2011-02-11 16:35 188416 c:\windows\system32\iglhcp64.dll
+ 2011-02-11 17:25 . 2011-02-11 17:25 162328 c:\windows\system32\igfxtray.exe
- 2010-08-25 18:04 . 2010-08-25 18:04 380416 c:\windows\system32\igfxTMM.dll
+ 2011-02-11 16:46 . 2011-02-11 16:46 380416 c:\windows\system32\igfxTMM.dll
+ 2011-02-11 17:25 . 2011-02-11 17:25 509976 c:\windows\system32\igfxsrvc.exe
- 2009-12-14 09:52 . 2010-08-25 18:03 830464 c:\windows\system32\igfxress.dll
+ 2009-12-14 09:52 . 2011-02-11 16:45 830464 c:\windows\system32\igfxress.dll
+ 2011-02-11 16:46 . 2011-02-11 16:46 244224 c:\windows\system32\igfxpph.dll
+ 2011-02-11 17:25 . 2011-02-11 17:25 417304 c:\windows\system32\igfxpers.exe
- 2010-08-25 18:44 . 2010-08-25 18:44 223768 c:\windows\system32\igfxext.exe
+ 2011-02-11 17:25 . 2011-02-11 17:25 223768 c:\windows\system32\igfxext.exe
- 2010-08-25 18:03 . 2010-08-25 18:03 142336 c:\windows\system32\igfxdo.dll
+ 2011-02-11 16:45 . 2011-02-11 16:45 142336 c:\windows\system32\igfxdo.dll
+ 2011-02-11 16:45 . 2011-02-11 16:45 272896 c:\windows\system32\igfxdev.dll
- 2010-07-20 03:47 . 2010-07-20 03:47 386584 c:\windows\system32\hkcmd.exe
+ 2011-02-11 17:25 . 2011-02-11 17:25 386584 c:\windows\system32\hkcmd.exe
+ 2009-12-14 09:52 . 2011-02-11 16:45 108544 c:\windows\system32\hccutils.dll
- 2010-08-25 18:03 . 2010-08-25 18:03 119808 c:\windows\system32\gfxSrvc.dll
+ 2011-02-11 16:45 . 2011-02-11 16:45 119808 c:\windows\system32\gfxSrvc.dll
+ 2011-05-12 19:02 . 2011-04-26 12:38 231600 c:\windows\system32\DRVSTORE\VBoxDrv_23DB94AF523D5DA0826455B265C65A2DE89B7513\VBoxDrv.sys
+ 2009-07-14 05:30 . 2011-05-12 19:03 143360 c:\windows\system32\DriverStore\infstrng.dat
- 2009-07-14 05:30 . 2011-03-02 18:55 143360 c:\windows\system32\DriverStore\infstrng.dat
+ 2009-07-14 05:30 . 2011-05-12 19:03 143360 c:\windows\system32\DriverStore\infstor.dat
- 2009-07-14 05:30 . 2011-03-02 18:55 143360 c:\windows\system32\DriverStore\infstor.dat
+ 2011-04-26 12:37 . 2011-04-26 12:37 320816 c:\windows\system32\DriverStore\FileRepository\vboxnetflt.inf_amd64_neutral_8ef2d99972d5baa6\VBoxNetFltNotify.dll
+ 2011-04-26 12:37 . 2011-04-26 12:37 176560 c:\windows\system32\DriverStore\FileRepository\vboxnetflt.inf_amd64_neutral_8ef2d99972d5baa6\VBoxNetFlt.sys
+ 2011-04-26 12:37 . 2011-04-26 12:37 156912 c:\windows\system32\DriverStore\FileRepository\vboxnetadp.inf_amd64_neutral_900d2a45d6020d74\VBoxNetAdp.sys
+ 2011-05-11 12:48 . 2011-03-25 03:23 324608 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_36529aeb1510bb0c\usbport.sys
+ 2011-05-11 12:48 . 2011-03-25 03:23 343040 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_36529aeb1510bb0c\usbhub.sys
+ 2011-05-11 12:48 . 2011-03-25 03:23 343040 c:\windows\system32\DriverStore\FileRepository\usb.inf_amd64_neutral_d378b476be3d939d\usbhub.sys
+ 2011-04-28 13:59 . 2011-03-11 06:23 166272 c:\windows\system32\DriverStore\FileRepository\nvraid.inf_amd64_neutral_38e464dbe521cc7f\nvstor.sys
+ 2011-04-28 13:59 . 2011-03-11 06:23 148352 c:\windows\system32\DriverStore\FileRepository\nvraid.inf_amd64_neutral_38e464dbe521cc7f\nvraid.sys
+ 2011-02-11 16:35 . 2011-02-11 16:35 206336 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\iglhsip64.dll
+ 2011-02-11 16:35 . 2011-02-11 16:35 208896 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\iglhsip32.dll
+ 2011-02-11 16:35 . 2011-02-11 16:35 188416 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\iglhcp64.dll
+ 2011-02-11 16:35 . 2011-02-11 16:35 147456 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\iglhcp32.dll
+ 2011-02-11 17:15 . 2011-02-11 17:15 874048 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igkrng575.bin
+ 2011-02-11 17:15 . 2011-02-11 17:15 982240 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igkrng500.bin
+ 2011-02-11 17:25 . 2011-02-11 17:25 162328 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igfxtray.exe
+ 2011-02-11 16:46 . 2011-02-11 16:46 380416 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igfxTMM.dll
+ 2011-02-11 17:25 . 2011-02-11 17:25 509976 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igfxsrvc.exe
+ 2011-02-11 16:45 . 2011-02-11 16:45 830464 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igfxress.dll
+ 2011-02-11 16:46 . 2011-02-11 16:46 244224 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igfxpph.dll
+ 2011-02-11 17:25 . 2011-02-11 17:25 417304 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igfxpers.exe
+ 2011-02-11 17:25 . 2011-02-11 17:25 223768 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igfxext.exe
+ 2011-02-11 16:40 . 2011-02-11 16:40 228864 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igfxdv32.dll
+ 2011-02-11 16:45 . 2011-02-11 16:45 142336 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igfxdo.dll
+ 2011-02-11 16:45 . 2011-02-11 16:45 272896 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igfxdev.dll
+ 2011-02-11 17:15 . 2011-02-11 17:15 104796 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igfcg575m.bin
+ 2011-02-11 17:09 . 2011-02-11 17:09 571904 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igdumdx32.dll
+ 2011-02-11 17:15 . 2011-02-11 17:15 127868 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igcompkrng575.bin
+ 2011-02-11 17:15 . 2011-02-11 17:15 439308 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igcompkrng500.bin
+ 2011-02-11 17:25 . 2011-02-11 17:25 386584 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\hkcmd.exe
+ 2011-02-11 16:45 . 2011-02-11 16:45 108544 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\hccutils.dll
+ 2011-02-11 16:45 . 2011-02-11 16:45 119808 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\gfxSrvc.dll
+ 2011-02-11 17:25 . 2011-02-11 17:25 152600 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\difx64.exe
+ 2011-04-28 13:59 . 2011-03-11 06:23 410496 c:\windows\system32\DriverStore\FileRepository\iastorv.inf_amd64_neutral_0033117673c16921\iaStorV.sys
+ 2011-05-09 15:48 . 2011-05-09 15:48 312192 c:\windows\system32\DriverStore\FileRepository\etd.inf_amd64_neutral_eec238afa2cd3400\ETDUninst.exe
+ 2011-05-09 15:48 . 2011-05-09 15:48 252928 c:\windows\system32\DriverStore\FileRepository\etd.inf_amd64_neutral_eec238afa2cd3400\ETDUninst.dll
+ 2011-05-09 15:48 . 2011-05-09 15:48 348160 c:\windows\system32\DriverStore\FileRepository\etd.inf_amd64_neutral_eec238afa2cd3400\ETDFavorite.dll
+ 2011-05-09 15:48 . 2011-05-09 15:48 621440 c:\windows\system32\DriverStore\FileRepository\etd.inf_amd64_neutral_eec238afa2cd3400\ETDCtrl.exe
+ 2011-05-09 15:48 . 2011-05-09 15:48 303104 c:\windows\system32\DriverStore\FileRepository\etd.inf_amd64_neutral_eec238afa2cd3400\ETDCmds.dll
+ 2011-05-09 15:48 . 2011-05-09 15:48 320000 c:\windows\system32\DriverStore\FileRepository\etd.inf_amd64_neutral_eec238afa2cd3400\ETDApix.dll
+ 2011-05-09 15:48 . 2011-05-09 15:48 214016 c:\windows\system32\DriverStore\FileRepository\etd.inf_amd64_neutral_eec238afa2cd3400\ETDApi32.dll
+ 2011-05-09 15:48 . 2011-05-09 15:48 251904 c:\windows\system32\DriverStore\FileRepository\etd.inf_amd64_neutral_eec238afa2cd3400\ETDApi.dll
+ 2011-05-09 15:48 . 2011-05-09 15:48 114688 c:\windows\system32\DriverStore\FileRepository\etd.inf_amd64_neutral_eec238afa2cd3400\ETD.sys
+ 2011-05-09 16:02 . 2011-05-09 16:02 132648 c:\windows\system32\DriverStore\FileRepository\btwavdt.inf_amd64_neutral_032d7c6a6372abf7\btwavdt.sys
+ 2011-04-28 13:59 . 2011-03-11 06:22 107904 c:\windows\system32\DriverStore\FileRepository\amdsata.inf_amd64_neutral_66a166f5508d8f1c\amdsata.sys
- 2009-07-14 05:31 . 2011-03-02 18:55 399360 c:\windows\system32\DriverStore\drvindex.dat
+ 2009-07-14 05:31 . 2011-05-11 15:10 399360 c:\windows\system32\DriverStore\drvindex.dat
- 2010-08-25 18:44 . 2010-08-25 18:44 152600 c:\windows\system32\difx64.exe
+ 2011-02-11 17:25 . 2011-02-11 17:25 152600 c:\windows\system32\difx64.exe
+ 2009-07-14 05:38 . 2011-05-27 19:07 262144 c:\windows\system32\config\systemprofile\ntuser.dat
- 2009-07-14 05:38 . 2011-04-14 20:45 262144 c:\windows\system32\config\systemprofile\ntuser.dat
- 2009-07-14 05:12 . 2011-04-17 07:17 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2009-07-14 05:12 . 2011-06-06 11:52 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2009-07-14 05:01 . 2011-06-06 04:43 518104 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2009-07-14 05:01 . 2011-04-16 22:56 518104 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2011-05-22 18:39 . 2011-05-22 18:39 386497 c:\windows\Installer\26a9bfd.msi
+ 2011-01-30 19:25 . 2011-05-11 12:50 409600 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\xlicons.exe
- 2011-01-30 19:25 . 2011-04-12 17:29 409600 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\xlicons.exe
- 2011-01-30 19:25 . 2011-04-12 17:29 286720 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\wordicon.exe
+ 2011-01-30 19:25 . 2011-05-11 12:50 286720 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\wordicon.exe
+ 2011-01-30 19:25 . 2011-05-11 12:50 249856 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\pptico.exe
- 2011-01-30 19:25 . 2011-04-12 17:29 249856 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\pptico.exe
+ 2011-01-30 19:25 . 2011-05-11 12:50 794624 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\outicon.exe
- 2011-01-30 19:25 . 2011-04-12 17:29 794624 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\outicon.exe
+ 2011-01-30 19:25 . 2011-05-11 12:50 135168 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\misc.exe
- 2011-01-30 19:25 . 2011-04-12 17:29 135168 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\misc.exe
+ 2011-01-30 19:25 . 2011-05-11 12:50 593920 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\accicons.exe
- 2011-01-30 19:25 . 2011-04-12 17:29 593920 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2010-12-24 18:02 . 2011-06-03 17:04 228082 c:\windows\hpoins46.dat
+ 2011-05-05 20:41 . 2011-05-05 20:41 223232 c:\windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
- 2011-04-07 20:15 . 2011-04-07 20:15 223232 c:\windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
+ 2011-05-05 20:41 . 2011-05-05 20:41 178176 c:\windows\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll
- 2011-04-07 20:15 . 2011-04-07 20:15 178176 c:\windows\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll
+ 2011-05-05 20:41 . 2011-05-05 20:41 364544 c:\windows\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll
- 2011-04-07 20:15 . 2011-04-07 20:15 364544 c:\windows\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll
+ 2011-05-05 20:41 . 2011-05-05 20:41 159232 c:\windows\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll
- 2011-04-07 20:15 . 2011-04-07 20:15 159232 c:\windows\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll
- 2011-04-07 20:15 . 2011-04-07 20:15 145920 c:\windows\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll
+ 2011-05-05 20:41 . 2011-05-05 20:41 145920 c:\windows\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll
- 2011-04-07 20:15 . 2011-04-07 20:15 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-05-05 20:41 . 2011-05-05 20:41 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-05-05 20:41 . 2011-05-05 20:41 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2011-04-07 20:14 . 2011-04-07 20:14 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2011-04-07 20:14 . 2011-04-07 20:14 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-05-05 20:41 . 2011-05-05 20:41 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-05-05 20:41 . 2011-05-05 20:41 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2011-04-07 20:14 . 2011-04-07 20:14 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-05-05 20:41 . 2011-05-05 20:41 577024 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2011-04-07 20:14 . 2011-04-07 20:14 577024 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2011-04-07 20:14 . 2011-04-07 20:14 576000 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-05-05 20:41 . 2011-05-05 20:41 576000 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2011-04-07 20:14 . 2011-04-07 20:14 567296 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-05-05 20:41 . 2011-05-05 20:41 567296 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2011-04-07 20:14 . 2011-04-07 20:14 563712 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-05-05 20:41 . 2011-05-05 20:41 563712 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2011-04-07 20:15 . 2011-04-07 20:15 473600 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
+ 2011-05-05 20:41 . 2011-05-05 20:41 473600 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
- 2010-10-27 06:12 . 2010-09-10 05:35 135168 c:\windows\AppPatch\AppPatch64\AcXtrnal.dll
+ 2011-04-28 13:59 . 2011-03-04 06:17 135168 c:\windows\AppPatch\AppPatch64\AcXtrnal.dll
- 2010-10-27 06:12 . 2010-09-10 05:35 347648 c:\windows\AppPatch\AppPatch64\AcLayers.dll
+ 2011-04-28 13:59 . 2011-03-04 06:17 347648 c:\windows\AppPatch\AppPatch64\AcLayers.dll
- 2010-08-25 18:31 . 2010-08-25 18:31 4967424 c:\windows\SysWOW64\igdumd32.dll
+ 2010-08-25 18:31 . 2011-02-11 17:12 4967424 c:\windows\SysWOW64\igdumd32.dll
+ 2011-02-11 17:04 . 2011-02-11 17:04 4411392 c:\windows\SysWOW64\igd10umd32.dll
+ 2011-04-28 13:59 . 2011-02-26 05:33 2614784 c:\windows\SysWOW64\explorer.exe
+ 2009-12-14 10:26 . 2011-02-11 17:16 6549504 c:\windows\system32\igdumd64.dll
+ 2009-12-14 10:15 . 2011-02-11 17:07 4722176 c:\windows\system32\igd10umd64.dll
+ 2011-02-11 17:25 . 2011-02-11 17:25 3157528 c:\windows\system32\GfxUI.exe
+ 2011-02-11 17:16 . 2011-02-11 17:16 6549504 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igdumd64.dll
+ 2011-02-11 17:12 . 2011-02-11 17:12 4967424 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igdumd32.dll
+ 2011-02-11 17:07 . 2011-02-11 17:07 4722176 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igd10umd64.dll
+ 2011-02-11 17:04 . 2011-02-11 17:04 4411392 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igd10umd32.dll
+ 2011-02-11 17:25 . 2011-02-11 17:25 3157528 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\GfxUI.exe
+ 2011-05-09 15:48 . 2011-05-09 15:48 4440064 c:\windows\system32\DriverStore\FileRepository\etd.inf_amd64_neutral_eec238afa2cd3400\ETDMcpl.dll
- 2009-07-14 04:45 . 2011-04-15 17:02 3798234 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
+ 2009-07-14 04:45 . 2011-05-28 17:03 3798234 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
- 2010-05-04 20:14 . 2011-04-13 14:35 4028768 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2010-05-04 20:14 . 2011-05-02 19:11 4028768 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2010-11-01 21:04 . 2011-06-06 04:43 7556455 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2239340465-1001483360-3508777747-1000-8192.dat
+ 2010-07-01 21:52 . 2011-06-05 17:49 2010972 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2239340465-1001483360-3508777747-1000-12288.dat
+ 2011-06-05 15:50 . 2011-06-05 15:50 3768320 c:\windows\Installer\f864.msi
+ 2011-04-27 09:14 . 2011-04-27 09:14 5520384 c:\windows\Installer\8b946.msp
+ 2011-04-29 11:04 . 2011-04-29 11:04 5053440 c:\windows\Installer\8b92f.msp
+ 2011-04-29 10:30 . 2011-04-29 10:30 1197056 c:\windows\Installer\8b918.msp
+ 2011-05-22 18:39 . 2011-05-22 18:39 1412096 c:\windows\Installer\26a9bf2.msi
+ 2011-04-28 13:59 . 2011-02-26 06:23 2870272 c:\windows\explorer.exe
- 2010-04-30 14:49 . 2009-10-31 06:34 2870272 c:\windows\explorer.exe
- 2011-04-07 20:14 . 2011-04-07 20:14 2846720 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-05-05 20:41 . 2011-05-05 20:41 2846720 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-05-05 20:41 . 2011-05-05 20:41 2676224 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2011-04-07 20:14 . 2011-04-07 20:14 2676224 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-02-11 16:51 . 2011-02-11 16:51 11039744 c:\windows\SysWOW64\ig4icd32.dll
- 2009-07-14 02:34 . 2011-04-17 08:25 10485760 c:\windows\system32\SMI\Store\Machine\schema.dat
+ 2009-07-14 02:34 . 2011-06-06 12:07 10485760 c:\windows\system32\SMI\Store\Machine\schema.dat
+ 2010-05-14 19:00 . 2011-05-11 12:50 44548040 c:\windows\system32\MRT.exe
+ 2011-02-11 16:59 . 2011-02-11 16:59 15035392 c:\windows\system32\ig4icd64.dll
+ 2011-02-11 17:16 . 2011-02-11 17:16 10628640 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\igdkmd64.sys
+ 2011-02-11 16:59 . 2011-02-11 16:59 15035392 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\ig4icd64.dll
+ 2011-02-11 16:51 . 2011-02-11 16:51 11039744 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_21c3a7f1ad99989b\ig4icd32.dll
+ 2011-02-11 17:16 . 2011-02-11 17:16 10628640 c:\windows\system32\drivers\igdkmd64.sys
+ 2011-04-20 22:47 . 2011-04-20 22:47 20314624 c:\windows\Installer\dc30af.msp
+ 2011-05-12 19:00 . 2011-05-12 19:00 21914112 c:\windows\Installer\1846793.msi
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 01:08 143360 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1475072]
"Mousotron"="c:\program files (x86)\Mousotron\Mousotron.exe" [2011-02-02 525312]
"RESTART_STICKY_NOTES"="c:\windows\System32\StikyNot.exe" [BU]
"ShowBatteryBar"="c:\program files\BatteryBar\ShowBatteryBar.exe" [2009-05-28 89600]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2009-09-17 2245120]
"HControlUser"="c:\program files (x86)\ASUS\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"ATKOSD2"="c:\program files (x86)\ASUS\ATKOSD2\ATKOSD2.exe" [2009-08-17 6859392]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Media\DMedia.exe" [2009-08-20 170624]
"jswtrayutil"="c:\program files (x86)\TP-LINK\QSS\jswtrayutil.exe" [2009-09-24 32871]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2011-05-25 1951112]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
FancyStart daemon.lnk - c:\windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe [2010-2-10 12862]
GamePark klient 2.lnk - c:\program files (x86)\GamePark2\gpcl.exe [2011-5-24 399872]
HP Digital Imaging Monitor.lnk - c:\program files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2009-11-18 275072]
SRS Premium Sound.lnk - c:\windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe [2010-2-10 156952]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-06-05 136176]
R2 ioloFileInfoList;iolo FileInfoList Service;c:\program files (x86)\iolo\common\lib\ioloServiceManager.exe [x]
R2 sfrem02;FrontLine Drivers Auto Removal (v2);c:\windows\system32\sfrem02.exe svc [x]
R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS [x]
R3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;c:\program files (x86)\BitComet\tools\BitCometService.exe [2010-12-28 1296728]
R3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;d:\hry\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-07-26 25832]
R3 EverestDriver;Lavalys EVEREST Kernel Driver;c:\program files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 [2010-03-30 26752]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-06-05 136176]
R3 ipswuio;ipswuio;c:\windows\system32\DRIVERS\ipswuio.sys [x]
R3 jswpsapi;JumpStart Wi-Fi Protected Setup;c:\program files (x86)\TP-LINK\QSS\jswpsapi.exe [2009-08-14 954368]
R3 RTCore;RTCore;c:\program files (x86)\RMClock\RTCore.sys [x]
R3 RTCore64;RTCore64;c:\users\David\Downloads\rmclock_230_bin\RTCore64.sys [x]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys [x]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 lullaby;lullaby;c:\windows\system32\DRIVERS\lullaby.sys [x]
S0 sfdrv01a;StarForce Protection Environment Driver (version 1.x.a);c:\windows\System32\drivers\sfdrv01a.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S1 JSWPSLWF;JumpStart Wireless Filter Driver;c:\windows\system32\DRIVERS\jswpslwfx.sys [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [x]
S2 ASMMAP64;ASMMAP64;c:\program files\ATKGFNEX\ASMMAP64.sys [2007-07-24 14904]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2010-08-12 810144]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [x]
S2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2011-05-25 2275720]
S2 jswpbapi;JumpStart Push-Button Service;c:\program files (x86)\TP-LINK\QSS\jswpbapi.exe [2009-08-14 265216]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-05-29 366640]
S2 OberonGameConsoleService;Oberon Media Game Console service;c:\program files (x86)\Asus\Game Park\GameConsole\OberonGameConsoleService.exe [2009-09-15 44312]
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-04-15 2280312]
S3 athur;Atheros AR9271 Wireless Network Adapter Service;c:\windows\system32\DRIVERS\athurx.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Obsah adresáře 'Naplánované úlohy'
.
2011-06-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2239340465-1001483360-3508777747-1000Core.job
- c:\users\David\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-05 15:48]
.
2011-06-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2239340465-1001483360-3508777747-1000UA.job
- c:\users\David\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-05 15:48]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 00:52 159744 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ETDWare"="c:\program files\Elantech\ETDCtrl.exe" [2009-09-30 621440]
"EeeStorageBackup"="c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe" [2009-11-26 1732608]
"AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2009-09-01 323584]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2010-08-12 2916584]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-02-11 162328]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-02-11 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-02-11 417304]
.
------- Doplňkový sken -------
.
uStart Page =
uLocal Page = c:\windows\system32\blank.htm
uDefault_Search_URL =
mStart Page =
uSearchAssistant =
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Office Excel - d:\novslo~1\OFFICE11\EXCEL.EXE/3000
IE: Stáhnout odkaz s použitím BitCometu - c:\program files (x86)\BitComet\BitComet.exe/AddLink.htm
IE: Stáhnout všechny odkazy s použitím BitCometu - c:\program files (x86)\BitComet\BitComet.exe/AddAllLink.htm
IE: ????3?? - c:\users\David\AppData\Roaming\FlashGetBHO\GetUrl.htm
IE: ????3?????? - c:\users\David\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
IE: {{71BFC818-0CED-42D6-9C87-5142918957EE} - c:\program files (x86)\ICQ7.1\ICQ.exe
TCP: DhcpNameServer = 192.168.1.254
FF - ProfilePath - c:\users\David\AppData\Roaming\Mozilla\Firefox\Profiles\udgekhel.default\
FF - prefs.js: browser.search.selectedEngine -
FF - prefs.js: browser.startup.homepage -
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{30F9B915-B755-4826-820B-08FBA6BD249D} - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\EverestDriver]
"ImagePath"="\??\c:\program files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-2239340465-1001483360-3508777747-1000\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}Ź]
@Allowed: (Read) (RestrictedCode)
@="c:\\Users\\David\\AppData\\Roaming\\FlashGetBHO\\GetUrl.htm"
"contexts"=dword:00000022
.
[HKEY_USERS\S-1-5-21-2239340465-1001483360-3508777747-1000\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}ŹhQčţ”Ąc]
@Allowed: (Read) (RestrictedCode)
@="c:\\Users\\David\\AppData\\Roaming\\FlashGetBHO\\GetAllUrl.htm"
"contexts"=dword:000000f3
.
[HKEY_USERS\S-1-5-21-2239340465-1001483360-3508777747-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{304F5804-9504-88F6-5949-C74AF24A1F65}*]
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-2239340465-1001483360-3508777747-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
"??"=hex:97,c2,1d,2e,f6,ae,cc,3a,5b,7d,d5,c3,77,3d,23,2e,24,2f,da,9d,bc,71,bd,
d5,3f,2a,34,92,77,57,ed,c8,bf,59,c6,0d,67,02,31,c2,90,8a,4f,c3,c8,b7,bc,59,\
"??"=hex:fb,09,2f,39,5b,29,52,8f,5e,51,85,2b,21,78,fd,45
.
[HKEY_USERS\S-1-5-21-2239340465-1001483360-3508777747-1000\Software\SecuROM\License information*]
"datasecu"=hex:ee,44,46,49,cd,3f,6c,4c,cd,26,35,ba,15,7d,07,37,56,da,c1,8d,08,
ff,fc,eb,1a,69,42,99,f4,9c,07,4d,cb,de,08,19,95,b5,31,4f,0b,94,54,38,d0,d6,\
"rkeysecu"=hex:56,b7,27,92,cd,97,f6,10,d1,50,ba,38,3d,a4,3c,80
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2011-06-06 14:47:19
ComboFix-quarantined-files.txt 2011-06-06 12:47
.
Před spuštěním: Volných bajtů: 72 556 396 544
Po spuštění: Volných bajtů: 72 441 925 632
.
- - End Of File - - 114A041B57D827C10AB002D2393DB856

[vyosek]

Pokud nemate, tak presunte Combofix na plochu

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  KillAll::
  
  File::
  c:\windows\system32\sfrem02.exe
  c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2239340465-1001483360-3508777747-1000Core.job
  c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2239340465-1001483360-3508777747-1000UA.job
  
  Driver::
  sfrem02
  gupdate
  gupdatem
  
  DDS::
  uStart Page = 
  uDefault_Search_URL = 
  mStart Page = 
  uSearchAssistant = 
  uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
  
  RegLock::
  [HKEY_USERS\S-1-5-21-2239340465-1001483360-3508777747-1000\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}Ź]
  [HKEY_USERS\S-1-5-21-2239340465-1001483360-3508777747-1000\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}ŹhQčţ”Ąc]
  [HKEY_USERS\S-1-5-21-2239340465-1001483360-3508777747-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{304F5804-9504-88F6-5949-C74AF24A1F65}*]
  [HKEY_USERS\S-1-5-21-2239340465-1001483360-3508777747-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
  [HKEY_USERS\S-1-5-21-2239340465-1001483360-3508777747-1000\Software\SecuROM\License information*]
  [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
  [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
  [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
  [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
  [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
  [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
  [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
  [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
  
  RegNull::
  [HKEY_USERS\S-1-5-21-2239340465-1001483360-3508777747-1000\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}Ź]
  [HKEY_USERS\S-1-5-21-2239340465-1001483360-3508777747-1000\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}ŹhQčţ”Ąc]
  
  Reboot::
  

• Ulozte vytvoreny TXT jako CFScript.txt
• Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
  
• Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte

Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci

[David777]

oukej jinač teď se to tváří normálně, CPU mi jede při spuštěném chromu na 10%

[vyosek]

No tak snad vydrzi,jeste aplikujte ten CFScript.txt, docisti log