Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:36:56, on 16.12.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16981)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\PROGRA~1\AVG\AVG10\avgchsvx.exe
C:\PROGRA~1\AVG\AVG10\avgrsx.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Application Updater\ApplicationUpdater.exe
C:\Program Files\AVG\AVG10\avgfws.exe
C:\Program Files\AVG\AVG10\avgwdsvc.exe
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\Program Files\AVG\AVG10\avgam.exe
C:\Program Files\AVG\AVG10\avgnsx.exe
c:\windows\explorer.exe
C:\Program Files\AVG\AVG10\avgemcx.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\AVG\AVG10\avgcsrvx.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Nero\Nero 7\InCD\InCD.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Search Settings\SearchSettings.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\AVG\AVG10\avgtray.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\DNA\btdna.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
G:\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.seznam.cz/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.seznam.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fullarticles.net
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - {00000000-6E41-4FD3-8538-502F5495E5FC} - (no file)
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - (no file)
F2 - REG:system.ini: Shell=c:\windows\explorer.exe
F2 - REG:system.ini: UserInit=c:\windows\system32\userinit.exe
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: (no name) - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - (no file)
O3 - Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [SecurDisc] C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe
O4 - HKLM\..\Run: [InCD] C:\Program Files\Nero\Nero 7\InCD\InCD.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Search Settings\SearchSettings.exe
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe
O4 - HKLM\..\Run: [Regedit32] C:\WINDOWS\system32\regedit.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [ICQ] ~"C:\Program Files\ICQ7.2\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Lukas\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [wuaucldt] c:\documents and settings\lukas\wuaucldt.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Search - ?p=ZNfox000
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 3912387349
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll
O23 - Service: Adobe Active File Monitor V8 (AdobeActiveFileMonitor8.0) - Adobe Systems Incorporated - C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files\Application Updater\ApplicationUpdater.exe
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Nero Registry InCD Service (NeroRegInCDSrv) - Unknown owner - C:\Program Files\Nero\Nero 7\InCD\NBHRegInCDSrv.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ASF Agent (qe3u35t6j8onyi) - Unknown owner - C:\WINDOWS\system32\vonala.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
--
End of file - 11615 bytes
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prsím o kontrolu AVG Hlásí Win32/Patched
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: Prsím o kontrolu AVG Hlásí Win32/Patched
Zdravím,
Stáhni siComboFix
a ulož ho na plochu.
návod na použití: http://www.bleepingcomputer.com/combofi ... t-combofix
Ukonči všechna aktivní okna,vypni Antispy a Antivir a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna a nic nespouštěj
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Kdyby ti po použití ComboFixu systém nenaběhl - při restartu F8 a poslední známá funkční konfigurace
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
-
superman
- Návštěvník
- Příspěvky: 18
- Registrován: 18 dub 2005 16:08
- Bydliště: Praha
- Kontaktovat uživatele:
Re: Prsím o kontrolu AVG Hlásí Win32/Patched
Musel jsem odintalovat AVG 
ComboFix 10-12-15.07 - Lukas 16.12.2010 22:20:53.1.4 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1507 [GMT 1:00]
Spuštěný z: c:\documents and settings\Lukas\Plocha\ComboFix.exe
FW: AVG Firewall *Disabled* {8decf618-9569-4340-b34a-d78d28969b66}
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\Lukas\Data aplikací\Dealio
c:\documents and settings\Lukas\Data aplikací\Dealio\res\widgets.xml
c:\documents and settings\Lukas\Data aplikací\Dealio\temp\http___www_dealio_com_rss_coupons-deals_dotd_.xml
c:\documents and settings\Lukas\Dokumenty\cc_20101210_130748.reg
c:\documents and settings\Lukas\Dokumenty\cc_20101213_103945.reg
c:\documents and settings\Lukas\oashdihasidhasuidhiasdhiashdiuasdhasd
c:\documents and settings\Lukas\secupdat.dat
c:\program files\\setup.exe
c:\program files\Dealio Toolbar
c:\program files\Dealio Toolbar\FF\components\config.ini
c:\program files\Dealio Toolbar\FF\components\dealioToolbarFF.dll
c:\program files\Dealio Toolbar\FF\components\IFBHOHelperWidgiToolbar.xpt
c:\program files\Dealio Toolbar\FF\components\IFBHOWidgiToolbar.xpt
c:\program files\Dealio Toolbar\FF\chrome.manifest
c:\program files\Dealio Toolbar\FF\chrome\content\chevron.js
c:\program files\Dealio Toolbar\FF\chrome\content\chevron.xul
c:\program files\Dealio Toolbar\FF\chrome\content\login.js
c:\program files\Dealio Toolbar\FF\chrome\content\login.xul
c:\program files\Dealio Toolbar\FF\chrome\content\parser.js
c:\program files\Dealio Toolbar\FF\chrome\content\RssTickerWidget.js
c:\program files\Dealio Toolbar\FF\chrome\content\searchbox.js
c:\program files\Dealio Toolbar\FF\chrome\content\searchbox.xul
c:\program files\Dealio Toolbar\FF\chrome\content\widgicomm.js
c:\program files\Dealio Toolbar\FF\chrome\content\widgihandling.js
c:\program files\Dealio Toolbar\FF\chrome\content\widgichevron.js
c:\program files\Dealio Toolbar\FF\chrome\content\widgilisteners.js
c:\program files\Dealio Toolbar\FF\chrome\content\widgitoolbarplugin.js
c:\program files\Dealio Toolbar\FF\chrome\content\widgitoolbarplugin.xul
c:\program files\Dealio Toolbar\FF\chrome\content\widgiui.js
c:\program files\Dealio Toolbar\FF\chrome\locale\EN-US\searchbox.dtd
c:\program files\Dealio Toolbar\FF\chrome\locale\EN-US\widgitoolbarplugin.dtd
c:\program files\Dealio Toolbar\FF\chrome\locale\EN-US\widgitoolbarplugin.properties
c:\program files\Dealio Toolbar\FF\chrome\locale\EN-US\yahoo-search.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\amazon.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\apple.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\barnes.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\bestbuy.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\dealio_logo.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\dealio_logo_hover.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\ebay.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\chevron.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\icon_settings.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\macys.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\newegg.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\overstock.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\search-button-hover.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\search-button.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\search-chevron-hover.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\search-chevron.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\search_amazon.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\search_dealio.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\search_ebay.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\search_yahoo.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\searchbox.css
c:\program files\Dealio Toolbar\FF\chrome\skin\separator.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\target.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\walmart.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\widgitoolbarplugin.css
c:\program files\Dealio Toolbar\FF\install.rdf
c:\program files\Dealio Toolbar\IE\4.0.2\config.ini
c:\program files\Dealio Toolbar\Res\amazon.gif
c:\program files\Dealio Toolbar\Res\apple.gif
c:\program files\Dealio Toolbar\Res\barnes.gif
c:\program files\Dealio Toolbar\Res\bestbuy.gif
c:\program files\Dealio Toolbar\Res\dealio_logo.gif
c:\program files\Dealio Toolbar\Res\dealio_logo_hover.gif
c:\program files\Dealio Toolbar\Res\ebay.gif
c:\program files\Dealio Toolbar\Res\icon_settings.gif
c:\program files\Dealio Toolbar\Res\macys.gif
c:\program files\Dealio Toolbar\Res\newegg.gif
c:\program files\Dealio Toolbar\Res\overstock.gif
c:\program files\Dealio Toolbar\Res\search-button-hover.gif
c:\program files\Dealio Toolbar\Res\search-button.gif
c:\program files\Dealio Toolbar\Res\search-chevron-hover.gif
c:\program files\Dealio Toolbar\Res\search-chevron.gif
c:\program files\Dealio Toolbar\Res\search_amazon.gif
c:\program files\Dealio Toolbar\Res\search_dealio.gif
c:\program files\Dealio Toolbar\Res\search_ebay.gif
c:\program files\Dealio Toolbar\Res\search_yahoo.gif
c:\program files\Dealio Toolbar\Res\target.gif
c:\program files\Dealio Toolbar\Res\walmart.gif
c:\program files\Dealio Toolbar\Res\widgets.xml
c:\program files\Dealio Toolbar\WidgiHelper.exe
c:\program files\Search Settings
c:\program files\Search Settings\FF\components\IFBHOSearch.xpt
c:\program files\Search Settings\FF\components\IFBHOSearchHelperEngine.xpt
c:\program files\Search Settings\FF\components\IFHelperPreferences.xpt
c:\program files\Search Settings\FF\components\SearchSettingsFF.dll
c:\program files\Search Settings\FF\chrome.manifest
c:\program files\Search Settings\FF\chrome\content\plugin.js
c:\program files\Search Settings\FF\chrome\content\plugin.xul
c:\program files\Search Settings\FF\chrome\content\protection.js
c:\program files\Search Settings\FF\chrome\content\utils.js
c:\program files\Search Settings\FF\chrome\locale\en-US\searchsettingsplugin.dtd
c:\program files\Search Settings\FF\chrome\locale\en-US\searchsettingsplugin.properties
c:\program files\Search Settings\FF\install.rdf
c:\program files\Search Settings\SearchSettings.exe
c:\program files\Search Settings\SearchSettingsRes409.dll
c:\program files\Setup.exe
c:\windows\system32\coredb
c:\windows\system32\coredb\storage
c:\windows\system32\d.dll
c:\windows\system32\drivers\15.exe
c:\windows\system32\drivers\187.exe
c:\windows\system32\drivers\328.exe
c:\windows\system32\drivers\562.exe
c:\windows\system32\drivers\687.exe
c:\windows\system32\drivers\937.exe
c:\windows\system32\drivers\atmapi.sys
c:\windows\system32\drivers\wcscd.sys
c:\windows\system32\mycom.crt
c:\windows\system32\n.dll
c:\windows\system32\o.dll
c:\windows\system32\p.dll
c:\windows\system32\secupdat.dat
c:\windows\worklog0
Nakažená kopie c:\windows\system32\ole32.dll byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\ServicePackFiles\i386\ole32.dll
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_CDFSS
-------\Legacy_MYWEBSEARCHSERVICE
-------\Legacy_WCSCD
-------\Service_cdfss
-------\Service_wcscd
((((((((((((((((((((((((( Soubory vytvořené od 2010-11-16 do 2010-12-16 )))))))))))))))))))))))))))))))
.
2010-12-16 21:08 . 2010-12-16 21:08 311296 ----a-w- c:\windows\system32\ntcore.dll1
2010-12-16 20:43 . 2009-12-09 10:11 1287168 ----a-w- c:\windows\system32\gggggg
2010-12-16 17:52 . 2010-12-16 17:52 -------- d-----w- C:\$AVG
2010-12-16 17:28 . 2010-12-16 17:28 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\Mozilla
2010-12-13 12:01 . 2010-12-13 12:01 -------- d--h--w- c:\documents and settings\All Users\Data aplikací\Common Files
2010-12-13 10:55 . 2010-12-13 10:55 -------- d-----w- c:\documents and settings\Lukas\Data aplikací\AVG10
2010-12-13 10:18 . 2010-12-16 21:06 -------- d-----w- c:\documents and settings\All Users\Data aplikací\MFAData
2010-12-10 11:37 . 2010-12-10 11:37 -------- d-----w- c:\program files\CCleaner
2010-12-10 11:21 . 2001-10-24 10:54 12160 -c--a-w- c:\windows\system32\dllcache\mouhid.sys
2010-12-10 11:21 . 2001-10-24 10:54 12160 ----a-w- c:\windows\system32\drivers\mouhid.sys
2010-12-10 11:21 . 2008-04-13 19:45 10368 -c--a-w- c:\windows\system32\dllcache\hidusb.sys
2010-12-10 11:21 . 2008-04-13 19:45 10368 ----a-w- c:\windows\system32\drivers\hidusb.sys
2010-12-06 15:37 . 2010-12-06 15:37 -------- d-----r- c:\documents and settings\LocalService\Oblíbené položky
2010-12-02 03:35 . 2010-12-02 03:35 4280320 ----a-w- c:\windows\system32\GPhotos.scr
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-12-16 19:25 . 2008-10-13 15:33 196608 ----a-w- c:\windows\system32\drivers\nStandard.bin
2010-12-13 12:42 . 2008-10-13 16:50 98304 ----a-w- c:\windows\DUMP704e.tmp
2010-09-27 12:56 . 2009-03-07 09:55 98304 ----a-w- c:\windows\system32\CmdLineExt.dll
2008-10-31 18:25 . 2008-10-31 18:25 5862994 ----a-w- c:\program files\ts2_client_rc2_2032.exe
2008-10-18 07:20 . 2008-10-18 07:19 4653240 ----a-w- c:\program files\flashget196en.exe
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-01-24 2289664]
"BitTorrent DNA"="c:\program files\DNA\btdna.exe" [2009-10-07 323392]
"Steam"="c:\program files\steam\steam.exe" [2010-12-03 1242448]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2010-09-25 328056]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"Google Update"="c:\documents and settings\Lukas\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" [2010-10-24 136176]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2008-05-16 16862720]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2008-02-27 570664]
"SecurDisc"="c:\program files\Nero\Nero 7\InCD\NBHGui.exe" [2008-02-18 1629480]
"InCD"="c:\program files\Nero\Nero 7\InCD\InCD.exe" [2008-02-18 1057064]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2007-03-14 71216]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2007-01-08 52256]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"amd_dc_opt"="c:\program files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-07-09 13923432]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-07-09 110696]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-05-26 413696]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSGamerOSD]
2007-07-12 08:03 380928 ----a-w- c:\program files\ASUS\GamerOSD\GamerOSD.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]
2009-02-06 18:17 3325952 ----a-w- c:\program files\Electronic Arts\EADM\Core.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]
2008-11-14 12:35 305064 ----a-r- c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"AVGIDSAgent"=2 (0x2)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\DNA\\btdna.exe"=
"c:\\Program Files\\mIRC\\mirc.exe"=
"c:\\Program Files\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\Common Files\\Ahead\\Nero Web\\SetupX.exe"=
"c:\\Program Files\\Electronic Arts\\EADM\\Core.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
"c:\\Program Files\\Valve\\hl.exe"=
"c:\\Program Files\\Valve\\hlds.exe"=
"c:\\Program Files\\Eidos\\Pyro Studios\\Commandos 3 - Destination Berlin\\commandos3.exe"=
"c:\\Program Files\\EA Sports\\NHL 09\\nhl2009.exe"=
"c:\\Program Files\\Google\\Google Earth\\plugin\\geplugin.exe"=
"c:\\Program Files\\Rockstar Games\\Rockstar Games Social Club\\RGSCLauncher.exe"=
"c:\\Program Files\\Rockstar Games\\Grand Theft Auto IV\\LaunchGTAIV.exe"=
"c:\\Program Files\\Rockstar Games\\Grand Theft Auto IV\\GTAIV.exe"=
"c:\\Program Files\\Valve\\hltv.exe"=
"c:\\Program Files\\ICQ7.2\\ICQ.exe"=
"c:\\Program Files\\ICQ7.2\\aolload.exe"=
"c:\\Program Files\\Steam\\SteamApps\\yrp2k9jstahwdn2tzzpjgsydt\\counter-strike source\\hl2.exe"=
"c:\\Program Files\\Steam\\SteamApps\\yrp2k9jstahwdn2tzzpjgsydt\\day of defeat source\\hl2.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"11426:TCP"= 11426:TCP:BitComet 11426 TCP
"11426:UDP"= 11426:UDP:BitComet 11426 UDP
"6461:TCP"= 6461:TCP:gxawux
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [7.3.2009 10:43 691696]
R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;c:\program files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [6.9.2009 5:06 169312]
R2 Application Updater;Application Updater;c:\program files\Application Updater\ApplicationUpdater.exe [8.1.2010 0:51 380928]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [16.10.2008 18:45 246520]
S2 abegkuhb;Center Support;c:\windows\system32\svchost.exe -k netsvcs [2.3.2006 13:00 14336]
S2 dmerz;Installer Config;c:\windows\system32\svchost.exe -k netsvcs [2.3.2006 13:00 14336]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [1.9.2010 15:55 136176]
S2 NeroRegInCDSrv;Nero Registry InCD Service;c:\program files\Nero\Nero 7\InCD\NBHRegInCDSrv.exe --> c:\program files\Nero\Nero 7\InCD\NBHRegInCDSrv.exe [?]
S2 qe3u35t6j8onyi;ASF Agent;c:\windows\system32\vonala.exe --> c:\windows\system32\vonala.exe [?]
S2 wpvnmh;Security Server;c:\windows\system32\svchost.exe -k netsvcs [2.3.2006 13:00 14336]
S2 xyqdiky;vawrpbyn;c:\windows\system32\svchost.exe -k netsvcs [2.3.2006 13:00 14336]
S2 zsmvfyvd;fpour;c:\windows\system32\svchost.exe -k netsvcs [2.3.2006 13:00 14336]
S3 brlcjlhy;brlcjlhy;\??\c:\windows\System32\Drivers\brlcjlhy.sys --> c:\windows\System32\Drivers\brlcjlhy.sys [?]
S3 dwnmxnxj;dwnmxnxj;\??\c:\windows\System32\Drivers\dwnmxnxj.sys --> c:\windows\System32\Drivers\dwnmxnxj.sys [?]
S3 Fadpu16E;Fadpu16E;\??\c:\docume~1\Lukas\LOCALS~1\Temp\Fadpu16E.sys --> c:\docume~1\Lukas\LOCALS~1\Temp\Fadpu16E.sys [?]
S3 foypsryv;foypsryv;\??\c:\windows\System32\Drivers\foypsryv.sys --> c:\windows\System32\Drivers\foypsryv.sys [?]
S3 klzyjfxf;klzyjfxf;\??\c:\windows\System32\Drivers\klzyjfxf.sys --> c:\windows\System32\Drivers\klzyjfxf.sys [?]
S3 nclnljvr;nclnljvr;\??\c:\windows\System32\Drivers\nclnljvr.sys --> c:\windows\System32\Drivers\nclnljvr.sys [?]
S3 nctqyrzh;nctqyrzh;\??\c:\windows\System32\Drivers\nctqyrzh.sys --> c:\windows\System32\Drivers\nctqyrzh.sys [?]
S3 oheldpxj;oheldpxj;\??\c:\windows\System32\Drivers\oheldpxj.sys --> c:\windows\System32\Drivers\oheldpxj.sys [?]
S3 qjgjatau;qjgjatau;\??\c:\windows\System32\Drivers\qjgjatau.sys --> c:\windows\System32\Drivers\qjgjatau.sys [?]
S3 selhnuxp;selhnuxp;\??\c:\windows\System32\Drivers\selhnuxp.sys --> c:\windows\System32\Drivers\selhnuxp.sys [?]
S3 sidtjdxj;sidtjdxj;\??\c:\windows\System32\Drivers\sidtjdxj.sys --> c:\windows\System32\Drivers\sidtjdxj.sys [?]
S3 vuxzkggr;vuxzkggr;\??\c:\windows\System32\Drivers\vuxzkggr.sys --> c:\windows\System32\Drivers\vuxzkggr.sys [?]
S3 wzeuchai;wzeuchai;\??\c:\windows\System32\Drivers\wzeuchai.sys --> c:\windows\System32\Drivers\wzeuchai.sys [?]
S3 znetacxx;znetacxx;\??\c:\windows\System32\Drivers\znetacxx.sys --> c:\windows\System32\Drivers\znetacxx.sys [?]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
wpvnmh
dmerz
zsmvfyvd
xyqdiky
abegkuhb
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-01-24 10:30 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
2010-09-25 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
2010-12-16 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-01 12:01]
2010-12-16 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-01 12:01]
2010-12-16 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2010-09-28 20:44]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://fullarticles.net
mStart Page = hxxp://home.sweetim.com
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: {{0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} -
FF - ProfilePath - c:\documents and settings\Lukas\Data aplikací\Mozilla\Firefox\Profiles\k6a34vp6.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.sweetim.com/search.asp?src=2&q=
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - prefs.js: browser.startup.homepage - hxxp://www.daemon-search.com/startpage|http://home.sweetim.com
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=867034&p=
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: PandoraTV Toolbar: toolbar@ask.com - %profile%\extensions\toolbar@ask.com
FF - Ext: DAEMON Tools Toolbar: DTToolbar@toolbarnet.com - %profile%\extensions\DTToolbar@toolbarnet.com
FF - Ext: ICQ Toolbar: {800b5000-a755-47e1-992b-48a1c1357f07} - %profile%\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
URLSearchHooks-{00000000-6E41-4FD3-8538-502F5495E5FC} - (no file)
Toolbar-{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - (no file)
Toolbar-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKCU-Run-ICQ - ~c:\program files\ICQ7.2\ICQ.exe
HKLM-Run-SearchSettings - c:\program files\Search Settings\SearchSettings.exe
HKU-Default-Run-wuaucldt - c:\documents and settings\lukas\wuaucldt.exe
MSConfigStartUp-BitComet - c:\program files\BitComet\BitComet.exe
MSConfigStartUp-DAEMON Tools Lite - c:\program files\DAEMON Tools Lite\daemon.exe
MSConfigStartUp-ICQ - c:\program files\ICQ6\ICQ.exe
**************************************************************************
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory:
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\abegkuhb]
"ServiceDll"="c:\windows\system32\oermwt.dll"
--
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\dmerz]
"ServiceDll"="c:\windows\system32\oermwt.dll"
--
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\wpvnmh]
"ServiceDll"="c:\windows\system32\oermwt.dll"
--
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\xyqdiky]
"ServiceDll"="c:\windows\system32\oermwt.dll"
--
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\zsmvfyvd]
"ServiceDll"="c:\windows\system32\oermwt.dll"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_USERS\S-1-5-21-57989841-1482476501-725345543-1005\Software\SecuROM\License information*]
"datasecu"=hex:26,d7,76,ce,5b,01,8c,cf,3e,4a,8b,7d,f3,da,e3,68,aa,52,2f,cf,35,
d2,74,e0,8e,fc,2c,74,ad,d8,92,7e,27,a5,63,f0,3c,73,79,51,f0,11,27,82,61,c2,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'explorer.exe'(2788)
c:\program files\Microsoft Office\OFFICE11\msohev.dll
c:\program files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\program files\Nero\Nero 7\InCD\InCDsrv.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\program files\CyberLink\Shared Files\RichVideo.exe
c:\windows\system32\wscntfy.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\RUNDLL32.EXE
.
**************************************************************************
.
Celkový čas: 2010-12-16 22:31:33 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-12-16 21:31
Před spuštěním: Volných bajtů: 81 282 678 784
Po spuštění: Volných bajtů: 81 453 936 640
- - End Of File - - 82F518ED0EB258A498E57A24DAFCBDF1
ComboFix 10-12-15.07 - Lukas 16.12.2010 22:20:53.1.4 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1507 [GMT 1:00]
Spuštěný z: c:\documents and settings\Lukas\Plocha\ComboFix.exe
FW: AVG Firewall *Disabled* {8decf618-9569-4340-b34a-d78d28969b66}
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\Lukas\Data aplikací\Dealio
c:\documents and settings\Lukas\Data aplikací\Dealio\res\widgets.xml
c:\documents and settings\Lukas\Data aplikací\Dealio\temp\http___www_dealio_com_rss_coupons-deals_dotd_.xml
c:\documents and settings\Lukas\Dokumenty\cc_20101210_130748.reg
c:\documents and settings\Lukas\Dokumenty\cc_20101213_103945.reg
c:\documents and settings\Lukas\oashdihasidhasuidhiasdhiashdiuasdhasd
c:\documents and settings\Lukas\secupdat.dat
c:\program files\\setup.exe
c:\program files\Dealio Toolbar
c:\program files\Dealio Toolbar\FF\components\config.ini
c:\program files\Dealio Toolbar\FF\components\dealioToolbarFF.dll
c:\program files\Dealio Toolbar\FF\components\IFBHOHelperWidgiToolbar.xpt
c:\program files\Dealio Toolbar\FF\components\IFBHOWidgiToolbar.xpt
c:\program files\Dealio Toolbar\FF\chrome.manifest
c:\program files\Dealio Toolbar\FF\chrome\content\chevron.js
c:\program files\Dealio Toolbar\FF\chrome\content\chevron.xul
c:\program files\Dealio Toolbar\FF\chrome\content\login.js
c:\program files\Dealio Toolbar\FF\chrome\content\login.xul
c:\program files\Dealio Toolbar\FF\chrome\content\parser.js
c:\program files\Dealio Toolbar\FF\chrome\content\RssTickerWidget.js
c:\program files\Dealio Toolbar\FF\chrome\content\searchbox.js
c:\program files\Dealio Toolbar\FF\chrome\content\searchbox.xul
c:\program files\Dealio Toolbar\FF\chrome\content\widgicomm.js
c:\program files\Dealio Toolbar\FF\chrome\content\widgihandling.js
c:\program files\Dealio Toolbar\FF\chrome\content\widgichevron.js
c:\program files\Dealio Toolbar\FF\chrome\content\widgilisteners.js
c:\program files\Dealio Toolbar\FF\chrome\content\widgitoolbarplugin.js
c:\program files\Dealio Toolbar\FF\chrome\content\widgitoolbarplugin.xul
c:\program files\Dealio Toolbar\FF\chrome\content\widgiui.js
c:\program files\Dealio Toolbar\FF\chrome\locale\EN-US\searchbox.dtd
c:\program files\Dealio Toolbar\FF\chrome\locale\EN-US\widgitoolbarplugin.dtd
c:\program files\Dealio Toolbar\FF\chrome\locale\EN-US\widgitoolbarplugin.properties
c:\program files\Dealio Toolbar\FF\chrome\locale\EN-US\yahoo-search.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\amazon.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\apple.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\barnes.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\bestbuy.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\dealio_logo.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\dealio_logo_hover.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\ebay.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\chevron.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\icon_settings.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\macys.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\newegg.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\overstock.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\search-button-hover.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\search-button.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\search-chevron-hover.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\search-chevron.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\search_amazon.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\search_dealio.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\search_ebay.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\search_yahoo.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\searchbox.css
c:\program files\Dealio Toolbar\FF\chrome\skin\separator.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\target.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\walmart.gif
c:\program files\Dealio Toolbar\FF\chrome\skin\widgitoolbarplugin.css
c:\program files\Dealio Toolbar\FF\install.rdf
c:\program files\Dealio Toolbar\IE\4.0.2\config.ini
c:\program files\Dealio Toolbar\Res\amazon.gif
c:\program files\Dealio Toolbar\Res\apple.gif
c:\program files\Dealio Toolbar\Res\barnes.gif
c:\program files\Dealio Toolbar\Res\bestbuy.gif
c:\program files\Dealio Toolbar\Res\dealio_logo.gif
c:\program files\Dealio Toolbar\Res\dealio_logo_hover.gif
c:\program files\Dealio Toolbar\Res\ebay.gif
c:\program files\Dealio Toolbar\Res\icon_settings.gif
c:\program files\Dealio Toolbar\Res\macys.gif
c:\program files\Dealio Toolbar\Res\newegg.gif
c:\program files\Dealio Toolbar\Res\overstock.gif
c:\program files\Dealio Toolbar\Res\search-button-hover.gif
c:\program files\Dealio Toolbar\Res\search-button.gif
c:\program files\Dealio Toolbar\Res\search-chevron-hover.gif
c:\program files\Dealio Toolbar\Res\search-chevron.gif
c:\program files\Dealio Toolbar\Res\search_amazon.gif
c:\program files\Dealio Toolbar\Res\search_dealio.gif
c:\program files\Dealio Toolbar\Res\search_ebay.gif
c:\program files\Dealio Toolbar\Res\search_yahoo.gif
c:\program files\Dealio Toolbar\Res\target.gif
c:\program files\Dealio Toolbar\Res\walmart.gif
c:\program files\Dealio Toolbar\Res\widgets.xml
c:\program files\Dealio Toolbar\WidgiHelper.exe
c:\program files\Search Settings
c:\program files\Search Settings\FF\components\IFBHOSearch.xpt
c:\program files\Search Settings\FF\components\IFBHOSearchHelperEngine.xpt
c:\program files\Search Settings\FF\components\IFHelperPreferences.xpt
c:\program files\Search Settings\FF\components\SearchSettingsFF.dll
c:\program files\Search Settings\FF\chrome.manifest
c:\program files\Search Settings\FF\chrome\content\plugin.js
c:\program files\Search Settings\FF\chrome\content\plugin.xul
c:\program files\Search Settings\FF\chrome\content\protection.js
c:\program files\Search Settings\FF\chrome\content\utils.js
c:\program files\Search Settings\FF\chrome\locale\en-US\searchsettingsplugin.dtd
c:\program files\Search Settings\FF\chrome\locale\en-US\searchsettingsplugin.properties
c:\program files\Search Settings\FF\install.rdf
c:\program files\Search Settings\SearchSettings.exe
c:\program files\Search Settings\SearchSettingsRes409.dll
c:\program files\Setup.exe
c:\windows\system32\coredb
c:\windows\system32\coredb\storage
c:\windows\system32\d.dll
c:\windows\system32\drivers\15.exe
c:\windows\system32\drivers\187.exe
c:\windows\system32\drivers\328.exe
c:\windows\system32\drivers\562.exe
c:\windows\system32\drivers\687.exe
c:\windows\system32\drivers\937.exe
c:\windows\system32\drivers\atmapi.sys
c:\windows\system32\drivers\wcscd.sys
c:\windows\system32\mycom.crt
c:\windows\system32\n.dll
c:\windows\system32\o.dll
c:\windows\system32\p.dll
c:\windows\system32\secupdat.dat
c:\windows\worklog0
Nakažená kopie c:\windows\system32\ole32.dll byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\ServicePackFiles\i386\ole32.dll
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_CDFSS
-------\Legacy_MYWEBSEARCHSERVICE
-------\Legacy_WCSCD
-------\Service_cdfss
-------\Service_wcscd
((((((((((((((((((((((((( Soubory vytvořené od 2010-11-16 do 2010-12-16 )))))))))))))))))))))))))))))))
.
2010-12-16 21:08 . 2010-12-16 21:08 311296 ----a-w- c:\windows\system32\ntcore.dll1
2010-12-16 20:43 . 2009-12-09 10:11 1287168 ----a-w- c:\windows\system32\gggggg
2010-12-16 17:52 . 2010-12-16 17:52 -------- d-----w- C:\$AVG
2010-12-16 17:28 . 2010-12-16 17:28 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\Mozilla
2010-12-13 12:01 . 2010-12-13 12:01 -------- d--h--w- c:\documents and settings\All Users\Data aplikací\Common Files
2010-12-13 10:55 . 2010-12-13 10:55 -------- d-----w- c:\documents and settings\Lukas\Data aplikací\AVG10
2010-12-13 10:18 . 2010-12-16 21:06 -------- d-----w- c:\documents and settings\All Users\Data aplikací\MFAData
2010-12-10 11:37 . 2010-12-10 11:37 -------- d-----w- c:\program files\CCleaner
2010-12-10 11:21 . 2001-10-24 10:54 12160 -c--a-w- c:\windows\system32\dllcache\mouhid.sys
2010-12-10 11:21 . 2001-10-24 10:54 12160 ----a-w- c:\windows\system32\drivers\mouhid.sys
2010-12-10 11:21 . 2008-04-13 19:45 10368 -c--a-w- c:\windows\system32\dllcache\hidusb.sys
2010-12-10 11:21 . 2008-04-13 19:45 10368 ----a-w- c:\windows\system32\drivers\hidusb.sys
2010-12-06 15:37 . 2010-12-06 15:37 -------- d-----r- c:\documents and settings\LocalService\Oblíbené položky
2010-12-02 03:35 . 2010-12-02 03:35 4280320 ----a-w- c:\windows\system32\GPhotos.scr
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-12-16 19:25 . 2008-10-13 15:33 196608 ----a-w- c:\windows\system32\drivers\nStandard.bin
2010-12-13 12:42 . 2008-10-13 16:50 98304 ----a-w- c:\windows\DUMP704e.tmp
2010-09-27 12:56 . 2009-03-07 09:55 98304 ----a-w- c:\windows\system32\CmdLineExt.dll
2008-10-31 18:25 . 2008-10-31 18:25 5862994 ----a-w- c:\program files\ts2_client_rc2_2032.exe
2008-10-18 07:20 . 2008-10-18 07:19 4653240 ----a-w- c:\program files\flashget196en.exe
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-01-24 2289664]
"BitTorrent DNA"="c:\program files\DNA\btdna.exe" [2009-10-07 323392]
"Steam"="c:\program files\steam\steam.exe" [2010-12-03 1242448]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2010-09-25 328056]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"Google Update"="c:\documents and settings\Lukas\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" [2010-10-24 136176]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2008-05-16 16862720]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2008-02-27 570664]
"SecurDisc"="c:\program files\Nero\Nero 7\InCD\NBHGui.exe" [2008-02-18 1629480]
"InCD"="c:\program files\Nero\Nero 7\InCD\InCD.exe" [2008-02-18 1057064]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2007-03-14 71216]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2007-01-08 52256]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"amd_dc_opt"="c:\program files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-07-09 13923432]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-07-09 110696]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-05-26 413696]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSGamerOSD]
2007-07-12 08:03 380928 ----a-w- c:\program files\ASUS\GamerOSD\GamerOSD.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]
2009-02-06 18:17 3325952 ----a-w- c:\program files\Electronic Arts\EADM\Core.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]
2008-11-14 12:35 305064 ----a-r- c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"AVGIDSAgent"=2 (0x2)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\DNA\\btdna.exe"=
"c:\\Program Files\\mIRC\\mirc.exe"=
"c:\\Program Files\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\Common Files\\Ahead\\Nero Web\\SetupX.exe"=
"c:\\Program Files\\Electronic Arts\\EADM\\Core.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
"c:\\Program Files\\Valve\\hl.exe"=
"c:\\Program Files\\Valve\\hlds.exe"=
"c:\\Program Files\\Eidos\\Pyro Studios\\Commandos 3 - Destination Berlin\\commandos3.exe"=
"c:\\Program Files\\EA Sports\\NHL 09\\nhl2009.exe"=
"c:\\Program Files\\Google\\Google Earth\\plugin\\geplugin.exe"=
"c:\\Program Files\\Rockstar Games\\Rockstar Games Social Club\\RGSCLauncher.exe"=
"c:\\Program Files\\Rockstar Games\\Grand Theft Auto IV\\LaunchGTAIV.exe"=
"c:\\Program Files\\Rockstar Games\\Grand Theft Auto IV\\GTAIV.exe"=
"c:\\Program Files\\Valve\\hltv.exe"=
"c:\\Program Files\\ICQ7.2\\ICQ.exe"=
"c:\\Program Files\\ICQ7.2\\aolload.exe"=
"c:\\Program Files\\Steam\\SteamApps\\yrp2k9jstahwdn2tzzpjgsydt\\counter-strike source\\hl2.exe"=
"c:\\Program Files\\Steam\\SteamApps\\yrp2k9jstahwdn2tzzpjgsydt\\day of defeat source\\hl2.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"11426:TCP"= 11426:TCP:BitComet 11426 TCP
"11426:UDP"= 11426:UDP:BitComet 11426 UDP
"6461:TCP"= 6461:TCP:gxawux
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [7.3.2009 10:43 691696]
R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;c:\program files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [6.9.2009 5:06 169312]
R2 Application Updater;Application Updater;c:\program files\Application Updater\ApplicationUpdater.exe [8.1.2010 0:51 380928]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [16.10.2008 18:45 246520]
S2 abegkuhb;Center Support;c:\windows\system32\svchost.exe -k netsvcs [2.3.2006 13:00 14336]
S2 dmerz;Installer Config;c:\windows\system32\svchost.exe -k netsvcs [2.3.2006 13:00 14336]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [1.9.2010 15:55 136176]
S2 NeroRegInCDSrv;Nero Registry InCD Service;c:\program files\Nero\Nero 7\InCD\NBHRegInCDSrv.exe --> c:\program files\Nero\Nero 7\InCD\NBHRegInCDSrv.exe [?]
S2 qe3u35t6j8onyi;ASF Agent;c:\windows\system32\vonala.exe --> c:\windows\system32\vonala.exe [?]
S2 wpvnmh;Security Server;c:\windows\system32\svchost.exe -k netsvcs [2.3.2006 13:00 14336]
S2 xyqdiky;vawrpbyn;c:\windows\system32\svchost.exe -k netsvcs [2.3.2006 13:00 14336]
S2 zsmvfyvd;fpour;c:\windows\system32\svchost.exe -k netsvcs [2.3.2006 13:00 14336]
S3 brlcjlhy;brlcjlhy;\??\c:\windows\System32\Drivers\brlcjlhy.sys --> c:\windows\System32\Drivers\brlcjlhy.sys [?]
S3 dwnmxnxj;dwnmxnxj;\??\c:\windows\System32\Drivers\dwnmxnxj.sys --> c:\windows\System32\Drivers\dwnmxnxj.sys [?]
S3 Fadpu16E;Fadpu16E;\??\c:\docume~1\Lukas\LOCALS~1\Temp\Fadpu16E.sys --> c:\docume~1\Lukas\LOCALS~1\Temp\Fadpu16E.sys [?]
S3 foypsryv;foypsryv;\??\c:\windows\System32\Drivers\foypsryv.sys --> c:\windows\System32\Drivers\foypsryv.sys [?]
S3 klzyjfxf;klzyjfxf;\??\c:\windows\System32\Drivers\klzyjfxf.sys --> c:\windows\System32\Drivers\klzyjfxf.sys [?]
S3 nclnljvr;nclnljvr;\??\c:\windows\System32\Drivers\nclnljvr.sys --> c:\windows\System32\Drivers\nclnljvr.sys [?]
S3 nctqyrzh;nctqyrzh;\??\c:\windows\System32\Drivers\nctqyrzh.sys --> c:\windows\System32\Drivers\nctqyrzh.sys [?]
S3 oheldpxj;oheldpxj;\??\c:\windows\System32\Drivers\oheldpxj.sys --> c:\windows\System32\Drivers\oheldpxj.sys [?]
S3 qjgjatau;qjgjatau;\??\c:\windows\System32\Drivers\qjgjatau.sys --> c:\windows\System32\Drivers\qjgjatau.sys [?]
S3 selhnuxp;selhnuxp;\??\c:\windows\System32\Drivers\selhnuxp.sys --> c:\windows\System32\Drivers\selhnuxp.sys [?]
S3 sidtjdxj;sidtjdxj;\??\c:\windows\System32\Drivers\sidtjdxj.sys --> c:\windows\System32\Drivers\sidtjdxj.sys [?]
S3 vuxzkggr;vuxzkggr;\??\c:\windows\System32\Drivers\vuxzkggr.sys --> c:\windows\System32\Drivers\vuxzkggr.sys [?]
S3 wzeuchai;wzeuchai;\??\c:\windows\System32\Drivers\wzeuchai.sys --> c:\windows\System32\Drivers\wzeuchai.sys [?]
S3 znetacxx;znetacxx;\??\c:\windows\System32\Drivers\znetacxx.sys --> c:\windows\System32\Drivers\znetacxx.sys [?]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
wpvnmh
dmerz
zsmvfyvd
xyqdiky
abegkuhb
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-01-24 10:30 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
2010-09-25 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
2010-12-16 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-01 12:01]
2010-12-16 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-01 12:01]
2010-12-16 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2010-09-28 20:44]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://fullarticles.net
mStart Page = hxxp://home.sweetim.com
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: {{0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} -
FF - ProfilePath - c:\documents and settings\Lukas\Data aplikací\Mozilla\Firefox\Profiles\k6a34vp6.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.sweetim.com/search.asp?src=2&q=
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - prefs.js: browser.startup.homepage - hxxp://www.daemon-search.com/startpage|http://home.sweetim.com
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=867034&p=
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: PandoraTV Toolbar: toolbar@ask.com - %profile%\extensions\toolbar@ask.com
FF - Ext: DAEMON Tools Toolbar: DTToolbar@toolbarnet.com - %profile%\extensions\DTToolbar@toolbarnet.com
FF - Ext: ICQ Toolbar: {800b5000-a755-47e1-992b-48a1c1357f07} - %profile%\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
URLSearchHooks-{00000000-6E41-4FD3-8538-502F5495E5FC} - (no file)
Toolbar-{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - (no file)
Toolbar-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKCU-Run-ICQ - ~c:\program files\ICQ7.2\ICQ.exe
HKLM-Run-SearchSettings - c:\program files\Search Settings\SearchSettings.exe
HKU-Default-Run-wuaucldt - c:\documents and settings\lukas\wuaucldt.exe
MSConfigStartUp-BitComet - c:\program files\BitComet\BitComet.exe
MSConfigStartUp-DAEMON Tools Lite - c:\program files\DAEMON Tools Lite\daemon.exe
MSConfigStartUp-ICQ - c:\program files\ICQ6\ICQ.exe
**************************************************************************
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory:
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\abegkuhb]
"ServiceDll"="c:\windows\system32\oermwt.dll"
--
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\dmerz]
"ServiceDll"="c:\windows\system32\oermwt.dll"
--
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\wpvnmh]
"ServiceDll"="c:\windows\system32\oermwt.dll"
--
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\xyqdiky]
"ServiceDll"="c:\windows\system32\oermwt.dll"
--
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\zsmvfyvd]
"ServiceDll"="c:\windows\system32\oermwt.dll"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_USERS\S-1-5-21-57989841-1482476501-725345543-1005\Software\SecuROM\License information*]
"datasecu"=hex:26,d7,76,ce,5b,01,8c,cf,3e,4a,8b,7d,f3,da,e3,68,aa,52,2f,cf,35,
d2,74,e0,8e,fc,2c,74,ad,d8,92,7e,27,a5,63,f0,3c,73,79,51,f0,11,27,82,61,c2,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'explorer.exe'(2788)
c:\program files\Microsoft Office\OFFICE11\msohev.dll
c:\program files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\program files\Nero\Nero 7\InCD\InCDsrv.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\program files\CyberLink\Shared Files\RichVideo.exe
c:\windows\system32\wscntfy.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\RUNDLL32.EXE
.
**************************************************************************
.
Celkový čas: 2010-12-16 22:31:33 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-12-16 21:31
Před spuštěním: Volných bajtů: 81 282 678 784
Po spuštění: Volných bajtů: 81 453 936 640
- - End Of File - - 82F518ED0EB258A498E57A24DAFCBDF1
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: Prsím o kontrolu AVG Hlásí Win32/Patched
CFscriptOtevři Poznámkový blok (Notepad) a zkopíruj celý zelený text z "CFscriptu".
Soubor ulož na plochu jako CFscript.txt a jeho ikonu přetáhni myší nad ikonu ComboFixu - tam pusť.
ComboFix se spustí - počkej na log a vlož ho sem.
Kód: Vybrat vše
KillAll::
File::
c:\windows\system32\ntcore.dll1
c:\windows\system32\gggggg
c:\windows\Tasks\*.job
c:\windows\system32\oermwt.dll
Registry::
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"6461:TCP"=-
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"=-
"Adobe Reader Speed Launcher"=-
"QuickTime Task"=-
Driver::
NeroRegInCDSrv
qe3u35t6j8onyi
brlcjlhy
dwnmxnxj
Fadpu16E
foypsryv
klzyjfxf
nclnljvr
nctqyrzh
oheldpxj
qjgjatau
selhnuxp
sidtjdxj
vuxzkggr
wzeuchai
znetacxx
NetSvc::
wpvnmh
dmerz
zsmvfyvd
xyqdiky
abegkuhb
RegLockDel::
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\abegkuhb]
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\dmerz]
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\wpvnmh]
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\xyqdiky]
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\zsmvfyvd]
DDS::
uStart Page =
mStart Page =
Firefox::
FF - ProfilePath - c:\documents and settings\Lukas\Data aplikací\Mozilla\Firefox\Profiles\k6a34vp6.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.startup.homepage -
FF - prefs.js: keyword.URL -
FF - Ext: PandoraTV Toolbar:
FF - Ext: DAEMON Tools Toolbar:
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
-
superman
- Návštěvník
- Příspěvky: 18
- Registrován: 18 dub 2005 16:08
- Bydliště: Praha
- Kontaktovat uživatele:
Re: Prsím o kontrolu AVG Hlásí Win32/Patched
ComboFix 10-12-15.07 - Lukas 17.12.2010 7:07.2.4 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1594 [GMT 1:00]
Spuštěný z: c:\documents and settings\Lukas\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Lukas\Plocha\CFscript.txt
FW: AVG Firewall *Disabled* {8decf618-9569-4340-b34a-d78d28969b66}
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
FILE ::
"c:\windows\system32\gggggg"
"c:\windows\system32\ntcore.dll1"
"c:\windows\system32\oermwt.dll"
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\system32\gggggg
c:\windows\system32\ntcore.dll1
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_FADPU16E
-------\Legacy_NEROREGINCDSRV
-------\Legacy_QE3U35T6J8ONYI
-------\Service_brlcjlhy
-------\Service_dwnmxnxj
-------\Service_Fadpu16E
-------\Service_foypsryv
-------\Service_klzyjfxf
-------\Service_nclnljvr
-------\Service_nctqyrzh
-------\Service_NeroRegInCDSrv
-------\Service_oheldpxj
-------\Service_qe3u35t6j8onyi
-------\Service_qjgjatau
-------\Service_selhnuxp
-------\Service_sidtjdxj
-------\Service_vuxzkggr
-------\Service_wzeuchai
-------\Service_znetacxx
((((((((((((((((((((((((( Soubory vytvořené od 2010-11-17 do 2010-12-17 )))))))))))))))))))))))))))))))
.
2010-12-16 21:39 . 2010-12-16 21:39 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\Apple
2010-12-16 21:36 . 2010-09-18 06:53 974848 -c----w- c:\windows\system32\dllcache\mfc42.dll
2010-12-16 21:36 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2010-12-16 21:36 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2010-12-16 21:36 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2010-12-16 21:35 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2010-12-16 21:35 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2010-12-16 21:33 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2010-12-16 21:32 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2010-12-16 17:52 . 2010-12-16 17:52 -------- d-----w- C:\$AVG
2010-12-16 17:28 . 2010-12-16 17:28 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\Mozilla
2010-12-13 12:01 . 2010-12-13 12:01 -------- d--h--w- c:\documents and settings\All Users\Data aplikací\Common Files
2010-12-13 10:55 . 2010-12-13 10:55 -------- d-----w- c:\documents and settings\Lukas\Data aplikací\AVG10
2010-12-13 10:18 . 2010-12-16 21:06 -------- d-----w- c:\documents and settings\All Users\Data aplikací\MFAData
2010-12-10 11:37 . 2010-12-10 11:37 -------- d-----w- c:\program files\CCleaner
2010-12-10 11:21 . 2001-10-24 10:54 12160 -c--a-w- c:\windows\system32\dllcache\mouhid.sys
2010-12-10 11:21 . 2001-10-24 10:54 12160 ----a-w- c:\windows\system32\drivers\mouhid.sys
2010-12-10 11:21 . 2008-04-13 19:45 10368 -c--a-w- c:\windows\system32\dllcache\hidusb.sys
2010-12-10 11:21 . 2008-04-13 19:45 10368 ----a-w- c:\windows\system32\drivers\hidusb.sys
2010-12-06 15:37 . 2010-12-06 15:37 -------- d-----r- c:\documents and settings\LocalService\Oblíbené položky
2010-12-02 03:35 . 2010-12-02 03:35 4280320 ----a-w- c:\windows\system32\GPhotos.scr
2010-11-18 18:15 . 2010-11-18 18:15 81920 -c----w- c:\windows\system32\dllcache\isign32.dll
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-12-17 04:38 . 2008-10-13 15:33 196608 ----a-w- c:\windows\system32\drivers\nStandard.bin
2010-12-13 12:42 . 2008-10-13 16:50 98304 ----a-w- c:\windows\DUMP704e.tmp
2010-11-18 18:15 . 2008-10-13 15:09 81920 ----a-w- c:\windows\system32\isign32.dll
2010-11-06 00:25 . 2006-03-02 12:00 832512 ----a-w- c:\windows\system32\wininet.dll
2010-11-06 00:25 . 2009-05-01 09:16 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-11-06 00:25 . 2006-03-02 12:00 1830912 ----a-w- c:\windows\system32\inetcpl.cpl
2010-11-06 00:25 . 2006-03-02 12:00 17408 ----a-w- c:\windows\system32\corpol.dll
2010-11-03 12:25 . 2006-03-02 12:00 389120 ----a-w- c:\windows\system32\html.iec
2010-11-02 15:17 . 2006-03-02 12:00 40960 ----a-w- c:\windows\system32\drivers\ndproxy.sys
2010-10-28 13:09 . 2006-03-02 12:00 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-10-26 13:58 . 2006-03-02 12:00 1853312 ----a-w- c:\windows\system32\win32k.sys
2010-09-27 12:56 . 2009-03-07 09:55 98304 ----a-w- c:\windows\system32\CmdLineExt.dll
2010-09-18 11:23 . 2006-03-02 12:00 974848 ----a-w- c:\windows\system32\mfc42u.dll
2010-09-18 06:53 . 2006-03-02 12:00 974848 ----a-w- c:\windows\system32\mfc42.dll
2010-09-18 06:53 . 2006-03-02 12:00 954368 ----a-w- c:\windows\system32\mfc40.dll
2010-09-18 06:53 . 2006-03-02 12:00 953856 ----a-w- c:\windows\system32\mfc40u.dll
2008-10-31 18:25 . 2008-10-31 18:25 5862994 ----a-w- c:\program files\ts2_client_rc2_2032.exe
2008-10-18 07:20 . 2008-10-18 07:19 4653240 ----a-w- c:\program files\flashget196en.exe
.
((((((((((((((((((((((((((((( SnapShot@2010-12-16_21.27.12 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-12-17 06:21 . 2010-12-17 06:21 16384 c:\windows\temp\Perflib_Perfdata_6f4.dat
- 2008-04-14 03:22 . 2009-10-28 15:07 46080 c:\windows\system32\tzchange.exe
+ 2008-04-14 03:22 . 2010-11-03 13:12 46080 c:\windows\system32\tzchange.exe
+ 2006-03-02 12:00 . 2010-08-27 05:54 99840 c:\windows\system32\srvsvc.dll
+ 2006-03-02 12:00 . 2010-08-17 13:17 58880 c:\windows\system32\spoolsv.exe
+ 2010-12-16 21:57 . 2010-02-22 14:20 18296 c:\windows\system32\spmsg.dll
+ 2010-03-30 23:16 . 2010-03-30 23:16 99176 c:\windows\system32\PresentationHostProxy.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 44544 c:\windows\system32\pngfilt.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 44544 c:\windows\system32\pngfilt.dll
- 2006-03-02 12:00 . 2010-12-16 18:44 27574 c:\windows\system32\perfc009.dat
+ 2006-03-02 12:00 . 2010-12-16 22:10 27574 c:\windows\system32\perfc009.dat
+ 2006-03-02 12:00 . 2010-12-16 22:10 78030 c:\windows\system32\perfc005.dat
- 2006-03-02 12:00 . 2010-12-16 18:44 78030 c:\windows\system32\perfc005.dat
+ 2009-11-07 00:07 . 2009-11-07 00:07 49488 c:\windows\system32\netfxperf.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 11600 c:\windows\system32\mui\0409\mscorees.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 52224 c:\windows\system32\msfeedsbs.dll
- 2007-08-13 16:54 . 2010-01-05 09:58 52224 c:\windows\system32\msfeedsbs.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 27648 c:\windows\system32\jsproxy.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 27648 c:\windows\system32\jsproxy.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 44544 c:\windows\system32\iernonce.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 44544 c:\windows\system32\iernonce.dll
+ 2006-03-02 12:00 . 2010-11-03 12:24 70656 c:\windows\system32\ie4uinit.exe
- 2006-03-02 12:00 . 2009-12-31 15:32 70656 c:\windows\system32\ie4uinit.exe
- 2006-03-02 12:00 . 2008-04-14 03:21 80384 c:\windows\system32\iccvid.dll
+ 2006-03-02 12:00 . 2010-06-17 14:03 80384 c:\windows\system32\iccvid.dll
+ 2007-08-13 16:36 . 2010-11-06 00:25 63488 c:\windows\system32\icardie.dll
- 2007-08-13 16:36 . 2010-01-05 09:57 63488 c:\windows\system32\icardie.dll
+ 2010-08-27 05:54 . 2010-08-27 05:54 99840 c:\windows\system32\dllcache\srvsvc.dll
+ 2010-08-17 13:17 . 2010-08-17 13:17 58880 c:\windows\system32\dllcache\spoolsv.exe
- 2007-08-13 16:36 . 2010-01-05 09:58 44544 c:\windows\system32\dllcache\pngfilt.dll
+ 2007-08-13 16:36 . 2010-11-06 00:25 44544 c:\windows\system32\dllcache\pngfilt.dll
+ 2008-10-14 04:53 . 2010-11-06 00:25 52224 c:\windows\system32\dllcache\msfeedsbs.dll
- 2008-10-14 04:53 . 2010-01-05 09:58 52224 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 27648 c:\windows\system32\dllcache\jsproxy.dll
- 2007-08-13 16:54 . 2010-01-05 09:58 27648 c:\windows\system32\dllcache\jsproxy.dll
+ 2008-10-14 04:53 . 2010-11-03 12:24 13824 c:\windows\system32\dllcache\ieudinit.exe
- 2008-10-14 04:53 . 2009-12-31 15:32 13824 c:\windows\system32\dllcache\ieudinit.exe
- 2007-08-13 16:39 . 2010-01-05 09:58 44544 c:\windows\system32\dllcache\iernonce.dll
+ 2007-08-13 16:39 . 2010-11-06 00:25 44544 c:\windows\system32\dllcache\iernonce.dll
+ 2009-05-01 09:16 . 2010-11-06 00:25 78336 c:\windows\system32\dllcache\ieencode.dll
- 2009-05-01 09:16 . 2010-01-05 09:57 78336 c:\windows\system32\dllcache\ieencode.dll
+ 2007-08-13 16:39 . 2010-11-03 12:24 70656 c:\windows\system32\dllcache\ie4uinit.exe
- 2007-08-13 16:39 . 2009-12-31 15:32 70656 c:\windows\system32\dllcache\ie4uinit.exe
+ 2008-10-14 04:53 . 2010-11-06 00:25 63488 c:\windows\system32\dllcache\icardie.dll
- 2008-10-14 04:53 . 2010-01-05 09:57 63488 c:\windows\system32\dllcache\icardie.dll
+ 2007-08-13 16:42 . 2010-11-06 00:25 17408 c:\windows\system32\dllcache\corpol.dll
- 2007-08-13 16:42 . 2010-01-05 09:57 17408 c:\windows\system32\dllcache\corpol.dll
+ 2010-01-13 14:02 . 2010-01-13 14:02 86016 c:\windows\system32\dllcache\cabview.dll
+ 2010-03-05 14:42 . 2010-03-05 14:42 65536 c:\windows\system32\dllcache\asycfilt.dll
+ 2006-03-02 12:00 . 2010-01-13 14:02 86016 c:\windows\system32\cabview.dll
+ 2006-03-02 12:00 . 2010-03-05 14:42 65536 c:\windows\system32\asycfilt.dll
+ 2010-04-07 22:48 . 2010-04-07 22:48 32768 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.WasHosting.dll
- 2008-07-29 17:16 . 2008-07-29 17:16 32768 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.WasHosting.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13648 c:\windows\Microsoft.NET\Framework\v2.0.50727\sbscmp20_mscorlib.dll
+ 2010-09-22 08:43 . 2010-09-22 08:43 30544 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_wp.exe
+ 2009-11-07 00:07 . 2009-11-07 00:07 13648 c:\windows\Microsoft.NET\Framework\SharedReg12.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13648 c:\windows\Microsoft.NET\Framework\sbscmp20_perfcounter.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13648 c:\windows\Microsoft.NET\Framework\sbscmp20_mscorwks.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13648 c:\windows\Microsoft.NET\Framework\sbscmp10.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13664 c:\windows\Microsoft.NET\Framework\sbs_wminet_utils.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13688 c:\windows\Microsoft.NET\Framework\sbs_system.enterpriseservices.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13664 c:\windows\Microsoft.NET\Framework\sbs_system.data.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13696 c:\windows\Microsoft.NET\Framework\sbs_system.configuration.install.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13656 c:\windows\Microsoft.NET\Framework\sbs_mscorsec.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13656 c:\windows\Microsoft.NET\Framework\sbs_mscorrc.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13656 c:\windows\Microsoft.NET\Framework\sbs_mscordbi.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13672 c:\windows\Microsoft.NET\Framework\sbs_microsoft.jscript.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13664 c:\windows\Microsoft.NET\Framework\sbs_diasymreader.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 86864 c:\windows\Microsoft.NET\Framework\NETFXSBS10.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 23040 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\unbndico.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 23040 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\unbndico.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 61440 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\pubs.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 61440 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\pubs.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 27136 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\oisicon.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 27136 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\oisicon.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 11264 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\mspicons.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 11264 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\mspicons.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 86016 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\inficon.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 86016 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\inficon.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 12288 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\cagicon.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 12288 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2010-12-16 22:07 . 2010-12-16 22:07 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 44544 c:\windows\ie7updates\KB2416400-IE7\pngfilt.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 52224 c:\windows\ie7updates\KB2416400-IE7\msfeedsbs.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 27648 c:\windows\ie7updates\KB2416400-IE7\jsproxy.dll
+ 2010-12-16 22:00 . 2009-12-31 15:32 13824 c:\windows\ie7updates\KB2416400-IE7\ieudinit.exe
+ 2010-12-16 22:00 . 2010-01-05 09:58 44544 c:\windows\ie7updates\KB2416400-IE7\iernonce.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 78336 c:\windows\ie7updates\KB2416400-IE7\ieencode.dll
+ 2010-12-16 22:00 . 2009-12-31 15:32 70656 c:\windows\ie7updates\KB2416400-IE7\ie4uinit.exe
+ 2010-12-16 22:00 . 2010-01-05 09:57 63488 c:\windows\ie7updates\KB2416400-IE7\icardie.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 17408 c:\windows\ie7updates\KB2416400-IE7\corpol.dll
+ 2010-12-16 22:12 . 2010-12-16 22:12 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\115e3393cf9dfc1a2935dec399fd066d\UIAutomationProvider.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\a1e418cb2b949e801e98155753f6c64f\System.ComponentModel.DataAnnotations.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 82944 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn.Contra#\7ce2d10afab982a2d4996032be030842\System.AddIn.Contract.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\7fba90813e2b91309e8ad021e2483ad8\PresentationFontCache.ni.exe
+ 2010-12-16 22:09 . 2010-12-16 22:09 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\15d1b9906ea24d593510d38be32b4a49\PresentationFontCache.ni.exe
+ 2010-12-16 22:10 . 2010-12-16 22:10 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\f6391c4035fcf70e0e758c6c2a6edc92\PresentationCFFRasterizer.ni.dll
+ 2010-12-16 22:08 . 2010-12-16 22:08 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\9c1fa6496985c6f4164b4d9a8b226163\PresentationCFFRasterizer.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\f5edf2ebff0134d90217c90b90642c98\Microsoft.Build.Framework.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 65024 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\23596340d2359c652a60c20618960b5b\Microsoft.Build.Framework.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 14336 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\b790ca6f38493ecee140bf56470ce64d\dfsvc.ni.exe
+ 2010-12-16 22:14 . 2010-12-16 22:14 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\775f9f0da40c277eb7d460084858a2ac\Accessibility.ni.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2010-12-16 22:02 . 2010-12-16 22:02 32768 c:\windows\assembly\GAC_MSIL\System.ServiceModel.WasHosting\3.0.0.0__b77a5c561934e089\System.ServiceModel.WasHosting.dll
- 2010-08-02 17:01 . 2010-08-02 17:01 32768 c:\windows\assembly\GAC_MSIL\System.ServiceModel.WasHosting\3.0.0.0__b77a5c561934e089\System.ServiceModel.WasHosting.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2010-12-16 21:58 . 2010-12-16 21:58 16384 c:\windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll
+ 2010-12-16 21:58 . 2010-12-16 21:58 66936 c:\windows\assembly\GAC\Microsoft.Vbe.Interop\11.0.0.0__71e9bce111e9429c\Microsoft.Vbe.Interop.dll
+ 2010-12-16 21:58 . 2010-12-16 21:58 91488 c:\windows\assembly\GAC\Microsoft.Office.Interop.InfoPath.Xml\11.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.InfoPath.Xml.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2008-05-05 05:25 . 2010-08-27 01:43 5632 c:\windows\system32\xpsp4res.dll
- 2008-10-16 17:34 . 2010-02-19 17:34 4096 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 4096 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2010-12-16 22:09 . 2010-12-16 22:09 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2010-08-02 17:00 . 2010-08-02 17:00 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2010-12-16 21:58 . 2010-12-16 21:58 4096 c:\windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\msdatasrc.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2006-03-02 12:00 . 2009-12-24 07:04 177664 c:\windows\system32\wintrust.dll
+ 2006-03-02 12:00 . 2010-06-18 17:47 293376 c:\windows\system32\winsrv.dll
- 2006-03-02 12:00 . 2008-04-14 03:22 293376 c:\windows\system32\winsrv.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 233472 c:\windows\system32\webcheck.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 233472 c:\windows\system32\webcheck.dll
- 2006-03-02 12:00 . 2008-05-09 10:56 430080 c:\windows\system32\vbscript.dll
+ 2006-03-02 12:00 . 2010-03-09 11:11 430080 c:\windows\system32\vbscript.dll
+ 2006-03-02 12:00 . 2010-04-16 15:38 406016 c:\windows\system32\usp10.dll
- 2006-03-02 12:00 . 2008-04-14 03:22 406016 c:\windows\system32\usp10.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 105984 c:\windows\system32\url.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 105984 c:\windows\system32\url.dll
- 2006-03-02 12:00 . 2009-10-15 16:32 119808 c:\windows\system32\t2embed.dll
+ 2006-03-02 12:00 . 2010-08-27 08:03 119808 c:\windows\system32\t2embed.dll
+ 2006-03-02 12:00 . 2010-06-30 12:33 149504 c:\windows\system32\schannel.dll
+ 2006-03-02 12:00 . 2010-08-16 08:45 590848 c:\windows\system32\rpcrt4.dll
+ 2010-03-30 23:10 . 2010-03-30 23:10 295264 c:\windows\system32\PresentationHost.exe
- 2006-03-02 12:00 . 2010-12-16 18:44 121198 c:\windows\system32\perfh009.dat
+ 2006-03-02 12:00 . 2010-12-16 22:10 121198 c:\windows\system32\perfh009.dat
- 2006-03-02 12:00 . 2010-12-16 18:44 429018 c:\windows\system32\perfh005.dat
+ 2006-03-02 12:00 . 2010-12-16 22:10 429018 c:\windows\system32\perfh005.dat
+ 2006-03-02 12:00 . 2010-11-06 00:25 102912 c:\windows\system32\occache.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 102912 c:\windows\system32\occache.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 671232 c:\windows\system32\mstime.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 671232 c:\windows\system32\mstime.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 193024 c:\windows\system32\msrating.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 193024 c:\windows\system32\msrating.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 478208 c:\windows\system32\mshtmled.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 468480 c:\windows\system32\msfeeds.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 297808 c:\windows\system32\mscoree.dll
- 2006-10-18 19:47 . 2006-10-18 19:47 317440 c:\windows\system32\MP4SDECD.dll
+ 2006-10-18 19:47 . 2010-03-30 11:24 317440 c:\windows\system32\mp4sdecd.dll
+ 2008-10-13 15:09 . 2010-06-09 07:45 692736 c:\windows\system32\inetcomm.dll
+ 2007-08-13 16:34 . 2010-11-06 00:25 268288 c:\windows\system32\iertutil.dll
- 2007-08-13 16:34 . 2010-01-05 09:58 268288 c:\windows\system32\iertutil.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 192512 c:\windows\system32\iepeers.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 192512 c:\windows\system32\iepeers.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 384512 c:\windows\system32\iedkcs32.dll
- 2007-07-11 10:27 . 2010-01-05 09:57 380928 c:\windows\system32\ieapfltr.dll
+ 2007-07-11 10:27 . 2010-11-06 00:25 380928 c:\windows\system32\ieapfltr.dll
+ 2006-03-02 12:00 . 2010-10-18 11:06 161792 c:\windows\system32\ieakui.dll
- 2006-03-02 12:00 . 2009-12-18 13:04 161792 c:\windows\system32\ieakui.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 230400 c:\windows\system32\ieaksie.dll
- 2006-03-02 12:00 . 2010-01-05 09:57 230400 c:\windows\system32\ieaksie.dll
- 2006-03-02 12:00 . 2010-01-05 09:57 153088 c:\windows\system32\ieakeng.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 153088 c:\windows\system32\ieakeng.dll
+ 2008-10-13 16:57 . 2010-12-17 04:24 254272 c:\windows\system32\FNTCACHE.DAT
- 2008-10-13 16:57 . 2010-09-26 04:30 254272 c:\windows\system32\FNTCACHE.DAT
+ 2006-03-02 12:00 . 2010-11-06 00:25 133120 c:\windows\system32\extmgr.dll
- 2006-03-02 12:00 . 2010-01-05 09:57 133120 c:\windows\system32\extmgr.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 214528 c:\windows\system32\dxtrans.dll
- 2006-03-02 12:00 . 2010-01-05 09:57 214528 c:\windows\system32\dxtrans.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 347136 c:\windows\system32\dxtmsft.dll
- 2006-03-02 12:00 . 2010-01-05 09:57 347136 c:\windows\system32\dxtmsft.dll
+ 2006-03-02 12:00 . 2010-02-11 12:02 226880 c:\windows\system32\drivers\tcpip6.sys
+ 2006-03-02 12:00 . 2010-08-26 13:39 357248 c:\windows\system32\drivers\srv.sys
+ 2006-03-02 12:00 . 2010-02-24 13:11 455680 c:\windows\system32\drivers\mrxsmb.sys
+ 2009-04-20 15:51 . 2010-07-16 11:58 219136 c:\windows\system32\dllcache\wordpad.exe
+ 2009-12-24 07:04 . 2009-12-24 07:04 177664 c:\windows\system32\dllcache\wintrust.dll
+ 2010-06-18 17:47 . 2010-06-18 17:47 293376 c:\windows\system32\dllcache\winsrv.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 832512 c:\windows\system32\dllcache\wininet.dll
- 2007-08-13 16:54 . 2010-01-05 09:58 832512 c:\windows\system32\dllcache\wininet.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 233472 c:\windows\system32\dllcache\webcheck.dll
- 2007-08-13 16:54 . 2010-01-05 09:58 233472 c:\windows\system32\dllcache\webcheck.dll
+ 2007-08-13 16:54 . 2010-03-09 11:11 430080 c:\windows\system32\dllcache\vbscript.dll
- 2007-08-13 16:54 . 2008-05-09 10:56 430080 c:\windows\system32\dllcache\vbscript.dll
+ 2010-04-16 15:38 . 2010-04-16 15:38 406016 c:\windows\system32\dllcache\usp10.dll
- 2007-08-13 16:44 . 2010-01-05 09:58 105984 c:\windows\system32\dllcache\url.dll
+ 2007-08-13 16:44 . 2010-11-06 00:25 105984 c:\windows\system32\dllcache\url.dll
+ 2008-06-20 11:08 . 2010-02-11 12:02 226880 c:\windows\system32\dllcache\tcpip6.sys
+ 2009-06-16 14:40 . 2010-08-27 08:03 119808 c:\windows\system32\dllcache\t2embed.dll
- 2009-06-16 14:40 . 2009-10-15 16:32 119808 c:\windows\system32\dllcache\t2embed.dll
+ 2008-10-15 10:57 . 2010-08-26 13:39 357248 c:\windows\system32\dllcache\srv.sys
+ 2008-12-05 06:57 . 2010-06-30 12:33 149504 c:\windows\system32\dllcache\schannel.dll
+ 2009-04-15 14:54 . 2010-08-16 08:45 590848 c:\windows\system32\dllcache\rpcrt4.dll
- 2007-08-13 16:44 . 2010-01-05 09:58 102912 c:\windows\system32\dllcache\occache.dll
+ 2007-08-13 16:44 . 2010-11-06 00:25 102912 c:\windows\system32\dllcache\occache.dll
- 2007-08-13 16:54 . 2010-01-05 09:58 671232 c:\windows\system32\dllcache\mstime.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 671232 c:\windows\system32\dllcache\mstime.dll
+ 2007-08-13 16:44 . 2010-11-06 00:25 193024 c:\windows\system32\dllcache\msrating.dll
- 2007-08-13 16:44 . 2010-01-05 09:58 193024 c:\windows\system32\dllcache\msrating.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 478208 c:\windows\system32\dllcache\mshtmled.dll
+ 2008-10-14 04:53 . 2010-11-06 00:25 468480 c:\windows\system32\dllcache\msfeeds.dll
+ 2008-11-12 13:28 . 2010-02-24 13:11 455680 c:\windows\system32\dllcache\mrxsmb.sys
+ 2010-03-30 11:24 . 2010-03-30 11:24 317440 c:\windows\system32\dllcache\mp4sdecd.dll
+ 2010-09-18 11:23 . 2010-09-18 11:23 974848 c:\windows\system32\dllcache\mfc42u.dll
+ 2006-03-02 12:00 . 2010-09-18 06:53 954368 c:\windows\system32\dllcache\mfc40.dll
+ 2008-10-13 16:09 . 2010-06-09 07:45 692736 c:\windows\system32\dllcache\inetcomm.dll
- 2008-10-13 15:09 . 2009-12-18 13:05 634648 c:\windows\system32\dllcache\iexplore.exe
+ 2008-10-13 15:09 . 2010-10-18 11:07 634648 c:\windows\system32\dllcache\iexplore.exe
- 2008-10-14 04:53 . 2010-01-05 09:58 268288 c:\windows\system32\dllcache\iertutil.dll
+ 2008-10-14 04:53 . 2010-11-06 00:25 268288 c:\windows\system32\dllcache\iertutil.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 192512 c:\windows\system32\dllcache\iepeers.dll
- 2007-08-13 16:54 . 2010-01-05 09:58 192512 c:\windows\system32\dllcache\iepeers.dll
+ 2007-08-13 16:39 . 2010-11-06 00:25 384512 c:\windows\system32\dllcache\iedkcs32.dll
+ 2008-10-14 04:53 . 2010-11-06 00:25 380928 c:\windows\system32\dllcache\ieapfltr.dll
- 2008-10-14 04:53 . 2010-01-05 09:57 380928 c:\windows\system32\dllcache\ieapfltr.dll
+ 2006-03-02 12:00 . 2010-10-18 11:06 161792 c:\windows\system32\dllcache\ieakui.dll
- 2006-03-02 12:00 . 2009-12-18 13:04 161792 c:\windows\system32\dllcache\ieakui.dll
- 2007-08-13 16:39 . 2010-01-05 09:57 230400 c:\windows\system32\dllcache\ieaksie.dll
+ 2007-08-13 16:39 . 2010-11-06 00:25 230400 c:\windows\system32\dllcache\ieaksie.dll
+ 2007-08-13 16:39 . 2010-11-06 00:25 153088 c:\windows\system32\dllcache\ieakeng.dll
- 2007-08-13 16:39 . 2010-01-05 09:57 153088 c:\windows\system32\dllcache\ieakeng.dll
- 2007-08-13 16:54 . 2010-01-05 09:57 133120 c:\windows\system32\dllcache\extmgr.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 133120 c:\windows\system32\dllcache\extmgr.dll
- 2007-08-13 16:35 . 2010-01-05 09:57 214528 c:\windows\system32\dllcache\dxtrans.dll
+ 2007-08-13 16:35 . 2010-11-06 00:25 214528 c:\windows\system32\dllcache\dxtrans.dll
+ 2007-08-13 16:35 . 2010-11-06 00:25 347136 c:\windows\system32\dllcache\dxtmsft.dll
- 2007-08-13 16:35 . 2010-01-05 09:57 347136 c:\windows\system32\dllcache\dxtmsft.dll
+ 2010-10-28 13:09 . 2010-10-28 13:09 290048 c:\windows\system32\dllcache\atmfd.dll
+ 2007-08-13 16:39 . 2010-11-06 00:25 124928 c:\windows\system32\dllcache\advpack.dll
- 2007-08-13 16:39 . 2010-01-05 09:57 124928 c:\windows\system32\dllcache\advpack.dll
+ 2010-02-12 04:35 . 2010-02-12 04:35 100864 c:\windows\system32\dllcache\6to4svc.dll
- 2006-03-02 12:00 . 2008-04-14 03:21 617472 c:\windows\system32\comctl32.dll
+ 2006-03-02 12:00 . 2010-08-23 16:12 617472 c:\windows\system32\comctl32.dll
- 2006-03-02 12:00 . 2010-01-05 09:57 124928 c:\windows\system32\advpack.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 124928 c:\windows\system32\advpack.dll
+ 2006-03-02 12:00 . 2010-02-12 04:35 100864 c:\windows\system32\6to4svc.dll
+ 2008-10-13 15:09 . 2010-06-14 14:31 744448 c:\windows\pchealth\helpctr\binaries\helpsvc.exe
- 2008-10-13 15:09 . 2008-04-14 03:22 744448 c:\windows\pchealth\helpctr\binaries\helpsvc.exe
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1594 [GMT 1:00]
Spuštěný z: c:\documents and settings\Lukas\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Lukas\Plocha\CFscript.txt
FW: AVG Firewall *Disabled* {8decf618-9569-4340-b34a-d78d28969b66}
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
FILE ::
"c:\windows\system32\gggggg"
"c:\windows\system32\ntcore.dll1"
"c:\windows\system32\oermwt.dll"
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\system32\gggggg
c:\windows\system32\ntcore.dll1
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_FADPU16E
-------\Legacy_NEROREGINCDSRV
-------\Legacy_QE3U35T6J8ONYI
-------\Service_brlcjlhy
-------\Service_dwnmxnxj
-------\Service_Fadpu16E
-------\Service_foypsryv
-------\Service_klzyjfxf
-------\Service_nclnljvr
-------\Service_nctqyrzh
-------\Service_NeroRegInCDSrv
-------\Service_oheldpxj
-------\Service_qe3u35t6j8onyi
-------\Service_qjgjatau
-------\Service_selhnuxp
-------\Service_sidtjdxj
-------\Service_vuxzkggr
-------\Service_wzeuchai
-------\Service_znetacxx
((((((((((((((((((((((((( Soubory vytvořené od 2010-11-17 do 2010-12-17 )))))))))))))))))))))))))))))))
.
2010-12-16 21:39 . 2010-12-16 21:39 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\Apple
2010-12-16 21:36 . 2010-09-18 06:53 974848 -c----w- c:\windows\system32\dllcache\mfc42.dll
2010-12-16 21:36 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2010-12-16 21:36 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2010-12-16 21:36 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2010-12-16 21:35 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2010-12-16 21:35 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2010-12-16 21:33 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2010-12-16 21:32 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2010-12-16 17:52 . 2010-12-16 17:52 -------- d-----w- C:\$AVG
2010-12-16 17:28 . 2010-12-16 17:28 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\Mozilla
2010-12-13 12:01 . 2010-12-13 12:01 -------- d--h--w- c:\documents and settings\All Users\Data aplikací\Common Files
2010-12-13 10:55 . 2010-12-13 10:55 -------- d-----w- c:\documents and settings\Lukas\Data aplikací\AVG10
2010-12-13 10:18 . 2010-12-16 21:06 -------- d-----w- c:\documents and settings\All Users\Data aplikací\MFAData
2010-12-10 11:37 . 2010-12-10 11:37 -------- d-----w- c:\program files\CCleaner
2010-12-10 11:21 . 2001-10-24 10:54 12160 -c--a-w- c:\windows\system32\dllcache\mouhid.sys
2010-12-10 11:21 . 2001-10-24 10:54 12160 ----a-w- c:\windows\system32\drivers\mouhid.sys
2010-12-10 11:21 . 2008-04-13 19:45 10368 -c--a-w- c:\windows\system32\dllcache\hidusb.sys
2010-12-10 11:21 . 2008-04-13 19:45 10368 ----a-w- c:\windows\system32\drivers\hidusb.sys
2010-12-06 15:37 . 2010-12-06 15:37 -------- d-----r- c:\documents and settings\LocalService\Oblíbené položky
2010-12-02 03:35 . 2010-12-02 03:35 4280320 ----a-w- c:\windows\system32\GPhotos.scr
2010-11-18 18:15 . 2010-11-18 18:15 81920 -c----w- c:\windows\system32\dllcache\isign32.dll
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-12-17 04:38 . 2008-10-13 15:33 196608 ----a-w- c:\windows\system32\drivers\nStandard.bin
2010-12-13 12:42 . 2008-10-13 16:50 98304 ----a-w- c:\windows\DUMP704e.tmp
2010-11-18 18:15 . 2008-10-13 15:09 81920 ----a-w- c:\windows\system32\isign32.dll
2010-11-06 00:25 . 2006-03-02 12:00 832512 ----a-w- c:\windows\system32\wininet.dll
2010-11-06 00:25 . 2009-05-01 09:16 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-11-06 00:25 . 2006-03-02 12:00 1830912 ----a-w- c:\windows\system32\inetcpl.cpl
2010-11-06 00:25 . 2006-03-02 12:00 17408 ----a-w- c:\windows\system32\corpol.dll
2010-11-03 12:25 . 2006-03-02 12:00 389120 ----a-w- c:\windows\system32\html.iec
2010-11-02 15:17 . 2006-03-02 12:00 40960 ----a-w- c:\windows\system32\drivers\ndproxy.sys
2010-10-28 13:09 . 2006-03-02 12:00 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-10-26 13:58 . 2006-03-02 12:00 1853312 ----a-w- c:\windows\system32\win32k.sys
2010-09-27 12:56 . 2009-03-07 09:55 98304 ----a-w- c:\windows\system32\CmdLineExt.dll
2010-09-18 11:23 . 2006-03-02 12:00 974848 ----a-w- c:\windows\system32\mfc42u.dll
2010-09-18 06:53 . 2006-03-02 12:00 974848 ----a-w- c:\windows\system32\mfc42.dll
2010-09-18 06:53 . 2006-03-02 12:00 954368 ----a-w- c:\windows\system32\mfc40.dll
2010-09-18 06:53 . 2006-03-02 12:00 953856 ----a-w- c:\windows\system32\mfc40u.dll
2008-10-31 18:25 . 2008-10-31 18:25 5862994 ----a-w- c:\program files\ts2_client_rc2_2032.exe
2008-10-18 07:20 . 2008-10-18 07:19 4653240 ----a-w- c:\program files\flashget196en.exe
.
((((((((((((((((((((((((((((( SnapShot@2010-12-16_21.27.12 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-12-17 06:21 . 2010-12-17 06:21 16384 c:\windows\temp\Perflib_Perfdata_6f4.dat
- 2008-04-14 03:22 . 2009-10-28 15:07 46080 c:\windows\system32\tzchange.exe
+ 2008-04-14 03:22 . 2010-11-03 13:12 46080 c:\windows\system32\tzchange.exe
+ 2006-03-02 12:00 . 2010-08-27 05:54 99840 c:\windows\system32\srvsvc.dll
+ 2006-03-02 12:00 . 2010-08-17 13:17 58880 c:\windows\system32\spoolsv.exe
+ 2010-12-16 21:57 . 2010-02-22 14:20 18296 c:\windows\system32\spmsg.dll
+ 2010-03-30 23:16 . 2010-03-30 23:16 99176 c:\windows\system32\PresentationHostProxy.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 44544 c:\windows\system32\pngfilt.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 44544 c:\windows\system32\pngfilt.dll
- 2006-03-02 12:00 . 2010-12-16 18:44 27574 c:\windows\system32\perfc009.dat
+ 2006-03-02 12:00 . 2010-12-16 22:10 27574 c:\windows\system32\perfc009.dat
+ 2006-03-02 12:00 . 2010-12-16 22:10 78030 c:\windows\system32\perfc005.dat
- 2006-03-02 12:00 . 2010-12-16 18:44 78030 c:\windows\system32\perfc005.dat
+ 2009-11-07 00:07 . 2009-11-07 00:07 49488 c:\windows\system32\netfxperf.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 11600 c:\windows\system32\mui\0409\mscorees.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 52224 c:\windows\system32\msfeedsbs.dll
- 2007-08-13 16:54 . 2010-01-05 09:58 52224 c:\windows\system32\msfeedsbs.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 27648 c:\windows\system32\jsproxy.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 27648 c:\windows\system32\jsproxy.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 44544 c:\windows\system32\iernonce.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 44544 c:\windows\system32\iernonce.dll
+ 2006-03-02 12:00 . 2010-11-03 12:24 70656 c:\windows\system32\ie4uinit.exe
- 2006-03-02 12:00 . 2009-12-31 15:32 70656 c:\windows\system32\ie4uinit.exe
- 2006-03-02 12:00 . 2008-04-14 03:21 80384 c:\windows\system32\iccvid.dll
+ 2006-03-02 12:00 . 2010-06-17 14:03 80384 c:\windows\system32\iccvid.dll
+ 2007-08-13 16:36 . 2010-11-06 00:25 63488 c:\windows\system32\icardie.dll
- 2007-08-13 16:36 . 2010-01-05 09:57 63488 c:\windows\system32\icardie.dll
+ 2010-08-27 05:54 . 2010-08-27 05:54 99840 c:\windows\system32\dllcache\srvsvc.dll
+ 2010-08-17 13:17 . 2010-08-17 13:17 58880 c:\windows\system32\dllcache\spoolsv.exe
- 2007-08-13 16:36 . 2010-01-05 09:58 44544 c:\windows\system32\dllcache\pngfilt.dll
+ 2007-08-13 16:36 . 2010-11-06 00:25 44544 c:\windows\system32\dllcache\pngfilt.dll
+ 2008-10-14 04:53 . 2010-11-06 00:25 52224 c:\windows\system32\dllcache\msfeedsbs.dll
- 2008-10-14 04:53 . 2010-01-05 09:58 52224 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 27648 c:\windows\system32\dllcache\jsproxy.dll
- 2007-08-13 16:54 . 2010-01-05 09:58 27648 c:\windows\system32\dllcache\jsproxy.dll
+ 2008-10-14 04:53 . 2010-11-03 12:24 13824 c:\windows\system32\dllcache\ieudinit.exe
- 2008-10-14 04:53 . 2009-12-31 15:32 13824 c:\windows\system32\dllcache\ieudinit.exe
- 2007-08-13 16:39 . 2010-01-05 09:58 44544 c:\windows\system32\dllcache\iernonce.dll
+ 2007-08-13 16:39 . 2010-11-06 00:25 44544 c:\windows\system32\dllcache\iernonce.dll
+ 2009-05-01 09:16 . 2010-11-06 00:25 78336 c:\windows\system32\dllcache\ieencode.dll
- 2009-05-01 09:16 . 2010-01-05 09:57 78336 c:\windows\system32\dllcache\ieencode.dll
+ 2007-08-13 16:39 . 2010-11-03 12:24 70656 c:\windows\system32\dllcache\ie4uinit.exe
- 2007-08-13 16:39 . 2009-12-31 15:32 70656 c:\windows\system32\dllcache\ie4uinit.exe
+ 2008-10-14 04:53 . 2010-11-06 00:25 63488 c:\windows\system32\dllcache\icardie.dll
- 2008-10-14 04:53 . 2010-01-05 09:57 63488 c:\windows\system32\dllcache\icardie.dll
+ 2007-08-13 16:42 . 2010-11-06 00:25 17408 c:\windows\system32\dllcache\corpol.dll
- 2007-08-13 16:42 . 2010-01-05 09:57 17408 c:\windows\system32\dllcache\corpol.dll
+ 2010-01-13 14:02 . 2010-01-13 14:02 86016 c:\windows\system32\dllcache\cabview.dll
+ 2010-03-05 14:42 . 2010-03-05 14:42 65536 c:\windows\system32\dllcache\asycfilt.dll
+ 2006-03-02 12:00 . 2010-01-13 14:02 86016 c:\windows\system32\cabview.dll
+ 2006-03-02 12:00 . 2010-03-05 14:42 65536 c:\windows\system32\asycfilt.dll
+ 2010-04-07 22:48 . 2010-04-07 22:48 32768 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.WasHosting.dll
- 2008-07-29 17:16 . 2008-07-29 17:16 32768 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.WasHosting.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13648 c:\windows\Microsoft.NET\Framework\v2.0.50727\sbscmp20_mscorlib.dll
+ 2010-09-22 08:43 . 2010-09-22 08:43 30544 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_wp.exe
+ 2009-11-07 00:07 . 2009-11-07 00:07 13648 c:\windows\Microsoft.NET\Framework\SharedReg12.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13648 c:\windows\Microsoft.NET\Framework\sbscmp20_perfcounter.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13648 c:\windows\Microsoft.NET\Framework\sbscmp20_mscorwks.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13648 c:\windows\Microsoft.NET\Framework\sbscmp10.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13664 c:\windows\Microsoft.NET\Framework\sbs_wminet_utils.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13688 c:\windows\Microsoft.NET\Framework\sbs_system.enterpriseservices.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13664 c:\windows\Microsoft.NET\Framework\sbs_system.data.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13696 c:\windows\Microsoft.NET\Framework\sbs_system.configuration.install.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13656 c:\windows\Microsoft.NET\Framework\sbs_mscorsec.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13656 c:\windows\Microsoft.NET\Framework\sbs_mscorrc.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13656 c:\windows\Microsoft.NET\Framework\sbs_mscordbi.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13672 c:\windows\Microsoft.NET\Framework\sbs_microsoft.jscript.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 13664 c:\windows\Microsoft.NET\Framework\sbs_diasymreader.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 86864 c:\windows\Microsoft.NET\Framework\NETFXSBS10.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 23040 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\unbndico.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 23040 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\unbndico.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 61440 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\pubs.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 61440 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\pubs.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 27136 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\oisicon.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 27136 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\oisicon.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 11264 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\mspicons.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 11264 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\mspicons.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 86016 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\inficon.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 86016 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\inficon.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 12288 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\cagicon.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 12288 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2010-12-16 22:07 . 2010-12-16 22:07 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 44544 c:\windows\ie7updates\KB2416400-IE7\pngfilt.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 52224 c:\windows\ie7updates\KB2416400-IE7\msfeedsbs.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 27648 c:\windows\ie7updates\KB2416400-IE7\jsproxy.dll
+ 2010-12-16 22:00 . 2009-12-31 15:32 13824 c:\windows\ie7updates\KB2416400-IE7\ieudinit.exe
+ 2010-12-16 22:00 . 2010-01-05 09:58 44544 c:\windows\ie7updates\KB2416400-IE7\iernonce.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 78336 c:\windows\ie7updates\KB2416400-IE7\ieencode.dll
+ 2010-12-16 22:00 . 2009-12-31 15:32 70656 c:\windows\ie7updates\KB2416400-IE7\ie4uinit.exe
+ 2010-12-16 22:00 . 2010-01-05 09:57 63488 c:\windows\ie7updates\KB2416400-IE7\icardie.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 17408 c:\windows\ie7updates\KB2416400-IE7\corpol.dll
+ 2010-12-16 22:12 . 2010-12-16 22:12 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\115e3393cf9dfc1a2935dec399fd066d\UIAutomationProvider.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\a1e418cb2b949e801e98155753f6c64f\System.ComponentModel.DataAnnotations.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 82944 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn.Contra#\7ce2d10afab982a2d4996032be030842\System.AddIn.Contract.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\7fba90813e2b91309e8ad021e2483ad8\PresentationFontCache.ni.exe
+ 2010-12-16 22:09 . 2010-12-16 22:09 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\15d1b9906ea24d593510d38be32b4a49\PresentationFontCache.ni.exe
+ 2010-12-16 22:10 . 2010-12-16 22:10 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\f6391c4035fcf70e0e758c6c2a6edc92\PresentationCFFRasterizer.ni.dll
+ 2010-12-16 22:08 . 2010-12-16 22:08 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\9c1fa6496985c6f4164b4d9a8b226163\PresentationCFFRasterizer.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\f5edf2ebff0134d90217c90b90642c98\Microsoft.Build.Framework.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 65024 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\23596340d2359c652a60c20618960b5b\Microsoft.Build.Framework.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 14336 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\b790ca6f38493ecee140bf56470ce64d\dfsvc.ni.exe
+ 2010-12-16 22:14 . 2010-12-16 22:14 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\775f9f0da40c277eb7d460084858a2ac\Accessibility.ni.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2010-12-16 22:02 . 2010-12-16 22:02 32768 c:\windows\assembly\GAC_MSIL\System.ServiceModel.WasHosting\3.0.0.0__b77a5c561934e089\System.ServiceModel.WasHosting.dll
- 2010-08-02 17:01 . 2010-08-02 17:01 32768 c:\windows\assembly\GAC_MSIL\System.ServiceModel.WasHosting\3.0.0.0__b77a5c561934e089\System.ServiceModel.WasHosting.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2010-12-16 21:58 . 2010-12-16 21:58 16384 c:\windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll
+ 2010-12-16 21:58 . 2010-12-16 21:58 66936 c:\windows\assembly\GAC\Microsoft.Vbe.Interop\11.0.0.0__71e9bce111e9429c\Microsoft.Vbe.Interop.dll
+ 2010-12-16 21:58 . 2010-12-16 21:58 91488 c:\windows\assembly\GAC\Microsoft.Office.Interop.InfoPath.Xml\11.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.InfoPath.Xml.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2008-05-05 05:25 . 2010-08-27 01:43 5632 c:\windows\system32\xpsp4res.dll
- 2008-10-16 17:34 . 2010-02-19 17:34 4096 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 4096 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2010-12-16 22:09 . 2010-12-16 22:09 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2010-08-02 17:00 . 2010-08-02 17:00 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2010-12-16 21:58 . 2010-12-16 21:58 4096 c:\windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\msdatasrc.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2006-03-02 12:00 . 2009-12-24 07:04 177664 c:\windows\system32\wintrust.dll
+ 2006-03-02 12:00 . 2010-06-18 17:47 293376 c:\windows\system32\winsrv.dll
- 2006-03-02 12:00 . 2008-04-14 03:22 293376 c:\windows\system32\winsrv.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 233472 c:\windows\system32\webcheck.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 233472 c:\windows\system32\webcheck.dll
- 2006-03-02 12:00 . 2008-05-09 10:56 430080 c:\windows\system32\vbscript.dll
+ 2006-03-02 12:00 . 2010-03-09 11:11 430080 c:\windows\system32\vbscript.dll
+ 2006-03-02 12:00 . 2010-04-16 15:38 406016 c:\windows\system32\usp10.dll
- 2006-03-02 12:00 . 2008-04-14 03:22 406016 c:\windows\system32\usp10.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 105984 c:\windows\system32\url.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 105984 c:\windows\system32\url.dll
- 2006-03-02 12:00 . 2009-10-15 16:32 119808 c:\windows\system32\t2embed.dll
+ 2006-03-02 12:00 . 2010-08-27 08:03 119808 c:\windows\system32\t2embed.dll
+ 2006-03-02 12:00 . 2010-06-30 12:33 149504 c:\windows\system32\schannel.dll
+ 2006-03-02 12:00 . 2010-08-16 08:45 590848 c:\windows\system32\rpcrt4.dll
+ 2010-03-30 23:10 . 2010-03-30 23:10 295264 c:\windows\system32\PresentationHost.exe
- 2006-03-02 12:00 . 2010-12-16 18:44 121198 c:\windows\system32\perfh009.dat
+ 2006-03-02 12:00 . 2010-12-16 22:10 121198 c:\windows\system32\perfh009.dat
- 2006-03-02 12:00 . 2010-12-16 18:44 429018 c:\windows\system32\perfh005.dat
+ 2006-03-02 12:00 . 2010-12-16 22:10 429018 c:\windows\system32\perfh005.dat
+ 2006-03-02 12:00 . 2010-11-06 00:25 102912 c:\windows\system32\occache.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 102912 c:\windows\system32\occache.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 671232 c:\windows\system32\mstime.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 671232 c:\windows\system32\mstime.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 193024 c:\windows\system32\msrating.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 193024 c:\windows\system32\msrating.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 478208 c:\windows\system32\mshtmled.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 468480 c:\windows\system32\msfeeds.dll
+ 2009-11-07 00:07 . 2009-11-07 00:07 297808 c:\windows\system32\mscoree.dll
- 2006-10-18 19:47 . 2006-10-18 19:47 317440 c:\windows\system32\MP4SDECD.dll
+ 2006-10-18 19:47 . 2010-03-30 11:24 317440 c:\windows\system32\mp4sdecd.dll
+ 2008-10-13 15:09 . 2010-06-09 07:45 692736 c:\windows\system32\inetcomm.dll
+ 2007-08-13 16:34 . 2010-11-06 00:25 268288 c:\windows\system32\iertutil.dll
- 2007-08-13 16:34 . 2010-01-05 09:58 268288 c:\windows\system32\iertutil.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 192512 c:\windows\system32\iepeers.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 192512 c:\windows\system32\iepeers.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 384512 c:\windows\system32\iedkcs32.dll
- 2007-07-11 10:27 . 2010-01-05 09:57 380928 c:\windows\system32\ieapfltr.dll
+ 2007-07-11 10:27 . 2010-11-06 00:25 380928 c:\windows\system32\ieapfltr.dll
+ 2006-03-02 12:00 . 2010-10-18 11:06 161792 c:\windows\system32\ieakui.dll
- 2006-03-02 12:00 . 2009-12-18 13:04 161792 c:\windows\system32\ieakui.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 230400 c:\windows\system32\ieaksie.dll
- 2006-03-02 12:00 . 2010-01-05 09:57 230400 c:\windows\system32\ieaksie.dll
- 2006-03-02 12:00 . 2010-01-05 09:57 153088 c:\windows\system32\ieakeng.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 153088 c:\windows\system32\ieakeng.dll
+ 2008-10-13 16:57 . 2010-12-17 04:24 254272 c:\windows\system32\FNTCACHE.DAT
- 2008-10-13 16:57 . 2010-09-26 04:30 254272 c:\windows\system32\FNTCACHE.DAT
+ 2006-03-02 12:00 . 2010-11-06 00:25 133120 c:\windows\system32\extmgr.dll
- 2006-03-02 12:00 . 2010-01-05 09:57 133120 c:\windows\system32\extmgr.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 214528 c:\windows\system32\dxtrans.dll
- 2006-03-02 12:00 . 2010-01-05 09:57 214528 c:\windows\system32\dxtrans.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 347136 c:\windows\system32\dxtmsft.dll
- 2006-03-02 12:00 . 2010-01-05 09:57 347136 c:\windows\system32\dxtmsft.dll
+ 2006-03-02 12:00 . 2010-02-11 12:02 226880 c:\windows\system32\drivers\tcpip6.sys
+ 2006-03-02 12:00 . 2010-08-26 13:39 357248 c:\windows\system32\drivers\srv.sys
+ 2006-03-02 12:00 . 2010-02-24 13:11 455680 c:\windows\system32\drivers\mrxsmb.sys
+ 2009-04-20 15:51 . 2010-07-16 11:58 219136 c:\windows\system32\dllcache\wordpad.exe
+ 2009-12-24 07:04 . 2009-12-24 07:04 177664 c:\windows\system32\dllcache\wintrust.dll
+ 2010-06-18 17:47 . 2010-06-18 17:47 293376 c:\windows\system32\dllcache\winsrv.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 832512 c:\windows\system32\dllcache\wininet.dll
- 2007-08-13 16:54 . 2010-01-05 09:58 832512 c:\windows\system32\dllcache\wininet.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 233472 c:\windows\system32\dllcache\webcheck.dll
- 2007-08-13 16:54 . 2010-01-05 09:58 233472 c:\windows\system32\dllcache\webcheck.dll
+ 2007-08-13 16:54 . 2010-03-09 11:11 430080 c:\windows\system32\dllcache\vbscript.dll
- 2007-08-13 16:54 . 2008-05-09 10:56 430080 c:\windows\system32\dllcache\vbscript.dll
+ 2010-04-16 15:38 . 2010-04-16 15:38 406016 c:\windows\system32\dllcache\usp10.dll
- 2007-08-13 16:44 . 2010-01-05 09:58 105984 c:\windows\system32\dllcache\url.dll
+ 2007-08-13 16:44 . 2010-11-06 00:25 105984 c:\windows\system32\dllcache\url.dll
+ 2008-06-20 11:08 . 2010-02-11 12:02 226880 c:\windows\system32\dllcache\tcpip6.sys
+ 2009-06-16 14:40 . 2010-08-27 08:03 119808 c:\windows\system32\dllcache\t2embed.dll
- 2009-06-16 14:40 . 2009-10-15 16:32 119808 c:\windows\system32\dllcache\t2embed.dll
+ 2008-10-15 10:57 . 2010-08-26 13:39 357248 c:\windows\system32\dllcache\srv.sys
+ 2008-12-05 06:57 . 2010-06-30 12:33 149504 c:\windows\system32\dllcache\schannel.dll
+ 2009-04-15 14:54 . 2010-08-16 08:45 590848 c:\windows\system32\dllcache\rpcrt4.dll
- 2007-08-13 16:44 . 2010-01-05 09:58 102912 c:\windows\system32\dllcache\occache.dll
+ 2007-08-13 16:44 . 2010-11-06 00:25 102912 c:\windows\system32\dllcache\occache.dll
- 2007-08-13 16:54 . 2010-01-05 09:58 671232 c:\windows\system32\dllcache\mstime.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 671232 c:\windows\system32\dllcache\mstime.dll
+ 2007-08-13 16:44 . 2010-11-06 00:25 193024 c:\windows\system32\dllcache\msrating.dll
- 2007-08-13 16:44 . 2010-01-05 09:58 193024 c:\windows\system32\dllcache\msrating.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 478208 c:\windows\system32\dllcache\mshtmled.dll
+ 2008-10-14 04:53 . 2010-11-06 00:25 468480 c:\windows\system32\dllcache\msfeeds.dll
+ 2008-11-12 13:28 . 2010-02-24 13:11 455680 c:\windows\system32\dllcache\mrxsmb.sys
+ 2010-03-30 11:24 . 2010-03-30 11:24 317440 c:\windows\system32\dllcache\mp4sdecd.dll
+ 2010-09-18 11:23 . 2010-09-18 11:23 974848 c:\windows\system32\dllcache\mfc42u.dll
+ 2006-03-02 12:00 . 2010-09-18 06:53 954368 c:\windows\system32\dllcache\mfc40.dll
+ 2008-10-13 16:09 . 2010-06-09 07:45 692736 c:\windows\system32\dllcache\inetcomm.dll
- 2008-10-13 15:09 . 2009-12-18 13:05 634648 c:\windows\system32\dllcache\iexplore.exe
+ 2008-10-13 15:09 . 2010-10-18 11:07 634648 c:\windows\system32\dllcache\iexplore.exe
- 2008-10-14 04:53 . 2010-01-05 09:58 268288 c:\windows\system32\dllcache\iertutil.dll
+ 2008-10-14 04:53 . 2010-11-06 00:25 268288 c:\windows\system32\dllcache\iertutil.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 192512 c:\windows\system32\dllcache\iepeers.dll
- 2007-08-13 16:54 . 2010-01-05 09:58 192512 c:\windows\system32\dllcache\iepeers.dll
+ 2007-08-13 16:39 . 2010-11-06 00:25 384512 c:\windows\system32\dllcache\iedkcs32.dll
+ 2008-10-14 04:53 . 2010-11-06 00:25 380928 c:\windows\system32\dllcache\ieapfltr.dll
- 2008-10-14 04:53 . 2010-01-05 09:57 380928 c:\windows\system32\dllcache\ieapfltr.dll
+ 2006-03-02 12:00 . 2010-10-18 11:06 161792 c:\windows\system32\dllcache\ieakui.dll
- 2006-03-02 12:00 . 2009-12-18 13:04 161792 c:\windows\system32\dllcache\ieakui.dll
- 2007-08-13 16:39 . 2010-01-05 09:57 230400 c:\windows\system32\dllcache\ieaksie.dll
+ 2007-08-13 16:39 . 2010-11-06 00:25 230400 c:\windows\system32\dllcache\ieaksie.dll
+ 2007-08-13 16:39 . 2010-11-06 00:25 153088 c:\windows\system32\dllcache\ieakeng.dll
- 2007-08-13 16:39 . 2010-01-05 09:57 153088 c:\windows\system32\dllcache\ieakeng.dll
- 2007-08-13 16:54 . 2010-01-05 09:57 133120 c:\windows\system32\dllcache\extmgr.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 133120 c:\windows\system32\dllcache\extmgr.dll
- 2007-08-13 16:35 . 2010-01-05 09:57 214528 c:\windows\system32\dllcache\dxtrans.dll
+ 2007-08-13 16:35 . 2010-11-06 00:25 214528 c:\windows\system32\dllcache\dxtrans.dll
+ 2007-08-13 16:35 . 2010-11-06 00:25 347136 c:\windows\system32\dllcache\dxtmsft.dll
- 2007-08-13 16:35 . 2010-01-05 09:57 347136 c:\windows\system32\dllcache\dxtmsft.dll
+ 2010-10-28 13:09 . 2010-10-28 13:09 290048 c:\windows\system32\dllcache\atmfd.dll
+ 2007-08-13 16:39 . 2010-11-06 00:25 124928 c:\windows\system32\dllcache\advpack.dll
- 2007-08-13 16:39 . 2010-01-05 09:57 124928 c:\windows\system32\dllcache\advpack.dll
+ 2010-02-12 04:35 . 2010-02-12 04:35 100864 c:\windows\system32\dllcache\6to4svc.dll
- 2006-03-02 12:00 . 2008-04-14 03:21 617472 c:\windows\system32\comctl32.dll
+ 2006-03-02 12:00 . 2010-08-23 16:12 617472 c:\windows\system32\comctl32.dll
- 2006-03-02 12:00 . 2010-01-05 09:57 124928 c:\windows\system32\advpack.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 124928 c:\windows\system32\advpack.dll
+ 2006-03-02 12:00 . 2010-02-12 04:35 100864 c:\windows\system32\6to4svc.dll
+ 2008-10-13 15:09 . 2010-06-14 14:31 744448 c:\windows\pchealth\helpctr\binaries\helpsvc.exe
- 2008-10-13 15:09 . 2008-04-14 03:22 744448 c:\windows\pchealth\helpctr\binaries\helpsvc.exe
-
superman
- Návštěvník
- Příspěvky: 18
- Registrován: 18 dub 2005 16:08
- Bydliště: Praha
- Kontaktovat uživatele:
Re: Prsím o kontrolu AVG Hlásí Win32/Patched
+ 2010-03-30 23:16 . 2010-03-30 23:16 130408 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationHostDLL.dll
+ 2010-04-07 22:48 . 2010-04-07 22:48 970752 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
- 2008-07-29 17:16 . 2008-07-29 17:16 110592 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMdiagnostics.dll
+ 2010-04-07 22:48 . 2010-04-07 22:48 110592 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMdiagnostics.dll
+ 2010-09-22 08:43 . 2010-09-22 08:43 435024 c:\windows\Microsoft.NET\Framework\v2.0.50727\webengine.dll
- 2008-07-25 09:17 . 2008-07-25 09:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Security.dll
+ 2010-02-09 11:22 . 2010-02-09 11:22 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Security.dll
+ 2010-05-11 05:40 . 2010-05-11 05:40 388936 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
+ 2010-05-11 05:40 . 2010-05-11 05:40 989016 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2010-09-23 20:02 . 2010-09-23 20:02 798208 c:\windows\Installer\1d6ff1.msp
+ 2010-11-12 10:24 . 2010-11-12 10:24 884224 c:\windows\Installer\1d6f84.msp
+ 2010-02-24 23:14 . 2010-02-24 23:14 543232 c:\windows\Installer\1d6ef5.msp
+ 2008-10-16 17:34 . 2010-12-16 22:14 409600 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\xlicons.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 409600 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\xlicons.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 286720 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\wordicon.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 286720 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\wordicon.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 249856 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\pptico.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 249856 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\pptico.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 794624 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\outicon.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 794624 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\outicon.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 135168 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\misc.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 135168 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\misc.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 593920 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 593920 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2007-04-19 13:01 . 2007-04-19 13:01 238424 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSCDM.DLL
+ 2007-01-16 19:32 . 2007-01-16 19:32 136032 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSAEXP30.DLL
+ 2007-04-19 12:54 . 2007-04-19 12:54 169312 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\ACCWIZ.DLL
+ 2010-12-16 22:00 . 2010-01-05 09:58 832512 c:\windows\ie7updates\KB2416400-IE7\wininet.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 233472 c:\windows\ie7updates\KB2416400-IE7\webcheck.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 105984 c:\windows\ie7updates\KB2416400-IE7\url.dll
+ 2010-12-16 22:00 . 2010-02-22 14:21 391032 c:\windows\ie7updates\KB2416400-IE7\spuninst\updspapi.dll
+ 2010-12-16 22:00 . 2010-02-22 14:20 233848 c:\windows\ie7updates\KB2416400-IE7\spuninst\spuninst.exe
+ 2010-12-16 22:00 . 2010-01-05 09:58 102912 c:\windows\ie7updates\KB2416400-IE7\occache.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 671232 c:\windows\ie7updates\KB2416400-IE7\mstime.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 193024 c:\windows\ie7updates\KB2416400-IE7\msrating.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 477696 c:\windows\ie7updates\KB2416400-IE7\mshtmled.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 459264 c:\windows\ie7updates\KB2416400-IE7\msfeeds.dll
+ 2010-12-16 22:00 . 2009-12-18 13:05 634648 c:\windows\ie7updates\KB2416400-IE7\iexplore.exe
+ 2010-12-16 22:00 . 2010-01-05 09:58 268288 c:\windows\ie7updates\KB2416400-IE7\iertutil.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 192512 c:\windows\ie7updates\KB2416400-IE7\iepeers.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 385024 c:\windows\ie7updates\KB2416400-IE7\iedkcs32.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 380928 c:\windows\ie7updates\KB2416400-IE7\ieapfltr.dll
+ 2010-12-16 22:00 . 2009-12-18 13:04 161792 c:\windows\ie7updates\KB2416400-IE7\ieakui.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 230400 c:\windows\ie7updates\KB2416400-IE7\ieaksie.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 153088 c:\windows\ie7updates\KB2416400-IE7\ieakeng.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 133120 c:\windows\ie7updates\KB2416400-IE7\extmgr.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 214528 c:\windows\ie7updates\KB2416400-IE7\dxtrans.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 347136 c:\windows\ie7updates\KB2416400-IE7\dxtmsft.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 124928 c:\windows\ie7updates\KB2416400-IE7\advpack.dll
+ 2008-11-12 13:28 . 2010-02-24 13:11 455680 c:\windows\Driver Cache\i386\mrxsmb.sys
+ 2010-12-16 22:13 . 2010-12-16 22:13 321024 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\d628e86056dc6675583fed26c1a9aae7\WsatConfig.ni.exe
+ 2010-12-16 22:12 . 2010-12-16 22:12 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\608ccd0dbe42b480cbcb17f0fe73140c\WindowsFormsIntegration.ni.dll
+ 2010-12-16 22:12 . 2010-12-16 22:12 187904 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\7c2061af46188ec1bd4b57625e28736c\UIAutomationTypes.ni.dll
+ 2010-12-16 22:12 . 2010-12-16 22:12 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\d7f0ffc26d1928ad5cef92b13a719a29\UIAutomationClient.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 679936 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\ea4dfea48939a6cfde7114c8301b9d19\System.Security.ni.dll
+ 2010-12-16 22:13 . 2010-12-16 22:13 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\e316127c157809d774fa05acd6227898\System.IO.Log.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\02e1b3a388149540debc43a3210578e5\System.IdentityModel.Selectors.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\3d78e7c545620fb47ca47edb38430447\System.Drawing.Design.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 135680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\18d1c5512b7df68fcd69d1c5957e2304\System.Data.DataSetExtensions.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 970752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\b2f3e4c45a980474c2dd08166038d645\System.Configuration.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 632832 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\65ac6ead0ff4b5522a37994427c49271\System.AddIn.ni.dll
+ 2010-12-16 22:13 . 2010-12-16 22:13 365056 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\7c367640562ca888888c1ef608d62357\SMSvcHost.ni.exe
+ 2010-12-16 22:13 . 2010-12-16 22:13 255488 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\501bfafd2ac2c98638db1c93cadb531f\SMDiagnostics.ni.dll
+ 2010-12-16 22:13 . 2010-12-16 22:13 319488 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\64a3fa895d5cd256b72d035a07e05320\ServiceModelReg.ni.exe
+ 2010-12-16 22:09 . 2010-12-16 22:09 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\b9d66374f8abbe2fc5c8d56fa2dac1bd\PresentationFramework.Royale.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a74786076d5d49f960e20af97a02bb7b\PresentationFramework.Luna.ni.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a70bea63820fdc9c65c689b79539618a\PresentationFramework.Classic.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\998e6fe5dd581b11eb57f3128615a77c\PresentationFramework.Royale.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\978afa542ef2543df21a7ec0f0ec5fb3\PresentationFramework.Classic.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\6b8279f49b821feab9928af6a319e431\PresentationFramework.Aero.ni.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\311b5f23b176aad33e3d07d71f650b77\PresentationFramework.Luna.ni.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\2dc52ca7645dc21c91ae4cb3d5f2aa4a\PresentationFramework.Aero.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\325019fd4a6e5de789445f58643c5b2f\MSBuild.ni.exe
+ 2010-12-16 22:13 . 2010-12-16 22:13 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\2a1029c58841d3c8b02c89a07cbc4a74\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 175104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\6c0288a16ce3cba58c264db31483e5a1\Microsoft.Build.Utilities.v3.5.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\0d7b1de5140a1f9dc6afb46365ba69ab\Microsoft.Build.Utilities.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 838656 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\595a838362a27cdb0cb518b6b0b7f67f\Microsoft.Build.Engine.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 222720 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\f41344735c243ca686bf605532f1df59\Microsoft.Build.Conversion.v3.5.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 220672 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\1fa38ec402861827720b09e5ada0726b\CustomMarshalers.ni.dll
+ 2010-12-16 22:13 . 2010-12-16 22:13 409600 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\40eacb6d6c89ec8d4e32f4cee651b316\ComSvcConfig.ni.exe
+ 2010-12-16 22:14 . 2010-12-16 22:14 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\15d76f174726e63fbae5fb3b75efc273\AspNetMMCExt.ni.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2010-12-16 22:02 . 2010-12-16 22:02 970752 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2010-12-16 22:02 . 2010-12-16 22:02 438272 c:\windows\assembly\GAC_MSIL\System.IdentityModel\3.0.0.0__b77a5c561934e089\System.IdentityModel.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2010-12-16 22:02 . 2010-12-16 22:02 110592 c:\windows\assembly\GAC_MSIL\SMDiagnostics\3.0.0.0__b77a5c561934e089\SMdiagnostics.dll
- 2010-08-02 17:01 . 2010-08-02 17:01 110592 c:\windows\assembly\GAC_MSIL\SMDiagnostics\3.0.0.0__b77a5c561934e089\SMdiagnostics.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2010-12-16 21:58 . 2010-12-16 21:58 226656 c:\windows\assembly\GAC\office\11.0.0.0__71e9bce111e9429c\OFFICE.DLL
+ 2010-12-16 21:58 . 2010-12-16 21:58 111624 c:\windows\assembly\GAC\Microsoft.Office.Interop.InfoPath\11.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.InfoPath.dll
+ 2010-12-16 21:58 . 2010-12-16 21:58 110592 c:\windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\adodb.dll
+ 2010-12-16 21:36 . 2010-08-23 16:12 1054208 c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
+ 2006-03-02 12:00 . 2010-04-06 03:52 2462720 c:\windows\system32\WMVCore.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 1168384 c:\windows\system32\urlmon.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 1168384 c:\windows\system32\urlmon.dll
+ 2006-03-02 12:00 . 2010-07-27 06:30 8466432 c:\windows\system32\shell32.dll
+ 2006-03-02 12:00 . 2010-02-05 18:27 1294336 c:\windows\system32\quartz.dll
- 2006-03-02 12:00 . 2009-11-27 17:14 1294336 c:\windows\system32\quartz.dll
+ 2006-03-02 12:00 . 2010-07-16 12:00 1287680 c:\windows\system32\ole32.dll
+ 2006-03-02 12:00 . 2010-04-28 05:45 2148352 c:\windows\system32\ntoskrnl.exe
+ 2004-08-17 15:45 . 2010-04-28 05:45 2026496 c:\windows\system32\ntkrnlpa.exe
- 2006-03-02 12:00 . 2009-07-31 04:35 1172480 c:\windows\system32\msxml3.dll
+ 2006-03-02 12:00 . 2010-06-14 07:43 1172480 c:\windows\system32\msxml3.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 3604480 c:\windows\system32\mshtml.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 6075904 c:\windows\system32\ieframe.dll
+ 2006-03-02 12:00 . 2010-04-06 03:52 2462720 c:\windows\system32\dllcache\WMVCore.dll
+ 2008-10-15 10:56 . 2010-10-26 13:58 1853312 c:\windows\system32\dllcache\win32k.sys
- 2007-08-13 16:54 . 2010-01-05 09:58 1168384 c:\windows\system32\dllcache\urlmon.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 1168384 c:\windows\system32\dllcache\urlmon.dll
+ 2008-06-17 19:02 . 2010-07-27 06:30 8466432 c:\windows\system32\dllcache\shell32.dll
- 2008-05-07 05:12 . 2009-11-27 17:14 1294336 c:\windows\system32\dllcache\quartz.dll
+ 2008-05-07 05:12 . 2010-02-05 18:27 1294336 c:\windows\system32\dllcache\quartz.dll
+ 2010-07-16 12:00 . 2010-07-16 12:00 1287680 c:\windows\system32\dllcache\ole32.dll
+ 2008-10-15 10:56 . 2010-04-28 18:15 2192128 c:\windows\system32\dllcache\ntoskrnl.exe
+ 2008-10-15 10:56 . 2010-04-28 05:45 2026496 c:\windows\system32\dllcache\ntkrpamp.exe
+ 2008-10-15 10:56 . 2010-04-28 05:45 2068992 c:\windows\system32\dllcache\ntkrnlpa.exe
+ 2008-10-15 10:56 . 2010-04-28 05:45 2148352 c:\windows\system32\dllcache\ntkrnlmp.exe
- 2008-11-12 13:28 . 2009-07-31 04:35 1172480 c:\windows\system32\dllcache\msxml3.dll
+ 2008-11-12 13:28 . 2010-06-14 07:43 1172480 c:\windows\system32\dllcache\msxml3.dll
- 2009-08-14 03:57 . 2009-07-10 13:28 1315328 c:\windows\system32\dllcache\msoe.dll
+ 2009-08-14 03:57 . 2010-01-29 15:01 1315328 c:\windows\system32\dllcache\msoe.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 3604480 c:\windows\system32\dllcache\mshtml.dll
+ 2008-10-14 04:53 . 2010-11-06 00:25 6075904 c:\windows\system32\dllcache\ieframe.dll
+ 2009-11-07 00:06 . 2009-11-07 00:06 1130824 c:\windows\system32\dfshim.dll
+ 2010-04-07 22:48 . 2010-04-07 22:48 5967872 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.dll
+ 2010-09-22 08:44 . 2010-09-22 08:44 5242880 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.dll
+ 2010-03-23 04:32 . 2010-03-23 04:32 3182592 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
+ 2010-05-11 05:40 . 2010-05-11 05:40 5812560 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
+ 2010-05-11 05:40 . 2010-05-11 05:40 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2010-08-05 10:31 . 2010-08-05 10:31 4040704 c:\windows\Installer\1d7087.msp
+ 2009-10-16 17:07 . 2009-10-16 17:07 6115328 c:\windows\Installer\1d7065.msp
+ 2010-10-22 14:45 . 2010-10-22 14:45 8444928 c:\windows\Installer\1d7039.msp
+ 2010-06-11 16:55 . 2010-06-11 16:55 1827328 c:\windows\Installer\1d7021.msp
+ 2010-08-23 16:09 . 2010-08-23 16:09 7673344 c:\windows\Installer\1d7007.msp
+ 2010-10-01 16:42 . 2010-10-01 16:42 5054464 c:\windows\Installer\1d6fe9.msp
+ 2009-11-08 23:25 . 2009-11-08 23:25 1935360 c:\windows\Installer\1d6fc5.msp
+ 2010-09-23 06:39 . 2010-09-23 06:39 4265472 c:\windows\Installer\1d6f97.msp
+ 2010-12-06 14:02 . 2010-12-06 14:02 5518848 c:\windows\Installer\1d6f6a.msp
+ 2010-08-25 16:06 . 2010-08-25 16:06 6479360 c:\windows\Installer\1d6f54.msp
+ 2010-10-01 20:53 . 2010-10-01 20:53 4147712 c:\windows\Installer\1d6f3f.msp
+ 2010-04-11 21:17 . 2010-04-11 21:17 2607104 c:\windows\Installer\1d6f18.msp
+ 2010-04-11 21:17 . 2010-04-11 21:17 4210688 c:\windows\Installer\1d6f17.msp
+ 2010-08-24 08:49 . 2010-08-24 08:49 6825472 c:\windows\Installer\1d6f0b.msp
+ 2010-03-30 11:34 . 2010-03-30 11:34 3826688 c:\windows\Installer\1d6eed.msp
+ 2007-05-10 12:43 . 2007-05-10 12:43 6688096 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSACCESS.EXE
+ 2007-04-30 13:57 . 2007-04-30 13:57 7084384 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\INFOPATH.EXE
+ 2010-12-16 22:00 . 2010-01-05 09:58 1168384 c:\windows\ie7updates\KB2416400-IE7\urlmon.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 3599360 c:\windows\ie7updates\KB2416400-IE7\mshtml.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 6067200 c:\windows\ie7updates\KB2416400-IE7\ieframe.dll
+ 2008-10-15 10:56 . 2010-04-28 18:15 2192128 c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2008-10-15 10:56 . 2010-04-28 05:45 2026496 c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2008-10-15 10:56 . 2010-04-28 05:45 2068992 c:\windows\Driver Cache\i386\ntkrnlpa.exe
+ 2008-10-15 10:56 . 2010-04-28 05:45 2148352 c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2010-12-16 22:10 . 2010-12-16 22:10 3323392 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\a36a79380c718818d6b2e6cabc07870d\WindowsBase.ni.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 3312128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\80be477cdbf6bbaa2eb4711a3bb33181\WindowsBase.ni.dll
+ 2010-12-16 22:12 . 2010-12-16 22:12 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\570f0436706c59457ba71154dc663bf9\UIAutomationClientsideProviders.ni.dll
+ 2010-12-16 22:08 . 2010-12-16 22:08 7949824 c:\windows\assembly\NativeImages_v2.0.50727_32\System\2f867d97fb1a34e4d6985780631574bb\System.ni.dll
+ 2010-12-16 22:12 . 2010-12-16 22:12 5450240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\8ee82dfeff03ca87492149cdcbfc3f21\System.Xml.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 1913344 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\db840c3cff7fbcbb4c56ad1670e873d5\System.Speech.ni.dll
+ 2010-12-16 22:13 . 2010-12-16 22:13 2344960 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\cc972b8d2b48892bc2483caf8c903f36\System.Runtime.Serialization.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 1035776 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\8c0e64efa958b19328063758383bd36b\System.Printing.ni.dll
+ 2010-12-16 22:13 . 2010-12-16 22:13 1070080 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\901c75ef7d32d0044caaee00c61d4cfd\System.IdentityModel.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\f78f03ba3b1b21e3b26369402c117d33\System.Drawing.ni.dll
+ 2010-12-16 22:10 . 2010-12-16 22:10 6615040 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\8247767272be0a26e5c22f0a32e1f75c\System.Data.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 2508800 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\3f91a09bc7c22e6c26acbe6e82fe74c0\System.Data.SqlXml.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 2510848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\17388687d6962f1b46f3b159f8de6dce\System.Data.Linq.ni.dll
+ 2010-12-16 22:10 . 2010-12-16 22:10 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\79b51897ef91e69987acd966b6ab86d6\System.Core.ni.dll
+ 2010-12-16 22:10 . 2010-12-16 22:10 2125824 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\a79b682caa799dea4f9081c687c9ce32\ReachFramework.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 2126848 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\2eaa32a036d8b106a0be01fc48c23832\ReachFramework.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 1657344 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\56de59649d7169928eade8ed514d4368\PresentationUI.ni.dll
+ 2010-12-16 22:10 . 2010-12-16 22:10 1657344 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\0122a4d715ddc0b2d23e41da609bff75\PresentationUI.ni.dll
+ 2010-12-16 22:08 . 2010-12-16 22:08 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\a6a8210d8ade6ac55be1601ea32eb2df\PresentationBuildTasks.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 1711616 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\4321b81c24f3a8177702c2edb6930ea7\Microsoft.VisualBasic.ni.dll
+ 2010-12-16 22:13 . 2010-12-16 22:13 1092608 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\61d521e6f2354869a38bb36c1a49fcac\Microsoft.Transactions.Bridge.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 1965568 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\8423fa8b560048c9e78f1fd87b8eb584\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 1620480 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\44f47fffa736ab91d3872512cd701ec8\Microsoft.Build.Tasks.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 1886208 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\5f43738396ebbfe6b24b56d1b9441e2c\Microsoft.Build.Engine.ni.dll
+ 2010-12-16 22:10 . 2010-12-16 22:10 1249280 c:\windows\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll
+ 2010-12-16 22:10 . 2010-12-16 22:10 3182592 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2010-12-16 22:10 . 2010-12-16 22:10 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 1277952 c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll
- 2010-08-02 17:02 . 2010-08-02 17:02 1277952 c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll
+ 2010-12-16 22:02 . 2010-12-16 22:02 5967872 c:\windows\assembly\GAC_MSIL\System.ServiceModel\3.0.0.0__b77a5c561934e089\System.ServiceModel.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2010-12-16 22:10 . 2010-12-16 22:10 5279744 c:\windows\assembly\GAC_MSIL\PresentationFramework\3.0.0.0__31bf3856ad364e35\PresentationFramework.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2010-12-16 22:10 . 2010-12-16 22:10 4210688 c:\windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
- 2010-08-02 17:01 . 2010-08-02 17:01 4210688 c:\windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
- 2006-03-02 12:00 . 2009-07-13 21:43 10841088 c:\windows\system32\wmp.dll
+ 2006-03-02 12:00 . 2010-08-25 22:36 10841088 c:\windows\system32\wmp.dll
- 2006-03-02 12:00 . 2009-07-13 21:43 10841088 c:\windows\system32\dllcache\wmp.dll
+ 2006-03-02 12:00 . 2010-08-25 22:36 10841088 c:\windows\system32\dllcache\wmp.dll
+ 2010-10-14 15:57 . 2010-10-14 15:57 11189248 c:\windows\Installer\1d704f.msp
+ 2010-06-11 16:52 . 2010-06-11 16:52 45542912 c:\windows\Installer\1d7022.msp
+ 2010-03-31 00:23 . 2010-03-31 00:23 15638528 c:\windows\Installer\1d6fd2.msp
+ 2010-05-19 12:08 . 2010-05-19 12:08 11408896 c:\windows\Installer\1d6faa.msp
+ 2010-12-16 22:06 . 2010-12-16 22:06 20303872 c:\windows\Installer\1d6fa0.msp
+ 2010-12-16 22:04 . 2010-12-16 22:04 15710720 c:\windows\Installer\1d6f8d.msp
+ 2010-04-11 21:17 . 2010-04-11 21:17 14599680 c:\windows\Installer\1d6f27.msp
+ 2010-12-16 22:11 . 2010-12-16 22:11 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\06b728c1e4ea291d4febee5ca33db4b4\System.Windows.Forms.ni.dll
+ 2010-12-16 22:13 . 2010-12-16 22:13 17401344 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\7b26e944ebbfb40a4059972c33210589\System.ServiceModel.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 10682368 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\6dc4aa5e746b0f3bbf452d10cc4be2af\System.Design.ni.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 14323200 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\9aa589e82d88fcc4dc74ed0d8c96b5da\PresentationFramework.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 14325248 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\3bc088b71d6658b6ab2171d99e55acb8\PresentationFramework.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 12214272 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\4b026d6e1fa81cf20883b0a7dd229639\PresentationCore.ni.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 12215296 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\272333746e83762af801b8863c698754\PresentationCore.ni.dll
+ 2010-12-16 22:08 . 2010-12-16 22:08 11489280 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\17179b71d7680399c00ce88ddc310209\mscorlib.ni.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-01-24 2289664]
"BitTorrent DNA"="c:\program files\DNA\btdna.exe" [2009-10-07 323392]
"Steam"="c:\program files\steam\steam.exe" [2010-12-03 1242448]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2010-09-25 328056]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2008-05-16 16862720]
"SecurDisc"="c:\program files\Nero\Nero 7\InCD\NBHGui.exe" [2008-02-18 1629480]
"InCD"="c:\program files\Nero\Nero 7\InCD\InCD.exe" [2008-02-18 1057064]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2007-03-14 71216]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2007-01-08 52256]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"amd_dc_opt"="c:\program files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-07-09 13923432]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-07-09 110696]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSGamerOSD]
2007-07-12 08:03 380928 ----a-w- c:\program files\ASUS\GamerOSD\GamerOSD.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]
2009-02-06 18:17 3325952 ----a-w- c:\program files\Electronic Arts\EADM\Core.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]
2008-11-14 12:35 305064 ----a-r- c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"AVGIDSAgent"=2 (0x2)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\DNA\\btdna.exe"=
"c:\\Program Files\\mIRC\\mirc.exe"=
"c:\\Program Files\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\Common Files\\Ahead\\Nero Web\\SetupX.exe"=
"c:\\Program Files\\Electronic Arts\\EADM\\Core.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
"c:\\Program Files\\Valve\\hl.exe"=
"c:\\Program Files\\Valve\\hlds.exe"=
"c:\\Program Files\\Eidos\\Pyro Studios\\Commandos 3 - Destination Berlin\\commandos3.exe"=
"c:\\Program Files\\EA Sports\\NHL 09\\nhl2009.exe"=
"c:\\Program Files\\Google\\Google Earth\\plugin\\geplugin.exe"=
"c:\\Program Files\\Rockstar Games\\Rockstar Games Social Club\\RGSCLauncher.exe"=
"c:\\Program Files\\Rockstar Games\\Grand Theft Auto IV\\LaunchGTAIV.exe"=
"c:\\Program Files\\Rockstar Games\\Grand Theft Auto IV\\GTAIV.exe"=
"c:\\Program Files\\Valve\\hltv.exe"=
"c:\\Program Files\\ICQ7.2\\ICQ.exe"=
"c:\\Program Files\\ICQ7.2\\aolload.exe"=
"c:\\Program Files\\Steam\\SteamApps\\yrp2k9jstahwdn2tzzpjgsydt\\counter-strike source\\hl2.exe"=
"c:\\Program Files\\Steam\\SteamApps\\yrp2k9jstahwdn2tzzpjgsydt\\day of defeat source\\hl2.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"11426:TCP"= 11426:TCP:BitComet 11426 TCP
"11426:UDP"= 11426:UDP:BitComet 11426 UDP
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [7.3.2009 10:43 691696]
R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;c:\program files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [6.9.2009 5:06 169312]
R2 Application Updater;Application Updater;c:\program files\Application Updater\ApplicationUpdater.exe [8.1.2010 0:51 380928]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [16.10.2008 18:45 246520]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [1.9.2010 15:55 136176]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-01-24 10:30 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
2010-12-16 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
2010-12-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-01 12:01]
2010-12-16 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-01 12:01]
2010-12-16 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2010-09-28 20:44]
.
.
------- Doplňkový sken -------
.
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: {{0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} -
FF - ProfilePath - c:\documents and settings\Lukas\Data aplikací\Mozilla\Firefox\Profiles\k6a34vp6.default\
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: PandoraTV Toolbar: toolbar@ask.com - %profile%\extensions\toolbar@ask.com
FF - Ext: DAEMON Tools Toolbar: DTToolbar@toolbarnet.com - %profile%\extensions\DTToolbar@toolbarnet.com
FF - Ext: ICQ Toolbar: {800b5000-a755-47e1-992b-48a1c1357f07} - %profile%\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
AddRemove-HijackThis - G:\HijackThis.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-12-17 07:22
Windows 5.1.2600 Service Pack 3 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_USERS\S-1-5-21-57989841-1482476501-725345543-1005\Software\SecuROM\License information*]
"datasecu"=hex:26,d7,76,ce,5b,01,8c,cf,3e,4a,8b,7d,f3,da,e3,68,aa,52,2f,cf,35,
d2,74,e0,8e,fc,2c,74,ad,d8,92,7e,27,a5,63,f0,3c,73,79,51,f0,11,27,82,61,c2,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'explorer.exe'(3380)
c:\program files\Microsoft Office\OFFICE11\msohev.dll
c:\program files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
c:\program files\Nero\Nero 7\InCD\InCDsrv.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\program files\CyberLink\Shared Files\RichVideo.exe
c:\windows\system32\wscntfy.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\RUNDLL32.EXE
.
**************************************************************************
.
Celkový čas: 2010-12-17 07:26:16 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-12-17 06:26
ComboFix2.txt 2010-12-16 21:31
Před spuštěním: Volných bajtů: 79 578 583 040
Po spuštění: Volných bajtů: 79 612 411 904
- - End Of File - - EE6402167B1EFE938ACBFAFB1264909E
+ 2010-04-07 22:48 . 2010-04-07 22:48 970752 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
- 2008-07-29 17:16 . 2008-07-29 17:16 110592 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMdiagnostics.dll
+ 2010-04-07 22:48 . 2010-04-07 22:48 110592 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMdiagnostics.dll
+ 2010-09-22 08:43 . 2010-09-22 08:43 435024 c:\windows\Microsoft.NET\Framework\v2.0.50727\webengine.dll
- 2008-07-25 09:17 . 2008-07-25 09:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Security.dll
+ 2010-02-09 11:22 . 2010-02-09 11:22 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Security.dll
+ 2010-05-11 05:40 . 2010-05-11 05:40 388936 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
+ 2010-05-11 05:40 . 2010-05-11 05:40 989016 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2010-09-23 20:02 . 2010-09-23 20:02 798208 c:\windows\Installer\1d6ff1.msp
+ 2010-11-12 10:24 . 2010-11-12 10:24 884224 c:\windows\Installer\1d6f84.msp
+ 2010-02-24 23:14 . 2010-02-24 23:14 543232 c:\windows\Installer\1d6ef5.msp
+ 2008-10-16 17:34 . 2010-12-16 22:14 409600 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\xlicons.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 409600 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\xlicons.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 286720 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\wordicon.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 286720 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\wordicon.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 249856 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\pptico.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 249856 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\pptico.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 794624 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\outicon.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 794624 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\outicon.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 135168 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\misc.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 135168 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\misc.exe
- 2008-10-16 17:34 . 2010-02-19 17:34 593920 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2008-10-16 17:34 . 2010-12-16 22:14 593920 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2007-04-19 13:01 . 2007-04-19 13:01 238424 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSCDM.DLL
+ 2007-01-16 19:32 . 2007-01-16 19:32 136032 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSAEXP30.DLL
+ 2007-04-19 12:54 . 2007-04-19 12:54 169312 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\ACCWIZ.DLL
+ 2010-12-16 22:00 . 2010-01-05 09:58 832512 c:\windows\ie7updates\KB2416400-IE7\wininet.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 233472 c:\windows\ie7updates\KB2416400-IE7\webcheck.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 105984 c:\windows\ie7updates\KB2416400-IE7\url.dll
+ 2010-12-16 22:00 . 2010-02-22 14:21 391032 c:\windows\ie7updates\KB2416400-IE7\spuninst\updspapi.dll
+ 2010-12-16 22:00 . 2010-02-22 14:20 233848 c:\windows\ie7updates\KB2416400-IE7\spuninst\spuninst.exe
+ 2010-12-16 22:00 . 2010-01-05 09:58 102912 c:\windows\ie7updates\KB2416400-IE7\occache.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 671232 c:\windows\ie7updates\KB2416400-IE7\mstime.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 193024 c:\windows\ie7updates\KB2416400-IE7\msrating.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 477696 c:\windows\ie7updates\KB2416400-IE7\mshtmled.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 459264 c:\windows\ie7updates\KB2416400-IE7\msfeeds.dll
+ 2010-12-16 22:00 . 2009-12-18 13:05 634648 c:\windows\ie7updates\KB2416400-IE7\iexplore.exe
+ 2010-12-16 22:00 . 2010-01-05 09:58 268288 c:\windows\ie7updates\KB2416400-IE7\iertutil.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 192512 c:\windows\ie7updates\KB2416400-IE7\iepeers.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 385024 c:\windows\ie7updates\KB2416400-IE7\iedkcs32.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 380928 c:\windows\ie7updates\KB2416400-IE7\ieapfltr.dll
+ 2010-12-16 22:00 . 2009-12-18 13:04 161792 c:\windows\ie7updates\KB2416400-IE7\ieakui.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 230400 c:\windows\ie7updates\KB2416400-IE7\ieaksie.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 153088 c:\windows\ie7updates\KB2416400-IE7\ieakeng.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 133120 c:\windows\ie7updates\KB2416400-IE7\extmgr.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 214528 c:\windows\ie7updates\KB2416400-IE7\dxtrans.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 347136 c:\windows\ie7updates\KB2416400-IE7\dxtmsft.dll
+ 2010-12-16 22:00 . 2010-01-05 09:57 124928 c:\windows\ie7updates\KB2416400-IE7\advpack.dll
+ 2008-11-12 13:28 . 2010-02-24 13:11 455680 c:\windows\Driver Cache\i386\mrxsmb.sys
+ 2010-12-16 22:13 . 2010-12-16 22:13 321024 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\d628e86056dc6675583fed26c1a9aae7\WsatConfig.ni.exe
+ 2010-12-16 22:12 . 2010-12-16 22:12 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\608ccd0dbe42b480cbcb17f0fe73140c\WindowsFormsIntegration.ni.dll
+ 2010-12-16 22:12 . 2010-12-16 22:12 187904 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\7c2061af46188ec1bd4b57625e28736c\UIAutomationTypes.ni.dll
+ 2010-12-16 22:12 . 2010-12-16 22:12 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\d7f0ffc26d1928ad5cef92b13a719a29\UIAutomationClient.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 679936 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\ea4dfea48939a6cfde7114c8301b9d19\System.Security.ni.dll
+ 2010-12-16 22:13 . 2010-12-16 22:13 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\e316127c157809d774fa05acd6227898\System.IO.Log.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\02e1b3a388149540debc43a3210578e5\System.IdentityModel.Selectors.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\3d78e7c545620fb47ca47edb38430447\System.Drawing.Design.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 135680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\18d1c5512b7df68fcd69d1c5957e2304\System.Data.DataSetExtensions.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 970752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\b2f3e4c45a980474c2dd08166038d645\System.Configuration.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 632832 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\65ac6ead0ff4b5522a37994427c49271\System.AddIn.ni.dll
+ 2010-12-16 22:13 . 2010-12-16 22:13 365056 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\7c367640562ca888888c1ef608d62357\SMSvcHost.ni.exe
+ 2010-12-16 22:13 . 2010-12-16 22:13 255488 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\501bfafd2ac2c98638db1c93cadb531f\SMDiagnostics.ni.dll
+ 2010-12-16 22:13 . 2010-12-16 22:13 319488 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\64a3fa895d5cd256b72d035a07e05320\ServiceModelReg.ni.exe
+ 2010-12-16 22:09 . 2010-12-16 22:09 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\b9d66374f8abbe2fc5c8d56fa2dac1bd\PresentationFramework.Royale.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a74786076d5d49f960e20af97a02bb7b\PresentationFramework.Luna.ni.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a70bea63820fdc9c65c689b79539618a\PresentationFramework.Classic.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\998e6fe5dd581b11eb57f3128615a77c\PresentationFramework.Royale.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\978afa542ef2543df21a7ec0f0ec5fb3\PresentationFramework.Classic.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\6b8279f49b821feab9928af6a319e431\PresentationFramework.Aero.ni.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\311b5f23b176aad33e3d07d71f650b77\PresentationFramework.Luna.ni.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\2dc52ca7645dc21c91ae4cb3d5f2aa4a\PresentationFramework.Aero.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\325019fd4a6e5de789445f58643c5b2f\MSBuild.ni.exe
+ 2010-12-16 22:13 . 2010-12-16 22:13 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\2a1029c58841d3c8b02c89a07cbc4a74\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 175104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\6c0288a16ce3cba58c264db31483e5a1\Microsoft.Build.Utilities.v3.5.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\0d7b1de5140a1f9dc6afb46365ba69ab\Microsoft.Build.Utilities.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 838656 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\595a838362a27cdb0cb518b6b0b7f67f\Microsoft.Build.Engine.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 222720 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\f41344735c243ca686bf605532f1df59\Microsoft.Build.Conversion.v3.5.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 220672 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\1fa38ec402861827720b09e5ada0726b\CustomMarshalers.ni.dll
+ 2010-12-16 22:13 . 2010-12-16 22:13 409600 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\40eacb6d6c89ec8d4e32f4cee651b316\ComSvcConfig.ni.exe
+ 2010-12-16 22:14 . 2010-12-16 22:14 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\15d76f174726e63fbae5fb3b75efc273\AspNetMMCExt.ni.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2010-12-16 22:02 . 2010-12-16 22:02 970752 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2010-12-16 22:02 . 2010-12-16 22:02 438272 c:\windows\assembly\GAC_MSIL\System.IdentityModel\3.0.0.0__b77a5c561934e089\System.IdentityModel.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2010-12-16 22:02 . 2010-12-16 22:02 110592 c:\windows\assembly\GAC_MSIL\SMDiagnostics\3.0.0.0__b77a5c561934e089\SMdiagnostics.dll
- 2010-08-02 17:01 . 2010-08-02 17:01 110592 c:\windows\assembly\GAC_MSIL\SMDiagnostics\3.0.0.0__b77a5c561934e089\SMdiagnostics.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2010-12-16 21:58 . 2010-12-16 21:58 226656 c:\windows\assembly\GAC\office\11.0.0.0__71e9bce111e9429c\OFFICE.DLL
+ 2010-12-16 21:58 . 2010-12-16 21:58 111624 c:\windows\assembly\GAC\Microsoft.Office.Interop.InfoPath\11.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.InfoPath.dll
+ 2010-12-16 21:58 . 2010-12-16 21:58 110592 c:\windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\adodb.dll
+ 2010-12-16 21:36 . 2010-08-23 16:12 1054208 c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
+ 2006-03-02 12:00 . 2010-04-06 03:52 2462720 c:\windows\system32\WMVCore.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 1168384 c:\windows\system32\urlmon.dll
- 2006-03-02 12:00 . 2010-01-05 09:58 1168384 c:\windows\system32\urlmon.dll
+ 2006-03-02 12:00 . 2010-07-27 06:30 8466432 c:\windows\system32\shell32.dll
+ 2006-03-02 12:00 . 2010-02-05 18:27 1294336 c:\windows\system32\quartz.dll
- 2006-03-02 12:00 . 2009-11-27 17:14 1294336 c:\windows\system32\quartz.dll
+ 2006-03-02 12:00 . 2010-07-16 12:00 1287680 c:\windows\system32\ole32.dll
+ 2006-03-02 12:00 . 2010-04-28 05:45 2148352 c:\windows\system32\ntoskrnl.exe
+ 2004-08-17 15:45 . 2010-04-28 05:45 2026496 c:\windows\system32\ntkrnlpa.exe
- 2006-03-02 12:00 . 2009-07-31 04:35 1172480 c:\windows\system32\msxml3.dll
+ 2006-03-02 12:00 . 2010-06-14 07:43 1172480 c:\windows\system32\msxml3.dll
+ 2006-03-02 12:00 . 2010-11-06 00:25 3604480 c:\windows\system32\mshtml.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 6075904 c:\windows\system32\ieframe.dll
+ 2006-03-02 12:00 . 2010-04-06 03:52 2462720 c:\windows\system32\dllcache\WMVCore.dll
+ 2008-10-15 10:56 . 2010-10-26 13:58 1853312 c:\windows\system32\dllcache\win32k.sys
- 2007-08-13 16:54 . 2010-01-05 09:58 1168384 c:\windows\system32\dllcache\urlmon.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 1168384 c:\windows\system32\dllcache\urlmon.dll
+ 2008-06-17 19:02 . 2010-07-27 06:30 8466432 c:\windows\system32\dllcache\shell32.dll
- 2008-05-07 05:12 . 2009-11-27 17:14 1294336 c:\windows\system32\dllcache\quartz.dll
+ 2008-05-07 05:12 . 2010-02-05 18:27 1294336 c:\windows\system32\dllcache\quartz.dll
+ 2010-07-16 12:00 . 2010-07-16 12:00 1287680 c:\windows\system32\dllcache\ole32.dll
+ 2008-10-15 10:56 . 2010-04-28 18:15 2192128 c:\windows\system32\dllcache\ntoskrnl.exe
+ 2008-10-15 10:56 . 2010-04-28 05:45 2026496 c:\windows\system32\dllcache\ntkrpamp.exe
+ 2008-10-15 10:56 . 2010-04-28 05:45 2068992 c:\windows\system32\dllcache\ntkrnlpa.exe
+ 2008-10-15 10:56 . 2010-04-28 05:45 2148352 c:\windows\system32\dllcache\ntkrnlmp.exe
- 2008-11-12 13:28 . 2009-07-31 04:35 1172480 c:\windows\system32\dllcache\msxml3.dll
+ 2008-11-12 13:28 . 2010-06-14 07:43 1172480 c:\windows\system32\dllcache\msxml3.dll
- 2009-08-14 03:57 . 2009-07-10 13:28 1315328 c:\windows\system32\dllcache\msoe.dll
+ 2009-08-14 03:57 . 2010-01-29 15:01 1315328 c:\windows\system32\dllcache\msoe.dll
+ 2007-08-13 16:54 . 2010-11-06 00:25 3604480 c:\windows\system32\dllcache\mshtml.dll
+ 2008-10-14 04:53 . 2010-11-06 00:25 6075904 c:\windows\system32\dllcache\ieframe.dll
+ 2009-11-07 00:06 . 2009-11-07 00:06 1130824 c:\windows\system32\dfshim.dll
+ 2010-04-07 22:48 . 2010-04-07 22:48 5967872 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.dll
+ 2010-09-22 08:44 . 2010-09-22 08:44 5242880 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.dll
+ 2010-03-23 04:32 . 2010-03-23 04:32 3182592 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
+ 2010-05-11 05:40 . 2010-05-11 05:40 5812560 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
+ 2010-05-11 05:40 . 2010-05-11 05:40 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2010-08-05 10:31 . 2010-08-05 10:31 4040704 c:\windows\Installer\1d7087.msp
+ 2009-10-16 17:07 . 2009-10-16 17:07 6115328 c:\windows\Installer\1d7065.msp
+ 2010-10-22 14:45 . 2010-10-22 14:45 8444928 c:\windows\Installer\1d7039.msp
+ 2010-06-11 16:55 . 2010-06-11 16:55 1827328 c:\windows\Installer\1d7021.msp
+ 2010-08-23 16:09 . 2010-08-23 16:09 7673344 c:\windows\Installer\1d7007.msp
+ 2010-10-01 16:42 . 2010-10-01 16:42 5054464 c:\windows\Installer\1d6fe9.msp
+ 2009-11-08 23:25 . 2009-11-08 23:25 1935360 c:\windows\Installer\1d6fc5.msp
+ 2010-09-23 06:39 . 2010-09-23 06:39 4265472 c:\windows\Installer\1d6f97.msp
+ 2010-12-06 14:02 . 2010-12-06 14:02 5518848 c:\windows\Installer\1d6f6a.msp
+ 2010-08-25 16:06 . 2010-08-25 16:06 6479360 c:\windows\Installer\1d6f54.msp
+ 2010-10-01 20:53 . 2010-10-01 20:53 4147712 c:\windows\Installer\1d6f3f.msp
+ 2010-04-11 21:17 . 2010-04-11 21:17 2607104 c:\windows\Installer\1d6f18.msp
+ 2010-04-11 21:17 . 2010-04-11 21:17 4210688 c:\windows\Installer\1d6f17.msp
+ 2010-08-24 08:49 . 2010-08-24 08:49 6825472 c:\windows\Installer\1d6f0b.msp
+ 2010-03-30 11:34 . 2010-03-30 11:34 3826688 c:\windows\Installer\1d6eed.msp
+ 2007-05-10 12:43 . 2007-05-10 12:43 6688096 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSACCESS.EXE
+ 2007-04-30 13:57 . 2007-04-30 13:57 7084384 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\INFOPATH.EXE
+ 2010-12-16 22:00 . 2010-01-05 09:58 1168384 c:\windows\ie7updates\KB2416400-IE7\urlmon.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 3599360 c:\windows\ie7updates\KB2416400-IE7\mshtml.dll
+ 2010-12-16 22:00 . 2010-01-05 09:58 6067200 c:\windows\ie7updates\KB2416400-IE7\ieframe.dll
+ 2008-10-15 10:56 . 2010-04-28 18:15 2192128 c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2008-10-15 10:56 . 2010-04-28 05:45 2026496 c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2008-10-15 10:56 . 2010-04-28 05:45 2068992 c:\windows\Driver Cache\i386\ntkrnlpa.exe
+ 2008-10-15 10:56 . 2010-04-28 05:45 2148352 c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2010-12-16 22:10 . 2010-12-16 22:10 3323392 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\a36a79380c718818d6b2e6cabc07870d\WindowsBase.ni.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 3312128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\80be477cdbf6bbaa2eb4711a3bb33181\WindowsBase.ni.dll
+ 2010-12-16 22:12 . 2010-12-16 22:12 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\570f0436706c59457ba71154dc663bf9\UIAutomationClientsideProviders.ni.dll
+ 2010-12-16 22:08 . 2010-12-16 22:08 7949824 c:\windows\assembly\NativeImages_v2.0.50727_32\System\2f867d97fb1a34e4d6985780631574bb\System.ni.dll
+ 2010-12-16 22:12 . 2010-12-16 22:12 5450240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\8ee82dfeff03ca87492149cdcbfc3f21\System.Xml.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 1913344 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\db840c3cff7fbcbb4c56ad1670e873d5\System.Speech.ni.dll
+ 2010-12-16 22:13 . 2010-12-16 22:13 2344960 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\cc972b8d2b48892bc2483caf8c903f36\System.Runtime.Serialization.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 1035776 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\8c0e64efa958b19328063758383bd36b\System.Printing.ni.dll
+ 2010-12-16 22:13 . 2010-12-16 22:13 1070080 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\901c75ef7d32d0044caaee00c61d4cfd\System.IdentityModel.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\f78f03ba3b1b21e3b26369402c117d33\System.Drawing.ni.dll
+ 2010-12-16 22:10 . 2010-12-16 22:10 6615040 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\8247767272be0a26e5c22f0a32e1f75c\System.Data.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 2508800 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\3f91a09bc7c22e6c26acbe6e82fe74c0\System.Data.SqlXml.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 2510848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\17388687d6962f1b46f3b159f8de6dce\System.Data.Linq.ni.dll
+ 2010-12-16 22:10 . 2010-12-16 22:10 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\79b51897ef91e69987acd966b6ab86d6\System.Core.ni.dll
+ 2010-12-16 22:10 . 2010-12-16 22:10 2125824 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\a79b682caa799dea4f9081c687c9ce32\ReachFramework.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 2126848 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\2eaa32a036d8b106a0be01fc48c23832\ReachFramework.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 1657344 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\56de59649d7169928eade8ed514d4368\PresentationUI.ni.dll
+ 2010-12-16 22:10 . 2010-12-16 22:10 1657344 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\0122a4d715ddc0b2d23e41da609bff75\PresentationUI.ni.dll
+ 2010-12-16 22:08 . 2010-12-16 22:08 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\a6a8210d8ade6ac55be1601ea32eb2df\PresentationBuildTasks.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 1711616 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\4321b81c24f3a8177702c2edb6930ea7\Microsoft.VisualBasic.ni.dll
+ 2010-12-16 22:13 . 2010-12-16 22:13 1092608 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\61d521e6f2354869a38bb36c1a49fcac\Microsoft.Transactions.Bridge.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 1965568 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\8423fa8b560048c9e78f1fd87b8eb584\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 1620480 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\44f47fffa736ab91d3872512cd701ec8\Microsoft.Build.Tasks.ni.dll
+ 2010-12-16 22:14 . 2010-12-16 22:14 1886208 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\5f43738396ebbfe6b24b56d1b9441e2c\Microsoft.Build.Engine.ni.dll
+ 2010-12-16 22:10 . 2010-12-16 22:10 1249280 c:\windows\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll
+ 2010-12-16 22:10 . 2010-12-16 22:10 3182592 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2010-12-16 22:10 . 2010-12-16 22:10 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 1277952 c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll
- 2010-08-02 17:02 . 2010-08-02 17:02 1277952 c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll
+ 2010-12-16 22:02 . 2010-12-16 22:02 5967872 c:\windows\assembly\GAC_MSIL\System.ServiceModel\3.0.0.0__b77a5c561934e089\System.ServiceModel.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2010-12-16 22:10 . 2010-12-16 22:10 5279744 c:\windows\assembly\GAC_MSIL\PresentationFramework\3.0.0.0__31bf3856ad364e35\PresentationFramework.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2010-08-02 17:00 . 2010-08-02 17:00 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2010-12-16 22:10 . 2010-12-16 22:10 4210688 c:\windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
- 2010-08-02 17:01 . 2010-08-02 17:01 4210688 c:\windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
- 2006-03-02 12:00 . 2009-07-13 21:43 10841088 c:\windows\system32\wmp.dll
+ 2006-03-02 12:00 . 2010-08-25 22:36 10841088 c:\windows\system32\wmp.dll
- 2006-03-02 12:00 . 2009-07-13 21:43 10841088 c:\windows\system32\dllcache\wmp.dll
+ 2006-03-02 12:00 . 2010-08-25 22:36 10841088 c:\windows\system32\dllcache\wmp.dll
+ 2010-10-14 15:57 . 2010-10-14 15:57 11189248 c:\windows\Installer\1d704f.msp
+ 2010-06-11 16:52 . 2010-06-11 16:52 45542912 c:\windows\Installer\1d7022.msp
+ 2010-03-31 00:23 . 2010-03-31 00:23 15638528 c:\windows\Installer\1d6fd2.msp
+ 2010-05-19 12:08 . 2010-05-19 12:08 11408896 c:\windows\Installer\1d6faa.msp
+ 2010-12-16 22:06 . 2010-12-16 22:06 20303872 c:\windows\Installer\1d6fa0.msp
+ 2010-12-16 22:04 . 2010-12-16 22:04 15710720 c:\windows\Installer\1d6f8d.msp
+ 2010-04-11 21:17 . 2010-04-11 21:17 14599680 c:\windows\Installer\1d6f27.msp
+ 2010-12-16 22:11 . 2010-12-16 22:11 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\06b728c1e4ea291d4febee5ca33db4b4\System.Windows.Forms.ni.dll
+ 2010-12-16 22:13 . 2010-12-16 22:13 17401344 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\7b26e944ebbfb40a4059972c33210589\System.ServiceModel.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 10682368 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\6dc4aa5e746b0f3bbf452d10cc4be2af\System.Design.ni.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 14323200 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\9aa589e82d88fcc4dc74ed0d8c96b5da\PresentationFramework.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 14325248 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\3bc088b71d6658b6ab2171d99e55acb8\PresentationFramework.ni.dll
+ 2010-12-16 22:11 . 2010-12-16 22:11 12214272 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\4b026d6e1fa81cf20883b0a7dd229639\PresentationCore.ni.dll
+ 2010-12-16 22:09 . 2010-12-16 22:09 12215296 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\272333746e83762af801b8863c698754\PresentationCore.ni.dll
+ 2010-12-16 22:08 . 2010-12-16 22:08 11489280 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\17179b71d7680399c00ce88ddc310209\mscorlib.ni.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-01-24 2289664]
"BitTorrent DNA"="c:\program files\DNA\btdna.exe" [2009-10-07 323392]
"Steam"="c:\program files\steam\steam.exe" [2010-12-03 1242448]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2010-09-25 328056]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2008-05-16 16862720]
"SecurDisc"="c:\program files\Nero\Nero 7\InCD\NBHGui.exe" [2008-02-18 1629480]
"InCD"="c:\program files\Nero\Nero 7\InCD\InCD.exe" [2008-02-18 1057064]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2007-03-14 71216]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2007-01-08 52256]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"amd_dc_opt"="c:\program files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-07-09 13923432]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-07-09 110696]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSGamerOSD]
2007-07-12 08:03 380928 ----a-w- c:\program files\ASUS\GamerOSD\GamerOSD.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]
2009-02-06 18:17 3325952 ----a-w- c:\program files\Electronic Arts\EADM\Core.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]
2008-11-14 12:35 305064 ----a-r- c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"AVGIDSAgent"=2 (0x2)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\DNA\\btdna.exe"=
"c:\\Program Files\\mIRC\\mirc.exe"=
"c:\\Program Files\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\Common Files\\Ahead\\Nero Web\\SetupX.exe"=
"c:\\Program Files\\Electronic Arts\\EADM\\Core.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
"c:\\Program Files\\Valve\\hl.exe"=
"c:\\Program Files\\Valve\\hlds.exe"=
"c:\\Program Files\\Eidos\\Pyro Studios\\Commandos 3 - Destination Berlin\\commandos3.exe"=
"c:\\Program Files\\EA Sports\\NHL 09\\nhl2009.exe"=
"c:\\Program Files\\Google\\Google Earth\\plugin\\geplugin.exe"=
"c:\\Program Files\\Rockstar Games\\Rockstar Games Social Club\\RGSCLauncher.exe"=
"c:\\Program Files\\Rockstar Games\\Grand Theft Auto IV\\LaunchGTAIV.exe"=
"c:\\Program Files\\Rockstar Games\\Grand Theft Auto IV\\GTAIV.exe"=
"c:\\Program Files\\Valve\\hltv.exe"=
"c:\\Program Files\\ICQ7.2\\ICQ.exe"=
"c:\\Program Files\\ICQ7.2\\aolload.exe"=
"c:\\Program Files\\Steam\\SteamApps\\yrp2k9jstahwdn2tzzpjgsydt\\counter-strike source\\hl2.exe"=
"c:\\Program Files\\Steam\\SteamApps\\yrp2k9jstahwdn2tzzpjgsydt\\day of defeat source\\hl2.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"11426:TCP"= 11426:TCP:BitComet 11426 TCP
"11426:UDP"= 11426:UDP:BitComet 11426 UDP
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [7.3.2009 10:43 691696]
R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;c:\program files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [6.9.2009 5:06 169312]
R2 Application Updater;Application Updater;c:\program files\Application Updater\ApplicationUpdater.exe [8.1.2010 0:51 380928]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [16.10.2008 18:45 246520]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [1.9.2010 15:55 136176]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-01-24 10:30 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
2010-12-16 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
2010-12-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-01 12:01]
2010-12-16 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-01 12:01]
2010-12-16 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2010-09-28 20:44]
.
.
------- Doplňkový sken -------
.
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: {{0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} -
FF - ProfilePath - c:\documents and settings\Lukas\Data aplikací\Mozilla\Firefox\Profiles\k6a34vp6.default\
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: PandoraTV Toolbar: toolbar@ask.com - %profile%\extensions\toolbar@ask.com
FF - Ext: DAEMON Tools Toolbar: DTToolbar@toolbarnet.com - %profile%\extensions\DTToolbar@toolbarnet.com
FF - Ext: ICQ Toolbar: {800b5000-a755-47e1-992b-48a1c1357f07} - %profile%\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
AddRemove-HijackThis - G:\HijackThis.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-12-17 07:22
Windows 5.1.2600 Service Pack 3 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_USERS\S-1-5-21-57989841-1482476501-725345543-1005\Software\SecuROM\License information*]
"datasecu"=hex:26,d7,76,ce,5b,01,8c,cf,3e,4a,8b,7d,f3,da,e3,68,aa,52,2f,cf,35,
d2,74,e0,8e,fc,2c,74,ad,d8,92,7e,27,a5,63,f0,3c,73,79,51,f0,11,27,82,61,c2,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'explorer.exe'(3380)
c:\program files\Microsoft Office\OFFICE11\msohev.dll
c:\program files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
c:\program files\Nero\Nero 7\InCD\InCDsrv.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\program files\CyberLink\Shared Files\RichVideo.exe
c:\windows\system32\wscntfy.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\RUNDLL32.EXE
.
**************************************************************************
.
Celkový čas: 2010-12-17 07:26:16 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-12-17 06:26
ComboFix2.txt 2010-12-16 21:31
Před spuštěním: Volných bajtů: 79 578 583 040
Po spuštění: Volných bajtů: 79 612 411 904
- - End Of File - - EE6402167B1EFE938ACBFAFB1264909E
-
superman
- Návštěvník
- Příspěvky: 18
- Registrován: 18 dub 2005 16:08
- Bydliště: Praha
- Kontaktovat uživatele:
Re: Prsím o kontrolu AVG Hlásí Win32/Patched
Musel jsem to rozdělit na dvě zprávy
předem moooooc děkuji
předem moooooc děkuji
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: Prsím o kontrolu AVG Hlásí Win32/Patched
ComboFix odinstalujemejdi Start -> Spustit... a zkopíruj ComboFix /Uninstall (pozor, za x je mezera) -> OK
Stáhni a nainstaluj MBAM zde http://www.download.com/Malwarebytes-An ... tag=button
Spustit > na 3.záložce "Aktualizace" > Kontrola aktualizací
následně na 1.záložce "Kontrolor" -> Rychlá kontrola -> Prohledat
po dokončení scanu vyskočí okno Notepad s výsledkem - obsah zkopíruj do své odpovědi
zatím nic nemazat - počkej na posouzení
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
-
superman
- Návštěvník
- Příspěvky: 18
- Registrován: 18 dub 2005 16:08
- Bydliště: Praha
- Kontaktovat uživatele:
Re: Prsím o kontrolu AVG Hlásí Win32/Patched
Malwarebytes' Anti-Malware 1.50
www.malwarebytes.org
Verze databáze: 5341
Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13
17.12.2010 8:20:55
mbam-log-2010-12-17 (08-20-46).txt
Typ kontroly: Rychlý test
Testované objekty: 153664
Uplynulý čas: 2 minut, 2 sekund
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 1
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 2
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče v registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWebSearch) -> No action taken.
Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
c:\documents and settings\Lukas\data aplikací\avdrn.dat (Malware.Trace) -> No action taken.
c:\WINDOWS\system32\config\systemprofile\data aplikací\fvgqad.dat (Malware.Trace) -> No action taken.
www.malwarebytes.org
Verze databáze: 5341
Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13
17.12.2010 8:20:55
mbam-log-2010-12-17 (08-20-46).txt
Typ kontroly: Rychlý test
Testované objekty: 153664
Uplynulý čas: 2 minut, 2 sekund
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 1
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 2
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče v registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWebSearch) -> No action taken.
Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
c:\documents and settings\Lukas\data aplikací\avdrn.dat (Malware.Trace) -> No action taken.
c:\WINDOWS\system32\config\systemprofile\data aplikací\fvgqad.dat (Malware.Trace) -> No action taken.
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: Prsím o kontrolu AVG Hlásí Win32/Patched
nový RSIT + popis chování PC (nějaké problémy?)MBAM spustit znovu - dát Úplná kontrola
vyběhne log, ve kterém budou záznamy tohoto typu:
Infikované adresáře:
Infikované soubory:\xxxxxx -> Quarantined and deleted successfully.
ten bych taky rád viděl
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
-
superman
- Návštěvník
- Příspěvky: 18
- Registrován: 18 dub 2005 16:08
- Bydliště: Praha
- Kontaktovat uživatele:
Re: Prsím o kontrolu AVG Hlásí Win32/Patched
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče v registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWebSearch) -> No action taken.
Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
c:\documents and settings\Lukas\dokumenty\stažené soubory\smileycentralpfsetup2.3.50.62.sa.hp.znfox000.exe (Adware.MyWebSearch) -> No action taken.
c:\documents and settings\Lukas\dokumenty\stažené soubory\ventrilo-2.1.4.exe (Trojan.Dropper) -> No action taken.
c:\documents and settings\Lukas\data aplikací\avdrn.dat (Malware.Trace) -> No action taken.
c:\WINDOWS\system32\config\systemprofile\data aplikací\fvgqad.dat (Malware.Trace) -> No action taken.
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče v registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWebSearch) -> No action taken.
Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
c:\documents and settings\Lukas\dokumenty\stažené soubory\smileycentralpfsetup2.3.50.62.sa.hp.znfox000.exe (Adware.MyWebSearch) -> No action taken.
c:\documents and settings\Lukas\dokumenty\stažené soubory\ventrilo-2.1.4.exe (Trojan.Dropper) -> No action taken.
c:\documents and settings\Lukas\data aplikací\avdrn.dat (Malware.Trace) -> No action taken.
c:\WINDOWS\system32\config\systemprofile\data aplikací\fvgqad.dat (Malware.Trace) -> No action taken.
-
superman
- Návštěvník
- Příspěvky: 18
- Registrován: 18 dub 2005 16:08
- Bydliště: Praha
- Kontaktovat uživatele:
Re: Prsím o kontrolu AVG Hlásí Win32/Patched
Logfile of random's system information tool 1.08 (written by random/random)
Run by Lukas at 2010-12-17 12:28:34
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 77 GB (25%) free of 305 GB
Total RAM: 2047 MB (78% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2010-06-02 1018616]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-05-16 16862720]
"SecurDisc"=C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe [2008-02-18 1629480]
"InCD"=C:\Program Files\Nero\Nero 7\InCD\InCD.exe [2008-02-18 1057064]
"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2007-03-14 71216]
"LanguageShortcut"=C:\Program Files\CyberLink\PowerDVD\Language\Language.exe [2007-01-08 52256]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2010-07-09 13923432]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2010-07-09 110696]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2008-01-24 2289664]
"BitTorrent DNA"=C:\Program Files\DNA\btdna.exe [2009-10-07 323392]
"Steam"=c:\program files\steam\steam.exe [2010-12-03 1242448]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2010-09-25 328056]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSGamerOSD]
C:\Program Files\ASUS\GamerOSD\GamerOSD.exe [2007-07-12 380928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]
C:\Program Files\Electronic Arts\EADM\Core.exe [2009-02-06 3325952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]
C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe [2008-11-14 305064]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"AVGIDSAgent"=2
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"C:\Program Files\mIRC\mirc.exe"="C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe"="C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe:*:Enabled:Nero ProductSetup"
"C:\Program Files\Electronic Arts\EADM\Core.exe"="C:\Program Files\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Disabled:Steam"
"C:\Program Files\Valve\hl.exe"="C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Valve\hlds.exe"="C:\Program Files\Valve\hlds.exe:*:Enabled:HLDS Launcher"
"C:\Program Files\Eidos\Pyro Studios\Commandos 3 - Destination Berlin\commandos3.exe"="C:\Program Files\Eidos\Pyro Studios\Commandos 3 - Destination Berlin\commandos3.exe:*:Enabled:commandos3"
"C:\Program Files\EA Sports\NHL 09\nhl2009.exe"="C:\Program Files\EA Sports\NHL 09\nhl2009.exe:*:Enabled:nhl2009"
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe"="C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth"
"C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe"="C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club"
"C:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe"="C:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV"
"C:\Program Files\Rockstar Games\Grand Theft Auto IV\GTAIV.exe"="C:\Program Files\Rockstar Games\Grand Theft Auto IV\GTAIV.exe:*:Enabled:Grand Theft Auto IV"
"C:\Program Files\Valve\hltv.exe"="C:\Program Files\Valve\hltv.exe:*:Enabled:HLTV Launcher"
"C:\Program Files\ICQ7.2\ICQ.exe"="C:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2"
"C:\Program Files\ICQ7.2\aolload.exe"="C:\Program Files\ICQ7.2\aolload.exe:*:Enabled:aolload.exe"
"C:\Program Files\Steam\SteamApps\yrp2k9jstahwdn2tzzpjgsydt\counter-strike source\hl2.exe"="C:\Program Files\Steam\SteamApps\yrp2k9jstahwdn2tzzpjgsydt\counter-strike source\hl2.exe:*:Enabled:Counter-Strike: Source"
"C:\Program Files\Steam\SteamApps\yrp2k9jstahwdn2tzzpjgsydt\day of defeat source\hl2.exe"="C:\Program Files\Steam\SteamApps\yrp2k9jstahwdn2tzzpjgsydt\day of defeat source\hl2.exe:*:Enabled:Day of Defeat: Source"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.2\ICQ.exe"="C:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2"
"C:\Program Files\ICQ7.2\aolload.exe"="C:\Program Files\ICQ7.2\aolload.exe:*:Enabled:aolload.exe"
======List of files/folders created in the last 1 months======
2010-12-17 12:28:34 ----D---- C:\rsit
2010-12-17 08:15:10 ----D---- C:\Documents and Settings\Lukas\Data aplikací\Malwarebytes
2010-12-17 08:14:19 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2010-12-17 08:14:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-12-17 08:14:15 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-12-17 08:14:15 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2010-12-17 07:26:17 ----A---- C:\ComboFix.txt
2010-12-17 07:13:01 ----D---- C:\WINDOWS\temp
2010-12-16 23:13:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2010-12-16 23:13:28 ----HDC---- C:\WINDOWS\$NtUninstallKB982214$
2010-12-16 23:13:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2010-12-16 23:13:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2259922$
2010-12-16 23:13:00 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2010-12-16 23:12:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2010-12-16 23:12:52 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-12-16 23:12:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2010-12-16 23:12:45 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2010-12-16 23:12:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2296199$
2010-12-16 23:12:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2010-12-16 23:12:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2010-12-16 23:12:29 ----HDC---- C:\WINDOWS\$NtUninstallKB981349$
2010-12-16 23:12:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2010-12-16 23:11:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$
2010-12-16 23:11:53 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2010-12-16 23:11:49 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-12-16 23:11:39 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2010-12-16 23:11:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2010-12-16 23:11:16 ----HDC---- C:\WINDOWS\$NtUninstallKB981852$
2010-12-16 23:11:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2443685$
2010-12-16 23:11:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2010-12-16 23:08:42 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2010-12-16 23:08:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2121546$
2010-12-16 23:06:23 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2010-12-16 23:04:57 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-12-16 23:04:54 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2010-12-16 23:04:50 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2010-12-16 23:04:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2436673$
2010-12-16 23:04:43 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2010-12-16 23:04:19 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2010-12-16 23:04:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$
2010-12-16 23:03:55 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2010-12-16 23:03:29 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2010-12-16 23:03:25 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2010-12-16 23:03:10 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2010-12-16 23:01:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2010-12-16 22:59:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2141007$
2010-12-16 22:58:20 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2010-12-16 22:57:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2010-12-16 22:57:55 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-12-16 22:57:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2010-12-16 22:35:21 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-12-16 22:00:56 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-12-16 18:52:48 ----D---- C:\$AVG
2010-12-16 18:06:20 ----D---- C:\WINDOWS\ERDNT
2010-12-13 13:01:26 ----HD---- C:\Documents and Settings\All Users\Data aplikací\Common Files
2010-12-13 11:55:04 ----D---- C:\Documents and Settings\Lukas\Data aplikací\AVG10
2010-12-13 11:18:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\MFAData
2010-12-10 13:57:44 ----A---- C:\WINDOWS\wininit.ini
2010-12-10 12:37:29 ----D---- C:\Program Files\CCleaner
2010-12-10 12:21:06 ----A---- C:\WINDOWS\system32\drivers\mouhid.sys
2010-12-10 12:21:02 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
======List of files/folders modified in the last 1 months======
2010-12-17 12:21:18 ----D---- C:\WINDOWS\Prefetch
2010-12-17 12:21:06 ----D---- C:\Program Files\Steam
2010-12-17 12:20:50 ----D---- C:\Documents and Settings\Lukas\Data aplikací\uTorrent
2010-12-17 12:20:46 ----D---- C:\Program Files\DNA
2010-12-17 12:20:46 ----D---- C:\Documents and Settings\Lukas\Data aplikací\DNA
2010-12-17 12:20:16 ----SHD---- C:\System Volume Information
2010-12-17 12:19:47 ----D---- C:\WINDOWS\system32\drivers
2010-12-17 08:14:15 ----RD---- C:\Program Files
2010-12-17 08:12:05 ----D---- C:\WINDOWS
2010-12-17 08:11:57 ----D---- C:\WINDOWS\system32\Restore
2010-12-17 08:11:55 ----D---- C:\WINDOWS\system32\CatRoot2
2010-12-17 07:34:20 ----RSD---- C:\WINDOWS\assembly
2010-12-17 07:32:57 ----D---- C:\WINDOWS\Microsoft.NET
2010-12-17 07:22:23 ----A---- C:\WINDOWS\system.ini
2010-12-17 07:22:05 ----D---- C:\WINDOWS\system32\drivers\etc
2010-12-17 07:13:12 ----D---- C:\WINDOWS\system32\config
2010-12-17 07:12:47 ----D---- C:\WINDOWS\system32
2010-12-17 07:12:09 ----D---- C:\WINDOWS\AppPatch
2010-12-17 07:12:07 ----D---- C:\Program Files\Common Files
2010-12-17 05:33:51 ----A---- C:\WINDOWS\NeroDigital.ini
2010-12-16 23:14:22 ----D---- C:\Config.Msi
2010-12-16 23:14:20 ----SHD---- C:\WINDOWS\Installer
2010-12-16 23:14:19 ----A---- C:\WINDOWS\win.ini
2010-12-16 23:13:57 ----HD---- C:\WINDOWS\inf
2010-12-16 23:13:56 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-12-16 23:13:51 ----HD---- C:\WINDOWS\$hf_mig$
2010-12-16 23:12:58 ----D---- C:\WINDOWS\WinSxS
2010-12-16 23:12:19 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-12-16 23:11:46 ----D---- C:\WINDOWS\system32\CatRoot
2010-12-16 23:10:06 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-12-16 23:06:45 ----D---- C:\Program Files\Microsoft Silverlight
2010-12-16 23:04:20 ----D---- C:\Program Files\Outlook Express
2010-12-16 23:03:27 ----D---- C:\Program Files\Movie Maker
2010-12-16 23:01:01 ----D---- C:\WINDOWS\system32\cs-cz
2010-12-16 23:01:00 ----D---- C:\Program Files\Internet Explorer
2010-12-16 22:30:53 ----SD---- C:\WINDOWS\Tasks
2010-12-16 22:17:06 ----D---- C:\Program Files\Mozilla Firefox
2010-12-16 22:15:31 ----D---- C:\Program Files\AVG
2010-12-16 21:58:40 ----RSH---- C:\boot.ini
2010-12-16 20:17:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2010-12-16 20:01:21 ----D---- C:\Program Files\Spybot - Search & Destroy
2010-12-15 09:42:45 ----D---- C:\WINDOWS\Minidump
2010-12-13 13:42:01 ----A---- C:\WINDOWS\DUMP704e.tmp
2010-12-13 11:34:12 ----RD---- C:\Program Files\Skype
2010-12-13 11:33:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-12-13 11:20:21 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-12-13 11:17:03 ----D---- C:\Documents and Settings\Lukas\Data aplikací\Skype
2010-12-13 08:51:52 ----D---- C:\Documents and Settings\Lukas\Data aplikací\skypePM
2010-12-10 14:02:34 ----D---- C:\Documents and Settings\Lukas\Data aplikací\ICQ
2010-12-10 12:40:24 ----D---- C:\WINDOWS\Debug
2010-12-06 18:27:14 ----D---- C:\WINDOWS\security
2010-11-18 19:15:47 ----A---- C:\WINDOWS\system32\isign32.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2008-06-16 44944]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-09-09 691696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 AsIO;AsIO; C:\WINDOWS\system32\drivers\AsIO.sys [2007-12-17 12400]
R1 asuskbnt;Enhanced Display Driver Helper Service; C:\WINDOWS\system32\drivers\atkkbnt.sys [2007-07-12 11136]
R1 EIO;EIO; \??\C:\WINDOWS\system32\drivers\EIO.sys []
R1 InCDPass;Nero InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys [2008-02-18 36648]
R1 incdrm;Nero InCD MRW Remapper; C:\WINDOWS\system32\drivers\InCDRm.sys [2008-02-18 38312]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R3 AmdLLD;AMD Low Level Device Driver; C:\WINDOWS\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 asusgsb;ASUS Virtual Video Capture Device Driver; C:\WINDOWS\system32\drivers\asusgsb.sys [2007-07-12 12416]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-05-20 4800000]
R3 L1e;Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l1e51x86.sys [2008-03-11 36864]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-07-09 10604128]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 Video3D;ASUS Video3D Service; C:\WINDOWS\System32\Drivers\Video3D32.sys [2007-07-12 10752]
R4 InCDfs;Nero InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys [2008-02-18 118952]
S3 a4n2rx4i;a4n2rx4i; C:\WINDOWS\system32\drivers\a4n2rx4i.sys []
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 Passthru;Service; C:\WINDOWS\system32\DRIVERS\ndisvvan.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8; C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-09-06 169312]
R2 Application Updater;Application Updater; C:\Program Files\Application Updater\ApplicationUpdater.exe [2010-01-08 380928]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2010-06-02 246520]
R2 InCDsrv;InCD Helper; C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe [2008-02-18 1553704]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-06-14 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-01-24 73728]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-07-09 155752]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2007-05-14 272024]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S1 InCDrec;Nero InCD File System Recognizer; C:\WINDOWS\system32\drivers\InCDRec.sys [2008-02-18 16040]
S2 ATKKeyboardService;ATK Keyboard Service; C:\WINDOWS\ATKKBService.exe [2007-07-12 257024]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-06-05 136176]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-08-10 867080]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-07-31 136120]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-09-17 800040]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Run by Lukas at 2010-12-17 12:28:34
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 77 GB (25%) free of 305 GB
Total RAM: 2047 MB (78% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2010-06-02 1018616]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-05-16 16862720]
"SecurDisc"=C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe [2008-02-18 1629480]
"InCD"=C:\Program Files\Nero\Nero 7\InCD\InCD.exe [2008-02-18 1057064]
"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2007-03-14 71216]
"LanguageShortcut"=C:\Program Files\CyberLink\PowerDVD\Language\Language.exe [2007-01-08 52256]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2010-07-09 13923432]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2010-07-09 110696]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2008-01-24 2289664]
"BitTorrent DNA"=C:\Program Files\DNA\btdna.exe [2009-10-07 323392]
"Steam"=c:\program files\steam\steam.exe [2010-12-03 1242448]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2010-09-25 328056]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSGamerOSD]
C:\Program Files\ASUS\GamerOSD\GamerOSD.exe [2007-07-12 380928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]
C:\Program Files\Electronic Arts\EADM\Core.exe [2009-02-06 3325952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]
C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe [2008-11-14 305064]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"AVGIDSAgent"=2
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"C:\Program Files\mIRC\mirc.exe"="C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe"="C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe:*:Enabled:Nero ProductSetup"
"C:\Program Files\Electronic Arts\EADM\Core.exe"="C:\Program Files\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Disabled:Steam"
"C:\Program Files\Valve\hl.exe"="C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Valve\hlds.exe"="C:\Program Files\Valve\hlds.exe:*:Enabled:HLDS Launcher"
"C:\Program Files\Eidos\Pyro Studios\Commandos 3 - Destination Berlin\commandos3.exe"="C:\Program Files\Eidos\Pyro Studios\Commandos 3 - Destination Berlin\commandos3.exe:*:Enabled:commandos3"
"C:\Program Files\EA Sports\NHL 09\nhl2009.exe"="C:\Program Files\EA Sports\NHL 09\nhl2009.exe:*:Enabled:nhl2009"
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe"="C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth"
"C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe"="C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club"
"C:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe"="C:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV"
"C:\Program Files\Rockstar Games\Grand Theft Auto IV\GTAIV.exe"="C:\Program Files\Rockstar Games\Grand Theft Auto IV\GTAIV.exe:*:Enabled:Grand Theft Auto IV"
"C:\Program Files\Valve\hltv.exe"="C:\Program Files\Valve\hltv.exe:*:Enabled:HLTV Launcher"
"C:\Program Files\ICQ7.2\ICQ.exe"="C:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2"
"C:\Program Files\ICQ7.2\aolload.exe"="C:\Program Files\ICQ7.2\aolload.exe:*:Enabled:aolload.exe"
"C:\Program Files\Steam\SteamApps\yrp2k9jstahwdn2tzzpjgsydt\counter-strike source\hl2.exe"="C:\Program Files\Steam\SteamApps\yrp2k9jstahwdn2tzzpjgsydt\counter-strike source\hl2.exe:*:Enabled:Counter-Strike: Source"
"C:\Program Files\Steam\SteamApps\yrp2k9jstahwdn2tzzpjgsydt\day of defeat source\hl2.exe"="C:\Program Files\Steam\SteamApps\yrp2k9jstahwdn2tzzpjgsydt\day of defeat source\hl2.exe:*:Enabled:Day of Defeat: Source"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.2\ICQ.exe"="C:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2"
"C:\Program Files\ICQ7.2\aolload.exe"="C:\Program Files\ICQ7.2\aolload.exe:*:Enabled:aolload.exe"
======List of files/folders created in the last 1 months======
2010-12-17 12:28:34 ----D---- C:\rsit
2010-12-17 08:15:10 ----D---- C:\Documents and Settings\Lukas\Data aplikací\Malwarebytes
2010-12-17 08:14:19 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2010-12-17 08:14:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-12-17 08:14:15 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-12-17 08:14:15 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2010-12-17 07:26:17 ----A---- C:\ComboFix.txt
2010-12-17 07:13:01 ----D---- C:\WINDOWS\temp
2010-12-16 23:13:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2010-12-16 23:13:28 ----HDC---- C:\WINDOWS\$NtUninstallKB982214$
2010-12-16 23:13:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2010-12-16 23:13:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2259922$
2010-12-16 23:13:00 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2010-12-16 23:12:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2010-12-16 23:12:52 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-12-16 23:12:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2010-12-16 23:12:45 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2010-12-16 23:12:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2296199$
2010-12-16 23:12:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2010-12-16 23:12:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2010-12-16 23:12:29 ----HDC---- C:\WINDOWS\$NtUninstallKB981349$
2010-12-16 23:12:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2010-12-16 23:11:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$
2010-12-16 23:11:53 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2010-12-16 23:11:49 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-12-16 23:11:39 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2010-12-16 23:11:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2010-12-16 23:11:16 ----HDC---- C:\WINDOWS\$NtUninstallKB981852$
2010-12-16 23:11:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2443685$
2010-12-16 23:11:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2010-12-16 23:08:42 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2010-12-16 23:08:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2121546$
2010-12-16 23:06:23 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2010-12-16 23:04:57 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-12-16 23:04:54 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2010-12-16 23:04:50 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2010-12-16 23:04:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2436673$
2010-12-16 23:04:43 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2010-12-16 23:04:19 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2010-12-16 23:04:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$
2010-12-16 23:03:55 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2010-12-16 23:03:29 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2010-12-16 23:03:25 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2010-12-16 23:03:10 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2010-12-16 23:01:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2010-12-16 22:59:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2141007$
2010-12-16 22:58:20 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2010-12-16 22:57:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2010-12-16 22:57:55 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-12-16 22:57:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2010-12-16 22:35:21 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-12-16 22:00:56 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-12-16 18:52:48 ----D---- C:\$AVG
2010-12-16 18:06:20 ----D---- C:\WINDOWS\ERDNT
2010-12-13 13:01:26 ----HD---- C:\Documents and Settings\All Users\Data aplikací\Common Files
2010-12-13 11:55:04 ----D---- C:\Documents and Settings\Lukas\Data aplikací\AVG10
2010-12-13 11:18:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\MFAData
2010-12-10 13:57:44 ----A---- C:\WINDOWS\wininit.ini
2010-12-10 12:37:29 ----D---- C:\Program Files\CCleaner
2010-12-10 12:21:06 ----A---- C:\WINDOWS\system32\drivers\mouhid.sys
2010-12-10 12:21:02 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
======List of files/folders modified in the last 1 months======
2010-12-17 12:21:18 ----D---- C:\WINDOWS\Prefetch
2010-12-17 12:21:06 ----D---- C:\Program Files\Steam
2010-12-17 12:20:50 ----D---- C:\Documents and Settings\Lukas\Data aplikací\uTorrent
2010-12-17 12:20:46 ----D---- C:\Program Files\DNA
2010-12-17 12:20:46 ----D---- C:\Documents and Settings\Lukas\Data aplikací\DNA
2010-12-17 12:20:16 ----SHD---- C:\System Volume Information
2010-12-17 12:19:47 ----D---- C:\WINDOWS\system32\drivers
2010-12-17 08:14:15 ----RD---- C:\Program Files
2010-12-17 08:12:05 ----D---- C:\WINDOWS
2010-12-17 08:11:57 ----D---- C:\WINDOWS\system32\Restore
2010-12-17 08:11:55 ----D---- C:\WINDOWS\system32\CatRoot2
2010-12-17 07:34:20 ----RSD---- C:\WINDOWS\assembly
2010-12-17 07:32:57 ----D---- C:\WINDOWS\Microsoft.NET
2010-12-17 07:22:23 ----A---- C:\WINDOWS\system.ini
2010-12-17 07:22:05 ----D---- C:\WINDOWS\system32\drivers\etc
2010-12-17 07:13:12 ----D---- C:\WINDOWS\system32\config
2010-12-17 07:12:47 ----D---- C:\WINDOWS\system32
2010-12-17 07:12:09 ----D---- C:\WINDOWS\AppPatch
2010-12-17 07:12:07 ----D---- C:\Program Files\Common Files
2010-12-17 05:33:51 ----A---- C:\WINDOWS\NeroDigital.ini
2010-12-16 23:14:22 ----D---- C:\Config.Msi
2010-12-16 23:14:20 ----SHD---- C:\WINDOWS\Installer
2010-12-16 23:14:19 ----A---- C:\WINDOWS\win.ini
2010-12-16 23:13:57 ----HD---- C:\WINDOWS\inf
2010-12-16 23:13:56 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-12-16 23:13:51 ----HD---- C:\WINDOWS\$hf_mig$
2010-12-16 23:12:58 ----D---- C:\WINDOWS\WinSxS
2010-12-16 23:12:19 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-12-16 23:11:46 ----D---- C:\WINDOWS\system32\CatRoot
2010-12-16 23:10:06 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-12-16 23:06:45 ----D---- C:\Program Files\Microsoft Silverlight
2010-12-16 23:04:20 ----D---- C:\Program Files\Outlook Express
2010-12-16 23:03:27 ----D---- C:\Program Files\Movie Maker
2010-12-16 23:01:01 ----D---- C:\WINDOWS\system32\cs-cz
2010-12-16 23:01:00 ----D---- C:\Program Files\Internet Explorer
2010-12-16 22:30:53 ----SD---- C:\WINDOWS\Tasks
2010-12-16 22:17:06 ----D---- C:\Program Files\Mozilla Firefox
2010-12-16 22:15:31 ----D---- C:\Program Files\AVG
2010-12-16 21:58:40 ----RSH---- C:\boot.ini
2010-12-16 20:17:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2010-12-16 20:01:21 ----D---- C:\Program Files\Spybot - Search & Destroy
2010-12-15 09:42:45 ----D---- C:\WINDOWS\Minidump
2010-12-13 13:42:01 ----A---- C:\WINDOWS\DUMP704e.tmp
2010-12-13 11:34:12 ----RD---- C:\Program Files\Skype
2010-12-13 11:33:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-12-13 11:20:21 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-12-13 11:17:03 ----D---- C:\Documents and Settings\Lukas\Data aplikací\Skype
2010-12-13 08:51:52 ----D---- C:\Documents and Settings\Lukas\Data aplikací\skypePM
2010-12-10 14:02:34 ----D---- C:\Documents and Settings\Lukas\Data aplikací\ICQ
2010-12-10 12:40:24 ----D---- C:\WINDOWS\Debug
2010-12-06 18:27:14 ----D---- C:\WINDOWS\security
2010-11-18 19:15:47 ----A---- C:\WINDOWS\system32\isign32.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2008-06-16 44944]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-09-09 691696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 AsIO;AsIO; C:\WINDOWS\system32\drivers\AsIO.sys [2007-12-17 12400]
R1 asuskbnt;Enhanced Display Driver Helper Service; C:\WINDOWS\system32\drivers\atkkbnt.sys [2007-07-12 11136]
R1 EIO;EIO; \??\C:\WINDOWS\system32\drivers\EIO.sys []
R1 InCDPass;Nero InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys [2008-02-18 36648]
R1 incdrm;Nero InCD MRW Remapper; C:\WINDOWS\system32\drivers\InCDRm.sys [2008-02-18 38312]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R3 AmdLLD;AMD Low Level Device Driver; C:\WINDOWS\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 asusgsb;ASUS Virtual Video Capture Device Driver; C:\WINDOWS\system32\drivers\asusgsb.sys [2007-07-12 12416]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-05-20 4800000]
R3 L1e;Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l1e51x86.sys [2008-03-11 36864]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-07-09 10604128]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 Video3D;ASUS Video3D Service; C:\WINDOWS\System32\Drivers\Video3D32.sys [2007-07-12 10752]
R4 InCDfs;Nero InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys [2008-02-18 118952]
S3 a4n2rx4i;a4n2rx4i; C:\WINDOWS\system32\drivers\a4n2rx4i.sys []
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 Passthru;Service; C:\WINDOWS\system32\DRIVERS\ndisvvan.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8; C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-09-06 169312]
R2 Application Updater;Application Updater; C:\Program Files\Application Updater\ApplicationUpdater.exe [2010-01-08 380928]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2010-06-02 246520]
R2 InCDsrv;InCD Helper; C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe [2008-02-18 1553704]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-06-14 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-01-24 73728]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-07-09 155752]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2007-05-14 272024]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S1 InCDrec;Nero InCD File System Recognizer; C:\WINDOWS\system32\drivers\InCDRec.sys [2008-02-18 16040]
S2 ATKKeyboardService;ATK Keyboard Service; C:\WINDOWS\ATKKBService.exe [2007-07-12 257024]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-06-05 136176]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-08-10 867080]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-07-31 136120]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-09-17 800040]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: Prsím o kontrolu AVG Hlásí Win32/Patched
v MBAM nebylo smazáno 
MBAM spustit znovu - dát Úplná kontrola
vyběhne log, ve kterém budou záznamy tohoto typu:
Infikované adresáře:
Infikované soubory:\xxxxxx -> Quarantined and deleted successfully.
ten bych taky rád viděl
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
Přispějete na provoz fóra?