VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Firefox, avast trojsky kon

https://forum.viry.cz:443/viewtopic.php?t=109388

Stránka 1 z 1

Firefox, avast trojsky kon

Napsal: 12 úno 2011 15:52
od sxewarrior
Zdravím, pekné popoludnie.
mám taký problém na mojom pc mi začalo vyhadzovať tabuľku že Avast zablokoval škodlivú stránku alebo súbor ktorý ide cez mozillu firefox. (prikladám screen)
http://oi52.tinypic.com/xclzt4.jpg
na túto stránku som nikdy nešiel, žeby nejaká reklama?
skúsil som vymazať cookies, historiu mozilly, preinštaloval som mozillu firefox (odinštaloval, nainštaloval) ale stále toto vyhadzuje.
vo webovom štíte v avaste, som si dal zobraziť log štítu a táto tabuľka je zobrazená:
http://oi52.tinypic.com/124k581.jpg

Prikladám samozrejme log z RSIT:

Logfile of random's system information tool 1.08 (written by random/random)
Run by Majo at 2011-02-12 15:50:44
WIN_XP Service Pack 2
System drive C: has 2 GB (2%) free of 75 GB
Total RAM: 2047 MB (74% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:50:50, on 12. 2. 2011
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files\Microsoft LifeCam\MSCamS32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Razer\Krait\razerhid.exe
C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\BenQ\Versato.exe
C:\Program Files\BenQ\OSD.EXE
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\Razer\Krait\razerofa.exe
C:\Program Files\QIP\qip.exe
C:\Program Files\Safari\Safari.exe
C:\Program Files\Guitar Pro 5\GP5.exe
C:\WINDOWS\system32\rundll32.exe
C:\Documents and Settings\Majo\Desktop\RSIT.exe
C:\Program Files\trend micro\Majo.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = Root: HKCU; Subkey: Software\Microsoft\Internet Explorer\SearchUrl; ValueType: string; ValueName: '; ValueData: '; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Krait] C:\Program Files\Razer\Krait\razerhid.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -startup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [Steam] "c:\program files\valve\steam\steam.exe" -silent
O4 - HKUS\S-1-5-21-796845957-1606980848-839522115-1003\..\Run: [Steam] "c:\program files\valve\steam\steam.exe" -silent (User '?')
O4 - HKUS\S-1-5-21-796845957-1606980848-839522115-1003\..\Run: [ABBYY Screenshot Reader Bonus] (User '?')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - S-1-5-21-796845957-1606980848-839522115-1003 Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (User '?')
O4 - S-1-5-18 Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (User '?')
O4 - .DEFAULT Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Enable Q-Type program.lnk = C:\Program Files\BenQ\Versato.exe
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: QIP 2005 - {1EF681F7-A04B-4D6D-9012-A307CCA55610} - C:\Program Files\QIP\qip.exe (HKCU)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ABBYY PDF Transformer 3.0 – Licenčná služba (ABBYY.Licensing.PDFTransformer.Classic.3.0) - ABBYY - C:\Program Files\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Imapi Helper - Alex Feinman - C:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe

--
End of file - 7533 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{68F9551E-0411-48E4-9AAF-4BC42A6A46BE}]
EWPBrowseObject Class - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll [2006-06-09 34304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2006-06-09 552960]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ATICCC"=C:\Program Files\ATI Technologies\ATI.ACE\cli.exe [2006-01-02 45056]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2006-08-03 577536]
"Krait"=C:\Program Files\Razer\Krait\razerhid.exe [2006-01-24 147456]
"SSBkgdUpdate"=C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-09-28 185896]
"OpwareSE4"=C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe [2006-10-11 75304]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"PCSuiteTrayApplication"=C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE [2006-06-15 229376]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2007-06-29 286720]
"LogitechQuickCamRibbon"=C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2009-10-14 2793304]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2011-01-13 3396624]
"LifeCam"=C:\Program Files\Microsoft LifeCam\LifeExp.exe [2010-05-20 119152]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=c:\program files\valve\steam\steam.exe [2010-11-17 1242448]
"ABBYY Screenshot Reader Bonus"= []

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Enable Q-Type program.lnk - C:\Program Files\BenQ\Versato.exe

C:\Documents and Settings\Majo\Start Menu\Programs\Startup
Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-05-03 61440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-08-24 133120]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\QIP\qip.exe"="C:\Program Files\QIP\qip.exe:*:Enabled:Quiet Internet Pager"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\Non Steam\hl.exe"="C:\Program Files\Non Steam\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\totalcmd\TOTALCMD.EXE"="C:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit"
"C:\Program Files\Microsoft LifeCam\LifeCam.exe"="C:\Program Files\Microsoft LifeCam\LifeCam.exe:*:Enabled:LifeCam.exe"
"C:\Program Files\Microsoft LifeCam\LifeEnC2.exe"="C:\Program Files\Microsoft LifeCam\LifeEnC2.exe:*:Enabled:LifeEnC2.exe"
"C:\Program Files\Microsoft LifeCam\LifeExp.exe"="C:\Program Files\Microsoft LifeCam\LifeExp.exe:*:Enabled:LifeExp.exe"
"C:\Program Files\Microsoft LifeCam\LifeTray.exe"="C:\Program Files\Microsoft LifeCam\LifeTray.exe:*:Enabled:LifeTray.exe"
"C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe"="C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\Program Files\Valve\Steam\SteamApps\trojanskinhead69\counter-strike\hl.exe"="C:\Program Files\Valve\Steam\SteamApps\trojanskinhead69\counter-strike\hl.exe:*:Enabled:Counter-Strike"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Truck_Racing_By_Renault_Trucks\Bin\RTR.exe"="C:\Program Files\Truck_Racing_By_Renault_Trucks\Bin\RTR.exe:*:Disabled:Truck Racing by Renault Trucks"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2011-02-12 14:41:53 ----D---- C:\Documents and Settings\Majo\Application Data\Mozilla
2011-02-08 11:47:47 ----D---- C:\Program Files\Vstplugins
2011-02-04 00:30:15 ----AH---- C:\WINDOWS\~mem001.sys
2011-02-04 00:30:15 ----A---- C:\WINDOWS\mm.sys
2011-02-04 00:30:15 ----A---- C:\WINDOWS\Metronome 4.0 Uninstall.exe
2011-02-04 00:30:14 ----D---- C:\Program Files\Metronome 4.0
2011-02-04 00:25:57 ----D---- C:\Program Files\Metronom
2011-02-02 12:47:23 ----D---- C:\Documents and Settings\Majo\Application Data\Asoftech
2011-01-28 23:51:00 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2011-01-28 23:51:00 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2011-01-28 23:50:59 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2011-01-28 23:50:58 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2011-01-28 23:50:58 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2011-01-28 23:50:58 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2011-01-28 23:50:57 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2011-01-28 23:50:56 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2011-01-28 23:50:56 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2011-01-28 23:50:55 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2011-01-28 23:50:55 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2011-01-28 23:50:55 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2011-01-28 23:50:54 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2011-01-28 23:50:54 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2011-01-28 23:50:53 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2011-01-28 23:50:53 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2011-01-28 23:50:52 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2011-01-28 23:50:51 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2011-01-28 23:50:51 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2011-01-28 23:50:51 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2011-01-28 23:50:50 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2011-01-28 23:50:50 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2011-01-28 23:50:49 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2011-01-28 23:50:49 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2011-01-28 23:50:48 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2011-01-28 23:50:48 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2011-01-28 23:50:47 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2011-01-28 23:50:47 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2011-01-28 23:50:46 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2011-01-28 23:50:46 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2011-01-28 23:50:45 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2011-01-28 23:50:45 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2011-01-28 23:50:44 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2011-01-28 20:38:44 ----D---- C:\Program Files\Truck_Racing_By_Renault_Trucks
2011-01-28 20:38:44 ----D---- C:\Program Files\OpenAL
2011-01-28 20:38:43 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2011-01-28 20:38:43 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2011-01-28 20:38:39 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2011-01-28 20:38:37 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2011-01-28 20:38:37 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2011-01-28 20:38:37 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2011-01-28 20:38:36 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2011-01-28 20:38:35 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2011-01-28 20:38:35 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2011-01-28 20:38:34 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2011-01-28 20:38:34 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2011-01-28 20:38:34 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2011-01-28 20:38:33 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2011-01-28 20:38:33 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2011-01-28 20:38:32 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2011-01-28 20:38:31 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2011-01-28 20:38:30 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2011-01-28 20:38:29 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2011-01-28 20:38:29 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2011-01-28 20:38:27 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2011-01-28 20:38:26 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2011-01-28 20:38:25 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2011-01-28 20:38:25 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2011-01-28 20:38:24 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2011-01-28 20:38:24 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2011-01-28 20:38:24 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2011-01-28 20:38:24 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2011-01-28 20:38:23 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2011-01-28 20:38:23 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2011-01-28 20:38:23 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2011-01-28 20:38:22 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2011-01-28 20:38:11 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2011-01-28 20:38:10 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2011-01-28 20:38:10 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2011-01-28 20:38:10 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2011-01-28 20:38:09 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2011-01-28 20:38:09 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2011-01-28 20:38:08 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2011-01-28 20:38:08 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2011-01-28 20:38:07 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2011-01-28 20:38:06 ----A---- C:\WINDOWS\system32\d3dx9_24.dll

======List of files/folders modified in the last 1 months======

2011-02-12 15:50:47 ----D---- C:\Program Files\trend micro
2011-02-12 14:41:44 ----D---- C:\Program Files\Mozilla Firefox
2011-02-12 14:41:34 ----D---- C:\WINDOWS\Prefetch
2011-02-12 14:39:14 ----D---- C:\WINDOWS
2011-02-12 14:35:14 ----D---- C:\WINDOWS\temp
2011-02-12 01:17:15 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-02-10 22:54:00 ----SHD---- C:\WINDOWS\CSC
2011-02-10 21:20:24 ----D---- C:\WINDOWS\system32\CatRoot2
2011-02-09 19:54:29 ----A---- C:\WINDOWS\NeroDigital.ini
2011-02-08 13:22:00 ----D---- C:\WINDOWS\Minidump
2011-02-08 11:48:02 ----SHD---- C:\WINDOWS\Installer
2011-02-08 11:47:47 ----RD---- C:\Program Files
2011-02-08 11:47:37 ----D---- C:\WINDOWS\system32
2011-02-08 11:47:34 ----D---- C:\Program Files\Sony
2011-02-02 12:45:44 ----HD---- C:\Program Files\InstallShield Installation Information
2011-01-29 18:54:36 ----D---- C:\Program Files\Common Files\Adobe
2011-01-29 18:54:36 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2011-01-29 18:54:20 ----D---- C:\Program Files\Adobe
2011-01-29 00:00:23 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-01-29 00:00:17 ----D---- C:\WINDOWS\system32\drivers
2011-01-29 00:00:09 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-01-28 23:51:00 ----HD---- C:\WINDOWS\inf
2011-01-28 23:50:29 ----RSD---- C:\WINDOWS\assembly
2011-01-28 23:50:00 ----D---- C:\WINDOWS\system32\DirectX
2011-01-28 20:38:13 ----D---- C:\WINDOWS\Microsoft.NET
2011-01-20 19:20:19 ----D---- C:\Documents and Settings\Majo\Application Data\Skype
2011-01-20 18:47:33 ----D---- C:\Documents and Settings\Majo\Application Data\skypePM
2011-01-13 09:47:32 ----A---- C:\WINDOWS\system32\aswBoot.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 imagedrv;imagedrv; C:\WINDOWS\System32\Drivers\imagedrv.sys [2004-03-02 5504]
R0 imagesrv;imagesrv; C:\WINDOWS\system32\DRIVERS\imagesrv.sys [2004-03-02 125184]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2007-03-08 43528]
R0 viaagp1;VIA AGP Filter; C:\WINDOWS\system32\DRIVERS\viaagp1.sys [2003-07-02 27904]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-01-13 29392]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-01-13 23632]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-01-13 294608]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-01-13 47440]
R1 kbfilter;Keyboard Filter Driver; C:\WINDOWS\system32\drivers\kbfilter.sys [2003-11-07 12160]
R1 VBoxDrv;VirtualBox Service; C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys [2010-10-08 143184]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [2010-10-08 41936]
R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [1997-12-23 23936]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-01-13 17744]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-01-13 100176]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2006-09-20 4019072]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-05-03 1540608]
R3 atinrvxx;ATI WDM Rage Theater Video; C:\WINDOWS\system32\DRIVERS\atinrvxx.sys [2004-08-04 105984]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 krait03;Razer krait USB Filter Driver; C:\WINDOWS\System32\Drivers\krait.sys [2005-12-07 13324]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys [2009-10-07 25752]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-04 12160]
R3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver; C:\WINDOWS\System32\Drivers\nx6000.sys [2010-05-20 30576]
R3 MVDCODEC;ATI WDM Specialized MVD Codec; C:\WINDOWS\system32\DRIVERS\atinmdxx.sys [2004-08-04 13824]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 usbaudio;USB Audio Driver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-03 59264]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-04 20480]
R3 usbvideo;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2004-08-03 78464]
R3 VBoxNetFlt;VBoxNetFlt Service; C:\WINDOWS\system32\DRIVERS\VBoxNetFlt.sys [2010-10-08 111568]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-04 17024]
S3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-04 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-04 10880]
S3 Nokia USB Generic;Nokia USB Generic; C:\WINDOWS\system32\drivers\nmwcdc.sys [2006-05-29 8704]
S3 Nokia USB Modem;Nokia USB Modem; C:\WINDOWS\system32\drivers\nmwcdcm.sys [2006-05-29 13312]
S3 Nokia USB Phone Parent;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\nmwcd.sys [2006-05-29 127488]
S3 Nokia USB Port;Nokia USB Port; C:\WINDOWS\system32\drivers\nmwcdcj.sys [2006-05-29 13312]
S3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\WINDOWS\system32\DRIVERS\LV302V32.SYS [2009-04-30 2687512]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-04 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-04 15360]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys [2010-10-08 100560]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-04 19328]
S4 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-02-14 691696]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.PDFTransformer.Classic.3.0;ABBYY PDF Transformer 3.0 – Licenčná služba; C:\Program Files\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe [2009-05-14 759048]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-05-03 413696]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-01-13 40384]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2009-10-07 154136]
R2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS32.exe [2010-05-20 139632]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2006-05-03 520192]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2010-02-08 72704]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Imapi Helper;Imapi Helper; C:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe [2006-01-05 163840]
S3 MSSQL$SONY_MEDIAMGR;MSSQL$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [2002-12-17 7520337]
S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112]
S3 ServiceLayer;ServiceLayer; C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe [2006-06-05 174080]
S3 SQLAgent$SONY_MEDIAMGR;SQLAgent$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [2002-12-17 311872]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Re: Firefox, avast trojsky kon

Napsal: 12 úno 2011 17:54
od Rudy
Dejte log z ComboFix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware
Jinak troják do PC pravděpodobně nepronikl, Avast ho zablokoval.

Re: Firefox, avast trojsky kon

Napsal: 12 úno 2011 18:59
od sxewarrior
ComboFix 11-02-11.02 - Majo . 02. 2011 18:38:00.5.1 - x86
Running from: c:\documents and settings\Majo\Desktop\ComboFix.exe
* Created a new restore point
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\TEMP\logishrd\LVPrcInj01.dll

Infected copy of c:\windows\system32\sndvol32.exe was found and disinfected
Restored copy from - c:\windows\system32\dllcache\sndvol32.exe

.
((((((((((((((((((((((((( Files Created from 2011-01-12 to 2011-02-12 )))))))))))))))))))))))))))))))
.

2011-02-12 13:39 . 2011-02-12 13:39 1409 ----a-w- c:\windows\QTFont.for
2011-02-08 10:47 . 2011-02-08 10:47 -------- d-----w- c:\program files\Vstplugins
2011-02-03 23:30 . 2011-02-11 16:10 14 ----a-w- c:\windows\mm.sys
2011-02-03 23:30 . 2011-02-03 23:30 30 ---ha-w- c:\windows\~mem001.sys
2011-02-03 23:30 . 2003-12-01 05:39 24576 ----a-w- c:\windows\Metronome 4.0 Uninstall.exe
2011-02-03 23:25 . 2011-02-03 23:25 -------- d-----w- c:\program files\Metronom
2011-02-02 11:47 . 2011-02-02 11:47 -------- d-----w- c:\documents and settings\Majo\Application Data\Asoftech
2011-01-28 22:51 . 2009-03-09 14:27 453456 ----a-w- c:\windows\system32\d3dx10_41.dll
2011-01-28 22:51 . 2009-03-09 14:27 1846632 ----a-w- c:\windows\system32\D3DCompiler_41.dll
2011-01-28 19:38 . 2011-01-28 19:40 -------- d-----w- c:\program files\Truck_Racing_By_Renault_Trucks

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-01-13 08:47 . 2010-06-29 15:39 38848 ----a-w- c:\windows\avastSS.scr
2011-01-13 08:47 . 2010-06-29 09:28 188216 ----a-w- c:\windows\system32\aswBoot.exe
2011-01-13 08:41 . 2010-06-29 09:29 294608 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-01-13 08:40 . 2010-06-29 09:29 47440 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-01-13 08:40 . 2010-06-29 09:29 100176 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-01-13 08:39 . 2010-06-29 09:29 94544 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-01-13 08:37 . 2010-06-29 09:29 23632 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-01-13 08:37 . 2010-06-29 09:29 29392 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-01-13 08:37 . 2010-06-29 09:29 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
.

((((((((((((((((((((((((((((( SnapShot@2010-06-23_23.57.21 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-02-12 17:44 . 2011-02-12 17:44 16384 c:\windows\temp\Perflib_Perfdata_530.dat
+ 2011-01-22 11:57 . 2011-01-22 11:57 16384 c:\windows\temp\Perflib_Perfdata_164.dat
+ 2011-01-28 19:38 . 2005-12-05 17:07 61136 c:\windows\system32\xinput9_1_0.dll
+ 2011-01-28 19:38 . 2007-04-04 17:53 81768 c:\windows\system32\xinput1_3.dll
+ 2011-01-28 19:38 . 2006-07-28 08:30 62744 c:\windows\system32\xinput1_2.dll
+ 2011-01-28 19:38 . 2006-03-31 11:39 62672 c:\windows\system32\xinput1_1.dll
+ 2011-01-28 22:50 . 2009-03-16 13:18 69448 c:\windows\system32\XAPOFX1_3.dll
+ 2011-01-28 22:50 . 2008-10-15 06:03 70992 c:\windows\system32\XAPOFX1_2.dll
+ 2011-01-28 22:50 . 2008-07-30 05:20 68616 c:\windows\system32\XAPOFX1_1.dll
+ 2011-01-28 22:50 . 2008-05-30 13:17 65032 c:\windows\system32\XAPOFX1_0.dll
+ 2011-01-28 22:50 . 2009-03-16 13:18 22360 c:\windows\system32\X3DAudio1_6.dll
+ 2011-01-28 22:50 . 2008-10-15 06:03 23376 c:\windows\system32\X3DAudio1_5.dll
+ 2011-01-28 22:50 . 2008-05-30 13:17 25608 c:\windows\system32\X3DAudio1_4.dll
+ 2011-01-28 22:50 . 2008-03-05 15:00 25608 c:\windows\system32\X3DAudio1_3.dll
+ 2011-01-28 19:38 . 2007-10-22 02:37 17928 c:\windows\system32\X3DAudio1_2.dll
+ 2011-01-28 19:38 . 2007-03-05 11:42 15128 c:\windows\system32\x3daudio1_1.dll
+ 2011-01-28 19:38 . 2006-02-03 07:41 14032 c:\windows\system32\x3daudio1_0.dll
+ 2006-08-24 18:26 . 2006-08-24 18:26 17408 c:\windows\system32\wpdshextautoplay.exe
+ 2006-08-24 20:30 . 2006-08-24 20:30 63488 c:\windows\system32\wpdmtpus.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 35840 c:\windows\system32\wpdconns.dll
+ 2010-07-11 13:53 . 1997-12-23 00:23 48128 c:\windows\system32\wnaspi32.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 37376 c:\windows\system32\wmdmps.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 33792 c:\windows\system32\wmdmlog.dll
+ 2010-07-11 13:53 . 1998-08-17 09:21 10240 c:\windows\system32\vidx16.dll
- 2010-02-04 22:44 . 2004-08-03 22:56 53760 c:\windows\system32\vfwwdm32.dll
+ 2010-02-04 22:44 . 2004-08-03 23:56 53760 c:\windows\system32\vfwwdm32.dll
+ 2003-02-21 04:16 . 2003-02-21 04:16 49152 c:\windows\system32\URTTEMP\regtlib.exe
+ 2010-07-11 13:53 . 1998-09-02 08:28 63488 c:\windows\system32\unam4ie.exe
+ 2011-01-28 23:00 . 2004-08-03 23:56 53760 c:\windows\system32\ReinstallBackups\0004\DriverFiles\i386\vfwwdm32.dll
+ 2011-01-28 23:00 . 2004-08-03 23:56 17408 c:\windows\system32\ReinstallBackups\0004\DriverFiles\i386\msyuv.dll
+ 2011-01-28 23:00 . 2004-08-03 23:56 47616 c:\windows\system32\ReinstallBackups\0004\DriverFiles\i386\iyuv_32.dll
+ 2011-01-28 23:00 . 2004-08-04 01:07 32768 c:\windows\system32\ReinstallBackups\0004\DriverFiles\ativtmxx.dll
+ 2011-01-28 23:00 . 2004-08-04 01:08 13824 c:\windows\system32\ReinstallBackups\0003\DriverFiles\atinmdxx.sys
+ 2010-06-28 11:17 . 2007-02-16 05:10 60273 c:\windows\system32\pthreadGC2.dll
+ 2004-08-04 12:00 . 2010-06-25 12:13 74996 c:\windows\system32\perfc009.dat
+ 2010-06-29 15:02 . 2010-05-20 13:27 39280 c:\windows\system32\nx6000res.dll
+ 2004-08-04 00:56 . 2004-08-03 23:56 17408 c:\windows\system32\msyuv.dll
- 2004-08-04 00:56 . 2004-08-03 22:56 17408 c:\windows\system32\msyuv.dll
+ 1999-01-21 15:40 . 1999-01-21 15:40 94208 c:\windows\system32\msstkprp.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 27648 c:\windows\system32\mspmsnsv.dll
+ 2010-02-26 18:20 . 2010-12-12 19:18 38804 c:\windows\system32\mlfcache.dat
+ 2010-07-11 13:53 . 1998-08-17 09:21 11776 c:\windows\system32\mciqtz.drv
+ 2010-07-11 13:53 . 1998-09-02 08:28 38160 c:\windows\system32\LMRTREND.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 11264 c:\windows\system32\LAPRXY.dll
+ 2004-08-04 00:56 . 2004-08-03 23:56 47616 c:\windows\system32\iyuv_32.dll
- 2004-08-04 00:56 . 2004-08-03 22:56 47616 c:\windows\system32\iyuv_32.dll
+ 2010-06-29 15:02 . 2010-05-20 13:27 32752 c:\windows\system32\DRVSTORE\VX6000_9648EB73F22649513FDB41D9DBE93A30CFBB20BE\VX6KCamd.sys
+ 2010-11-17 21:04 . 2010-10-08 14:57 41936 c:\windows\system32\DRVSTORE\VBoxUSBMon_2E9F6D210E66EA294381595547086A337D42B4D7\VBoxUSBMon.sys
+ 2010-11-17 21:04 . 2010-10-08 14:57 31888 c:\windows\system32\DRVSTORE\VBoxUSB_34067E9CBF715BB4E1281963521F2FE6F56BE4CF\VBoxUSB.sys
+ 2010-06-29 15:02 . 2010-05-20 13:27 30576 c:\windows\system32\DRVSTORE\nx6000_10AD66443DAE2DB69559C3E8E9859F3D506972EC\nx6000.sys
+ 2010-06-29 15:02 . 2010-05-20 13:27 39280 c:\windows\system32\DRVSTORE\nx6000_10AD66443DAE2DB69559C3E8E9859F3D506972EC\1033\nx6000res.dll
+ 2006-08-24 18:26 . 2006-08-24 18:26 38656 c:\windows\system32\drivers\wpdusb.sys
+ 2010-11-17 21:04 . 2010-10-08 14:57 41936 c:\windows\system32\drivers\VBoxUSBMon.sys
+ 2010-06-29 15:03 . 2004-08-03 21:10 78464 c:\windows\system32\drivers\usbvideo.sys
+ 2010-06-29 15:03 . 2004-08-03 21:07 59264 c:\windows\system32\drivers\USBAUDIO.sys
+ 2010-06-29 15:02 . 2010-05-20 13:27 30576 c:\windows\system32\drivers\nx6000.sys
+ 2010-07-11 13:53 . 1997-12-23 01:02 23936 c:\windows\system32\drivers\aspi32.sys
+ 2004-08-04 12:00 . 2006-08-24 20:30 37376 c:\windows\system32\dllcache\wmdmps.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 33792 c:\windows\system32\dllcache\wmdmlog.dll
- 2010-02-04 22:44 . 2004-08-03 22:56 53760 c:\windows\system32\dllcache\vfwwdm32.dll
+ 2010-02-04 22:44 . 2004-08-03 23:56 53760 c:\windows\system32\dllcache\vfwwdm32.dll
+ 2010-06-29 15:03 . 2004-08-03 21:10 78464 c:\windows\system32\dllcache\usbvideo.sys
+ 2010-06-29 15:03 . 2004-08-03 21:07 59264 c:\windows\system32\dllcache\usbaudio.sys
+ 2004-08-04 00:56 . 2004-08-03 23:56 17408 c:\windows\system32\dllcache\msyuv.dll
- 2004-08-04 00:56 . 2004-08-03 22:56 17408 c:\windows\system32\dllcache\msyuv.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 27648 c:\windows\system32\dllcache\mspmsnsv.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 11264 c:\windows\system32\dllcache\LAPRXY.dll
- 2004-08-04 00:56 . 2004-08-03 22:56 47616 c:\windows\system32\dllcache\iyuv_32.dll
+ 2004-08-04 00:56 . 2004-08-03 23:56 47616 c:\windows\system32\dllcache\iyuv_32.dll
+ 2010-06-25 12:12 . 2002-12-17 14:23 33340 c:\windows\system32\dbmsqlgc.dll
+ 2002-12-17 15:23 . 2002-12-17 15:23 29244 c:\windows\system32\DBmsLPCn.dll
+ 2010-06-25 12:12 . 2002-10-20 12:05 24576 c:\windows\system32\dbmsgnet.dll
+ 2010-06-28 11:17 . 2006-12-24 15:12 24576 c:\windows\system32\avsplugin\ds.dll
+ 2004-07-15 00:11 . 2004-07-15 00:11 31744 c:\windows\Microsoft.NET\Framework\v1.1.4322\WMINet_Utils.dll
+ 2004-06-22 11:51 . 2004-06-22 11:51 53248 c:\windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe
+ 2004-07-15 12:28 . 2004-07-15 12:28 57344 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.RegularExpressions.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Security.dll
+ 2004-07-14 22:35 . 2004-07-14 22:35 66560 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.EnterpriseServices.Thunk.dll
+ 2003-02-21 06:26 . 2003-02-21 06:26 65536 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Drawing.Design.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 90112 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.DirectoryServices.dll
+ 2003-02-21 06:26 . 2003-02-21 06:26 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Configuration.Install.dll
+ 2003-02-21 06:25 . 2003-02-21 06:25 12288 c:\windows\Microsoft.NET\Framework\v1.1.4322\RegSvcs.exe
+ 2004-07-15 12:28 . 2004-07-15 12:28 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\RegCode.dll
+ 2003-02-21 06:25 . 2003-02-21 06:25 28672 c:\windows\Microsoft.NET\Framework\v1.1.4322\RegAsm.exe
+ 2004-07-14 22:34 . 2004-07-14 22:34 94208 c:\windows\Microsoft.NET\Framework\v1.1.4322\PerfCounter.dll
+ 2003-02-20 18:09 . 2003-02-20 18:09 73728 c:\windows\Microsoft.NET\Framework\v1.1.4322\ngen.exe
+ 2003-02-20 17:43 . 2003-02-20 17:43 22528 c:\windows\Microsoft.NET\Framework\v1.1.4322\MUI\0409\mscorsecr.dll
+ 2003-02-20 18:18 . 2003-02-20 18:18 20480 c:\windows\Microsoft.NET\Framework\v1.1.4322\mtxoci8.dll
+ 2003-02-20 18:09 . 2003-02-20 18:09 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll
+ 2004-07-14 22:33 . 2004-07-14 22:33 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsec.dll
+ 2003-02-20 18:06 . 2003-02-20 18:06 65536 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorpe.dll
+ 2003-02-20 18:09 . 2003-02-20 18:09 86016 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorie.dll
+ 2004-07-14 22:32 . 2004-07-14 22:32 86016 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscordbc.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 49152 c:\windows\Microsoft.NET\Framework\v1.1.4322\MigPolWin.exe
+ 2004-07-15 12:28 . 2004-07-15 12:28 49152 c:\windows\Microsoft.NET\Framework\v1.1.4322\MigPol.exe
+ 2003-02-21 06:25 . 2003-02-21 06:25 11264 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2003-02-21 06:24 . 2003-02-21 06:24 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.Vsa.dll
+ 2003-02-21 06:24 . 2003-02-21 06:24 28672 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.VisualBasic.Vsa.dll
+ 2003-02-21 06:24 . 2003-02-21 06:24 40960 c:\windows\Microsoft.NET\Framework\v1.1.4322\jsc.exe
+ 2003-02-21 06:24 . 2003-02-21 06:24 26112 c:\windows\Microsoft.NET\Framework\v1.1.4322\ISymWrapper.dll
+ 2003-02-20 18:22 . 2003-02-20 18:22 40960 c:\windows\Microsoft.NET\Framework\v1.1.4322\InstallUtilLib.dll
+ 2003-02-21 06:24 . 2003-02-21 06:24 15872 c:\windows\Microsoft.NET\Framework\v1.1.4322\InstallUtil.exe
+ 2004-07-15 12:31 . 2004-07-15 12:31 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\IEHost.dll
+ 2003-10-08 12:30 . 2003-10-08 12:30 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\gacutil.exe
+ 2003-02-21 03:12 . 2003-02-21 03:12 28672 c:\windows\Microsoft.NET\Framework\v1.1.4322\cvtres.exe
+ 2003-02-21 06:24 . 2003-02-21 06:24 33792 c:\windows\Microsoft.NET\Framework\v1.1.4322\CustomMarshalers.dll
+ 2003-02-21 06:24 . 2003-02-21 06:24 12288 c:\windows\Microsoft.NET\Framework\v1.1.4322\cscompmgd.dll
+ 2004-07-15 09:23 . 2004-07-15 09:23 49152 c:\windows\Microsoft.NET\Framework\v1.1.4322\csc.exe
+ 2004-07-14 22:32 . 2004-07-14 22:32 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\CORPerfMonExt.dll
+ 2003-02-21 06:24 . 2003-02-21 06:24 49152 c:\windows\Microsoft.NET\Framework\v1.1.4322\ConfigWizards.exe
+ 2003-02-21 06:24 . 2003-02-21 06:24 94208 c:\windows\Microsoft.NET\Framework\v1.1.4322\CasPol.exe
+ 2004-07-14 23:49 . 2004-07-14 23:49 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_wp.exe
+ 2004-07-14 23:49 . 2004-07-14 23:49 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
+ 2004-07-14 23:49 . 2004-07-14 23:49 20480 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_regiis.exe
+ 2003-02-20 18:19 . 2003-02-20 18:19 40960 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_rc.dll
+ 2003-02-20 18:19 . 2003-02-20 18:19 24576 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_filter.dll
+ 2003-02-21 04:00 . 2003-02-21 04:00 98304 c:\windows\Microsoft.NET\Framework\v1.1.4322\alink.dll
+ 2003-02-21 02:55 . 2003-02-21 02:55 94208 c:\windows\Microsoft.NET\Framework\v1.1.4322\1033\cscompui.dll
+ 2003-02-21 01:59 . 2003-02-21 01:59 16896 c:\windows\Microsoft.NET\Framework\v1.1.4322\1033\alinkui.dll
+ 2011-01-28 19:38 . 2005-03-18 15:23 12800 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Diagnostics.dll
+ 2011-01-28 19:38 . 2005-03-18 15:23 53248 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.AudioVideoPlayback.dll
+ 2010-06-29 15:00 . 2010-06-29 15:00 79360 c:\windows\Installer\9f0f5.msi
+ 2010-06-25 12:09 . 2010-06-25 12:09 90112 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a_b1351005\System.Drawing.Design.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 61440 c:\windows\assembly\NativeImages1_v1.1.4322\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a_e889609e\CustomMarshalers.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 57344 c:\windows\assembly\GAC\System.Web.RegularExpressions\1.0.5000.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 77824 c:\windows\assembly\GAC\System.Security\1.0.5000.0__b03f5f7f11d50a3a\System.Security.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 66560 c:\windows\assembly\GAC\System.EnterpriseServices\1.0.5000.0__b03f5f7f11d50a3a\System.EnterpriseServices.Thunk.dll
+ 2010-06-25 11:58 . 2010-06-25 11:58 65536 c:\windows\assembly\GAC\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 90112 c:\windows\assembly\GAC\System.DirectoryServices\1.0.5000.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2010-06-25 11:58 . 2010-06-25 11:58 77824 c:\windows\assembly\GAC\System.Configuration.Install\1.0.5000.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2010-06-25 12:12 . 2010-06-25 12:12 15360 c:\windows\assembly\GAC\Sony.MediaSoftware.MediaMgr.resources\2.0.2208.15134_ja_3cda94b1926e6fbc\Sony.MediaSoftware.MediaMgr.resources.dll
+ 2010-06-25 12:12 . 2010-06-25 12:12 32768 c:\windows\assembly\GAC\Sony.MediaSoftware.clrshared.resources\2.0.2208.15131_ja-JP_3cda94b1926e6fbc\Sony.MediaSoftware.clrshared.resources.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 32768 c:\windows\assembly\GAC\Regcode\1.0.5000.0__b03f5f7f11d50a3a\RegCode.dll
+ 2010-06-25 12:11 . 2010-06-25 12:11 77824 c:\windows\assembly\GAC\NullableTypes\1.2.1604.27693__2fe76717e05fac0e\NullableTypes.dll
+ 2010-06-25 11:58 . 2010-06-25 11:58 32768 c:\windows\assembly\GAC\Microsoft.Vsa\7.0.5000.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
+ 2010-06-25 11:58 . 2010-06-25 11:58 11264 c:\windows\assembly\GAC\Microsoft.Vsa.Vb.CodeDOMProcessor\7.0.5000.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2010-06-25 11:58 . 2010-06-25 11:58 28672 c:\windows\assembly\GAC\Microsoft.VisualBasic.Vsa\7.0.5000.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2011-01-28 22:50 . 2011-01-28 22:50 12800 c:\windows\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll
+ 2011-01-28 22:50 . 2011-01-28 22:50 53248 c:\windows\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll
+ 2010-06-25 11:58 . 2010-06-25 11:58 26112 c:\windows\assembly\GAC\ISymWrapper\1.0.5000.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 32768 c:\windows\assembly\GAC\IEHost\1.0.5000.0__b03f5f7f11d50a3a\IEHost.dll
+ 2010-06-25 11:58 . 2010-06-25 11:58 33792 c:\windows\assembly\GAC\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2010-06-25 11:58 . 2010-06-25 11:58 12288 c:\windows\assembly\GAC\cscompmgd\7.0.5000.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 23552 c:\windows\$NtUninstallWMFDist11$\wmdmps.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 27136 c:\windows\$NtUninstallWMFDist11$\wmdmlog.dll
+ 2010-06-29 15:01 . 2006-08-24 20:42 13312 c:\windows\$NtUninstallWMFDist11$\spuninst\wpdinstallutil.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 52224 c:\windows\$NtUninstallWMFDist11$\mspmsnsv.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 4096 c:\windows\system32\wmvdmoe2.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 4096 c:\windows\system32\wmvdmod.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 4096 c:\windows\system32\WMVADVE.DLL
+ 2006-08-24 20:30 . 2006-08-24 20:30 4096 c:\windows\system32\WMVADVD.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 4096 c:\windows\system32\wmsdmoe2.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 4096 c:\windows\system32\wmsdmod.dll
+ 2006-08-24 20:42 . 2006-08-24 20:42 8704 c:\windows\system32\wdfmgr.exe
+ 2006-08-24 20:30 . 2006-08-24 20:30 4096 c:\windows\system32\wdfapi.dll
+ 2010-07-11 13:53 . 2010-07-11 13:53 4608 c:\windows\system32\w95inf32.dll
+ 2010-07-11 13:53 . 2010-07-11 13:53 2272 c:\windows\system32\w95inf16.dll
+ 2006-08-24 20:42 . 2006-08-24 20:42 8704 c:\windows\system32\uwdf.exe
+ 2001-08-17 22:36 . 2001-08-17 21:36 8192 c:\windows\system32\tsbyuv.dll
- 2001-08-17 22:36 . 2001-08-17 20:36 8192 c:\windows\system32\tsbyuv.dll
+ 2011-01-28 23:00 . 2001-08-17 21:36 8192 c:\windows\system32\ReinstallBackups\0004\DriverFiles\i386\tsbyuv.dll
+ 2011-01-28 23:00 . 2004-08-03 23:56 4096 c:\windows\system32\ReinstallBackups\0004\DriverFiles\i386\ksuser.dll
+ 2003-02-20 17:43 . 2003-02-20 17:43 4096 c:\windows\system32\mui\0409\mscoreer.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 4096 c:\windows\system32\MPG4DMOD.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 4096 c:\windows\system32\MP4SDMOD.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 4096 c:\windows\system32\MP43DMOD.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 4096 c:\windows\system32\dllcache\wmvdmoe2.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 4096 c:\windows\system32\dllcache\wmvdmod.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 4096 c:\windows\system32\dllcache\wmsdmoe2.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 4096 c:\windows\system32\dllcache\wmsdmod.dll
+ 2001-08-17 22:36 . 2001-08-17 21:36 8192 c:\windows\system32\dllcache\tsbyuv.dll
- 2001-08-17 22:36 . 2001-08-17 20:36 8192 c:\windows\system32\dllcache\tsbyuv.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 4096 c:\windows\system32\dllcache\MPG4DMOD.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 4096 c:\windows\system32\dllcache\MP4SDMOD.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 4096 c:\windows\system32\dllcache\MP43DMOD.dll
+ 2011-01-28 23:04 . 2011-01-28 23:04 3580 c:\windows\system32\d3d9caps.dat
+ 2010-07-11 13:53 . 1997-12-23 00:23 4672 c:\windows\system\wowpost.exe
+ 2010-07-11 13:53 . 1997-12-23 00:23 5600 c:\windows\system\winaspi.dll
+ 2003-02-20 18:09 . 2003-02-20 18:09 9216 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscortim.dll
+ 2003-02-21 06:25 . 2003-02-21 06:25 6656 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft_VsaVb.dll
+ 2003-02-21 06:25 . 2003-02-21 06:25 6144 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.VisualC.Dll
+ 2003-02-21 06:24 . 2003-02-21 06:24 4608 c:\windows\Microsoft.NET\Framework\v1.1.4322\IIEHost.dll
+ 2004-07-15 12:31 . 2004-07-15 12:31 8192 c:\windows\Microsoft.NET\Framework\v1.1.4322\IEExecRemote.dll
+ 2003-02-21 06:24 . 2003-02-21 06:24 7680 c:\windows\Microsoft.NET\Framework\v1.1.4322\IEExec.exe
+ 2003-02-21 06:24 . 2003-02-21 06:24 7680 c:\windows\Microsoft.NET\Framework\v1.1.4322\Accessibility.dll
+ 2010-12-04 14:21 . 2010-12-04 14:21 3638 c:\windows\Installer\{DFC6573E-124D-4026-BFA4-B433C9D3FF21}\_2cd672ae.exe
+ 2010-06-25 12:12 . 2010-06-25 12:12 5632 c:\windows\assembly\GAC\Sony.MediaSoftware.clrshared.resources\2.0.2208.15131_ja_3cda94b1926e6fbc\Sony.MediaSoftware.clrshared.resources.dll
+ 2010-06-25 11:58 . 2010-06-25 11:58 6656 c:\windows\assembly\GAC\Microsoft_VsaVb\7.0.5000.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2010-06-25 11:58 . 2010-06-25 11:58 6144 c:\windows\assembly\GAC\Microsoft.VisualC\7.0.5000.0__b03f5f7f11d50a3a\Microsoft.VisualC.dll
+ 2010-06-25 11:58 . 2010-06-25 11:58 4608 c:\windows\assembly\GAC\IIEHost\1.0.5000.0__b03f5f7f11d50a3a\IIEHost.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 8192 c:\windows\assembly\GAC\IEExecRemote\1.0.5000.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2010-06-25 11:58 . 2010-06-25 11:58 7680 c:\windows\assembly\GAC\Accessibility\1.0.5000.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 6656 c:\windows\$NtUninstallWMFDist11$\laprxy.dll
+ 2011-01-28 22:50 . 2009-03-16 13:18 517448 c:\windows\system32\XAudio2_4.dll
+ 2011-01-28 22:50 . 2008-10-15 06:03 514384 c:\windows\system32\XAudio2_3.dll
+ 2011-01-28 22:50 . 2008-07-30 05:20 509448 c:\windows\system32\XAudio2_2.dll
+ 2011-01-28 22:50 . 2008-05-30 13:19 507400 c:\windows\system32\XAudio2_1.dll
+ 2011-01-28 22:50 . 2008-03-05 15:03 479752 c:\windows\system32\XAudio2_0.dll
+ 2011-01-28 22:50 . 2009-03-16 13:18 235352 c:\windows\system32\xactengine3_4.dll
+ 2011-01-28 22:50 . 2008-10-15 06:03 235856 c:\windows\system32\xactengine3_3.dll
+ 2011-01-28 22:50 . 2008-07-30 05:20 238088 c:\windows\system32\xactengine3_2.dll
+ 2011-01-28 22:50 . 2008-05-30 13:18 238088 c:\windows\system32\xactengine3_1.dll
+ 2011-01-28 22:50 . 2008-03-05 15:03 238088 c:\windows\system32\xactengine3_0.dll
+ 2011-01-28 19:38 . 2007-07-19 23:57 267112 c:\windows\system32\xactengine2_9.dll
+ 2011-01-28 19:38 . 2007-06-20 19:46 266088 c:\windows\system32\xactengine2_8.dll
+ 2011-01-28 19:38 . 2007-04-04 17:55 261480 c:\windows\system32\xactengine2_7.dll
+ 2011-01-28 19:38 . 2007-01-24 14:27 255848 c:\windows\system32\xactengine2_6.dll
+ 2011-01-28 19:38 . 2006-12-08 11:02 251672 c:\windows\system32\xactengine2_5.dll
+ 2011-01-28 19:38 . 2006-09-28 15:05 237848 c:\windows\system32\xactengine2_4.dll
+ 2011-01-28 19:38 . 2006-07-28 08:30 236824 c:\windows\system32\xactengine2_3.dll
+ 2011-01-28 19:38 . 2006-05-31 06:24 230168 c:\windows\system32\xactengine2_2.dll
+ 2011-01-28 19:38 . 2007-10-22 02:39 267272 c:\windows\system32\xactengine2_10.dll
+ 2011-01-28 19:38 . 2006-03-31 11:39 229584 c:\windows\system32\xactengine2_1.dll
+ 2011-01-28 19:38 . 2006-02-03 07:42 230096 c:\windows\system32\xactengine2_0.dll
+ 2011-01-28 19:38 . 2011-01-28 19:38 413696 c:\windows\system32\wrap_oal.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 349184 c:\windows\system32\wpdsp.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 133120 c:\windows\system32\WPDShServiceObj.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 154624 c:\windows\system32\wpdmtp.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 629760 c:\windows\system32\wpd_ci.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 656896 c:\windows\system32\WMVXENCD.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 790016 c:\windows\system32\WMVSENCD.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 603648 c:\windows\system32\WMSPDMOD.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 937984 c:\windows\system32\WMNetMgr.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 157184 c:\windows\system32\wmidx.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 532992 c:\windows\system32\wmdrmsdk.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 347648 c:\windows\system32\wmdrmnet.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 428032 c:\windows\system32\wmdrmdev.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 222208 c:\windows\system32\WMASF.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 757248 c:\windows\system32\WMADMOD.dll
+ 2010-10-08 14:57 . 2010-10-08 14:57 133648 c:\windows\system32\VBoxNetFltNotify.dll
+ 2010-06-28 11:17 . 2006-10-17 20:29 487479 c:\windows\system32\SkinMagic.dll
+ 2011-01-28 23:00 . 2004-08-03 23:56 294912 c:\windows\system32\ReinstallBackups\0004\DriverFiles\i386\msh263.drv
+ 2011-01-28 23:00 . 2004-08-03 22:15 140928 c:\windows\system32\ReinstallBackups\0004\DriverFiles\i386\ks.sys
+ 2011-01-28 23:00 . 2004-08-04 01:08 105984 c:\windows\system32\ReinstallBackups\0004\DriverFiles\atinrvxx.sys
+ 2010-07-11 13:53 . 1998-09-02 08:02 194320 c:\windows\system32\qcut.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 210432 c:\windows\system32\qasf.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 198144 c:\windows\system32\PortableDeviceWMDRM.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 132096 c:\windows\system32\PortableDeviceWiaCompat.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 166912 c:\windows\system32\PortableDeviceTypes.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 101888 c:\windows\system32\PortableDeviceClassExtension.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 284160 c:\windows\system32\PortableDeviceApi.dll
+ 2004-08-04 12:00 . 2010-06-25 12:13 450186 c:\windows\system32\perfh009.dat
+ 2011-01-28 19:38 . 2011-01-28 19:38 110592 c:\windows\system32\OpenAL32.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 320512 c:\windows\system32\mswmdm.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 414208 c:\windows\system32\msscp.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 175104 c:\windows\system32\mspmsp.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 179712 c:\windows\system32\msnetobj.dll
- 2004-08-04 00:56 . 2004-08-03 22:56 294912 c:\windows\system32\msh263.drv
+ 2004-08-04 00:56 . 2004-08-03 23:56 294912 c:\windows\system32\msh263.drv
+ 2006-08-24 20:30 . 2006-08-24 20:30 259072 c:\windows\system32\MPG4DECD.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 316928 c:\windows\system32\MP4SDECD.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 258560 c:\windows\system32\MP43DECD.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 211968 c:\windows\system32\MFPLAT.dll
+ 2010-10-20 11:38 . 2010-10-20 11:38 232912 c:\windows\system32\Macromed\Flash\FlashUtil10k_Plugin.exe
+ 2004-08-04 12:00 . 2006-08-24 18:31 100864 c:\windows\system32\logagent.exe
+ 2010-06-29 15:02 . 2010-05-20 13:27 677232 c:\windows\system32\LCCoin32.dll
+ 2010-02-04 22:24 . 2010-12-05 08:31 221632 c:\windows\system32\FNTCACHE.DAT
+ 2010-07-11 13:53 . 1998-08-27 04:51 182032 c:\windows\system32\dxtmsft3.dll
+ 2010-06-29 15:02 . 2010-05-20 13:27 623984 c:\windows\system32\DRVSTORE\VX6000_9648EB73F22649513FDB41D9DBE93A30CFBB20BE\VX6KTUI.dll
+ 2010-06-29 15:02 . 2010-05-20 13:27 764784 c:\windows\system32\DRVSTORE\VX6000_9648EB73F22649513FDB41D9DBE93A30CFBB20BE\vVX6000.exe
+ 2010-06-29 15:02 . 2010-05-20 13:27 577392 c:\windows\system32\DRVSTORE\VX6000_9648EB73F22649513FDB41D9DBE93A30CFBB20BE\vVX6000.dll
+ 2010-06-29 15:02 . 2010-05-20 13:27 677232 c:\windows\system32\DRVSTORE\VX6000_9648EB73F22649513FDB41D9DBE93A30CFBB20BE\LCCoin32.dll
+ 2010-06-29 15:02 . 2010-05-20 13:27 175472 c:\windows\system32\DRVSTORE\VX6000_9648EB73F22649513FDB41D9DBE93A30CFBB20BE\cVX6000.dll
+ 2010-06-29 15:02 . 2010-05-20 13:27 101744 c:\windows\system32\DRVSTORE\VX6000_9648EB73F22649513FDB41D9DBE93A30CFBB20BE\1033\VX6000.dll
+ 2010-06-29 15:02 . 2010-05-20 13:27 762736 c:\windows\system32\DRVSTORE\VX3000_A17A82730C7D038541072034CDAF4B2504049C63\vVX3000.exe
+ 2010-06-29 15:02 . 2010-05-20 13:27 227696 c:\windows\system32\DRVSTORE\VX3000_A17A82730C7D038541072034CDAF4B2504049C63\vVX3000.dll
+ 2010-06-29 15:02 . 2010-05-20 13:27 621424 c:\windows\system32\DRVSTORE\VX3000_A17A82730C7D038541072034CDAF4B2504049C63\TwainUI.dll
+ 2010-06-29 15:02 . 2010-05-20 13:27 677232 c:\windows\system32\DRVSTORE\VX3000_A17A82730C7D038541072034CDAF4B2504049C63\LCCoin32.dll
+ 2010-06-29 15:02 . 2010-05-20 13:27 175472 c:\windows\system32\DRVSTORE\VX3000_A17A82730C7D038541072034CDAF4B2504049C63\cVX3000.dll
+ 2010-06-29 15:02 . 2010-05-20 13:27 101232 c:\windows\system32\DRVSTORE\VX3000_A17A82730C7D038541072034CDAF4B2504049C63\1033\VX3000.dll
+ 2010-06-29 15:02 . 2010-05-20 13:27 762736 c:\windows\system32\DRVSTORE\VX1000_BCE047AC83D5D72E7E25B0A5BCCBA21F4DB8D4F4\vVX1000.exe
+ 2010-06-29 15:02 . 2010-05-20 13:27 227696 c:\windows\system32\DRVSTORE\VX1000_BCE047AC83D5D72E7E25B0A5BCCBA21F4DB8D4F4\vVX1000.dll
+ 2010-06-29 15:02 . 2010-05-20 13:27 621424 c:\windows\system32\DRVSTORE\VX1000_BCE047AC83D5D72E7E25B0A5BCCBA21F4DB8D4F4\TwainUI.dll
+ 2010-06-29 15:02 . 2010-05-20 13:27 677232 c:\windows\system32\DRVSTORE\VX1000_BCE047AC83D5D72E7E25B0A5BCCBA21F4DB8D4F4\LCCoin32.dll
+ 2010-06-29 15:02 . 2010-05-20 13:27 175472 c:\windows\system32\DRVSTORE\VX1000_BCE047AC83D5D72E7E25B0A5BCCBA21F4DB8D4F4\cVX1000.dll
+ 2010-06-29 15:02 . 2010-05-20 13:27 101232 c:\windows\system32\DRVSTORE\VX1000_BCE047AC83D5D72E7E25B0A5BCCBA21F4DB8D4F4\1033\VX1000.dll
+ 2010-11-17 21:05 . 2010-10-08 14:57 143184 c:\windows\system32\DRVSTORE\VBoxDrv_D07518E0CFD326B9648E6CB944EA26323CBF7F87\VBoxDrv.sys
+ 2010-06-29 15:02 . 2010-05-20 13:27 677232 c:\windows\system32\DRVSTORE\nx6000_10AD66443DAE2DB69559C3E8E9859F3D506972EC\LCCoin32.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 990208 c:\windows\system32\drmv2clt.dll
+ 2006-08-24 18:27 . 2006-08-24 18:27 249344 c:\windows\system32\drmupgds.exe
+ 2010-10-08 14:57 . 2010-10-08 14:57 111568 c:\windows\system32\drivers\VBoxNetFlt.sys
+ 2010-10-08 14:57 . 2010-10-08 14:57 100560 c:\windows\system32\drivers\VBoxNetAdp.sys
+ 2010-11-17 21:05 . 2010-10-08 14:57 143184 c:\windows\system32\drivers\VBoxDrv.sys
+ 2006-08-24 20:30 . 2006-08-24 20:30 667648 c:\windows\system32\drivers\umdf\wpdmtpdr.dll
+ 2004-08-04 12:00 . 2010-11-04 14:41 163644 c:\windows\system32\drivers\secdrv.sys
- 2004-08-03 23:15 . 2004-08-03 21:15 140928 c:\windows\system32\drivers\ks.sys
+ 2004-08-03 23:15 . 2004-08-03 22:15 140928 c:\windows\system32\drivers\ks.sys
+ 2004-08-04 12:00 . 2006-08-24 20:30 603648 c:\windows\system32\dllcache\WMSPDMOD.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 937984 c:\windows\system32\dllcache\WMNetMgr.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 157184 c:\windows\system32\dllcache\wmidx.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 222208 c:\windows\system32\dllcache\WMASF.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 757248 c:\windows\system32\dllcache\WMADMOD.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 210432 c:\windows\system32\dllcache\qasf.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 320512 c:\windows\system32\dllcache\mswmdm.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 414208 c:\windows\system32\dllcache\msscp.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 175104 c:\windows\system32\dllcache\mspmsp.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 179712 c:\windows\system32\dllcache\msnetobj.dll
+ 2004-08-04 12:00 . 2006-08-24 18:31 100864 c:\windows\system32\dllcache\logagent.exe
+ 2004-08-03 23:15 . 2004-08-03 22:15 140928 c:\windows\system32\dllcache\ks.sys
- 2004-08-03 23:15 . 2004-08-03 21:15 140928 c:\windows\system32\dllcache\ks.sys
+ 2004-08-04 12:00 . 2006-08-24 20:30 990208 c:\windows\system32\dllcache\drmv2clt.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 228352 c:\windows\system32\dllcache\cewmdm.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 537600 c:\windows\system32\dllcache\blackbox.dll
+ 2010-06-28 11:17 . 2004-05-26 18:37 719872 c:\windows\system32\devil.dll
+ 2011-01-28 22:50 . 2008-10-15 05:22 452440 c:\windows\system32\d3dx10_40.dll
+ 2011-01-28 22:50 . 2008-07-10 10:01 467984 c:\windows\system32\d3dx10_39.dll
+ 2011-01-28 22:50 . 2008-05-30 13:11 467984 c:\windows\system32\d3dx10_38.dll
+ 2011-01-28 22:50 . 2008-02-05 22:07 462864 c:\windows\system32\d3dx10_37.dll
+ 2011-01-28 19:38 . 2007-10-02 08:56 444776 c:\windows\system32\d3dx10_36.dll
+ 2011-01-28 19:38 . 2007-07-19 17:14 444776 c:\windows\system32\d3dx10_35.dll
+ 2011-01-28 19:38 . 2007-05-16 15:45 443752 c:\windows\system32\d3dx10_34.dll
+ 2011-01-28 19:38 . 2007-03-15 15:57 443752 c:\windows\system32\d3dx10_33.dll
+ 2010-07-29 18:20 . 2010-07-29 18:20 108144 c:\windows\system32\CmdLineExt.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 228352 c:\windows\system32\cewmdm.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 537600 c:\windows\system32\blackbox.dll
+ 2010-06-28 11:17 . 2006-12-31 08:16 313344 c:\windows\system32\avisynth.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 276480 c:\windows\system32\audiodev.dll
- 2010-02-05 16:20 . 2006-05-03 09:57 520192 c:\windows\system32\ati2sgag.exe
+ 2010-02-05 16:20 . 2006-05-03 10:57 520192 c:\windows\system32\ati2sgag.exe
+ 2004-07-15 09:23 . 2004-07-15 09:23 737280 c:\windows\Microsoft.NET\Framework\v1.1.4322\vbc.exe
+ 2004-07-15 12:31 . 2004-07-15 12:31 573440 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.Services.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 819200 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.Mobile.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 126976 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.ServiceProcess.dll
+ 2004-07-15 12:31 . 2004-07-15 12:31 131072 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Serialization.Formatters.Soap.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 323584 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Remoting.dll
+ 2004-07-15 12:31 . 2004-07-15 12:31 241664 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Messaging.dll
+ 2004-07-15 12:31 . 2004-07-15 12:31 372736 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Management.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 241664 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.EnterpriseServices.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 466944 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Drawing.dll
+ 2004-07-15 12:31 . 2004-07-15 12:31 303104 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Data.OracleClient.dll
+ 2004-07-14 22:35 . 2004-07-14 22:35 319488 c:\windows\Microsoft.NET\Framework\v1.1.4322\SOS.dll
+ 2003-02-20 18:09 . 2003-02-20 18:09 122880 c:\windows\Microsoft.NET\Framework\v1.1.4322\shfusres.dll
+ 2003-02-20 18:09 . 2003-02-20 18:09 253952 c:\windows\Microsoft.NET\Framework\v1.1.4322\shfusion.dll
+ 2004-08-10 14:20 . 2004-08-10 14:20 106496 c:\windows\Microsoft.NET\Framework\v1.1.4322\netfxupdate.exe
+ 2003-02-21 03:42 . 2003-02-21 03:42 348160 c:\windows\Microsoft.NET\Framework\v1.1.4322\msvcr71.dll
+ 2004-07-14 22:33 . 2004-07-14 22:33 143360 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorrc.dll
+ 2003-02-20 17:43 . 2003-02-20 17:43 131072 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscormmc.dll
+ 2004-07-14 22:33 . 2004-07-14 22:33 102400 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorld.dll
+ 2004-07-14 22:25 . 2004-07-14 22:25 315392 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll
+ 2004-07-14 22:32 . 2004-07-14 22:32 233472 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscordbi.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 299008 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.VisualBasic.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 720896 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.JScript.dll
+ 2004-07-14 22:35 . 2004-07-14 22:35 196608 c:\windows\Microsoft.NET\Framework\v1.1.4322\ilasm.exe
+ 2004-07-14 22:24 . 2004-07-14 22:24 282624 c:\windows\Microsoft.NET\Framework\v1.1.4322\fusion.dll
+ 2003-02-20 18:16 . 2003-02-20 18:16 798720 c:\windows\Microsoft.NET\Framework\v1.1.4322\EventLogMessages.dll
+ 2003-02-21 09:21 . 2003-02-21 09:21 524288 c:\windows\Microsoft.NET\Framework\v1.1.4322\diasymreader.dll
+ 2004-07-15 09:23 . 2004-07-15 09:23 626688 c:\windows\Microsoft.NET\Framework\v1.1.4322\cscomp.dll
+ 2002-07-29 10:11 . 2002-07-29 10:11 219136 c:\windows\Microsoft.NET\Framework\v1.1.4322\c_g18030.dll
+ 2004-07-14 23:49 . 2004-07-14 23:49 258048 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll
+ 2003-02-21 04:04 . 2003-02-21 04:04 155648 c:\windows\Microsoft.NET\Framework\v1.1.4322\1033\Vsavb7rtUI.dll
+ 2003-02-21 02:02 . 2003-02-21 02:02 131072 c:\windows\Microsoft.NET\Framework\v1.1.4322\1033\vbc7ui.dll
+ 2011-01-28 19:38 . 2006-03-31 10:27 578560 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2911.0\Microsoft.DirectX.Direct3DX.dll
+ 2011-01-28 19:38 . 2006-02-03 06:40 578560 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2910.0\Microsoft.DirectX.Direct3DX.dll
+ 2011-01-28 19:38 . 2005-12-05 16:20 577536 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2909.0\Microsoft.DirectX.Direct3DX.dll
+ 2011-01-28 19:38 . 2005-09-28 13:11 577536 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2908.0\Microsoft.DirectX.Direct3DX.dll
+ 2011-01-28 19:38 . 2005-07-22 16:21 577024 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2907.0\Microsoft.DirectX.Direct3DX.dll
+ 2011-01-28 19:38 . 2005-05-26 14:15 576000 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2906.0\Microsoft.DirectX.Direct3DX.dll
+ 2011-01-28 19:38 . 2005-03-18 16:23 567296 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2905.0\Microsoft.DirectX.Direct3DX.dll
+ 2011-01-28 19:38 . 2005-02-05 18:32 563712 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2904.0\Microsoft.DirectX.Direct3DX.dll
+ 2011-01-28 19:38 . 2005-03-18 15:23 223232 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.dll
+ 2011-01-28 19:38 . 2005-03-18 15:23 178176 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectSound.dll
+ 2011-01-28 19:38 . 2005-03-18 15:23 364544 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectPlay.dll
+ 2011-01-28 19:38 . 2005-03-18 15:23 159232 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectInput.dll
+ 2011-01-28 19:38 . 2005-03-18 15:23 145920 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectDraw.dll
+ 2011-01-28 19:38 . 2005-03-18 15:23 473600 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Direct3D.dll
- 2010-02-05 15:32 . 1998-10-29 15:45 306688 c:\windows\IsUninst.exe
+ 2010-02-05 15:32 . 1998-10-29 14:45 306688 c:\windows\IsUninst.exe

Re: Firefox, avast trojsky kon

Napsal: 12 úno 2011 19:00
od sxewarrior
+ 2010-11-17 22:43 . 2010-11-17 22:43 133632 c:\windows\Installer\30c378.msi
- 2010-06-16 15:57 . 2010-06-16 15:57 371272 c:\windows\Installer\{D103C4BA-F905-437A-8049-DB24763BBE36}\SkypeIcon.exe
+ 2010-10-06 15:07 . 2010-10-06 15:07 371272 c:\windows\Installer\{D103C4BA-F905-437A-8049-DB24763BBE36}\SkypeIcon.exe
+ 2010-09-22 17:10 . 2010-09-22 17:10 103864 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0400000010\9.4.0\nppdf32.dll
+ 2010-06-25 12:04 . 2010-06-25 12:04 131072 c:\windows\assembly\tmp\W159DHLP\System.Runtime.Serialization.Formatters.Soap.dll
+ 2010-06-25 12:10 . 2010-06-25 12:10 835584 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_dc9c9c9f\System.Drawing.dll
+ 2010-06-25 12:11 . 2010-06-25 12:11 192512 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a_a08d6814\System.Drawing.Design.dll
+ 2010-06-25 12:11 . 2010-06-25 12:11 118784 c:\windows\assembly\NativeImages1_v1.1.4322\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a_4f7e961f\CustomMarshalers.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 573440 c:\windows\assembly\GAC\System.Web.Services\1.0.5000.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 819200 c:\windows\assembly\GAC\System.Web.Mobile\1.0.5000.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 126976 c:\windows\assembly\GAC\System.ServiceProcess\1.0.5000.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 131072 c:\windows\assembly\GAC\System.Runtime.Serialization.Formatters.Soap\1.0.5000.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 323584 c:\windows\assembly\GAC\System.Runtime.Remoting\1.0.5000.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 241664 c:\windows\assembly\GAC\System.Messaging\1.0.5000.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 372736 c:\windows\assembly\GAC\System.Management\1.0.5000.0__b03f5f7f11d50a3a\System.Management.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 241664 c:\windows\assembly\GAC\System.EnterpriseServices\1.0.5000.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 466944 c:\windows\assembly\GAC\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 303104 c:\windows\assembly\GAC\System.Data.OracleClient\1.0.5000.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2010-06-25 12:12 . 2010-06-25 12:12 450560 c:\windows\assembly\GAC\Sony.MediaSoftware.MediaMgr.resources\2.0.2208.15134_ja-JP_3cda94b1926e6fbc\Sony.MediaSoftware.MediaMgr.resources.dll
+ 2010-06-25 12:12 . 2010-06-25 12:12 237568 c:\windows\assembly\GAC\Sony.MediaSoftware.clrshared\2.0.2208.15131__3cda94b1926e6fbc\Sony.MediaSoftware.clrshared.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 299008 c:\windows\assembly\GAC\Microsoft.VisualBasic\7.0.5000.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 720896 c:\windows\assembly\GAC\Microsoft.JScript\7.0.5000.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2011-01-28 22:50 . 2011-01-28 22:50 223232 c:\windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
+ 2011-01-28 22:50 . 2011-01-28 22:50 178176 c:\windows\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll
+ 2011-01-28 22:50 . 2011-01-28 22:50 364544 c:\windows\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll
+ 2011-01-28 22:50 . 2011-01-28 22:50 159232 c:\windows\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll
+ 2011-01-28 22:50 . 2011-01-28 22:50 145920 c:\windows\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll
+ 2011-01-28 22:50 . 2011-01-28 22:50 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-01-28 22:50 . 2011-01-28 22:50 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-01-28 22:50 . 2011-01-28 22:50 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-01-28 22:50 . 2011-01-28 22:50 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-01-28 22:50 . 2011-01-28 22:50 577024 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-01-28 22:50 . 2011-01-28 22:50 576000 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-01-28 22:50 . 2011-01-28 22:50 567296 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-01-28 22:50 . 2011-01-28 22:50 563712 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-01-28 22:50 . 2011-01-28 22:50 473600 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
+ 2010-06-25 12:12 . 2010-06-25 12:12 196608 c:\windows\assembly\GAC\log4net\1.2.0.31001__3cda94b1926e6fbc\log4net.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 809984 c:\windows\$NtUninstallWMFDist11$\wmvdmod.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 896512 c:\windows\$NtUninstallWMFDist11$\wmspdmoe.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 484864 c:\windows\$NtUninstallWMFDist11$\wmspdmod.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 759296 c:\windows\$NtUninstallWMFDist11$\wmsdmod.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 151552 c:\windows\$NtUninstallWMFDist11$\wmidx.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 230400 c:\windows\$NtUninstallWMFDist11$\wmasf.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 670720 c:\windows\$NtUninstallWMFDist11$\wmadmoe.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 408064 c:\windows\$NtUninstallWMFDist11$\wmadmod.dll
+ 2010-06-29 15:01 . 2006-08-11 18:14 371424 c:\windows\$NtUninstallWMFDist11$\spuninst\updspapi.dll
+ 2010-06-29 15:01 . 2006-08-11 18:14 213216 c:\windows\$NtUninstallWMFDist11$\spuninst\spuninst.exe
+ 2010-06-29 15:01 . 2004-08-04 12:00 237568 c:\windows\$NtUninstallWMFDist11$\qasf.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 245760 c:\windows\$NtUninstallWMFDist11$\mswmdm.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 356352 c:\windows\$NtUninstallWMFDist11$\msscp.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 201728 c:\windows\$NtUninstallWMFDist11$\mspmsp.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 259072 c:\windows\$NtUninstallWMFDist11$\msnetobj.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 240640 c:\windows\$NtUninstallWMFDist11$\mpg4dmod.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 384512 c:\windows\$NtUninstallWMFDist11$\mp4sdmod.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 310272 c:\windows\$NtUninstallWMFDist11$\mp43dmod.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 103936 c:\windows\$NtUninstallWMFDist11$\logagent.exe
+ 2010-06-29 15:01 . 2004-08-04 12:00 695296 c:\windows\$NtUninstallWMFDist11$\drmv2clt.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 159232 c:\windows\$NtUninstallWMFDist11$\cewmdm.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 286208 c:\windows\$NtUninstallWMFDist11$\blackbox.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 2589184 c:\windows\system32\WpdShext.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 1392128 c:\windows\system32\WMVSDECD.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 1532416 c:\windows\system32\WMVENCOD.dll
+ 2006-08-24 20:30 . 2006-08-24 20:30 1539584 c:\windows\system32\WMVDECOD.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 2450944 c:\windows\system32\wmvcore.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 1327616 c:\windows\system32\WMSPDMOE.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 1118208 c:\windows\system32\WMADMOE.dll
+ 2010-01-27 01:07 . 2010-10-20 11:38 5969360 c:\windows\system32\Macromed\Flash\NPSWF32.dll
+ 2010-06-29 15:02 . 2010-05-20 13:27 2074480 c:\windows\system32\DRVSTORE\VX6000_9648EB73F22649513FDB41D9DBE93A30CFBB20BE\VX6000Xp.sys
+ 2010-06-29 15:02 . 2010-05-20 13:27 1961328 c:\windows\system32\DRVSTORE\VX3000_A17A82730C7D038541072034CDAF4B2504049C63\VX3000.sys
+ 2010-06-29 15:02 . 2010-05-20 13:27 1961072 c:\windows\system32\DRVSTORE\VX1000_BCE047AC83D5D72E7E25B0A5BCCBA21F4DB8D4F4\VX1000.sys
+ 2004-08-04 12:00 . 2006-08-24 20:30 2450944 c:\windows\system32\dllcache\wmvcore.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 1327616 c:\windows\system32\dllcache\WMSPDMOE.dll
+ 2004-08-04 12:00 . 2006-08-24 20:30 1118208 c:\windows\system32\dllcache\WMADMOE.dll
+ 2010-06-29 15:02 . 2009-09-04 15:29 1892184 c:\windows\system32\D3DX9_42.dll
+ 2011-01-28 22:50 . 2009-03-09 14:27 4178264 c:\windows\system32\D3DX9_41.dll
+ 2011-01-28 22:50 . 2008-10-15 05:22 4379984 c:\windows\system32\D3DX9_40.dll
+ 2011-01-28 22:50 . 2008-07-10 10:00 3851784 c:\windows\system32\D3DX9_39.dll
+ 2011-01-28 22:50 . 2008-05-30 13:11 3850760 c:\windows\system32\D3DX9_38.dll
+ 2011-01-28 22:50 . 2008-03-05 14:56 3786760 c:\windows\system32\D3DX9_37.dll
+ 2011-01-28 19:38 . 2007-10-12 14:14 3734536 c:\windows\system32\d3dx9_36.dll
+ 2011-01-28 19:38 . 2007-07-19 17:14 3727720 c:\windows\system32\d3dx9_35.dll
+ 2011-01-28 19:38 . 2007-05-16 15:45 3497832 c:\windows\system32\d3dx9_34.dll
+ 2011-01-28 19:38 . 2007-03-12 15:42 3495784 c:\windows\system32\d3dx9_33.dll
+ 2011-01-28 19:38 . 2006-11-29 12:06 3426072 c:\windows\system32\d3dx9_32.dll
+ 2011-01-28 19:38 . 2006-09-28 15:05 2414360 c:\windows\system32\d3dx9_31.dll
+ 2011-01-28 19:38 . 2006-03-31 11:40 2388176 c:\windows\system32\d3dx9_30.dll
+ 2011-01-28 19:38 . 2006-02-03 07:43 2332368 c:\windows\system32\d3dx9_29.dll
+ 2011-01-28 19:38 . 2005-12-05 17:09 2323664 c:\windows\system32\d3dx9_28.dll
+ 2011-01-28 19:38 . 2005-07-22 18:59 2319568 c:\windows\system32\d3dx9_27.dll
+ 2011-01-28 19:38 . 2005-05-26 14:34 2297552 c:\windows\system32\d3dx9_26.dll
+ 2011-01-28 19:38 . 2005-03-18 16:19 2337488 c:\windows\system32\d3dx9_25.dll
+ 2011-01-28 19:38 . 2005-02-05 18:45 2222800 c:\windows\system32\d3dx9_24.dll
+ 2010-06-29 15:02 . 2009-09-04 15:29 1974616 c:\windows\system32\D3DCompiler_42.dll
+ 2011-01-28 22:50 . 2008-10-15 05:22 2036576 c:\windows\system32\D3DCompiler_40.dll
+ 2011-01-28 22:50 . 2008-07-10 10:00 1493528 c:\windows\system32\D3DCompiler_39.dll
+ 2011-01-28 22:50 . 2008-05-30 13:11 1491992 c:\windows\system32\D3DCompiler_38.dll
+ 2011-01-28 22:50 . 2008-03-05 14:56 1420824 c:\windows\system32\D3DCompiler_37.dll
+ 2011-01-28 19:38 . 2007-10-12 14:14 1374232 c:\windows\system32\D3DCompiler_36.dll
+ 2011-01-28 19:38 . 2007-07-19 17:14 1358192 c:\windows\system32\D3DCompiler_35.dll
+ 2011-01-28 19:38 . 2007-05-16 15:45 1124720 c:\windows\system32\D3DCompiler_34.dll
+ 2011-01-28 19:38 . 2007-03-12 15:42 1123696 c:\windows\system32\D3DCompiler_33.dll
+ 2005-10-04 09:43 . 2005-10-04 09:43 1183744 c:\windows\system32\cfhd.dll
+ 2010-06-28 10:59 . 2004-01-27 18:50 1024000 c:\windows\system32\3ivx.dll
+ 2010-06-28 11:21 . 2007-04-19 13:15 7277568 c:\windows\system32\3gpcore.dll
+ 2004-07-15 06:15 . 2004-07-15 06:15 1032192 c:\windows\Microsoft.NET\Framework\v1.1.4322\VsaVb7rt.dll
+ 2004-07-15 12:29 . 2004-07-15 12:29 1339392 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.XML.dll
+ 2004-07-15 12:32 . 2004-07-15 12:32 2052096 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Windows.Forms.dll
+ 2004-07-15 12:29 . 2004-07-15 12:29 1257472 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.dll
+ 2004-07-15 12:31 . 2004-07-15 12:31 1224704 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.dll
+ 2004-07-15 12:29 . 2004-07-15 12:29 1703936 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Design.dll
+ 2004-07-15 12:32 . 2004-07-15 12:32 1294336 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Data.dll
+ 2004-07-14 22:28 . 2004-07-14 22:28 2502656 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll
+ 2004-07-14 22:26 . 2004-07-14 22:26 2510848 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsvr.dll
+ 2004-07-15 12:29 . 2004-07-15 12:29 2138112 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll
+ 2003-02-21 06:25 . 2003-02-21 06:25 1564672 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorcfg.dll
+ 2011-01-28 19:38 . 2004-12-01 14:53 2846720 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2903.0\Microsoft.DirectX.Direct3DX.dll
+ 2011-01-28 19:38 . 2004-09-29 11:38 2676224 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Direct3DX.dll
+ 2010-06-25 12:13 . 2010-06-25 12:13 1880576 c:\windows\Installer\c6e9ff.msi
+ 2010-06-25 12:12 . 2010-06-25 12:12 1730560 c:\windows\Installer\c6e9f9.msi
+ 2010-06-25 11:59 . 2010-06-25 11:59 3446272 c:\windows\Installer\c1b35d.msi
+ 2010-06-29 15:02 . 2010-06-29 15:02 1076224 c:\windows\Installer\9f0fb.msi
+ 2010-10-06 15:07 . 2010-10-06 15:07 1575936 c:\windows\Installer\2d242e.msi
+ 2010-11-08 07:14 . 2010-11-08 07:14 3402752 c:\windows\Installer\2cb7b.msp
+ 2011-01-29 17:55 . 2011-01-29 17:55 3940864 c:\windows\Installer\2cb66.msi
+ 2011-02-08 10:47 . 2011-02-08 10:47 5709824 c:\windows\Installer\110baf.msi
+ 2010-11-04 14:47 . 2010-11-04 14:47 2127360 c:\windows\Installer\10c9068.msi
+ 2010-11-04 14:40 . 2010-11-04 14:40 1831424 c:\windows\Installer\10c9059.msi
+ 2010-11-17 21:05 . 2010-11-17 21:05 1652736 c:\windows\Installer\107be33.msi
+ 2010-09-16 02:08 . 2010-09-16 02:08 6210560 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0400000010\9.4.0\authplay.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 1953792 c:\windows\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_eeca87c1\System.dll
+ 2010-06-25 12:11 . 2010-06-25 12:11 4763648 c:\windows\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_1009f1c7\System.dll
+ 2010-06-25 12:11 . 2010-06-25 12:11 5505024 c:\windows\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_9cfafc29\System.Xml.dll
+ 2010-06-25 12:10 . 2010-06-25 12:10 2088960 c:\windows\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_157bad26\System.Xml.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 3014656 c:\windows\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_ad3eecc4\System.Windows.Forms.dll
+ 2010-06-25 12:11 . 2010-06-25 12:11 7880704 c:\windows\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_9021aec1\System.Windows.Forms.dll
+ 2010-06-25 12:11 . 2010-06-25 12:11 2244608 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_b6f85712\System.Drawing.dll
+ 2010-06-25 12:11 . 2010-06-25 12:11 3395584 c:\windows\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_677e43cf\System.Design.dll
+ 2010-06-25 12:10 . 2010-06-25 12:10 1466368 c:\windows\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_60bb477c\System.Design.dll
+ 2010-06-25 12:11 . 2010-06-25 12:11 3379200 c:\windows\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_47d1a0d1\mscorlib.dll
+ 2010-06-25 12:11 . 2010-06-25 12:12 8880128 c:\windows\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_03cfbbca\mscorlib.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 1224704 c:\windows\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 1339392 c:\windows\assembly\GAC\System.Xml\1.0.5000.0__b77a5c561934e089\System.XML.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 2052096 c:\windows\assembly\GAC\System.Windows.Forms\1.0.5000.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 1257472 c:\windows\assembly\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\System.Web.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 1703936 c:\windows\assembly\GAC\System.Design\1.0.5000.0__b03f5f7f11d50a3a\System.Design.dll
+ 2010-06-25 12:09 . 2010-06-25 12:09 1294336 c:\windows\assembly\GAC\System.Data\1.0.5000.0__b77a5c561934e089\System.Data.dll
+ 2010-06-25 12:12 . 2010-06-25 12:12 1830912 c:\windows\assembly\GAC\Syncfusion.Tools\2.1.0.1006__3cda94b1926e6fbc\Syncfusion.Tools.dll
+ 2010-06-25 12:12 . 2010-06-25 12:12 1208320 c:\windows\assembly\GAC\Syncfusion.Shared\2.1.0.1003__3cda94b1926e6fbc\Syncfusion.Shared.dll
+ 2010-06-25 12:12 . 2010-06-25 12:12 1314816 c:\windows\assembly\GAC\Syncfusion.Grid\2.1.0.1005__3cda94b1926e6fbc\Syncfusion.Grid.dll
+ 2010-06-25 12:11 . 2010-06-25 12:11 2785280 c:\windows\assembly\GAC\Sony.MediaSoftware.MediaMgr\2.0.2208.15134__3cda94b1926e6fbc\Sony.MediaSoftware.MediaMgr.dll
+ 2010-06-25 11:58 . 2010-06-25 11:58 1564672 c:\windows\assembly\GAC\mscorcfg\1.0.5000.0__b03f5f7f11d50a3a\mscorcfg.dll
+ 2011-01-28 22:50 . 2011-01-28 22:50 2846720 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2011-01-28 22:50 . 2011-01-28 22:50 2676224 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 1001472 c:\windows\$NtUninstallWMFDist11$\wmvdmoe2.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 2105344 c:\windows\$NtUninstallWMFDist11$\wmvcore.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 1119744 c:\windows\$NtUninstallWMFDist11$\wmsdmoe2.dll
+ 2010-06-29 15:01 . 2004-08-04 12:00 1050624 c:\windows\$NtUninstallWMFDist11$\wmnetmgr.dll
+ 2010-06-25 12:08 . 2010-06-25 12:08 19210240 c:\windows\Installer\c6e9f1.msp
+ 2010-06-25 12:07 . 2010-06-25 12:07 19210240 c:\windows\Installer\c6e9aa.msp
+ 2010-06-25 12:03 . 2010-06-25 12:03 19210240 c:\windows\Installer\c6e963.msp
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="c:\program files\valve\steam\steam.exe" [2010-11-17 1242448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATICCC"="c:\program files\ATI Technologies\ATI.ACE\cli.exe" [2006-01-02 45056]
"SoundMan"="SOUNDMAN.EXE" [2006-08-03 577536]
"Krait"="c:\program files\Razer\Krait\razerhid.exe" [2006-01-24 147456]
"SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2006-09-28 185896]
"OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" [2006-10-11 75304]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2007-06-29 286720]
"LogitechQuickCamRibbon"="c:\program files\Logitech\Logitech WebCam Software\LWS.exe" [2009-10-14 2793304]
"avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2011-01-13 3396624]
"LifeCam"="c:\program files\Microsoft LifeCam\LifeExp.exe" [2010-05-20 119152]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-09-23 35760]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-04 15360]

c:\documents and settings\Majo\Start Menu\Programs\Startup\
Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Enable Q-Type program.lnk - c:\program files\BenQ\Versato.exe [2010-2-6 249856]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\QIP\\qip.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Non Steam\\hl.exe"=
"c:\\Program Files\\totalcmd\\TOTALCMD.EXE"=
"c:\\Program Files\\Microsoft LifeCam\\LifeCam.exe"=
"c:\\Program Files\\Microsoft LifeCam\\LifeEnC2.exe"=
"c:\\Program Files\\Microsoft LifeCam\\LifeExp.exe"=
"c:\\Program Files\\Microsoft LifeCam\\LifeTray.exe"=
"c:\\Program Files\\Activision\\Call of Duty 2\\CoD2MP_s.exe"=
"c:\\Program Files\\Valve\\Steam\\SteamApps\\trojanskinhead69\\counter-strike\\hl.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Truck_Racing_By_Renault_Trucks\\Bin\\RTR.exe"=

R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2010-10-08 100560]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-02-14 691696]
S1 aswSP;aswSP; [x]
S1 kbfilter;Keyboard Filter Driver; [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [2010-10-08 143184]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [2010-10-08 41936]
S2 ABBYY.Licensing.PDFTransformer.Classic.3.0;ABBYY PDF Transformer 3.0 – Licenčná služba;c:\program files\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe [2009-05-14 759048]
S2 aswFsBlk;aswFsBlk; [x]
S3 krait03;Razer krait USB Filter Driver;c:\windows\system32\Drivers\krait.sys [2005-12-07 13324]
S3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver;c:\windows\system32\Drivers\nx6000.sys [2010-05-20 30576]
S3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [2010-10-08 111568]

.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://search.qip.ru/ie
uSearchURL,(Default) = Root: HKCU; Subkey: Software\Microsoft\Internet Explorer\SearchUrl; ValueType: string; ValueName: '; ValueData: '; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
IE: Easy-WebPrint Add To Print List - c:\program files\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html
IE: Easy-WebPrint High Speed Print - c:\program files\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html
IE: Easy-WebPrint Preview - c:\program files\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html
IE: Easy-WebPrint Print - c:\program files\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html
FF - ProfilePath - c:\documents and settings\Majo\Application Data\Mozilla\Firefox\Profiles\jm6mep1y.default\
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
.
- - - - ORPHANS REMOVED - - - -

HKCU-Run-ABBYY Screenshot Reader Bonus - (no file)



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-02-12 18:44
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(712)
c:\windows\system32\Ati2evxx.dll

- - - - - - - > 'explorer.exe'(2988)
c:\windows\TEMP\logishrd\LVPrcInj01.dll
c:\program files\ScanSoft\OmniPageSE4.0\OpHookSE4.dll
c:\windows\system32\msi.dll
c:\program files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll
c:\windows\system32\WPDShServiceObj.dll
c:\program files\Nokia\Nokia PC Suite 6\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 6\PCSCM.dll
c:\windows\system32\ConnAPI.DLL
c:\program files\Nokia\Nokia PC Suite 6\Lang\PhoneBrowser_slk.nlr
c:\program files\Nokia\Nokia PC Suite 6\Resource\PhoneBrowser_Nokia.ngr
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
c:\program files\Microsoft LifeCam\MSCamS32.exe
c:\windows\SOUNDMAN.EXE
c:\windows\system32\wscntfy.exe
c:\program files\Common Files\Logishrd\LQCVFX\COCIManager.exe
c:\program files\Razer\Krait\razerofa.exe
.
**************************************************************************
.
Completion time: 2011-02-12 18:48:23 - machine was rebooted
ComboFix-quarantined-files.txt 2011-02-12 17:48
ComboFix2.txt 2010-06-24 00:00

Pre-Run: 10 255 695 872 bytes free
Post-Run: 11 615 313 920 bytes free

- - End Of File - - 8A717525B51AFA0C027EB376B3A0944A

Re: Firefox, avast trojsky kon

Napsal: 12 úno 2011 19:01
od sxewarrior
nevošlo sa mi to do jedného tak som to rozdelil

Re: Firefox, avast trojsky kon

Napsal: 12 úno 2011 19:11
od Rudy
1 položka byla smazána a 1 nahrazena ze zálohy. Nastala nějaká změna?

Re: Firefox, avast trojsky kon

Napsal: 13 úno 2011 17:02
od sxewarrior
včera to celý deň šlo bez problémov, a teraz pri prihlásení na jednu stránku , vyhodilo zasa avast varovanie o tej stránke že ju zablokoval, čo ďalej

Re: Firefox, avast trojsky kon

Napsal: 13 úno 2011 17:07
od Rudy
Nic. Je to hláška Avastu, která vás informuje, že byl zablokován útok. Vir se do PC nedostal.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz