Nejspis vir

Zpráva

Tomik6566 · #1 Příspěvek od **Tomik6566** » 30 srp 2011 14:55

Dobrý den. posílam log z combofixu a rsit.Prosím o kontrolu protoze mám asi vir.
Díky

ComboFix 11-08-29.03 - Tomáš 29.08.2011 21:41:25.12.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1023.556 [GMT 2:00]
Spuštěný z: c:\documents and settings\Tomáš.TOM-C03959D6696\Dokumenty\Stažené soubory\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\ehome\medctrro.exe
c:\windows\iun6002.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-07-28 do 2011-08-29 )))))))))))))))))))))))))))))))
.
.
2011-08-09 18:57 . 2011-06-24 14:10 139656 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2011-08-09 18:55 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2011-08-01 12:44 . 2008-07-09 09:05 421888 ----a-w- c:\windows\system32\ac3filter.acm
2011-08-01 12:44 . 2011-08-01 12:44 -------- d-----w- c:\program files\XP Codec Pack
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-08-15 08:35 . 2011-06-06 10:03 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-07-29 09:49 . 2011-07-29 09:49 218688 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-07-15 13:29 . 2004-08-03 22:15 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-07-08 14:02 . 2001-10-25 11:00 10496 ----a-w- c:\windows\system32\drivers\ndistapi.sys
2011-07-08 12:05 . 2011-07-08 12:05 241 ----a-w- c:\documents and settings\Tomáš.TOM-C03959D6696\SR.vbs
2011-07-08 12:05 . 2011-07-08 12:05 241 ----a-w- c:\documents and settings\Tomáš.TOM-C03959D6696\SR.vbs
2011-07-04 11:43 . 2010-10-13 11:22 40112 ----a-w- c:\windows\avastSS.scr
2011-07-04 11:43 . 2010-10-13 11:22 199304 ----a-w- c:\windows\system32\aswBoot.exe
2011-07-04 11:36 . 2011-02-25 16:53 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-07-04 11:36 . 2010-10-13 11:22 309848 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-07-04 11:35 . 2010-10-13 11:22 43608 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-07-04 11:35 . 2010-10-13 11:22 102616 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-07-04 11:35 . 2010-10-13 11:22 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-07-04 11:32 . 2010-10-13 11:22 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-07-04 11:32 . 2010-10-13 11:22 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-07-04 11:32 . 2010-10-13 11:22 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-06-24 14:10 . 2010-04-02 15:21 139656 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2011-06-23 18:31 . 2004-08-17 14:49 916480 ----a-w- c:\windows\system32\wininet.dll
2011-06-23 18:31 . 2004-08-17 14:49 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-06-23 18:31 . 2004-08-17 14:49 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-06-23 12:05 . 2004-08-17 14:44 385024 ----a-w- c:\windows\system32\html.iec
2011-06-20 17:44 . 2004-08-17 14:49 293376 ----a-w- c:\windows\system32\winsrv.dll
2011-06-06 16:04 . 2010-04-20 18:06 98392 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2011-06-06 11:35 . 2004-08-17 14:44 1858944 ----a-w- c:\windows\system32\win32k.sys
2004-03-11 11:27 . 2010-02-20 10:03 40960 ----a-w- c:\program files\Uninstall_CDS.exe
2011-08-21 19:33 . 2011-07-29 15:31 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-07-21_09.33.02 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-04-02 15:55 . 2011-07-08 13:49 46080 c:\windows\system32\tzchange.exe
- 2010-04-02 15:55 . 2010-11-03 13:12 46080 c:\windows\system32\tzchange.exe
+ 2010-12-11 10:14 . 2010-07-05 13:13 18296 c:\windows\system32\spmsg.dll
- 2010-12-11 10:14 . 2010-02-22 14:20 18296 c:\windows\system32\spmsg.dll
+ 2006-11-02 16:10 . 2006-11-02 16:10 80912 c:\windows\system32\sherlock2.exe
+ 2004-08-10 06:52 . 2004-08-10 06:52 49221 c:\windows\system32\rv40.dll
+ 2004-08-10 06:52 . 2004-08-10 06:52 49221 c:\windows\system32\rv30.dll
+ 2004-08-10 06:51 . 2004-08-10 06:51 57411 c:\windows\system32\rv20.dll
+ 2004-08-10 06:50 . 2004-08-10 06:50 49216 c:\windows\system32\rv10.dll
+ 2001-10-25 11:00 . 2011-08-09 19:37 71632 c:\windows\system32\perfc009.dat
+ 2001-10-25 11:00 . 2011-08-09 19:37 83968 c:\windows\system32\perfc005.dat
+ 2004-08-17 14:49 . 2011-06-23 18:31 66560 c:\windows\system32\mshtmled.dll
- 2004-08-17 14:49 . 2011-04-25 16:06 66560 c:\windows\system32\mshtmled.dll
- 2009-03-08 02:31 . 2011-04-25 16:06 55296 c:\windows\system32\msfeedsbs.dll
+ 2009-03-08 02:31 . 2011-06-23 18:31 55296 c:\windows\system32\msfeedsbs.dll
+ 2004-08-17 14:49 . 2011-06-23 18:31 25600 c:\windows\system32\jsproxy.dll
- 2004-08-17 14:49 . 2011-04-25 16:06 25600 c:\windows\system32\jsproxy.dll
+ 2008-12-17 17:22 . 2008-12-17 17:22 93184 c:\windows\system32\ff_wmv9.dll
+ 2008-12-17 17:22 . 2008-12-17 17:22 57344 c:\windows\system32\ff_vfw.dll
+ 2010-04-04 16:29 . 2011-06-23 18:31 12800 c:\windows\system32\dllcache\xpshims.dll
- 2010-04-04 16:29 . 2011-04-25 16:06 12800 c:\windows\system32\dllcache\xpshims.dll
- 2004-08-17 14:49 . 2011-04-25 16:06 66560 c:\windows\system32\dllcache\mshtmled.dll
+ 2004-08-17 14:49 . 2011-06-23 18:31 66560 c:\windows\system32\dllcache\mshtmled.dll
+ 2010-04-04 16:29 . 2011-06-23 18:31 55296 c:\windows\system32\dllcache\msfeedsbs.dll
- 2010-04-04 16:29 . 2011-04-25 16:06 55296 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2004-08-17 14:49 . 2011-06-23 18:31 43520 c:\windows\system32\dllcache\licmgr10.dll
- 2004-08-17 14:49 . 2011-04-25 16:06 43520 c:\windows\system32\dllcache\licmgr10.dll
- 2004-08-17 14:49 . 2011-04-25 16:06 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2004-08-17 14:49 . 2011-06-23 18:31 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2004-08-10 06:50 . 2004-08-10 06:50 65602 c:\windows\system32\cook.dll
+ 2004-08-10 06:50 . 2004-08-10 06:50 77889 c:\windows\system32\atrc.dll
+ 2011-07-31 19:20 . 2011-07-31 19:20 22016 c:\windows\Installer\d72e23.msi
+ 2011-08-09 19:22 . 2011-04-25 16:06 12800 c:\windows\ie8updates\KB2559049-IE8\xpshims.dll
+ 2011-08-09 19:22 . 2011-04-25 16:06 66560 c:\windows\ie8updates\KB2559049-IE8\mshtmled.dll
+ 2011-08-09 19:22 . 2011-04-25 16:06 55296 c:\windows\ie8updates\KB2559049-IE8\msfeedsbs.dll
+ 2011-08-09 19:22 . 2011-04-25 16:06 43520 c:\windows\ie8updates\KB2559049-IE8\licmgr10.dll
+ 2011-08-09 19:22 . 2011-04-25 16:06 25600 c:\windows\ie8updates\KB2559049-IE8\jsproxy.dll
+ 2011-08-11 20:08 . 2011-08-11 20:08 37888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Pres#\343c52b741531ce9ae874ea7508831a7\System.Windows.Presentation.ni.dll
+ 2011-08-11 20:07 . 2011-08-11 20:07 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\246110974e3c48733458819b07464b23\System.Web.DynamicData.Design.ni.dll
+ 2011-08-11 20:02 . 2011-08-11 20:02 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\ace861fe8dbf146c3e449abaa7691e9f\System.ComponentModel.DataAnnotations.ni.dll
+ 2011-08-09 19:38 . 2011-08-09 19:38 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\40ee65aacd9d7472cd6f8dddbfca604b\PresentationFontCache.ni.exe
+ 2011-08-09 19:38 . 2011-08-09 19:38 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\12c424eed7ee0e9c017bf72ff09eb78c\PresentationCFFRasterizer.ni.dll
+ 2011-08-11 20:05 . 2011-08-11 20:05 55296 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\f9c514544c8e23220493cd42a0e20678\Microsoft.Vsa.ni.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2011-08-09 19:35 . 2011-08-09 19:35 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2011-06-15 17:21 . 2011-06-15 17:21 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
- 2004-08-17 14:49 . 2009-03-08 02:34 105984 c:\windows\system32\url.dll
+ 2004-08-17 14:49 . 2011-06-23 18:31 105984 c:\windows\system32\url.dll
+ 2004-08-10 06:50 . 2004-08-10 06:50 106561 c:\windows\system32\sipr.dll
+ 2003-11-25 23:32 . 2003-11-25 23:32 123392 c:\windows\system32\pncrt.dll
+ 2001-10-25 11:00 . 2011-08-09 19:37 441696 c:\windows\system32\perfh009.dat
+ 2001-10-25 11:00 . 2011-08-09 19:37 444100 c:\windows\system32\perfh005.dat
+ 2004-04-20 22:00 . 2004-04-20 22:00 172032 c:\windows\system32\OptimFROG.dll
+ 2004-08-17 14:49 . 2011-06-23 18:31 206848 c:\windows\system32\occache.dll
- 2004-08-17 14:49 . 2011-04-25 16:06 206848 c:\windows\system32\occache.dll
- 2004-08-17 14:49 . 2011-04-25 16:06 611840 c:\windows\system32\mstime.dll
+ 2004-08-17 14:49 . 2011-06-23 18:31 611840 c:\windows\system32\mstime.dll
- 2009-03-08 02:32 . 2011-04-25 16:06 602112 c:\windows\system32\msfeeds.dll
+ 2009-03-08 02:32 . 2011-06-23 18:31 602112 c:\windows\system32\msfeeds.dll
+ 2011-08-15 08:35 . 2011-08-15 08:35 243360 c:\windows\system32\Macromed\Flash\FlashUtil10v_Plugin.exe
+ 2008-12-17 16:59 . 2008-12-17 16:59 560802 c:\windows\system32\libmplayer.dll
+ 2004-08-17 14:49 . 2011-06-23 18:31 184320 c:\windows\system32\iepeers.dll
- 2004-08-17 14:49 . 2011-04-25 16:06 184320 c:\windows\system32\iepeers.dll
- 2004-08-17 14:49 . 2011-04-25 16:06 387584 c:\windows\system32\iedkcs32.dll
+ 2004-08-17 14:49 . 2011-06-23 18:31 387584 c:\windows\system32\iedkcs32.dll
+ 2004-08-17 14:49 . 2011-06-23 12:05 173568 c:\windows\system32\ie4uinit.exe
- 2004-08-17 14:49 . 2011-04-25 12:01 173568 c:\windows\system32\ie4uinit.exe
+ 2004-08-10 06:52 . 2004-08-10 06:52 241723 c:\windows\system32\hxltcolor.dll
+ 2008-12-17 17:41 . 2008-12-17 17:41 884237 c:\windows\system32\ff_x264.dll
+ 2008-12-17 17:17 . 2008-12-17 17:17 239247 c:\windows\system32\ff_theora.dll
+ 2004-10-03 17:50 . 2004-10-03 17:50 129024 c:\windows\system32\ff_mpeg2enc.dll
+ 2004-11-24 19:25 . 2004-11-24 19:25 335872 c:\windows\system32\drvc.dll
+ 2004-08-10 06:51 . 2004-08-10 06:51 176195 c:\windows\system32\drv2.dll
+ 2004-08-10 06:50 . 2004-08-10 06:50 102464 c:\windows\system32\drv1.dll
+ 2010-06-18 17:47 . 2011-06-20 17:44 293376 c:\windows\system32\dllcache\winsrv.dll
- 2010-06-18 17:47 . 2011-04-26 11:07 293376 c:\windows\system32\dllcache\winsrv.dll
- 2004-08-17 14:49 . 2011-04-25 16:06 916480 c:\windows\system32\dllcache\wininet.dll
+ 2004-08-17 14:49 . 2011-06-23 18:31 916480 c:\windows\system32\dllcache\wininet.dll
- 2004-08-17 14:49 . 2009-03-08 02:34 105984 c:\windows\system32\dllcache\url.dll
+ 2004-08-17 14:49 . 2011-06-23 18:31 105984 c:\windows\system32\dllcache\url.dll
- 2004-08-17 14:49 . 2011-04-25 16:06 206848 c:\windows\system32\dllcache\occache.dll
+ 2004-08-17 14:49 . 2011-06-23 18:31 206848 c:\windows\system32\dllcache\occache.dll
- 2004-08-17 14:49 . 2011-04-25 16:06 611840 c:\windows\system32\dllcache\mstime.dll
+ 2004-08-17 14:49 . 2011-06-23 18:31 611840 c:\windows\system32\dllcache\mstime.dll
+ 2010-04-04 16:29 . 2011-06-23 18:31 602112 c:\windows\system32\dllcache\msfeeds.dll
- 2010-04-04 16:29 . 2011-04-25 16:06 602112 c:\windows\system32\dllcache\msfeeds.dll
- 2010-04-02 15:58 . 2011-04-29 16:19 456320 c:\windows\system32\dllcache\mrxsmb.sys
+ 2010-04-02 15:58 . 2011-07-15 13:29 456320 c:\windows\system32\dllcache\mrxsmb.sys
+ 2010-04-04 16:29 . 2011-06-23 18:31 247808 c:\windows\system32\dllcache\ieproxy.dll
- 2010-04-04 16:29 . 2011-04-25 16:06 247808 c:\windows\system32\dllcache\ieproxy.dll
+ 2004-08-17 14:49 . 2011-06-23 18:31 184320 c:\windows\system32\dllcache\iepeers.dll
- 2004-08-17 14:49 . 2011-04-25 16:06 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2010-06-09 04:38 . 2011-06-23 18:31 743424 c:\windows\system32\dllcache\iedvtool.dll
- 2010-06-09 04:38 . 2011-04-25 16:06 743424 c:\windows\system32\dllcache\iedvtool.dll
+ 2004-08-17 14:49 . 2011-06-23 18:31 387584 c:\windows\system32\dllcache\iedkcs32.dll
- 2004-08-17 14:49 . 2011-04-25 16:06 387584 c:\windows\system32\dllcache\iedkcs32.dll
+ 2004-08-17 14:49 . 2011-06-23 12:05 173568 c:\windows\system32\dllcache\ie4uinit.exe
- 2004-08-17 14:49 . 2011-04-25 12:01 173568 c:\windows\system32\dllcache\ie4uinit.exe
+ 2011-08-09 19:22 . 2011-04-25 16:06 916480 c:\windows\ie8updates\KB2559049-IE8\wininet.dll
+ 2011-08-09 19:22 . 2009-03-08 02:34 105984 c:\windows\ie8updates\KB2559049-IE8\url.dll
+ 2011-08-09 19:22 . 2010-07-05 13:13 391032 c:\windows\ie8updates\KB2559049-IE8\spuninst\updspapi.dll
+ 2011-08-09 19:22 . 2010-02-22 14:20 233848 c:\windows\ie8updates\KB2559049-IE8\spuninst\spuninst.exe
+ 2011-08-09 19:22 . 2011-04-25 16:06 206848 c:\windows\ie8updates\KB2559049-IE8\occache.dll
+ 2011-08-09 19:22 . 2011-04-25 16:06 611840 c:\windows\ie8updates\KB2559049-IE8\mstime.dll
+ 2011-08-09 19:22 . 2011-04-25 16:06 602112 c:\windows\ie8updates\KB2559049-IE8\msfeeds.dll
+ 2011-08-09 19:22 . 2011-04-25 16:06 247808 c:\windows\ie8updates\KB2559049-IE8\ieproxy.dll
+ 2011-08-09 19:22 . 2011-04-25 16:06 184320 c:\windows\ie8updates\KB2559049-IE8\iepeers.dll
+ 2011-08-09 19:22 . 2011-04-25 16:06 743424 c:\windows\ie8updates\KB2559049-IE8\iedvtool.dll
+ 2011-08-09 19:22 . 2011-04-25 16:06 387584 c:\windows\ie8updates\KB2559049-IE8\iedkcs32.dll
+ 2011-08-09 19:22 . 2011-04-25 12:01 173568 c:\windows\ie8updates\KB2559049-IE8\ie4uinit.exe
- 2010-04-02 15:58 . 2011-04-29 16:19 456320 c:\windows\Driver Cache\i386\mrxsmb.sys
+ 2010-04-02 15:58 . 2011-07-15 13:29 456320 c:\windows\Driver Cache\i386\mrxsmb.sys
+ 2011-08-09 19:36 . 2011-08-09 19:36 348160 c:\windows\assembly\tmp\S17DJPV1\Microsoft.Build.Engine.dll
+ 2011-08-11 20:00 . 2011-08-11 20:00 321536 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\cc14c69205b984edba1db26fd5e421ac\WsatConfig.ni.exe
+ 2011-08-09 19:52 . 2011-08-09 19:52 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\39ce0c9c9cc294c0ee26c4ff01522961\WindowsFormsIntegration.ni.dll
+ 2011-08-09 19:52 . 2011-08-09 19:52 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\431e918aee8da919f5b9e3a5195ccf93\UIAutomationClient.ni.dll
+ 2011-08-11 20:09 . 2011-08-11 20:09 400896 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\946eefb99bc116ee68e0e7c69a5a8a5c\System.Xml.Linq.ni.dll
+ 2011-08-11 20:07 . 2011-08-11 20:07 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\a82eef3128b9527dc05b3c8667e713bc\System.Web.Routing.ni.dll
+ 2011-08-11 20:07 . 2011-08-11 20:07 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\203c148c913357bfc2ae9d209101f2b3\System.Web.RegularExpressions.ni.dll
+ 2011-08-11 20:07 . 2011-08-11 20:07 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\f89fe39468ea6faf71c4257c89cf3c54\System.Web.Extensions.Design.ni.dll
+ 2011-08-11 20:07 . 2011-08-11 20:07 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\2314ff800782dc85224e69e802a073f7\System.Web.Entity.ni.dll
+ 2011-08-11 20:07 . 2011-08-11 20:07 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\f690a8f5d784a5bb20f2cbaa7277eb6c\System.Web.Entity.Design.ni.dll
+ 2011-08-11 20:07 . 2011-08-11 20:07 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\c5c96400424b85536443623f96f64581\System.Web.DynamicData.ni.dll
+ 2011-08-11 20:06 . 2011-08-11 20:06 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\5f8e87b47465a038403e73012c6d102a\System.Web.Abstractions.ni.dll
+ 2011-08-11 20:06 . 2011-08-11 20:06 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\846dd505f97805f00999ee26aec9bf75\System.Transactions.ni.dll
+ 2011-08-11 20:05 . 2011-08-11 20:05 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\70a1400affdc775d7c7398e036359286\System.ServiceProcess.ni.dll
+ 2011-08-11 20:01 . 2011-08-11 20:01 679936 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\de9cd25ccb24bcf8a0316756e766721f\System.Security.ni.dll
+ 2011-08-11 20:05 . 2011-08-11 20:05 311296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\21248037960cf6dfa2ce401d355bd6c9\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2011-08-11 20:05 . 2011-08-11 20:05 621056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Net\480ea914e13fe41cdd8fb542bb1f7e81\System.Net.ni.dll
+ 2011-08-11 20:05 . 2011-08-11 20:05 998400 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\6e563a58e6fc0117070d5b8fd59e4e1b\System.Management.ni.dll
+ 2011-08-11 20:05 . 2011-08-11 20:05 330752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.I#\dc72c7581f1b3794c0ea595ba02ff7ad\System.Management.Instrumentation.ni.dll
+ 2011-08-10 20:26 . 2011-08-10 20:26 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\fcf8612a210d1f76e0b37dc8467b4696\System.IO.Log.ni.dll
+ 2011-08-10 20:26 . 2011-08-10 20:26 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\ec017b5a95d02fccaefd835490ef1e14\System.IdentityModel.Selectors.ni.dll
+ 2011-08-11 20:04 . 2011-08-11 20:04 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\75f452279422a7898e840ee5768c9d2e\System.EnterpriseServices.Wrapper.dll
+ 2011-08-11 20:04 . 2011-08-11 20:04 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\75f452279422a7898e840ee5768c9d2e\System.EnterpriseServices.ni.dll
+ 2011-08-09 19:50 . 2011-08-09 19:50 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\f7cd3d07c15366b76fe4c38d24455d6b\System.Drawing.Design.ni.dll
+ 2011-08-11 20:04 . 2011-08-11 20:04 881152 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\822c996e6ad4901219b7de399a6f78bf\System.DirectoryServices.AccountManagement.ni.dll
+ 2011-08-11 20:04 . 2011-08-11 20:04 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\1ffe911e62f482e42be2c4428bd08c10\System.DirectoryServices.Protocols.ni.dll
+ 2011-08-11 20:04 . 2011-08-11 20:04 354816 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\e1c009b2c9becdb732a2ea45f32a46b8\System.Data.Services.Design.ni.dll
+ 2011-08-11 20:04 . 2011-08-11 20:04 939008 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\1defd94e1662a4478ccf2cd0b1b4e6a6\System.Data.Services.Client.ni.dll
+ 2011-08-11 20:04 . 2011-08-11 20:04 756736 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity.#\04267c1dbdcdd8ec37e1518126767ead\System.Data.Entity.Design.ni.dll
+ 2011-08-11 20:02 . 2011-08-11 20:02 135680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\f2a6d41b3f6e26eea6dcac9298aa637b\System.Data.DataSetExtensions.ni.dll
+ 2011-08-11 20:01 . 2011-08-11 20:01 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\77df2cd21a5b85a1605b335aa9ad9d44\System.Configuration.ni.dll
+ 2011-08-11 20:05 . 2011-08-11 20:05 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\585e68739b2a8aff61ee6b2786513245\System.Configuration.Install.ni.dll
+ 2011-08-11 20:02 . 2011-08-11 20:02 633856 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\fbf6ef12d1456058acde29f2640092fb\System.AddIn.ni.dll
+ 2011-08-11 20:00 . 2011-08-11 20:00 366080 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\896e42071939e038008b0bbbfed1213c\SMSvcHost.ni.exe
+ 2011-08-11 20:00 . 2011-08-11 20:00 256000 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\ca07e9cf488af1290d2340d682574a24\SMDiagnostics.ni.dll
+ 2011-08-11 20:00 . 2011-08-11 20:00 320512 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\a5aa977dd575a6beb3a416bd480b98a7\ServiceModelReg.ni.exe
+ 2011-08-09 19:44 . 2011-08-09 19:44 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\f52e48f55258d0a04fbab3a1f93752e9\PresentationFramework.Classic.ni.dll
+ 2011-08-09 19:44 . 2011-08-09 19:44 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\cf812b99f587ab514afb36fa9d4c1567\PresentationFramework.Aero.ni.dll
+ 2011-08-09 19:44 . 2011-08-09 19:44 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\b7795999cc67f3a6cec40f5b24005e00\PresentationFramework.Luna.ni.dll
+ 2011-08-09 19:44 . 2011-08-09 19:44 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\09f5af61ea2af04eb32c04b3091ffc86\PresentationFramework.Royale.ni.dll
+ 2011-08-11 20:00 . 2011-08-11 20:00 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\2d89c7b72bc8e527b26d5b6f3b931012\MSBuild.ni.exe
+ 2011-08-11 20:00 . 2011-08-11 20:00 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\39e9d172f0cf5eec30b1b67212cc032b\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2011-08-11 20:02 . 2011-08-11 20:02 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\f1b0ec3ccde9142e67ac681fb521ac66\Microsoft.Build.Utilities.ni.dll
+ 2011-08-11 20:02 . 2011-08-11 20:02 175104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\9250f038410f0d6432e3ccb0b046862b\Microsoft.Build.Utilities.v3.5.ni.dll
+ 2011-08-11 20:01 . 2011-08-11 20:01 839680 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\a4672179aba638cd78bdfe268391b47b\Microsoft.Build.Engine.ni.dll
+ 2011-08-11 20:01 . 2011-08-11 20:01 222720 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\37db660a84ee52b61a7ca55812581bbd\Microsoft.Build.Conversion.v3.5.ni.dll
+ 2011-08-11 19:59 . 2011-08-11 19:59 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\fe9a21b94803f74697bb42b9d1fdea5b\ComSvcConfig.ni.exe
+ 2011-08-10 20:25 . 2011-08-10 20:25 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\f160c8e40b60edd47ae74b0b911fece1\AspNetMMCExt.ni.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2011-08-09 19:35 . 2011-08-09 19:35 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2011-08-09 19:35 . 2011-08-09 19:35 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
- 2011-06-15 17:20 . 2011-06-15 17:20 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2009-06-24 14:39 . 2009-06-24 14:39 1003520 c:\windows\system32\VSFilter.dll
+ 2004-08-17 14:49 . 2011-06-23 18:31 1212416 c:\windows\system32\urlmon.dll
+ 2004-08-17 14:49 . 2011-07-25 15:08 5969920 c:\windows\system32\mshtml.dll
+ 2010-01-27 01:07 . 2011-08-15 08:35 6277280 c:\windows\system32\Macromed\Flash\NPSWF32.dll
+ 2008-12-19 15:15 . 2008-12-19 15:15 4338246 c:\windows\system32\libavcodec.dll
- 2009-03-08 02:32 . 2011-04-25 16:06 1991680 c:\windows\system32\iertutil.dll
+ 2009-03-08 02:32 . 2011-06-23 18:31 1991680 c:\windows\system32\iertutil.dll
+ 2004-08-17 14:49 . 2011-06-23 18:31 1212416 c:\windows\system32\dllcache\urlmon.dll
+ 2004-08-17 14:49 . 2011-07-25 15:08 5969920 c:\windows\system32\dllcache\mshtml.dll
- 2010-04-04 16:29 . 2011-04-25 16:06 1991680 c:\windows\system32\dllcache\iertutil.dll
+ 2010-04-04 16:29 . 2011-06-23 18:31 1991680 c:\windows\system32\dllcache\iertutil.dll
+ 2011-04-28 19:50 . 2011-04-28 19:50 3182592 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
- 2011-01-18 02:39 . 2011-01-18 02:39 3182592 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
+ 2011-05-01 22:06 . 2011-05-01 22:06 2705920 c:\windows\Installer\2396cd.msp
+ 2011-08-09 19:22 . 2011-04-25 16:06 1211904 c:\windows\ie8updates\KB2559049-IE8\urlmon.dll
+ 2011-08-09 19:22 . 2011-05-30 22:12 5964800 c:\windows\ie8updates\KB2559049-IE8\mshtml.dll
+ 2011-08-09 19:22 . 2011-04-25 16:06 1991680 c:\windows\ie8updates\KB2559049-IE8\iertutil.dll
+ 2011-08-09 19:37 . 2011-08-09 19:37 2048000 c:\windows\assembly\tmp\3CIOU06C\System.XML.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 2933248 c:\windows\assembly\tmp\19FLRX39\System.Data.dll
+ 2011-08-09 19:42 . 2011-08-09 19:42 3325440 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\fd6e0cd6f124a6d041ef1b4c9a5f080b\WindowsBase.ni.dll
+ 2011-08-09 19:52 . 2011-08-09 19:52 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\162600dde59fbaa0c048a949158ecba3\UIAutomationClientsideProviders.ni.dll
+ 2011-08-09 19:39 . 2011-08-09 19:39 3325440 c:\windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP188.tmp\WindowsBase.dll
+ 2011-08-09 19:38 . 2011-08-09 19:38 7950848 c:\windows\assembly\NativeImages_v2.0.50727_32\System\e6c79e1d71b0c9000afd7e5e439b5c54\System.ni.dll
+ 2011-08-09 19:51 . 2011-08-09 19:52 5450752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\10154dcad2d62f226af2fd4211460a4b\System.Xml.ni.dll
+ 2011-08-11 20:09 . 2011-08-11 20:09 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\22229a30650a9afbac984e1093898b13\System.WorkflowServices.ni.dll
+ 2011-08-11 20:09 . 2011-08-11 20:09 1908224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\4d6b3cc1fc7a4788612241af7966715a\System.Workflow.Runtime.ni.dll
+ 2011-08-11 20:08 . 2011-08-11 20:09 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\e4c9853af945c9cfede19f3faf18af6e\System.Workflow.ComponentModel.ni.dll
+ 2011-08-11 20:08 . 2011-08-11 20:08 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\ab4b50c7c789e46a485903365765fde8\System.Workflow.Activities.ni.dll
+ 2011-08-11 20:08 . 2011-08-11 20:08 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\a2392c995b1bb6b63079091259222357\System.Web.Services.ni.dll
+ 2011-08-11 20:07 . 2011-08-11 20:07 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\3da92a0b9b8ac97e11ca8bf4df671a78\System.Web.Mobile.ni.dll
+ 2011-08-11 20:07 . 2011-08-11 20:07 2405376 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\01f4d6aa3299a41b8578b7e96afdcfb1\System.Web.Extensions.ni.dll
+ 2011-08-11 20:06 . 2011-08-11 20:06 1917952 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\dd93b2a2d145828ddfad0b1dad9d3442\System.Speech.ni.dll
+ 2011-08-11 20:05 . 2011-08-11 20:05 1706496 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\27e1b8dfd5e1ccf2c5b9efc51f674c69\System.ServiceModel.Web.ni.dll
+ 2011-08-10 20:26 . 2011-08-10 20:26 2345472 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\dece01bd9e9c32e47630fdfc78d3bd32\System.Runtime.Serialization.ni.dll
+ 2011-08-09 19:50 . 2011-08-09 19:50 1035776 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\90b444d02047ef27921153d46967ef0e\System.Printing.ni.dll
+ 2011-08-10 20:26 . 2011-08-10 20:26 1070080 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\a50e2fc92db32751857fb8d297f9d7bc\System.IdentityModel.ni.dll
+ 2011-08-09 19:50 . 2011-08-09 19:50 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\7ed09623172a292eaee51e2e3bcaf784\System.Drawing.ni.dll
+ 2011-08-11 20:04 . 2011-08-11 20:04 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\259ecf480769f4e60514b7ae2abaa6f1\System.DirectoryServices.ni.dll
+ 2011-08-11 20:04 . 2011-08-11 20:04 1801216 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\71cf3eb40fc38e6ac8fba09e872d2878\System.Deployment.ni.dll
+ 2011-08-09 19:48 . 2011-08-09 19:48 6616576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\db2d84e279807592a680ef4135e9fe9a\System.Data.ni.dll
+ 2011-08-11 20:01 . 2011-08-11 20:01 2510336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\0b16305773369cf740c6a2b1f1d785b2\System.Data.SqlXml.ni.dll
+ 2011-08-11 20:04 . 2011-08-11 20:04 1328128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Services\c1b9b8ce390548dcca661a5e6a908408\System.Data.Services.ni.dll
+ 2011-08-09 19:49 . 2011-08-09 19:49 2516480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\571af34939797a7c1cd05b0b925a45bf\System.Data.Linq.ni.dll
+ 2011-08-11 20:04 . 2011-08-11 20:04 9924096 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity\2b58cc071d6bf0c741e91f86c09de5d7\System.Data.Entity.ni.dll
+ 2011-08-09 19:47 . 2011-08-09 19:47 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\e54e013315849f5e34d8f2a8e7fdb450\System.Core.ni.dll
+ 2011-08-09 19:44 . 2011-08-09 19:44 2128896 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\24ab0cacc77e8696ceff3157942a2de4\ReachFramework.ni.dll
+ 2011-08-09 19:44 . 2011-08-09 19:44 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\fac1ca86f4fea17de40d7fdaba38563e\PresentationUI.ni.dll
+ 2011-08-09 19:38 . 2011-08-09 19:38 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\b187becbc388c4ce7f33ede4da76e7b1\PresentationBuildTasks.ni.dll
+ 2011-08-11 20:02 . 2011-08-11 20:02 1712128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\c6b19db2534042d435ede580f92bc75c\Microsoft.VisualBasic.ni.dll
+ 2011-08-11 19:59 . 2011-08-11 19:59 1093120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\08594c4ba9ea0253a836fe1d8d341984\Microsoft.Transactions.Bridge.ni.dll
+ 2011-08-11 20:05 . 2011-08-11 20:05 2332160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\345abd035c9378667b1cac54c1f21c97\Microsoft.JScript.ni.dll
+ 2011-08-11 20:02 . 2011-08-11 20:02 1966080 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\906cd5555b79e4e0486dc8ef2a748b13\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2011-08-11 20:01 . 2011-08-11 20:01 1620992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\7baff7d694394aaba490082c88d48fd2\Microsoft.Build.Tasks.ni.dll
+ 2011-08-11 20:01 . 2011-08-11 20:01 1888768 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\235a22e1ae9742bb724d411629dd99d5\Microsoft.Build.Engine.ni.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 3182592 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 3182592 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2011-08-09 19:37 . 2011-08-09 19:37 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2011-08-09 19:35 . 2011-08-09 19:35 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2011-08-09 19:35 . 2011-08-09 19:35 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2011-08-09 19:35 . 2011-08-09 19:35 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2011-06-15 17:20 . 2011-06-15 17:20 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
- 2011-06-15 17:21 . 2011-06-15 17:21 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2011-08-09 19:36 . 2011-08-09 19:36 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2010-04-04 16:14 . 2011-08-09 19:22 52390856 c:\windows\system32\MRT.exe
+ 2009-03-08 02:39 . 2011-06-23 18:31 11081728 c:\windows\system32\ieframe.dll
- 2009-03-08 02:39 . 2011-04-26 08:06 11081728 c:\windows\system32\ieframe.dll
- 2010-04-04 16:29 . 2011-04-26 08:06 11081728 c:\windows\system32\dllcache\ieframe.dll
+ 2010-04-04 16:29 . 2011-06-23 18:31 11081728 c:\windows\system32\dllcache\ieframe.dll
+ 2011-08-09 19:22 . 2011-04-26 08:06 11081728 c:\windows\ie8updates\KB2559049-IE8\ieframe.dll
+ 2011-08-10 20:53 . 2011-08-10 20:53 17403904 c:\windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP231.tmp\System.ServiceModel.dll
+ 2011-08-09 19:51 . 2011-08-09 19:51 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d00cc387e462e4c3cdcd112b137cac87\System.Windows.Forms.ni.dll
+ 2011-08-11 20:06 . 2011-08-11 20:06 11800576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\40893760431f8f0dcce3e18630e45b23\System.Web.ni.dll
+ 2011-08-11 19:59 . 2011-08-11 19:59 17403904 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\e3a0205acab2215fbad7927d9d483aeb\System.ServiceModel.ni.dll
+ 2011-08-09 19:49 . 2011-08-09 19:49 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\63ad0cd9b5e038c8e2e41415657db8fc\System.Design.ni.dll
+ 2011-08-09 19:44 . 2011-08-09 19:44 14328320 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\704556e34128441ea9f1a81cc89f8a79\PresentationFramework.ni.dll
+ 2011-08-09 19:43 . 2011-08-09 19:43 12215808 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\5f332c48d03eca57419c4f0e884092ee\PresentationCore.ni.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-07-04 11:43 122512 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" [2006-03-21 69632]
"avast"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2011-07-04 3493720]
.
c:\documents and settings\Tom ç\Nabˇdka Start\Programy\Po spuçtŘnˇ\
CLI.lnk - c:\program files\ATI Technologies\ATI.ACE\CLI.exe [2005-8-6 61440]
DTLite.lnk - c:\program files\DAEMON Tools Lite\DTLite.exe [2011-1-20 1305408]
.
c:\documents and settings\All Users.WINDOWS\Nabˇdka Start\Programy\Po spuçtŘnˇ\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2005-5-11 282624]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
.
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [7.4.2010 18:36 691696]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [25.2.2011 18:53 441176]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [13.10.2010 13:22 309848]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [29.7.2011 11:49 218688]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [13.10.2010 13:22 19544]
S3 CFcatchme;CFcatchme;\??\c:\docume~1\TOM~1.TOM\LOCALS~1\Temp\CFcatchme.sys --> c:\docume~1\TOM~1.TOM\LOCALS~1\Temp\CFcatchme.sys [?]
.
Obsah adresáře 'Naplánované úlohy'
.
2011-08-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-04-26 11:09]
.
2011-08-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-04-26 11:09]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://seznam.cz/
uInternet Settings,ProxyServer = socks=
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
IE: WikiKomentáře Google... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
TCP: DhcpNameServer = 93.185.57.3 192.168.1.5 192.168.1.2
FF - ProfilePath - c:\documents and settings\Tomáš.TOM-C03959D6696\Data aplikací\Mozilla\Firefox\Profiles\0x07sq83.default\
FF - prefs.js: browser.startup.homepage - centrum.cz
FF - prefs.js: network.proxy.type - 0
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-Cool's_Codec_pack_4.12 - c:\windows\iun6002.exe
AddRemove-HijackThis - c:\documents and settings\Tomáš.TOM-C03959D6696\Dokumenty\Stažené soubory\HijackThis.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-08-29 21:55
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory:
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(632)
c:\windows\system32\Ati2evxx.dll
.
Celkový čas: 2011-08-29 22:01:02
ComboFix-quarantined-files.txt 2011-08-29 20:00
ComboFix2.txt 2011-07-21 09:38
.
Před spuštěním: Volných bajtů: 23 489 273 856
Po spuštění: Volných bajtů: 23 463 333 888
.
- - End Of File - - D527D7C199A981E6617A397B04A09C36

Rsit:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:54:17, on 30.8.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\Product Assistant\bin\hprblog.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Documents and Settings\Tomáš.TOM-C03959D6696\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Tomáš.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = socks=
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: QIP 2005 - {1EF681F7-A04B-4D6D-9012-A307CCA55610} - C:\Program Files\QIP\qip.exe (file missing) (HKCU)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

--
End of file - 4471 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Tomáš.TOM-C03959D6696\Data aplikací\Mozilla\Firefox\Profiles\0x07sq83.default

prefs.js - "browser.startup.homepage" - "centrum.cz"

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsILegitCheckPlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
np32dsw.dll
npLegitCheckPlugin.dll
nppdf32.dll
ShockwavePlugin.class

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{68F9551E-0411-48E4-9AAF-4BC42A6A46BE}]
EWPBrowseObject Class - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll [2006-04-18 34304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2011-07-04 820864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2006-04-18 552960]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2011-07-04 820864]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"OpwareSE4"=C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe [2006-03-21 69632]
"avast"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2011-07-04 3493720]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]

C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Po spuštění
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2005-08-04 46080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutorun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"vidc.VP60"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.VP61"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.ffds"=ffdshow.ax
"vidc.XVID"=xvidvfw.dll
"VIDC.YV12"=xvidvfw.dll
"VIDC.MPG4"=mpg4c32.dll
"VIDC.MP42"=mpg4c32.dll
"msacm.ac3filter"=ac3filter.acm

======List of files/folders created in the last 1 month======

2011-08-29 22:01:09 ----D---- C:\WINDOWS\temp
2011-08-29 22:01:05 ----A---- C:\ComboFix.txt
2011-08-24 09:39:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2570791$
2011-08-09 21:29:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2567680$
2011-08-09 21:28:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2011-08-09 21:27:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2570222$
2011-08-09 21:20:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2566454$
2011-08-09 21:19:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2562937$
2011-08-01 14:44:32 ----D---- C:\Program Files\XP Codec Pack

======List of files/folders modified in the last 1 month======

2011-08-30 15:54:11 ----D---- C:\Program Files\trend micro
2011-08-30 15:37:34 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-08-29 23:57:47 ----D---- C:\WINDOWS\system32\CatRoot2
2011-08-29 22:01:12 ----D---- C:\Qoobox
2011-08-29 22:01:09 ----D---- C:\WINDOWS
2011-08-29 21:55:47 ----A---- C:\WINDOWS\system.ini
2011-08-29 21:55:09 ----D---- C:\WINDOWS\system32\drivers\etc
2011-08-29 21:54:06 ----D---- C:\WINDOWS\ehome
2011-08-29 21:48:43 ----D---- C:\WINDOWS\system32\drivers
2011-08-29 21:48:43 ----D---- C:\WINDOWS\system32
2011-08-29 21:48:43 ----D---- C:\WINDOWS\AppPatch
2011-08-29 21:48:31 ----D---- C:\Program Files\Common Files
2011-08-29 21:36:11 ----D---- C:\WINDOWS\Prefetch
2011-08-24 09:40:00 ----HD---- C:\WINDOWS\inf
2011-08-21 21:34:23 ----D---- C:\Program Files\Mozilla Firefox
2011-08-17 17:41:10 ----D---- C:\Documents and Settings\Tomáš.TOM-C03959D6696\Data aplikací\Media Player Classic
2011-08-12 14:05:23 ----SHD---- C:\WINDOWS\Installer
2011-08-12 14:05:22 ----D---- C:\Config.Msi
2011-08-12 14:05:10 ----RD---- C:\Program Files
2011-08-12 14:04:57 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Bluetooth
2011-08-12 13:55:50 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-08-11 22:10:09 ----D---- C:\WINDOWS\Microsoft.NET
2011-08-11 22:09:35 ----RSD---- C:\WINDOWS\assembly
2011-08-10 13:30:47 ----D---- C:\WINDOWS\Debug
2011-08-09 21:37:40 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-08-09 21:36:26 ----D---- C:\WINDOWS\WinSxS
2011-08-09 21:28:17 ----HD---- C:\WINDOWS\$hf_mig$
2011-08-09 21:22:57 ----A---- C:\WINDOWS\system32\MRT.exe
2011-08-09 21:22:28 ----D---- C:\Program Files\Internet Explorer
2011-08-09 21:22:05 ----D---- C:\WINDOWS\ie8updates

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-13 42368]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2006-03-26 51200]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2006-03-13 6656]
R0 sfsync04;StarForce Protection Synchronization Driver (version 4.x); C:\WINDOWS\System32\drivers\sfsync04.sys [2006-03-24 50176]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-04-07 691696]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-07-04 30808]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-07-04 25432]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2011-07-04 441176]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-07-04 309848]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-07-04 43608]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2011-07-29 218688]
R1 InCDPass;InCDPass; C:\WINDOWS\System32\DRIVERS\InCDPass.sys [2004-09-07 28544]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-07-04 19544]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-07-04 102616]
R2 irda;Protokol IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-08-04 1273344]
R3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys [2003-11-06 755392]
R3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R4 InCDfs;InCD File System; C:\WINDOWS\system32\drivers\InCDfs.sys [2004-09-07 91136]
S0 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\System32\Drivers\vbtenum.sys []
S0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys []
S3 aot0uxh1;aot0uxh1; C:\WINDOWS\system32\drivers\aot0uxh1.sys []
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\TOM~1.TOM\LOCALS~1\Temp\catchme.sys []
S3 CFcatchme;CFcatchme; \??\C:\DOCUME~1\TOM~1.TOM\LOCALS~1\Temp\CFcatchme.sys []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 pcouffin;Low level access layer for CD devices; C:\WINDOWS\System32\Drivers\pcouffin.sys []
S3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-12-05 10368]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-25 5888]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-08-04 380928]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-07-04 42184]
R2 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2005-08-05 516096]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-04-26 135664]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-04-26 135664]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 InCDsrv;InCD Helper; C:\Program Files\Ahead\InCD\InCDsrv.exe [2004-09-07 1151090]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

#2 Příspěvek od **Rudy** » 30 srp 2011 16:04

CF smazal pár položek, zbytek logu vypadá čistý.

Tomik6566 · #3 Příspěvek od **Tomik6566** » 30 srp 2011 18:32

Dobre dekuji moc.
Pěkný den.

#4 Příspěvek od **Rudy** » 30 srp 2011 18:51

Pěkný den i vám a nemáte zač!

Tomik6566 · #5 Příspěvek od **Tomik6566** » 31 srp 2011 09:36

Dobre rano jeste jednou,

mám problém ráno zapnu pc a v rohu jak jsou hodiny se mi ukazuje cerna tabulka, jakmile na ni najedu, zmizí nevíte co to je?

#6 Příspěvek od **Rudy** » 31 srp 2011 17:08

Tomik6566 píše:Dobre rano jeste jednou, mám problém ráno zapnu pc a v rohu jak jsou hodiny se mi ukazuje cerna tabulka, jakmile na ni najedu, zmizí nevíte co to je?

Nemám tušení. Je na ni něco napsáno?

Tomik6566 · #7 Příspěvek od **Tomik6566** » 31 srp 2011 18:24

v rohu je jenom cerna tabulkajakmile na ni najedu zmizi.

#8 Příspěvek od **Rudy** » 31 srp 2011 18:52

Tomik6566 píše:v rohu je jenom cerna tabulkajakmile na ni najedu zmizi.

Tohle jsem u WXP ještě neviděl. Zkuste obnovu systému k datu, kdy korektně fungoval.

Tomik6566 · #9 Příspěvek od **Tomik6566** » 31 srp 2011 19:52

Zkousel jsem anic nepomohlo.Snad to neni vir.

#10 Příspěvek od **Rudy** » 31 srp 2011 20:17

Snad to neni vir.

Předpokládám, že ne. Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic namžte.

VIRY.CZ

Nejspis vir

Nejspis vir

Re: Nejspis vir

Re: Nejspis vir

Re: Nejspis vir

Re: Nejspis vir

Re: Nejspis vir

Re: Nejspis vir

Re: Nejspis vir

Re: Nejspis vir

Re: Nejspis vir