Logfile of random's system information tool 1.06 (written by random/random)
Run by Martin at 2010-01-13 11:59:35
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 35 GB (16%) free of 215 GB
Total RAM: 2047 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:59:44, on 13.1.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16945)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\AVG\AVG9\avgam.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Program Files\AVG\AVG9\avgemc.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\program files\steam\steam.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Martin\Music\lst.exe
C:\Program Files\RALINK\Common\RaUI.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Martin\Dokumenty\Stažené soubory\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\Martin.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.garena.com/portal/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
R3 - URLSearchHook: (no name) - *{EEE6C35D-6118-11DC-9C72-001320C79847} - (no file)
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [System] C:\Documents and Settings\Martin\Music\lst.exe
O4 - HKLM\..\Policies\Explorer\Run: [snserv] C:\WINDOWS\system32\sn\snsrv.exe
O4 - HKCU\..\Policies\Explorer\Run: [snserv] C:\WINDOWS\system32\sn\snsrv.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programy\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programy\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... eqlab3.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resour ... se8942.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 8373920328
O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} (Futuremark SystemInfo) - http://service.futuremark.com/virtualmark/tc/FMSI.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs:
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: AVG E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe
O23 - Service: AVG WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
--
End of file - 9659 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-08-06 279944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2009-08-04 1586472]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll [2009-12-11 1484056]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
AVG Security Toolbar BHO - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll [2009-11-25 1230080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetIM Toolbar Helper - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-10-19 1345336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - AVG Security Toolbar - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll [2009-11-25 1230080]
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetIM Toolbar for Internet Explorer - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-10-19 1345336]
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Ask Toolbar - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-08-06 279944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-09-26 8523776]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-10-06 18750976]
"AVG9_TRAY"=C:\PROGRA~1\AVG\AVG9\avgtray.exe [2009-12-23 2033432]
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2009-09-10 1312080]
"SweetIM"=C:\Program Files\SweetIM\Messenger\SweetIM.exe [2009-10-20 111928]
"ISTray"=C:\Program Files\Spyware Doctor\pctsTray.exe []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"snserv"=C:\WINDOWS\system32\sn\snsrv.exe []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2008-12-29 687560]
"Steam"=c:\program files\steam\steam.exe [2009-11-26 1217808]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"System"=C:\Documents and Settings\Martin\Music\lst.exe [2009-11-11 120832]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"snserv"=C:\WINDOWS\system32\sn\snsrv.exe []
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE
Ralink Wireless Utility.lnk - C:\Program Files\RALINK\Common\RaUI.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"=" "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2009-11-24 12464]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdauxservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdcoreservice]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\WINDOWS\system32\java.exe"="C:\WINDOWS\system32\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\Program Files\World of Warcraft\Launcher.exe"="C:\Program Files\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\Program Files\World of Warcraft\BackgroundDownloader.exe"="C:\Program Files\World of Warcraft\BackgroundDownloader.exe:*:Enabled:Blizzard Downloader"
"C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe"="C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\Program Files\HLSW\hlsw.exe"="C:\Program Files\HLSW\hlsw.exe:*:Enabled:hlsw"
"C:\Programy\ICQ6.5\ICQ.exe"="C:\Programy\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe"="C:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV"
"C:\Program Files\AVG\AVG9\avgam.exe"="C:\Program Files\AVG\AVG9\avgam.exe:*:Enabled:avgam.exe"
"C:\Program Files\AVG\AVG9\avgdiagex.exe"="C:\Program Files\AVG\AVG9\avgdiagex.exe:*:Enabled:avgdiagex.exe"
"C:\Program Files\AVG\AVG9\avgemc.exe"="C:\Program Files\AVG\AVG9\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\AVG\AVG9\avgupd.exe"="C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG9\avgnsx.exe"="C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"C:\Program Files\Steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe"="C:\Program Files\Steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe:*:Enabled:Call of Duty: Modern Warfare 2"
"C:\Program Files\Steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe"="C:\Program Files\Steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe:*:Enabled:Call of Duty: Modern Warfare 2 - Multiplayer"
"C:\Program Files\Vogster Entertainment\CrimeCraft\ClientLauncher.exe"="C:\Program Files\Vogster Entertainment\CrimeCraft\ClientLauncher.exe:*:Enabled:CrimeCraft Launcher"
"C:\Program Files\Vogster Entertainment\CrimeCraft\Binaries\CrimeCraft.exe"="C:\Program Files\Vogster Entertainment\CrimeCraft\Binaries\CrimeCraft.exe:*:Enabled:CrimeCraft"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype. Take a deep breath "
"C:\Program Files\World of Warcraft\WoW-3.1.3.9947-to-3.2.0.10192-enUS-downloader.exe"="C:\Program Files\World of Warcraft\WoW-3.1.3.9947-to-3.2.0.10192-enUS-downloader.exe:*:Enabled:Blizzard Downloader"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
======List of files/folders created in the last 1 months======
2010-01-10 19:37:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\Blizzard Entertainment
2010-01-10 17:02:28 ----D---- C:\Documents and Settings\All Users\Data aplikací\Blizzard
2010-01-02 20:26:16 ----D---- C:\NVIDIA
2010-01-02 19:50:27 ----HDC---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
2010-01-02 10:58:45 ----D---- C:\Program Files\Vogster Entertainment
2009-12-27 20:25:10 ----A---- C:\WINDOWS\system32\cssdll32.dll
2009-12-27 20:25:02 ----D---- C:\Program Files\AskBarDis
2009-12-27 20:23:35 ----D---- C:\Program Files\COMODO
2009-12-26 20:03:16 ----D---- C:\Program Files\Garena
2009-12-26 10:08:53 ----D---- C:\Program Files\Left 4 Dead 2
2009-12-25 22:29:21 ----D---- C:\Program Files\left 4dead 2
2009-12-24 18:50:53 ----D---- C:\Program Files\Burn
2009-12-23 20:41:16 ----D---- C:\Program Files\Windows User
2009-12-23 12:54:07 ----D---- C:\Program Files\Intelore
2009-12-21 20:08:13 ----D---- C:\Program Files\SweetIM
2009-12-21 20:08:13 ----D---- C:\Documents and Settings\All Users\Data aplikací\SweetIM
======List of files/folders modified in the last 1 months======
2010-01-13 11:59:40 ----D---- C:\Program Files\trend micro
2010-01-13 11:59:39 ----D---- C:\WINDOWS\Prefetch
2010-01-13 11:58:41 ----D---- C:\WINDOWS\temp
2010-01-13 11:53:56 ----D---- C:\Program Files\Mozilla Firefox
2010-01-13 11:36:33 ----D---- C:\Program Files\Common Files\Akamai
2010-01-13 09:46:14 ----D---- C:\Program Files\Steam
2010-01-13 09:46:04 ----D---- C:\WINDOWS\system32\CatRoot2
2010-01-13 09:37:13 ----RD---- C:\WINDOWS
2010-01-13 09:36:45 ----D---- C:\WINDOWS\system32\drivers
2010-01-13 09:36:44 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2010-01-12 21:54:40 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-01-12 18:54:46 ----D---- C:\Program Files\World of Warcraft
2010-01-11 21:12:41 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2010-01-11 20:50:05 ----SHD---- C:\WINDOWS\Installer
2010-01-10 22:09:26 ----D---- C:\Documents and Settings\Martin\Data aplikací\Skype
2010-01-10 12:26:33 ----D---- C:\Program Files\Windows Live Safety Center
2010-01-10 12:26:32 ----HD---- C:\WINDOWS\inf
2010-01-10 12:26:22 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-01-10 10:46:29 ----D---- C:\Config.Msi
2010-01-10 10:46:27 ----RD---- C:\Program Files\Skype
2010-01-10 10:46:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-01-10 10:45:11 ----D---- C:\Documents and Settings\Martin\Data aplikací\skypePM
2010-01-02 22:34:27 ----A---- C:\WINDOWS\NeroDigital.ini
2010-01-02 22:03:41 ----D---- C:\WINDOWS\Microsoft.NET
2010-01-02 20:27:36 ----RASH---- C:\boot.ini
2010-01-02 20:12:42 ----RSHD---- C:\WINDOWS\system32
2010-01-02 20:12:42 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-01-02 19:50:20 ----RSD---- C:\WINDOWS\assembly
2010-01-02 19:50:10 ----D---- C:\WINDOWS\system32\XPSViewer
2010-01-02 19:50:10 ----D---- C:\WINDOWS\system32\cs-cz
2010-01-02 11:08:38 ----D---- C:\WINDOWS\system32\DirectX
2010-01-02 10:58:45 ----RD---- C:\Program Files
2010-01-01 15:04:12 ----D---- C:\Program Files\Metin2_CZ
2009-12-24 22:29:31 ----D---- C:\Documents and Settings\Martin\Data aplikací\uTorrent
2009-12-23 13:39:09 ----D---- C:\Program Files\SpeedFan
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AvgLdx86;AVG AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2009-11-24 333192]
R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2009-11-24 28424]
R1 AvgTdiX;AVG8 Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2009-11-10 360584]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.10.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2008-08-10 21275]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-05-09 279712]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-05-09 25888]
R3 DynCal;Dynamic Calibration Service; C:\WINDOWS\system32\drivers\Dyncal.sys [2005-09-26 8576]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-10-06 5922816]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-01-08 7434336]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2002-09-23 5888]
R3 RT61;Ralink RT61 Wireless Driver; C:\WINDOWS\system32\DRIVERS\RT61.sys [2006-05-04 380928]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2006-12-14 85120]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 aoctpjab;aoctpjab; C:\WINDOWS\system32\drivers\aoctpjab.sys []
S3 Bridge;Most MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 BridgeMP;Miniport mostu MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 catchme;catchme; \??\C:\DOCUME~1\Martin\LOCALS~1\Temp\catchme.sys []
S3 cpuz130;cpuz130; \??\C:\DOCUME~1\Martin\LOCALS~1\Temp\cpuz130\cpuz_x32.sys []
S3 ddsxeiservice;ddsxeiservice; \??\C:\Program Files\sXe Injected\ddsxei.sys []
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 ENTECH;ENTECH; \??\C:\WINDOWS\system32\DRIVERS\ENTECH.sys []
S3 GarenaPEngine;GarenaPEngine; \??\C:\DOCUME~1\Martin\LOCALS~1\Temp\SHR5C.tmp []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-08-10 25280]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 npkcrypt;npkcrypt; \??\C:\Program Files\Lineage II\system\npkcrypt.sys []
S3 PnkBstrK;PnkBstrK; \??\C:\WINDOWS\system32\drivers\PnkBstrK.sys []
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Akamai;Akamai NetSession Interface; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 avg9emc;AVG E-mail Scanner; C:\Program Files\AVG\AVG9\avgemc.exe [2009-11-24 906520]
R2 avg9wd;AVG WatchDog; C:\Program Files\AVG\AVG9\avgwdsvc.exe [2009-11-24 285392]
R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2009-06-01 222968]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2008-11-10 152984]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-12-14 61440]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-01-08 155716]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-09-03 75064]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2010-01-11 214520]
R2 sdAuxService;PC Tools Auxiliary Service; C:\Program Files\Spyware Doctor\pctsAuxs.exe [2009-01-07 348752]
R2 sdCoreService;PC Tools Security Service; C:\Program Files\Spyware Doctor\pctsSvc.exe [2009-01-21 1095560]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2006-12-23 262144]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des -service []
S3 usprserv;User Privilege Service; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu logu
Dobré ranko 
GameMon a garenu používáte?
odinstalujte Askbar
Stáhněte na plochu, ukončete všechna aktivní okna a spusťte ComboFix - http://download.bleepingcomputer.com/sUBs/ComboFix.exe
- ComboFix je třeba spustit pod účtem s právy administrátora
- Před použitím vypněte všechny rezidentní bezpečnostní programy - antiviry, firewally, antispywary
- Po spuštění se zobrazí podmínky užití, potvrďte je stiskem tlačítka Ano
- Dále postupujte dle pokynů, během aplikování ComboFixu neklikejte do zobrazujícího se okna
- Po dokončení skenování, trvajícího maximálně 10 minut, by měl program vytvořit log - C:\ComboFix.txt, skopírujte celý jeho obsah sem
GameMon a garenu používáte? odinstalujte Askbar Stáhněte na plochu, ukončete všechna aktivní okna a spusťte ComboFix - http://download.bleepingcomputer.com/sUBs/ComboFix.exe - ComboFix je třeba spustit pod účtem s právy administrátora
- Před použitím vypněte všechny rezidentní bezpečnostní programy - antiviry, firewally, antispywary
- Po spuštění se zobrazí podmínky užití, potvrďte je stiskem tlačítka Ano
- Dále postupujte dle pokynů, během aplikování ComboFixu neklikejte do zobrazujícího se okna
- Po dokončení skenování, trvajícího maximálně 10 minut, by měl program vytvořit log - C:\ComboFix.txt, skopírujte celý jeho obsah sem
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Prosím o kontrolu logu
Zdravím, garenu používám a dost často ale gamemon ním co to je ani kde jsem to nabral, askbar jsem odinstaloval a tady je log z combofixu:
ComboFix 10-01-13.0B - Martin 14.01.2010 10:44:25.8.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2047.1327 [GMT 1:00]
Spuštěný z: C:\Documents and Settings\Martin\Plocha\ComboFix.exe
AV: AVG Anti-Virus *On-access scanning disabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
((((((((((((((((((((((((( Soubory vytvořené od 2009-12-14 do 2010-01-14 )))))))))))))))))))))))))))))))
.
2010-01-02 19:26:16 . 2010-01-02 19:26:16 -------- d-----w- C:\NVIDIA
2010-01-02 14:10:11 . 2010-01-02 19:27:43 96 ---ha-w- C:\WINDOWS\system32\HsInfo.dat
2010-01-02 09:58:45 . 2010-01-02 09:58:45 -------- d-----w- C:\Program Files\Vogster Entertainment
2009-12-27 19:25:10 . 2009-12-27 19:25:10 253688 ----a-w- C:\WINDOWS\system32\cssdll32.dll
2009-12-27 19:23:35 . 2010-01-10 14:20:45 -------- d-----w- C:\Program Files\COMODO
2009-12-26 19:03:16 . 2009-12-30 22:06:26 -------- d-----w- C:\Program Files\Garena
2009-12-26 09:08:53 . 2009-12-30 16:52:36 -------- d-----w- C:\Program Files\Left 4 Dead 2
2009-12-25 21:29:21 . 2009-12-30 19:46:12 -------- d-----w- C:\Program Files\left 4dead 2
2009-12-24 17:50:53 . 2009-12-24 17:54:01 -------- d-----w- C:\Program Files\Burn
2009-12-24 14:46:05 . 2009-12-25 09:19:07 -------- d-----w- C:\Documents and Settings\Martin\Music
2009-12-23 19:41:16 . 2009-11-29 18:21:39 -------- d-----w- C:\Program Files\Windows User
2009-12-23 11:54:07 . 2009-12-23 11:54:07 -------- d-----w- C:\Program Files\Intelore
2009-12-21 19:08:13 . 2009-12-21 19:08:19 -------- d-----w- C:\Program Files\SweetIM
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-14 09:50:48 . 2009-12-12 18:21:11 -------- d-----w- C:\Program Files\Common Files\Akamai
2010-01-14 09:41:58 . 2009-11-26 14:23:30 -------- d-----w- C:\Program Files\Steam
2010-01-13 10:59:40 . 2009-10-07 17:10:45 -------- d-----w- C:\Program Files\trend micro
2010-01-12 17:54:46 . 2009-02-24 11:47:36 -------- d-----w- C:\Program Files\World of Warcraft
2010-01-11 20:13:01 . 2009-09-03 18:38:05 137464 ----a-w- C:\WINDOWS\system32\drivers\PnkBstrK.sys
2010-01-11 20:12:41 . 2009-09-03 18:37:50 214520 ----a-w- C:\WINDOWS\system32\PnkBstrB.exe
2010-01-10 11:26:33 . 2009-07-22 21:32:01 -------- d-----w- C:\Program Files\Windows Live Safety Center
2010-01-10 09:46:27 . 2009-04-18 21:13:50 -------- d-----r- C:\Program Files\Skype
2010-01-02 19:12:42 . 2002-09-23 12:00:00 82642 ----a-w- C:\WINDOWS\system32\perfc005.dat
2010-01-02 19:12:42 . 2002-09-23 12:00:00 437336 ----a-w- C:\WINDOWS\system32\perfh005.dat
2010-01-01 14:04:12 . 2009-12-08 14:30:34 -------- d-----w- C:\Program Files\Metin2_CZ
2009-12-23 12:39:09 . 2008-08-10 13:08:42 -------- d-----w- C:\Program Files\SpeedFan
2009-12-12 11:12:58 . 2009-11-07 19:41:53 -------- d-----w- C:\Program Files\Google
2009-12-12 11:12:57 . 2009-12-05 23:06:09 -------- d-----w- C:\Program Files\Turbine
2009-12-12 11:12:03 . 2009-08-06 18:09:12 -------- d--h--w- C:\Program Files\InstallShield Installation Information
2009-12-12 10:32:51 . 2009-09-30 18:21:01 -------- d-----w- C:\Program Files\NCSoft
2009-12-11 08:56:31 . 2009-12-11 08:56:31 -------- d-----w- C:\Program Files\Ubisoft
2009-12-10 12:22:35 . 2009-12-10 12:22:35 -------- d-----w- C:\Program Files\OpenAL
2009-12-10 12:22:28 . 2008-08-10 15:11:01 -------- d-----w- C:\Program Files\Common Files\Wise Installation Wizard
2009-12-07 20:31:11 . 2009-09-22 14:40:31 -------- d-----w- C:\Program Files\Electronic Arts
2009-12-06 21:00:00 . 2009-12-06 21:00:00 -------- d-----w- C:\Program Files\Microsoft Chart Controls
2009-12-06 14:21:33 . 2009-12-06 14:21:33 -------- d-----w- C:\Program Files\Pando Networks
2009-12-03 16:49:32 . 2009-12-03 15:26:10 4876 ----a-w- C:\WINDOWS\system32\FilterData.dat
2009-12-01 20:48:16 . 2009-12-01 20:48:15 -------- d-----w- C:\Program Files\City of Heroes
2009-11-26 14:13:20 . 2009-11-26 13:51:35 -------- d-----w- C:\Program Files\Steam(2)
2009-11-24 17:32:15 . 2009-11-24 17:32:15 -------- d-----w- C:\Program Files\KillingFloor
2009-11-24 09:32:59 . 2008-08-10 12:39:20 -------- d-----w- C:\Program Files\AVG
2009-11-24 09:32:57 . 2008-08-10 12:39:30 12464 ----a-w- C:\WINDOWS\system32\avgrsstx.dll
2009-11-24 09:32:57 . 2008-08-10 12:39:29 161800 ----a-w- C:\WINDOWS\system32\drivers\avgrkx86.sys
2009-11-24 09:32:57 . 2008-08-10 12:39:26 333192 ----a-w- C:\WINDOWS\system32\drivers\avgldx86.sys
2009-11-24 09:32:57 . 2008-08-10 12:39:26 28424 ----a-w- C:\WINDOWS\system32\drivers\avgmfx86.sys
2009-11-23 19:33:57 . 2009-11-23 19:33:57 -------- d-----w- C:\Program Files\Alcohol Soft
2009-11-22 19:28:42 . 2009-11-22 19:28:41 -------- d-----w- C:\Program Files\WFCStatus
2009-11-21 16:03:06 . 2008-04-14 06:51:38 471552 ----a-w- C:\WINDOWS\AppPatch\aclayers.dll
2009-11-19 20:42:56 . 2008-12-13 17:29:34 592488 ----a-w- C:\WINDOWS\system32\NVUNINST.EXE
2009-11-17 22:57:03 . 2009-11-02 21:38:49 -------- d-----w- C:\Program Files\Malwarebytes' Anti-Malware
2009-11-16 12:14:54 . 2009-11-16 12:14:54 -------- d-----w- C:\Program Files\Used_Nintendo_DS_Lite_For_Sale
2009-11-10 13:36:08 . 2008-08-10 12:39:29 360584 ----a-w- C:\WINDOWS\system32\drivers\avgtdix.sys
2009-11-07 22:49:58 . 2009-11-07 22:49:58 86016 ----a-w- C:\WINDOWS\system32\frapsvid.dll
2009-11-06 09:59:54 . 2009-11-06 09:59:54 15406728 ----a-w- C:\WINDOWS\system32\xlive.dll
2009-11-06 09:59:54 . 2009-11-06 09:59:54 13642888 ----a-w- C:\WINDOWS\system32\xlivefnt.dll
2009-10-29 07:45:32 . 2008-04-14 06:52:06 832512 ------w- C:\WINDOWS\system32\wininet.dll
2009-10-29 07:45:29 . 2008-04-14 06:51:44 78336 ----a-w- C:\WINDOWS\system32\ieencode.dll
2009-10-29 07:45:29 . 2008-04-14 06:51:40 17408 ----a-w- C:\WINDOWS\system32\corpol.dll
2009-10-21 05:40:39 . 2008-04-14 06:52:04 75776 ----a-w- C:\WINDOWS\system32\strmfilt.dll
2009-10-21 05:40:39 . 2008-04-14 06:51:44 25088 ----a-w- C:\WINDOWS\system32\httpapi.dll
2009-10-20 16:20:16 . 2008-04-13 22:23:54 265728 ----a-w- C:\WINDOWS\system32\drivers\http.sys
2006-01-06 13:27:57 . 2006-01-06 13:27:57 317440 --sha-r- C:\WINDOWS\plugin.dat
.
((((((((((((((((((((((((((((( SnapShot_2009-12-12_14.05.38 )))))))))))))))))))))))))))))))))))))))))
.
+ 2007-11-07 01:19:20 . 2007-11-07 01:19:20 54272 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.OpenMP_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_ecc42bd1\vcomp90.dll
- 2007-11-07 00:19:20 . 2007-11-07 00:19:20 54272 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.OpenMP_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_ecc42bd1\vcomp90.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 62976 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90rus.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 62976 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90rus.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 46080 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90kor.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 46080 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90kor.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 46592 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90jpn.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 46592 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90jpn.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 64512 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90ita.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 64512 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90ita.dll
- 2008-07-29 06:05:06 . 2008-07-29 06:05:06 39936 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90cht.dll
+ 2008-07-29 07:05:06 . 2008-07-29 07:05:06 39936 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90cht.dll
- 2008-07-29 06:05:06 . 2008-07-29 06:05:06 38912 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90chs.dll
+ 2008-07-29 07:05:06 . 2008-07-29 07:05:06 38912 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90chs.dll
+ 2008-07-29 07:05:06 . 2008-07-29 07:05:06 66048 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90fra.dll
- 2008-07-29 06:05:06 . 2008-07-29 06:05:06 66048 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90fra.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 65024 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90esp.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 65024 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90esp.dll
- 2008-07-29 06:05:06 . 2008-07-29 06:05:06 65024 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90esn.dll
+ 2008-07-29 07:05:06 . 2008-07-29 07:05:06 65024 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90esn.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 56832 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90enu.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 56832 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90enu.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 66560 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90deu.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 66560 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90deu.dll
- 2008-07-29 04:07:42 . 2008-07-29 04:07:42 59904 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfcm90u.dll
+ 2008-07-29 05:07:42 . 2008-07-29 05:07:42 59904 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfcm90u.dll
+ 2008-07-29 05:07:42 . 2008-07-29 05:07:42 59904 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfcm90.dll
- 2008-07-29 04:07:42 . 2008-07-29 04:07:42 59904 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfcm90.dll
+ 2010-01-14 09:39:37 . 2010-01-14 09:39:37 16384 C:\WINDOWS\temp\Perflib_Perfdata_70c.dat
+ 2010-01-14 09:39:33 . 2010-01-14 09:39:33 16384 C:\WINDOWS\temp\Perflib_Perfdata_60c.dat
+ 2002-09-23 12:00:00 . 2010-01-02 19:12:42 71138 C:\WINDOWS\system32\perfc009.dat
- 2002-09-23 12:00:00 . 2009-12-12 09:48:27 71138 C:\WINDOWS\system32\perfc009.dat
+ 2008-04-14 06:51:42 . 2009-10-15 16:32:57 81920 C:\WINDOWS\system32\fontsub.dll
- 2008-04-14 06:51:42 . 2009-06-16 14:40:17 81920 C:\WINDOWS\system32\fontsub.dll
+ 2008-04-14 06:51:42 . 2009-10-15 16:32:57 81920 C:\WINDOWS\system32\dllcache\fontsub.dll
- 2008-04-14 06:51:42 . 2009-06-16 14:40:17 81920 C:\WINDOWS\system32\dllcache\fontsub.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 97280 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\DeleteTemp.exe
+ 2008-03-22 09:27:40 . 2008-03-22 09:27:40 28302 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\baseline.dat
+ 2008-03-22 09:33:16 . 2008-03-22 09:33:16 46096 C:\WINDOWS\Microsoft.NET\Framework\v3.5\cs\MSBuild.resources.exe
+ 2007-10-15 13:12:30 . 2007-10-15 13:12:30 32768 C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\cs\WsatConfig.resources.dll
+ 2007-10-15 13:12:30 . 2007-10-15 13:12:30 10240 C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\cs\SMSvcHost.resources.dll
+ 2007-10-15 13:12:30 . 2007-10-15 13:12:30 13824 C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\cs\ServiceModelReg.resources.dll
+ 2007-10-15 13:12:30 . 2007-10-15 13:12:30 32768 C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\cs\ComSvcConfig.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 22528 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\MUI\0405\mscorsecr.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 77824 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Web.Services.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 40960 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Web.Mobile.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 16896 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Transactions.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 40960 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.ServiceProcess.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 28672 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Security.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 11776 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 32768 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Remoting.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 77824 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Messaging.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 13312 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Management.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 32768 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.EnterpriseServices.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 24576 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Drawing.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 40960 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.DirectoryServices.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 16896 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.DirectoryServices.Protocols.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 36864 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\system.data.sqlxml.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 49152 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Configuration.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 28672 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Configuration.Install.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 10752 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\sysglobl.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 86528 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\ShFusRes.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 11264 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\Regasm.Resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 13824 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\MSBuild.resources.dll
+ 2007-10-26 02:16:34 . 2007-10-26 02:16:34 57344 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\Microsoft.VisualBasic.resources.dll
+ 2007-10-26 02:16:30 . 2007-10-26 02:16:30 45056 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\Microsoft.JScript.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 10240 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\Microsoft.Build.Utilities.Resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 53248 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\Microsoft.Build.Engine.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 36864 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\caspol.resources.dll
+ 2007-10-26 02:16:26 . 2007-10-26 02:16:26 40960 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\aspnet_regsql.resources.dll
+ 2007-10-26 02:16:26 . 2007-10-26 02:16:26 80896 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\aspnet_rc.dll
+ 2007-10-26 02:16:28 . 2007-10-26 02:16:28 20480 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\1029\alinkui.dll
+ 2008-03-22 09:00:48 . 2008-03-22 09:00:48 25088 C:\WINDOWS\Installer\1ee96e1.msp
+ 2008-03-22 08:57:50 . 2008-03-22 08:57:50 52224 C:\WINDOWS\Installer\1ee96e0.msp
+ 2010-01-02 18:50:02 . 2010-01-02 18:50:02 81408 C:\WINDOWS\Installer\1ee96c9.msi
+ 2009-12-21 19:08:15 . 2009-12-21 19:08:15 10134 C:\WINDOWS\Installer\{DF6F459C-8B89-4F88-B63F-A2E136BB6B79}\ARPPRODUCTICON.exe
+ 2009-12-21 19:08:20 . 2009-12-21 19:08:20 10134 C:\WINDOWS\Installer\{31CF6C0E-51F0-41D2-B088-A6A143C4303C}\ARPPRODUCTICON.exe
+ 2009-12-13 16:53:18 . 2009-12-13 16:53:18 54768 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\UNINST_Uninstall_H_4644D10366034B0B89423C2D02EFF1A2.exe
- 2009-12-11 09:05:20 . 2009-12-11 09:05:20 54768 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\UNINST_Uninstall_H_4644D10366034B0B89423C2D02EFF1A2.exe
+ 2009-12-13 16:53:18 . 2009-12-13 16:53:18 71152 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\NewShortcut2_EE1FD6083B264EC6B572B9D8A9FFD887.exe
- 2009-12-11 09:05:20 . 2009-12-11 09:05:20 71152 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\NewShortcut2_EE1FD6083B264EC6B572B9D8A9FFD887.exe
+ 2009-12-13 16:53:18 . 2009-12-13 16:53:18 71152 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\heroes2.exe1_155875A92C2043FD858F263A9AAC14C1.exe
- 2009-12-11 09:05:20 . 2009-12-11 09:05:20 71152 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\heroes2.exe1_155875A92C2043FD858F263A9AAC14C1.exe
+ 2009-12-13 16:53:18 . 2009-12-13 16:53:18 71152 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\heroes2.exe_5941035293FB49F4A1A2ED15B16EBDBD.exe
- 2009-12-11 09:05:20 . 2009-12-11 09:05:20 71152 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\heroes2.exe_5941035293FB49F4A1A2ED15B16EBDBD.exe
+ 2009-12-13 16:53:18 . 2009-12-13 16:53:18 71152 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\graphicssettings.e_D2A33A4F26044BB39FB2690687717C2A.exe
- 2009-12-11 09:05:20 . 2009-12-11 09:05:20 71152 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\graphicssettings.e_D2A33A4F26044BB39FB2690687717C2A.exe
+ 2009-12-13 16:53:18 . 2009-12-13 16:53:18 58864 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\ARPPRODUCTICON.exe
- 2009-12-11 09:05:20 . 2009-12-11 09:05:20 58864 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\ARPPRODUCTICON.exe
+ 2010-01-02 18:50:11 . 2010-01-02 18:50:11 86016 C:\WINDOWS\assembly\GAC_MSIL\WindowsBase.resources\3.0.0.0_cs_31bf3856ad364e35\WindowsBase.resources.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 10240 C:\WINDOWS\assembly\GAC_MSIL\UIAutomationClientsideProviders.resources\3.0.0.0_cs_31bf3856ad364e35\UIAutomationClientsideProviders.resources.dll
+ 2010-01-02 18:50:11 . 2010-01-02 18:50:11 46136 C:\WINDOWS\assembly\GAC_MSIL\System.Workflow.Runtime.resources\3.0.0.0_cs_31bf3856ad364e35\System.Workflow.Runtime.resources.dll
+ 2010-01-02 18:49:56 . 2010-01-02 18:49:56 77824 C:\WINDOWS\assembly\GAC_MSIL\System.Web.Services.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Web.Services.resources.dll
+ 2010-01-02 18:50:01 . 2010-01-02 18:50:01 40960 C:\WINDOWS\assembly\GAC_MSIL\System.Web.Mobile.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Web.Mobile.resources.dll
+ 2010-01-02 18:50:18 . 2010-01-02 18:50:18 49152 C:\WINDOWS\assembly\GAC_MSIL\System.Web.Extensions.Design.resources\3.5.0.0_cs_31bf3856ad364e35\System.Web.Extensions.Design.Resources.dll
+ 2010-01-02 18:49:59 . 2010-01-02 18:49:59 16896 C:\WINDOWS\assembly\GAC_MSIL\System.Transactions.resources\2.0.0.0_cs_b77a5c561934e089\System.Transactions.resources.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 61440 C:\WINDOWS\assembly\GAC_MSIL\System.Speech.resources\3.0.0.0_cs_31bf3856ad364e35\System.Speech.resources.dll
+ 2010-01-02 18:49:59 . 2010-01-02 18:49:59 40960 C:\WINDOWS\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll
+ 2010-01-02 18:50:17 . 2010-01-02 18:50:17 66616 C:\WINDOWS\assembly\GAC_MSIL\System.ServiceModel.Web.resources\3.5.0.0_cs_31bf3856ad364e35\System.ServiceModel.Web.resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 36864 C:\WINDOWS\assembly\GAC_MSIL\System.ServiceModel.Install.resources\3.0.0.0_cs_b77a5c561934e089\System.ServiceModel.Install.Resources.dll
+ 2010-01-02 18:49:55 . 2010-01-02 18:49:55 28672 C:\WINDOWS\assembly\GAC_MSIL\System.Security.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Security.resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 86016 C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
+ 2010-01-02 18:49:59 . 2010-01-02 18:49:59 11776 C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
+ 2010-01-02 18:49:58 . 2010-01-02 18:49:58 32768 C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_cs_b77a5c561934e089\System.Runtime.Remoting.resources.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 16384 C:\WINDOWS\assembly\GAC_MSIL\System.Printing.resources\3.0.0.0_cs_31bf3856ad364e35\System.Printing.resources.dll
+ 2010-01-02 18:50:19 . 2010-01-02 18:50:19 28672 C:\WINDOWS\assembly\GAC_MSIL\System.Net.resources\3.5.0.0_cs_b03f5f7f11d50a3a\System.Net.Resources.dll
+ 2010-01-02 18:50:01 . 2010-01-02 18:50:01 77824 C:\WINDOWS\assembly\GAC_MSIL\System.Messaging.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Messaging.resources.dll
+ 2010-01-02 18:49:58 . 2010-01-02 18:49:58 13312 C:\WINDOWS\assembly\GAC_MSIL\system.management.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Management.resources.dll
+ 2010-01-02 18:50:18 . 2010-01-02 18:50:18 10752 C:\WINDOWS\assembly\GAC_MSIL\System.Management.Instrumentation.resources\3.5.0.0_cs_b77a5c561934e089\System.Management.Instrumentation.Resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 20480 C:\WINDOWS\assembly\GAC_MSIL\System.IO.Log.resources\3.0.0.0_cs_b03f5f7f11d50a3a\System.IO.Log.Resources.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 53248 C:\WINDOWS\assembly\GAC_MSIL\System.IdentityModel.Selectors.resources\3.0.0.0_cs_b77a5c561934e089\System.IdentityModel.Selectors.Resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 61440 C:\WINDOWS\assembly\GAC_MSIL\System.IdentityModel.resources\3.0.0.0_cs_b77a5c561934e089\System.IdentityModel.Resources.dll
+ 2010-01-02 18:49:58 . 2010-01-02 18:49:58 32768 C:\WINDOWS\assembly\GAC_MSIL\System.EnterpriseServices.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.EnterpriseServices.resources.dll
+ 2010-01-02 18:50:00 . 2010-01-02 18:50:00 24576 C:\WINDOWS\assembly\GAC_MSIL\System.Drawing.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Drawing.resources.dll
+ 2010-01-02 18:49:55 . 2010-01-02 18:49:55 40960 C:\WINDOWS\assembly\GAC_MSIL\System.DirectoryServices.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.DirectoryServices.resources.dll
+ 2010-01-02 18:49:55 . 2010-01-02 18:49:55 16896 C:\WINDOWS\assembly\GAC_MSIL\System.DirectoryServices.Protocols.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.DirectoryServices.Protocols.resources.dll
+ 2010-01-02 18:50:17 . 2010-01-02 18:50:17 36864 C:\WINDOWS\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement.resources\3.5.0.0_cs_b77a5c561934e089\System.DirectoryServices.AccountManagement.resources.dll
+ 2010-01-02 18:49:57 . 2010-01-02 18:49:57 36864 C:\WINDOWS\assembly\GAC_MSIL\System.Data.SqlXml.resources\2.0.0.0_cs_b77a5c561934e089\system.data.sqlxml.resources.dll
+ 2010-01-02 18:50:17 . 2010-01-02 18:50:17 53248 C:\WINDOWS\assembly\GAC_MSIL\System.Data.Linq.resources\3.5.0.0_cs_b77a5c561934e089\System.Data.Linq.Resources.dll
+ 2010-01-02 18:50:18 . 2010-01-02 18:50:18 57344 C:\WINDOWS\assembly\GAC_MSIL\System.Core.resources\3.5.0.0_cs_b77a5c561934e089\System.Core.Resources.dll
+ 2010-01-02 18:50:00 . 2010-01-02 18:50:00 49152 C:\WINDOWS\assembly\GAC_MSIL\system.configuration.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Configuration.resources.dll
+ 2010-01-02 18:49:57 . 2010-01-02 18:49:57 28672 C:\WINDOWS\assembly\GAC_MSIL\System.Configuration.Install.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Configuration.Install.resources.dll
+ 2010-01-02 18:49:59 . 2010-01-02 18:49:59 10752 C:\WINDOWS\assembly\GAC_MSIL\sysglobl.resources\2.0.0.0_cs_b03f5f7f11d50a3a\sysglobl.resources.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 36864 C:\WINDOWS\assembly\GAC_MSIL\ReachFramework.resources\3.0.0.0_cs_31bf3856ad364e35\ReachFramework.resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 53248 C:\WINDOWS\assembly\GAC_MSIL\PresentationBuildTasks.resources\3.0.0.0_cs_31bf3856ad364e35\PresentationBuildTasks.resources.dll
+ 2010-01-02 18:50:01 . 2010-01-02 18:50:01 57344 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualBasic.resources\8.0.0.0_cs_b03f5f7f11d50a3a\Microsoft.VisualBasic.resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 28672 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Transactions.Bridge.resources\3.0.0.0_cs_b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Resources.dll
+ 2010-01-02 18:49:54 . 2010-01-02 18:49:54 45056 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Jscript.resources\8.0.0.0_cs_b03f5f7f11d50a3a\Microsoft.JScript.resources.dll
+ 2010-01-02 18:50:18 . 2010-01-02 18:50:18 11264 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Utilities.v3.5.resources\3.5.0.0_cs_b03f5f7f11d50a3a\Microsoft.Build.Utilities.v3.5.resources.dll
+ 2010-01-02 18:49:56 . 2010-01-02 18:49:56 10240 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Utilities.resources\2.0.0.0_cs_b03f5f7f11d50a3a\Microsoft.Build.Utilities.Resources.dll
+ 2010-01-02 18:50:18 . 2010-01-02 18:50:18 65536 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Engine.resources\3.5.0.0_cs_b03f5f7f11d50a3a\Microsoft.Build.Engine.resources.dll
+ 2010-01-02 18:49:56 . 2010-01-02 18:49:56 53248 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Engine.resources\2.0.0.0_cs_b03f5f7f11d50a3a\Microsoft.Build.Engine.resources.dll
+ 2010-01-02 18:50:17 . 2010-01-02 18:50:17 11776 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Conversion.v3.5.resources\3.5.0.0_cs_b03f5f7f11d50a3a\Microsoft.Build.Conversion.v3.5.resources.dll
- 2009-12-11 08:55:53 . 2009-12-11 08:55:53 12800 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll
+ 2010-01-02 10:08:09 . 2010-01-02 10:08:09 12800 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll
+ 2010-01-02 10:08:09 . 2010-01-02 10:08:09 53248 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll
- 2009-12-11 08:55:52 . 2009-12-11 08:55:52 53248 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 6656 C:\WINDOWS\system32\mui\0405\mscorees.dll
+ 2007-10-26 02:16:34 . 2007-10-26 02:16:34 9216 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\GAC\CS\Microsoft.VisualBasic.Compatibility.resources.dll
+ 2007-10-26 02:16:34 . 2007-10-26 02:16:34 8704 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\GAC\CS\Microsoft.VisualBasic.Compatibility.Data.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 6144 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Drawing.Design.resources.dll
+ 2007-10-26 02:16:30 . 2007-10-26 02:16:30 7168 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\JSC.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 4096 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\InstallUtil.resources.dll
+ 2007-10-26 02:16:26 . 2007-10-26 02:16:26 5632 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\aspnet_regbrowsers.resources.dll
+ 2007-10-26 02:16:26 . 2007-10-26 02:16:26 8704 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\aspnet_compiler.resources.dll
+ 2007-10-26 02:16:30 . 2007-10-26 02:16:30 5120 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\1029\CvtResUI.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 4608 C:\WINDOWS\assembly\GAC_MSIL\WindowsFormsIntegration.resources\3.0.0.0_cs_31bf3856ad364e35\WindowsFormsIntegration.resources.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 7680 C:\WINDOWS\assembly\GAC_MSIL\UIAutomationTypes.resources\3.0.0.0_cs_31bf3856ad364e35\UIAutomationTypes.resources.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 4096 C:\WINDOWS\assembly\GAC_MSIL\UIAutomationProvider.resources\3.0.0.0_cs_31bf3856ad364e35\UIAutomationProvider.resources.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 9216 C:\WINDOWS\assembly\GAC_MSIL\UIAutomationClient.resources\3.0.0.0_cs_31bf3856ad364e35\UIAutomationClient.resources.dll
+ 2010-01-02 18:50:19 . 2010-01-02 18:50:19 7680 C:\WINDOWS\assembly\GAC_MSIL\System.Xml.Linq.resources\3.5.0.0_cs_b77a5c561934e089\System.Xml.Linq.Resources.dll
+ 2010-01-02 18:49:58 . 2010-01-02 18:49:58 6144 C:\WINDOWS\assembly\GAC_MSIL\System.Drawing.Design.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Drawing.Design.resources.dll
+ 2010-01-02 18:50:18 . 2010-01-02 18:50:18 5120 C:\WINDOWS\assembly\GAC_MSIL\System.Data.DataSetExtensions.resources\3.5.0.0_cs_b77a5c561934e089\System.Data.DataSetExtensions.Resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 5120 C:\WINDOWS\assembly\GAC_MSIL\SMDiagnostics.resources\3.0.0.0_cs_b77a5c561934e089\SMDiagnostics.resources.dll
+ 2010-01-02 18:50:02 . 2010-01-02 18:50:02 9216 C:\WINDOWS\assembly\GAC_MSIL\microsoft.visualbasic.compatibility.resources\8.0.0.0_cs_b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.resources.dll
+ 2010-01-02 18:50:02 . 2010-01-02 18:50:02 8704 C:\WINDOWS\assembly\GAC_MSIL\microsoft.visualbasic.compatibility.data.resources\8.0.0.0_cs_b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.resources.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 5120 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Transactions.Bridge.Dtc.resources\3.0.0.0_cs_b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.Resources.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 655872 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcr90.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 655872 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcr90.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 572928 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcp90.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 572928 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcp90.dll
+ 2008-07-29 02:54:08 . 2008-07-29 02:54:08 225280 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcm90.dll
- 2008-07-29 01:54:08 . 2008-07-29 01:54:08 225280 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcm90.dll
+ 2008-07-29 07:05:06 . 2008-07-29 07:05:06 161784 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_d01483b2\atl90.dll
- 2008-07-29 06:05:06 . 2008-07-29 06:05:06 161784 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_d01483b2\atl90.dll
+ 2008-04-14 06:52:04 . 2009-10-15 16:32:57 119808 C:\WINDOWS\system32\t2embed.dll
- 2008-04-14 06:52:04 . 2009-06-16 14:40:17 119808 C:\WINDOWS\system32\t2embed.dll
+ 2009-10-08 19:12:49 . 2009-12-20 09:48:44 842276 C:\WINDOWS\system32\Restore\rstrlog.dat
+ 2002-09-23 12:00:00 . 2010-01-02 19:12:42 440820 C:\WINDOWS\system32\perfh009.dat
- 2002-09-23 12:00:00 . 2009-12-12 09:48:27 440820 C:\WINDOWS\system32\perfh009.dat
- 2008-04-14 06:52:04 . 2009-06-16 14:40:17 119808 C:\WINDOWS\system32\dllcache\t2embed.dll
+ 2008-04-14 06:52:04 . 2009-10-15 16:32:57 119808 C:\WINDOWS\system32\dllcache\t2embed.dll
+ 2008-04-14 06:51:38 . 2009-11-21 16:03:06 471552 C:\WINDOWS\system32\dllcache\aclayers.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 982008 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\WapUI.dll
+ 2008-03-22 09:06:28 . 2008-03-22 09:06:28 108536 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\WapRes.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 687104 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\vsscenario.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 411136 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\vsbasereqs.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 627712 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\vs70uimgr.dll
+ 2008-03-22 09:40:00 . 2008-03-22 09:40:00 432128 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\vs_setup.msi
+ 2008-03-22 09:06:26 . 2008-03-22 09:06:26 124416 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\setupres.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 269304 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\setup.exe
+ 2008-03-21 15:59:22 . 2008-03-21 15:59:22 183296 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\RebootStub.exe
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 177152 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\HtmlLite.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 276472 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\dlmgr.dll
+ 2008-03-22 09:33:16 . 2008-03-22 09:33:16 151552 C:\WINDOWS\Microsoft.NET\Framework\v3.5\cs\Microsoft.Build.Tasks.v3.5.resources.dll
+ 2008-03-22 09:33:16 . 2008-03-22 09:33:16 238072 C:\WINDOWS\Microsoft.NET\Framework\v3.5\1029\vbc7ui.dll
+ 2008-03-22 09:33:16 . 2008-03-22 09:33:16 174592 C:\WINDOWS\Microsoft.NET\Framework\v3.5\1029\cscompui.dll
+ 2006-10-24 23:43:08 . 2006-10-24 23:43:08 372736 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\cs\PresentationUI.resources.dll
+ 2007-10-15 13:12:30 . 2007-10-15 13:12:30 864256 C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\cs\infocard.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 159744 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.xml.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 425984 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Windows.Forms.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 602112 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Web.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 204800 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\system.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 536576 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Design.resources.dll
+ 2007-10-26 02:16:28 . 2007-10-26 02:16:28 385024 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Deployment.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 339968 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Data.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 110592 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Data.OracleClient.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 366592 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\mscorrc.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 303104 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\mscorlib.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 139264 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\Microsoft.Build.Tasks.resources.dll
+ 2007-10-26 02:16:26 . 2007-10-26 02:16:26 311296 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\aspnetmmcext.resources.dll
+ 2007-10-26 02:16:26 . 2007-10-26 02:16:26 214528 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\1029\Vsavb7rtUI.dll
+ 2007-10-26 02:16:34 . 2007-10-26 02:16:34 188928 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\1029\vbc7ui.dll
+ 2007-10-26 02:16:28 . 2007-10-26 02:16:28 141824 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\1029\cscompui.dll
+ 2010-01-10 09:46:29 . 2010-01-10 09:46:29 794112 C:\WINDOWS\Installer\2ec31c.msi
+ 2010-01-02 18:50:19 . 2010-01-02 18:50:19 428032 C:\WINDOWS\Installer\1ee96ea.msi
+ 2008-03-22 08:54:54 . 2008-03-22 08:54:54 312320 C:\WINDOWS\Installer\1ee96e3.msp
+ 2008-03-22 08:45:24 . 2008-03-22 08:45:24 727040 C:\WINDOWS\Installer\1ee96e2.msp
+ 2008-03-22 08:51:54 . 2008-03-22 08:51:54 124416 C:\WINDOWS\Installer\1ee96df.msp
+ 2008-03-22 08:48:52 . 2008-03-22 08:48:52 166400 C:\WINDOWS\Installer\1ee96de.msp
+ 2008-03-22 08:42:50 . 2008-03-22 08:42:50 117760 C:\WINDOWS\Installer\1ee96dd.msp
+ 2008-03-22 08:32:32 . 2008-03-22 08:32:32 488960 C:\WINDOWS\Installer\1ee96ce.msp
+ 2008-03-22 08:19:24 . 2008-03-22 08:19:24 251904 C:\WINDOWS\Installer\1ee96cd.msp
+ 2008-03-22 08:29:32 . 2008-03-22 08:29:32 360960 C:\WINDOWS\Installer\1ee96cc.msp
+ 2008-03-22 08:26:28 . 2008-03-22 08:26:28 708608 C:\WINDOWS\Installer\1ee96cb.msp
+ 2008-03-22 08:22:54 . 2008-03-22 08:22:54 365568 C:\WINDOWS\Installer\1ee96ca.msp
+ 2010-01-10 09:46:12 . 2010-01-10 09:46:12 371272 C:\WINDOWS\Installer\{D103C4BA-F905-437A-8049-DB24763BBE36}\SkypeIcon.exe
+ 2009-09-09 01:37:20 . 2009-10-14 21:32:52 452488 C:\WINDOWS\Downloaded Program Files\wlscBase.dll
- 2009-09-09 01:37:20 . 2009-09-09 01:37:20 452488 C:\WINDOWS\Downloaded Program Files\wlscBase.dll
+ 2010-01-02 18:49:56 . 2010-01-02 18:49:56 159744 C:\WINDOWS\assembly\GAC_MSIL\System.XML.resources\2.0.0.0_cs_b77a5c561934e089\System.xml.resources.dll
+ 2010-01-02 18:50:17 . 2010-01-02 18:50:17 111672 C:\WINDOWS\assembly\GAC_MSIL\System.WorkflowServices.resources\3.5.0.0_cs_31bf3856ad364e35\System.WorkflowServices.resources.dll
+ 2010-01-02 18:50:11 . 2010-01-02 18:50:11 316480 C:\WINDOWS\assembly\GAC_MSIL\System.Workflow.ComponentModel.resources\3.0.0.0_cs_31bf3856ad364e35\System.Workflow.ComponentModel.resources.dll
+ 2010-01-02 18:50:11 . 2010-01-02 18:50:11 189496 C:\WINDOWS\assembly\GAC_MSIL\System.Workflow.Activities.resources\3.0.0.0_cs_31bf3856ad364e35\System.Workflow.Activities.resources.dll
+ 2010-01-02 18:49:59 . 2010-01-02 18:49:59 425984 C:\WINDOWS\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_cs_b77a5c561934e089\System.Windows.Forms.resources.dll
+ 2010-01-02 18:49:55 . 2010-01-02 18:49:55 602112 C:\WINDOWS\assembly\GAC_MSIL\System.Web.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Web.resources.dll
+ 2010-01-02 18:50:18 . 2010-01-02 18:50:18 647168 C:\WINDOWS\assembly\GAC_MSIL\System.Web.Extensions.resources\3.5.0.0_cs_31bf3856ad364e35\System.Web.Extensions.Resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 454656 C:\WINDOWS\assembly\GAC_MSIL\System.ServiceModel.resources\3.0.0.0_cs_b77a5c561934e089\System.ServiceModel.Resources.dll
+ 2010-01-02 18:50:01 . 2010-01-02 18:50:01 204800 C:\WINDOWS\assembly\GAC_MSIL\System.resources\2.0.0.0_cs_b77a5c561934e089\system.resources.dll
+ 2010-01-02 18:50:00 . 2010-01-02 18:50:00 536576 C:\WINDOWS\assembly\GAC_MSIL\System.Design.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Design.resources.dll
+ 2010-01-02 18:49:54 . 2010-01-02 18:49:54 385024 C:\WINDOWS\assembly\GAC_MSIL\System.Deployment.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Deployment.resources.dll
+ 2010-01-02 18:50:00 . 2010-01-02 18:50:00 339968 C:\WINDOWS\assembly\GAC_MSIL\System.Data.resources\2.0.0.0_cs_b77a5c561934e089\System.Data.resources.dll
+ 2010-01-02 18:49:57 . 2010-01-02 18:49:57 110592 C:\WINDOWS\assembly\GAC_MSIL\System.Data.OracleClient.resources\2.0.0.0_cs_b77a5c561934e089\System.Data.OracleClient.resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 372736 C:\WINDOWS\assembly\GAC_MSIL\PresentationUI.resources\3.0.0.0_cs_31bf3856ad364e35\PresentationUI.resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 237568 C:\WINDOWS\assembly\GAC_MSIL\PresentationFramework.resources\3.0.0.0_cs_31bf3856ad364e35\PresentationFramework.resources.dll
+ 2010-01-02 18:50:11 . 2010-01-02 18:50:11 106496 C:\WINDOWS\assembly\GAC_MSIL\PresentationCore.resources\3.0.0.0_cs_31bf3856ad364e35\PresentationCore.resources.dll
+ 2010-01-02 18:49:57 . 2010-01-02 18:49:57 303104 C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll
+ 2010-01-02 18:50:18 . 2010-01-02 18:50:18 151552 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Tasks.v3.5.resources\3.5.0.0_cs_b03f5f7f11d50a3a\Microsoft.Build.Tasks.v3.5.resources.dll
+ 2010-01-02 18:49:56 . 2010-01-02 18:49:56 139264 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Tasks.resources\2.0.0.0_cs_b03f5f7f11d50a3a\Microsoft.Build.Tasks.resources.dll
+ 2010-01-02 18:49:54 . 2010-01-02 18:49:54 311296 C:\WINDOWS\assembly\GAC_MSIL\AspNetMMCExt.resources\2.0.0.0_cs_b03f5f7f11d50a3a\aspnetmmcext.resources.dll
+ 2010-01-02 10:08:08 . 2010-01-02 10:08:09 223232 C:\WINDOWS\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
- 2009-12-11 08:55:52 . 2009-12-11 08:55:52 223232 C:\WINDOWS\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
- 2009-12-11 08:55:54 . 2009-12-11 08:55:54 178176 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll
+ 2010-01-02 10:08:11 . 2010-01-02 10:08:11 178176 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll
- 2009-12-11 08:55:54 . 2009-12-11 08:55:54 364544 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll
+ 2010-01-02 10:08:11 . 2010-01-02 10:08:11 364544 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll
- 2009-12-11 08:55:54 . 2009-12-11 08:55:54 159232 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll
+ 2010-01-02 10:08:10 . 2010-01-02 10:08:10 159232 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll
- 2009-12-11 08:55:53 . 2009-12-11 08:55:53 145920 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll
+ 2010-01-02 10:08:10 . 2010-01-02 10:08:10 145920 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll
- 2009-12-11 08:55:53 . 2009-12-11 08:55:53 578560 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-01-02 10:08:10 . 2010-01-02 10:08:10 578560 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:51 . 2009-12-11 08:55:51 578560 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-01-02 10:08:08 . 2010-01-02 10:08:08 578560 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-01-02 10:08:07 . 2010-01-02 10:08:07 577536 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:51 . 2009-12-11 08:55:51 577536 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:50 . 2009-12-11 08:55:50 577536 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-01-02 10:08:07 . 2010-01-02 10:08:07 577536 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:50 . 2009-12-11 08:55:50 577024 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-01-02 10:08:07 . 2010-01-02 10:08:07 577024 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-01-02 10:08:06 . 2010-01-02 10:08:06 576000 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:50 . 2009-12-11 08:55:50 576000 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:49 . 2009-12-11 08:55:49 567296 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-01-02 10:08:06 . 2010-01-02 10:08:06 567296 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:49 . 2009-12-11 08:55:49 563712 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-01-02 10:08:05 . 2010-01-02 10:08:05 563712 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:53 . 2009-12-11 08:55:53 473600 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
+ 2010-01-02 10:08:10 . 2010-01-02 10:08:10 473600 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
+ 2008-07-29 07:05:10 . 2008-07-29 07:05:10 3783672 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfc90u.dll
- 2008-07-29 06:05:10 . 2008-07-29 06:05:10 3783672 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfc90u.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 3768312 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfc90.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 3768312 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfc90.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 1045504 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\vs_setup.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 1361920 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\SITSetup.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 1059328 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\gencomp.dll
+ 2009-12-13 16:53:18 . 2009-12-13 16:53:18 1710080 C:\WINDOWS\Installer\a006ad.msi
+ 2010-01-10 09:46:11 . 2010-01-10 09:46:11 1565696 C:\WINDOWS\Installer\2ec316.msi
+ 2010-01-02 18:50:11 . 2010-01-02 18:50:11 1048064 C:\WINDOWS\Installer\1ee96dc.msi
+ 2009-12-21 19:08:19 . 2009-12-21 19:08:19 1189376 C:\WINDOWS\Installer\15638ec.msi
+ 2009-12-21 19:08:14 . 2009-12-21 19:08:14 4392448 C:\WINDOWS\Installer\15638e6.msi
+ 2010-01-02 10:08:05 . 2010-01-02 10:08:05 2846720 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:48 . 2009-12-11 08:55:48 2846720 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:47 . 2009-12-11 08:55:47 2676224 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-01-02 10:08:04 . 2010-01-02 10:08:04 2676224 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-08-10 13:26:07 . 2010-01-05 00:17:46 29634504 C:\WINDOWS\system32\MRT.exe
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{A3BC75A2-1F87-4686-AA43-5347D756017C}"= "C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll" [2009-11-25 12:02:18 1230080]
"{EEE6C35D-6118-11DC-9C72-001320C79847}"= "C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll" [2009-10-19 15:15:06 187192]
[HKEY_CLASSES_ROOT\clsid\{a3bc75a2-1f87-4686-aa43-5347d756017c}]
[HKEY_CLASSES_ROOT\clsid\{eee6c35d-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
2009-11-25 12:02:18 1230080 ----a-w- C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
2009-10-19 15:15:04 1345336 ----a-w- C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll" [2009-11-25 12:02:18 1230080]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-10-19 15:15:04 1345336]
[HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll" [2009-11-25 12:02:18 1230080]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-10-19 15:15:04 1345336]
[HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2008-04-14 06:52:38 1695232]
"DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\daemon.exe" [2008-12-29 10:40:30 687560]
"Steam"="c:\program files\steam\steam.exe" [2009-11-26 14:23:49 1217808]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2009-09-26 20:48:49 8523776]
"RTHDCPL"="RTHDCPL.EXE" [2009-10-06 14:34:04 18750976]
"AVG9_TRAY"="C:\PROGRA~1\AVG\AVG9\avgtray.exe" [2009-12-23 11:03:17 2033432]
"Malwarebytes Anti-Malware (reboot)"="C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 13:53:56 1312080]
"SweetIM"="C:\Program Files\SweetIM\Messenger\SweetIM.exe" [2009-10-20 12:59:18 111928]
"ISTray"="C:\Program Files\Spyware Doctor\pctsTray.exe" [BU]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 06:52:18 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\Currentversion\policies\explorer\Run]
"snserv"="C:\WINDOWS\system32\sn\snsrv.exe" [BU]
[HKEY_CURRENT_USER\software\microsoft\windows\Currentversion\policies\explorer\Run]
"snserv"="C:\WINDOWS\system32\sn\snsrv.exe" [BU]
C:\Documents and Settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE [1999-2-17 65588]
Ralink Wireless Utility.lnk - C:\Program Files\RALINK\Common\RaUI.exe [2008-8-10 614400]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2009-11-24 09:32:57 12464 ----a-w- C:\WINDOWS\system32\avgrsstx.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]
@=""
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]
@=""
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"= C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"= C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
"C:\\WINDOWS\\system32\\PnkBstrA.exe"=
"C:\\WINDOWS\\system32\\PnkBstrB.exe"=
"C:\\WINDOWS\\system32\\java.exe"=
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"C:\\Program Files\\World of Warcraft\\Launcher.exe"=
"C:\\Program Files\\World of Warcraft\\BackgroundDownloader.exe"=
"C:\\Program Files\\Activision\\Call of Duty 2\\CoD2MP_s.exe"=
"C:\\Program Files\\HLSW\\hlsw.exe"=
"C:\\Programy\\ICQ6.5\\ICQ.exe"=
"C:\\Program Files\\uTorrent\\uTorrent.exe"=
"C:\\Program Files\\Rockstar Games\\Grand Theft Auto IV\\LaunchGTAIV.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgam.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgdiagex.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgemc.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgupd.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgnsx.exe"=
"C:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"C:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 2\\iw4sp.exe"=
"C:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 2\\iw4mp.exe"=
"C:\\Program Files\\Vogster Entertainment\\CrimeCraft\\ClientLauncher.exe"=
"C:\\Program Files\\Vogster Entertainment\\CrimeCraft\\Binaries\\CrimeCraft.exe"=
"C:\\Program Files\\Skype\\Phone\\Skype.exe"=
"C:\\Program Files\\World of Warcraft\\WoW-3.1.3.9947-to-3.2.0.10192-enUS-downloader.exe"=
ComboFix 10-01-13.0B - Martin 14.01.2010 10:44:25.8.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2047.1327 [GMT 1:00]
Spuštěný z: C:\Documents and Settings\Martin\Plocha\ComboFix.exe
AV: AVG Anti-Virus *On-access scanning disabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
((((((((((((((((((((((((( Soubory vytvořené od 2009-12-14 do 2010-01-14 )))))))))))))))))))))))))))))))
.
2010-01-02 19:26:16 . 2010-01-02 19:26:16 -------- d-----w- C:\NVIDIA
2010-01-02 14:10:11 . 2010-01-02 19:27:43 96 ---ha-w- C:\WINDOWS\system32\HsInfo.dat
2010-01-02 09:58:45 . 2010-01-02 09:58:45 -------- d-----w- C:\Program Files\Vogster Entertainment
2009-12-27 19:25:10 . 2009-12-27 19:25:10 253688 ----a-w- C:\WINDOWS\system32\cssdll32.dll
2009-12-27 19:23:35 . 2010-01-10 14:20:45 -------- d-----w- C:\Program Files\COMODO
2009-12-26 19:03:16 . 2009-12-30 22:06:26 -------- d-----w- C:\Program Files\Garena
2009-12-26 09:08:53 . 2009-12-30 16:52:36 -------- d-----w- C:\Program Files\Left 4 Dead 2
2009-12-25 21:29:21 . 2009-12-30 19:46:12 -------- d-----w- C:\Program Files\left 4dead 2
2009-12-24 17:50:53 . 2009-12-24 17:54:01 -------- d-----w- C:\Program Files\Burn
2009-12-24 14:46:05 . 2009-12-25 09:19:07 -------- d-----w- C:\Documents and Settings\Martin\Music
2009-12-23 19:41:16 . 2009-11-29 18:21:39 -------- d-----w- C:\Program Files\Windows User
2009-12-23 11:54:07 . 2009-12-23 11:54:07 -------- d-----w- C:\Program Files\Intelore
2009-12-21 19:08:13 . 2009-12-21 19:08:19 -------- d-----w- C:\Program Files\SweetIM
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-14 09:50:48 . 2009-12-12 18:21:11 -------- d-----w- C:\Program Files\Common Files\Akamai
2010-01-14 09:41:58 . 2009-11-26 14:23:30 -------- d-----w- C:\Program Files\Steam
2010-01-13 10:59:40 . 2009-10-07 17:10:45 -------- d-----w- C:\Program Files\trend micro
2010-01-12 17:54:46 . 2009-02-24 11:47:36 -------- d-----w- C:\Program Files\World of Warcraft
2010-01-11 20:13:01 . 2009-09-03 18:38:05 137464 ----a-w- C:\WINDOWS\system32\drivers\PnkBstrK.sys
2010-01-11 20:12:41 . 2009-09-03 18:37:50 214520 ----a-w- C:\WINDOWS\system32\PnkBstrB.exe
2010-01-10 11:26:33 . 2009-07-22 21:32:01 -------- d-----w- C:\Program Files\Windows Live Safety Center
2010-01-10 09:46:27 . 2009-04-18 21:13:50 -------- d-----r- C:\Program Files\Skype
2010-01-02 19:12:42 . 2002-09-23 12:00:00 82642 ----a-w- C:\WINDOWS\system32\perfc005.dat
2010-01-02 19:12:42 . 2002-09-23 12:00:00 437336 ----a-w- C:\WINDOWS\system32\perfh005.dat
2010-01-01 14:04:12 . 2009-12-08 14:30:34 -------- d-----w- C:\Program Files\Metin2_CZ
2009-12-23 12:39:09 . 2008-08-10 13:08:42 -------- d-----w- C:\Program Files\SpeedFan
2009-12-12 11:12:58 . 2009-11-07 19:41:53 -------- d-----w- C:\Program Files\Google
2009-12-12 11:12:57 . 2009-12-05 23:06:09 -------- d-----w- C:\Program Files\Turbine
2009-12-12 11:12:03 . 2009-08-06 18:09:12 -------- d--h--w- C:\Program Files\InstallShield Installation Information
2009-12-12 10:32:51 . 2009-09-30 18:21:01 -------- d-----w- C:\Program Files\NCSoft
2009-12-11 08:56:31 . 2009-12-11 08:56:31 -------- d-----w- C:\Program Files\Ubisoft
2009-12-10 12:22:35 . 2009-12-10 12:22:35 -------- d-----w- C:\Program Files\OpenAL
2009-12-10 12:22:28 . 2008-08-10 15:11:01 -------- d-----w- C:\Program Files\Common Files\Wise Installation Wizard
2009-12-07 20:31:11 . 2009-09-22 14:40:31 -------- d-----w- C:\Program Files\Electronic Arts
2009-12-06 21:00:00 . 2009-12-06 21:00:00 -------- d-----w- C:\Program Files\Microsoft Chart Controls
2009-12-06 14:21:33 . 2009-12-06 14:21:33 -------- d-----w- C:\Program Files\Pando Networks
2009-12-03 16:49:32 . 2009-12-03 15:26:10 4876 ----a-w- C:\WINDOWS\system32\FilterData.dat
2009-12-01 20:48:16 . 2009-12-01 20:48:15 -------- d-----w- C:\Program Files\City of Heroes
2009-11-26 14:13:20 . 2009-11-26 13:51:35 -------- d-----w- C:\Program Files\Steam(2)
2009-11-24 17:32:15 . 2009-11-24 17:32:15 -------- d-----w- C:\Program Files\KillingFloor
2009-11-24 09:32:59 . 2008-08-10 12:39:20 -------- d-----w- C:\Program Files\AVG
2009-11-24 09:32:57 . 2008-08-10 12:39:30 12464 ----a-w- C:\WINDOWS\system32\avgrsstx.dll
2009-11-24 09:32:57 . 2008-08-10 12:39:29 161800 ----a-w- C:\WINDOWS\system32\drivers\avgrkx86.sys
2009-11-24 09:32:57 . 2008-08-10 12:39:26 333192 ----a-w- C:\WINDOWS\system32\drivers\avgldx86.sys
2009-11-24 09:32:57 . 2008-08-10 12:39:26 28424 ----a-w- C:\WINDOWS\system32\drivers\avgmfx86.sys
2009-11-23 19:33:57 . 2009-11-23 19:33:57 -------- d-----w- C:\Program Files\Alcohol Soft
2009-11-22 19:28:42 . 2009-11-22 19:28:41 -------- d-----w- C:\Program Files\WFCStatus
2009-11-21 16:03:06 . 2008-04-14 06:51:38 471552 ----a-w- C:\WINDOWS\AppPatch\aclayers.dll
2009-11-19 20:42:56 . 2008-12-13 17:29:34 592488 ----a-w- C:\WINDOWS\system32\NVUNINST.EXE
2009-11-17 22:57:03 . 2009-11-02 21:38:49 -------- d-----w- C:\Program Files\Malwarebytes' Anti-Malware
2009-11-16 12:14:54 . 2009-11-16 12:14:54 -------- d-----w- C:\Program Files\Used_Nintendo_DS_Lite_For_Sale
2009-11-10 13:36:08 . 2008-08-10 12:39:29 360584 ----a-w- C:\WINDOWS\system32\drivers\avgtdix.sys
2009-11-07 22:49:58 . 2009-11-07 22:49:58 86016 ----a-w- C:\WINDOWS\system32\frapsvid.dll
2009-11-06 09:59:54 . 2009-11-06 09:59:54 15406728 ----a-w- C:\WINDOWS\system32\xlive.dll
2009-11-06 09:59:54 . 2009-11-06 09:59:54 13642888 ----a-w- C:\WINDOWS\system32\xlivefnt.dll
2009-10-29 07:45:32 . 2008-04-14 06:52:06 832512 ------w- C:\WINDOWS\system32\wininet.dll
2009-10-29 07:45:29 . 2008-04-14 06:51:44 78336 ----a-w- C:\WINDOWS\system32\ieencode.dll
2009-10-29 07:45:29 . 2008-04-14 06:51:40 17408 ----a-w- C:\WINDOWS\system32\corpol.dll
2009-10-21 05:40:39 . 2008-04-14 06:52:04 75776 ----a-w- C:\WINDOWS\system32\strmfilt.dll
2009-10-21 05:40:39 . 2008-04-14 06:51:44 25088 ----a-w- C:\WINDOWS\system32\httpapi.dll
2009-10-20 16:20:16 . 2008-04-13 22:23:54 265728 ----a-w- C:\WINDOWS\system32\drivers\http.sys
2006-01-06 13:27:57 . 2006-01-06 13:27:57 317440 --sha-r- C:\WINDOWS\plugin.dat
.
((((((((((((((((((((((((((((( SnapShot_2009-12-12_14.05.38 )))))))))))))))))))))))))))))))))))))))))
.
+ 2007-11-07 01:19:20 . 2007-11-07 01:19:20 54272 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.OpenMP_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_ecc42bd1\vcomp90.dll
- 2007-11-07 00:19:20 . 2007-11-07 00:19:20 54272 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.OpenMP_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_ecc42bd1\vcomp90.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 62976 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90rus.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 62976 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90rus.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 46080 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90kor.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 46080 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90kor.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 46592 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90jpn.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 46592 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90jpn.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 64512 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90ita.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 64512 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90ita.dll
- 2008-07-29 06:05:06 . 2008-07-29 06:05:06 39936 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90cht.dll
+ 2008-07-29 07:05:06 . 2008-07-29 07:05:06 39936 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90cht.dll
- 2008-07-29 06:05:06 . 2008-07-29 06:05:06 38912 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90chs.dll
+ 2008-07-29 07:05:06 . 2008-07-29 07:05:06 38912 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90chs.dll
+ 2008-07-29 07:05:06 . 2008-07-29 07:05:06 66048 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90fra.dll
- 2008-07-29 06:05:06 . 2008-07-29 06:05:06 66048 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90fra.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 65024 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90esp.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 65024 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90esp.dll
- 2008-07-29 06:05:06 . 2008-07-29 06:05:06 65024 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90esn.dll
+ 2008-07-29 07:05:06 . 2008-07-29 07:05:06 65024 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90esn.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 56832 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90enu.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 56832 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90enu.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 66560 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90deu.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 66560 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90deu.dll
- 2008-07-29 04:07:42 . 2008-07-29 04:07:42 59904 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfcm90u.dll
+ 2008-07-29 05:07:42 . 2008-07-29 05:07:42 59904 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfcm90u.dll
+ 2008-07-29 05:07:42 . 2008-07-29 05:07:42 59904 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfcm90.dll
- 2008-07-29 04:07:42 . 2008-07-29 04:07:42 59904 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfcm90.dll
+ 2010-01-14 09:39:37 . 2010-01-14 09:39:37 16384 C:\WINDOWS\temp\Perflib_Perfdata_70c.dat
+ 2010-01-14 09:39:33 . 2010-01-14 09:39:33 16384 C:\WINDOWS\temp\Perflib_Perfdata_60c.dat
+ 2002-09-23 12:00:00 . 2010-01-02 19:12:42 71138 C:\WINDOWS\system32\perfc009.dat
- 2002-09-23 12:00:00 . 2009-12-12 09:48:27 71138 C:\WINDOWS\system32\perfc009.dat
+ 2008-04-14 06:51:42 . 2009-10-15 16:32:57 81920 C:\WINDOWS\system32\fontsub.dll
- 2008-04-14 06:51:42 . 2009-06-16 14:40:17 81920 C:\WINDOWS\system32\fontsub.dll
+ 2008-04-14 06:51:42 . 2009-10-15 16:32:57 81920 C:\WINDOWS\system32\dllcache\fontsub.dll
- 2008-04-14 06:51:42 . 2009-06-16 14:40:17 81920 C:\WINDOWS\system32\dllcache\fontsub.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 97280 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\DeleteTemp.exe
+ 2008-03-22 09:27:40 . 2008-03-22 09:27:40 28302 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\baseline.dat
+ 2008-03-22 09:33:16 . 2008-03-22 09:33:16 46096 C:\WINDOWS\Microsoft.NET\Framework\v3.5\cs\MSBuild.resources.exe
+ 2007-10-15 13:12:30 . 2007-10-15 13:12:30 32768 C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\cs\WsatConfig.resources.dll
+ 2007-10-15 13:12:30 . 2007-10-15 13:12:30 10240 C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\cs\SMSvcHost.resources.dll
+ 2007-10-15 13:12:30 . 2007-10-15 13:12:30 13824 C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\cs\ServiceModelReg.resources.dll
+ 2007-10-15 13:12:30 . 2007-10-15 13:12:30 32768 C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\cs\ComSvcConfig.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 22528 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\MUI\0405\mscorsecr.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 77824 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Web.Services.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 40960 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Web.Mobile.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 16896 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Transactions.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 40960 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.ServiceProcess.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 28672 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Security.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 11776 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 32768 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Remoting.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 77824 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Messaging.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 13312 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Management.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 32768 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.EnterpriseServices.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 24576 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Drawing.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 40960 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.DirectoryServices.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 16896 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.DirectoryServices.Protocols.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 36864 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\system.data.sqlxml.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 49152 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Configuration.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 28672 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Configuration.Install.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 10752 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\sysglobl.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 86528 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\ShFusRes.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 11264 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\Regasm.Resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 13824 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\MSBuild.resources.dll
+ 2007-10-26 02:16:34 . 2007-10-26 02:16:34 57344 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\Microsoft.VisualBasic.resources.dll
+ 2007-10-26 02:16:30 . 2007-10-26 02:16:30 45056 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\Microsoft.JScript.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 10240 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\Microsoft.Build.Utilities.Resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 53248 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\Microsoft.Build.Engine.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 36864 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\caspol.resources.dll
+ 2007-10-26 02:16:26 . 2007-10-26 02:16:26 40960 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\aspnet_regsql.resources.dll
+ 2007-10-26 02:16:26 . 2007-10-26 02:16:26 80896 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\aspnet_rc.dll
+ 2007-10-26 02:16:28 . 2007-10-26 02:16:28 20480 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\1029\alinkui.dll
+ 2008-03-22 09:00:48 . 2008-03-22 09:00:48 25088 C:\WINDOWS\Installer\1ee96e1.msp
+ 2008-03-22 08:57:50 . 2008-03-22 08:57:50 52224 C:\WINDOWS\Installer\1ee96e0.msp
+ 2010-01-02 18:50:02 . 2010-01-02 18:50:02 81408 C:\WINDOWS\Installer\1ee96c9.msi
+ 2009-12-21 19:08:15 . 2009-12-21 19:08:15 10134 C:\WINDOWS\Installer\{DF6F459C-8B89-4F88-B63F-A2E136BB6B79}\ARPPRODUCTICON.exe
+ 2009-12-21 19:08:20 . 2009-12-21 19:08:20 10134 C:\WINDOWS\Installer\{31CF6C0E-51F0-41D2-B088-A6A143C4303C}\ARPPRODUCTICON.exe
+ 2009-12-13 16:53:18 . 2009-12-13 16:53:18 54768 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\UNINST_Uninstall_H_4644D10366034B0B89423C2D02EFF1A2.exe
- 2009-12-11 09:05:20 . 2009-12-11 09:05:20 54768 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\UNINST_Uninstall_H_4644D10366034B0B89423C2D02EFF1A2.exe
+ 2009-12-13 16:53:18 . 2009-12-13 16:53:18 71152 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\NewShortcut2_EE1FD6083B264EC6B572B9D8A9FFD887.exe
- 2009-12-11 09:05:20 . 2009-12-11 09:05:20 71152 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\NewShortcut2_EE1FD6083B264EC6B572B9D8A9FFD887.exe
+ 2009-12-13 16:53:18 . 2009-12-13 16:53:18 71152 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\heroes2.exe1_155875A92C2043FD858F263A9AAC14C1.exe
- 2009-12-11 09:05:20 . 2009-12-11 09:05:20 71152 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\heroes2.exe1_155875A92C2043FD858F263A9AAC14C1.exe
+ 2009-12-13 16:53:18 . 2009-12-13 16:53:18 71152 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\heroes2.exe_5941035293FB49F4A1A2ED15B16EBDBD.exe
- 2009-12-11 09:05:20 . 2009-12-11 09:05:20 71152 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\heroes2.exe_5941035293FB49F4A1A2ED15B16EBDBD.exe
+ 2009-12-13 16:53:18 . 2009-12-13 16:53:18 71152 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\graphicssettings.e_D2A33A4F26044BB39FB2690687717C2A.exe
- 2009-12-11 09:05:20 . 2009-12-11 09:05:20 71152 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\graphicssettings.e_D2A33A4F26044BB39FB2690687717C2A.exe
+ 2009-12-13 16:53:18 . 2009-12-13 16:53:18 58864 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\ARPPRODUCTICON.exe
- 2009-12-11 09:05:20 . 2009-12-11 09:05:20 58864 C:\WINDOWS\Installer\{0101386E-6E51-4544-A66E-26FA06FF1776}\ARPPRODUCTICON.exe
+ 2010-01-02 18:50:11 . 2010-01-02 18:50:11 86016 C:\WINDOWS\assembly\GAC_MSIL\WindowsBase.resources\3.0.0.0_cs_31bf3856ad364e35\WindowsBase.resources.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 10240 C:\WINDOWS\assembly\GAC_MSIL\UIAutomationClientsideProviders.resources\3.0.0.0_cs_31bf3856ad364e35\UIAutomationClientsideProviders.resources.dll
+ 2010-01-02 18:50:11 . 2010-01-02 18:50:11 46136 C:\WINDOWS\assembly\GAC_MSIL\System.Workflow.Runtime.resources\3.0.0.0_cs_31bf3856ad364e35\System.Workflow.Runtime.resources.dll
+ 2010-01-02 18:49:56 . 2010-01-02 18:49:56 77824 C:\WINDOWS\assembly\GAC_MSIL\System.Web.Services.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Web.Services.resources.dll
+ 2010-01-02 18:50:01 . 2010-01-02 18:50:01 40960 C:\WINDOWS\assembly\GAC_MSIL\System.Web.Mobile.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Web.Mobile.resources.dll
+ 2010-01-02 18:50:18 . 2010-01-02 18:50:18 49152 C:\WINDOWS\assembly\GAC_MSIL\System.Web.Extensions.Design.resources\3.5.0.0_cs_31bf3856ad364e35\System.Web.Extensions.Design.Resources.dll
+ 2010-01-02 18:49:59 . 2010-01-02 18:49:59 16896 C:\WINDOWS\assembly\GAC_MSIL\System.Transactions.resources\2.0.0.0_cs_b77a5c561934e089\System.Transactions.resources.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 61440 C:\WINDOWS\assembly\GAC_MSIL\System.Speech.resources\3.0.0.0_cs_31bf3856ad364e35\System.Speech.resources.dll
+ 2010-01-02 18:49:59 . 2010-01-02 18:49:59 40960 C:\WINDOWS\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll
+ 2010-01-02 18:50:17 . 2010-01-02 18:50:17 66616 C:\WINDOWS\assembly\GAC_MSIL\System.ServiceModel.Web.resources\3.5.0.0_cs_31bf3856ad364e35\System.ServiceModel.Web.resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 36864 C:\WINDOWS\assembly\GAC_MSIL\System.ServiceModel.Install.resources\3.0.0.0_cs_b77a5c561934e089\System.ServiceModel.Install.Resources.dll
+ 2010-01-02 18:49:55 . 2010-01-02 18:49:55 28672 C:\WINDOWS\assembly\GAC_MSIL\System.Security.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Security.resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 86016 C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
+ 2010-01-02 18:49:59 . 2010-01-02 18:49:59 11776 C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
+ 2010-01-02 18:49:58 . 2010-01-02 18:49:58 32768 C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_cs_b77a5c561934e089\System.Runtime.Remoting.resources.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 16384 C:\WINDOWS\assembly\GAC_MSIL\System.Printing.resources\3.0.0.0_cs_31bf3856ad364e35\System.Printing.resources.dll
+ 2010-01-02 18:50:19 . 2010-01-02 18:50:19 28672 C:\WINDOWS\assembly\GAC_MSIL\System.Net.resources\3.5.0.0_cs_b03f5f7f11d50a3a\System.Net.Resources.dll
+ 2010-01-02 18:50:01 . 2010-01-02 18:50:01 77824 C:\WINDOWS\assembly\GAC_MSIL\System.Messaging.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Messaging.resources.dll
+ 2010-01-02 18:49:58 . 2010-01-02 18:49:58 13312 C:\WINDOWS\assembly\GAC_MSIL\system.management.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Management.resources.dll
+ 2010-01-02 18:50:18 . 2010-01-02 18:50:18 10752 C:\WINDOWS\assembly\GAC_MSIL\System.Management.Instrumentation.resources\3.5.0.0_cs_b77a5c561934e089\System.Management.Instrumentation.Resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 20480 C:\WINDOWS\assembly\GAC_MSIL\System.IO.Log.resources\3.0.0.0_cs_b03f5f7f11d50a3a\System.IO.Log.Resources.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 53248 C:\WINDOWS\assembly\GAC_MSIL\System.IdentityModel.Selectors.resources\3.0.0.0_cs_b77a5c561934e089\System.IdentityModel.Selectors.Resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 61440 C:\WINDOWS\assembly\GAC_MSIL\System.IdentityModel.resources\3.0.0.0_cs_b77a5c561934e089\System.IdentityModel.Resources.dll
+ 2010-01-02 18:49:58 . 2010-01-02 18:49:58 32768 C:\WINDOWS\assembly\GAC_MSIL\System.EnterpriseServices.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.EnterpriseServices.resources.dll
+ 2010-01-02 18:50:00 . 2010-01-02 18:50:00 24576 C:\WINDOWS\assembly\GAC_MSIL\System.Drawing.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Drawing.resources.dll
+ 2010-01-02 18:49:55 . 2010-01-02 18:49:55 40960 C:\WINDOWS\assembly\GAC_MSIL\System.DirectoryServices.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.DirectoryServices.resources.dll
+ 2010-01-02 18:49:55 . 2010-01-02 18:49:55 16896 C:\WINDOWS\assembly\GAC_MSIL\System.DirectoryServices.Protocols.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.DirectoryServices.Protocols.resources.dll
+ 2010-01-02 18:50:17 . 2010-01-02 18:50:17 36864 C:\WINDOWS\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement.resources\3.5.0.0_cs_b77a5c561934e089\System.DirectoryServices.AccountManagement.resources.dll
+ 2010-01-02 18:49:57 . 2010-01-02 18:49:57 36864 C:\WINDOWS\assembly\GAC_MSIL\System.Data.SqlXml.resources\2.0.0.0_cs_b77a5c561934e089\system.data.sqlxml.resources.dll
+ 2010-01-02 18:50:17 . 2010-01-02 18:50:17 53248 C:\WINDOWS\assembly\GAC_MSIL\System.Data.Linq.resources\3.5.0.0_cs_b77a5c561934e089\System.Data.Linq.Resources.dll
+ 2010-01-02 18:50:18 . 2010-01-02 18:50:18 57344 C:\WINDOWS\assembly\GAC_MSIL\System.Core.resources\3.5.0.0_cs_b77a5c561934e089\System.Core.Resources.dll
+ 2010-01-02 18:50:00 . 2010-01-02 18:50:00 49152 C:\WINDOWS\assembly\GAC_MSIL\system.configuration.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Configuration.resources.dll
+ 2010-01-02 18:49:57 . 2010-01-02 18:49:57 28672 C:\WINDOWS\assembly\GAC_MSIL\System.Configuration.Install.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Configuration.Install.resources.dll
+ 2010-01-02 18:49:59 . 2010-01-02 18:49:59 10752 C:\WINDOWS\assembly\GAC_MSIL\sysglobl.resources\2.0.0.0_cs_b03f5f7f11d50a3a\sysglobl.resources.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 36864 C:\WINDOWS\assembly\GAC_MSIL\ReachFramework.resources\3.0.0.0_cs_31bf3856ad364e35\ReachFramework.resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 53248 C:\WINDOWS\assembly\GAC_MSIL\PresentationBuildTasks.resources\3.0.0.0_cs_31bf3856ad364e35\PresentationBuildTasks.resources.dll
+ 2010-01-02 18:50:01 . 2010-01-02 18:50:01 57344 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualBasic.resources\8.0.0.0_cs_b03f5f7f11d50a3a\Microsoft.VisualBasic.resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 28672 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Transactions.Bridge.resources\3.0.0.0_cs_b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Resources.dll
+ 2010-01-02 18:49:54 . 2010-01-02 18:49:54 45056 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Jscript.resources\8.0.0.0_cs_b03f5f7f11d50a3a\Microsoft.JScript.resources.dll
+ 2010-01-02 18:50:18 . 2010-01-02 18:50:18 11264 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Utilities.v3.5.resources\3.5.0.0_cs_b03f5f7f11d50a3a\Microsoft.Build.Utilities.v3.5.resources.dll
+ 2010-01-02 18:49:56 . 2010-01-02 18:49:56 10240 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Utilities.resources\2.0.0.0_cs_b03f5f7f11d50a3a\Microsoft.Build.Utilities.Resources.dll
+ 2010-01-02 18:50:18 . 2010-01-02 18:50:18 65536 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Engine.resources\3.5.0.0_cs_b03f5f7f11d50a3a\Microsoft.Build.Engine.resources.dll
+ 2010-01-02 18:49:56 . 2010-01-02 18:49:56 53248 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Engine.resources\2.0.0.0_cs_b03f5f7f11d50a3a\Microsoft.Build.Engine.resources.dll
+ 2010-01-02 18:50:17 . 2010-01-02 18:50:17 11776 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Conversion.v3.5.resources\3.5.0.0_cs_b03f5f7f11d50a3a\Microsoft.Build.Conversion.v3.5.resources.dll
- 2009-12-11 08:55:53 . 2009-12-11 08:55:53 12800 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll
+ 2010-01-02 10:08:09 . 2010-01-02 10:08:09 12800 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll
+ 2010-01-02 10:08:09 . 2010-01-02 10:08:09 53248 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll
- 2009-12-11 08:55:52 . 2009-12-11 08:55:52 53248 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 6656 C:\WINDOWS\system32\mui\0405\mscorees.dll
+ 2007-10-26 02:16:34 . 2007-10-26 02:16:34 9216 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\GAC\CS\Microsoft.VisualBasic.Compatibility.resources.dll
+ 2007-10-26 02:16:34 . 2007-10-26 02:16:34 8704 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\GAC\CS\Microsoft.VisualBasic.Compatibility.Data.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 6144 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Drawing.Design.resources.dll
+ 2007-10-26 02:16:30 . 2007-10-26 02:16:30 7168 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\JSC.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 4096 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\InstallUtil.resources.dll
+ 2007-10-26 02:16:26 . 2007-10-26 02:16:26 5632 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\aspnet_regbrowsers.resources.dll
+ 2007-10-26 02:16:26 . 2007-10-26 02:16:26 8704 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\aspnet_compiler.resources.dll
+ 2007-10-26 02:16:30 . 2007-10-26 02:16:30 5120 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\1029\CvtResUI.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 4608 C:\WINDOWS\assembly\GAC_MSIL\WindowsFormsIntegration.resources\3.0.0.0_cs_31bf3856ad364e35\WindowsFormsIntegration.resources.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 7680 C:\WINDOWS\assembly\GAC_MSIL\UIAutomationTypes.resources\3.0.0.0_cs_31bf3856ad364e35\UIAutomationTypes.resources.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 4096 C:\WINDOWS\assembly\GAC_MSIL\UIAutomationProvider.resources\3.0.0.0_cs_31bf3856ad364e35\UIAutomationProvider.resources.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 9216 C:\WINDOWS\assembly\GAC_MSIL\UIAutomationClient.resources\3.0.0.0_cs_31bf3856ad364e35\UIAutomationClient.resources.dll
+ 2010-01-02 18:50:19 . 2010-01-02 18:50:19 7680 C:\WINDOWS\assembly\GAC_MSIL\System.Xml.Linq.resources\3.5.0.0_cs_b77a5c561934e089\System.Xml.Linq.Resources.dll
+ 2010-01-02 18:49:58 . 2010-01-02 18:49:58 6144 C:\WINDOWS\assembly\GAC_MSIL\System.Drawing.Design.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Drawing.Design.resources.dll
+ 2010-01-02 18:50:18 . 2010-01-02 18:50:18 5120 C:\WINDOWS\assembly\GAC_MSIL\System.Data.DataSetExtensions.resources\3.5.0.0_cs_b77a5c561934e089\System.Data.DataSetExtensions.Resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 5120 C:\WINDOWS\assembly\GAC_MSIL\SMDiagnostics.resources\3.0.0.0_cs_b77a5c561934e089\SMDiagnostics.resources.dll
+ 2010-01-02 18:50:02 . 2010-01-02 18:50:02 9216 C:\WINDOWS\assembly\GAC_MSIL\microsoft.visualbasic.compatibility.resources\8.0.0.0_cs_b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.resources.dll
+ 2010-01-02 18:50:02 . 2010-01-02 18:50:02 8704 C:\WINDOWS\assembly\GAC_MSIL\microsoft.visualbasic.compatibility.data.resources\8.0.0.0_cs_b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.resources.dll
+ 2010-01-02 18:50:10 . 2010-01-02 18:50:10 5120 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Transactions.Bridge.Dtc.resources\3.0.0.0_cs_b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.Resources.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 655872 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcr90.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 655872 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcr90.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 572928 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcp90.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 572928 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcp90.dll
+ 2008-07-29 02:54:08 . 2008-07-29 02:54:08 225280 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcm90.dll
- 2008-07-29 01:54:08 . 2008-07-29 01:54:08 225280 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcm90.dll
+ 2008-07-29 07:05:06 . 2008-07-29 07:05:06 161784 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_d01483b2\atl90.dll
- 2008-07-29 06:05:06 . 2008-07-29 06:05:06 161784 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_d01483b2\atl90.dll
+ 2008-04-14 06:52:04 . 2009-10-15 16:32:57 119808 C:\WINDOWS\system32\t2embed.dll
- 2008-04-14 06:52:04 . 2009-06-16 14:40:17 119808 C:\WINDOWS\system32\t2embed.dll
+ 2009-10-08 19:12:49 . 2009-12-20 09:48:44 842276 C:\WINDOWS\system32\Restore\rstrlog.dat
+ 2002-09-23 12:00:00 . 2010-01-02 19:12:42 440820 C:\WINDOWS\system32\perfh009.dat
- 2002-09-23 12:00:00 . 2009-12-12 09:48:27 440820 C:\WINDOWS\system32\perfh009.dat
- 2008-04-14 06:52:04 . 2009-06-16 14:40:17 119808 C:\WINDOWS\system32\dllcache\t2embed.dll
+ 2008-04-14 06:52:04 . 2009-10-15 16:32:57 119808 C:\WINDOWS\system32\dllcache\t2embed.dll
+ 2008-04-14 06:51:38 . 2009-11-21 16:03:06 471552 C:\WINDOWS\system32\dllcache\aclayers.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 982008 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\WapUI.dll
+ 2008-03-22 09:06:28 . 2008-03-22 09:06:28 108536 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\WapRes.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 687104 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\vsscenario.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 411136 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\vsbasereqs.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 627712 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\vs70uimgr.dll
+ 2008-03-22 09:40:00 . 2008-03-22 09:40:00 432128 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\vs_setup.msi
+ 2008-03-22 09:06:26 . 2008-03-22 09:06:26 124416 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\setupres.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 269304 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\setup.exe
+ 2008-03-21 15:59:22 . 2008-03-21 15:59:22 183296 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\RebootStub.exe
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 177152 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\HtmlLite.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 276472 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\dlmgr.dll
+ 2008-03-22 09:33:16 . 2008-03-22 09:33:16 151552 C:\WINDOWS\Microsoft.NET\Framework\v3.5\cs\Microsoft.Build.Tasks.v3.5.resources.dll
+ 2008-03-22 09:33:16 . 2008-03-22 09:33:16 238072 C:\WINDOWS\Microsoft.NET\Framework\v3.5\1029\vbc7ui.dll
+ 2008-03-22 09:33:16 . 2008-03-22 09:33:16 174592 C:\WINDOWS\Microsoft.NET\Framework\v3.5\1029\cscompui.dll
+ 2006-10-24 23:43:08 . 2006-10-24 23:43:08 372736 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\cs\PresentationUI.resources.dll
+ 2007-10-15 13:12:30 . 2007-10-15 13:12:30 864256 C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\cs\infocard.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 159744 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.xml.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 425984 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Windows.Forms.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 602112 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Web.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 204800 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\system.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 536576 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Design.resources.dll
+ 2007-10-26 02:16:28 . 2007-10-26 02:16:28 385024 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Deployment.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 339968 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Data.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 110592 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Data.OracleClient.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 366592 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\mscorrc.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 303104 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\mscorlib.resources.dll
+ 2007-10-26 02:16:32 . 2007-10-26 02:16:32 139264 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\Microsoft.Build.Tasks.resources.dll
+ 2007-10-26 02:16:26 . 2007-10-26 02:16:26 311296 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\aspnetmmcext.resources.dll
+ 2007-10-26 02:16:26 . 2007-10-26 02:16:26 214528 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\1029\Vsavb7rtUI.dll
+ 2007-10-26 02:16:34 . 2007-10-26 02:16:34 188928 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\1029\vbc7ui.dll
+ 2007-10-26 02:16:28 . 2007-10-26 02:16:28 141824 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\1029\cscompui.dll
+ 2010-01-10 09:46:29 . 2010-01-10 09:46:29 794112 C:\WINDOWS\Installer\2ec31c.msi
+ 2010-01-02 18:50:19 . 2010-01-02 18:50:19 428032 C:\WINDOWS\Installer\1ee96ea.msi
+ 2008-03-22 08:54:54 . 2008-03-22 08:54:54 312320 C:\WINDOWS\Installer\1ee96e3.msp
+ 2008-03-22 08:45:24 . 2008-03-22 08:45:24 727040 C:\WINDOWS\Installer\1ee96e2.msp
+ 2008-03-22 08:51:54 . 2008-03-22 08:51:54 124416 C:\WINDOWS\Installer\1ee96df.msp
+ 2008-03-22 08:48:52 . 2008-03-22 08:48:52 166400 C:\WINDOWS\Installer\1ee96de.msp
+ 2008-03-22 08:42:50 . 2008-03-22 08:42:50 117760 C:\WINDOWS\Installer\1ee96dd.msp
+ 2008-03-22 08:32:32 . 2008-03-22 08:32:32 488960 C:\WINDOWS\Installer\1ee96ce.msp
+ 2008-03-22 08:19:24 . 2008-03-22 08:19:24 251904 C:\WINDOWS\Installer\1ee96cd.msp
+ 2008-03-22 08:29:32 . 2008-03-22 08:29:32 360960 C:\WINDOWS\Installer\1ee96cc.msp
+ 2008-03-22 08:26:28 . 2008-03-22 08:26:28 708608 C:\WINDOWS\Installer\1ee96cb.msp
+ 2008-03-22 08:22:54 . 2008-03-22 08:22:54 365568 C:\WINDOWS\Installer\1ee96ca.msp
+ 2010-01-10 09:46:12 . 2010-01-10 09:46:12 371272 C:\WINDOWS\Installer\{D103C4BA-F905-437A-8049-DB24763BBE36}\SkypeIcon.exe
+ 2009-09-09 01:37:20 . 2009-10-14 21:32:52 452488 C:\WINDOWS\Downloaded Program Files\wlscBase.dll
- 2009-09-09 01:37:20 . 2009-09-09 01:37:20 452488 C:\WINDOWS\Downloaded Program Files\wlscBase.dll
+ 2010-01-02 18:49:56 . 2010-01-02 18:49:56 159744 C:\WINDOWS\assembly\GAC_MSIL\System.XML.resources\2.0.0.0_cs_b77a5c561934e089\System.xml.resources.dll
+ 2010-01-02 18:50:17 . 2010-01-02 18:50:17 111672 C:\WINDOWS\assembly\GAC_MSIL\System.WorkflowServices.resources\3.5.0.0_cs_31bf3856ad364e35\System.WorkflowServices.resources.dll
+ 2010-01-02 18:50:11 . 2010-01-02 18:50:11 316480 C:\WINDOWS\assembly\GAC_MSIL\System.Workflow.ComponentModel.resources\3.0.0.0_cs_31bf3856ad364e35\System.Workflow.ComponentModel.resources.dll
+ 2010-01-02 18:50:11 . 2010-01-02 18:50:11 189496 C:\WINDOWS\assembly\GAC_MSIL\System.Workflow.Activities.resources\3.0.0.0_cs_31bf3856ad364e35\System.Workflow.Activities.resources.dll
+ 2010-01-02 18:49:59 . 2010-01-02 18:49:59 425984 C:\WINDOWS\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_cs_b77a5c561934e089\System.Windows.Forms.resources.dll
+ 2010-01-02 18:49:55 . 2010-01-02 18:49:55 602112 C:\WINDOWS\assembly\GAC_MSIL\System.Web.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Web.resources.dll
+ 2010-01-02 18:50:18 . 2010-01-02 18:50:18 647168 C:\WINDOWS\assembly\GAC_MSIL\System.Web.Extensions.resources\3.5.0.0_cs_31bf3856ad364e35\System.Web.Extensions.Resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 454656 C:\WINDOWS\assembly\GAC_MSIL\System.ServiceModel.resources\3.0.0.0_cs_b77a5c561934e089\System.ServiceModel.Resources.dll
+ 2010-01-02 18:50:01 . 2010-01-02 18:50:01 204800 C:\WINDOWS\assembly\GAC_MSIL\System.resources\2.0.0.0_cs_b77a5c561934e089\system.resources.dll
+ 2010-01-02 18:50:00 . 2010-01-02 18:50:00 536576 C:\WINDOWS\assembly\GAC_MSIL\System.Design.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Design.resources.dll
+ 2010-01-02 18:49:54 . 2010-01-02 18:49:54 385024 C:\WINDOWS\assembly\GAC_MSIL\System.Deployment.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Deployment.resources.dll
+ 2010-01-02 18:50:00 . 2010-01-02 18:50:00 339968 C:\WINDOWS\assembly\GAC_MSIL\System.Data.resources\2.0.0.0_cs_b77a5c561934e089\System.Data.resources.dll
+ 2010-01-02 18:49:57 . 2010-01-02 18:49:57 110592 C:\WINDOWS\assembly\GAC_MSIL\System.Data.OracleClient.resources\2.0.0.0_cs_b77a5c561934e089\System.Data.OracleClient.resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 372736 C:\WINDOWS\assembly\GAC_MSIL\PresentationUI.resources\3.0.0.0_cs_31bf3856ad364e35\PresentationUI.resources.dll
+ 2010-01-02 18:50:09 . 2010-01-02 18:50:09 237568 C:\WINDOWS\assembly\GAC_MSIL\PresentationFramework.resources\3.0.0.0_cs_31bf3856ad364e35\PresentationFramework.resources.dll
+ 2010-01-02 18:50:11 . 2010-01-02 18:50:11 106496 C:\WINDOWS\assembly\GAC_MSIL\PresentationCore.resources\3.0.0.0_cs_31bf3856ad364e35\PresentationCore.resources.dll
+ 2010-01-02 18:49:57 . 2010-01-02 18:49:57 303104 C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll
+ 2010-01-02 18:50:18 . 2010-01-02 18:50:18 151552 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Tasks.v3.5.resources\3.5.0.0_cs_b03f5f7f11d50a3a\Microsoft.Build.Tasks.v3.5.resources.dll
+ 2010-01-02 18:49:56 . 2010-01-02 18:49:56 139264 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Tasks.resources\2.0.0.0_cs_b03f5f7f11d50a3a\Microsoft.Build.Tasks.resources.dll
+ 2010-01-02 18:49:54 . 2010-01-02 18:49:54 311296 C:\WINDOWS\assembly\GAC_MSIL\AspNetMMCExt.resources\2.0.0.0_cs_b03f5f7f11d50a3a\aspnetmmcext.resources.dll
+ 2010-01-02 10:08:08 . 2010-01-02 10:08:09 223232 C:\WINDOWS\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
- 2009-12-11 08:55:52 . 2009-12-11 08:55:52 223232 C:\WINDOWS\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
- 2009-12-11 08:55:54 . 2009-12-11 08:55:54 178176 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll
+ 2010-01-02 10:08:11 . 2010-01-02 10:08:11 178176 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll
- 2009-12-11 08:55:54 . 2009-12-11 08:55:54 364544 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll
+ 2010-01-02 10:08:11 . 2010-01-02 10:08:11 364544 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll
- 2009-12-11 08:55:54 . 2009-12-11 08:55:54 159232 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll
+ 2010-01-02 10:08:10 . 2010-01-02 10:08:10 159232 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll
- 2009-12-11 08:55:53 . 2009-12-11 08:55:53 145920 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll
+ 2010-01-02 10:08:10 . 2010-01-02 10:08:10 145920 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll
- 2009-12-11 08:55:53 . 2009-12-11 08:55:53 578560 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-01-02 10:08:10 . 2010-01-02 10:08:10 578560 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:51 . 2009-12-11 08:55:51 578560 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-01-02 10:08:08 . 2010-01-02 10:08:08 578560 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-01-02 10:08:07 . 2010-01-02 10:08:07 577536 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:51 . 2009-12-11 08:55:51 577536 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:50 . 2009-12-11 08:55:50 577536 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-01-02 10:08:07 . 2010-01-02 10:08:07 577536 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:50 . 2009-12-11 08:55:50 577024 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-01-02 10:08:07 . 2010-01-02 10:08:07 577024 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-01-02 10:08:06 . 2010-01-02 10:08:06 576000 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:50 . 2009-12-11 08:55:50 576000 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:49 . 2009-12-11 08:55:49 567296 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-01-02 10:08:06 . 2010-01-02 10:08:06 567296 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:49 . 2009-12-11 08:55:49 563712 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-01-02 10:08:05 . 2010-01-02 10:08:05 563712 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:53 . 2009-12-11 08:55:53 473600 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
+ 2010-01-02 10:08:10 . 2010-01-02 10:08:10 473600 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
+ 2008-07-29 07:05:10 . 2008-07-29 07:05:10 3783672 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfc90u.dll
- 2008-07-29 06:05:10 . 2008-07-29 06:05:10 3783672 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfc90u.dll
- 2008-07-29 06:05:08 . 2008-07-29 06:05:08 3768312 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfc90.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 3768312 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfc90.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 1045504 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\vs_setup.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 1361920 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\SITSetup.dll
+ 2008-03-21 14:56:40 . 2008-03-21 14:56:40 1059328 C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - csy\gencomp.dll
+ 2009-12-13 16:53:18 . 2009-12-13 16:53:18 1710080 C:\WINDOWS\Installer\a006ad.msi
+ 2010-01-10 09:46:11 . 2010-01-10 09:46:11 1565696 C:\WINDOWS\Installer\2ec316.msi
+ 2010-01-02 18:50:11 . 2010-01-02 18:50:11 1048064 C:\WINDOWS\Installer\1ee96dc.msi
+ 2009-12-21 19:08:19 . 2009-12-21 19:08:19 1189376 C:\WINDOWS\Installer\15638ec.msi
+ 2009-12-21 19:08:14 . 2009-12-21 19:08:14 4392448 C:\WINDOWS\Installer\15638e6.msi
+ 2010-01-02 10:08:05 . 2010-01-02 10:08:05 2846720 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:48 . 2009-12-11 08:55:48 2846720 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2009-12-11 08:55:47 . 2009-12-11 08:55:47 2676224 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2010-01-02 10:08:04 . 2010-01-02 10:08:04 2676224 C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-08-10 13:26:07 . 2010-01-05 00:17:46 29634504 C:\WINDOWS\system32\MRT.exe
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{A3BC75A2-1F87-4686-AA43-5347D756017C}"= "C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll" [2009-11-25 12:02:18 1230080]
"{EEE6C35D-6118-11DC-9C72-001320C79847}"= "C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll" [2009-10-19 15:15:06 187192]
[HKEY_CLASSES_ROOT\clsid\{a3bc75a2-1f87-4686-aa43-5347d756017c}]
[HKEY_CLASSES_ROOT\clsid\{eee6c35d-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
2009-11-25 12:02:18 1230080 ----a-w- C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
2009-10-19 15:15:04 1345336 ----a-w- C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll" [2009-11-25 12:02:18 1230080]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-10-19 15:15:04 1345336]
[HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll" [2009-11-25 12:02:18 1230080]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-10-19 15:15:04 1345336]
[HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2008-04-14 06:52:38 1695232]
"DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\daemon.exe" [2008-12-29 10:40:30 687560]
"Steam"="c:\program files\steam\steam.exe" [2009-11-26 14:23:49 1217808]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2009-09-26 20:48:49 8523776]
"RTHDCPL"="RTHDCPL.EXE" [2009-10-06 14:34:04 18750976]
"AVG9_TRAY"="C:\PROGRA~1\AVG\AVG9\avgtray.exe" [2009-12-23 11:03:17 2033432]
"Malwarebytes Anti-Malware (reboot)"="C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 13:53:56 1312080]
"SweetIM"="C:\Program Files\SweetIM\Messenger\SweetIM.exe" [2009-10-20 12:59:18 111928]
"ISTray"="C:\Program Files\Spyware Doctor\pctsTray.exe" [BU]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 06:52:18 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\Currentversion\policies\explorer\Run]
"snserv"="C:\WINDOWS\system32\sn\snsrv.exe" [BU]
[HKEY_CURRENT_USER\software\microsoft\windows\Currentversion\policies\explorer\Run]
"snserv"="C:\WINDOWS\system32\sn\snsrv.exe" [BU]
C:\Documents and Settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE [1999-2-17 65588]
Ralink Wireless Utility.lnk - C:\Program Files\RALINK\Common\RaUI.exe [2008-8-10 614400]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2009-11-24 09:32:57 12464 ----a-w- C:\WINDOWS\system32\avgrsstx.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]
@=""
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]
@=""
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"= C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"= C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
"C:\\WINDOWS\\system32\\PnkBstrA.exe"=
"C:\\WINDOWS\\system32\\PnkBstrB.exe"=
"C:\\WINDOWS\\system32\\java.exe"=
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"C:\\Program Files\\World of Warcraft\\Launcher.exe"=
"C:\\Program Files\\World of Warcraft\\BackgroundDownloader.exe"=
"C:\\Program Files\\Activision\\Call of Duty 2\\CoD2MP_s.exe"=
"C:\\Program Files\\HLSW\\hlsw.exe"=
"C:\\Programy\\ICQ6.5\\ICQ.exe"=
"C:\\Program Files\\uTorrent\\uTorrent.exe"=
"C:\\Program Files\\Rockstar Games\\Grand Theft Auto IV\\LaunchGTAIV.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgam.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgdiagex.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgemc.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgupd.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgnsx.exe"=
"C:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"C:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 2\\iw4sp.exe"=
"C:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 2\\iw4mp.exe"=
"C:\\Program Files\\Vogster Entertainment\\CrimeCraft\\ClientLauncher.exe"=
"C:\\Program Files\\Vogster Entertainment\\CrimeCraft\\Binaries\\CrimeCraft.exe"=
"C:\\Program Files\\Skype\\Phone\\Skype.exe"=
"C:\\Program Files\\World of Warcraft\\WoW-3.1.3.9947-to-3.2.0.10192-enUS-downloader.exe"=
Re: Prosím o kontrolu logu
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"3724:TCP"= 3724:TCP:Blizzard Downloader: 3724
"57634:TCP"= 57634:TCP:Pando Media Booster
"57634:UDP"= 57634:UDP:Pando Media Booster
R0 AvgRkx86;avgrkx86.sys;C:\WINDOWS\system32\drivers\avgrkx86.sys [10.8.2008 13:39:29 161800]
R0 PCTCore;PCTools KDS;C:\WINDOWS\system32\drivers\PCTCore.sys [22.7.2009 22:02:07 130936]
R1 AvgLdx86;AVG AVI Loader Driver x86;C:\WINDOWS\system32\drivers\avgldx86.sys [10.8.2008 13:39:26 333192]
R1 AvgTdiX;AVG8 Network Redirector;C:\WINDOWS\system32\drivers\avgtdix.sys [10.8.2008 13:39:29 360584]
R2 Akamai;Akamai NetSession Interface;C:\WINDOWS\System32\svchost.exe -k Akamai [14.4.2008 7:52:50 14336]
R2 avg9emc;AVG E-mail Scanner;C:\Program Files\AVG\AVG9\avgemc.exe [24.11.2009 10:32:43 906520]
R2 avg9wd;AVG WatchDog;C:\Program Files\AVG\AVG9\avgwdsvc.exe [24.11.2009 10:32:42 285392]
R2 ICQ Service;ICQ Service;C:\Program Files\ICQ6Toolbar\ICQ Service.exe [3.9.2008 19:43:15 222968]
R2 sdAuxService;PC Tools Auxiliary Service;C:\Program Files\Spyware Doctor\pctsAuxs.exe [22.7.2009 22:01:59 348752]
R3 DynCal;Dynamic Calibration Service;C:\WINDOWS\system32\drivers\DynCal.sys [26.9.2005 14:47:46 8576]
S0 sptd;sptd;C:\WINDOWS\system32\drivers\sptd.sys [14.8.2008 15:24:54 721904]
S3 Ambfilt;Ambfilt;C:\WINDOWS\system32\drivers\Ambfilt.sys [17.10.2009 16:21:13 1684736]
S3 cpuz130;cpuz130;\??\C:\DOCUME~1\Martin\LOCALS~1\Temp\cpuz130\cpuz_x32.sys --> C:\DOCUME~1\Martin\LOCALS~1\Temp\cpuz130\cpuz_x32.sys [?]
S3 ddsxeiservice;ddsxeiservice;\??\C:\Program Files\sXe Injected\ddsxei.sys --> C:\Program Files\sXe Injected\ddsxei.sys [?]
S3 GarenaPEngine;GarenaPEngine;\??\C:\DOCUME~1\Martin\LOCALS~1\Temp\SHR5C.tmp --> C:\DOCUME~1\Martin\LOCALS~1\Temp\SHR5C.tmp [?]
S3 npggsvc;nProtect GameGuard Service;C:\WINDOWS\system32\GameMon.des -service --> C:\WINDOWS\system32\GameMon.des -service [?]
--- Ostatní služby/ovladače v paměti ---
*Deregistered* - mchInjDrv
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.garena.com/portal/
mStart Page = hxxp://home.sweetim.com
FF - ProfilePath - C:\Documents and Settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\y1b20e1i.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.sweetim.com/search.asp?src=2&q=
FF - prefs.js: browser.search.selectedEngine - WebHledani
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz
FF - prefs.js: keyword.URL - hxxp://www.webhledani.cz/results.aspx?i=42&tp=ab&q=
FF - component: C:\Program Files\AVG\AVG9\Firefox\components\avgssff.dll
FF - component: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\components\IGeared_tavgp_xputils2.dll
FF - component: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\components\IGeared_tavgp_xputils3.dll
FF - component: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\components\IGeared_tavgp_xputils35.dll
FF - component: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\components\xpavgtbapi.dll
FF - plugin: C:\Program Files\Mozilla Firefox\plugins\npPandoWebInst.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- NASTAVENÍ FIREFOXU ----
C:\Program Files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
URLSearchHooks-*{EEE6C35D-6118-11DC-9C72-001320C79847} - (no file)
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"3724:TCP"= 3724:TCP:Blizzard Downloader: 3724
"57634:TCP"= 57634:TCP:Pando Media Booster
"57634:UDP"= 57634:UDP:Pando Media Booster
R0 AvgRkx86;avgrkx86.sys;C:\WINDOWS\system32\drivers\avgrkx86.sys [10.8.2008 13:39:29 161800]
R0 PCTCore;PCTools KDS;C:\WINDOWS\system32\drivers\PCTCore.sys [22.7.2009 22:02:07 130936]
R1 AvgLdx86;AVG AVI Loader Driver x86;C:\WINDOWS\system32\drivers\avgldx86.sys [10.8.2008 13:39:26 333192]
R1 AvgTdiX;AVG8 Network Redirector;C:\WINDOWS\system32\drivers\avgtdix.sys [10.8.2008 13:39:29 360584]
R2 Akamai;Akamai NetSession Interface;C:\WINDOWS\System32\svchost.exe -k Akamai [14.4.2008 7:52:50 14336]
R2 avg9emc;AVG E-mail Scanner;C:\Program Files\AVG\AVG9\avgemc.exe [24.11.2009 10:32:43 906520]
R2 avg9wd;AVG WatchDog;C:\Program Files\AVG\AVG9\avgwdsvc.exe [24.11.2009 10:32:42 285392]
R2 ICQ Service;ICQ Service;C:\Program Files\ICQ6Toolbar\ICQ Service.exe [3.9.2008 19:43:15 222968]
R2 sdAuxService;PC Tools Auxiliary Service;C:\Program Files\Spyware Doctor\pctsAuxs.exe [22.7.2009 22:01:59 348752]
R3 DynCal;Dynamic Calibration Service;C:\WINDOWS\system32\drivers\DynCal.sys [26.9.2005 14:47:46 8576]
S0 sptd;sptd;C:\WINDOWS\system32\drivers\sptd.sys [14.8.2008 15:24:54 721904]
S3 Ambfilt;Ambfilt;C:\WINDOWS\system32\drivers\Ambfilt.sys [17.10.2009 16:21:13 1684736]
S3 cpuz130;cpuz130;\??\C:\DOCUME~1\Martin\LOCALS~1\Temp\cpuz130\cpuz_x32.sys --> C:\DOCUME~1\Martin\LOCALS~1\Temp\cpuz130\cpuz_x32.sys [?]
S3 ddsxeiservice;ddsxeiservice;\??\C:\Program Files\sXe Injected\ddsxei.sys --> C:\Program Files\sXe Injected\ddsxei.sys [?]
S3 GarenaPEngine;GarenaPEngine;\??\C:\DOCUME~1\Martin\LOCALS~1\Temp\SHR5C.tmp --> C:\DOCUME~1\Martin\LOCALS~1\Temp\SHR5C.tmp [?]
S3 npggsvc;nProtect GameGuard Service;C:\WINDOWS\system32\GameMon.des -service --> C:\WINDOWS\system32\GameMon.des -service [?]
--- Ostatní služby/ovladače v paměti ---
*Deregistered* - mchInjDrv
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.garena.com/portal/
mStart Page = hxxp://home.sweetim.com
FF - ProfilePath - C:\Documents and Settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\y1b20e1i.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.sweetim.com/search.asp?src=2&q=
FF - prefs.js: browser.search.selectedEngine - WebHledani
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz
FF - prefs.js: keyword.URL - hxxp://www.webhledani.cz/results.aspx?i=42&tp=ab&q=
FF - component: C:\Program Files\AVG\AVG9\Firefox\components\avgssff.dll
FF - component: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\components\IGeared_tavgp_xputils2.dll
FF - component: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\components\IGeared_tavgp_xputils3.dll
FF - component: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\components\IGeared_tavgp_xputils35.dll
FF - component: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\components\xpavgtbapi.dll
FF - plugin: C:\Program Files\Mozilla Firefox\plugins\npPandoWebInst.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- NASTAVENÍ FIREFOXU ----
C:\Program Files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
URLSearchHooks-*{EEE6C35D-6118-11DC-9C72-001320C79847} - (no file)
Re: Prosím o kontrolu logu
Akamai také používáte?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Prosím o kontrolu logu
ne nepoužívám
Re: Prosím o kontrolu logu
Pokud nemáte, přesuňte Combofix na plochu-otevřete si Poznámkový blok
-Do něj zkopírujte text z tohoto okénka
Kód: Vybrat vše
Driver::
Akamai
npggsvc
Netsvc::
akamai
File::
C:\WINDOWS\system32\GameMon.des
C:\WINDOWS\system32\sn\snsrv.exe
C:\Documents and Settings\Martin\Music\lst.exe
Folder::
C:\Program Files\SweetIM
Registry::
[HKEY_LOCAL_MACHINE\software\microsoft\windows\Currentversion\policies\explorer\Run]
"snserv"=-
[HKEY_CURRENT_USER\software\microsoft\windows\Currentversion\policies\explorer\Run]
"snserv"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Malwarebytes Anti-Malware (reboot)"=-
"SweetIM"=-
[-HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[-HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[-HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[-HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
[-HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"=-
[-HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]
[-HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[-HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[-HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[-HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"=-
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{EEE6C35D-6118-11DC-9C72-001320C79847}"=-
Dirlook::
C:\WINDOWS\system32\sn
DDS::
uStart Page = hxxp://www.garena.com/portal/
mStart Page = hxxp://home.sweetim.com
-po uložení uchopte vámi vytvořený skript levým myšítkem a -přesuňte ho nad ikonu Combofixu, kde ho upustíte:
-po aplikaci na Vás vypadne další log,vložte ho sem
Upozornění : může se stát, že po aplikaci skriptu a restartu Windows nenaběhnou, v tom případě znovu restartujte a přitom mačkejte F8, pak zvolte Poslední známou funkční konfiguraci
Start - ovládací panely - možnosti složky - zobrazení - odkrýt skryté a systémové soubory Dejte soubor otestovat na http://www.virustotal.comC:\Program Files\sXe Injected\ddsxei.sys
Do okénka zkopírujte cestu k souboru , pokud napíše, že soubor byl už testován, dejte otestovat znovu.
Sem vložte link s výsledky.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Prosím o kontrolu logu
ComboFix 10-01-13.0B - Martin 14.01.2010 12:29:32.9.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2047.1291 [GMT 1:00]
Spuštěný z: C:\Documents and Settings\Martin\Plocha\ComboFix.exe
Použité ovládací přepínače :: C:\Documents and Settings\Martin\Plocha\CFScript.txt
AV: AVG Anti-Virus *On-access scanning disabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FILE ::
"C:\Documents and Settings\Martin\Music\lst.exe"
"C:\WINDOWS\system32\GameMon.des"
"C:\WINDOWS\system32\sn\snsrv.exe"
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\Martin\Music\lst.exe
C:\Program Files\SweetIM
C:\Program Files\SweetIM\Messenger\default.xml
C:\Program Files\SweetIM\Messenger\mgAdaptersProxy.dll
C:\Program Files\SweetIM\Messenger\mgAIMAuto.dll
C:\Program Files\SweetIM\Messenger\mgAIMMessengerAdapter.dll
C:\Program Files\SweetIM\Messenger\mgArchive.dll
C:\Program Files\SweetIM\Messenger\mgcommon.dll
C:\Program Files\SweetIM\Messenger\mgcommunication.dll
C:\Program Files\SweetIM\Messenger\mgconfig.dll
C:\Program Files\SweetIM\Messenger\mgFlashPlayer.dll
C:\Program Files\SweetIM\Messenger\mghooking.dll
C:\Program Files\SweetIM\Messenger\mgICQAuto.dll
C:\Program Files\SweetIM\Messenger\mgICQMessengerAdapter.dll
C:\Program Files\SweetIM\Messenger\mgIEPlayer.dll
C:\Program Files\SweetIM\Messenger\mglogger.dll
C:\Program Files\SweetIM\Messenger\mgMediaPlayer.dll
C:\Program Files\SweetIM\Messenger\mgMsnAuto.dll
C:\Program Files\SweetIM\Messenger\mgMsnMessengerAdapter.dll
C:\Program Files\SweetIM\Messenger\mgsimcommon.dll
C:\Program Files\SweetIM\Messenger\mgSweetIM.dll
C:\Program Files\SweetIM\Messenger\mgUpdateSupport.dll
C:\Program Files\SweetIM\Messenger\mgxml_wrapper.dll
C:\Program Files\SweetIM\Messenger\mgYahooAuto.dll
C:\Program Files\SweetIM\Messenger\mgYahooMessengerAdapter.dll
C:\Program Files\SweetIM\Messenger\msvcp71.dll
C:\Program Files\SweetIM\Messenger\msvcr71.dll
C:\Program Files\SweetIM\Messenger\resources\images\AudibleButton.png
C:\Program Files\SweetIM\Messenger\resources\images\DisplayPicturesButton.png
C:\Program Files\SweetIM\Messenger\resources\images\EmoticonButton.png
C:\Program Files\SweetIM\Messenger\resources\images\GamesButton.png
C:\Program Files\SweetIM\Messenger\resources\images\NudgeButton.png
C:\Program Files\SweetIM\Messenger\resources\images\SoundFxButton.png
C:\Program Files\SweetIM\Messenger\resources\images\WinksButton.png
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\Program Files\SweetIM\Toolbars\Internet Explorer\ClearHist.exe
C:\Program Files\SweetIM\Toolbars\Internet Explorer\conf\logger.xml
C:\Program Files\SweetIM\Toolbars\Internet Explorer\default.xml
C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgcommon.dll
C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgconfig.dll
C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
C:\Program Files\SweetIM\Toolbars\Internet Explorer\mghooking.dll
C:\Program Files\SweetIM\Toolbars\Internet Explorer\mglogger.dll
C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgsimcommon.dll
C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgxml_wrapper.dll
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\about.html
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\affid.dat
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\basis.xml
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\bing.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\clear-history.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier-anim-over.gif
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier-anim.gif
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier.js
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\dating.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\dictionary.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\e_cards.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\eye_icon.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\eye_icon_over.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\find.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\free_stuff.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\games.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\glitter.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\google.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\help.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\highlight.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\locales.xml
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\logo_16x16.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\logo_21x18.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\logo_32x32.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\logo_about.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\more-search-providers.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\music.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\news.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\options.html
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\photos.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\search-current-site.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\shopping.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\SmileySmile.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\SmileyWink.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\sweetim_text.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\toolbar.xml
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\version.txt
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\video.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\web-search.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\yahoo.png
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_AKAMAI
-------\Service_Akamai
-------\Service_npggsvc
((((((((((((((((((((((((( Soubory vytvořené od 2009-12-14 do 2010-01-14 )))))))))))))))))))))))))))))))
.
2010-01-02 19:26:16 . 2010-01-02 19:26:16 -------- d-----w- C:\NVIDIA
2010-01-02 14:10:11 . 2010-01-02 19:27:43 96 ---ha-w- C:\WINDOWS\system32\HsInfo.dat
2010-01-02 09:58:45 . 2010-01-02 09:58:45 -------- d-----w- C:\Program Files\Vogster Entertainment
2009-12-27 19:25:10 . 2009-12-27 19:25:10 253688 ----a-w- C:\WINDOWS\system32\cssdll32.dll
2009-12-27 19:23:35 . 2010-01-10 14:20:45 -------- d-----w- C:\Program Files\COMODO
2009-12-26 19:03:16 . 2009-12-30 22:06:26 -------- d-----w- C:\Program Files\Garena
2009-12-26 09:08:53 . 2009-12-30 16:52:36 -------- d-----w- C:\Program Files\Left 4 Dead 2
2009-12-25 21:29:21 . 2009-12-30 19:46:12 -------- d-----w- C:\Program Files\left 4dead 2
2009-12-24 17:50:53 . 2009-12-24 17:54:01 -------- d-----w- C:\Program Files\Burn
2009-12-24 14:46:05 . 2010-01-14 11:34:34 -------- d-----w- C:\Documents and Settings\Martin\Music
2009-12-23 19:41:16 . 2009-11-29 18:21:39 -------- d-----w- C:\Program Files\Windows User
2009-12-23 11:54:07 . 2009-12-23 11:54:07 -------- d-----w- C:\Program Files\Intelore
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-14 11:37:54 . 2009-11-26 14:23:30 -------- d-----w- C:\Program Files\Steam
2010-01-14 10:39:40 . 2009-12-12 18:21:11 -------- d-----w- C:\Program Files\Common Files\Akamai
2010-01-14 10:11:21 . 2009-02-24 11:47:36 -------- d-----w- C:\Program Files\World of Warcraft
2010-01-13 10:59:40 . 2009-10-07 17:10:45 -------- d-----w- C:\Program Files\trend micro
2010-01-11 20:13:01 . 2009-09-03 18:38:05 137464 ----a-w- C:\WINDOWS\system32\drivers\PnkBstrK.sys
2010-01-11 20:12:41 . 2009-09-03 18:37:50 214520 ----a-w- C:\WINDOWS\system32\PnkBstrB.exe
2010-01-10 11:26:33 . 2009-07-22 21:32:01 -------- d-----w- C:\Program Files\Windows Live Safety Center
2010-01-10 09:46:27 . 2009-04-18 21:13:50 -------- d-----r- C:\Program Files\Skype
2010-01-02 19:12:42 . 2002-09-23 12:00:00 82642 ----a-w- C:\WINDOWS\system32\perfc005.dat
2010-01-02 19:12:42 . 2002-09-23 12:00:00 437336 ----a-w- C:\WINDOWS\system32\perfh005.dat
2010-01-01 14:04:12 . 2009-12-08 14:30:34 -------- d-----w- C:\Program Files\Metin2_CZ
2009-12-23 12:39:09 . 2008-08-10 13:08:42 -------- d-----w- C:\Program Files\SpeedFan
2009-12-12 11:12:58 . 2009-11-07 19:41:53 -------- d-----w- C:\Program Files\Google
2009-12-12 11:12:57 . 2009-12-05 23:06:09 -------- d-----w- C:\Program Files\Turbine
2009-12-12 11:12:03 . 2009-08-06 18:09:12 -------- d--h--w- C:\Program Files\InstallShield Installation Information
2009-12-12 10:32:51 . 2009-09-30 18:21:01 -------- d-----w- C:\Program Files\NCSoft
2009-12-11 08:56:31 . 2009-12-11 08:56:31 -------- d-----w- C:\Program Files\Ubisoft
2009-12-10 12:22:35 . 2009-12-10 12:22:35 -------- d-----w- C:\Program Files\OpenAL
2009-12-10 12:22:28 . 2008-08-10 15:11:01 -------- d-----w- C:\Program Files\Common Files\Wise Installation Wizard
2009-12-07 20:31:11 . 2009-09-22 14:40:31 -------- d-----w- C:\Program Files\Electronic Arts
2009-12-06 21:00:00 . 2009-12-06 21:00:00 -------- d-----w- C:\Program Files\Microsoft Chart Controls
2009-12-06 14:21:33 . 2009-12-06 14:21:33 -------- d-----w- C:\Program Files\Pando Networks
2009-12-03 16:49:32 . 2009-12-03 15:26:10 4876 ----a-w- C:\WINDOWS\system32\FilterData.dat
2009-12-01 20:48:16 . 2009-12-01 20:48:15 -------- d-----w- C:\Program Files\City of Heroes
2009-11-26 14:13:20 . 2009-11-26 13:51:35 -------- d-----w- C:\Program Files\Steam(2)
2009-11-24 17:32:15 . 2009-11-24 17:32:15 -------- d-----w- C:\Program Files\KillingFloor
2009-11-24 09:32:59 . 2008-08-10 12:39:20 -------- d-----w- C:\Program Files\AVG
2009-11-24 09:32:57 . 2008-08-10 12:39:30 12464 ----a-w- C:\WINDOWS\system32\avgrsstx.dll
2009-11-24 09:32:57 . 2008-08-10 12:39:29 161800 ----a-w- C:\WINDOWS\system32\drivers\avgrkx86.sys
2009-11-24 09:32:57 . 2008-08-10 12:39:26 333192 ----a-w- C:\WINDOWS\system32\drivers\avgldx86.sys
2009-11-24 09:32:57 . 2008-08-10 12:39:26 28424 ----a-w- C:\WINDOWS\system32\drivers\avgmfx86.sys
2009-11-23 19:33:57 . 2009-11-23 19:33:57 -------- d-----w- C:\Program Files\Alcohol Soft
2009-11-22 19:28:42 . 2009-11-22 19:28:41 -------- d-----w- C:\Program Files\WFCStatus
2009-11-21 16:03:06 . 2008-04-14 06:51:38 471552 ----a-w- C:\WINDOWS\AppPatch\aclayers.dll
2009-11-19 20:42:56 . 2008-12-13 17:29:34 592488 ----a-w- C:\WINDOWS\system32\NVUNINST.EXE
2009-11-17 22:57:03 . 2009-11-02 21:38:49 -------- d-----w- C:\Program Files\Malwarebytes' Anti-Malware
2009-11-16 12:14:54 . 2009-11-16 12:14:54 -------- d-----w- C:\Program Files\Used_Nintendo_DS_Lite_For_Sale
2009-11-10 13:36:08 . 2008-08-10 12:39:29 360584 ----a-w- C:\WINDOWS\system32\drivers\avgtdix.sys
2009-11-07 22:49:58 . 2009-11-07 22:49:58 86016 ----a-w- C:\WINDOWS\system32\frapsvid.dll
2009-11-06 09:59:54 . 2009-11-06 09:59:54 15406728 ----a-w- C:\WINDOWS\system32\xlive.dll
2009-11-06 09:59:54 . 2009-11-06 09:59:54 13642888 ----a-w- C:\WINDOWS\system32\xlivefnt.dll
2009-10-29 07:45:32 . 2008-04-14 06:52:06 832512 ------w- C:\WINDOWS\system32\wininet.dll
2009-10-29 07:45:29 . 2008-04-14 06:51:44 78336 ----a-w- C:\WINDOWS\system32\ieencode.dll
2009-10-29 07:45:29 . 2008-04-14 06:51:40 17408 ----a-w- C:\WINDOWS\system32\corpol.dll
2009-10-21 05:40:39 . 2008-04-14 06:52:04 75776 ----a-w- C:\WINDOWS\system32\strmfilt.dll
2009-10-21 05:40:39 . 2008-04-14 06:51:44 25088 ----a-w- C:\WINDOWS\system32\httpapi.dll
2009-10-20 16:20:16 . 2008-04-13 22:23:54 265728 ----a-w- C:\WINDOWS\system32\drivers\http.sys
2006-01-06 13:27:57 . 2006-01-06 13:27:57 317440 --sha-r- C:\WINDOWS\plugin.dat
.
(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
---- Directory of C:\WINDOWS\system32\sn ----
((((((((((((((((((((((((((((( SnapShot_2010-01-14_09.50.35 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-01-14 11:37:37 . 2010-01-14 11:37:37 16384 C:\WINDOWS\temp\Perflib_Perfdata_aac.dat
+ 2010-01-14 11:37:12 . 2010-01-14 11:37:12 16384 C:\WINDOWS\temp\Perflib_Perfdata_6f0.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{A3BC75A2-1F87-4686-AA43-5347D756017C}"= "C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll" [2009-11-25 12:02:18 1230080]
[HKEY_CLASSES_ROOT\clsid\{a3bc75a2-1f87-4686-aa43-5347d756017c}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
2009-11-25 12:02:18 1230080 ----a-w- C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2008-04-14 06:52:38 1695232]
"DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\daemon.exe" [2008-12-29 10:40:30 687560]
"Steam"="c:\program files\steam\steam.exe" [2009-11-26 14:23:49 1217808]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2009-09-26 20:48:49 8523776]
"RTHDCPL"="RTHDCPL.EXE" [2009-10-06 14:34:04 18750976]
"AVG9_TRAY"="C:\PROGRA~1\AVG\AVG9\avgtray.exe" [2009-12-23 11:03:17 2033432]
"ISTray"="C:\Program Files\Spyware Doctor\pctsTray.exe" [BU]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 06:52:18 15360]
C:\Documents and Settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE [1999-2-17 65588]
Ralink Wireless Utility.lnk - C:\Program Files\RALINK\Common\RaUI.exe [2008-8-10 614400]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2009-11-24 09:32:57 12464 ----a-w- C:\WINDOWS\system32\avgrsstx.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]
@=""
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]
@=""
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"= C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"= C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
"C:\\WINDOWS\\system32\\PnkBstrA.exe"=
"C:\\WINDOWS\\system32\\PnkBstrB.exe"=
"C:\\WINDOWS\\system32\\java.exe"=
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"C:\\Program Files\\World of Warcraft\\Launcher.exe"=
"C:\\Program Files\\World of Warcraft\\BackgroundDownloader.exe"=
"C:\\Program Files\\Activision\\Call of Duty 2\\CoD2MP_s.exe"=
"C:\\Program Files\\HLSW\\hlsw.exe"=
"C:\\Programy\\ICQ6.5\\ICQ.exe"=
"C:\\Program Files\\uTorrent\\uTorrent.exe"=
"C:\\Program Files\\Rockstar Games\\Grand Theft Auto IV\\LaunchGTAIV.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgam.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgdiagex.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgemc.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgupd.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgnsx.exe"=
"C:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"C:\\Program Files\\Vogster Entertainment\\CrimeCraft\\ClientLauncher.exe"=
"C:\\Program Files\\Vogster Entertainment\\CrimeCraft\\Binaries\\CrimeCraft.exe"=
"C:\\Program Files\\Skype\\Phone\\Skype.exe"=
"C:\\Program Files\\World of Warcraft\\WoW-3.1.3.9947-to-3.2.0.10192-enUS-downloader.exe"=
"C:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 2\\iw4sp.exe"=
"C:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 2\\iw4mp.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"3724:TCP"= 3724:TCP:Blizzard Downloader: 3724
"57634:TCP"= 57634:TCP:Pando Media Booster
"57634:UDP"= 57634:UDP:Pando Media Booster
R0 AvgRkx86;avgrkx86.sys;C:\WINDOWS\system32\drivers\avgrkx86.sys [10.8.2008 13:39:29 161800]
R0 PCTCore;PCTools KDS;C:\WINDOWS\system32\drivers\PCTCore.sys [22.7.2009 22:02:07 130936]
R0 sptd;sptd;C:\WINDOWS\system32\drivers\sptd.sys [14.8.2008 15:24:54 721904]
R1 AvgLdx86;AVG AVI Loader Driver x86;C:\WINDOWS\system32\drivers\avgldx86.sys [10.8.2008 13:39:26 333192]
R1 AvgTdiX;AVG8 Network Redirector;C:\WINDOWS\system32\drivers\avgtdix.sys [10.8.2008 13:39:29 360584]
R2 avg9emc;AVG E-mail Scanner;C:\Program Files\AVG\AVG9\avgemc.exe [24.11.2009 10:32:43 906520]
R2 avg9wd;AVG WatchDog;C:\Program Files\AVG\AVG9\avgwdsvc.exe [24.11.2009 10:32:42 285392]
R2 ICQ Service;ICQ Service;C:\Program Files\ICQ6Toolbar\ICQ Service.exe [3.9.2008 19:43:15 222968]
R2 sdAuxService;PC Tools Auxiliary Service;C:\Program Files\Spyware Doctor\pctsAuxs.exe [22.7.2009 22:01:59 348752]
R3 DynCal;Dynamic Calibration Service;C:\WINDOWS\system32\drivers\DynCal.sys [26.9.2005 14:47:46 8576]
S3 Ambfilt;Ambfilt;C:\WINDOWS\system32\drivers\Ambfilt.sys [17.10.2009 16:21:13 1684736]
S3 cpuz130;cpuz130;\??\C:\DOCUME~1\Martin\LOCALS~1\Temp\cpuz130\cpuz_x32.sys --> C:\DOCUME~1\Martin\LOCALS~1\Temp\cpuz130\cpuz_x32.sys [?]
S3 ddsxeiservice;ddsxeiservice;\??\C:\Program Files\sXe Injected\ddsxei.sys --> C:\Program Files\sXe Injected\ddsxei.sys [?]
S3 GarenaPEngine;GarenaPEngine;\??\C:\DOCUME~1\Martin\LOCALS~1\Temp\SHR5C.tmp --> C:\DOCUME~1\Martin\LOCALS~1\Temp\SHR5C.tmp [?]
--- Ostatní služby/ovladače v paměti ---
*Deregistered* - mchInjDrv
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
.
------- Doplňkový sken -------
.
FF - ProfilePath - C:\Documents and Settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\y1b20e1i.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.sweetim.com/search.asp?src=2&q=
FF - prefs.js: browser.search.selectedEngine - WebHledani
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz
FF - prefs.js: keyword.URL - hxxp://www.webhledani.cz/results.aspx?i=42&tp=ab&q=
FF - component: C:\Program Files\AVG\AVG9\Firefox\components\avgssff.dll
FF - component: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\components\IGeared_tavgp_xputils2.dll
FF - component: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\components\IGeared_tavgp_xputils3.dll
FF - component: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\components\IGeared_tavgp_xputils35.dll
FF - component: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\components\xpavgtbapi.dll
FF - plugin: C:\Program Files\Mozilla Firefox\plugins\npPandoWebInst.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- NASTAVENÍ FIREFOXU ----
C:\Program Files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
URLSearchHooks-*{EEE6C35D-6118-11DC-9C72-001320C79847} - (no file)
Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
zasekl jsem se u bodu Start - ovládací panely - možnosti složky - zobrazení - odkrýt skryté a systémové soubory
možnost odkrýt skryté a systémové soubory tam nemám.
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2047.1291 [GMT 1:00]
Spuštěný z: C:\Documents and Settings\Martin\Plocha\ComboFix.exe
Použité ovládací přepínače :: C:\Documents and Settings\Martin\Plocha\CFScript.txt
AV: AVG Anti-Virus *On-access scanning disabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FILE ::
"C:\Documents and Settings\Martin\Music\lst.exe"
"C:\WINDOWS\system32\GameMon.des"
"C:\WINDOWS\system32\sn\snsrv.exe"
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\Martin\Music\lst.exe
C:\Program Files\SweetIM
C:\Program Files\SweetIM\Messenger\default.xml
C:\Program Files\SweetIM\Messenger\mgAdaptersProxy.dll
C:\Program Files\SweetIM\Messenger\mgAIMAuto.dll
C:\Program Files\SweetIM\Messenger\mgAIMMessengerAdapter.dll
C:\Program Files\SweetIM\Messenger\mgArchive.dll
C:\Program Files\SweetIM\Messenger\mgcommon.dll
C:\Program Files\SweetIM\Messenger\mgcommunication.dll
C:\Program Files\SweetIM\Messenger\mgconfig.dll
C:\Program Files\SweetIM\Messenger\mgFlashPlayer.dll
C:\Program Files\SweetIM\Messenger\mghooking.dll
C:\Program Files\SweetIM\Messenger\mgICQAuto.dll
C:\Program Files\SweetIM\Messenger\mgICQMessengerAdapter.dll
C:\Program Files\SweetIM\Messenger\mgIEPlayer.dll
C:\Program Files\SweetIM\Messenger\mglogger.dll
C:\Program Files\SweetIM\Messenger\mgMediaPlayer.dll
C:\Program Files\SweetIM\Messenger\mgMsnAuto.dll
C:\Program Files\SweetIM\Messenger\mgMsnMessengerAdapter.dll
C:\Program Files\SweetIM\Messenger\mgsimcommon.dll
C:\Program Files\SweetIM\Messenger\mgSweetIM.dll
C:\Program Files\SweetIM\Messenger\mgUpdateSupport.dll
C:\Program Files\SweetIM\Messenger\mgxml_wrapper.dll
C:\Program Files\SweetIM\Messenger\mgYahooAuto.dll
C:\Program Files\SweetIM\Messenger\mgYahooMessengerAdapter.dll
C:\Program Files\SweetIM\Messenger\msvcp71.dll
C:\Program Files\SweetIM\Messenger\msvcr71.dll
C:\Program Files\SweetIM\Messenger\resources\images\AudibleButton.png
C:\Program Files\SweetIM\Messenger\resources\images\DisplayPicturesButton.png
C:\Program Files\SweetIM\Messenger\resources\images\EmoticonButton.png
C:\Program Files\SweetIM\Messenger\resources\images\GamesButton.png
C:\Program Files\SweetIM\Messenger\resources\images\NudgeButton.png
C:\Program Files\SweetIM\Messenger\resources\images\SoundFxButton.png
C:\Program Files\SweetIM\Messenger\resources\images\WinksButton.png
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\Program Files\SweetIM\Toolbars\Internet Explorer\ClearHist.exe
C:\Program Files\SweetIM\Toolbars\Internet Explorer\conf\logger.xml
C:\Program Files\SweetIM\Toolbars\Internet Explorer\default.xml
C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgcommon.dll
C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgconfig.dll
C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
C:\Program Files\SweetIM\Toolbars\Internet Explorer\mghooking.dll
C:\Program Files\SweetIM\Toolbars\Internet Explorer\mglogger.dll
C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgsimcommon.dll
C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgxml_wrapper.dll
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\about.html
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\affid.dat
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\basis.xml
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\bing.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\clear-history.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier-anim-over.gif
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier-anim.gif
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier.js
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\dating.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\dictionary.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\e_cards.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\eye_icon.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\eye_icon_over.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\find.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\free_stuff.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\games.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\glitter.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\google.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\help.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\highlight.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\locales.xml
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\logo_16x16.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\logo_21x18.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\logo_32x32.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\logo_about.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\more-search-providers.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\music.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\news.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\options.html
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\photos.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\search-current-site.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\shopping.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\SmileySmile.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\SmileyWink.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\sweetim_text.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\toolbar.xml
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\version.txt
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\video.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\web-search.png
C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\yahoo.png
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_AKAMAI
-------\Service_Akamai
-------\Service_npggsvc
((((((((((((((((((((((((( Soubory vytvořené od 2009-12-14 do 2010-01-14 )))))))))))))))))))))))))))))))
.
2010-01-02 19:26:16 . 2010-01-02 19:26:16 -------- d-----w- C:\NVIDIA
2010-01-02 14:10:11 . 2010-01-02 19:27:43 96 ---ha-w- C:\WINDOWS\system32\HsInfo.dat
2010-01-02 09:58:45 . 2010-01-02 09:58:45 -------- d-----w- C:\Program Files\Vogster Entertainment
2009-12-27 19:25:10 . 2009-12-27 19:25:10 253688 ----a-w- C:\WINDOWS\system32\cssdll32.dll
2009-12-27 19:23:35 . 2010-01-10 14:20:45 -------- d-----w- C:\Program Files\COMODO
2009-12-26 19:03:16 . 2009-12-30 22:06:26 -------- d-----w- C:\Program Files\Garena
2009-12-26 09:08:53 . 2009-12-30 16:52:36 -------- d-----w- C:\Program Files\Left 4 Dead 2
2009-12-25 21:29:21 . 2009-12-30 19:46:12 -------- d-----w- C:\Program Files\left 4dead 2
2009-12-24 17:50:53 . 2009-12-24 17:54:01 -------- d-----w- C:\Program Files\Burn
2009-12-24 14:46:05 . 2010-01-14 11:34:34 -------- d-----w- C:\Documents and Settings\Martin\Music
2009-12-23 19:41:16 . 2009-11-29 18:21:39 -------- d-----w- C:\Program Files\Windows User
2009-12-23 11:54:07 . 2009-12-23 11:54:07 -------- d-----w- C:\Program Files\Intelore
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-14 11:37:54 . 2009-11-26 14:23:30 -------- d-----w- C:\Program Files\Steam
2010-01-14 10:39:40 . 2009-12-12 18:21:11 -------- d-----w- C:\Program Files\Common Files\Akamai
2010-01-14 10:11:21 . 2009-02-24 11:47:36 -------- d-----w- C:\Program Files\World of Warcraft
2010-01-13 10:59:40 . 2009-10-07 17:10:45 -------- d-----w- C:\Program Files\trend micro
2010-01-11 20:13:01 . 2009-09-03 18:38:05 137464 ----a-w- C:\WINDOWS\system32\drivers\PnkBstrK.sys
2010-01-11 20:12:41 . 2009-09-03 18:37:50 214520 ----a-w- C:\WINDOWS\system32\PnkBstrB.exe
2010-01-10 11:26:33 . 2009-07-22 21:32:01 -------- d-----w- C:\Program Files\Windows Live Safety Center
2010-01-10 09:46:27 . 2009-04-18 21:13:50 -------- d-----r- C:\Program Files\Skype
2010-01-02 19:12:42 . 2002-09-23 12:00:00 82642 ----a-w- C:\WINDOWS\system32\perfc005.dat
2010-01-02 19:12:42 . 2002-09-23 12:00:00 437336 ----a-w- C:\WINDOWS\system32\perfh005.dat
2010-01-01 14:04:12 . 2009-12-08 14:30:34 -------- d-----w- C:\Program Files\Metin2_CZ
2009-12-23 12:39:09 . 2008-08-10 13:08:42 -------- d-----w- C:\Program Files\SpeedFan
2009-12-12 11:12:58 . 2009-11-07 19:41:53 -------- d-----w- C:\Program Files\Google
2009-12-12 11:12:57 . 2009-12-05 23:06:09 -------- d-----w- C:\Program Files\Turbine
2009-12-12 11:12:03 . 2009-08-06 18:09:12 -------- d--h--w- C:\Program Files\InstallShield Installation Information
2009-12-12 10:32:51 . 2009-09-30 18:21:01 -------- d-----w- C:\Program Files\NCSoft
2009-12-11 08:56:31 . 2009-12-11 08:56:31 -------- d-----w- C:\Program Files\Ubisoft
2009-12-10 12:22:35 . 2009-12-10 12:22:35 -------- d-----w- C:\Program Files\OpenAL
2009-12-10 12:22:28 . 2008-08-10 15:11:01 -------- d-----w- C:\Program Files\Common Files\Wise Installation Wizard
2009-12-07 20:31:11 . 2009-09-22 14:40:31 -------- d-----w- C:\Program Files\Electronic Arts
2009-12-06 21:00:00 . 2009-12-06 21:00:00 -------- d-----w- C:\Program Files\Microsoft Chart Controls
2009-12-06 14:21:33 . 2009-12-06 14:21:33 -------- d-----w- C:\Program Files\Pando Networks
2009-12-03 16:49:32 . 2009-12-03 15:26:10 4876 ----a-w- C:\WINDOWS\system32\FilterData.dat
2009-12-01 20:48:16 . 2009-12-01 20:48:15 -------- d-----w- C:\Program Files\City of Heroes
2009-11-26 14:13:20 . 2009-11-26 13:51:35 -------- d-----w- C:\Program Files\Steam(2)
2009-11-24 17:32:15 . 2009-11-24 17:32:15 -------- d-----w- C:\Program Files\KillingFloor
2009-11-24 09:32:59 . 2008-08-10 12:39:20 -------- d-----w- C:\Program Files\AVG
2009-11-24 09:32:57 . 2008-08-10 12:39:30 12464 ----a-w- C:\WINDOWS\system32\avgrsstx.dll
2009-11-24 09:32:57 . 2008-08-10 12:39:29 161800 ----a-w- C:\WINDOWS\system32\drivers\avgrkx86.sys
2009-11-24 09:32:57 . 2008-08-10 12:39:26 333192 ----a-w- C:\WINDOWS\system32\drivers\avgldx86.sys
2009-11-24 09:32:57 . 2008-08-10 12:39:26 28424 ----a-w- C:\WINDOWS\system32\drivers\avgmfx86.sys
2009-11-23 19:33:57 . 2009-11-23 19:33:57 -------- d-----w- C:\Program Files\Alcohol Soft
2009-11-22 19:28:42 . 2009-11-22 19:28:41 -------- d-----w- C:\Program Files\WFCStatus
2009-11-21 16:03:06 . 2008-04-14 06:51:38 471552 ----a-w- C:\WINDOWS\AppPatch\aclayers.dll
2009-11-19 20:42:56 . 2008-12-13 17:29:34 592488 ----a-w- C:\WINDOWS\system32\NVUNINST.EXE
2009-11-17 22:57:03 . 2009-11-02 21:38:49 -------- d-----w- C:\Program Files\Malwarebytes' Anti-Malware
2009-11-16 12:14:54 . 2009-11-16 12:14:54 -------- d-----w- C:\Program Files\Used_Nintendo_DS_Lite_For_Sale
2009-11-10 13:36:08 . 2008-08-10 12:39:29 360584 ----a-w- C:\WINDOWS\system32\drivers\avgtdix.sys
2009-11-07 22:49:58 . 2009-11-07 22:49:58 86016 ----a-w- C:\WINDOWS\system32\frapsvid.dll
2009-11-06 09:59:54 . 2009-11-06 09:59:54 15406728 ----a-w- C:\WINDOWS\system32\xlive.dll
2009-11-06 09:59:54 . 2009-11-06 09:59:54 13642888 ----a-w- C:\WINDOWS\system32\xlivefnt.dll
2009-10-29 07:45:32 . 2008-04-14 06:52:06 832512 ------w- C:\WINDOWS\system32\wininet.dll
2009-10-29 07:45:29 . 2008-04-14 06:51:44 78336 ----a-w- C:\WINDOWS\system32\ieencode.dll
2009-10-29 07:45:29 . 2008-04-14 06:51:40 17408 ----a-w- C:\WINDOWS\system32\corpol.dll
2009-10-21 05:40:39 . 2008-04-14 06:52:04 75776 ----a-w- C:\WINDOWS\system32\strmfilt.dll
2009-10-21 05:40:39 . 2008-04-14 06:51:44 25088 ----a-w- C:\WINDOWS\system32\httpapi.dll
2009-10-20 16:20:16 . 2008-04-13 22:23:54 265728 ----a-w- C:\WINDOWS\system32\drivers\http.sys
2006-01-06 13:27:57 . 2006-01-06 13:27:57 317440 --sha-r- C:\WINDOWS\plugin.dat
.
(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
---- Directory of C:\WINDOWS\system32\sn ----
((((((((((((((((((((((((((((( SnapShot_2010-01-14_09.50.35 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-01-14 11:37:37 . 2010-01-14 11:37:37 16384 C:\WINDOWS\temp\Perflib_Perfdata_aac.dat
+ 2010-01-14 11:37:12 . 2010-01-14 11:37:12 16384 C:\WINDOWS\temp\Perflib_Perfdata_6f0.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{A3BC75A2-1F87-4686-AA43-5347D756017C}"= "C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll" [2009-11-25 12:02:18 1230080]
[HKEY_CLASSES_ROOT\clsid\{a3bc75a2-1f87-4686-aa43-5347d756017c}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
2009-11-25 12:02:18 1230080 ----a-w- C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2008-04-14 06:52:38 1695232]
"DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\daemon.exe" [2008-12-29 10:40:30 687560]
"Steam"="c:\program files\steam\steam.exe" [2009-11-26 14:23:49 1217808]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2009-09-26 20:48:49 8523776]
"RTHDCPL"="RTHDCPL.EXE" [2009-10-06 14:34:04 18750976]
"AVG9_TRAY"="C:\PROGRA~1\AVG\AVG9\avgtray.exe" [2009-12-23 11:03:17 2033432]
"ISTray"="C:\Program Files\Spyware Doctor\pctsTray.exe" [BU]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 06:52:18 15360]
C:\Documents and Settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE [1999-2-17 65588]
Ralink Wireless Utility.lnk - C:\Program Files\RALINK\Common\RaUI.exe [2008-8-10 614400]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2009-11-24 09:32:57 12464 ----a-w- C:\WINDOWS\system32\avgrsstx.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]
@=""
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]
@=""
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"= C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"= C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
"C:\\WINDOWS\\system32\\PnkBstrA.exe"=
"C:\\WINDOWS\\system32\\PnkBstrB.exe"=
"C:\\WINDOWS\\system32\\java.exe"=
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"C:\\Program Files\\World of Warcraft\\Launcher.exe"=
"C:\\Program Files\\World of Warcraft\\BackgroundDownloader.exe"=
"C:\\Program Files\\Activision\\Call of Duty 2\\CoD2MP_s.exe"=
"C:\\Program Files\\HLSW\\hlsw.exe"=
"C:\\Programy\\ICQ6.5\\ICQ.exe"=
"C:\\Program Files\\uTorrent\\uTorrent.exe"=
"C:\\Program Files\\Rockstar Games\\Grand Theft Auto IV\\LaunchGTAIV.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgam.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgdiagex.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgemc.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgupd.exe"=
"C:\\Program Files\\AVG\\AVG9\\avgnsx.exe"=
"C:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"C:\\Program Files\\Vogster Entertainment\\CrimeCraft\\ClientLauncher.exe"=
"C:\\Program Files\\Vogster Entertainment\\CrimeCraft\\Binaries\\CrimeCraft.exe"=
"C:\\Program Files\\Skype\\Phone\\Skype.exe"=
"C:\\Program Files\\World of Warcraft\\WoW-3.1.3.9947-to-3.2.0.10192-enUS-downloader.exe"=
"C:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 2\\iw4sp.exe"=
"C:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 2\\iw4mp.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"3724:TCP"= 3724:TCP:Blizzard Downloader: 3724
"57634:TCP"= 57634:TCP:Pando Media Booster
"57634:UDP"= 57634:UDP:Pando Media Booster
R0 AvgRkx86;avgrkx86.sys;C:\WINDOWS\system32\drivers\avgrkx86.sys [10.8.2008 13:39:29 161800]
R0 PCTCore;PCTools KDS;C:\WINDOWS\system32\drivers\PCTCore.sys [22.7.2009 22:02:07 130936]
R0 sptd;sptd;C:\WINDOWS\system32\drivers\sptd.sys [14.8.2008 15:24:54 721904]
R1 AvgLdx86;AVG AVI Loader Driver x86;C:\WINDOWS\system32\drivers\avgldx86.sys [10.8.2008 13:39:26 333192]
R1 AvgTdiX;AVG8 Network Redirector;C:\WINDOWS\system32\drivers\avgtdix.sys [10.8.2008 13:39:29 360584]
R2 avg9emc;AVG E-mail Scanner;C:\Program Files\AVG\AVG9\avgemc.exe [24.11.2009 10:32:43 906520]
R2 avg9wd;AVG WatchDog;C:\Program Files\AVG\AVG9\avgwdsvc.exe [24.11.2009 10:32:42 285392]
R2 ICQ Service;ICQ Service;C:\Program Files\ICQ6Toolbar\ICQ Service.exe [3.9.2008 19:43:15 222968]
R2 sdAuxService;PC Tools Auxiliary Service;C:\Program Files\Spyware Doctor\pctsAuxs.exe [22.7.2009 22:01:59 348752]
R3 DynCal;Dynamic Calibration Service;C:\WINDOWS\system32\drivers\DynCal.sys [26.9.2005 14:47:46 8576]
S3 Ambfilt;Ambfilt;C:\WINDOWS\system32\drivers\Ambfilt.sys [17.10.2009 16:21:13 1684736]
S3 cpuz130;cpuz130;\??\C:\DOCUME~1\Martin\LOCALS~1\Temp\cpuz130\cpuz_x32.sys --> C:\DOCUME~1\Martin\LOCALS~1\Temp\cpuz130\cpuz_x32.sys [?]
S3 ddsxeiservice;ddsxeiservice;\??\C:\Program Files\sXe Injected\ddsxei.sys --> C:\Program Files\sXe Injected\ddsxei.sys [?]
S3 GarenaPEngine;GarenaPEngine;\??\C:\DOCUME~1\Martin\LOCALS~1\Temp\SHR5C.tmp --> C:\DOCUME~1\Martin\LOCALS~1\Temp\SHR5C.tmp [?]
--- Ostatní služby/ovladače v paměti ---
*Deregistered* - mchInjDrv
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
.
------- Doplňkový sken -------
.
FF - ProfilePath - C:\Documents and Settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\y1b20e1i.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.sweetim.com/search.asp?src=2&q=
FF - prefs.js: browser.search.selectedEngine - WebHledani
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz
FF - prefs.js: keyword.URL - hxxp://www.webhledani.cz/results.aspx?i=42&tp=ab&q=
FF - component: C:\Program Files\AVG\AVG9\Firefox\components\avgssff.dll
FF - component: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\components\IGeared_tavgp_xputils2.dll
FF - component: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\components\IGeared_tavgp_xputils3.dll
FF - component: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\components\IGeared_tavgp_xputils35.dll
FF - component: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\components\xpavgtbapi.dll
FF - plugin: C:\Program Files\Mozilla Firefox\plugins\npPandoWebInst.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- NASTAVENÍ FIREFOXU ----
C:\Program Files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
URLSearchHooks-*{EEE6C35D-6118-11DC-9C72-001320C79847} - (no file)
Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
zasekl jsem se u bodu
Start - ovládací panely - možnosti složky - zobrazení - odkrýt skryté a systémové souborymožnost odkrýt skryté a systémové soubory tam nemám.
Re: Prosím o kontrolu logu
Nevadí, zkuste to poslat i tak, snad ho najdete.
Tuhle složku znáte?
C:\Documents and Settings\Martin\Music
Tuhle složku znáte?
C:\Documents and Settings\Martin\Music
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Prosím o kontrolu logu
bez toho odkrytí mi to ten soubor nenajde, tu slozku neznám.
Re: Prosím o kontrolu logu
A můžete se do té složky podívat, jestli tam ještě něco je?
Na virustotalu nakopírujte celou cestu k souboru do spodního okénka..pokud je soubor v pc, tak se odešle.
Na virustotalu nakopírujte celou cestu k souboru do spodního okénka..pokud je soubor v pc, tak se odešle.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Prosím o kontrolu logu
V té složce Music sou ještě 4 soubory.
Když skopíruju celou cestu k tomu souboru tak ho to nemůže najít.
Když skopíruju celou cestu k tomu souboru tak ho to nemůže najít.
Re: Prosím o kontrolu logu
Můžete ty soubory co jsou v té složce také otestovat na www.virustotal.com?
Znáte je?
Znáte je?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Prosím o kontrolu logu
Pokud nemáte, přesuňte Combofix na plochu-otevřete si Poznámkový blok
-Do něj zkopírujte text z tohoto okénka
Kód: Vybrat vše
Folder::
C:\Documents and Settings\Martin\Music
Driver::
ddsxeiservice
File::
C:\Program Files\sXe Injected\ddsxei.sys
-po uložení uchopte vámi vytvořený skript levým myšítkem a -přesuňte ho nad ikonu Combofixu, kde ho upustíte:
-po aplikaci na Vás vypadne další log,vložte ho sem
Upozornění : může se stát, že po aplikaci skriptu a restartu Windows nenaběhnou, v tom případě znovu restartujte a přitom mačkejte F8, pak zvolte Poslední známou funkční konfiguraci
Stahněte MBAM z mého podpisu-Nainstalujte,dejte úplný sken
NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Přispějete na provoz fóra?