Prosím o kontrolu logu. Vyřešeno

[Ivey]

Prosím o kontrolu logu.


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 3:31:44, on 4.4.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17095)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\ToniArts\EasyCleaner\EasyClea.exe
C:\Documents and Settings\Pavla\Data aplikací\Transcend\SJelite3\SJelite3Launch.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Free Download Manager\fdmwi.exe
C:\Program Files\Seznam.cz\postak.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\YoWindow\yowindow.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe
C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\ICQ7.1\ICQ.exe
C:\Documents and Settings\Pavla\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Pavla\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Pavla\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Pavla\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Pavla\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Pavla\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Documents and Settings\Pavla\Local Settings\Data aplikací\Seznam.cz\core.2.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Nástroje Lištičky - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - C:\Program Files\Seznam.cz\toolbar\toolbar.dll
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ASUSGamerOSD] C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [ToniArts EasyCleaner] "C:\Program Files\ToniArts\EasyCleaner\EasyClea.exe" -s -startup
O4 - HKCU\..\Run: [SJelite3Launch] C:\Documents and Settings\Pavla\Data aplikací\Transcend\SJelite3\SJelite3Launch.exe
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Free Download Manager - RCS] C:\Program Files\Free Download Manager\fdmwi.exe -autorun
O4 - HKCU\..\Run: [Seznam Postak] "C:\Program Files\Seznam.cz\postak.exe" -s
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: YoWindow.lnk = C:\Program Files\YoWindow\yowindow.exe
O8 - Extra context menu item: &Download All using 4shared Desktop - C:\Program Files\4shared Desktop\down_all.htm
O8 - Extra context menu item: + &Mass Downloader: download this file - C:\Program Files\Mass Downloader\Add_Url.htm
O8 - Extra context menu item: + Mass Downloader: download &All files - C:\Program Files\Mass Downloader\Add_All.htm
O8 - Extra context menu item: Stáhnout Free Download Managerem - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stáhnout video Free Download Managerem - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Stáhnout vybrané Free Download Managerem - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Stáhnout vše Free Download Managerem - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
O9 - Extra button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra button: Mass Downloader - {0FD01980-CCCB-11D3-80D4-0000E80E2EDE} - C:\Program Files\Mass Downloader\massdown.exe
O9 - Extra 'Tools' menuitem: &Mass Downloader - {0FD01980-CCCB-11D3-80D4-0000E80E2EDE} - C:\Program Files\Mass Downloader\massdown.exe
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra button: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files\ICQ7.1\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files\ICQ7.1\ICQ.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Unknown owner - C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

--
End of file - 11278 bytes

[Reklama]

[Žbeky]

Nějaké problémy?

Odinstaluj
Panda Security
Google Toolbar
Lištičku

V HJT fixni:

Kód: Vybrat vše

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Documents and Settings\Pavla\Local Settings\Data aplikací\Seznam.cz\core.2.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Nástroje Lištičky - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - C:\Program Files\Seznam.cz\toolbar\toolbar.dll
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O9 - Extra button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

[Ivey]

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Verze databáze: 6267

Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13

4.4.2011 5:21:03
mbam-log-2011-04-04 (05-21-03).txt

Typ kontroly: Rychlý test
Testované objekty: 148420
Uplynulý čas: 2 minut, 46 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

lištičku a pandu jsem nenašla. Jako prohlížeč používám Google chrome.

[Žbeky]

OK, na to se potom mrknem.

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah

[Ivey]

ComboFix 11-04-03.03 - Pavla 04.04.2011 5:54.3.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1330 [GMT 2:00]
Spuštěný z: f:\stahovani\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-03-04 do 2011-04-04 )))))))))))))))))))))))))))))))
.
.
2011-04-04 03:16 . 2010-12-20 16:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-04-04 03:16 . 2011-04-04 03:16 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-04-04 03:16 . 2010-12-20 16:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-04-04 01:28 . 2011-04-04 01:28 388096 ----a-r- c:\documents and settings\Pavla\Data aplikací\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-04-03 23:57 . 2011-04-03 23:57 -------- d-----w- c:\program files\ToniArts
2011-04-03 23:44 . 2011-04-03 23:44 -------- d-----w- c:\documents and settings\Pavla\Data aplikací\Registry Mechanic
2011-04-02 21:06 . 2010-09-16 10:26 37336 ----a-w- c:\windows\system32\CleanMFT32.exe
2011-04-02 21:06 . 2008-04-02 14:54 1101824 ----a-w- c:\windows\system32\UniBox210.ocx
2011-04-02 21:06 . 2008-04-02 14:53 212992 ----a-w- c:\windows\system32\UniBoxVB12.ocx
2011-04-02 21:06 . 2008-04-02 14:53 880640 ----a-w- c:\windows\system32\UniBox10.ocx
2011-04-02 21:06 . 2008-09-17 20:17 658432 ----a-w- c:\windows\system32\MSCOMCT2.OCX
2011-04-02 21:06 . 2011-04-02 21:06 -------- d-----w- c:\program files\Common Files\PC Tools
2011-04-02 21:05 . 2011-04-03 23:46 -------- d---a-w- c:\documents and settings\All Users\Data aplikací\TEMP
2011-03-30 10:06 . 2011-03-18 18:05 142296 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll
2011-03-30 10:06 . 2011-03-18 18:05 781272 ----a-w- c:\program files\Mozilla Firefox\mozsqlite3.dll
2011-03-30 10:06 . 2011-03-18 18:05 728024 ----a-w- c:\program files\Mozilla Firefox\libGLESv2.dll
2011-03-30 10:06 . 2011-03-18 18:05 1975768 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_42.dll
2011-03-30 10:06 . 2011-03-18 18:05 1893336 ----a-w- c:\program files\Mozilla Firefox\d3dx9_42.dll
2011-03-30 10:06 . 2011-03-18 18:05 1874904 ----a-w- c:\program files\Mozilla Firefox\mozjs.dll
2011-03-30 10:06 . 2011-03-18 18:05 15832 ----a-w- c:\program files\Mozilla Firefox\mozalloc.dll
2011-03-30 10:06 . 2011-03-18 18:05 142296 ----a-w- c:\program files\Mozilla Firefox\libEGL.dll
2011-03-17 13:50 . 2011-03-17 13:50 -------- d-----w- c:\documents and settings\Pavla\Local Settings\Data aplikací\Downloaded Installations
2011-03-12 07:15 . 2011-03-14 09:06 -------- d-----w- c:\program files\Recepty doma
2011-03-07 04:15 . 2011-03-07 04:15 -------- d-----w- c:\program files\Common Files\Skype
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-04-01 16:22 . 2010-03-31 17:00 196608 ----a-w- c:\windows\system32\drivers\nStandard.bin
2011-02-09 13:53 . 2006-03-02 12:00 270848 ----a-w- c:\windows\system32\sbe.dll
2011-02-09 13:53 . 2006-03-02 12:00 186880 ----a-w- c:\windows\system32\encdec.dll
2011-02-02 07:58 . 2010-03-31 11:16 2067456 ----a-w- c:\windows\system32\mstscax.dll
2011-01-27 11:57 . 2010-03-31 11:16 677888 ----a-w- c:\windows\system32\mstsc.exe
2011-01-21 14:44 . 2006-03-02 12:00 440320 ----a-w- c:\windows\system32\shimgvw.dll
2011-01-07 14:09 . 2006-03-02 12:00 290048 ----a-w- c:\windows\system32\atmfd.dll
2011-03-18 18:05 . 2011-03-30 10:06 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot_2011-01-19_11.08.17 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-04-04 01:04 . 2011-04-04 01:04 16384 c:\windows\temp\Perflib_Perfdata_524.dat
+ 2011-02-11 11:04 . 2010-02-02 13:19 22528 c:\windows\system32\spool\drivers\w32x86\hpdeskjet_2050_j510_3af3\hpvplui03.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 22528 c:\windows\system32\spool\drivers\w32x86\3\hpvplui03.dll
- 2010-05-01 06:03 . 2010-02-22 14:20 18296 c:\windows\system32\spmsg.dll
+ 2010-05-01 06:03 . 2010-07-05 13:13 18296 c:\windows\system32\spmsg.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 44544 c:\windows\system32\pngfilt.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 44544 c:\windows\system32\pngfilt.dll
- 2007-08-13 16:54 . 2010-11-06 00:25 52224 c:\windows\system32\msfeedsbs.dll
+ 2007-08-13 16:54 . 2010-12-20 23:06 52224 c:\windows\system32\msfeedsbs.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 27648 c:\windows\system32\jsproxy.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 27648 c:\windows\system32\jsproxy.dll
- 2007-08-13 16:39 . 2010-11-03 12:24 13824 c:\windows\system32\ieudinit.exe
+ 2007-08-13 16:39 . 2010-12-20 12:54 13824 c:\windows\system32\ieudinit.exe
+ 2006-03-02 12:00 . 2010-12-20 23:06 44544 c:\windows\system32\iernonce.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 44544 c:\windows\system32\iernonce.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 78336 c:\windows\system32\ieencode.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 78336 c:\windows\system32\ieencode.dll
- 2006-03-02 12:00 . 2010-11-03 12:24 70656 c:\windows\system32\ie4uinit.exe
+ 2006-03-02 12:00 . 2010-12-20 12:54 70656 c:\windows\system32\ie4uinit.exe
- 2007-08-13 16:36 . 2010-11-06 00:25 63488 c:\windows\system32\icardie.dll
+ 2007-08-13 16:36 . 2010-12-20 23:06 63488 c:\windows\system32\icardie.dll
+ 2011-02-11 11:03 . 2010-02-02 13:19 22528 c:\windows\system32\DRVSTORE\hpvpl03_052005D353D865D3FD60A4868CDF70B3454A96D0\i386\hpvplui03.dll
+ 2010-04-18 09:53 . 2008-04-13 19:45 15104 c:\windows\system32\drivers\usbscan.sys
- 2010-04-18 09:53 . 2008-04-13 18:45 15104 c:\windows\system32\drivers\usbscan.sys
+ 2010-04-18 09:53 . 2008-04-13 19:45 15104 c:\windows\system32\dllcache\usbscan.sys
- 2006-03-02 12:00 . 2010-11-06 00:25 44544 c:\windows\system32\dllcache\pngfilt.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 44544 c:\windows\system32\dllcache\pngfilt.dll
+ 2010-04-08 05:44 . 2010-12-20 23:06 52224 c:\windows\system32\dllcache\msfeedsbs.dll
- 2010-04-08 05:44 . 2010-11-06 00:25 52224 c:\windows\system32\dllcache\msfeedsbs.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 27648 c:\windows\system32\dllcache\jsproxy.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 27648 c:\windows\system32\dllcache\jsproxy.dll
- 2010-04-08 05:44 . 2010-11-03 12:24 13824 c:\windows\system32\dllcache\ieudinit.exe
+ 2010-04-08 05:44 . 2010-12-20 12:54 13824 c:\windows\system32\dllcache\ieudinit.exe
- 2006-03-02 12:00 . 2010-11-06 00:25 44544 c:\windows\system32\dllcache\iernonce.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 44544 c:\windows\system32\dllcache\iernonce.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 78336 c:\windows\system32\dllcache\ieencode.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 78336 c:\windows\system32\dllcache\ieencode.dll
+ 2006-03-02 12:00 . 2010-12-20 12:54 70656 c:\windows\system32\dllcache\ie4uinit.exe
- 2006-03-02 12:00 . 2010-11-03 12:24 70656 c:\windows\system32\dllcache\ie4uinit.exe
- 2010-04-08 05:44 . 2010-11-06 00:25 63488 c:\windows\system32\dllcache\icardie.dll
+ 2010-04-08 05:44 . 2010-12-20 23:06 63488 c:\windows\system32\dllcache\icardie.dll
+ 2009-12-14 07:10 . 2010-12-09 14:30 33280 c:\windows\system32\dllcache\csrsrv.dll
- 2009-12-14 07:10 . 2009-12-14 07:10 33280 c:\windows\system32\dllcache\csrsrv.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 17408 c:\windows\system32\dllcache\corpol.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 17408 c:\windows\system32\dllcache\corpol.dll
- 2006-03-02 12:00 . 2009-12-14 07:10 33280 c:\windows\system32\csrsrv.dll
+ 2006-03-02 12:00 . 2010-12-09 14:30 33280 c:\windows\system32\csrsrv.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 17408 c:\windows\system32\corpol.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 17408 c:\windows\system32\corpol.dll
+ 2011-02-11 11:04 . 2011-02-11 11:04 66138 c:\windows\Installer\{D7716C7E-75F1-4C51-A2D5-C6A1E8311D53}\SCLite_Icon.exe
+ 2010-12-29 00:56 . 2011-02-24 09:56 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
- 2010-12-29 00:56 . 2010-12-29 00:56 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 44544 c:\windows\ie7updates\KB2482017-IE7\pngfilt.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 52224 c:\windows\ie7updates\KB2482017-IE7\msfeedsbs.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 27648 c:\windows\ie7updates\KB2482017-IE7\jsproxy.dll
+ 2011-02-09 17:27 . 2010-11-03 12:24 13824 c:\windows\ie7updates\KB2482017-IE7\ieudinit.exe
+ 2011-02-09 17:27 . 2010-11-06 00:25 44544 c:\windows\ie7updates\KB2482017-IE7\iernonce.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 78336 c:\windows\ie7updates\KB2482017-IE7\ieencode.dll
+ 2011-02-09 17:27 . 2010-11-03 12:24 70656 c:\windows\ie7updates\KB2482017-IE7\ie4uinit.exe
+ 2011-02-09 17:27 . 2010-11-06 00:25 63488 c:\windows\ie7updates\KB2482017-IE7\icardie.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 17408 c:\windows\ie7updates\KB2482017-IE7\corpol.dll
+ 2011-02-09 17:27 . 2009-12-14 07:10 33280 c:\windows\$NtUninstallKB2476687$\csrsrv.dll
+ 2011-02-24 09:56 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB971029\update\spcustom.dll
+ 2011-02-24 09:56 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB971029\spmsg.dll
+ 2011-02-09 17:29 . 2010-07-05 13:13 26488 c:\windows\$hf_mig$\KB2485376\update\spcustom.dll
+ 2011-02-09 17:29 . 2010-07-05 13:13 18296 c:\windows\$hf_mig$\KB2485376\spmsg.dll
+ 2011-02-09 17:29 . 2010-02-22 14:20 26488 c:\windows\$hf_mig$\KB2483185\update\spcustom.dll
+ 2011-02-09 17:29 . 2010-02-22 14:20 18296 c:\windows\$hf_mig$\KB2483185\spmsg.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 26488 c:\windows\$hf_mig$\KB2482017-IE7\update\spcustom.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 18296 c:\windows\$hf_mig$\KB2482017-IE7\spmsg.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 44544 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\pngfilt.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 52224 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\msfeedsbs.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 27648 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\jsproxy.dll
+ 2010-12-20 12:47 . 2010-12-20 12:47 13824 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\ieudinit.exe
+ 2010-12-20 23:14 . 2010-12-20 23:14 44544 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\iernonce.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 78336 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\ieencode.dll
+ 2010-12-20 12:47 . 2010-12-20 12:47 70656 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\ie4uinit.exe
+ 2010-12-20 23:14 . 2010-12-20 23:14 63488 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\icardie.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 17408 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\corpol.dll
+ 2011-02-09 17:29 . 2010-02-22 14:20 26488 c:\windows\$hf_mig$\KB2479628\update\spcustom.dll
+ 2011-02-09 17:29 . 2010-02-22 14:20 18296 c:\windows\$hf_mig$\KB2479628\spmsg.dll
+ 2011-02-09 17:29 . 2010-02-22 14:20 26488 c:\windows\$hf_mig$\KB2478971\update\spcustom.dll
+ 2011-02-09 17:29 . 2010-02-22 14:20 18296 c:\windows\$hf_mig$\KB2478971\spmsg.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 26488 c:\windows\$hf_mig$\KB2478960\update\spcustom.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 18296 c:\windows\$hf_mig$\KB2478960\spmsg.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 26488 c:\windows\$hf_mig$\KB2476687\update\spcustom.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 18296 c:\windows\$hf_mig$\KB2476687\spmsg.dll
+ 2010-12-09 14:28 . 2010-12-09 14:28 33280 c:\windows\$hf_mig$\KB2476687\SP3QFE\csrsrv.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 26488 c:\windows\$hf_mig$\KB2393802\update\spcustom.dll
+ 2011-02-09 17:01 . 2010-12-10 05:42 16896 c:\windows\$hf_mig$\KB2393802\update\mpsyschk.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 18296 c:\windows\$hf_mig$\KB2393802\spmsg.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 832512 c:\windows\system32\wininet.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 832512 c:\windows\system32\wininet.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 233472 c:\windows\system32\webcheck.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 233472 c:\windows\system32\webcheck.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 105984 c:\windows\system32\url.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 105984 c:\windows\system32\url.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 761344 c:\windows\system32\spool\drivers\w32x86\hpdeskjet_2050_j510_3af3\unires.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 740864 c:\windows\system32\spool\drivers\w32x86\hpdeskjet_2050_j510_3af3\unidrvui.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 372736 c:\windows\system32\spool\drivers\w32x86\hpdeskjet_2050_j510_3af3\unidrv.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 228864 c:\windows\system32\spool\drivers\w32x86\hpdeskjet_2050_j510_3af3\hpvplres03.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 431616 c:\windows\system32\spool\drivers\w32x86\hpdeskjet_2050_j510_3af3\hpvpldrv03.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 272744 c:\windows\system32\spool\drivers\w32x86\hpdeskjet_2050_j510_3af3\hpinksts8711LM.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 539496 c:\windows\system32\spool\drivers\w32x86\hpdeskjet_2050_j510_3af3\hpinksts8711.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 252416 c:\windows\system32\spool\drivers\w32x86\hpdeskjet_2050_j510_3af3\hpfime50.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 228864 c:\windows\system32\spool\drivers\w32x86\3\hpvplres03.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 431616 c:\windows\system32\spool\drivers\w32x86\3\hpvpldrv03.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 272744 c:\windows\system32\spool\drivers\w32x86\3\hpinksts8711LM.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 539496 c:\windows\system32\spool\drivers\w32x86\3\hpinksts8711.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 252416 c:\windows\system32\spool\drivers\w32x86\3\hpfime50.dll
- 2006-03-02 12:00 . 2008-04-14 03:21 135168 c:\windows\system32\shsvcs.dll
+ 2006-03-02 12:00 . 2009-07-27 23:19 135168 c:\windows\system32\shsvcs.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 102912 c:\windows\system32\occache.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 102912 c:\windows\system32\occache.dll
+ 2006-03-02 12:00 . 2010-12-09 15:15 713216 c:\windows\system32\ntdll.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 671232 c:\windows\system32\mstime.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 671232 c:\windows\system32\mstime.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 193024 c:\windows\system32\msrating.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 193024 c:\windows\system32\msrating.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 478208 c:\windows\system32\mshtmled.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 478208 c:\windows\system32\mshtmled.dll
+ 2007-08-13 16:54 . 2010-12-20 23:06 468480 c:\windows\system32\msfeeds.dll
- 2007-08-13 16:54 . 2010-11-06 00:25 468480 c:\windows\system32\msfeeds.dll
+ 2011-03-24 06:08 . 2011-03-24 06:08 235168 c:\windows\system32\Macromed\Flash\FlashUtil10o_Plugin.exe
+ 2006-03-02 12:00 . 2010-12-20 17:25 729088 c:\windows\system32\lsasrv.dll
- 2006-03-02 12:00 . 2009-06-25 08:27 729088 c:\windows\system32\lsasrv.dll
- 2006-03-02 12:00 . 2009-06-25 08:27 301568 c:\windows\system32\kerberos.dll
+ 2006-03-02 12:00 . 2010-12-22 12:34 301568 c:\windows\system32\kerberos.dll
- 2007-08-13 16:34 . 2010-11-06 00:25 268288 c:\windows\system32\iertutil.dll
+ 2007-08-13 16:34 . 2010-12-20 23:06 268288 c:\windows\system32\iertutil.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 192512 c:\windows\system32\iepeers.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 192512 c:\windows\system32\iepeers.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 384512 c:\windows\system32\iedkcs32.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 384512 c:\windows\system32\iedkcs32.dll
- 2007-07-11 10:27 . 2010-11-06 00:25 380928 c:\windows\system32\ieapfltr.dll
+ 2007-07-11 10:27 . 2010-12-20 23:06 380928 c:\windows\system32\ieapfltr.dll
- 2006-03-02 12:00 . 2010-10-18 11:06 161792 c:\windows\system32\ieakui.dll
+ 2006-03-02 12:00 . 2010-12-20 11:23 161792 c:\windows\system32\ieakui.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 230400 c:\windows\system32\ieaksie.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 230400 c:\windows\system32\ieaksie.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 153088 c:\windows\system32\ieakeng.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 153088 c:\windows\system32\ieakeng.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 272744 c:\windows\system32\hpinksts8711LM.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 539496 c:\windows\system32\hpinksts8711.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 201728 c:\windows\system32\hpinkcoi8711.dll
+ 1601-01-01 00:00 . 2011-02-09 17:31 134872 c:\windows\system32\FNTCACHE.DAT
- 1601-01-01 00:00 . 2010-12-16 17:45 134872 c:\windows\system32\FNTCACHE.DAT
- 2006-03-02 12:00 . 2010-11-06 00:25 133120 c:\windows\system32\extmgr.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 133120 c:\windows\system32\extmgr.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 214528 c:\windows\system32\dxtrans.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 214528 c:\windows\system32\dxtrans.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 347136 c:\windows\system32\dxtmsft.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 347136 c:\windows\system32\dxtmsft.dll
+ 2011-02-11 11:03 . 2010-02-02 13:19 761344 c:\windows\system32\DRVSTORE\hpvpl03_052005D353D865D3FD60A4868CDF70B3454A96D0\i386\unires.dll
+ 2011-02-11 11:03 . 2010-02-02 13:19 740864 c:\windows\system32\DRVSTORE\hpvpl03_052005D353D865D3FD60A4868CDF70B3454A96D0\i386\unidrvui.dll
+ 2011-02-11 11:03 . 2010-02-02 13:19 372736 c:\windows\system32\DRVSTORE\hpvpl03_052005D353D865D3FD60A4868CDF70B3454A96D0\i386\unidrv.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 228864 c:\windows\system32\DRVSTORE\hpvpl03_052005D353D865D3FD60A4868CDF70B3454A96D0\i386\hpvplres03.dll
+ 2011-02-11 11:03 . 2010-02-02 13:19 431616 c:\windows\system32\DRVSTORE\hpvpl03_052005D353D865D3FD60A4868CDF70B3454A96D0\i386\hpvpldrv03.dll
+ 2011-02-11 11:03 . 2010-02-02 13:19 272744 c:\windows\system32\DRVSTORE\hpvpl03_052005D353D865D3FD60A4868CDF70B3454A96D0\i386\hpinksts8711LM.dll
+ 2011-02-11 11:03 . 2010-02-02 13:19 539496 c:\windows\system32\DRVSTORE\hpvpl03_052005D353D865D3FD60A4868CDF70B3454A96D0\i386\hpinksts8711.dll
+ 2011-02-11 11:03 . 2010-02-02 13:19 201728 c:\windows\system32\DRVSTORE\hpvpl03_052005D353D865D3FD60A4868CDF70B3454A96D0\i386\hpinkcoi8711.dll
+ 2011-02-11 11:03 . 2010-02-02 13:19 252416 c:\windows\system32\DRVSTORE\hpvpl03_052005D353D865D3FD60A4868CDF70B3454A96D0\i386\hpfime50.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 832512 c:\windows\system32\dllcache\wininet.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 832512 c:\windows\system32\dllcache\wininet.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 233472 c:\windows\system32\dllcache\webcheck.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 233472 c:\windows\system32\dllcache\webcheck.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 105984 c:\windows\system32\dllcache\url.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 105984 c:\windows\system32\dllcache\url.dll
+ 2009-07-27 23:19 . 2009-07-27 23:19 135168 c:\windows\system32\dllcache\shsvcs.dll
+ 2011-01-21 14:44 . 2011-01-21 14:44 440320 c:\windows\system32\dllcache\shimgvw.dll
+ 2011-02-09 13:53 . 2011-02-09 13:53 270848 c:\windows\system32\dllcache\sbe.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 102912 c:\windows\system32\dllcache\occache.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 102912 c:\windows\system32\dllcache\occache.dll
+ 2010-04-01 01:02 . 2010-12-09 15:15 713216 c:\windows\system32\dllcache\ntdll.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 671232 c:\windows\system32\dllcache\mstime.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 671232 c:\windows\system32\dllcache\mstime.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 193024 c:\windows\system32\dllcache\msrating.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 193024 c:\windows\system32\dllcache\msrating.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 478208 c:\windows\system32\dllcache\mshtmled.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 478208 c:\windows\system32\dllcache\mshtmled.dll
- 2010-04-08 05:44 . 2010-11-06 00:25 468480 c:\windows\system32\dllcache\msfeeds.dll
+ 2010-04-08 05:44 . 2010-12-20 23:06 468480 c:\windows\system32\dllcache\msfeeds.dll
+ 2010-04-01 01:02 . 2010-12-20 17:25 729088 c:\windows\system32\dllcache\lsasrv.dll
- 2010-04-01 01:02 . 2009-06-25 08:27 729088 c:\windows\system32\dllcache\lsasrv.dll
+ 2011-01-27 11:57 . 2011-01-27 11:57 677888 c:\windows\system32\dllcache\lhmstsc.exe
- 2009-06-25 08:27 . 2009-06-25 08:27 301568 c:\windows\system32\dllcache\kerberos.dll
+ 2009-06-25 08:27 . 2010-12-22 12:34 301568 c:\windows\system32\dllcache\kerberos.dll
+ 2010-03-31 11:17 . 2010-12-20 11:25 634648 c:\windows\system32\dllcache\iexplore.exe
- 2010-03-31 11:17 . 2010-10-18 11:07 634648 c:\windows\system32\dllcache\iexplore.exe
+ 2010-04-08 05:44 . 2010-12-20 23:06 268288 c:\windows\system32\dllcache\iertutil.dll
- 2010-04-08 05:44 . 2010-11-06 00:25 268288 c:\windows\system32\dllcache\iertutil.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 192512 c:\windows\system32\dllcache\iepeers.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 192512 c:\windows\system32\dllcache\iepeers.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 384512 c:\windows\system32\dllcache\iedkcs32.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 384512 c:\windows\system32\dllcache\iedkcs32.dll
- 2010-04-08 05:44 . 2010-11-06 00:25 380928 c:\windows\system32\dllcache\ieapfltr.dll
+ 2010-04-08 05:44 . 2010-12-20 23:06 380928 c:\windows\system32\dllcache\ieapfltr.dll
- 2006-03-02 12:00 . 2010-10-18 11:06 161792 c:\windows\system32\dllcache\ieakui.dll
+ 2006-03-02 12:00 . 2010-12-20 11:23 161792 c:\windows\system32\dllcache\ieakui.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 230400 c:\windows\system32\dllcache\ieaksie.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 230400 c:\windows\system32\dllcache\ieaksie.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 153088 c:\windows\system32\dllcache\ieakeng.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 153088 c:\windows\system32\dllcache\ieakeng.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 133120 c:\windows\system32\dllcache\extmgr.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 133120 c:\windows\system32\dllcache\extmgr.dll
+ 2011-02-09 13:53 . 2011-02-09 13:53 186880 c:\windows\system32\dllcache\encdec.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 214528 c:\windows\system32\dllcache\dxtrans.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 214528 c:\windows\system32\dllcache\dxtrans.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 347136 c:\windows\system32\dllcache\dxtmsft.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 347136 c:\windows\system32\dllcache\dxtmsft.dll
- 2010-04-20 05:32 . 2010-10-28 13:09 290048 c:\windows\system32\dllcache\atmfd.dll
+ 2010-04-20 05:32 . 2011-01-07 14:09 290048 c:\windows\system32\dllcache\atmfd.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 124928 c:\windows\system32\dllcache\advpack.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 124928 c:\windows\system32\dllcache\advpack.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 124928 c:\windows\system32\advpack.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 124928 c:\windows\system32\advpack.dll
+ 2011-03-07 04:16 . 2011-03-07 04:16 689152 c:\windows\Installer\3abfc.msi
+ 2011-02-10 14:51 . 2011-02-10 14:51 210432 c:\windows\Installer\308f8.msi
+ 2011-02-11 11:04 . 2011-02-11 11:04 841216 c:\windows\Installer\303192.msi
+ 2011-02-11 11:04 . 2011-02-11 11:04 115200 c:\windows\Installer\303188.msi
+ 2011-02-11 10:55 . 2011-02-11 10:55 361984 c:\windows\Installer\302f5b.msi
+ 2011-03-07 04:15 . 2011-03-07 04:15 371272 c:\windows\Installer\{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}\SkypeIcon.exe
- 2010-12-05 18:21 . 2010-12-05 18:21 371272 c:\windows\Installer\{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}\SkypeIcon.exe
+ 2011-02-11 11:04 . 2011-02-11 11:04 102400 c:\windows\Installer\{DE77FE3F-A33D-499A-87AD-5FC406617B40}\NewShortcut1_47F36D92E58E456DB73C3382737E4C42.exe
+ 2011-02-09 17:27 . 2010-11-06 00:25 832512 c:\windows\ie7updates\KB2482017-IE7\wininet.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 233472 c:\windows\ie7updates\KB2482017-IE7\webcheck.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 105984 c:\windows\ie7updates\KB2482017-IE7\url.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 391032 c:\windows\ie7updates\KB2482017-IE7\spuninst\updspapi.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 233848 c:\windows\ie7updates\KB2482017-IE7\spuninst\spuninst.exe
+ 2011-02-09 17:27 . 2010-11-06 00:25 102912 c:\windows\ie7updates\KB2482017-IE7\occache.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 671232 c:\windows\ie7updates\KB2482017-IE7\mstime.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 193024 c:\windows\ie7updates\KB2482017-IE7\msrating.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 478208 c:\windows\ie7updates\KB2482017-IE7\mshtmled.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 468480 c:\windows\ie7updates\KB2482017-IE7\msfeeds.dll
+ 2011-02-09 17:27 . 2010-10-18 11:07 634648 c:\windows\ie7updates\KB2482017-IE7\iexplore.exe
+ 2011-02-09 17:27 . 2010-11-06 00:25 268288 c:\windows\ie7updates\KB2482017-IE7\iertutil.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 192512 c:\windows\ie7updates\KB2482017-IE7\iepeers.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 384512 c:\windows\ie7updates\KB2482017-IE7\iedkcs32.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 380928 c:\windows\ie7updates\KB2482017-IE7\ieapfltr.dll
+ 2011-02-09 17:27 . 2010-10-18 11:06 161792 c:\windows\ie7updates\KB2482017-IE7\ieakui.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 230400 c:\windows\ie7updates\KB2482017-IE7\ieaksie.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 153088 c:\windows\ie7updates\KB2482017-IE7\ieakeng.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 133120 c:\windows\ie7updates\KB2482017-IE7\extmgr.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 214528 c:\windows\ie7updates\KB2482017-IE7\dxtrans.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 347136 c:\windows\ie7updates\KB2482017-IE7\dxtmsft.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 124928 c:\windows\ie7updates\KB2482017-IE7\advpack.dll
+ 2011-02-24 09:56 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB971029$\spuninst\updspapi.dll
+ 2011-02-24 09:56 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB971029$\spuninst\spuninst.exe
+ 2011-02-24 09:56 . 2008-04-14 03:21 135168 c:\windows\$NtUninstallKB971029$\shsvcs.dll
+ 2011-02-09 17:29 . 2010-07-05 13:13 391032 c:\windows\$NtUninstallKB2485376$\spuninst\updspapi.dll
+ 2011-02-09 17:29 . 2010-07-05 13:13 233848 c:\windows\$NtUninstallKB2485376$\spuninst\spuninst.exe
+ 2011-02-09 17:29 . 2010-10-28 13:09 290048 c:\windows\$NtUninstallKB2485376$\atmfd.dll
+ 2011-02-09 17:29 . 2010-02-22 14:21 391032 c:\windows\$NtUninstallKB2483185$\spuninst\updspapi.dll
+ 2011-02-09 17:29 . 2010-02-22 14:20 233848 c:\windows\$NtUninstallKB2483185$\spuninst\spuninst.exe
+ 2011-02-09 17:29 . 2008-04-14 03:21 439296 c:\windows\$NtUninstallKB2483185$\shimgvw.dll
+ 2011-02-09 17:29 . 2010-02-22 14:21 391032 c:\windows\$NtUninstallKB2479628$\spuninst\updspapi.dll
+ 2011-02-09 17:29 . 2010-02-22 14:20 233848 c:\windows\$NtUninstallKB2479628$\spuninst\spuninst.exe
+ 2011-02-09 17:29 . 2010-02-22 14:21 391032 c:\windows\$NtUninstallKB2478971$\spuninst\updspapi.dll
+ 2011-02-09 17:29 . 2010-02-22 14:20 233848 c:\windows\$NtUninstallKB2478971$\spuninst\spuninst.exe
+ 2011-02-09 17:29 . 2009-06-25 08:27 301568 c:\windows\$NtUninstallKB2478971$\kerberos.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 391032 c:\windows\$NtUninstallKB2478960$\spuninst\updspapi.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 233848 c:\windows\$NtUninstallKB2478960$\spuninst\spuninst.exe
+ 2011-02-09 17:27 . 2009-06-25 08:27 729088 c:\windows\$NtUninstallKB2478960$\lsasrv.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 391032 c:\windows\$NtUninstallKB2476687$\spuninst\updspapi.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 233848 c:\windows\$NtUninstallKB2476687$\spuninst\spuninst.exe
+ 2011-02-09 17:27 . 2010-07-05 13:13 391032 c:\windows\$NtUninstallKB2393802$\spuninst\updspapi.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 233848 c:\windows\$NtUninstallKB2393802$\spuninst\spuninst.exe
+ 2011-02-09 17:27 . 2009-02-09 10:56 709632 c:\windows\$NtUninstallKB2393802$\ntdll.dll
+ 2011-02-24 09:56 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB971029\update\updspapi.dll
+ 2011-02-24 09:56 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB971029\update\update.exe
+ 2011-02-24 09:56 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB971029\spuninst.exe
+ 2009-07-27 22:22 . 2009-07-27 22:22 135168 c:\windows\$hf_mig$\KB971029\SP3QFE\shsvcs.dll
+ 2011-02-09 17:29 . 2010-07-05 13:13 391032 c:\windows\$hf_mig$\KB2485376\update\updspapi.dll
+ 2011-02-09 17:29 . 2010-07-05 13:13 759160 c:\windows\$hf_mig$\KB2485376\update\update.exe
+ 2011-02-09 17:29 . 2010-07-05 13:13 233848 c:\windows\$hf_mig$\KB2485376\spuninst.exe
+ 2011-01-07 14:09 . 2011-01-07 14:09 290048 c:\windows\$hf_mig$\KB2485376\SP3QFE\atmfd.dll
+ 2011-02-09 17:29 . 2010-02-22 14:21 391032 c:\windows\$hf_mig$\KB2483185\update\updspapi.dll
+ 2011-02-09 17:29 . 2010-02-22 14:21 759160 c:\windows\$hf_mig$\KB2483185\update\update.exe
+ 2011-02-09 17:29 . 2010-02-22 14:20 233848 c:\windows\$hf_mig$\KB2483185\spuninst.exe
+ 2011-01-21 14:42 . 2011-01-21 14:42 440832 c:\windows\$hf_mig$\KB2483185\SP3QFE\shimgvw.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 391032 c:\windows\$hf_mig$\KB2482017-IE7\update\updspapi.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 759160 c:\windows\$hf_mig$\KB2482017-IE7\update\update.exe
+ 2011-02-09 17:27 . 2010-07-05 13:13 233848 c:\windows\$hf_mig$\KB2482017-IE7\spuninst.exe
+ 2010-12-20 23:14 . 2010-12-20 23:14 841216 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\wininet.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 233472 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\webcheck.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 105984 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\url.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 102912 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\occache.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 671232 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\mstime.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 193024 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\msrating.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 478208 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\mshtmled.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 468480 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\msfeeds.dll
+ 2010-12-20 10:49 . 2010-12-20 10:49 634648 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\iexplore.exe
+ 2010-12-20 23:14 . 2010-12-20 23:14 268288 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\iertutil.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 193024 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\iepeers.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 388608 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\iedkcs32.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 380928 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\ieapfltr.dll
+ 2010-12-20 10:48 . 2010-12-20 10:48 161792 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\ieakui.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 230400 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\ieaksie.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 153088 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\ieakeng.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 132608 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\extmgr.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 214528 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\dxtrans.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 347136 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\dxtmsft.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 124928 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\advpack.dll
+ 2011-02-09 17:29 . 2010-02-22 14:21 391032 c:\windows\$hf_mig$\KB2479628\update\updspapi.dll
+ 2011-02-09 17:29 . 2010-02-22 14:21 759160 c:\windows\$hf_mig$\KB2479628\update\update.exe
+ 2011-02-09 17:29 . 2010-02-22 14:20 233848 c:\windows\$hf_mig$\KB2479628\spuninst.exe
+ 2011-02-09 17:29 . 2010-02-22 14:21 391032 c:\windows\$hf_mig$\KB2478971\update\updspapi.dll
+ 2011-02-09 17:29 . 2010-02-22 14:21 759160 c:\windows\$hf_mig$\KB2478971\update\update.exe
+ 2011-02-09 17:29 . 2010-02-22 14:20 233848 c:\windows\$hf_mig$\KB2478971\spuninst.exe
+ 2010-12-22 12:32 . 2010-12-22 12:32 301568 c:\windows\$hf_mig$\KB2478971\SP3QFE\kerberos.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 391032 c:\windows\$hf_mig$\KB2478960\update\updspapi.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 759160 c:\windows\$hf_mig$\KB2478960\update\update.exe
+ 2011-02-09 17:27 . 2010-07-05 13:13 233848 c:\windows\$hf_mig$\KB2478960\spuninst.exe
+ 2010-12-20 17:24 . 2010-12-20 17:24 729088 c:\windows\$hf_mig$\KB2478960\SP3QFE\lsasrv.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 391032 c:\windows\$hf_mig$\KB2476687\update\updspapi.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 759160 c:\windows\$hf_mig$\KB2476687\update\update.exe
+ 2011-02-09 17:27 . 2010-07-05 13:13 233848 c:\windows\$hf_mig$\KB2476687\spuninst.exe
+ 2011-02-09 17:27 . 2010-07-05 13:13 391032 c:\windows\$hf_mig$\KB2393802\update\updspapi.dll
+ 2011-02-09 17:27 . 2010-07-05 13:13 759160 c:\windows\$hf_mig$\KB2393802\update\update.exe
+ 2011-02-09 17:27 . 2010-07-05 13:13 233848 c:\windows\$hf_mig$\KB2393802\spuninst.exe
+ 2011-02-09 17:01 . 2010-12-09 15:15 713216 c:\windows\$hf_mig$\KB2393802\SP3QFE\ntdll.dll
+ 2006-03-02 12:00 . 2010-12-31 14:04 1854976 c:\windows\system32\win32k.sys
+ 2006-03-02 12:00 . 2010-12-20 23:06 1168384 c:\windows\system32\urlmon.dll
- 2006-03-02 12:00 . 2010-11-06 00:25 1168384 c:\windows\system32\urlmon.dll
- 2006-03-02 12:00 . 2010-07-27 06:30 8466432 c:\windows\system32\shell32.dll
+ 2006-03-02 12:00 . 2011-01-21 14:44 8466432 c:\windows\system32\shell32.dll
+ 2006-03-02 12:00 . 2010-12-09 15:14 2194944 c:\windows\system32\ntoskrnl.exe
+ 2004-08-17 15:45 . 2010-12-09 15:14 2071552 c:\windows\system32\ntkrnlpa.exe
+ 2006-03-02 12:00 . 2010-12-20 23:06 3606528 c:\windows\system32\mshtml.dll
+ 2010-07-12 10:34 . 2011-03-24 06:08 6053536 c:\windows\system32\Macromed\Flash\NPSWF32.dll
- 2007-08-13 16:54 . 2010-11-06 00:25 6075904 c:\windows\system32\ieframe.dll
+ 2007-08-13 16:54 . 2010-12-20 23:06 6075904 c:\windows\system32\ieframe.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 1761128 c:\windows\system32\HPScanMiniDrv_DJ2050_510g.dll
+ 2011-02-11 11:04 . 2010-02-02 13:19 1761128 c:\windows\system32\DRVSTORE\HPScanMini_371D947BD868FDB86B3EF8D1DB49BA2EB4AA452C\drivers\scanner\x32\HPScanMiniDrv_DJ2050_510g.dll
+ 2009-08-14 15:15 . 2010-12-31 14:04 1854976 c:\windows\system32\dllcache\win32k.sys
- 2006-03-02 12:00 . 2010-11-06 00:25 1168384 c:\windows\system32\dllcache\urlmon.dll
+ 2006-03-02 12:00 . 2010-12-20 23:06 1168384 c:\windows\system32\dllcache\urlmon.dll
+ 2008-06-17 19:02 . 2011-01-21 14:44 8466432 c:\windows\system32\dllcache\shell32.dll
- 2008-06-17 19:02 . 2010-07-27 06:30 8466432 c:\windows\system32\dllcache\shell32.dll
+ 2010-04-01 01:02 . 2010-12-09 15:14 2194944 c:\windows\system32\dllcache\ntoskrnl.exe
+ 2010-04-01 01:02 . 2010-12-09 15:14 2029056 c:\windows\system32\dllcache\ntkrpamp.exe
+ 2009-02-10 17:09 . 2010-12-09 15:14 2071552 c:\windows\system32\dllcache\ntkrnlpa.exe
+ 2010-04-01 01:02 . 2010-12-09 15:14 2150912 c:\windows\system32\dllcache\ntkrnlmp.exe
+ 2006-03-02 12:00 . 2010-12-20 23:06 3606528 c:\windows\system32\dllcache\mshtml.dll
+ 2011-02-02 07:58 . 2011-02-02 07:58 2067456 c:\windows\system32\dllcache\lhmstscx.dll
+ 2010-04-08 05:44 . 2010-12-20 23:06 6075904 c:\windows\system32\dllcache\ieframe.dll
- 2010-04-08 05:44 . 2010-11-06 00:25 6075904 c:\windows\system32\dllcache\ieframe.dll
+ 2011-03-07 04:15 . 2011-03-07 04:15 1583104 c:\windows\Installer\3abf1.msi
+ 2011-02-11 11:04 . 2011-02-11 11:04 2607104 c:\windows\Installer\303168.msi
+ 2011-04-04 01:28 . 2011-04-04 01:28 1094656 c:\windows\Installer\14f449.msi
+ 2011-02-09 17:27 . 2010-11-06 00:25 1168384 c:\windows\ie7updates\KB2482017-IE7\urlmon.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 3604480 c:\windows\ie7updates\KB2482017-IE7\mshtml.dll
+ 2011-02-09 17:27 . 2010-11-06 00:25 6075904 c:\windows\ie7updates\KB2482017-IE7\ieframe.dll
+ 2010-04-01 01:02 . 2010-12-09 15:14 2194944 c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2010-04-01 01:02 . 2010-12-09 15:14 2029056 c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2009-02-10 17:09 . 2010-12-09 15:14 2071552 c:\windows\Driver Cache\i386\ntkrnlpa.exe
+ 2010-04-01 01:02 . 2010-12-09 15:14 2150912 c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2011-02-09 17:29 . 2010-07-27 06:30 8466432 c:\windows\$NtUninstallKB2483185$\shell32.dll
+ 2011-02-09 17:29 . 2010-10-26 13:58 1853312 c:\windows\$NtUninstallKB2479628$\win32k.sys
+ 2011-02-09 17:27 . 2010-04-28 18:15 2192128 c:\windows\$NtUninstallKB2393802$\ntoskrnl.exe
+ 2011-02-09 17:27 . 2010-04-28 05:45 2026496 c:\windows\$NtUninstallKB2393802$\ntkrpamp.exe
+ 2011-02-09 17:27 . 2010-04-28 05:45 2068992 c:\windows\$NtUninstallKB2393802$\ntkrnlpa.exe
+ 2011-02-09 17:27 . 2010-04-28 05:45 2148352 c:\windows\$NtUninstallKB2393802$\ntkrnlmp.exe
+ 2009-07-27 22:22 . 2009-07-27 22:22 8466944 c:\windows\$hf_mig$\KB971029\SP3QFE\shell32.dll
+ 2011-01-21 14:42 . 2011-01-21 14:42 8467456 c:\windows\$hf_mig$\KB2483185\SP3QFE\shell32.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 1171968 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\urlmon.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 3609088 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\mshtml.dll
+ 2010-12-20 23:14 . 2010-12-20 23:14 6080000 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\ieframe.dll
+ 2011-02-09 17:03 . 2009-06-29 08:33 2452872 c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\ieapfltr.dat
+ 2010-12-31 14:02 . 2010-12-31 14:02 1864064 c:\windows\$hf_mig$\KB2479628\SP3QFE\win32k.sys
+ 2011-02-09 17:01 . 2010-12-09 15:14 2194944 c:\windows\$hf_mig$\KB2393802\SP3QFE\ntoskrnl.exe
+ 2011-02-09 17:01 . 2010-12-09 15:14 2029056 c:\windows\$hf_mig$\KB2393802\SP3QFE\ntkrpamp.exe
+ 2010-12-09 19:44 . 2010-12-09 19:44 2071552 c:\windows\$hf_mig$\KB2393802\SP3QFE\ntkrnlpa.exe
+ 2011-02-09 17:01 . 2010-12-09 15:14 2150912 c:\windows\$hf_mig$\KB2393802\SP3QFE\ntkrnlmp.exe
+ 2010-04-04 15:21 . 2011-03-09 02:16 37943240 c:\windows\system32\MRT.exe
+ 2011-02-24 09:56 . 2011-02-24 09:56 20308992 c:\windows\Installer\3db2586.msp
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{34AB3C4C-DA1A-4067-96F4-31452C7CFE65}"= "c:\program files\Seznam.cz\listicka.dll" [2010-10-07 1961240]
.
[HKEY_CLASSES_ROOT\clsid\{34ab3c4c-da1a-4067-96f4-31452c7cfe65}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SJelite3Launch"="c:\documents and settings\Pavla\Data aplikací\Transcend\SJelite3\SJelite3Launch.exe" [2009-09-18 176128]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2008-02-28 1828136]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-01-26 15026056]
"Free Download Manager - RCS"="c:\program files\Free Download Manager\fdmwi.exe" [2009-01-28 53248]
"Seznam Postak"="c:\program files\Seznam.cz\postak.exe" [2010-10-07 488728]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nwiz"="nwiz.exe" [2007-06-28 1626112]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-06-28 8466432]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-09-07 2838912]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-06-28 81920]
"ASUSGamerOSD"="c:\program files\ASUS\GamerOSD\GamerOSD.exe" [2007-07-12 380928]
"SoundMan"="SOUNDMAN.EXE" [2004-12-22 77824]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-02-18 2221352]
"ToniArts EasyCleaner"="c:\program files\ToniArts\EasyCleaner\EasyClea.exe" [2005-01-14 2117632]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\Pavla\Nabˇdka Start\Programy\Po spuçtŘnˇ\
YoWindow.lnk - c:\program files\YoWindow\yowindow.exe [2010-8-24 729600]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"lxcgmon.exe"="c:\program files\Lexmark 2300 Series\lxcgmon.exe"
"EzPrint"="c:\program files\Lexmark 2300 Series\ezprint.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Trillian\\trillian.exe"=
"c:\\Program Files\\ICQ7.1\\ICQ.exe"=
"c:\\Program Files\\ICQ7.1\\aolload.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\Google\\Google Earth\\plugin\\geplugin.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Java\\jre6\\launch4j-tmp\\frd.exe"=
"c:\\Program Files\\Free Download Manager\\fdmwi.exe"=
"c:\\Program Files\\TeamViewer\\Version6\\TeamViewer.exe"=
"c:\\Program Files\\TeamViewer\\Version6\\TeamViewer_Service.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [6.6.2010 19:29 165584]
R1 ShldDrv;Panda File Shield Driver;c:\windows\system32\drivers\ShlDrv51.sys [22.9.2010 19:33 37896]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [6.6.2010 19:29 17744]
R2 PavProc;Panda Process Protection Driver;c:\windows\system32\drivers\PavProc.sys [22.9.2010 19:33 163336]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service;c:\program files\Common Files\PC Tools\sMonitor\StartManSvc.exe [2.4.2011 23:06 632792]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [25.2.2010 10:59 1047880]
R3 AsAudioDevice_351;AsAudioDevice_351;c:\windows\system32\drivers\AsAudioDevice_351.sys [21.2.2010 11:49 16640]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [25.2.2010 10:18 10064]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [15.5.2010 19:09 135664]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
2011-03-30 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
.
2011-04-02 c:\windows\Tasks\At1.job
- c:\program files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2010-02-02 10:15]
.
2011-04-03 c:\windows\Tasks\At2.job
- c:\program files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2010-02-02 10:15]
.
2011-04-02 c:\windows\Tasks\At3.job
- c:\program files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2010-02-02 10:15]
.
2011-03-30 c:\windows\Tasks\At4.job
- c:\program files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2010-02-02 10:15]
.
2011-04-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-15 17:09]
.
2011-04-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-15 17:09]
.
2011-04-01 c:\windows\Tasks\Norton Security Scan for Pavla.job
- c:\program files\Norton Security Scan\Engine\2.7.3.34\Nss.exe [2011-01-11 03:14]
.
2011-04-03 c:\windows\Tasks\RMSchedule.job
- c:\program files\Registry Mechanic\RegMech.exe [2011-04-03 15:05]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: &Download All using 4shared Desktop - c:\program files\4shared Desktop\down_all.htm
IE: + &Mass Downloader: download this file - c:\program files\Mass Downloader\Add_Url.htm
IE: + Mass Downloader: download &All files - c:\program files\Mass Downloader\Add_All.htm
IE: Stáhnout Free Download Managerem - file://c:\program files\Free Download Manager\dllink.htm
IE: Stáhnout video Free Download Managerem - file://c:\program files\Free Download Manager\dlfvideo.htm
IE: Stáhnout vybrané Free Download Managerem - file://c:\program files\Free Download Manager\dlselected.htm
IE: Stáhnout vše Free Download Managerem - file://c:\program files\Free Download Manager\dlall.htm
IE: WikiKomentáře Google... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
IE: {{71BFC818-0CED-42D6-9C87-5142918957EE} - c:\program files\ICQ7.1\ICQ.exe
FF - ProfilePath - c:\documents and settings\Pavla\Data aplikací\Mozilla\Firefox\Profiles\mlj2g7hv.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as ... ource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Ask.com
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/ig
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_result ... 2.0.0.2&q=
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-04-04 05:57
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10h_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10h_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(2692)
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Celkový čas: 2011-04-04 05:59:26
ComboFix-quarantined-files.txt 2011-04-04 03:59
ComboFix2.txt 2011-01-19 11:11
.
Před spuštěním: Volných bajtů: 12 608 262 144
Po spuštění: Volných bajtů: 12 584 456 192
.
- - End Of File - - 2621C50A39626DE6F45E6BFA9D3327E1

[Žbeky]

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::

Folder::
C:\Program Files\Common Files\Panda Security

File::
c:\windows\system32\drivers\ShlDrv51.sys
c:\windows\system32\drivers\PavProc.sys
c:\windows\Tasks\AppleSoftwareUpdate.job
c:\windows\Tasks\At1.job
c:\windows\Tasks\At2.job
c:\windows\Tasks\At3.job
c:\windows\Tasks\At4.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\Norton Security Scan for Pavla.job

Registry::
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{34AB3C4C-DA1A-4067-96F4-31452C7CFE65}"=-
[-HKEY_CLASSES_ROOT\clsid\{34ab3c4c-da1a-4067-96f4-31452c7cfe65}]
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000000

Driver::
PavProc
ShldDrv

Firefox::
FF - ProfilePath - c:\documents and settings\Pavla\Data aplikací\Mozilla\Firefox\Profiles\mlj2g7hv.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as ... ource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Ask.com
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_result ... 2.0.0.2&q=

RegLock::
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.

Toto otestuj na Virustotal
c:\windows\system32\CleanMFT32.exe

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/40 , nebo 1/40. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu

[Ivey]

0 VT Community user(s) with a total of 0 reputation credit(s) say(s) this sample is goodware. 0 VT Community user(s) with a total of 0 reputation credit(s) say(s) this sample is malware.
File name: CleanMFT32.exe
Submission date: 2011-04-04 18:17:21 (UTC)
Current status: finished
Result: 0/ 41 (0.0%)
VT Community

not reviewed
Safety score: -
Compact
Print results
Antivirus Version Last Update Result
AhnLab-V3 2011.04.05.00 2011.04.04 -
AntiVir 7.11.5.186 2011.04.04 -
Antiy-AVL 2.0.3.7 2011.04.04 -
Avast 4.8.1351.0 2011.04.04 -
Avast5 5.0.677.0 2011.04.04 -
AVG 10.0.0.1190 2011.04.04 -
BitDefender 7.2 2011.04.04 -
CAT-QuickHeal 11.00 2011.04.03 -
ClamAV 0.97.0.0 2011.04.04 -
Commtouch 5.2.11.5 2011.03.24 -
Comodo 8219 2011.04.04 -
Emsisoft 5.1.0.5 2011.04.04 -
eSafe 7.0.17.0 2011.04.04 -
eTrust-Vet 36.1.8251 2011.04.04 -
F-Prot 4.6.2.117 2011.04.04 -
F-Secure 9.0.16440.0 2011.04.02 -
Fortinet 4.2.254.0 2011.04.02 -
GData 22 2011.04.04 -
Ikarus T3.1.1.103.0 2011.04.04 -
Jiangmin 13.0.900 2011.03.31 -
K7AntiVirus 9.96.4290 2011.04.04 -
Kaspersky 7.0.0.125 2011.04.04 -
McAfee 5.400.0.1158 2011.04.04 -
McAfee-GW-Edition 2010.1C 2011.04.04 -
Microsoft 1.6702 2011.04.04 -
NOD32 6014 2011.04.04 -
Norman 6.07.07 2011.04.04 -
Panda 10.0.3.5 2011.04.04 -
PCTools 7.0.3.5 2011.04.04 -
Prevx 3.0 2011.04.04 -
Rising 23.51.05.05 2011.04.02 -
Sophos 4.64.0 2011.04.04 -
SUPERAntiSpyware 4.40.0.1006 2011.04.04 -
Symantec 20101.3.2.89 2011.04.04 -
TheHacker 6.7.0.1.164 2011.04.04 -
TrendMicro 9.200.0.1012 2011.04.04 -
TrendMicro-HouseCall 9.200.0.1012 2011.04.04 -
VBA32 3.12.14.3 2011.04.04 -
VIPRE 8919 2011.04.04 -
ViRobot 2011.4.4.4392 2011.04.04 -
VirusBuster 13.6.287.0 2011.04.04 -
Additional informationShow all
MD5 : 59d87c673b8589d5f2622884e128c882
SHA1 : 8824d8f169fcb37666e69b363046b545fd88db6b
SHA256: 8615bf29dc22bb0fe8d45c55bc6f360aea1a733de1424794988aec1209d52c13

[Žbeky]

OK, tak ještě ten nový CF log co ti vyjel po skriptu

[Ivey]

ComboFix 11-04-03.03 - Pavla 04.04.2011 22:00:32.6.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1375 [GMT 2:00]
Spuštěný z: c:\documents and settings\Pavla\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Pavla\Plocha\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
FILE ::
"c:\windows\system32\drivers\PavProc.sys"
"c:\windows\system32\drivers\ShlDrv51.sys"
"c:\windows\Tasks\AppleSoftwareUpdate.job"
"c:\windows\Tasks\At1.job"
"c:\windows\Tasks\At2.job"
"c:\windows\Tasks\At3.job"
"c:\windows\Tasks\At4.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\Tasks\Norton Security Scan for Pavla.job"
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-03-04 do 2011-04-04 )))))))))))))))))))))))))))))))
.
.
2011-04-04 03:16 . 2010-12-20 16:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-04-04 03:16 . 2011-04-04 03:16 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-04-04 03:16 . 2010-12-20 16:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-04-04 01:28 . 2011-04-04 01:28 388096 ----a-r- c:\documents and settings\Pavla\Data aplikací\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-04-03 23:57 . 2011-04-03 23:57 -------- d-----w- c:\program files\ToniArts
2011-04-03 23:44 . 2011-04-03 23:44 -------- d-----w- c:\documents and settings\Pavla\Data aplikací\Registry Mechanic
2011-04-02 21:06 . 2010-09-16 10:26 37336 ----a-w- c:\windows\system32\CleanMFT32.exe
2011-04-02 21:06 . 2008-04-02 14:54 1101824 ----a-w- c:\windows\system32\UniBox210.ocx
2011-04-02 21:06 . 2008-04-02 14:53 212992 ----a-w- c:\windows\system32\UniBoxVB12.ocx
2011-04-02 21:06 . 2008-04-02 14:53 880640 ----a-w- c:\windows\system32\UniBox10.ocx
2011-04-02 21:06 . 2008-09-17 20:17 658432 ----a-w- c:\windows\system32\MSCOMCT2.OCX
2011-04-02 21:06 . 2011-04-02 21:06 -------- d-----w- c:\program files\Common Files\PC Tools
2011-04-02 21:05 . 2011-04-03 23:46 -------- d---a-w- c:\documents and settings\All Users\Data aplikací\TEMP
2011-03-30 10:06 . 2011-03-18 18:05 142296 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll
2011-03-30 10:06 . 2011-03-18 18:05 781272 ----a-w- c:\program files\Mozilla Firefox\mozsqlite3.dll
2011-03-30 10:06 . 2011-03-18 18:05 728024 ----a-w- c:\program files\Mozilla Firefox\libGLESv2.dll
2011-03-30 10:06 . 2011-03-18 18:05 1975768 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_42.dll
2011-03-30 10:06 . 2011-03-18 18:05 1893336 ----a-w- c:\program files\Mozilla Firefox\d3dx9_42.dll
2011-03-30 10:06 . 2011-03-18 18:05 1874904 ----a-w- c:\program files\Mozilla Firefox\mozjs.dll
2011-03-30 10:06 . 2011-03-18 18:05 15832 ----a-w- c:\program files\Mozilla Firefox\mozalloc.dll
2011-03-30 10:06 . 2011-03-18 18:05 142296 ----a-w- c:\program files\Mozilla Firefox\libEGL.dll
2011-03-17 13:50 . 2011-03-17 13:50 -------- d-----w- c:\documents and settings\Pavla\Local Settings\Data aplikací\Downloaded Installations
2011-03-12 07:15 . 2011-03-14 09:06 -------- d-----w- c:\program files\Recepty doma
2011-03-07 04:15 . 2011-03-07 04:15 -------- d-----w- c:\program files\Common Files\Skype
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-04-01 16:22 . 2010-03-31 17:00 196608 ----a-w- c:\windows\system32\drivers\nStandard.bin
2011-02-09 13:53 . 2006-03-02 12:00 270848 ----a-w- c:\windows\system32\sbe.dll
2011-02-09 13:53 . 2006-03-02 12:00 186880 ----a-w- c:\windows\system32\encdec.dll
2011-02-02 07:58 . 2010-03-31 11:16 2067456 ----a-w- c:\windows\system32\mstscax.dll
2011-01-27 11:57 . 2010-03-31 11:16 677888 ----a-w- c:\windows\system32\mstsc.exe
2011-01-21 14:44 . 2006-03-02 12:00 440320 ----a-w- c:\windows\system32\shimgvw.dll
2011-01-07 14:09 . 2006-03-02 12:00 290048 ----a-w- c:\windows\system32\atmfd.dll
2011-03-18 18:05 . 2011-03-30 10:06 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SJelite3Launch"="c:\documents and settings\Pavla\Data aplikací\Transcend\SJelite3\SJelite3Launch.exe" [2009-09-18 176128]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2008-02-28 1828136]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-01-26 15026056]
"Free Download Manager - RCS"="c:\program files\Free Download Manager\fdmwi.exe" [2009-01-28 53248]
"Seznam Postak"="c:\program files\Seznam.cz\postak.exe" [2010-10-07 488728]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nwiz"="nwiz.exe" [2007-06-28 1626112]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-06-28 8466432]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-09-07 2838912]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-06-28 81920]
"ASUSGamerOSD"="c:\program files\ASUS\GamerOSD\GamerOSD.exe" [2007-07-12 380928]
"SoundMan"="SOUNDMAN.EXE" [2004-12-22 77824]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-02-18 2221352]
"ToniArts EasyCleaner"="c:\program files\ToniArts\EasyCleaner\EasyClea.exe" [2005-01-14 2117632]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\Pavla\Nabˇdka Start\Programy\Po spuçtŘnˇ\
YoWindow.lnk - c:\program files\YoWindow\yowindow.exe [2010-8-24 729600]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"lxcgmon.exe"="c:\program files\Lexmark 2300 Series\lxcgmon.exe"
"EzPrint"="c:\program files\Lexmark 2300 Series\ezprint.exe"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Trillian\\trillian.exe"=
"c:\\Program Files\\ICQ7.1\\ICQ.exe"=
"c:\\Program Files\\ICQ7.1\\aolload.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\Google\\Google Earth\\plugin\\geplugin.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Java\\jre6\\launch4j-tmp\\frd.exe"=
"c:\\Program Files\\Free Download Manager\\fdmwi.exe"=
"c:\\Program Files\\TeamViewer\\Version6\\TeamViewer.exe"=
"c:\\Program Files\\TeamViewer\\Version6\\TeamViewer_Service.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [6.6.2010 19:29 165584]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [6.6.2010 19:29 17744]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service;c:\program files\Common Files\PC Tools\sMonitor\StartManSvc.exe [2.4.2011 23:06 632792]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [25.2.2010 10:59 1047880]
R3 AsAudioDevice_351;AsAudioDevice_351;c:\windows\system32\drivers\AsAudioDevice_351.sys [21.2.2010 11:49 16640]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [25.2.2010 10:18 10064]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [15.5.2010 19:09 135664]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
2011-04-03 c:\windows\Tasks\RMSchedule.job
- c:\program files\Registry Mechanic\RegMech.exe [2011-04-03 15:05]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: &Download All using 4shared Desktop - c:\program files\4shared Desktop\down_all.htm
IE: + &Mass Downloader: download this file - c:\program files\Mass Downloader\Add_Url.htm
IE: + Mass Downloader: download &All files - c:\program files\Mass Downloader\Add_All.htm
IE: Stáhnout Free Download Managerem - file://c:\program files\Free Download Manager\dllink.htm
IE: Stáhnout video Free Download Managerem - file://c:\program files\Free Download Manager\dlfvideo.htm
IE: Stáhnout vybrané Free Download Managerem - file://c:\program files\Free Download Manager\dlselected.htm
IE: Stáhnout vše Free Download Managerem - file://c:\program files\Free Download Manager\dlall.htm
IE: WikiKomentáře Google... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
IE: {{71BFC818-0CED-42D6-9C87-5142918957EE} - c:\program files\ICQ7.1\ICQ.exe
FF - ProfilePath - c:\documents and settings\Pavla\Data aplikací\Mozilla\Firefox\Profiles\mlj2g7hv.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/ig
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-04-04 22:05
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(2272)
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Nero\Nero8\Nero BackItUp\NBService.exe
c:\windows\system32\RUNDLL32.EXE
c:\windows\SOUNDMAN.EXE
c:\windows\system32\rundll32.exe
c:\windows\system32\IoctlSvc.exe
c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
c:\program files\Common Files\Nero\Lib\NMIndexingService.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\program files\Skype\Plugin Manager\skypePM.exe
.
**************************************************************************
.
Celkový čas: 2011-04-04 22:08:57 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-04-04 20:08
ComboFix2.txt 2011-04-04 05:40
ComboFix3.txt 2011-04-04 05:03
ComboFix4.txt 2011-04-04 03:59
ComboFix5.txt 2011-04-04 19:59
.
Před spuštěním: Volných bajtů: 12 517 773 312
Po spuštění: Volných bajtů: 12 453 797 888
.
- - End Of File - - 31C5B005AC0133F88759965E2B4DF12E

[Žbeky]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj AVG , Avast,Avira či Microsoft Security Essentials následně T-Cleaner smaž a zapni si AVG , Avast, Avira či Microsoft Security Essentials

+ Nový log z HJT

Jak se chová PC?

[Ivey]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:46:37, on 5.4.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17095)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\ToniArts\EasyCleaner\EasyClea.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Free Download Manager\fdmwi.exe
C:\Program Files\YoWindow\yowindow.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Documents and Settings\Pavla\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Pavla\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Pavla\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Pavla\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Pavla\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Pavla\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Program Files\VS Revo Group\Revo Uninstaller\revouninstaller.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ASUSGamerOSD] C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [ToniArts EasyCleaner] "C:\Program Files\ToniArts\EasyCleaner\EasyClea.exe" -s -startup
O4 - HKCU\..\Run: [SJelite3Launch] C:\Documents and Settings\Pavla\Data aplikací\Transcend\SJelite3\SJelite3Launch.exe
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Free Download Manager - RCS] C:\Program Files\Free Download Manager\fdmwi.exe -autorun
O4 - HKCU\..\Run: [Seznam Postak] "C:\Program Files\Seznam.cz\postak.exe" -s
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: YoWindow.lnk = C:\Program Files\YoWindow\yowindow.exe
O8 - Extra context menu item: &Download All using 4shared Desktop - C:\Program Files\4shared Desktop\down_all.htm
O8 - Extra context menu item: + &Mass Downloader: download this file - C:\Program Files\Mass Downloader\Add_Url.htm
O8 - Extra context menu item: + Mass Downloader: download &All files - C:\Program Files\Mass Downloader\Add_All.htm
O8 - Extra context menu item: Stáhnout Free Download Managerem - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stáhnout video Free Download Managerem - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Stáhnout vybrané Free Download Managerem - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Stáhnout vše Free Download Managerem - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
O9 - Extra button: Mass Downloader - {0FD01980-CCCB-11D3-80D4-0000E80E2EDE} - C:\Program Files\Mass Downloader\massdown.exe
O9 - Extra 'Tools' menuitem: &Mass Downloader - {0FD01980-CCCB-11D3-80D4-0000E80E2EDE} - C:\Program Files\Mass Downloader\massdown.exe
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files\ICQ7.1\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files\ICQ7.1\ICQ.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

--
End of file - 9175
PC je mnohem rychlejší a snad i to občasné zamrznutí bylo odstraněno.

[Žbeky]

HJT už je OK, pokud nejsou problémy, můžeš dát vyřešeno. Z mojí strany to je vše.