prosim o kontrolu logu - doporuceno

Kamos · Příspěvekod **Kamos** » 12 dub 2011 17:14

Logfile of Trend Micro HijackThis v2.0.3 (BETA)
Scan saved at 17:11:13, on 12.4.2011
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16722)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Glary Utilities\memdefrag.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Seznam.cz\postak.exe
C:\Program Files (x86)\NCsoft\Launcher\NCLauncher.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Taťka a mamka\AppData\Local\Playata Client\PlayataClient.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
C:\Program Files (x86)\Driver-Soft\SuperOvladac\TaskTray.exe
C:\Program Files (x86)\ICQ7.4\ICQ.exe
C:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\TrendMicro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.centrum.cz/index.php?tool ... trum-1.0.0
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.centrum.cz/index.php?tool ... trum-1.0.0
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://search.centrum.cz/index.php?tool ... trum-1.0.0
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.centrum.cz/index.php?tool ... trum-1.0.0
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - {6edc3889-b841-4127-a2bf-c5fc48f972c7} - (no file)
R3 - URLSearchHook: (no name) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - (no file)
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files (x86)\Seznam.cz\core.3.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O2 - BHO: SweetFB Helper - {EEE6C36B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Social\mgFB.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Lišta Centrum.cz Toolbar - {D5D47440-0750-463D-BAEF-A47D02414806} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SweetIM] C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [TaskTray] C:\Program Files (x86)\Driver-Soft\SuperOvladac\TaskTray.exe
O4 - HKCU\..\Run: [Glary Memory Optimizer] "C:\Program Files (x86)\Glary Utilities\memdefrag.exe" /autostart
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [Seznam Postak] "C:\Program Files (x86)\Seznam.cz\postak.exe" -s
O4 - HKCU\..\Run: [NCsoft Launcher] C:\Program Files (x86)\NCsoft\Launcher\NCLauncher.exe /Minimized
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [ICQ] ~"C:\Program Files (x86)\ICQ7.4\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [PlayataClient] "C:\Users\Taťka a mamka\AppData\Local\Playata Client\PlayataClient.exe" -silent
O4 - Global Startup: Bandwidth Meter.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{D478DE80-DC8B-40BB-9F2D-9410A09378E7}: NameServer = 10.0.0.138
O18 - Protocol: centrumcztoolbar - {61A97628-7C82-4315-957A-C74C2CDD85DF} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD Reservation Manager - Advanced Micro Devices - C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13192 bytes

Reklama

Příspěvekod **Žbeky** » 12 dub 2011 17:49

Odinstaluj:
Lišta Centrum.cz Toolba
DAEMON Tools Toolbar
ICQToolBar
SweetIM Toolbar

V HJT fixni:

Kód: Vybrat vše

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.centrum.cz/index.php?tool ... trum-1.0.0
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.centrum.cz/index.php?tool ... trum-1.0.0
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://search.centrum.cz/index.php?tool ... trum-1.0.0
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.centrum.cz/index.php?tool ... trum-1.0.0
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - {6edc3889-b841-4127-a2bf-c5fc48f972c7} - (no file)
R3 - URLSearchHook: (no name) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - (no file)
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files (x86)\Seznam.cz\core.3.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O2 - BHO: SweetFB Helper - {EEE6C36B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Social\mgFB.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Lišta Centrum.cz Toolbar - {D5D47440-0750-463D-BAEF-A47D02414806} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
O4 - HKLM\..\Run: [TaskTray] C:\Program Files (x86)\Driver-Soft\SuperOvladac\TaskTray.exe
O13 - Gopher Prefix: 
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O18 - Protocol: centrumcztoolbar - {61A97628-7C82-4315-957A-C74C2CDD85DF} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Kamos · Příspěvekod **Kamos** » 12 dub 2011 18:29

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Verze databáze: 6342

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

12.4.2011 18:28:26
mbam-log-2011-04-12 (18-28-26).txt

Typ kontroly: Rychlý test
Testované objekty: 167574
Uplynulý čas: 6 minut, 55 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

Příspěvekod **Žbeky** » 12 dub 2011 18:55

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah

Kamos · Příspěvekod **Kamos** » 12 dub 2011 23:24

combofix.exe nejde nainstalovat hazi nejakou chybu

mam win 7ky

Příspěvekod **memphisto** » 13 dub 2011 02:09

Combofix na W7 běží už dávno. Dokonce i na 64 bit OS, takže na Win to neházej :smile:

Zkus to v nouzovém režimu

Kamos · Příspěvekod **Kamos** » 13 dub 2011 04:56

nic na win 7 nehazim jen jsem psal co mam za OS jinak se me to podarilo nainstalovat az po nove m stazeni comba nejak se nestahnul celej
tak jsem combo spustil a pri vyhledavani to pokazde spadlo tak jsem to spustil v nouzovem rezimu a povedlose udelal log tak ho sem davam ale je udelanej v nouzovem rezimu jestli to ma nejakej vliv

ComboFix 11-04-12.01 - Taťka a mamka 13.04.2011 4:46.1.2 - x64 NETWORK
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.2047.1106 [GMT 2:00]
Spuštěný z: c:\users\Taťka a mamka\Desktop\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
SP: avast! Antivirus *Enabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\bandwidthmeter\BandwidthMeter.exe
c:\users\Taťka a mamka\AppData\Roaming\.#
c:\users\Taťka a mamka\AppData\Roaming\Microsoft\Windows\Recent\ChattChitto RG.url
c:\windows\ST6UNST.000
c:\windows\system32\settings.ini
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-03-13 do 2011-04-13 )))))))))))))))))))))))))))))))
.
.
2011-04-13 02:52 . 2011-04-13 02:52 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-04-13 02:36 . 2011-02-23 13:57 505176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-04-12 21:36 . 2011-04-12 21:36 -------- d-----w- c:\users\Taťka a mamka\AppData\Local\ATI
2011-04-12 21:16 . 2011-04-12 21:22 301568 ----a-w- c:\windows\SysWow64\cmd.execf
2011-04-12 15:34 . 2011-04-12 15:34 -------- d-----w- c:\users\Taťka a mamka\AppData\Roaming\Malwarebytes
2011-04-12 15:34 . 2010-12-20 16:09 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-04-12 15:34 . 2011-04-12 15:34 -------- d-----w- c:\programdata\Malwarebytes
2011-04-12 15:34 . 2011-04-12 15:34 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-04-12 15:34 . 2010-12-20 16:08 24152 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-04-12 15:10 . 2011-04-12 15:10 388096 ----a-r- c:\users\Taťka a mamka\AppData\Roaming\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe
2011-04-12 15:10 . 2011-04-12 15:10 -------- d-----w- c:\program files (x86)\TrendMicro
2011-04-12 15:00 . 2011-04-12 15:00 388096 ----a-r- c:\users\Taťka a mamka\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-04-12 15:00 . 2011-04-12 15:00 -------- d-----w- c:\program files (x86)\Trend Micro
2011-04-12 14:50 . 2011-04-12 14:50 -------- d---a-w- c:\windows\VDLL.DLL
2011-04-12 14:50 . 2011-04-12 14:50 -------- d---a-w- c:\windows\SysWow64\runouce.exe
2011-04-12 14:50 . 2011-04-12 14:50 -------- d---a-w- c:\windows\rundll16.exe
2011-04-12 14:50 . 2011-04-12 14:50 -------- d---a-w- c:\windows\RUNDL132.EXE
2011-04-12 14:50 . 2011-04-12 14:50 -------- d---a-w- c:\windows\logo1_.exe
2011-04-12 14:50 . 2011-04-12 14:50 -------- d---a-w- c:\windows\logo_1.exe
2011-04-12 14:49 . 2011-04-12 14:49 -------- d-----w- c:\program files\CPUID
2011-04-12 14:49 . 2010-11-09 12:35 21992 ----a-w- c:\windows\system32\drivers\cpuz135_x64.sys
2011-04-12 14:43 . 2011-04-12 14:43 632064 ----a-w- c:\windows\SysWow64\msvcr80.dll
2011-04-12 14:43 . 2011-04-12 14:43 554240 ----a-w- c:\windows\SysWow64\msvcp80.dll
2011-04-12 14:43 . 2011-04-12 14:43 34048 ----a-w- c:\windows\SysWow64\eEmpty.exe
2011-04-12 14:43 . 2011-04-12 14:43 -------- d-----w- c:\program files (x86)\Common Files\MicroWorld
2011-04-12 14:43 . 2011-04-12 14:43 -------- d-----w- c:\programdata\MicroWorld
2011-04-12 14:36 . 2011-04-12 14:36 -------- d-----w- c:\program files\CCleaner
2011-04-08 21:23 . 2011-03-15 05:17 8424784 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{71F18903-8C90-41FB-95FE-4719998FCE49}\mpengine.dll
2011-04-07 10:13 . 2011-04-07 10:17 -------- d-----w- c:\users\Taťka a mamka\AppData\Local\Playata Client
2011-04-02 10:06 . 2011-04-02 10:13 -------- d-----w- c:\program files\The Stalin Subway
2011-04-01 09:37 . 2011-04-01 09:37 -------- d-----w- c:\program files (x86)\Common Files\Skype
2011-04-01 06:54 . 2011-02-16 15:11 74272 ----a-w- c:\windows\system32\RtNicProp64.dll
2011-04-01 06:54 . 2011-02-16 15:11 428136 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2011-04-01 06:54 . 2011-04-01 06:54 -------- d-----w- c:\program files (x86)\Realtek
2011-03-29 16:34 . 2011-03-29 16:34 -------- d-----w- c:\users\Taťka a mamka\AppData\Roaming\InstallShield
2011-03-29 15:49 . 2011-03-29 15:49 -------- d-----w- c:\programdata\SlySoft
2011-03-29 15:45 . 2011-03-29 15:45 -------- d-----w- c:\program files (x86)\SlySoft
2011-03-29 14:41 . 2011-03-29 14:41 -------- d-----w- c:\program files (x86)\The Ultimate File Splitter 1.0
2011-03-28 23:23 . 2011-03-18 17:55 142296 ----a-w- c:\program files (x86)\Mozilla Firefox\components\browsercomps.dll
2011-03-28 23:23 . 2011-03-18 17:55 781272 ----a-w- c:\program files (x86)\Mozilla Firefox\mozsqlite3.dll
2011-03-28 23:23 . 2011-03-18 17:55 728024 ----a-w- c:\program files (x86)\Mozilla Firefox\libGLESv2.dll
2011-03-28 23:23 . 2011-03-18 17:55 1874904 ----a-w- c:\program files (x86)\Mozilla Firefox\mozjs.dll
2011-03-28 23:23 . 2011-03-18 17:55 15832 ----a-w- c:\program files (x86)\Mozilla Firefox\mozalloc.dll
2011-03-28 23:23 . 2011-03-18 17:55 1893336 ----a-w- c:\program files (x86)\Mozilla Firefox\d3dx9_42.dll
2011-03-28 23:23 . 2011-03-18 17:55 142296 ----a-w- c:\program files (x86)\Mozilla Firefox\libEGL.dll
2011-03-28 23:23 . 2011-03-18 17:55 1975768 ----a-w- c:\program files (x86)\Mozilla Firefox\D3DCompiler_42.dll
2011-03-25 11:06 . 2011-04-13 02:51 -------- d-----w- C:\BandwidthMeter
2011-03-25 10:34 . 2011-03-25 10:34 -------- d-----w- c:\program files (x86)\Driver-Soft
2011-03-21 09:48 . 2011-03-21 09:52 -------- d-----w- c:\program files (x86)\The KMPlayer
2011-03-18 08:12 . 2011-04-12 15:59 -------- d-----w- c:\program files (x86)\SweetIM
2011-03-18 08:12 . 2011-03-18 08:12 -------- d-----w- c:\programdata\SweetIM
2011-03-17 16:35 . 2011-03-17 16:35 -------- d-----w- c:\program files (x86)\TopCD
2011-03-14 10:44 . 2011-03-14 10:46 -------- d-----w- c:\users\Taťka a mamka\AppData\Local\ElevatedDiagnostics
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-04-12 15:10 . 2011-04-12 15:10 388096 ----a-r- c:\users\Taťka a mamka\AppData\Roaming\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe
2011-04-12 15:10 . 2011-04-12 15:10 388096 ----a-r- c:\users\Taťka a mamka\AppData\Roaming\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe
2011-04-12 15:00 . 2011-04-12 15:00 388096 ----a-r- c:\users\Taťka a mamka\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-04-12 15:00 . 2011-04-12 15:00 388096 ----a-r- c:\users\Taťka a mamka\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-03-11 12:19 . 2010-06-24 10:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-03-06 19:57 . 2010-12-26 21:26 319488 ----a-w- c:\windows\HideWin.exe
2011-02-23 14:04 . 2010-12-26 23:32 40648 ----a-w- c:\windows\avastSS.scr
2011-02-23 14:04 . 2010-12-26 23:32 190016 ----a-w- c:\windows\SysWow64\aswBoot.exe
2011-02-23 14:04 . 2011-01-19 17:36 238968 ----a-w- c:\windows\system32\aswBoot.exe
2011-02-23 13:57 . 2010-12-26 23:36 280408 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-02-23 13:55 . 2010-12-26 23:36 53592 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-02-23 13:55 . 2010-12-26 23:36 31064 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-02-23 13:55 . 2010-12-26 23:36 64344 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-02-23 13:54 . 2010-12-26 23:36 22360 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-02-19 06:37 . 2011-03-09 08:09 1135104 ----a-w- c:\windows\system32\FntCache.dll
2011-02-19 06:37 . 2011-03-09 08:09 1540608 ----a-w- c:\windows\system32\DWrite.dll
2011-02-19 06:36 . 2011-03-09 08:09 902656 ----a-w- c:\windows\system32\d2d1.dll
2011-02-19 05:32 . 2011-03-09 08:09 1074176 ----a-w- c:\windows\SysWow64\DWrite.dll
2011-02-19 05:32 . 2011-03-09 08:09 739840 ----a-w- c:\windows\SysWow64\d2d1.dll
2011-02-16 15:11 . 2010-01-05 15:39 107552 ----a-w- c:\windows\system32\RTNUninst64.dll
2011-02-07 15:27 . 2011-02-07 15:26 475136 ------w- c:\windows\Setup1.exe
2011-02-07 15:27 . 2011-02-07 15:25 73216 ----a-w- c:\windows\ST6UNST.EXE
2011-02-02 17:11 . 2010-12-26 20:51 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-02-02 13:31 . 2011-02-02 13:31 499712 ----a-w- c:\windows\SysWow64\msvcp71.dll
2011-02-02 13:31 . 2011-02-02 13:31 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll
2011-01-26 06:53 . 2011-02-08 19:10 982912 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2011-01-26 06:53 . 2011-02-08 19:10 265088 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2011-01-26 06:31 . 2011-02-08 19:10 144384 ----a-w- c:\windows\system32\cdd.dll
2011-01-14 18:12 . 2011-01-14 18:12 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-01-13 14:12 . 1998-07-12 00:13 53760 ----a-w- c:\windows\SysWow64\ZLIB32.DLL
2011-01-13 14:12 . 1999-06-18 11:05 1355776 ----a-w- c:\windows\SysWow64\MSVBVM50.DLL
2011-01-13 14:12 . 1998-06-24 09:55 609584 ----a-w- c:\windows\SysWow64\Comctl32.ocx
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{EEE6C36B-6118-11DC-9C72-001320C79847}]
2010-12-12 16:01 314168 ----a-r- c:\program files (x86)\SweetIM\Social\mgFB.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Glary Memory Optimizer"="c:\program files (x86)\Glary Utilities\memdefrag.exe" [2010-12-24 108344]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"OfficeSyncProcess"="c:\program files\Microsoft Office\Office14\MSOSYNC.EXE" [2010-03-16 908160]
"Seznam Postak"="c:\program files (x86)\Seznam.cz\postak.exe" [2010-10-07 488728]
"NCsoft Launcher"="c:\program files (x86)\NCsoft\Launcher\NCLauncher.exe" [2011-02-23 38184]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2011-03-08 17037704]
"PlayataClient"="c:\users\Taťka a mamka\AppData\Local\Playata Client\PlayataClient.exe" [2011-03-17 536576]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-11-25 336384]
"SweetIM"="c:\program files (x86)\SweetIM\Messenger\SweetIM.exe" [2010-12-20 111928]
"TaskTray"="c:\program files (x86)\Driver-Soft\SuperOvladac\TaskTray.exe" [2011-01-27 284016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"GrpConv"="grpconv -o" [X]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bandwidth Meter.lnk - c:\windows\Installer\{297849A8-EEC6-4ABA-AAE5-C66A093FEDE3}\_4AFD87D2B7DF2077867725.exe [2011-3-25 1150]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-disabled]
"NBKeyScan"="c:\program files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
.
R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
R1 aswSnx;aswSnx; [x]
R1 aswSP;aswSP; [x]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
R2 AMD Reservation Manager;AMD Reservation Manager;c:\program files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe [2010-06-17 194496]
R2 aswFsBlk;aswFsBlk; [x]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [x]
R2 gupdate;Služba Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-26 136176]
R2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [x]
R2 TeamViewer5;TeamViewer 5;c:\program files (x86)\TeamViewer\Version5\TeamViewer_Service.exe [2010-07-06 173352]
R3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
R3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
R3 ATICDSDr;ATICDSDr;c:\users\TAKAAM~1\AppData\Local\Temp\ATICDSDr.sys [x]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 51456888]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2011-04-13 c:\windows\Tasks\GlaryInitialize.job
- c:\program files (x86)\Glary Utilities\initialize.exe [2011-02-15 13:13]
.
2011-04-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-26 23:36]
.
2011-04-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-26 23:36]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-02-23 14:04 134384 ----a-w- c:\program files\Alwil Software\Avast5\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
mStart Page = hxxp://home.sweetim.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - c:\program files (x86)\ICQ7.4\ICQ.exe
TCP: {D478DE80-DC8B-40BB-9F2D-9410A09378E7} = 10.0.0.138
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
FF - ProfilePath - c:\users\Taťka a mamka\AppData\Roaming\Mozilla\Firefox\Profiles\j8xnt307.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as ... ource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_result ... r=1.1.9&q=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKCU-Run-PlayNC Launcher - (no file)
Wow6432Node-HKCU-Run-ICQ - ~c:\program files (x86)\ICQ7.4\ICQ.exe
Wow6432Node-HKLM-RunOnce-<NO NAME> - (no file)
WebBrowser-{6EDC3889-B841-4127-A2BF-C5FC48F972C7} - (no file)
WebBrowser-{30F9B915-B755-4826-820B-08FBA6BD249D} - (no file)
WebBrowser-{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2011-04-13 04:53:17
ComboFix-quarantined-files.txt 2011-04-13 02:53
.
Před spuštěním: 3 349 250 048
Po spuštění: 3 411 427 328
.
- - End Of File - - 1AA5C659656975450C2FECBD4D039C8E

Příspěvekod **Žbeky** » 13 dub 2011 22:02

Toto otestuj na Virustotal
c:\windows\HideWin.exe
c:\windows\Setup1.exe
c:\windows\ST6UNST.EXE

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/40 , nebo 1/40. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Kamos · Příspěvekod **Kamos** » 14 dub 2011 23:42

HideWin.exe

Setup1.exe

ST6UNST.EXE

Příspěvekod **Žbeky** » 15 dub 2011 07:52

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::

Folder::
c:\windows\VDLL.DLL
c:\windows\SysWow64\runouce.exe
c:\windows\rundll16.exe
c:\windows\RUNDL132.EXE
c:\windows\logo1_.exe
c:\windows\logo_1.exe

Registry::
[-HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{EEE6C36B-6118-11DC-9C72-001320C79847}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"=-
"ConsentPromptBehaviorUser"=-
"EnableUIADesktopToggle"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=-

File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

DDS::
mStart Page = hxxp://home.sweetim.com

Firefox::
FF - ProfilePath - c:\users\Taťka a mamka\AppData\Roaming\Mozilla\Firefox\Profiles\j8xnt307.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as ... ource=3&q={searchTerms}
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_result ... r=1.1.9&q=

RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu

Kamos · Příspěvekod **Kamos** » 15 dub 2011 10:57

ComboFix 11-04-14.01 - Taťka a mamka 15.04.2011 10:37:54.2.2 - x64 MINIMAL
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.4095.3166 [GMT 2:00]
Spuštěný z: c:\users\Taťka a mamka\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Taťka a mamka\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\logo_1.exe
c:\windows\logo1_.exe
c:\windows\RUNDL132.EXE
c:\windows\rundll16.exe
c:\windows\SysWow64\runouce.exe
c:\windows\VDLL.DLL
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-03-15 do 2011-04-15 )))))))))))))))))))))))))))))))
.
.
2011-04-15 08:43 . 2011-04-15 08:43 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-04-15 08:43 . 2011-04-15 08:43 -------- d-----w- c:\users\Administrator\AppData\Local\temp
2011-04-15 05:46 . 2011-03-03 06:17 182272 ----a-w- c:\windows\system32\dnsrslvr.dll
2011-04-15 05:38 . 2011-03-15 05:17 8424784 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{C6D9A1E0-5F57-4EED-8C37-12479E3EAC12}\mpengine.dll
2011-04-15 05:30 . 2011-04-15 05:30 -------- d-----w- c:\users\Taťka a mamka\AppData\Local\Ahead
2011-04-13 18:31 . 2011-04-13 18:31 -------- d-----w- c:\program files\Mouse
2011-04-13 18:02 . 2011-04-13 18:02 -------- d-----w- c:\users\Taťka a mamka\AppData\Local\Diagnostics
2011-04-13 13:44 . 2011-04-13 13:44 -------- d-----w- c:\users\Taťka a mamka\AppData\Local\Adobe
2011-04-13 02:36 . 2011-02-23 13:57 505176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-04-12 21:36 . 2011-04-12 21:36 -------- d-----w- c:\users\Taťka a mamka\AppData\Local\ATI
2011-04-12 21:17 . 2011-04-12 21:17 301568 ----a-w- c:\windows\SysWow64\CF7874.exe
2011-04-12 21:16 . 2011-04-12 21:16 301568 ----a-w- c:\windows\SysWow64\CF7659.exe
2011-04-12 21:16 . 2011-04-12 21:17 8704 ----a-w- c:\windows\system32\drivers\PROCEXP90.SYS
2011-04-12 21:16 . 2011-04-12 21:22 301568 ----a-w- c:\windows\SysWow64\cmd.execf
2011-04-12 15:34 . 2011-04-12 15:34 -------- d-----w- c:\users\Taťka a mamka\AppData\Roaming\Malwarebytes
2011-04-12 15:34 . 2010-12-20 16:09 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-04-12 15:34 . 2011-04-12 15:34 -------- d-----w- c:\programdata\Malwarebytes
2011-04-12 15:34 . 2011-04-12 15:34 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-04-12 15:34 . 2010-12-20 16:08 24152 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-04-12 15:10 . 2011-04-12 15:10 388096 ----a-r- c:\users\Taťka a mamka\AppData\Roaming\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe
2011-04-12 15:10 . 2011-04-12 15:10 -------- d-----w- c:\program files (x86)\TrendMicro
2011-04-12 15:00 . 2011-04-12 15:00 388096 ----a-r- c:\users\Taťka a mamka\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-04-12 15:00 . 2011-04-12 15:00 -------- d-----w- c:\program files (x86)\Trend Micro
2011-04-12 14:49 . 2011-04-12 14:49 -------- d-----w- c:\program files\CPUID
2011-04-12 14:49 . 2010-11-09 12:35 21992 ----a-w- c:\windows\system32\drivers\cpuz135_x64.sys
2011-04-12 14:43 . 2011-04-12 14:43 632064 ----a-w- c:\windows\SysWow64\msvcr80.dll
2011-04-12 14:43 . 2011-04-12 14:43 554240 ----a-w- c:\windows\SysWow64\msvcp80.dll
2011-04-12 14:43 . 2011-04-12 14:43 34048 ----a-w- c:\windows\SysWow64\eEmpty.exe
2011-04-12 14:43 . 2011-04-12 14:43 -------- d-----w- c:\program files (x86)\Common Files\MicroWorld
2011-04-12 14:43 . 2011-04-12 14:43 -------- d-----w- c:\programdata\MicroWorld
2011-04-12 14:36 . 2011-04-12 14:36 -------- d-----w- c:\program files\CCleaner
2011-04-07 10:13 . 2011-04-07 10:17 -------- d-----w- c:\users\Taťka a mamka\AppData\Local\Playata Client
2011-04-02 10:06 . 2011-04-02 10:13 -------- d-----w- c:\program files\The Stalin Subway
2011-04-01 09:37 . 2011-04-01 09:37 -------- d-----w- c:\program files (x86)\Common Files\Skype
2011-04-01 06:54 . 2011-02-16 15:11 74272 ----a-w- c:\windows\system32\RtNicProp64.dll
2011-04-01 06:54 . 2011-02-16 15:11 428136 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2011-04-01 06:54 . 2011-04-01 06:54 -------- d-----w- c:\program files (x86)\Realtek
2011-03-29 16:34 . 2011-03-29 16:34 -------- d-----w- c:\users\Taťka a mamka\AppData\Roaming\InstallShield
2011-03-29 15:49 . 2011-03-29 15:49 -------- d-----w- c:\programdata\SlySoft
2011-03-29 15:45 . 2011-03-29 15:45 -------- d-----w- c:\program files (x86)\SlySoft
2011-03-29 14:41 . 2011-03-29 14:41 -------- d-----w- c:\program files (x86)\The Ultimate File Splitter 1.0
2011-03-28 23:23 . 2011-03-18 17:55 142296 ----a-w- c:\program files (x86)\Mozilla Firefox\components\browsercomps.dll
2011-03-28 23:23 . 2011-03-18 17:55 781272 ----a-w- c:\program files (x86)\Mozilla Firefox\mozsqlite3.dll
2011-03-28 23:23 . 2011-03-18 17:55 728024 ----a-w- c:\program files (x86)\Mozilla Firefox\libGLESv2.dll
2011-03-28 23:23 . 2011-03-18 17:55 1874904 ----a-w- c:\program files (x86)\Mozilla Firefox\mozjs.dll
2011-03-28 23:23 . 2011-03-18 17:55 15832 ----a-w- c:\program files (x86)\Mozilla Firefox\mozalloc.dll
2011-03-28 23:23 . 2011-03-18 17:55 1893336 ----a-w- c:\program files (x86)\Mozilla Firefox\d3dx9_42.dll
2011-03-28 23:23 . 2011-03-18 17:55 142296 ----a-w- c:\program files (x86)\Mozilla Firefox\libEGL.dll
2011-03-28 23:23 . 2011-03-18 17:55 1975768 ----a-w- c:\program files (x86)\Mozilla Firefox\D3DCompiler_42.dll
2011-03-25 11:06 . 2011-04-13 02:51 -------- d-----w- C:\BandwidthMeter
2011-03-25 10:34 . 2011-03-25 10:34 -------- d-----w- c:\program files (x86)\Driver-Soft
2011-03-21 09:48 . 2011-03-21 09:52 -------- d-----w- c:\program files (x86)\The KMPlayer
2011-03-18 08:12 . 2011-04-12 15:59 -------- d-----w- c:\program files (x86)\SweetIM
2011-03-18 08:12 . 2011-03-18 08:12 -------- d-----w- c:\programdata\SweetIM
2011-03-17 16:35 . 2011-03-17 16:35 -------- d-----w- c:\program files (x86)\TopCD
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-04-13 18:30 . 2008-02-13 14:20 17920 ----a-w- c:\windows\system32\drivers\Amusbx64.sys
2011-04-13 18:30 . 2007-10-15 09:41 12288 ----a-w- c:\windows\system32\drivers\Arfumx64.sys
2011-04-13 18:30 . 2007-10-15 09:39 21504 ----a-w- c:\windows\system32\drivers\Amps2x64.sys
2011-04-13 18:30 . 2007-10-15 09:37 12288 ----a-w- c:\windows\system32\drivers\Amfltx64.sys
2011-04-13 18:30 . 2007-04-06 12:05 32768 ----a-w- c:\windows\SysWow64\Amhooker.dll
2011-04-12 15:10 . 2011-04-12 15:10 388096 ----a-r- c:\users\Taťka a mamka\AppData\Roaming\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe
2011-04-12 15:10 . 2011-04-12 15:10 388096 ----a-r- c:\users\Taťka a mamka\AppData\Roaming\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe
2011-04-12 15:00 . 2011-04-12 15:00 388096 ----a-r- c:\users\Taťka a mamka\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-04-12 15:00 . 2011-04-12 15:00 388096 ----a-r- c:\users\Taťka a mamka\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-03-11 12:19 . 2010-06-24 10:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-03-06 19:57 . 2010-12-26 21:26 319488 ----a-w- c:\windows\HideWin.exe
2011-02-23 14:04 . 2010-12-26 23:32 40648 ----a-w- c:\windows\avastSS.scr
2011-02-23 14:04 . 2010-12-26 23:32 190016 ----a-w- c:\windows\SysWow64\aswBoot.exe
2011-02-23 14:04 . 2011-01-19 17:36 238968 ----a-w- c:\windows\system32\aswBoot.exe
2011-02-23 13:57 . 2010-12-26 23:36 280408 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-02-23 13:55 . 2010-12-26 23:36 53592 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-02-23 13:55 . 2010-12-26 23:36 31064 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-02-23 13:55 . 2010-12-26 23:36 64344 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-02-23 13:54 . 2010-12-26 23:36 22360 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-02-19 06:37 . 2011-03-09 08:09 1135104 ----a-w- c:\windows\system32\FntCache.dll
2011-02-19 06:37 . 2011-03-09 08:09 1540608 ----a-w- c:\windows\system32\DWrite.dll
2011-02-19 06:36 . 2011-03-09 08:09 902656 ----a-w- c:\windows\system32\d2d1.dll
2011-02-19 05:32 . 2011-03-09 08:09 1074176 ----a-w- c:\windows\SysWow64\DWrite.dll
2011-02-19 05:32 . 2011-03-09 08:09 739840 ----a-w- c:\windows\SysWow64\d2d1.dll
2011-02-16 15:11 . 2010-01-05 15:39 107552 ----a-w- c:\windows\system32\RTNUninst64.dll
2011-02-07 15:27 . 2011-02-07 15:26 475136 ------w- c:\windows\Setup1.exe
2011-02-07 15:27 . 2011-02-07 15:25 73216 ----a-w- c:\windows\ST6UNST.EXE
2011-02-02 17:11 . 2010-12-26 20:51 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-02-02 13:31 . 2011-02-02 13:31 499712 ----a-w- c:\windows\SysWow64\msvcp71.dll
2011-02-02 13:31 . 2011-02-02 13:31 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll
2011-01-26 06:53 . 2011-02-08 19:10 982912 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2011-01-26 06:53 . 2011-02-08 19:10 265088 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2011-01-26 06:31 . 2011-02-08 19:10 144384 ----a-w- c:\windows\system32\cdd.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-04-13_02.52.08 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-04-15 05:47 . 2011-02-24 05:30 67072 c:\windows\SysWOW64\mshtmled.dll
- 2011-02-08 19:36 . 2010-12-18 05:30 67072 c:\windows\SysWOW64\mshtmled.dll
+ 2011-04-15 05:47 . 2011-02-24 05:27 12800 c:\windows\SysWOW64\msfeedssync.exe
- 2011-02-08 19:36 . 2010-12-18 05:26 12800 c:\windows\SysWOW64\msfeedssync.exe
+ 2011-04-15 05:47 . 2011-02-24 05:30 64512 c:\windows\SysWOW64\msfeedsbs.dll
- 2011-02-08 19:36 . 2010-12-18 05:30 64512 c:\windows\SysWOW64\msfeedsbs.dll
- 2010-12-26 23:24 . 2010-11-04 05:52 68608 c:\windows\SysWOW64\migration\WininetPlugin.dll
+ 2011-04-15 05:47 . 2011-02-24 05:32 68608 c:\windows\SysWOW64\migration\WininetPlugin.dll
+ 2011-04-15 05:47 . 2011-02-24 05:30 44544 c:\windows\SysWOW64\licmgr10.dll
- 2011-02-08 19:36 . 2010-12-18 05:29 44544 c:\windows\SysWOW64\licmgr10.dll
+ 2011-04-15 05:47 . 2011-02-24 05:30 48128 c:\windows\SysWOW64\jsproxy.dll
- 2010-12-26 23:24 . 2010-11-04 05:48 48128 c:\windows\SysWOW64\jsproxy.dll
- 2009-07-13 23:38 . 2009-07-14 01:14 28672 c:\windows\SysWOW64\dnscacheugc.exe
+ 2011-04-15 05:46 . 2011-03-03 05:27 28672 c:\windows\SysWOW64\dnscacheugc.exe
+ 2009-07-14 04:54 . 2011-04-15 08:44 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-07-14 04:54 . 2011-04-13 02:42 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:54 . 2011-04-15 08:44 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2011-04-13 02:42 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2011-04-15 08:44 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-07-14 04:54 . 2011-04-13 02:42 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-04-15 05:47 . 2011-02-19 05:32 34304 c:\windows\SysWOW64\atmlib.dll
- 2011-02-08 19:10 . 2011-01-07 07:27 34304 c:\windows\SysWOW64\atmlib.dll
+ 2010-12-26 23:21 . 2011-04-15 08:46 50178 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2011-04-15 08:46 37622 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2010-12-26 21:32 . 2011-04-15 08:46 13244 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-800867951-441533802-1533705285-1000_UserData.bin
- 2011-02-08 19:36 . 2010-12-18 06:12 97280 c:\windows\system32\mshtmled.dll
+ 2011-04-15 05:47 . 2011-02-24 06:25 97280 c:\windows\system32\mshtmled.dll
+ 2011-04-15 05:47 . 2011-02-24 06:21 12288 c:\windows\system32\msfeedssync.exe
- 2011-02-08 19:36 . 2010-12-18 06:08 12288 c:\windows\system32\msfeedssync.exe
- 2011-02-08 19:36 . 2010-12-18 06:12 82944 c:\windows\system32\msfeedsbs.dll
+ 2011-04-15 05:47 . 2011-02-24 06:25 82944 c:\windows\system32\msfeedsbs.dll
- 2010-12-26 23:24 . 2010-11-04 06:35 95232 c:\windows\system32\migration\WininetPlugin.dll
+ 2011-04-15 05:47 . 2011-02-24 06:29 95232 c:\windows\system32\migration\WininetPlugin.dll
- 2011-02-08 19:36 . 2010-12-18 06:11 57856 c:\windows\system32\licmgr10.dll
+ 2011-04-15 05:47 . 2011-02-24 06:24 57856 c:\windows\system32\licmgr10.dll
+ 2011-04-15 05:46 . 2011-02-05 12:41 20352 c:\windows\system32\kdusb.dll
+ 2011-04-15 05:46 . 2011-02-05 12:41 17792 c:\windows\system32\kdcom.dll
+ 2011-04-15 05:46 . 2011-02-05 12:41 19328 c:\windows\system32\kd1394.dll
- 2010-12-26 23:24 . 2010-11-04 06:31 64512 c:\windows\system32\jsproxy.dll
+ 2011-04-15 05:47 . 2011-02-24 06:24 64512 c:\windows\system32\jsproxy.dll
- 2009-07-14 05:30 . 2011-04-01 06:55 86016 c:\windows\system32\DriverStore\infpub.dat
+ 2009-07-14 05:30 . 2011-04-13 18:31 86016 c:\windows\system32\DriverStore\infpub.dat
+ 2008-02-13 14:20 . 2011-04-13 18:30 17920 c:\windows\system32\DriverStore\FileRepository\amouse.inf_amd64_neutral_67d86bf9da75f777\Amusbx64.sys
+ 2007-10-15 09:39 . 2011-04-13 18:30 21504 c:\windows\system32\DriverStore\FileRepository\amouse.inf_amd64_neutral_67d86bf9da75f777\Amps2x64.sys
+ 2007-10-15 09:37 . 2011-04-13 18:30 12288 c:\windows\system32\DriverStore\FileRepository\amouse.inf_amd64_neutral_67d86bf9da75f777\Amfltx64.sys
- 2009-07-13 23:23 . 2009-07-13 23:23 90624 c:\windows\system32\drivers\bowser.sys
+ 2011-04-15 05:46 . 2011-02-23 05:15 90624 c:\windows\system32\drivers\bowser.sys
+ 2011-04-15 05:46 . 2011-03-03 06:14 30208 c:\windows\system32\dnscacheugc.exe
- 2009-07-13 23:54 . 2009-07-14 01:39 30208 c:\windows\system32\dnscacheugc.exe
+ 2010-12-26 20:31 . 2011-04-15 08:29 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-12-26 20:31 . 2011-04-12 23:19 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2010-12-26 20:31 . 2011-04-15 08:29 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2010-12-26 20:31 . 2011-04-12 23:19 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2011-04-15 08:29 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-07-14 04:54 . 2011-04-12 23:19 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-04-15 05:47 . 2011-02-19 06:36 46080 c:\windows\system32\atmlib.dll
- 2011-02-08 19:10 . 2011-01-07 08:06 46080 c:\windows\system32\atmlib.dll
- 2010-12-26 21:00 . 2011-04-13 02:36 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2010-12-26 21:00 . 2011-04-15 08:45 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:46 . 2011-04-15 08:32 78224 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
- 2010-12-26 21:00 . 2011-04-13 02:36 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2010-12-26 21:00 . 2011-04-15 08:45 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2010-12-26 21:00 . 2011-04-13 02:36 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-12-26 21:00 . 2011-04-15 08:45 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2010-12-26 21:32 . 2011-04-13 02:36 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2010-12-26 21:32 . 2011-04-15 08:45 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-12-26 21:32 . 2011-04-13 02:36 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-12-26 21:32 . 2011-04-15 08:45 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-02-10 03:15 . 2011-02-10 03:15 67920 c:\windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll
- 2010-03-18 13:27 . 2010-03-18 13:27 67920 c:\windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll
- 2010-03-18 12:16 . 2010-03-18 12:16 56656 c:\windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll
+ 2011-02-10 02:10 . 2011-02-10 02:10 56656 c:\windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 87408 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsFormsIntegration\v4.0_4.0.0.0__31bf3856ad364e35\WindowsFormsIntegration.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 87408 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsFormsIntegration\v4.0_4.0.0.0__31bf3856ad364e35\WindowsFormsIntegration.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 93024 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationTypes\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationTypes.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 93024 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationTypes\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationTypes.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 35688 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationProvider\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationProvider.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 35688 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationProvider\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationProvider.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 17784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Presentation\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Presentation.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 17784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Presentation\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Presentation.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 58240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Input.Manipulations\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Input.Manipulations.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 58240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Input.Manipulations\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Input.Manipulations.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 44920 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.ApplicationServices\v4.0_4.0.0.0__31bf3856ad364e35\System.Web.ApplicationServices.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 44920 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.ApplicationServices\v4.0_4.0.0.0__31bf3856ad364e35\System.Web.ApplicationServices.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 37240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Channels\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Channels.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 37240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Channels\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Channels.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 64352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Numerics\v4.0_4.0.0.0__b77a5c561934e089\System.Numerics.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 64352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Numerics\v4.0_4.0.0.0__b77a5c561934e089\System.Numerics.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 51032 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Device\v4.0_4.0.0.0__b77a5c561934e089\System.Device.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 51032 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Device\v4.0_4.0.0.0__b77a5c561934e089\System.Device.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 50552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.DataSetExtensions\v4.0_4.0.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 50552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.DataSetExtensions\v4.0_4.0.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 81784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration.Install\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 81784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration.Install\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 81800 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\v4.0_4.0.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 81800 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\v4.0_4.0.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 39784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn.Contract\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.AddIn.Contract.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 39784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn.Contract\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.AddIn.Contract.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 68952 c:\windows\Microsoft.NET\assembly\GAC_MSIL\SMDiagnostics\v4.0_4.0.0.0__b77a5c561934e089\SMDiagnostics.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 68952 c:\windows\Microsoft.NET\assembly\GAC_MSIL\SMDiagnostics\v4.0_4.0.0.0__b77a5c561934e089\SMDiagnostics.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 12128 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualC\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2011-01-04 21:20 . 2011-01-04 21:20 12128 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualC\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2011-01-04 21:20 . 2011-01-04 21:20 97680 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 97680 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 17240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 17240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 94552 c:\windows\Microsoft.NET\assembly\GAC_64\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 94552 c:\windows\Microsoft.NET\assembly\GAC_64\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 91488 c:\windows\Microsoft.NET\assembly\GAC_64\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 91488 c:\windows\Microsoft.NET\assembly\GAC_64\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2011-01-04 02:02 . 2011-01-04 02:02 78168 c:\windows\Microsoft.NET\assembly\GAC_32\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 78168 c:\windows\Microsoft.NET\assembly\GAC_32\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2011-01-04 02:02 . 2011-01-04 02:02 81248 c:\windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 81248 c:\windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2011-02-14 12:13 . 2011-04-15 08:23 34144 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\oisicon.exe
- 2011-02-14 12:13 . 2011-03-09 23:13 34144 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\oisicon.exe
- 2011-02-14 12:13 . 2011-03-09 23:13 42848 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\msouc.exe
+ 2011-02-14 12:13 . 2011-04-15 08:23 42848 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\msouc.exe
+ 2011-02-14 12:13 . 2011-04-15 08:23 19296 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\cagicon.exe
- 2011-02-14 12:13 . 2011-03-09 23:13 19296 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\cagicon.exe
+ 2010-03-13 00:04 . 2010-03-13 00:04 10104 c:\windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\XLCALL32.DLL
+ 2011-04-15 08:23 . 2011-04-15 08:23 10752 c:\windows\assembly\NativeImages_v4.0.30319_64\dfsvc\cf04bd7a08ca94b6f2c7dc56c4c74b6b\dfsvc.ni.exe
+ 2011-04-15 08:23 . 2011-04-15 08:23 57856 c:\windows\assembly\NativeImages_v4.0.30319_64\Accessibility\29865ac81eef734ca768a364b0ddc8c3\Accessibility.ni.dll
+ 2011-04-15 08:33 . 2011-04-15 08:33 61952 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationCFFRast#\2165f694f68ea31be5c889744b7f376a\PresentationCFFRasterizer.ni.dll
+ 2011-04-15 08:30 . 2011-04-15 08:30 32256 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualC\40cd41798c41838f8b9a5d37321e6cc3\Microsoft.VisualC.ni.dll
+ 2011-04-15 08:33 . 2011-04-15 08:33 78848 c:\windows\assembly\NativeImages_v2.0.50727_64\Accessibility\9d237481823f88cbb89c0834d85df526\Accessibility.ni.dll
+ 2011-04-15 08:44 . 2011-04-15 08:44 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2011-04-13 02:43 . 2011-04-13 02:43 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-04-15 08:44 . 2011-04-15 08:44 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2011-04-13 02:43 . 2011-04-13 02:43 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-04-15 05:47 . 2011-02-24 05:32 288256 c:\windows\SysWOW64\XpsGdiConverter.dll
- 2011-02-23 07:02 . 2011-01-07 07:31 288256 c:\windows\SysWOW64\XpsGdiConverter.dll
- 2011-02-08 19:10 . 2010-12-21 05:38 981504 c:\windows\SysWOW64\wininet.dll
+ 2011-04-15 05:47 . 2011-02-24 05:32 981504 c:\windows\SysWOW64\wininet.dll
- 2011-02-08 19:10 . 2011-01-05 05:37 428032 c:\windows\SysWOW64\vbscript.dll
+ 2011-04-15 05:47 . 2011-02-18 05:36 428032 c:\windows\SysWOW64\vbscript.dll
+ 2011-04-15 05:47 . 2011-02-24 05:30 606208 c:\windows\SysWOW64\mstime.dll
- 2011-02-08 19:36 . 2010-12-18 05:30 606208 c:\windows\SysWOW64\mstime.dll
- 2011-02-08 19:36 . 2010-12-18 05:30 599040 c:\windows\SysWOW64\msfeeds.dll
+ 2011-04-15 05:47 . 2011-02-24 05:30 599040 c:\windows\SysWOW64\msfeeds.dll
+ 2011-04-15 05:47 . 2011-02-18 05:35 716800 c:\windows\SysWOW64\jscript.dll
- 2011-02-08 19:10 . 2011-01-05 05:34 716800 c:\windows\SysWOW64\jscript.dll
- 2010-12-26 23:26 . 2010-03-04 07:33 740864 c:\windows\SysWOW64\inetcomm.dll
+ 2011-04-15 05:46 . 2011-03-08 05:38 740864 c:\windows\SysWOW64\inetcomm.dll
- 2010-12-26 23:24 . 2010-11-04 05:48 176640 c:\windows\SysWOW64\ieui.dll
+ 2011-04-15 05:47 . 2011-02-24 05:29 176640 c:\windows\SysWOW64\ieui.dll
+ 2011-04-15 05:47 . 2011-02-24 05:29 185856 c:\windows\SysWOW64\iepeers.dll
- 2011-02-08 19:36 . 2010-12-18 05:29 185856 c:\windows\SysWOW64\iepeers.dll
+ 2011-04-15 05:47 . 2011-02-24 05:29 381440 c:\windows\SysWOW64\iedkcs32.dll
- 2011-02-08 19:36 . 2010-12-18 05:29 381440 c:\windows\SysWOW64\iedkcs32.dll
+ 2011-04-15 05:46 . 2011-03-03 05:29 269824 c:\windows\SysWOW64\dnsapi.dll
- 2009-07-13 23:12 . 2009-07-14 01:15 269824 c:\windows\SysWOW64\dnsapi.dll
+ 2011-04-15 05:47 . 2011-02-19 03:37 294912 c:\windows\SysWOW64\atmfd.dll
+ 2011-04-15 05:47 . 2011-02-24 06:30 476160 c:\windows\system32\XpsGdiConverter.dll
+ 2011-04-15 05:46 . 2011-02-05 12:39 518160 c:\windows\system32\winresume.exe
+ 2011-04-15 05:46 . 2011-02-05 12:39 603976 c:\windows\system32\winload.exe
+ 2011-04-15 05:47 . 2011-02-18 06:37 612352 c:\windows\system32\vbscript.dll
- 2011-02-08 19:10 . 2011-01-05 06:20 612352 c:\windows\system32\vbscript.dll
+ 2009-07-14 02:36 . 2011-04-15 08:16 615810 c:\windows\system32\perfh009.dat
- 2009-07-14 02:36 . 2011-04-11 18:05 615810 c:\windows\system32\perfh009.dat
- 2009-07-14 15:18 . 2011-04-11 18:05 631054 c:\windows\system32\perfh005.dat
+ 2009-07-14 15:18 . 2011-04-15 08:16 631054 c:\windows\system32\perfh005.dat
+ 2009-07-14 02:36 . 2011-04-15 08:16 106190 c:\windows\system32\perfc009.dat
- 2009-07-14 02:36 . 2011-04-11 18:05 106190 c:\windows\system32\perfc009.dat
- 2009-07-14 15:18 . 2011-04-11 18:05 121708 c:\windows\system32\perfc005.dat
+ 2009-07-14 15:18 . 2011-04-15 08:16 121708 c:\windows\system32\perfc005.dat
- 2011-02-08 19:36 . 2010-12-18 06:12 703488 c:\windows\system32\msfeeds.dll
+ 2011-04-15 05:47 . 2011-02-24 06:25 703488 c:\windows\system32\msfeeds.dll
- 2011-02-08 19:10 . 2011-01-05 06:16 852480 c:\windows\system32\jscript.dll
+ 2011-04-15 05:47 . 2011-02-18 06:36 852480 c:\windows\system32\jscript.dll
- 2010-12-26 23:26 . 2010-03-04 07:57 976896 c:\windows\system32\inetcomm.dll
+ 2011-04-15 05:46 . 2011-03-08 06:14 976896 c:\windows\system32\inetcomm.dll
- 2010-12-26 23:24 . 2010-11-04 06:31 247808 c:\windows\system32\ieui.dll
+ 2011-04-15 05:47 . 2011-02-24 06:24 247808 c:\windows\system32\ieui.dll
+ 2011-04-15 05:47 . 2011-02-24 06:24 256000 c:\windows\system32\iepeers.dll
- 2011-02-08 19:36 . 2010-12-18 06:11 256000 c:\windows\system32\iepeers.dll
- 2011-02-08 19:36 . 2010-12-18 06:11 445952 c:\windows\system32\iedkcs32.dll
+ 2011-04-15 05:47 . 2011-02-24 06:24 445952 c:\windows\system32\iedkcs32.dll
+ 2011-04-15 05:46 . 2011-02-12 06:14 267776 c:\windows\system32\FXSCOVER.exe
- 2009-07-14 04:45 . 2011-02-15 06:53 416960 c:\windows\system32\FNTCACHE.DAT
+ 2009-07-14 04:45 . 2011-04-15 08:29 416960 c:\windows\system32\FNTCACHE.DAT
- 2009-07-14 05:30 . 2011-04-01 06:55 143360 c:\windows\system32\DriverStore\infstrng.dat
+ 2009-07-14 05:30 . 2011-04-13 18:31 143360 c:\windows\system32\DriverStore\infstrng.dat
- 2009-07-14 05:30 . 2011-04-01 06:55 143360 c:\windows\system32\DriverStore\infstor.dat
+ 2009-07-14 05:30 . 2011-04-13 18:31 143360 c:\windows\system32\DriverStore\infstor.dat
- 2010-12-26 23:25 . 2010-08-27 03:37 161792 c:\windows\system32\drivers\srvnet.sys
+ 2011-04-15 05:47 . 2011-02-23 05:15 161792 c:\windows\system32\drivers\srvnet.sys
+ 2011-04-15 05:47 . 2011-02-23 05:16 401920 c:\windows\system32\drivers\srv2.sys
+ 2011-04-15 05:47 . 2011-02-23 05:16 461312 c:\windows\system32\drivers\srv.sys
+ 2011-04-15 05:46 . 2011-02-23 05:15 126464 c:\windows\system32\drivers\mrxsmb20.sys
+ 2011-04-15 05:46 . 2011-02-23 05:15 286720 c:\windows\system32\drivers\mrxsmb10.sys
- 2010-12-26 23:26 . 2010-02-27 07:52 286720 c:\windows\system32\drivers\mrxsmb10.sys
+ 2011-04-15 05:46 . 2011-02-23 05:15 157696 c:\windows\system32\drivers\mrxsmb.sys
- 2010-12-26 23:26 . 2010-02-27 07:52 157696 c:\windows\system32\drivers\mrxsmb.sys
- 2009-07-13 23:21 . 2009-07-14 01:40 356352 c:\windows\system32\dnsapi.dll
+ 2011-04-15 05:46 . 2011-03-03 06:17 356352 c:\windows\system32\dnsapi.dll
+ 2011-04-15 05:46 . 2011-02-05 12:39 518160 c:\windows\system32\Boot\winresume.exe
+ 2011-04-15 05:46 . 2011-02-05 12:39 603976 c:\windows\system32\Boot\winload.exe
+ 2011-04-15 05:47 . 2011-02-19 04:13 367104 c:\windows\system32\atmfd.dll
- 2010-12-26 21:00 . 2010-12-27 01:03 262144 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2010-12-26 21:00 . 2011-04-15 08:30 262144 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2009-07-14 05:01 . 2011-04-15 08:34 388020 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2009-07-14 05:01 . 2011-04-13 02:38 388020 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2010-03-18 13:27 . 2010-03-18 13:27 597832 c:\windows\Microsoft.NET\Framework64\v4.0.30319\SOS.dll
+ 2011-02-10 03:15 . 2011-02-10 03:15 597832 c:\windows\Microsoft.NET\Framework64\v4.0.30319\SOS.dll
+ 2011-04-15 05:47 . 2011-02-07 23:30 485192 c:\windows\Microsoft.NET\Framework64\v2.0.50727\SOS.dll
- 2010-12-26 23:28 . 2010-05-20 22:38 485192 c:\windows\Microsoft.NET\Framework64\v2.0.50727\SOS.dll
+ 2011-02-10 02:10 . 2011-02-10 02:10 517448 c:\windows\Microsoft.NET\Framework\v4.0.30319\SOS.dll
- 2010-03-18 12:16 . 2010-03-18 12:16 517448 c:\windows\Microsoft.NET\Framework\v4.0.30319\SOS.dll
- 2010-03-18 12:16 . 2010-03-18 12:16 955728 c:\windows\Microsoft.NET\Framework\v4.0.30319\mscordbi.dll
+ 2011-02-10 02:10 . 2011-02-10 02:10 955728 c:\windows\Microsoft.NET\Framework\v4.0.30319\mscordbi.dll
- 2010-03-18 12:16 . 2010-03-18 12:16 385864 c:\windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
+ 2011-02-10 02:10 . 2011-02-10 02:10 385864 c:\windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
- 2010-12-26 23:28 . 2010-05-20 22:49 388936 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
+ 2011-04-15 05:47 . 2011-02-07 23:35 388936 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
+ 2011-04-15 05:47 . 2011-02-07 23:35 363856 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 363856 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
- 2010-12-26 23:28 . 2010-05-20 22:49 995160 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2011-04-15 05:47 . 2011-02-07 23:35 995160 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 350592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClientsideProviders\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClientsideProviders.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 350592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClientsideProviders\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClientsideProviders.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 163168 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClient\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClient.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 163168 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClient\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClient.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 138592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Linq.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 138592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Linq.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 699224 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xaml\v4.0_4.0.0.0__b77a5c561934e089\System.Xaml.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 699224 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xaml\v4.0_4.0.0.0__b77a5c561934e089\System.Xaml.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 857960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.Services\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 857960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.Services\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 675672 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Speech\v4.0_4.0.0.0__31bf3856ad364e35\System.Speech.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 675672 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Speech\v4.0_4.0.0.0__31bf3856ad364e35\System.Speech.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 113512 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceProcess\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 113512 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceProcess\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 129912 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Routing\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Routing.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 129912 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Routing\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Routing.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 390008 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Discovery\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Discovery.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 390008 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Discovery\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Discovery.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 505208 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Activities.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 505208 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Activities.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 261472 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Security\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 261472 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Security\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 122264 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 122264 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 291184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Remoting\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 291184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Remoting\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 349568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Runtime.DurableInstancing.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 349568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Runtime.DurableInstancing.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 231760 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Net\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Net.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 231760 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Net\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Net.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 253280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Messaging\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 253280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Messaging\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 378720 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Management.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 378720 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 134528 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management.Instrumentation\v4.0_4.0.0.0__b77a5c561934e089\System.Management.Instrumentation.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 134528 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management.Instrumentation\v4.0_4.0.0.0__b77a5c561934e089\System.Management.Instrumentation.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 123736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IO.Log\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.IO.Log.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 123736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IO.Log\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.IO.Log.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 392552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 392552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 125816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel.Selectors\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.Selectors.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 125816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel.Selectors\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.Selectors.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 120152 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Dynamic\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Dynamic.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 120152 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Dynamic\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Dynamic.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 607064 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 607064 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 395120 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 395120 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 182144 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.Protocols\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 182144 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.Protocols

Kamos · Příspěvekod **Kamos** » 15 dub 2011 10:58

cast dve duvod rozdeleni logu prilis mnoho znaku

\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 285072 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement\v4.0_4.0.0.0__b77a5c561934e089\System.DirectoryServices.AccountManagement.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 285072 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement\v4.0_4.0.0.0__b77a5c561934e089\System.DirectoryServices.AccountManagement.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 829280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Deployment\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 829280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Deployment\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 747360 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.SqlXml\v4.0_4.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 747360 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.SqlXml\v4.0_4.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 436600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Services.Client\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Services.Client.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 436600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Services.Client\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Services.Client.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 683872 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Linq.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 683872 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Linq.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 409448 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 409448 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 210816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.Composition\v4.0_4.0.0.0__b77a5c561934e089\System.ComponentModel.Composition.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 210816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.Composition\v4.0_4.0.0.0__b77a5c561934e089\System.ComponentModel.Composition.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 149848 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn\v4.0_4.0.0.0__b77a5c561934e089\System.AddIn.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 149848 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn\v4.0_4.0.0.0__b77a5c561934e089\System.AddIn.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 122248 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.DurableInstancing.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 122248 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.DurableInstancing.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 525704 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Core.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Core.Presentation.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 525704 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Core.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Core.Presentation.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 112976 c:\windows\Microsoft.NET\assembly\GAC_MSIL\sysglobl\v4.0_4.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 112976 c:\windows\Microsoft.NET\assembly\GAC_MSIL\sysglobl\v4.0_4.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 581464 c:\windows\Microsoft.NET\assembly\GAC_MSIL\ReachFramework\v4.0_4.0.0.0__31bf3856ad364e35\ReachFramework.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 581464 c:\windows\Microsoft.NET\assembly\GAC_MSIL\ReachFramework\v4.0_4.0.0.0__31bf3856ad364e35\ReachFramework.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 832856 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationUI\v4.0_4.0.0.0__31bf3856ad364e35\PresentationUI.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 832856 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationUI\v4.0_4.0.0.0__31bf3856ad364e35\PresentationUI.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 194424 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Royale\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Royale.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 194424 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Royale\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Royale.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 478576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Luna\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Luna.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 478576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Luna\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Luna.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 167288 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Classic\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Classic.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 167288 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Classic\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Classic.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 232304 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Aero\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Aero.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 232304 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Aero\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Aero.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 661352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 661352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 349576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 349576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 387960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Transactions.Bridge\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 387960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Transactions.Bridge\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 746336 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.JScript\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 746336 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.JScript\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 505184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.CSharp\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.CSharp.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 505184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.CSharp\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.CSharp.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 288616 c:\windows\Microsoft.NET\assembly\GAC_64\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 288616 c:\windows\Microsoft.NET\assembly\GAC_64\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 335712 c:\windows\Microsoft.NET\assembly\GAC_64\System.Printing\v4.0_4.0.0.0__31bf3856ad364e35\System.Printing.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 335712 c:\windows\Microsoft.NET\assembly\GAC_64\System.Printing\v4.0_4.0.0.0__31bf3856ad364e35\System.Printing.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 125440 c:\windows\Microsoft.NET\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 125440 c:\windows\Microsoft.NET\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 237424 c:\windows\Microsoft.NET\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 237424 c:\windows\Microsoft.NET\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 187776 c:\windows\Microsoft.NET\assembly\GAC_64\Microsoft.Transactions.Bridge.Dtc\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 187776 c:\windows\Microsoft.NET\assembly\GAC_64\Microsoft.Transactions.Bridge.Dtc\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 269672 c:\windows\Microsoft.NET\assembly\GAC_32\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2011-01-04 02:03 . 2011-01-04 02:03 269672 c:\windows\Microsoft.NET\assembly\GAC_32\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2011-01-04 02:03 . 2011-01-04 02:03 334688 c:\windows\Microsoft.NET\assembly\GAC_32\System.Printing\v4.0_4.0.0.0__31bf3856ad364e35\System.Printing.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 334688 c:\windows\Microsoft.NET\assembly\GAC_32\System.Printing\v4.0_4.0.0.0__31bf3856ad364e35\System.Printing.dll
- 2011-01-04 02:02 . 2011-01-04 02:02 109568 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 109568 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 246128 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2011-01-04 02:02 . 2011-01-04 02:02 246128 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2011-01-04 02:03 . 2011-01-04 02:03 170368 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.Transactions.Bridge.Dtc\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 170368 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.Transactions.Bridge.Dtc\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
+ 2010-10-22 19:11 . 2010-10-22 19:11 127488 c:\windows\Installer\99068a.msp
+ 2011-02-14 12:13 . 2011-04-15 08:23 415584 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\pubs.exe
- 2011-02-14 12:13 . 2011-03-09 23:13 415584 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\pubs.exe
+ 2011-02-14 12:13 . 2011-04-15 08:23 303456 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\outicon.exe
- 2011-02-14 12:13 . 2011-03-09 23:13 303456 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\outicon.exe
+ 2011-02-14 12:13 . 2011-04-15 08:23 571232 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\misc.exe
- 2011-02-14 12:13 . 2011-03-09 23:13 571232 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\misc.exe
- 2011-02-14 12:13 . 2011-03-09 23:13 326496 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\joticon.exe
+ 2011-02-14 12:13 . 2011-04-15 08:23 326496 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\joticon.exe
+ 2011-02-14 12:13 . 2011-04-15 08:23 469856 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\inficon.exe
- 2011-02-14 12:13 . 2011-03-09 23:13 469856 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\inficon.exe
+ 2011-02-14 12:13 . 2011-04-15 08:23 178528 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\grvicons.exe
- 2011-02-14 12:13 . 2011-03-09 23:13 178528 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\grvicons.exe
+ 2011-04-15 08:23 . 2011-04-15 08:23 424960 c:\windows\assembly\NativeImages_v4.0.30319_64\SMSvcHost\04cecedd1b95f94953ccb0c5c56e12d7\SMSvcHost.ni.exe
+ 2011-04-15 08:23 . 2011-04-15 08:23 276992 c:\windows\assembly\NativeImages_v4.0.30319_64\CustomMarshalers\f27fbe7dcc5517a2d9b5f15906271eaf\CustomMarshalers.ni.dll
+ 2011-04-15 08:18 . 2011-04-15 08:18 721920 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Security\df00a90a0ca189eb49b071dfd9530347\System.Security.ni.dll
+ 2011-04-15 08:18 . 2011-04-15 08:18 144896 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Numerics\f2304201110addb8170997ff442e87fc\System.Numerics.ni.dll
+ 2011-04-15 08:18 . 2011-04-15 08:18 373248 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Dynamic\f9b335b9f86afcae5a54949288010a0f\System.Dynamic.ni.dll
+ 2011-04-15 08:18 . 2011-04-15 08:18 973312 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\f7f7d2aa985906327e256d05472bdeb3\System.Configuration.ni.dll
+ 2011-04-15 08:19 . 2011-04-15 08:19 690176 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ComponentMod#\50925baa7781cd6b13b345750b78cac2\System.ComponentModel.Composition.ni.dll
+ 2011-04-15 08:18 . 2011-04-15 08:18 656896 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\ea81a1bfc0d3e8840be37dffb83fc12e\PresentationFramework.Luna.ni.dll
+ 2011-04-15 08:18 . 2011-04-15 08:18 327168 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\e4498a63f9913a5d47d26de0da220fdc\PresentationFramework.Royale.ni.dll
+ 2011-04-15 08:18 . 2011-04-15 08:18 283648 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\debfd1ead83df514b9a663bf3601669f\PresentationFramework.Classic.ni.dll
+ 2011-04-15 08:18 . 2011-04-15 08:18 450048 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\bc6292c4e40c4bf27d35ec5a8065893f\PresentationFramework.Aero.ni.dll
+ 2011-04-15 08:33 . 2011-04-15 08:33 253952 c:\windows\assembly\NativeImages_v2.0.50727_64\UIAutomationTypes\98ed2ce59a02b2ad53b96c0c3b6a874e\UIAutomationTypes.ni.dll
+ 2011-04-15 08:33 . 2011-04-15 08:33 120832 c:\windows\assembly\NativeImages_v2.0.50727_64\UIAutomationProvider\69f823739fd264e2405cc8af76c2196f\UIAutomationProvider.ni.dll
+ 2011-04-15 08:32 . 2011-04-15 08:32 928768 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Security\ae5dbb7ece9715387344b40d44249877\System.Security.ni.dll
+ 2011-04-15 08:33 . 2011-04-15 08:33 396288 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\e2661f961657f6705544823d25728184\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2011-04-15 05:47 . 2011-02-24 05:32 1228800 c:\windows\SysWOW64\urlmon.dll
+ 2011-04-15 05:47 . 2011-02-24 05:30 5981696 c:\windows\SysWOW64\mshtml.dll
+ 2011-04-15 05:47 . 2011-03-11 05:40 1164288 c:\windows\SysWOW64\mfc42u.dll
+ 2011-04-15 05:47 . 2011-03-11 05:40 1137664 c:\windows\SysWOW64\mfc42.dll
- 2011-02-08 19:36 . 2010-12-18 05:29 2063360 c:\windows\SysWOW64\iertutil.dll
+ 2011-04-15 05:47 . 2011-02-24 05:29 2063360 c:\windows\SysWOW64\iertutil.dll
- 2011-02-08 19:10 . 2010-12-21 06:16 1197056 c:\windows\system32\wininet.dll
+ 2011-04-15 05:47 . 2011-02-24 06:29 1197056 c:\windows\system32\wininet.dll
+ 2011-04-15 05:47 . 2011-03-03 03:58 3133440 c:\windows\system32\win32k.sys
+ 2011-04-15 05:47 . 2011-02-24 06:28 1499136 c:\windows\system32\urlmon.dll
- 2011-02-08 19:36 . 2010-12-18 06:12 1026560 c:\windows\system32\mstime.dll
+ 2011-04-15 05:47 . 2011-02-24 06:25 1026560 c:\windows\system32\mstime.dll
+ 2011-04-15 05:47 . 2011-02-24 06:25 9311744 c:\windows\system32\mshtml.dll
+ 2011-04-15 05:47 . 2011-03-11 06:19 1359872 c:\windows\system32\mfc42u.dll
+ 2011-04-15 05:47 . 2011-03-11 06:19 1395712 c:\windows\system32\mfc42.dll
+ 2011-04-15 05:47 . 2011-02-24 06:24 2447872 c:\windows\system32\iertutil.dll
- 2011-02-08 19:36 . 2010-12-18 06:11 2447872 c:\windows\system32\iertutil.dll
- 2009-07-14 04:45 . 2011-03-24 08:16 3837324 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
+ 2009-07-14 04:45 . 2011-04-15 08:32 3837324 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
- 2011-02-14 21:00 . 2011-04-13 02:38 2153400 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2011-02-14 21:00 . 2011-04-15 08:34 2153400 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2010-12-30 17:35 . 2011-04-15 08:23 9125964 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-800867951-441533802-1533705285-1000-8192.dat
- 2010-12-30 17:35 . 2011-04-13 02:38 9125964 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-800867951-441533802-1533705285-1000-8192.dat
+ 2011-02-10 03:15 . 2011-02-10 03:15 4960080 c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorlib.dll
- 2010-03-18 13:27 . 2010-03-18 13:27 4960080 c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorlib.dll
- 2010-03-18 13:27 . 2010-03-18 13:27 1453392 c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscordbi.dll
+ 2011-02-10 03:15 . 2011-02-10 03:15 1453392 c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscordbi.dll
+ 2011-02-10 03:15 . 2011-02-10 03:15 1513816 c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscordacwks.dll
+ 2011-02-10 03:15 . 2011-02-10 03:15 9801544 c:\windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
- 2010-12-26 23:28 . 2010-05-20 22:38 4567040 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorlib.dll
+ 2011-04-15 05:47 . 2011-02-07 23:30 4567040 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorlib.dll
+ 2011-04-15 05:47 . 2011-02-07 23:30 1576784 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
+ 2011-04-15 05:47 . 2011-02-07 23:30 1764184 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscordacwks.dll
- 2010-12-26 23:28 . 2010-05-20 22:38 1764184 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscordacwks.dll
- 2010-03-18 12:16 . 2010-03-18 12:16 5196112 c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorlib.dll
+ 2011-02-10 02:10 . 2011-02-10 02:10 5196112 c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorlib.dll
+ 2011-02-10 02:10 . 2011-02-10 02:10 1142104 c:\windows\Microsoft.NET\Framework\v4.0.30319\mscordacwks.dll
+ 2011-02-10 02:10 . 2011-02-10 02:10 6735176 c:\windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
+ 2011-04-15 05:48 . 2011-02-07 23:35 5817168 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
- 2010-12-26 23:28 . 2010-05-20 22:49 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2011-04-15 05:47 . 2011-02-07 23:35 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 1303896 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsBase\v4.0_4.0.0.0__31bf3856ad364e35\WindowsBase.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 1303896 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsBase\v4.0_4.0.0.0__31bf3856ad364e35\WindowsBase.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 3481928 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System\v4.0_4.0.0.0__b77a5c561934e089\System.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 3481928 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System\v4.0_4.0.0.0__b77a5c561934e089\System.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 2207568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml\v4.0_4.0.0.0__b77a5c561934e089\System.XML.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 2207568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml\v4.0_4.0.0.0__b77a5c561934e089\System.XML.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 4982120 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 4982120 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 1711496 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms.DataVisualization\v4.0_4.0.0.0__31bf3856ad364e35\System.Windows.Forms.DataVisualization.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 1711496 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms.DataVisualization\v4.0_4.0.0.0__31bf3856ad364e35\System.Windows.Forms.DataVisualization.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 6067048 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel\v4.0_4.0.0.0__b77a5c561934e089\System.ServiceModel.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 6067048 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel\v4.0_4.0.0.0__b77a5c561934e089\System.ServiceModel.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 1026936 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 1026936 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 4464480 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Entity\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Entity.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 4464480 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Entity\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Entity.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 1339736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Core\v4.0_4.0.0.0__b77a5c561934e089\System.Core.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 1339736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Core\v4.0_4.0.0.0__b77a5c561934e089\System.Core.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 1199968 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 1199968 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 1462648 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Presentation.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 1462648 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Presentation.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 6346600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 6346600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 3111768 c:\windows\Microsoft.NET\assembly\GAC_64\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 3111768 c:\windows\Microsoft.NET\assembly\GAC_64\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 3453792 c:\windows\Microsoft.NET\assembly\GAC_64\PresentationCore\v4.0_4.0.0.0__31bf3856ad364e35\PresentationCore.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 3453792 c:\windows\Microsoft.NET\assembly\GAC_64\PresentationCore\v4.0_4.0.0.0__31bf3856ad364e35\PresentationCore.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 4960080 c:\windows\Microsoft.NET\assembly\GAC_64\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 4960080 c:\windows\Microsoft.NET\assembly\GAC_64\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll
- 2011-01-04 21:20 . 2011-01-04 21:20 3563408 c:\windows\Microsoft.NET\assembly\GAC_64\Microsoft.VisualBasic.Activities.Compiler\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Activities.Compiler.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 3563408 c:\windows\Microsoft.NET\assembly\GAC_64\Microsoft.VisualBasic.Activities.Compiler\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Activities.Compiler.dll
- 2011-01-04 02:02 . 2011-01-04 02:02 2970968 c:\windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 2970968 c:\windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
- 2011-01-04 02:03 . 2011-01-04 02:03 3545952 c:\windows\Microsoft.NET\assembly\GAC_32\PresentationCore\v4.0_4.0.0.0__31bf3856ad364e35\PresentationCore.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 3545952 c:\windows\Microsoft.NET\assembly\GAC_32\PresentationCore\v4.0_4.0.0.0__31bf3856ad364e35\PresentationCore.dll
- 2011-01-04 02:02 . 2011-01-04 02:02 5196112 c:\windows\Microsoft.NET\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 5196112 c:\windows\Microsoft.NET\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2011-04-15 08:16 . 2011-04-15 08:16 2989456 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.VisualBasic.Activities.Compiler\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Activities.Compiler.dll
- 2011-01-04 02:03 . 2011-01-04 02:03 2989456 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.VisualBasic.Activities.Compiler\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Activities.Compiler.dll
+ 2011-03-17 17:43 . 2011-03-17 17:43 3448320 c:\windows\Installer\9906bb.msp
+ 2010-10-22 19:11 . 2010-10-22 19:11 1800192 c:\windows\Installer\990682.msp
+ 2011-02-14 12:13 . 2011-04-15 08:23 1479520 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\xlicons.exe
- 2011-02-14 12:13 . 2011-03-09 23:13 1479520 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\xlicons.exe
+ 2011-02-14 12:13 . 2011-04-15 08:23 1858400 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\wordicon.exe
- 2011-02-14 12:13 . 2011-03-09 23:13 1858400 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\wordicon.exe
+ 2011-02-14 12:13 . 2011-04-15 08:23 3792736 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\pptico.exe
- 2011-02-14 12:13 . 2011-03-09 23:13 3792736 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\pptico.exe
- 2011-02-14 12:13 . 2011-03-09 23:13 1449312 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\accicons.exe
+ 2011-02-14 12:13 . 2011-04-15 08:23 1449312 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\accicons.exe
+ 2010-03-24 19:30 . 2010-03-24 19:30 1479520 c:\windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\XLICONS.EXE
+ 2010-03-24 19:30 . 2010-03-24 19:30 3792736 c:\windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\PPTICO.EXE
+ 2011-04-15 08:18 . 2011-04-15 08:18 3779072 c:\windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\8d8cf1d60737d945a526fb11577d4b8a\WindowsBase.ni.dll
+ 2011-04-15 08:18 . 2011-04-15 08:18 9000960 c:\windows\assembly\NativeImages_v4.0.30319_32\System\7abfd34ae39103ceccdfb8b262ed6a97\System.ni.dll
+ 2011-04-15 08:18 . 2011-04-15 08:18 5571584 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Xml\eb45dda4b68ae7f29995c3a3d909fbe7\System.Xml.ni.dll
+ 2011-04-15 08:18 . 2011-04-15 08:18 1651200 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\526f0a9717cbd8a50d09a10b5ce81c0d\System.Drawing.ni.dll
+ 2011-04-15 08:19 . 2011-04-15 08:19 6754816 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Data\adc8f2f7dff3233f2d72bcef8e58226a\System.Data.ni.dll
+ 2011-04-15 08:18 . 2011-04-15 08:18 2538496 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Data.SqlXml\c25dda9b477a33f9f235292114bb535c\System.Data.SqlXml.ni.dll
+ 2011-04-15 08:18 . 2011-04-15 08:18 2499072 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Data.Linq\8e0d083a7ad85b579d176e3594b5f3b8\System.Data.Linq.ni.dll
+ 2011-04-15 08:18 . 2011-04-15 08:18 7025664 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Core\69b1f8a15cdfb26e30c8761fa4f96940\System.Core.ni.dll
+ 2011-04-15 08:18 . 2011-04-15 08:18 1612288 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.CSharp\32454400da56267e19961852345d7a62\Microsoft.CSharp.ni.dll
+ 2011-04-15 08:32 . 2011-04-15 08:32 4927488 c:\windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\1e3f3f8caebccc43bac1ead6c499e86c\WindowsBase.ni.dll
+ 2011-04-15 08:32 . 2011-04-15 08:32 6948864 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Xml\204425dc0001e539afa7b421e22ad3d2\System.Xml.ni.dll
+ 2011-04-15 08:33 . 2011-04-15 08:33 2311168 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\62f46b8689863e5f23b1b69fe9c92eaf\System.Drawing.ni.dll
+ 2011-04-15 08:33 . 2011-04-15 08:33 2444288 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Deployment\72c2ada0c8d4c5db4d1264db7a884e4e\System.Deployment.ni.dll
+ 2011-04-15 08:32 . 2011-04-15 08:32 3461632 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data.SqlXml\72ee46246444eda0506c70290feb53a6\System.Data.SqlXml.ni.dll
+ 2011-04-15 08:31 . 2011-04-15 08:31 1308160 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\8de5af4b452750696e15e959e0e7b8a6\System.Configuration.ni.dll
+ 2011-04-15 08:34 . 2011-04-15 08:34 2109952 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationUI\cfb1bf2fef2f3ea4325302b86c50d30a\PresentationUI.ni.dll
- 2010-12-26 23:28 . 2010-05-20 22:38 4567040 c:\windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2011-04-15 05:47 . 2011-02-07 23:30 4567040 c:\windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
- 2010-12-26 23:28 . 2010-05-20 22:49 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2011-04-15 05:47 . 2011-02-07 23:35 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2011-04-15 05:47 . 2011-02-24 05:29 10989056 c:\windows\SysWOW64\ieframe.dll
- 2011-02-08 19:10 . 2010-12-21 05:35 10989056 c:\windows\SysWOW64\ieframe.dll
- 2009-07-14 02:34 . 2011-04-12 21:48 10223616 c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT
+ 2009-07-14 02:34 . 2011-04-15 08:28 10223616 c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT
+ 2010-12-26 23:36 . 2011-04-15 08:19 41455560 c:\windows\system32\MRT.exe
- 2011-02-08 19:10 . 2010-12-21 06:11 12369408 c:\windows\system32\ieframe.dll
+ 2011-04-15 05:47 . 2011-02-24 06:24 12369408 c:\windows\system32\ieframe.dll
+ 2011-04-15 05:48 . 2011-02-07 23:30 10059600 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
+ 2011-01-14 09:50 . 2011-01-14 09:50 46292480 c:\windows\Installer\9906d5.msp
+ 2011-03-08 12:12 . 2011-03-08 12:12 48317952 c:\windows\Installer\9906a3.msp
+ 2011-02-11 06:59 . 2011-02-11 06:59 23633408 c:\windows\Installer\99066c.msp
+ 2010-03-13 00:08 . 2010-03-13 00:08 24994656 c:\windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\XL12CNV.EXE
+ 2010-03-09 09:01 . 2010-03-09 09:01 15603560 c:\windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\PPCORE.DLL
+ 2010-03-13 14:09 . 2010-03-13 14:09 28232544 c:\windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\EXCEL.EXE
+ 2011-04-15 08:23 . 2011-04-15 08:23 10199552 c:\windows\assembly\NativeImages_v4.0.30319_64\Temp\2ac-0\System.Core.dll
+ 2011-04-15 08:18 . 2011-04-15 08:18 11722240 c:\windows\assembly\NativeImages_v4.0.30319_64\System\50931796f874c8ad4f66a52699021d6e\System.ni.dll
+ 2011-04-15 08:17 . 2011-04-15 08:17 19348992 c:\windows\assembly\NativeImages_v4.0.30319_64\mscorlib\8ac942bc694bac7795b45cf6b409524e\mscorlib.ni.dll
+ 2011-04-15 08:19 . 2011-04-15 08:19 13006336 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\85b61e27d3c08c0c8ff19deb75912e1d\System.Windows.Forms.ni.dll
+ 2011-04-15 08:19 . 2011-04-15 08:19 17629184 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\f1e3e74b135fcd61fa30090a2c2596a6\PresentationFramework.ni.dll
+ 2011-04-15 08:18 . 2011-04-15 08:18 11058176 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\3fe193ac81b9eafd76aafeec99bdbf6a\PresentationCore.ni.dll
+ 2011-04-15 08:18 . 2011-04-15 08:18 14415872 c:\windows\assembly\NativeImages_v4.0.30319_32\mscorlib\eb4e1e70734f6efb9c7de7ec5f452c9e\mscorlib.ni.dll
+ 2011-04-15 08:31 . 2011-04-15 08:31 10597376 c:\windows\assembly\NativeImages_v2.0.50727_64\System\98ac7ad6dcf7484bf8b4478ea6951cb6\System.ni.dll
+ 2011-04-15 08:33 . 2011-04-15 08:33 17378816 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\1109b73499e4e9b612bf55e2014d94df\System.Windows.Forms.ni.dll
+ 2011-04-15 08:34 . 2011-04-15 08:34 19169792 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\517c391cbd3151250f6dcf4c4b4d193e\PresentationFramework.ni.dll
+ 2011-04-15 08:33 . 2011-04-15 08:33 16513024 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\ba7e600eefb4ace27a48c034937e1e3c\PresentationCore.ni.dll
+ 2011-04-15 08:30 . 2011-04-15 08:30 15566848 c:\windows\assembly\NativeImages_v2.0.50727_64\mscorlib\10e3a3015e967b69f90d58230a694f67\mscorlib.ni.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Glary Memory Optimizer"="c:\program files (x86)\Glary Utilities\memdefrag.exe" [2010-12-24 108344]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"OfficeSyncProcess"="c:\program files\Microsoft Office\Office14\MSOSYNC.EXE" [2010-03-16 908160]
"Seznam Postak"="c:\program files (x86)\Seznam.cz\postak.exe" [2010-10-07 488728]
"NCsoft Launcher"="c:\program files (x86)\NCsoft\Launcher\NCLauncher.exe" [2011-02-23 38184]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2011-03-08 17037704]
"PlayataClient"="c:\users\Taťka a mamka\AppData\Local\Playata Client\PlayataClient.exe" [2011-03-17 536576]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-11-25 336384]
"SweetIM"="c:\program files (x86)\SweetIM\Messenger\SweetIM.exe" [2010-12-20 111928]
"TaskTray"="c:\program files (x86)\Driver-Soft\SuperOvladac\TaskTray.exe" [2011-01-27 284016]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-disabled]
"NBKeyScan"="c:\program files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
.
R2 gupdate;Služba Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-26 136176]
R3 ATICDSDr;ATICDSDr;c:\users\TAKAAM~1\AppData\Local\Temp\ATICDSDr.sys [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 51456888]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 AMD Reservation Manager;AMD Reservation Manager;c:\program files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe [2010-06-17 194496]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [x]
S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [x]
S2 TeamViewer5;TeamViewer 5;c:\program files (x86)\TeamViewer\Version5\TeamViewer_Service.exe [2010-07-06 173352]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [x]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2011-04-15 c:\windows\Tasks\GlaryInitialize.job
- c:\program files (x86)\Glary Utilities\initialize.exe [2011-02-15 13:13]
.
2011-04-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-26 23:36]
.
2011-04-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-26 23:36]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-02-23 14:04 134384 ----a-w- c:\program files\Alwil Software\Avast5\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]
"WheelMouse"="c:\program files\Mouse\Amoumain.exe" [2011-04-13 270336]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
mStart Page = hxxp://home.sweetim.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - c:\program files (x86)\ICQ7.4\ICQ.exe
TCP: {D478DE80-DC8B-40BB-9F2D-9410A09378E7} = 10.0.0.138
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
FF - ProfilePath - c:\users\Taťka a mamka\AppData\Roaming\Mozilla\Firefox\Profiles\j8xnt307.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as ... ource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_result ... r=1.1.9&q=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{6EDC3889-B841-4127-A2BF-C5FC48F972C7} - (no file)
WebBrowser-{30F9B915-B755-4826-820B-08FBA6BD249D} - (no file)
WebBrowser-{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
c:\program files (x86)\TeamViewer\Version5\TeamViewer.exe
.
**************************************************************************
.
Celkový čas: 2011-04-15 10:48:58 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-04-15 08:48
ComboFix2.txt 2011-04-13 02:53
.
Před spuštěním: 1 314 324 480
Po spuštění: 1 642 958 848
.
- - End Of File - - B721A860C09D57F5BA708B92E99D1EA3

prosim o kontrolu logu - doporuceno Vyřešeno

prosim o kontrolu logu - doporuceno

Re: kontrola logu - doporuceno

Re: prosim o kontrolu logu - doporuceno

Re: prosim o kontrolu logu - doporuceno

Re: prosim o kontrolu logu - doporuceno

Re: prosim o kontrolu logu - doporuceno

Re: prosim o kontrolu logu - doporuceno

Re: prosim o kontrolu logu - doporuceno

Re: prosim o kontrolu logu - doporuceno

Re: prosim o kontrolu logu - doporuceno

Re: prosim o kontrolu logu - doporuceno

Re: prosim o kontrolu logu - doporuceno

Kdo je online