Prosím o kontrolu logu. Vyřešeno

[Sigmaczek]

Zdravím . Prosím o kontrolu logu . Občas zamrzá v mozzile . Děkuji

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:44:25, on 6.12.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe
C:\Program Files (x86)\Hijack\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [ADSMTray] C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [SafeQ Client] "C:\Program Files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe"
O4 - HKLM\..\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] "C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" -minimized
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ICQ] "D:\Program Files (x86)\ICQ7.6\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized
O4 - HKCU\..\Run: [RGSC] D:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: SRS Premium Sound.lnk = ?
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - d:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - d:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {CC679CB8-DC4B-458B-B817-D447B3B6AC31} (Cisco AnyConnect Secure Mobility Client Web Control) - https://vpn.vsb.cz/CACHE/stc/1/binaries/vpnweb.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: BitComet Disk Boost Service (BITCOMET_HELPER_SERVICE) - http://www.BitComet.com - D:\Program Files\BitComet\tools\BitCometService.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - D:\Program Files (x86)\Nero 8\Nero 8\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NETGATE Registry Cleaner Service (NGRegClnSrv) - NETGATE Technologies s.r.o. - d:\Program Files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - D:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: Cisco AnyConnect Secure Mobility Agent (vpnagent) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Ashampoo LiveTuner Service (WO_LiveService) - Unknown owner - D:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe

--
End of file - 11304 bytes

[Reklama]

[Žbeky]

Fixni:

Kód: Vybrat vše

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKCU\..\Run: [RGSC] D:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
O16 - DPF: {CC679CB8-DC4B-458B-B817-D447B3B6AC31} (Cisco AnyConnect Secure Mobility Client Web Control) - https://vpn.vsb.cz/CACHE/stc/1/binaries/vpnweb.cab

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
- Pokud používáš Firefox, klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Chrome, nic dalšího nevybírej a dej Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(ZATÍM SÁM NIC NEMAŽ!).
Vlož sem pak obsah toho logu.

[Sigmaczek]

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Verze databáze: 8325

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

6.12.2011 23:06:23
mbam-log-2011-12-06 (23-06-23).txt

Typ: Rychlá kontrola
Kontrolované objekty: 178403
Uplynulý čas: 4 minut, 4 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

[memphisto]

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštìní se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynù, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by mìl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah

[Sigmaczek]

ComboFix 11-12-17.02 - asus 17.12.2011 21:23:21.3.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3949.2133 [GMT 1:00]
Spuštěný z: c:\users\asus\Downloads\ComboFix.exe
AV: ESET Smart Security 5.0 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Disabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 5.0 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\asus\pmtl93.dll
c:\windows\IsUn0405.exe
c:\windows\SysWow64\~.inf
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-11-17 do 2011-12-17 )))))))))))))))))))))))))))))))
.
.
2011-12-17 20:38 . 2011-12-17 20:38 -------- d-----w- c:\users\Public\AppData\Local\temp
2011-12-17 20:38 . 2011-12-17 20:38 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-12-17 19:45 . 2011-12-17 19:45 -------- d-----w- c:\program files\ANSYS Inc
2011-12-17 09:37 . 2011-12-17 09:37 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B768ADC7-098D-4297-9A2B-96199E586376}\offreg.dll
2011-12-17 08:51 . 2011-12-17 08:50 525544 ----a-w- c:\windows\system32\deployJava1.dll
2011-12-17 08:50 . 2011-12-17 08:50 -------- d-----w- c:\program files\Java
2011-12-16 06:55 . 2011-11-21 11:40 8822856 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B768ADC7-098D-4297-9A2B-96199E586376}\mpengine.dll
2011-12-15 13:58 . 2011-12-15 13:58 -------- d-----w- c:\program files (x86)\Common Files\Borland Shared
2011-12-15 13:58 . 2011-12-15 13:58 -------- d-----w- C:\pc-form
2011-12-14 06:02 . 2011-10-26 05:21 43520 ----a-w- c:\windows\system32\csrsrv.dll
2011-12-14 06:02 . 2011-11-24 04:52 3145216 ----a-w- c:\windows\system32\win32k.sys
2011-12-14 06:02 . 2011-10-15 06:31 723456 ----a-w- c:\windows\system32\EncDec.dll
2011-12-14 06:02 . 2011-10-15 05:38 534528 ----a-w- c:\windows\SysWow64\EncDec.dll
2011-12-14 06:02 . 2011-11-05 05:32 2048 ----a-w- c:\windows\system32\tzres.dll
2011-12-14 06:02 . 2011-11-05 04:26 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2011-12-09 17:34 . 2011-12-09 17:42 103736 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2011-12-09 17:33 . 2011-12-09 17:43 66872 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2011-12-06 18:30 . 2011-12-06 18:30 388096 ----a-r- c:\users\asus\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-12-06 18:30 . 2011-12-06 18:30 -------- d-----w- c:\program files (x86)\Hijack
2011-12-04 19:15 . 2011-12-04 19:15 -------- d-----w- c:\program files (x86)\TI Education
2011-12-04 19:06 . 2011-12-04 19:06 -------- d-----w- c:\windows\Vbox
2011-12-03 23:22 . 2011-12-03 23:19 39464 ----a-w- c:\windows\system32\drivers\btwl2cap.sys
2011-12-03 23:22 . 2011-12-03 23:19 349736 ----a-w- c:\windows\system32\drivers\btwampfl.sys
2011-12-03 23:22 . 2011-12-03 23:19 21416 ----a-w- c:\windows\system32\drivers\btwrchid.sys
2011-12-03 23:22 . 2011-12-03 23:19 138280 ----a-w- c:\windows\system32\drivers\btwavdt.sys
2011-12-03 23:22 . 2011-12-03 23:19 107560 ----a-w- c:\windows\system32\drivers\btwaudio.sys
2011-12-03 17:19 . 2011-12-03 18:31 -------- d-----w- c:\users\asus\AppData\Roaming\TeamViewer
2011-12-01 11:15 . 2011-12-01 11:15 -------- d-----w- c:\users\asus\AppData\Local\Cisco
2011-12-01 11:15 . 2011-12-01 11:15 -------- d-----w- c:\program files (x86)\Cisco
2011-12-01 11:13 . 2011-12-01 11:15 -------- d-----w- c:\programdata\Cisco
2011-12-01 09:59 . 2011-12-01 09:59 -------- d-----w- c:\users\asus\AppData\Roaming\pdfforge
2011-12-01 09:59 . 2005-04-15 19:58 1071088 ----a-w- c:\windows\SysWow64\MSCOMCTL.OCX
2011-12-01 09:58 . 2011-12-01 09:59 -------- d-----w- c:\program files (x86)\PDFCreator
2011-12-01 07:35 . 2011-12-01 07:36 -------- d-----w- c:\users\asus\AppData\Roaming\Smart PDF Creator
2011-12-01 07:35 . 2011-12-01 09:42 -------- d-----w- c:\program files\Smart PDF Creator
2011-11-30 23:23 . 2011-11-30 23:55 -------- d-----w- C:\VPN
2011-11-30 23:20 . 2011-11-30 23:20 -------- d-----w- c:\users\asus\AppData\Roaming\Kerio
2011-11-30 23:14 . 2011-12-06 18:31 -------- d-----w- c:\users\asus\AppData\Local\Diagnostics
2011-11-30 21:25 . 2011-11-30 21:25 -------- d-----w- c:\program files (x86)\Y Soft
2011-11-30 21:25 . 2010-09-29 13:13 141824 ----a-w- c:\windows\system32\SAFEQ64UI.DLL
2011-11-30 21:25 . 2010-09-29 13:13 9028096 ----a-w- c:\windows\system32\SAFEQVS64.DLL
2011-11-30 21:25 . 2010-08-27 11:46 602624 ----a-w- c:\windows\system32\SafeQCairoLib64.DLL
2011-11-29 20:59 . 2011-12-17 17:21 -------- d-----w- c:\users\asus\AppData\Local\CrashDumps
2011-11-29 13:37 . 2011-11-29 13:37 86016 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2011-11-29 13:37 . 2011-11-29 13:37 262144 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2011-11-29 13:35 . 2004-10-25 19:02 21664 ----a-w- c:\windows\SysWow64\drivers\Entech.sys
2011-11-29 13:35 . 2004-06-22 14:44 5632 ----a-w- c:\windows\SysWow64\drivers\Entech64.sys
2011-11-29 13:35 . 2001-11-19 18:05 3972 ----a-w- c:\windows\SysWow64\drivers\PciBus.sys
2011-11-29 13:35 . 2011-11-29 13:35 -------- d-----w- c:\windows\SysWow64\Futuremark
2011-11-29 11:04 . 2011-11-29 11:04 -------- d--h--w- c:\programdata\CanonBJ
2011-11-29 11:04 . 2008-05-26 19:00 82944 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPP9E.DLL
2011-11-29 11:04 . 2008-05-26 19:00 27648 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPD9E.DLL
2011-11-29 11:02 . 2008-05-26 19:00 279040 ----a-w- c:\windows\system32\CNMLM9E.DLL
2011-11-29 08:40 . 2011-11-29 08:40 -------- d-----w- c:\users\asus\AppData\Local\Nero
2011-11-29 01:05 . 2011-11-29 01:05 -------- d-----w- c:\users\asus\AppData\Local\Broadcom
2011-11-29 01:01 . 2011-11-29 00:59 22056 ----a-w- c:\windows\system32\btwcoins.dll
2011-11-29 01:00 . 2011-11-29 01:00 -------- d-----w- c:\program files\WIDCOMM
2011-11-29 00:14 . 2011-11-29 00:14 -------- d-----w- c:\windows\SysWow64\xlive
2011-11-29 00:14 . 2011-11-29 00:14 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE
2011-11-28 22:27 . 2011-11-28 22:27 -------- d--h--r- c:\users\asus\AppData\Roaming\SecuROM
2011-11-28 22:06 . 2011-11-28 22:06 279616 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-11-28 19:49 . 2011-11-28 19:53 -------- d-----w- C:\Downloads
2011-11-28 19:49 . 2011-11-28 19:49 -------- d-----w- c:\users\asus\AppData\Roaming\BitComet
2011-11-28 18:49 . 2011-11-28 23:19 -------- d-----w- c:\program files (x86)\Common Files\Steam
2011-11-28 10:57 . 2011-11-21 04:19 134104 ----a-w- c:\program files (x86)\Mozilla Firefox\components\browsercomps.dll
2011-11-28 10:17 . 2011-11-28 10:17 -------- d-----w- c:\program files\CPUID
2011-11-27 18:34 . 2011-11-27 18:34 -------- d-----w- C:\DX
2011-11-25 10:54 . 2011-11-25 10:56 -------- d-----w- c:\program files\Defraggler
2011-11-25 10:34 . 2011-11-25 10:36 -------- d-----w- c:\users\asus\AppData\Roaming\TuneUp Software
2011-11-25 10:33 . 2011-11-25 10:34 -------- d-----w- c:\programdata\TuneUp Software
2011-11-25 10:33 . 2011-11-25 10:33 -------- d-sh--w- c:\programdata\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
2011-11-25 10:23 . 2011-11-25 10:23 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-11-21 19:58 . 2010-05-26 10:41 1998168 ----a-w- c:\windows\SysWow64\D3DX9_43.dll
2011-11-21 08:25 . 2011-11-21 08:25 -------- d-----w- c:\program files (x86)\SystemRequirementsLab
2011-11-21 07:23 . 2009-08-24 21:13 34304 ----a-w- c:\windows\system32\DfSdkBt.exe
2011-11-21 00:06 . 2011-11-21 00:06 -------- d-----w- c:\program files (x86)\Common Files\LANGMaster
2011-11-20 19:42 . 2011-11-20 19:42 -------- d-----w- c:\users\asus\AppData\Roaming\LANGMaster
2011-11-20 19:34 . 2011-11-21 06:45 -------- d-----w- c:\users\asus\AppData\Roaming\langmaster.cz
2011-11-20 09:45 . 2011-11-20 09:45 -------- d-----w- c:\users\asus\AppData\Roaming\OpenArena
2011-11-19 15:18 . 2011-11-22 12:13 234768 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2011-11-18 15:19 . 2011-05-24 17:14 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-11-18 13:17 . 2011-11-18 13:17 -------- d--h--w- c:\programdata\Common Files
2011-11-18 13:16 . 2011-11-18 14:58 -------- d-----w- c:\programdata\MFAData
2011-11-18 09:52 . 2011-11-18 09:52 -------- d-----w- c:\programdata\Grisoft
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-12-13 10:53 . 2011-11-06 21:36 241645 ----a-w- c:\windows\SysWow64\~.tmp
2011-11-17 04:15 . 2011-10-30 23:22 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-11-13 22:53 . 2011-11-13 22:53 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2011-11-01 09:19 . 2011-11-01 09:19 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2011-11-01 09:19 . 2011-11-01 09:19 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2011-11-01 09:19 . 2011-11-01 09:19 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2011-11-01 09:19 . 2011-11-01 09:19 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2011-11-01 09:19 . 2011-11-01 09:19 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2011-11-01 09:19 . 2011-11-01 09:19 367104 ----a-w- c:\windows\SysWow64\html.iec
2011-11-01 09:19 . 2011-11-01 09:19 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2011-11-01 09:19 . 2011-11-01 09:19 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2011-11-01 09:19 . 2011-11-01 09:19 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2011-11-01 09:19 . 2011-11-01 09:19 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2011-11-01 09:19 . 2011-11-01 09:19 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2011-11-01 09:19 . 2011-11-01 09:19 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2011-11-01 09:19 . 2011-11-01 09:19 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2011-11-01 09:19 . 2011-11-01 09:19 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2011-11-01 09:19 . 2011-11-01 09:19 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2011-11-01 09:19 . 2011-11-01 09:19 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2011-11-01 09:19 . 2011-11-01 09:19 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-11-01 09:19 . 2011-11-01 09:19 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-11-01 09:19 . 2011-11-01 09:19 76800 ----a-w- c:\windows\system32\tdc.ocx
2011-11-01 09:19 . 2011-11-01 09:19 49664 ----a-w- c:\windows\system32\imgutil.dll
2011-11-01 09:19 . 2011-11-01 09:19 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-11-01 09:19 . 2011-11-01 09:19 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2011-11-01 09:19 . 2011-11-01 09:19 222208 ----a-w- c:\windows\system32\msls31.dll
2011-11-01 09:19 . 2011-11-01 09:19 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2011-11-01 09:19 . 2011-11-01 09:19 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-11-01 09:19 . 2011-11-01 09:19 12288 ----a-w- c:\windows\system32\mshta.exe
2011-11-01 09:19 . 2011-11-01 09:19 114176 ----a-w- c:\windows\system32\admparse.dll
2011-11-01 09:19 . 2011-11-01 09:19 111616 ----a-w- c:\windows\system32\iesysprep.dll
2011-11-01 09:19 . 2011-11-01 09:19 85504 ----a-w- c:\windows\system32\iesetup.dll
2011-11-01 09:19 . 2011-11-01 09:19 603648 ----a-w- c:\windows\system32\vbscript.dll
2011-11-01 09:19 . 2011-11-01 09:19 448512 ----a-w- c:\windows\system32\html.iec
2011-11-01 09:19 . 2011-11-01 09:19 30720 ----a-w- c:\windows\system32\licmgr10.dll
2011-11-01 09:19 . 2011-11-01 09:19 165888 ----a-w- c:\windows\system32\iexpress.exe
2011-11-01 09:19 . 2011-11-01 09:19 160256 ----a-w- c:\windows\system32\wextract.exe
2011-10-31 15:31 . 2011-10-31 15:31 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2011-10-29 20:56 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2011-10-29 20:56 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2011-10-28 08:00 . 2011-11-05 22:20 74752 ----a-w- c:\windows\SysWow64\ff_vfw.dll
2011-10-27 06:24 . 2011-10-27 06:24 238 ----a-w- c:\windows\system32\AF15IRTBL.bin
2011-10-22 11:21 . 2011-10-22 11:21 71680 ----a-w- c:\windows\system32\frapsv64.dll
2011-10-22 11:21 . 2011-10-22 11:21 65536 ----a-w- c:\windows\SysWow64\frapsvid.dll
2011-09-29 16:29 . 2011-11-09 05:40 1923952 ----a-w- c:\windows\system32\drivers\tcpip.sys
2009-04-08 17:31 . 2009-04-08 17:31 106496 ----a-w- c:\program files (x86)\Common Files\CPInstallAction.dll
2008-08-12 04:45 . 2008-08-12 04:45 155648 ----a-w- c:\program files (x86)\Common Files\MSIactionall.dll
.
.
((((((((((((((((((((((((((((( SnapShot_2011-12-06_22.51.03 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-03-18 16:08 . 2011-03-18 16:08 29592 c:\windows\SysWOW64\speedfan.sys
- 2011-11-01 09:19 . 2011-11-01 09:19 72704 c:\windows\SysWOW64\mshtmled.dll
+ 2011-12-14 06:14 . 2011-11-03 22:32 72704 c:\windows\SysWOW64\mshtmled.dll
+ 2011-12-14 06:14 . 2011-11-03 22:37 66048 c:\windows\SysWOW64\migration\WininetPlugin.dll
- 2011-11-01 09:19 . 2011-11-01 09:19 66048 c:\windows\SysWOW64\migration\WininetPlugin.dll
+ 1999-03-26 15:59 . 1999-03-26 15:59 53248 c:\windows\SysWOW64\MFC42CSY.DLL
+ 2011-12-14 06:14 . 2011-11-03 22:37 65024 c:\windows\SysWOW64\jsproxy.dll
- 2011-11-01 09:19 . 2011-11-01 09:19 65024 c:\windows\SysWOW64\jsproxy.dll
+ 2011-10-29 06:41 . 2011-12-14 06:20 16384 c:\windows\SysWOW64\%APPDATA%\Microsoft\Windows\IETldCache\index.dat
- 2011-10-29 06:41 . 2011-11-28 14:49 16384 c:\windows\SysWOW64\%APPDATA%\Microsoft\Windows\IETldCache\index.dat
+ 2010-08-24 08:40 . 2011-12-17 08:56 60610 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2011-12-17 09:22 37974 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2011-10-19 05:34 . 2011-12-17 09:22 11728 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-231062597-2546089165-273083180-1000_UserData.bin
+ 2011-12-07 20:08 . 2007-04-09 12:23 46472 c:\windows\system32\spool\drivers\x64\mdiui.dll
- 2011-11-01 09:19 . 2011-11-01 09:19 96256 c:\windows\system32\mshtmled.dll
+ 2011-12-14 06:14 . 2011-11-04 01:35 96256 c:\windows\system32\mshtmled.dll
+ 2011-12-14 06:14 . 2011-11-04 01:41 86528 c:\windows\system32\migration\WininetPlugin.dll
- 2011-11-01 09:19 . 2011-11-01 09:19 86528 c:\windows\system32\migration\WininetPlugin.dll
- 2011-11-01 09:19 . 2011-11-01 09:19 85504 c:\windows\system32\jsproxy.dll
+ 2011-12-14 06:14 . 2011-11-04 01:41 85504 c:\windows\system32\jsproxy.dll
+ 2009-07-14 04:46 . 2011-12-15 06:01 91888 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
+ 2011-05-24 15:27 . 2011-05-24 15:27 60928 c:\windows\Installer\3f817ae.msp
+ 2011-12-10 12:20 . 2011-12-10 12:20 10134 c:\windows\Installer\{931C37FC-594D-43A9-B10F-A2F2B1F03498}\ARPPRODUCTICON.exe
- 2011-10-26 16:00 . 2011-12-01 05:56 35088 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe
+ 2011-10-26 16:00 . 2011-12-15 15:37 35088 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe
- 2011-10-26 16:00 . 2011-12-01 05:56 18704 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe
+ 2011-10-26 16:00 . 2011-12-15 15:37 18704 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe
+ 2011-10-26 16:00 . 2011-12-15 15:37 20240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe
- 2011-10-26 16:00 . 2011-12-01 05:56 20240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe
+ 2011-12-07 20:07 . 2011-12-14 15:24 23040 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\unbndico.exe
+ 2011-12-07 20:07 . 2011-12-14 15:24 61440 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\pubs.exe
+ 2011-12-07 20:07 . 2011-12-14 15:24 27136 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\oisicon.exe
+ 2011-12-07 20:07 . 2011-12-14 15:24 11264 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\mspicons.exe
+ 2011-12-07 20:07 . 2011-12-14 15:24 86016 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\inficon.exe
+ 2011-12-07 20:07 . 2011-12-14 15:24 12288 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2011-12-10 12:16 . 2011-12-10 12:16 10134 c:\windows\Installer\{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}\ARPPRODUCTICON.exe
+ 2007-03-22 18:07 . 2007-03-22 18:07 78168 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\RM.DLL
+ 2007-03-22 18:07 . 2007-03-22 18:07 41824 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\RECALL.DLL
+ 2007-03-22 18:05 . 2007-03-22 18:05 97632 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\PP7X32.DLL
+ 2007-04-19 12:53 . 2007-04-19 12:53 69984 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OUTLRPC.DLL
+ 2001-06-05 15:13 . 2001-06-05 15:13 40972 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OCRVC.DAT
+ 2001-10-23 07:13 . 2001-10-23 07:13 53260 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OCRHC.DAT
+ 2001-06-05 15:13 . 2001-06-05 15:13 65536 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\LOOKUP.DAT
+ 2001-06-05 15:13 . 2001-06-05 15:13 18844 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\JFONT.DAT
+ 2007-03-22 18:13 . 2007-03-22 18:13 23904 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\IPDMCTRL.DLL
+ 2001-06-05 15:13 . 2001-06-05 15:13 34168 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\ENGIDX.DAT
+ 2007-03-22 18:07 . 2007-03-22 18:07 80224 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\DLGSETP.DLL
+ 2007-03-22 18:07 . 2007-03-22 18:07 91488 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\ADDRPARS.DLL
+ 2003-01-17 21:03 . 2003-01-17 21:03 59466 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\XSCAN32.DAT
+ 1999-12-10 04:21 . 1999-12-10 04:21 32768 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\XLCALL32.DLL
+ 2011-12-07 20:06 . 2011-12-07 20:06 64088 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\VBIDEPIA.DLL
+ 2003-07-15 05:57 . 2003-07-15 05:57 59960 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\UNBIND.EXE
+ 2002-10-07 16:49 . 2002-10-07 16:49 81983 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\TWRECS.DLL
+ 2003-07-15 06:00 . 2003-07-15 06:00 99904 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\TRANSMGR.DLL
+ 2003-07-15 05:53 . 2003-07-15 05:53 11848 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\SMARTTAGINSTALL.EXE
+ 2003-07-14 21:57 . 2003-07-14 21:57 58944 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\SEQCHK10.DLL
+ 2003-07-15 05:44 . 2003-07-15 05:44 66616 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\SENDTO.DLL
+ 2003-07-15 05:43 . 2003-07-15 05:43 74288 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\RM.DLL
+ 2002-10-07 16:49 . 2002-10-07 16:49 81984 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\REVERSE.DLL
+ 2003-07-15 05:57 . 2003-07-15 05:57 40512 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\REFIEBAR.DLL
+ 2003-05-09 04:54 . 2003-05-09 04:54 77824 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\REFEDIT.DLL
+ 2003-07-15 05:42 . 2003-07-15 05:42 37432 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\RECALL.DLL
+ 2003-07-15 05:40 . 2003-07-15 05:40 51256 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\PUBTRAP.DLL
+ 2003-01-13 22:04 . 2003-01-13 22:04 39504 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\PUBENV.DLL
+ 2003-07-15 10:18 . 2003-07-15 10:18 93752 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\PP7X32.DLL
+ 2003-07-15 05:43 . 2003-07-15 05:43 49208 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OUTLWAB.DLL
+ 2003-07-15 05:43 . 2003-07-15 05:43 64056 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OUTLRPC.DLL
+ 2003-07-15 05:44 . 2003-07-15 05:44 88128 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OUTLMIME.DLL
+ 2003-07-15 05:41 . 2003-07-15 05:41 24640 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OUTLACCT.DLL
+ 2003-07-28 19:28 . 2003-07-28 19:28 89136 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OSE.EXE
+ 2003-07-14 21:53 . 2003-07-14 21:53 95792 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OSA.EXE
+ 2011-12-07 20:06 . 2011-12-07 20:06 35448 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OLCTLPIA.DLL
+ 2003-07-15 10:14 . 2003-07-15 10:14 27192 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OISCTRL.DLL
+ 2003-07-15 05:56 . 2003-07-15 05:56 13888 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\NPOFFICE.DLL
+ 2003-07-15 05:57 . 2003-07-15 05:57 56888 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\NAME.DLL
+ 2011-12-07 20:06 . 2011-12-07 20:06 20080 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSTAGPIA.DLL
+ 2003-07-15 05:52 . 2003-07-15 05:52 41528 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSSH.DLL
+ 2003-06-19 00:31 . 2003-06-19 00:31 16384 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSPGIMME.DLL
+ 2003-07-15 05:45 . 2003-07-15 05:45 39488 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSOXMLMF.DLL
+ 2003-07-15 05:45 . 2003-07-15 05:45 55360 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSOXMLED.EXE
+ 2003-07-15 05:46 . 2003-07-15 05:46 42040 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSOXEV.DLL
+ 2003-07-15 05:53 . 2003-07-15 05:53 39488 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSOSVFBR.DLL
+ 2003-07-15 05:53 . 2003-07-15 05:53 55872 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSOSVABW.DLL
+ 2003-07-15 05:52 . 2003-07-15 05:52 35896 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSOSV.DLL
+ 2003-07-14 21:52 . 2003-07-14 21:52 28224 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSOSTYLE.DLL
+ 2003-07-15 05:56 . 2003-07-15 05:56 54328 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSOMSE.DLL
+ 2003-07-15 05:52 . 2003-07-15 05:52 55360 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSOHTMED.EXE
+ 2003-07-15 05:52 . 2003-07-15 05:52 67128 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSOHEV.DLL
+ 2003-07-15 05:44 . 2003-07-15 05:44 25144 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSOEURO.DLL
+ 2003-07-15 05:52 . 2003-07-15 05:52 27704 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSODCW.DLL
+ 2003-07-15 05:52 . 2003-07-15 05:52 17464 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSMH.DLL
+ 2003-07-15 05:51 . 2003-07-15 05:51 87104 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSENCODE.DLL
+ 2003-07-15 05:56 . 2003-07-15 05:56 40504 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSE7.EXE
+ 2003-07-15 06:12 . 2003-07-15 06:12 47872 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSB1XTOR.DLL
+ 2003-06-19 00:31 . 2003-06-19 00:31 35328 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MDIUI.DLL
+ 2003-06-19 00:31 . 2003-06-19 00:31 18944 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MDIPPR.DLL
+ 2003-06-19 00:31 . 2003-06-19 00:31 17920 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MDIMON.DLL
+ 2003-07-15 05:45 . 2003-07-15 05:45 58944 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\INLAUNCH.DLL
+ 2003-07-14 21:57 . 2003-07-14 21:57 87096 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\IEAWSDC.DLL
+ 2003-07-15 05:41 . 2003-07-15 05:41 13368 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\FINDER.EXE
+ 2003-07-15 05:53 . 2003-07-15 05:53 34880 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\DWTRIG20.EXE
+ 2003-07-15 05:52 . 2003-07-15 05:52 39992 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\DWDCW20.DLL
+ 2003-07-15 05:57 . 2003-07-15 05:57 98360 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\DSSM.EXE
+ 2003-07-15 05:56 . 2003-07-15 05:56 14904 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\DSITF.DLL
+ 2003-07-26 01:57 . 2003-07-26 01:57 75832 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\DLGSETP.DLL
+ 2003-07-15 10:18 . 2003-07-15 10:18 14400 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\DFUIPRXY.DLL
+ 2003-07-15 10:18 . 2003-07-15 10:18 47160 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\DFUICOM.EXE
+ 2003-07-14 21:53 . 2003-07-14 21:53 46144 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\BLNMGRPS.DLL
+ 2003-07-14 21:53 . 2003-07-14 21:53 60984 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\BLNMGR.DLL
+ 2003-07-15 05:53 . 2003-07-15 05:53 94768 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\AW.DLL
+ 2003-07-15 05:57 . 2003-07-15 05:57 38968 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\AUTHZAX.DLL
+ 2003-07-15 05:43 . 2003-07-15 05:43 87616 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\ADDRPARS.DLL
+ 2011-07-20 04:32 . 2011-07-20 04:32 47496 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6612\PUBTRAP.DLL
+ 2011-12-08 00:30 . 2011-12-08 00:30 66936 c:\windows\assembly\GAC\Microsoft.Vbe.Interop\11.0.0.0__71e9bce111e9429c\Microsoft.Vbe.Interop.dll
+ 2011-12-08 00:30 . 2011-12-08 00:30 22928 c:\windows\assembly\GAC\Microsoft.Office.Interop.SmartTag\11.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.SmartTag.dll
+ 2011-12-08 00:30 . 2011-12-08 00:30 38304 c:\windows\assembly\GAC\Microsoft.Office.Interop.OutlookViewCtl\11.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.OutlookViewCtl.dll
+ 2011-12-08 00:30 . 2011-12-08 00:30 91488 c:\windows\assembly\GAC\Microsoft.Office.Interop.InfoPath.Xml\11.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.InfoPath.Xml.dll
+ 1999-05-19 14:58 . 1999-05-19 14:58 7680 c:\windows\SysWOW64\MSPRPCS.DLL
+ 2011-10-30 09:56 . 2011-12-13 00:26 5904 c:\windows\system32\wdi\ERCQueuedResolutions.dat
+ 2011-12-15 18:01 . 2011-12-15 18:01 9560 c:\windows\system32\NetworkList\Icons\{9147AB80-42B3-4335-8F9C-DED8607F3ACC}_48.bin
+ 2011-12-15 18:01 . 2011-12-15 18:01 4280 c:\windows\system32\NetworkList\Icons\{9147AB80-42B3-4335-8F9C-DED8607F3ACC}_32.bin
+ 2011-12-15 18:01 . 2011-12-15 18:01 2456 c:\windows\system32\NetworkList\Icons\{9147AB80-42B3-4335-8F9C-DED8607F3ACC}_24.bin
+ 2010-08-24 08:13 . 2011-12-17 09:19 6048 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Bluetooth\bthservsdp.dat
- 2010-08-24 08:13 . 2011-12-05 23:56 6048 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Bluetooth\bthservsdp.dat
+ 2011-12-17 09:20 . 2011-12-17 09:20 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2011-12-06 06:45 . 2011-12-06 06:45 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-12-17 09:20 . 2011-12-17 09:20 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2011-12-06 06:45 . 2011-12-06 06:45 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-12-07 20:07 . 2011-12-14 15:24 4096 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2003-06-19 00:31 . 2003-06-19 00:31 6144 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OCRPS.DLL
- 2011-11-01 09:19 . 2011-11-01 09:19 231936 c:\windows\SysWOW64\url.dll
+ 2011-12-14 06:14 . 2011-11-03 22:38 231936 c:\windows\SysWOW64\url.dll
+ 2000-04-03 16:52 . 2000-04-03 16:52 151552 c:\windows\SysWOW64\RDOCURS.DLL
+ 2000-05-11 12:06 . 2000-05-11 12:06 397312 c:\windows\SysWOW64\MSRDO20.DLL
- 2011-11-01 09:19 . 2011-11-01 09:19 716800 c:\windows\SysWOW64\jscript.dll
+ 2011-12-14 06:14 . 2011-11-03 22:34 716800 c:\windows\SysWOW64\jscript.dll
- 2011-11-01 09:19 . 2011-11-01 09:19 176640 c:\windows\SysWOW64\ieui.dll
+ 2011-12-14 06:14 . 2011-11-03 22:28 176640 c:\windows\SysWOW64\ieui.dll
+ 2011-10-24 13:29 . 2011-12-15 21:37 343076 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S4.bin
+ 2011-10-19 06:14 . 2011-12-17 20:36 319218 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
- 2011-11-01 09:19 . 2011-11-01 09:19 237056 c:\windows\system32\url.dll
+ 2011-12-14 06:14 . 2011-11-04 01:43 237056 c:\windows\system32\url.dll
+ 2011-12-07 20:08 . 2007-04-09 12:24 758664 c:\windows\system32\spool\drivers\x64\mdigraph.dll
- 2009-07-14 02:36 . 2011-12-06 14:35 616008 c:\windows\system32\perfh009.dat
+ 2009-07-14 02:36 . 2011-12-17 09:27 616008 c:\windows\system32\perfh009.dat
- 2009-08-03 20:00 . 2011-12-06 14:35 631292 c:\windows\system32\perfh005.dat
+ 2009-08-03 20:00 . 2011-12-17 09:27 631292 c:\windows\system32\perfh005.dat
- 2009-07-14 02:36 . 2011-12-06 14:35 106388 c:\windows\system32\perfc009.dat
+ 2009-07-14 02:36 . 2011-12-17 09:27 106388 c:\windows\system32\perfc009.dat
- 2009-08-03 20:00 . 2011-12-06 14:35 121914 c:\windows\system32\perfc005.dat
+ 2009-08-03 20:00 . 2011-12-17 09:27 121914 c:\windows\system32\perfc005.dat
+ 2011-12-14 06:14 . 2011-11-04 01:39 818688 c:\windows\system32\jscript.dll
+ 2011-12-17 08:51 . 2011-12-17 08:50 190752 c:\windows\system32\javaws.exe
+ 2011-12-17 08:51 . 2011-12-17 08:50 172320 c:\windows\system32\javaw.exe
+ 2011-12-17 08:51 . 2011-12-17 08:50 172320 c:\windows\system32\java.exe
+ 2011-12-14 06:14 . 2011-11-04 01:30 248320 c:\windows\system32\ieui.dll
- 2011-11-01 09:19 . 2011-11-01 09:19 248320 c:\windows\system32\ieui.dll
+ 2009-07-14 04:45 . 2011-12-16 06:52 543304 c:\windows\system32\FNTCACHE.DAT
+ 2009-07-14 05:01 . 2011-12-17 09:19 464764 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-09-03 10:07 . 2009-09-03 10:07 630784 c:\windows\Installer\6dca2.msp
+ 2008-07-28 14:04 . 2008-07-28 14:04 162304 c:\windows\Installer\6da7d.msp
+ 2010-11-12 10:24 . 2010-11-12 10:24 884224 c:\windows\Installer\6da53.msp
+ 2011-12-17 08:50 . 2011-12-17 08:50 909312 c:\windows\Installer\166da4.msi
+ 2011-12-09 17:33 . 2011-12-09 17:33 216358 c:\windows\Installer\{E48469CC-635E-4FD5-A122-1497C286D217}\ARPPRODUCTICON.exe
+ 2011-12-15 15:36 . 2011-12-15 15:36 217864 c:\windows\Installer\{90120000-006E-0405-0000-0000000FF1CE}\misc.exe
- 2011-12-01 05:55 . 2011-12-01 05:55 217864 c:\windows\Installer\{90120000-006E-0405-0000-0000000FF1CE}\misc.exe
- 2011-10-26 16:00 . 2011-12-01 05:56 888080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
+ 2011-10-26 16:00 . 2011-12-15 15:37 888080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
+ 2011-10-26 16:00 . 2011-12-15 15:37 272648 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe
- 2011-10-26 16:00 . 2011-12-01 05:56 272648 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe
+ 2011-10-26 16:00 . 2011-12-15 15:37 922384 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe
- 2011-10-26 16:00 . 2011-12-01 05:56 922384 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe
+ 2011-10-26 16:00 . 2011-12-15 15:37 845584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe
- 2011-10-26 16:00 . 2011-12-01 05:56 845584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe
+ 2011-10-26 16:00 . 2011-12-15 15:37 217864 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe
- 2011-10-26 16:00 . 2011-12-01 05:56 217864 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe
- 2011-10-26 16:00 . 2011-12-01 05:56 184080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe
+ 2011-10-26 16:00 . 2011-12-15 15:37 184080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe
- 2011-10-26 16:00 . 2011-12-01 05:56 159504 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe
+ 2011-10-26 16:00 . 2011-12-15 15:37 159504 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe
+ 2011-12-07 20:07 . 2011-12-14 15:24 409600 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\xlicons.exe
+ 2011-12-07 20:07 . 2011-12-14 15:24 286720 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\wordicon.exe
+ 2011-12-07 20:07 . 2011-12-14 15:24 249856 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\pptico.exe
+ 2011-12-07 20:07 . 2011-12-14 15:24 794624 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\outicon.exe
+ 2011-12-07 20:07 . 2011-12-14 15:24 135168 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\misc.exe
+ 2011-12-07 20:07 . 2011-12-14 15:24 593920 c:\windows\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2007-03-22 18:22 . 2007-03-22 18:22 103264 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\TRANSMGR.DLL
+ 2007-05-10 12:34 . 2007-05-10 12:34 562528 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\PUBCONV.DLL
+ 2007-05-31 12:36 . 2007-05-31 12:36 612184 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\PTXT9.DLL
+ 2007-05-31 12:35 . 2007-05-31 12:35 133976 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\PRTF9.DLL
+ 2011-12-08 00:30 . 2011-12-08 00:30 464272 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OWC11PIA.DLL
+ 2007-04-19 12:53 . 2007-04-19 12:53 149856 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OUTLPH.DLL
+ 2007-05-31 12:42 . 2007-05-31 12:42 200032 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OUTLOOK.EXE
+ 2007-04-19 12:53 . 2007-04-19 12:53 106336 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OUTLMIME.DLL
+ 2007-04-19 12:53 . 2007-04-19 12:53 109408 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OUTLCTL.DLL
+ 2005-05-03 22:06 . 2005-05-03 22:06 199408 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSMDUN80.DLL
+ 2005-05-03 22:06 . 2005-05-03 22:06 465640 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSDMENG.DLL
+ 2007-01-16 19:32 . 2007-01-16 19:32 136032 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSAEXP30.DLL
+ 2007-04-19 12:54 . 2007-04-19 12:54 183136 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MIMEDIR.DLL
+ 2011-12-08 00:30 . 2011-12-08 00:30 103776 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\IPATHPIA.DLL
+ 2007-04-19 12:53 . 2007-04-19 12:53 127328 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\IMPMAIL.DLL
+ 2007-04-19 12:53 . 2007-04-19 12:53 137568 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\ENVELOPE.DLL
+ 2001-06-05 15:13 . 2001-06-05 15:13 289926 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\ENGDIC.DAT
+ 2007-04-19 12:54 . 2007-04-19 12:54 169312 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\ACCWIZ.DLL
+ 2011-12-07 20:06 . 2011-12-07 20:06 662120 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\WORDPIA.DLL
+ 2003-04-02 18:21 . 2003-04-02 18:21 111632 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\WAVTOASF.EXE
+ 2002-10-07 16:51 . 2002-10-07 16:51 221252 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\TWSTRUCT.DLL
+ 2002-10-07 16:50 . 2002-10-07 16:50 118847 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\TWRECE.DLL
+ 2002-10-07 16:51 . 2002-10-07 16:51 102467 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\TWORIENT.DLL
+ 2002-10-07 16:51 . 2002-10-07 16:51 147520 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\TWLAY32.DLL
+ 2002-10-07 16:51 . 2002-10-07 16:51 180289 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\TWCUTLIN.DLL
+ 2002-10-07 16:50 . 2002-10-07 16:50 241729 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\TWCUTCHR.DLL
+ 2002-10-07 16:53 . 2002-10-07 16:53 106561 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\THOCRAPI.DLL
+ 2003-08-06 20:26 . 2003-08-06 20:26 445488 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\SOA.DLL
+ 2003-08-06 20:31 . 2003-08-06 20:31 362552 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\SETLANG.EXE
+ 2003-07-15 05:57 . 2003-07-15 05:57 349248 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\SELFCERT.EXE
+ 2003-07-21 18:46 . 2003-07-21 18:46 390712 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\RTFHTML.DLL
+ 2011-12-07 20:06 . 2011-12-07 20:06 211568 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\PUBPIA.DLL
+ 2003-07-15 05:50 . 2003-07-15 05:50 551480 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\PUBCONV.DLL
+ 2003-07-15 05:51 . 2003-07-15 05:51 604728 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\PTXT9.DLL
+ 2002-10-07 17:11 . 2002-10-07 17:11 167997 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\PSOM.DLL
+ 2003-07-15 05:40 . 2003-07-15 05:40 130104 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\PRTF9.DLL
+ 2011-12-07 20:06 . 2011-12-07 20:06 223856 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\PPTPIA.DLL
+ 2003-07-15 10:18 . 2003-07-15 10:18 430136 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\PP4X322.DLL
+ 2011-12-07 20:06 . 2011-12-07 20:06 461416 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OWC11PIA.DLL
+ 2011-12-07 20:06 . 2011-12-07 20:06 408176 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OUTLPIA.DLL
+ 2003-07-15 05:43 . 2003-07-15 05:43 139320 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OUTLPH.DLL
+ 2003-07-15 05:45 . 2003-07-15 05:45 196152 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OUTLOOK.EXE
+ 2003-07-08 18:48 . 2003-07-08 18:48 115288 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OUTLFLTR.DLL
+ 2003-07-15 05:44 . 2003-07-15 05:44 102968 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OUTLCTL.DLL
+ 2003-07-15 10:14 . 2003-07-15 10:14 242240 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OISGRAPH.DLL
+ 2003-07-15 10:14 . 2003-07-15 10:14 828472 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OISAPP.DLL
+ 2003-07-15 10:14 . 2003-07-15 10:14 283696 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OIS.EXE
+ 2011-12-07 20:06 . 2011-12-07 20:06 223800 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OFFICE.DLL
+ 2003-07-15 06:00 . 2003-07-15 06:00 145984 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSWEBCAP.DLL
+ 1998-06-17 18:52 . 1998-06-17 18:52 401462 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSVCP60.DLL
+ 2003-07-24 05:40 . 2003-07-24 05:40 482872 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSTORES.DLL
+ 2003-07-15 05:56 . 2003-07-15 05:56 124984 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSTORE.EXE
+ 2003-07-15 06:02 . 2003-07-15 06:02 627256 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSTORDB.EXE
+ 2000-05-24 05:45 . 2000-05-24 05:45 118784 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSSTDFMT.DLL
+ 2003-07-15 06:02 . 2003-07-15 06:02 637496 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSQRY32.EXE
+ 2003-06-19 23:05 . 2003-06-19 23:05 364648 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSPVIEW.EXE
+ 2003-06-19 23:05 . 2003-06-19 23:05 128104 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSPSCAN.EXE
+ 2003-06-19 00:31 . 2003-06-19 00:31 788480 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSPFILT.DLL
+ 2003-07-15 10:18 . 2003-07-15 10:18 376888 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSORUN.DLL
+ 2003-07-23 21:35 . 2003-07-23 21:35 127032 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSOCFU.DLL
+ 2003-07-15 02:14 . 2003-07-15 02:14 106552 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSOCF.DLL
+ 2003-07-14 21:57 . 2003-07-14 21:57 120888 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSOAUTH.DLL
+ 2002-04-09 19:14 . 2002-04-09 19:14 187560 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSMDUN80.DLL
+ 1998-11-05 14:27 . 1998-11-05 14:27 536576 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSLID.DLL
+ 2003-07-15 10:14 . 2003-07-15 10:14 139328 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSJSPP40.DLL
+ 2002-12-17 18:08 . 2002-12-17 18:08 359600 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSDMENG.DLL
+ 2003-07-15 05:51 . 2003-07-15 05:51 116288 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSCONV97.DLL
+ 2003-07-14 21:58 . 2003-07-14 21:58 230968 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSCDM.DLL
+ 2003-07-15 05:57 . 2003-07-15 05:57 124480 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSB1CORE.DLL
+ 2003-07-15 10:13 . 2003-07-15 10:13 130112 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSAEXP30.DLL
+ 2003-07-15 06:01 . 2003-07-15 06:01 445496 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MODHELP.DLL
+ 2003-07-15 05:46 . 2003-07-15 05:46 176696 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MIMEDIR.DLL
+ 2003-06-19 00:31 . 2003-06-19 00:31 443904 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MDIVWCTL.DLL
+ 2003-06-19 00:31 . 2003-06-19 00:31 252928 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MDIINK.DLL
+ 2003-06-19 00:31 . 2003-06-19 00:31 758784 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MDIGRAPH.DLL
+ 2003-05-28 22:42 . 2003-05-28 22:42 514680 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\INTLNAME.DLL
+ 2003-07-24 05:32 . 2003-07-24 05:32 121400 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\IMPMAIL.DLL
+ 2011-12-07 20:06 . 2011-12-07 20:06 141928 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\GRAPHPIA.DLL
+ 2003-07-26 02:14 . 2003-07-26 02:14 799288 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\FPWEC.DLL
+ 2003-07-15 05:40 . 2003-07-15 05:40 179768 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\FPERSON.DLL
+ 2003-07-15 06:36 . 2003-07-15 06:36 186424 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\FPDTC.DLL
+ 2003-07-31 14:25 . 2003-07-31 14:25 371296 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\FORMSPIA.DLL
+ 2002-10-07 16:49 . 2002-10-07 16:49 192573 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\FORM.DLL
+ 2003-07-31 22:19 . 2003-07-31 22:19 131648 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\ENVELOPE.DLL
+ 2003-07-15 02:14 . 2003-07-15 02:14 350264 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\CDLMSO.DLL
+ 2003-07-15 10:18 . 2003-07-15 10:18 141360 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\ATP.DLL
+ 2003-07-15 10:13 . 2003-07-15 10:13 166456 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\ACCWIZ.DLL
+ 2011-12-07 20:06 . 2011-12-07 20:06 997992 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\ACCESS.DLL
+ 2011-07-20 04:32 . 2011-07-20 04:32 593288 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6612\PUBCONV.DLL
+ 2011-07-27 03:42 . 2011-07-27 03:42 625040 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6612\PTXT9.DLL
+ 2011-07-20 04:32 . 2011-07-20 04:32 135056 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6612\PRTF9.DLL
+ 2011-05-31 14:58 . 2011-05-31 14:58 521080 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6612\POWERPNT.EXE
+ 2011-07-27 03:42 . 2011-07-27 03:42 497056 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6612\MORPH9.DLL
+ 2001-02-20 12:09 . 2001-02-20 12:09 154624 c:\windows\IME\SOFTKBD.DLL
+ 2001-02-20 12:09 . 2001-02-20 12:09 230400 c:\windows\IME\MSCANDUI.DLL
+ 2011-12-08 00:30 . 2011-12-08 00:30 226656 c:\windows\assembly\GAC\office\11.0.0.0__71e9bce111e9429c\OFFICE.DLL
+ 2011-12-08 00:30 . 2011-12-08 00:30 664968 c:\windows\assembly\GAC\Microsoft.Office.Interop.Word\11.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Word.dll
+ 2011-12-08 00:30 . 2011-12-08 00:30 214424 c:\windows\assembly\GAC\Microsoft.Office.Interop.Publisher\11.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Publisher.dll
+ 2011-12-08 00:30 . 2011-12-08 00:30 226712 c:\windows\assembly\GAC\Microsoft.Office.Interop.PowerPoint\11.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.PowerPoint.dll
+ 2011-12-08 05:50 . 2011-12-08 05:50 477056 c:\windows\assembly\GAC\Microsoft.Office.Interop.Owc11\11.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Owc11.dll
+ 2011-12-08 00:30 . 2011-12-08 00:30 411024 c:\windows\assembly\GAC\Microsoft.Office.Interop.Outlook\11.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Outlook.dll
+ 2011-12-08 05:44 . 2011-12-08 05:44 111624 c:\windows\assembly\GAC\Microsoft.Office.Interop.InfoPath\11.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.InfoPath.dll
+ 2011-12-08 00:30 . 2011-12-08 00:30 144784 c:\windows\assembly\GAC\Microsoft.Office.Interop.Graph\11.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Graph.dll
+ 2011-12-14 06:14 . 2011-11-03 22:39 1127424 c:\windows\SysWOW64\wininet.dll
+ 2011-12-14 06:14 . 2011-11-03 22:40 1103360 c:\windows\SysWOW64\urlmon.dll
+ 2011-12-14 06:14 . 2011-11-03 22:47 1798144 c:\windows\SysWOW64\jscript9.dll
- 2011-11-01 09:19 . 2011-11-01 09:19 1798144 c:\windows\SysWOW64\jscript9.dll
+ 2011-12-14 06:14 . 2011-11-03 22:32 1792000 c:\windows\SysWOW64\iertutil.dll
+ 2011-12-14 06:14 . 2011-11-03 22:46 9705472 c:\windows\SysWOW64\ieframe.dll
+ 2011-12-14 06:14 . 2011-11-04 01:44 1390080 c:\windows\system32\wininet.dll
+ 2011-12-14 06:14 . 2011-11-04 01:46 1345536 c:\windows\system32\urlmon.dll
- 2011-11-01 09:19 . 2011-11-01 09:19 2309120 c:\windows\system32\jscript9.dll
+ 2011-12-14 06:14 . 2011-11-04 01:53 2309120 c:\windows\system32\jscript9.dll
+ 2011-12-14 06:14 . 2011-11-04 01:36 2144256 c:\windows\system32\iertutil.dll
- 2009-07-14 04:45 . 2011-12-03 23:25 7112398 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
+ 2009-07-14 04:45 . 2011-12-14 07:07 7112398 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
+ 2011-11-18 17:18 . 2011-12-17 09:19 5086512 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2011-10-26 19:51 . 2011-12-17 09:19 5242266 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-231062597-2546089165-273083180-1000-8192.dat
+ 2011-11-01 12:53 . 2011-12-13 10:45 4909444 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-231062597-2546089165-273083180-1000-4096.dat
+ 2011-10-26 19:51 . 2011-12-17 08:53 4855316 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-231062597-2546089165-273083180-1000-12288.dat
+ 2010-08-05 10:31 . 2010-08-05 10:31 4040704 c:\windows\Installer\6dd88.msp
+ 2009-10-16 17:07 . 2009-10-16 17:07 6115328 c:\windows\Installer\6dd53.msp
+ 2010-10-22 14:45 . 2010-10-22 14:45 8444928 c:\windows\Installer\6dd2a.msp
+ 2011-07-26 07:17 . 2011-07-26 07:17 6824960 c:\windows\Installer\6dccc.msp
+ 2009-08-20 04:02 . 2009-08-20 04:02 5204992 c:\windows\Installer\6dc78.msp
+ 2010-06-11 16:55 . 2010-06-11 16:55 1827328 c:\windows\Installer\6dc4e.msp
+ 2009-07-01 12:21 . 2009-07-01 12:21 8891904 c:\windows\Installer\6dc0f.msp
+ 2010-08-23 16:09 . 2010-08-23 16:09 7673344 c:\windows\Installer\6dbd0.msp
+ 2008-01-14 15:53 . 2008-01-14 15:53 5213696 c:\windows\Installer\6dba6.msp
+ 2011-05-17 17:28 . 2011-05-17 17:28 6862848 c:\windows\Installer\6db7d.msp
+ 2011-04-29 12:04 . 2011-04-29 12:04 5053440 c:\windows\Installer\6db53.msp

[Sigmaczek]

+ 2009-12-16 21:58 . 2009-12-16 21:58 5382144 c:\windows\Installer\6db27.msp
+ 2008-10-25 08:15 . 2008-10-25 08:15 6227456 c:\windows\Installer\6dafa.msp
+ 2009-09-29 08:08 . 2009-09-29 08:08 6747648 c:\windows\Installer\6dad1.msp
+ 2011-05-23 13:15 . 2011-05-23 13:15 3617792 c:\windows\Installer\6daa7.msp
+ 2010-08-25 16:06 . 2010-08-25 16:06 6479360 c:\windows\Installer\6da2a.msp
+ 2010-10-01 20:53 . 2010-10-01 20:53 4147712 c:\windows\Installer\6da00.msp
+ 2010-03-30 11:34 . 2010-03-30 11:34 3826688 c:\windows\Installer\6d9d3.msp
+ 2005-10-26 13:59 . 2005-10-26 13:59 2883072 c:\windows\Installer\3f817d8.msp
+ 2011-11-03 12:31 . 2011-11-03 12:31 5525504 c:\windows\Installer\3f81628.msp
+ 2011-12-07 20:01 . 2011-12-07 20:01 5788160 c:\windows\Installer\305b4b1.msi
+ 2007-10-04 07:44 . 2007-10-04 07:44 8788992 c:\windows\Installer\24beb56.msi
+ 2010-05-17 16:37 . 2010-05-17 16:37 1133568 c:\windows\Installer\1f3a194.msi
+ 2011-11-01 12:34 . 2011-11-01 12:34 4250112 c:\windows\Installer\1318e6.msp
+ 2011-11-01 12:34 . 2011-11-01 12:34 2247168 c:\windows\Installer\1318c0.msp
+ 2011-10-29 22:10 . 2011-10-29 22:10 6824960 c:\windows\Installer\1318a9.msp
+ 2011-11-11 15:14 . 2011-11-11 15:14 9096192 c:\windows\Installer\13187f.msp
+ 2011-11-01 12:34 . 2011-11-01 12:34 4225536 c:\windows\Installer\131868.msp
+ 2011-10-31 11:37 . 2011-10-31 11:37 4146688 c:\windows\Installer\13184c.msp
+ 2011-11-01 12:34 . 2011-11-01 12:34 2531840 c:\windows\Installer\131821.msp
+ 2011-11-17 09:55 . 2011-11-17 09:55 5522944 c:\windows\Installer\13180a.msp
+ 2011-11-11 15:15 . 2011-11-11 15:15 1795584 c:\windows\Installer\1317e0.msp
+ 2011-11-11 15:16 . 2011-11-11 15:16 8458240 c:\windows\Installer\1317c9.msp
+ 2011-10-26 16:00 . 2011-12-15 15:37 1172240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
- 2011-10-26 16:00 . 2011-12-01 05:56 1172240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
+ 2011-10-26 16:00 . 2011-12-15 15:37 1165584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe
- 2011-10-26 16:00 . 2011-12-01 05:56 1165584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe
+ 2007-04-19 12:49 . 2007-04-19 12:49 1661280 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\PPTVIEW.EXE
+ 2007-05-31 12:35 . 2007-05-31 12:35 6420320 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\POWERPNT.EXE
+ 2007-05-10 12:45 . 2007-05-10 12:45 8069464 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OWC11.DLL
+ 2007-03-14 12:10 . 2007-03-14 12:10 7255384 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OWC10.DLL
+ 2007-05-31 12:43 . 2007-05-31 12:43 7613280 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OUTLLIB.DLL
+ 2007-04-19 13:09 . 2007-04-19 13:09 1061720 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\OMFC.DLL
+ 2007-05-10 12:35 . 2007-05-10 12:35 6747480 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSPUB.EXE
+ 2006-09-26 19:01 . 2006-09-26 19:01 2113536 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSOLAP80.DLL
+ 2005-05-03 22:06 . 2005-05-03 22:06 1411816 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSDMINE.DLL
+ 2007-05-10 12:43 . 2007-05-10 12:43 6688096 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSACCESS.EXE
+ 2007-04-30 13:57 . 2007-04-30 13:57 7084384 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\INFOPATH.EXE
+ 2003-04-30 18:52 . 2003-04-30 18:52 1581120 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\XPAGE3C.DLL
+ 2002-10-07 17:03 . 2002-10-07 17:03 1794113 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\XIMAGE3B.DLL
+ 2003-07-03 22:19 . 2003-07-03 22:19 2502656 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\VBE6.DLL
+ 2003-08-03 17:52 . 2003-08-03 17:52 2808376 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\STSLIST.DLL
+ 2003-07-31 22:21 . 2003-07-31 22:21 1782840 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\PPTVIEW.EXE
+ 2003-07-30 19:40 . 2003-07-30 19:40 6133312 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\POWERPNT.EXE
+ 2003-08-01 22:09 . 2003-08-01 22:09 8086072 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OWC11.DLL
+ 2003-08-04 20:19 . 2003-08-04 20:19 7330360 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OWC10.DLL
+ 2003-08-10 06:06 . 2003-08-10 06:06 7522360 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OUTLLIB.DLL
+ 2003-07-07 20:36 . 2003-07-07 20:36 2058343 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OUTLFLTR.DAT
+ 2003-07-15 06:05 . 2003-07-15 06:05 1054264 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\OMFC.DLL
+ 2003-07-28 19:24 . 2003-07-28 19:24 5677112 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSPUB.EXE
+ 2003-06-19 00:31 . 2003-06-19 00:31 1033216 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSPCORE.DLL
+ 2003-07-11 09:15 . 2003-07-11 09:15 1292872 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSONSEXT.DLL
+ 2002-12-17 18:09 . 2002-12-17 18:09 2071752 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSOLAP80.DLL
+ 2002-12-17 18:08 . 2002-12-17 18:08 1383592 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSDMINE.DLL
+ 2003-08-15 07:54 . 2003-08-15 07:54 6627392 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSACCESS.EXE
+ 2003-08-01 22:07 . 2003-08-01 22:07 4815424 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\INFOPATH.EXE
+ 2003-07-15 06:11 . 2003-07-15 06:11 2139192 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\GRAPH.EXE
+ 2003-07-26 02:00 . 2003-07-26 02:00 1157696 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\FPSRVUTL.DLL
+ 2003-07-24 06:01 . 2003-07-24 06:01 1949240 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\FPCUTL.DLL
+ 2003-08-03 17:56 . 2003-08-03 17:56 1146184 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\FM20.DLL
+ 2011-12-07 20:06 . 2011-12-07 20:06 1100392 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\EXCELPIA.DLL
+ 2011-05-31 16:24 . 2011-05-31 16:24 2014592 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6612\PPTVIEW.EXE
+ 2011-07-27 03:44 . 2011-07-27 03:44 8494968 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6612\PPCORE.DLL
+ 2011-07-27 03:42 . 2011-07-27 03:42 9596784 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6612\MSPUB.EXE
+ 2011-07-27 04:47 . 2011-07-27 04:47 2532736 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6612\GRAPH.EXE
+ 2011-12-08 00:30 . 2011-12-08 00:30 1103248 c:\windows\assembly\GAC\Microsoft.Office.Interop.Excel\11.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Excel.dll
+ 2011-12-08 00:29 . 2011-12-08 00:29 1000848 c:\windows\assembly\GAC\Microsoft.Office.Interop.Access\11.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Access.dll
+ 2011-12-14 06:14 . 2011-11-03 23:02 12279808 c:\windows\SysWOW64\mshtml.dll
+ 2009-07-14 02:34 . 2011-12-14 07:03 10747904 c:\windows\system32\SMI\Store\Machine\schema.dat
+ 2011-12-14 06:14 . 2011-11-04 02:38 17786368 c:\windows\system32\mshtml.dll
+ 2011-10-29 20:58 . 2011-12-14 06:17 54867776 c:\windows\system32\MRT.exe
+ 2011-12-14 06:14 . 2011-11-04 01:59 10886656 c:\windows\system32\ieframe.dll
+ 2011-12-10 12:18 . 2011-12-10 12:18 31356928 c:\windows\Installer\d9756e.msi
+ 2011-07-26 15:33 . 2011-07-26 15:33 10984448 c:\windows\Installer\6dcf6.msp
+ 2010-06-11 16:52 . 2010-06-11 16:52 45542912 c:\windows\Installer\6dc4f.msp
+ 2009-07-01 12:19 . 2009-07-01 12:19 10607104 c:\windows\Installer\6dc10.msp
+ 2007-05-31 12:37 . 2007-05-31 12:37 12310368 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\WINWORD.EXE
+ 2007-06-18 16:16 . 2007-06-18 16:16 12259160 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\MSO.DLL
+ 2007-05-31 12:41 . 2007-05-31 12:41 10352472 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.8173\EXCEL.EXE
+ 2003-08-06 20:24 . 2003-08-06 20:24 12037688 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\WINWORD.EXE
+ 2003-08-08 07:23 . 2003-08-08 07:23 12172336 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\MSO.DLL
+ 2003-08-13 09:34 . 2003-08-13 09:34 10073144 c:\windows\Installer\$PatchCache$\Managed\5040110900063D11C8EF10054038389C\11.0.5614\EXCEL.EXE
+ 2011-08-30 07:40 . 2011-08-30 07:40 15145832 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6612\XL12CNV.EXE
+ 2011-08-30 19:25 . 2011-08-30 19:25 18367336 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6612\EXCEL.EXE
+ 2011-12-10 12:14 . 2011-12-10 12:14 287711232 c:\windows\Installer\d97567.msi
+ 2007-07-27 07:43 . 2007-07-27 07:43 109673984 c:\windows\Installer\3f81785.msp
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 00:08 143360 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"ICQ"="d:\program files (x86)\ICQ7.6\ICQ.exe" [2011-10-26 127040]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2011-10-13 17762440]
"RGSC"="d:\program files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" [2008-11-14 305064]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"ADSMTray"="c:\program files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe" [2009-06-24 272952]
"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2010-02-04 7350912]
"SafeQ Client"="c:\program files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe" [2010-09-29 262144]
"Cisco AnyConnect Secure Mobility Agent for Windows"="c:\program files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" [2011-08-03 523216]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2011-3-25 1137952]
GamePark klient 2.lnk - d:\program files\GamePark2\gpcl.exe [2011-12-17 442880]
SRS Premium Sound.lnk - c:\windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe [2010-8-24 156952]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R1 vflt;Shrew Soft Lightweight Filter;c:\windows\system32\DRIVERS\vfilter.sys [x]
R2 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-10-21 196176]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-08-24 135664]
R3 acsock;acsock;c:\windows\system32\DRIVERS\acsock64.sys [x]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-08-24 135664]
R3 IT9135BDA;IT9135 BDA Devices;c:\windows\system32\Drivers\IT9135BDA.sys [x]
R3 s1039bus;Sony Ericsson Device 1039 driver (WDM);c:\windows\system32\DRIVERS\s1039bus.sys [x]
R3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s1039mdfl.sys [x]
R3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s1039mdm.sys [x]
R3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s1039mgmt.sys [x]
R3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS);c:\windows\system32\DRIVERS\s1039nd5.sys [x]
R3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s1039obex.sys [x]
R3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM);c:\windows\system32\DRIVERS\s1039unic.sys [x]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 vnet;Shrew Soft Virtual Adapter;c:\windows\system32\DRIVERS\virtualnet.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 WO_LiveService;Ashampoo LiveTuner Service;d:\program files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe [2011-09-28 885160]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [x]
S0 lullaby;lullaby;c:\windows\system32\DRIVERS\lullaby.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
S2 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [x]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [2011-09-22 974944]
S2 LiveTunerPM;Ashampoo LiveTuner ProcessMonitor Driver;d:\program files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerProcessMonitor64.sys [2011-03-08 12824]
S2 NGRegClnSrv;NETGATE Registry Cleaner Service;d:\program files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe [2011-08-16 612720]
S2 SBSDWSCService;SBSD Security Center Service;d:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-10-01 2314240]
S2 vpnagent;Cisco AnyConnect Secure Mobility Agent;c:\program files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe [2011-08-03 468432]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [x]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-11-05 1030600]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [x]
S3 JME;JMicron Ethernet Adapter NDIS6.20 Driver (Amd64 Bits);c:\windows\system32\DRIVERS\JME.sys [x]
S3 kvpndev;Kerio VPN adapter;c:\windows\system32\DRIVERS\kvpndrv.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - SPEEDFAN
.
Obsah adresáře 'Naplánované úlohy'
.
2011-12-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-08-24 08:26]
.
2011-12-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-08-24 08:26]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-01 23:52 159744 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ETDWare"="c:\program files (x86)\Elantech\ETDCtrl.exe" [BU]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 4035152]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
mLocal Page = c:\windows\SYSTEM32\blank.htm
IE: E&xportovat do aplikace Microsoft Office Excel - d:\progra~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {{7644E42D-B096-457F-8B5B-901238FC81AE} - d:\program files (x86)\ICQ7.6\ICQ.exe
Trusted Zone: vsb.cz\vpn
FF - ProfilePath - c:\users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\s98uy5o8.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz
FF - prefs.js: network.proxy.type - 0
.
.
------- Asociace souborů -------
.
JSEFile=%SystemRoot%\SysWow64\CScript.exe "%1" %*
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
WebBrowser-{34AB3C4C-DA1A-4067-96F4-31452C7CFE65} - (no file)
AddRemove-Flashpoint - c:\program files\Codemasters\UnInstall.exe
AddRemove-Lexikon technických materiálů 3.9 - c:\windows\IsUn0405.exe
AddRemove-Your Application Name - c:\windows\ISUN0405.EXE
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-231062597-2546089165-273083180-1000\Software\SecuROM\License information*]
"datasecu"=hex:2e,22,a8,9e,62,13,66,d6,fc,a8,a1,3f,2c,11,54,c9,be,06,fd,3f,02,
ad,7a,c4,43,d0,cc,ab,8e,8f,82,c9,47,08,af,20,28,e7,db,7e,50,53,87,43,b4,22,\
"rkeysecu"=hex:5d,7c,7f,06,b2,19,11,4f,13,7d,87,43,75,df,0e,ea
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11c_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11c_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2011-12-17 21:42:25
ComboFix-quarantined-files.txt 2011-12-17 20:42
ComboFix2.txt 2011-12-06 22:55
.
Před spuštěním: Volných bajtů: 63 166 353 408
Po spuštění: Volných bajtů: 63 293 538 304
.
- - End Of File - - 95E7FCD93000E71B72930411353D166B

[Sigmaczek]

Nešlo to vložit do jednoho příspěvku , snad to nebude problem . Díky

[Žbeky]

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::

DirLook::
c:\programdata\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}

File::
c:\windows\SysWow64\~.tmp
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

RegLock::
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

RegNull::
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu

[Sigmaczek]

ComboFix 11-12-17.05 - asus 18.12.2011 10:22:32.4.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3949.2402 [GMT 1:00]
Spuštěný z: c:\users\asus\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\asus\Desktop\CFScript.txt
AV: ESET Smart Security 5.0 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Disabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 5.0 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\SysWow64\~.tmp"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\~.tmp
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-11-18 do 2011-12-18 )))))))))))))))))))))))))))))))
.
.
2011-12-18 09:37 . 2011-12-18 09:37 -------- d-----w- c:\users\Public\AppData\Local\temp
2011-12-18 09:37 . 2011-12-18 09:37 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-12-17 21:50 . 2001-06-19 16:53 266293 ----a-w- c:\windows\SysWow64\temp.000
2011-12-17 19:45 . 2011-12-17 19:45 -------- d-----w- c:\program files\ANSYS Inc
2011-12-17 08:51 . 2011-12-17 08:50 525544 ----a-w- c:\windows\system32\deployJava1.dll
2011-12-17 08:50 . 2011-12-17 08:50 -------- d-----w- c:\program files\Java
2011-12-16 06:55 . 2011-11-21 11:40 8822856 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B768ADC7-098D-4297-9A2B-96199E586376}\mpengine.dll
2011-12-15 13:58 . 2011-12-15 13:58 -------- d-----w- c:\program files (x86)\Common Files\Borland Shared
2011-12-15 13:58 . 2011-12-15 13:58 -------- d-----w- C:\pc-form
2011-12-14 06:02 . 2011-10-26 05:21 43520 ----a-w- c:\windows\system32\csrsrv.dll
2011-12-14 06:02 . 2011-11-24 04:52 3145216 ----a-w- c:\windows\system32\win32k.sys
2011-12-14 06:02 . 2011-10-15 06:31 723456 ----a-w- c:\windows\system32\EncDec.dll
2011-12-14 06:02 . 2011-10-15 05:38 534528 ----a-w- c:\windows\SysWow64\EncDec.dll
2011-12-14 06:02 . 2011-11-05 05:32 2048 ----a-w- c:\windows\system32\tzres.dll
2011-12-14 06:02 . 2011-11-05 04:26 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2011-12-09 17:34 . 2011-12-09 17:42 103736 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2011-12-09 17:33 . 2011-12-09 17:43 66872 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2011-12-06 18:30 . 2011-12-06 18:30 388096 ----a-r- c:\users\asus\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-12-06 18:30 . 2011-12-06 18:30 -------- d-----w- c:\program files (x86)\Hijack
2011-12-04 19:15 . 2011-12-04 19:15 -------- d-----w- c:\program files (x86)\TI Education
2011-12-04 19:06 . 2011-12-04 19:06 -------- d-----w- c:\windows\Vbox
2011-12-03 23:22 . 2011-12-03 23:19 39464 ----a-w- c:\windows\system32\drivers\btwl2cap.sys
2011-12-03 23:22 . 2011-12-03 23:19 349736 ----a-w- c:\windows\system32\drivers\btwampfl.sys
2011-12-03 23:22 . 2011-12-03 23:19 21416 ----a-w- c:\windows\system32\drivers\btwrchid.sys
2011-12-03 23:22 . 2011-12-03 23:19 138280 ----a-w- c:\windows\system32\drivers\btwavdt.sys
2011-12-03 23:22 . 2011-12-03 23:19 107560 ----a-w- c:\windows\system32\drivers\btwaudio.sys
2011-12-03 17:19 . 2011-12-03 18:31 -------- d-----w- c:\users\asus\AppData\Roaming\TeamViewer
2011-12-01 11:15 . 2011-12-01 11:15 -------- d-----w- c:\users\asus\AppData\Local\Cisco
2011-12-01 11:15 . 2011-12-01 11:15 -------- d-----w- c:\program files (x86)\Cisco
2011-12-01 11:13 . 2011-12-01 11:15 -------- d-----w- c:\programdata\Cisco
2011-12-01 09:59 . 2011-12-01 09:59 -------- d-----w- c:\users\asus\AppData\Roaming\pdfforge
2011-12-01 09:59 . 2005-04-15 19:58 1071088 ----a-w- c:\windows\SysWow64\MSCOMCTL.OCX
2011-12-01 09:58 . 2011-12-01 09:59 -------- d-----w- c:\program files (x86)\PDFCreator
2011-12-01 07:35 . 2011-12-01 07:36 -------- d-----w- c:\users\asus\AppData\Roaming\Smart PDF Creator
2011-12-01 07:35 . 2011-12-01 09:42 -------- d-----w- c:\program files\Smart PDF Creator
2011-11-30 23:23 . 2011-11-30 23:55 -------- d-----w- C:\VPN
2011-11-30 23:20 . 2011-11-30 23:20 -------- d-----w- c:\users\asus\AppData\Roaming\Kerio
2011-11-30 23:14 . 2011-12-06 18:31 -------- d-----w- c:\users\asus\AppData\Local\Diagnostics
2011-11-30 21:25 . 2011-11-30 21:25 -------- d-----w- c:\program files (x86)\Y Soft
2011-11-30 21:25 . 2010-09-29 13:13 141824 ----a-w- c:\windows\system32\SAFEQ64UI.DLL
2011-11-30 21:25 . 2010-09-29 13:13 9028096 ----a-w- c:\windows\system32\SAFEQVS64.DLL
2011-11-30 21:25 . 2010-08-27 11:46 602624 ----a-w- c:\windows\system32\SafeQCairoLib64.DLL
2011-11-29 20:59 . 2011-12-17 17:21 -------- d-----w- c:\users\asus\AppData\Local\CrashDumps
2011-11-29 13:37 . 2011-11-29 13:37 86016 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2011-11-29 13:37 . 2011-11-29 13:37 262144 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2011-11-29 13:35 . 2004-10-25 19:02 21664 ----a-w- c:\windows\SysWow64\drivers\Entech.sys
2011-11-29 13:35 . 2004-06-22 14:44 5632 ----a-w- c:\windows\SysWow64\drivers\Entech64.sys
2011-11-29 13:35 . 2001-11-19 18:05 3972 ----a-w- c:\windows\SysWow64\drivers\PciBus.sys
2011-11-29 13:35 . 2011-11-29 13:35 -------- d-----w- c:\windows\SysWow64\Futuremark
2011-11-29 11:04 . 2011-11-29 11:04 -------- d--h--w- c:\programdata\CanonBJ
2011-11-29 11:04 . 2008-05-26 19:00 82944 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPP9E.DLL
2011-11-29 11:04 . 2008-05-26 19:00 27648 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPD9E.DLL
2011-11-29 11:02 . 2008-05-26 19:00 279040 ----a-w- c:\windows\system32\CNMLM9E.DLL
2011-11-29 08:40 . 2011-11-29 08:40 -------- d-----w- c:\users\asus\AppData\Local\Nero
2011-11-29 01:05 . 2011-11-29 01:05 -------- d-----w- c:\users\asus\AppData\Local\Broadcom
2011-11-29 01:01 . 2011-11-29 00:59 22056 ----a-w- c:\windows\system32\btwcoins.dll
2011-11-29 01:00 . 2011-11-29 01:00 -------- d-----w- c:\program files\WIDCOMM
2011-11-29 00:14 . 2011-11-29 00:14 -------- d-----w- c:\windows\SysWow64\xlive
2011-11-29 00:14 . 2011-11-29 00:14 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE
2011-11-28 22:27 . 2011-11-28 22:27 -------- d--h--r- c:\users\asus\AppData\Roaming\SecuROM
2011-11-28 22:06 . 2011-11-28 22:06 279616 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-11-28 19:49 . 2011-11-28 19:53 -------- d-----w- C:\Downloads
2011-11-28 19:49 . 2011-11-28 19:49 -------- d-----w- c:\users\asus\AppData\Roaming\BitComet
2011-11-28 18:49 . 2011-11-28 23:19 -------- d-----w- c:\program files (x86)\Common Files\Steam
2011-11-28 10:57 . 2011-11-21 04:19 134104 ----a-w- c:\program files (x86)\Mozilla Firefox\components\browsercomps.dll
2011-11-28 10:17 . 2011-11-28 10:17 -------- d-----w- c:\program files\CPUID
2011-11-27 18:34 . 2011-11-27 18:34 -------- d-----w- C:\DX
2011-11-25 10:54 . 2011-11-25 10:56 -------- d-----w- c:\program files\Defraggler
2011-11-25 10:34 . 2011-11-25 10:36 -------- d-----w- c:\users\asus\AppData\Roaming\TuneUp Software
2011-11-25 10:33 . 2011-11-25 10:34 -------- d-----w- c:\programdata\TuneUp Software
2011-11-25 10:33 . 2011-11-25 10:33 -------- d-sh--w- c:\programdata\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
2011-11-25 10:23 . 2011-11-25 10:23 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-11-21 19:58 . 2010-05-26 10:41 1998168 ----a-w- c:\windows\SysWow64\D3DX9_43.dll
2011-11-21 08:25 . 2011-11-21 08:25 -------- d-----w- c:\program files (x86)\SystemRequirementsLab
2011-11-21 07:23 . 2009-08-24 21:13 34304 ----a-w- c:\windows\system32\DfSdkBt.exe
2011-11-21 00:06 . 2011-11-21 00:06 -------- d-----w- c:\program files (x86)\Common Files\LANGMaster
2011-11-20 19:42 . 2011-11-20 19:42 -------- d-----w- c:\users\asus\AppData\Roaming\LANGMaster
2011-11-20 19:34 . 2011-11-21 06:45 -------- d-----w- c:\users\asus\AppData\Roaming\langmaster.cz
2011-11-20 09:45 . 2011-11-20 09:45 -------- d-----w- c:\users\asus\AppData\Roaming\OpenArena
2011-11-19 15:18 . 2011-11-22 12:13 234768 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2011-11-18 15:19 . 2011-05-24 17:14 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-11-18 13:17 . 2011-11-18 13:17 -------- d--h--w- c:\programdata\Common Files
2011-11-18 13:16 . 2011-11-18 14:58 -------- d-----w- c:\programdata\MFAData
2011-11-18 09:52 . 2011-11-18 09:52 -------- d-----w- c:\programdata\Grisoft
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-17 04:15 . 2011-10-30 23:22 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-11-13 22:53 . 2011-11-13 22:53 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2011-11-01 09:19 . 2011-11-01 09:19 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2011-11-01 09:19 . 2011-11-01 09:19 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2011-11-01 09:19 . 2011-11-01 09:19 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2011-11-01 09:19 . 2011-11-01 09:19 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2011-11-01 09:19 . 2011-11-01 09:19 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2011-11-01 09:19 . 2011-11-01 09:19 367104 ----a-w- c:\windows\SysWow64\html.iec
2011-11-01 09:19 . 2011-11-01 09:19 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2011-11-01 09:19 . 2011-11-01 09:19 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2011-11-01 09:19 . 2011-11-01 09:19 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2011-11-01 09:19 . 2011-11-01 09:19 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2011-11-01 09:19 . 2011-11-01 09:19 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2011-11-01 09:19 . 2011-11-01 09:19 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2011-11-01 09:19 . 2011-11-01 09:19 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2011-11-01 09:19 . 2011-11-01 09:19 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2011-11-01 09:19 . 2011-11-01 09:19 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2011-11-01 09:19 . 2011-11-01 09:19 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2011-11-01 09:19 . 2011-11-01 09:19 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-11-01 09:19 . 2011-11-01 09:19 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-11-01 09:19 . 2011-11-01 09:19 76800 ----a-w- c:\windows\system32\tdc.ocx
2011-11-01 09:19 . 2011-11-01 09:19 49664 ----a-w- c:\windows\system32\imgutil.dll
2011-11-01 09:19 . 2011-11-01 09:19 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-11-01 09:19 . 2011-11-01 09:19 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2011-11-01 09:19 . 2011-11-01 09:19 222208 ----a-w- c:\windows\system32\msls31.dll
2011-11-01 09:19 . 2011-11-01 09:19 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2011-11-01 09:19 . 2011-11-01 09:19 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-11-01 09:19 . 2011-11-01 09:19 12288 ----a-w- c:\windows\system32\mshta.exe
2011-11-01 09:19 . 2011-11-01 09:19 114176 ----a-w- c:\windows\system32\admparse.dll
2011-11-01 09:19 . 2011-11-01 09:19 111616 ----a-w- c:\windows\system32\iesysprep.dll
2011-11-01 09:19 . 2011-11-01 09:19 85504 ----a-w- c:\windows\system32\iesetup.dll
2011-11-01 09:19 . 2011-11-01 09:19 603648 ----a-w- c:\windows\system32\vbscript.dll
2011-11-01 09:19 . 2011-11-01 09:19 448512 ----a-w- c:\windows\system32\html.iec
2011-11-01 09:19 . 2011-11-01 09:19 30720 ----a-w- c:\windows\system32\licmgr10.dll
2011-11-01 09:19 . 2011-11-01 09:19 165888 ----a-w- c:\windows\system32\iexpress.exe
2011-11-01 09:19 . 2011-11-01 09:19 160256 ----a-w- c:\windows\system32\wextract.exe
2011-10-31 15:31 . 2011-10-31 15:31 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2011-10-29 20:56 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2011-10-29 20:56 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2011-10-28 08:00 . 2011-11-05 22:20 74752 ----a-w- c:\windows\SysWow64\ff_vfw.dll
2011-10-27 06:24 . 2011-10-27 06:24 238 ----a-w- c:\windows\system32\AF15IRTBL.bin
2011-10-22 11:21 . 2011-10-22 11:21 71680 ----a-w- c:\windows\system32\frapsv64.dll
2011-10-22 11:21 . 2011-10-22 11:21 65536 ----a-w- c:\windows\SysWow64\frapsvid.dll
2011-09-29 16:29 . 2011-11-09 05:40 1923952 ----a-w- c:\windows\system32\drivers\tcpip.sys
2009-04-08 17:31 . 2009-04-08 17:31 106496 ----a-w- c:\program files (x86)\Common Files\CPInstallAction.dll
2008-08-12 04:45 . 2008-08-12 04:45 155648 ----a-w- c:\program files (x86)\Common Files\MSIactionall.dll
.
.
(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
---- Directory of c:\programdata\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16} ----
.
2011-11-25 10:33 . 2011-11-25 10:33 18432000 ----a-w- c:\programdata\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}\{D3742F82-1C1A-4DCC-ABBD-0E831C0185CC}.msi
.
.
((((((((((((((((((((((((((((( SnapShot_2011-12-17_20.39.02 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-08-24 08:40 . 2011-12-18 09:40 60926 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2011-12-18 09:40 38092 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2011-10-19 05:34 . 2011-12-18 09:40 11854 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-231062597-2546089165-273083180-1000_UserData.bin
- 2009-07-14 05:30 . 2011-12-03 23:24 86016 c:\windows\system32\DriverStore\infpub.dat
+ 2009-07-14 05:30 . 2011-12-17 22:21 86016 c:\windows\system32\DriverStore\infpub.dat
+ 2009-07-14 04:46 . 2011-12-17 22:20 94000 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
+ 2010-08-24 08:13 . 2011-12-18 09:37 9977 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Bluetooth\bthservsdp.dat
+ 2011-12-18 09:38 . 2011-12-18 09:38 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2011-12-17 09:20 . 2011-12-17 09:20 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-12-18 09:38 . 2011-12-18 09:38 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2011-12-17 09:20 . 2011-12-17 09:20 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-10-19 06:14 . 2011-12-17 23:25 325394 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
- 2009-07-14 02:36 . 2011-12-17 09:27 616008 c:\windows\system32\perfh009.dat
+ 2009-07-14 02:36 . 2011-12-18 09:26 616008 c:\windows\system32\perfh009.dat
+ 2009-08-03 20:00 . 2011-12-18 09:26 631292 c:\windows\system32\perfh005.dat
- 2009-08-03 20:00 . 2011-12-17 09:27 631292 c:\windows\system32\perfh005.dat
+ 2009-07-14 02:36 . 2011-12-18 09:26 106388 c:\windows\system32\perfc009.dat
- 2009-07-14 02:36 . 2011-12-17 09:27 106388 c:\windows\system32\perfc009.dat
- 2009-08-03 20:00 . 2011-12-17 09:27 121914 c:\windows\system32\perfc005.dat
+ 2009-08-03 20:00 . 2011-12-18 09:26 121914 c:\windows\system32\perfc005.dat
- 2009-07-14 05:30 . 2011-12-03 23:24 143360 c:\windows\system32\DriverStore\infstrng.dat
+ 2009-07-14 05:30 . 2011-12-17 22:21 143360 c:\windows\system32\DriverStore\infstrng.dat
- 2009-07-14 05:01 . 2011-12-17 09:19 464764 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 05:01 . 2011-12-18 09:37 464764 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2011-11-18 17:18 . 2011-12-18 09:37 5086512 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
- 2011-11-18 17:18 . 2011-12-17 09:19 5086512 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2011-10-26 19:51 . 2011-12-18 09:37 5263452 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-231062597-2546089165-273083180-1000-8192.dat
+ 2011-11-01 12:53 . 2011-12-18 00:17 5373932 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-231062597-2546089165-273083180-1000-4096.dat
+ 2011-10-26 19:51 . 2011-12-18 00:17 4855316 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-231062597-2546089165-273083180-1000-12288.dat
- 2011-10-26 19:51 . 2011-12-17 08:53 4855316 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-231062597-2546089165-273083180-1000-12288.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 00:08 143360 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"ICQ"="d:\program files (x86)\ICQ7.6\ICQ.exe" [2011-10-26 127040]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2011-10-13 17762440]
"RGSC"="d:\program files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" [2008-11-14 305064]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"ADSMTray"="c:\program files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe" [2009-06-24 272952]
"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2010-02-04 7350912]
"SafeQ Client"="c:\program files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe" [2010-09-29 262144]
"Cisco AnyConnect Secure Mobility Agent for Windows"="c:\program files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" [2011-08-03 523216]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2011-3-25 1137952]
GamePark klient 2.lnk - d:\program files\GamePark2\gpcl.exe [2011-12-17 442880]
SRS Premium Sound.lnk - c:\windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe [2010-8-24 156952]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R1 vflt;Shrew Soft Lightweight Filter;c:\windows\system32\DRIVERS\vfilter.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-08-24 135664]
R3 acsock;acsock;c:\windows\system32\DRIVERS\acsock64.sys [x]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-11-05 1030600]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-08-24 135664]
R3 IT9135BDA;IT9135 BDA Devices;c:\windows\system32\Drivers\IT9135BDA.sys [x]
R3 s1039bus;Sony Ericsson Device 1039 driver (WDM);c:\windows\system32\DRIVERS\s1039bus.sys [x]
R3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s1039mdfl.sys [x]
R3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s1039mdm.sys [x]
R3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s1039mgmt.sys [x]
R3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS);c:\windows\system32\DRIVERS\s1039nd5.sys [x]
R3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s1039obex.sys [x]
R3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM);c:\windows\system32\DRIVERS\s1039unic.sys [x]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 vnet;Shrew Soft Virtual Adapter;c:\windows\system32\DRIVERS\virtualnet.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 WO_LiveService;Ashampoo LiveTuner Service;d:\program files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe [2011-09-28 885160]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [x]
S0 lullaby;lullaby;c:\windows\system32\DRIVERS\lullaby.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
S2 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-10-21 196176]
S2 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [x]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [2011-09-22 974944]
S2 LiveTunerPM;Ashampoo LiveTuner ProcessMonitor Driver;d:\program files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerProcessMonitor64.sys [2011-03-08 12824]
S2 NGRegClnSrv;NETGATE Registry Cleaner Service;d:\program files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe [2011-08-16 612720]
S2 SBSDWSCService;SBSD Security Center Service;d:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-10-01 2314240]
S2 vpnagent;Cisco AnyConnect Secure Mobility Agent;c:\program files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe [2011-08-03 468432]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [x]
S3 JME;JMicron Ethernet Adapter NDIS6.20 Driver (Amd64 Bits);c:\windows\system32\DRIVERS\JME.sys [x]
S3 kvpndev;Kerio VPN adapter;c:\windows\system32\DRIVERS\kvpndrv.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-01 23:52 159744 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ETDWare"="c:\program files (x86)\Elantech\ETDCtrl.exe" [BU]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 4035152]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
mLocal Page = c:\windows\SYSTEM32\blank.htm
IE: E&xportovat do aplikace Microsoft Office Excel - d:\progra~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {{7644E42D-B096-457F-8B5B-901238FC81AE} - d:\program files (x86)\ICQ7.6\ICQ.exe
Trusted Zone: vsb.cz\vpn
FF - ProfilePath - c:\users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\s98uy5o8.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz
FF - prefs.js: network.proxy.type - 0
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
WebBrowser-{34AB3C4C-DA1A-4067-96F4-31452C7CFE65} - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-231062597-2546089165-273083180-1000\Software\SecuROM\License information*]
"datasecu"=hex:2e,22,a8,9e,62,13,66,d6,fc,a8,a1,3f,2c,11,54,c9,be,06,fd,3f,02,
ad,7a,c4,43,d0,cc,ab,8e,8f,82,c9,47,08,af,20,28,e7,db,7e,50,53,87,43,b4,22,\
"rkeysecu"=hex:5d,7c,7f,06,b2,19,11,4f,13,7d,87,43,75,df,0e,ea
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
d:\program files (x86)\Nero 8\Nero 8\Nero BackItUp\NBService.exe
c:\program files (x86)\ASUS\SmartLogon\sensorsrv.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
c:\windows\SysWOW64\RunDll32.exe
c:\program files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
c:\program files (x86)\ASUS\ControlDeck\ControlDeck.exe
.
**************************************************************************
.
Celkový čas: 2011-12-18 10:45:06 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-12-18 09:45
ComboFix2.txt 2011-12-17 20:42
ComboFix3.txt 2011-12-06 22:55
.
Před spuštěním: Volných bajtů: 63 414 636 544
Po spuštění: Volných bajtů: 63 091 748 864
.
- - End Of File - - E342E7DDA244509B847F1856D83B38E8

[Žbeky]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj AVG , Avast,Avira či Microsoft Security Essentials následně T-Cleaner smaž a zapni si AVG , Avast, Avira či Microsoft Security Essentials

+ Nový log z HJT

Jak se chová PC?

[Sigmaczek]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:57:47, on 18.12.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
D:\Program Files (x86)\ICQ7.6\ICQ.exe
C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
G:\programy\Oprava PC\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [ADSMTray] C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [SafeQ Client] "C:\Program Files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe"
O4 - HKLM\..\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] "C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" -minimized
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ICQ] "D:\Program Files (x86)\ICQ7.6\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized
O4 - HKCU\..\Run: [RGSC] D:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: GamePark klient 2.lnk = D:\Program Files\GamePark2\gpcl.exe
O4 - Global Startup: SRS Premium Sound.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://D:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - d:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - d:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - D:\Program Files (x86)\Nero 8\Nero 8\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NETGATE Registry Cleaner Service (NGRegClnSrv) - NETGATE Technologies s.r.o. - d:\Program Files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - D:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: Cisco AnyConnect Secure Mobility Agent (vpnagent) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Ashampoo LiveTuner Service (WO_LiveService) - Unknown owner - D:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe

--
End of file - 10635 bytes



Tváří se, že je to lepší. Díky

[Žbeky]

Můžeš dát vyřešeno