Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

dlho bez antiviru, vela haveti, kontrola logu prosim

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: dlho bez antiviru, vela haveti, kontrola logu prosim

#16 Příspěvek od vyosek »

Jinak pekna sbirecka cracku a keygenu v MBAM a i v uvodnim screenu z aviry, takze mi nevalte do hlavy ze nelegalni SW nemate :boxed:

Jak se chova PC :???:
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Uživatelský avatar
Fony
Návštěvník
Návštěvník
Příspěvky: 27
Registrován: 10 pro 2009 19:35
Bydliště: Ruzomberok
Kontaktovat uživatele:
Kontaktovat uživatele Fony

Re: dlho bez antiviru, vela haveti, kontrola logu prosim

#17 Příspěvek od Fony »

pc ide ovela rychlejsie a na D: disku mi zobrazuje veci ktore som dovtedy nevidel teda tie veci kde boli viry vid screen

Obrázek

a nelegalny soft mam ale to mam v pc uz cca 3 roky :) odvtedy som netahal uz SW len filmy a hudbu net mam uz 5 rokov aj viac a za ten cas som nemal skoro ziadny antivir ...

a to MSOCache a msdownld.tmp mozem zmazat? alebo co s tym obsahuje to nejake subory ale nikdy som to tam nemal viditelne tak neviem ci je to dobre/zle
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: dlho bez antiviru, vela haveti, kontrola logu prosim

#18 Příspěvek od vyosek »

:arrow: msdownld.tmp smazte, MSOCache nikoliv - je to soucast OS

:arrow: Odinstalujte Combofix
  • Start - Spustit (nebo pouzijte klavesobou zkratku Win+R)
  • Napiste ComboFix /Uninstall
  • Stisknete Enter
  • Tohle smaze Combofix a jeho slozky
:arrow: T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
  • Stahnete a spustte
  • Pro potvrzeni volby mackejte A, Enter
  • Po pouziti utilitu smazte
  • Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
:arrow: OTC http://oldtimer.geekstogo.com/OTC.exe
  • Stahnete a spustte
  • Kliknete na CleanUp a potvrdte YES
  • Program uklidi a restartuje PC

:arrow: TFC http://oldtimer.geekstogo.com/TFC.exe
  • Stahnete a spustte
  • Kliknete na Start a potvrdte OK
  • Program uklidi a restartuje pc
  • Po pouziti utilitu smazte
:arrow: Stahnete Ccleaner (viz muj podpis)
Panel čistič
  • Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
Panel registry
  • dejte Hledej problémy
  • nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
  • postup opakujte dokud nebude bez problemu - vetsinou cca 3x
Panel nástroje
  • Zde muzete odinstalovat nepotrebne programy
CCleaner doporucuji pouzivat cca jednou za 14 dni

:arrow: Doporucuji provest defragmentaci disku
  • Nejjednodussi (ale nejmene ucinny) zpusob je pomoci utility ve windowsech
    • Kliknete na Tento pocitac, dale na disk kliknete pravym tlacitkem, vyberte Vlastnosti
    • prepnete se do zalozky Nastroje
    • Nyni vidite pomucky Defragmentace - spustte ji kliknutim na Defragmentovat
    • Toto provedte se vsemi disky
  • Dalsi moznosti (a mnou doporucenou) je pres programek Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
    • Program stahnete, nainstalujte (dejte fajfku pryc u yahoo toolbaru) a spustte
    • Kliknete na Analyzovat
    • Pokud je ve sloupci Fragmentováno vice jak 5%, doporucuji provest defragmentaci (klik na Defragmentovat)
    • Postup provedte se vsemi disky
  • Posledni moznost je pres jednoduchy programek JKDefrag http://www.stahuj.centrum.cz/utility_a_ ... /jkdefrag/
    • Vyhodou programku je, ze se neinstaluje
    • Staci tedy jen stahnout dle verze vaseho OS a rozbalit
    • Nasledne spustit pomoci souboru JKDefrag pripadne JKDefrag64
    • Probehne analyza disku a nasledne i defragmentace
:arrow: Dejte novy log z RSIT
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Uživatelský avatar
Fony
Návštěvník
Návštěvník
Příspěvky: 27
Registrován: 10 pro 2009 19:35
Bydliště: Ruzomberok
Kontaktovat uživatele:
Kontaktovat uživatele Fony

Re: dlho bez antiviru, vela haveti, kontrola logu prosim

#19 Příspěvek od Fony »

:arrow: msdownld.tmp ZMAZANE
:arrow: ComboFix odinstalovany
:arrow: T-cleaner > OTC > TFC podla navodu vykonane
:arrow: CCleaner vsetky problemy na prvy krat vyriesilo ale registre som nezalohoval :o
:arrow: Defraggler pouzivam akurat na disk C: kde mam 43% defragmentovano a ostatne disky neskor dam podobne defragmentovat ale ten najvacsi dam zajtra rano bude to robit zjavne dlho podla toho ako to robi s 50gb velkym C:
:arrow: USBFix odinstalovany

C:hotovo
E:hotovo
D:zajtra

zajtra pridam novy log z RSIT, zatial som velmi vdacny

dnes som este k PC pripojil USB flash 8gb a samozrejme mi avira nasla 3 trojany ale uz by mali byt zmazane
Naposledy upravil(a) Fony dne 06 bře 2011 22:35, celkem upraveno 2 x.
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: dlho bez antiviru, vela haveti, kontrola logu prosim

#20 Příspěvek od vyosek »

Na flash disky radeji kouknem jeste

:arrow: Zapojte do PC vsechny USB klice (flashky, ext. disky apod.)
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Uživatelský avatar
Fony
Návštěvník
Návštěvník
Příspěvky: 27
Registrován: 10 pro 2009 19:35
Bydliště: Ruzomberok
Kontaktovat uživatele:
Kontaktovat uživatele Fony

Re: dlho bez antiviru, vela haveti, kontrola logu prosim

#21 Příspěvek od Fony »

############################## | UsbFix 7.014 | [Deletion]

User: fony (Administrator) # URGENT-B5391433 [ ]
Updated 24/06/10 by El Desaparecido / C_XX
Started at 20:52:58 | 06/03/2011
Website: http://pagesperso-orange.fr/NosTools/index.html
Contact: FindyKill.Contact@gmail.com

CPU: Intel(R) Celeron(R) CPU 440 @ 2.00GHz
Systém Microsoft Windows XP Professional (5.1.2600 32-Bit) # Service Pack 2
Internet Explorer 6.0.2900.2180

Windows Firewall: Enabled
Antivirus: AntiVir Desktop 10.0.1.56 [Enabled | Updated]
RAM -> 1023 Mb
C:\ (%systemdrive%) -> Fixed drive # 49 Gb (35 Mb free - 71%) [] # NTFS
D:\ -> Fixed drive # 275 Gb (11 Mb free - 4%) [Fony] # NTFS
E:\ -> Fixed drive # 49 Gb (19 Mb free - 40%) [Venom] # NTFS
F:\ -> CD-ROM
G:\ -> Removable drive # 7 Gb (4 Mb free - 56%) [TU SOM] # FAT32

################## | Files # Infected Folders |

Deleted ! G:\winamp_cache_0001.xml

################## | Registry |

Deleted ! HKLM\software\microsoft\windows nt\currentversion\winlogon|Taskman
Deleted ! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableRegistryTools
Deleted ! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives
Deleted ! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives

################## | Mountpoints2 |


################## | Listing |

[05/03/2011 - 16:47:27 | RD ] C:\AHCache
[05/03/2011 - 09:55:41 | A | 211] C:\Boot.bak
[05/03/2011 - 20:09:45 | RASH | 327] C:\boot.ini
[05/03/2011 - 20:09:45 | RASHD ] C:\cmdcons
[03/08/2004 - 23:00:00 | RASH | 260272] C:\cmldr
[06/03/2011 - 14:18:18 | SHD ] C:\Config.Msi
[05/03/2011 - 10:00:18 | A | 0] C:\CONFIG.SYS
[05/03/2011 - 10:12:03 | D ] C:\Documents and Settings
[05/03/2011 - 10:00:18 | RASH | 0] C:\IO.SYS
[05/03/2011 - 10:00:18 | RASH | 0] C:\MSDOS.SYS
[05/03/2011 - 15:40:59 | RD ] C:\MSOCache
[04/08/2004 - 13:00:00 | RASH | 47564] C:\NTDETECT.COM
[04/08/2004 - 13:00:00 | RASH | 250032] C:\ntldr
[05/03/2011 - 10:15:30 | D ] C:\NVIDIA
[06/03/2011 - 17:02:25 | ASH | 1610612736] C:\pagefile.sys
[06/03/2011 - 17:11:52 | RD ] C:\Program Files
[06/03/2011 - 16:38:37 | AD ] C:\Qoobox
[06/03/2011 - 20:55:06 | SHD ] C:\RECYCLER
[06/03/2011 - 16:38:50 | SHD ] C:\System Volume Information
[06/03/2011 - 20:55:06 | D ] C:\UsbFix
[06/03/2011 - 20:55:10 | A | 1292] C:\UsbFix.txt
[06/03/2011 - 17:06:09 | D ] C:\WINDOWS
[22/01/2010 - 09:11:15 | D ] D:\9668e2bbb89738acbb78073b6049e1
[04/02/2011 - 18:20:28 | D ] D:\Documents
[28/05/2009 - 00:21:26 | D ] D:\DREAMBOX 7000S
[06/03/2011 - 16:26:28 | RD ] D:\E-BOOKS
[26/02/2011 - 08:56:39 | D ] D:\Films
[21/02/2011 - 20:40:55 | A | 520813490] D:\hasici-2010_dvb-srip_bez-reklam.avi
[06/03/2011 - 16:09:01 | RD ] D:\Images
[20/02/2011 - 16:19:07 | A | 510387394] D:\Konopné pašije.avi
[22/03/2010 - 17:59:16 | RD ] D:\MSOCache
[26/02/2011 - 08:56:06 | RD ] D:\MusiC
[06/03/2011 - 16:27:00 | RD ] D:\Programs
[06/03/2011 - 20:55:06 | SHD ] D:\RECYCLER
[05/03/2011 - 19:51:32 | RD ] D:\SE K810i a OTHERS
[06/03/2011 - 16:38:49 | SHD ] D:\System Volume Information
[04/09/2010 - 18:23:54 | ASH | 12288] D:\Thumbs.db
[05/03/2011 - 14:15:29 | D ] E:\03e73f31b4dfbefb0b86624c
[27/09/2010 - 08:51:16 | D ] E:\2d073f3010040fb79503663ef113
[28/01/2011 - 23:30:49 | D ] E:\9baa68a5d4780d7f50bbb8e2
[05/04/2008 - 09:55:47 | D ] E:\Big Bear Week 2006
[26/02/2011 - 09:23:55 | D ] E:\Films
[05/03/2011 - 19:13:30 | RD ] E:\Games
[04/03/2011 - 18:11:33 | D ] E:\hry a slovniky
[27/07/2010 - 20:26:28 | A | 68077586] E:\I Was Born To Love You (new).avi
[03/02/2011 - 14:15:14 | D ] E:\Mercury - Videography
[04/03/2011 - 18:11:36 | D ] E:\pdfFactory Pro 4.05
[04/03/2011 - 18:11:38 | D ] E:\pdfFactory_3.50_Pro_TDW
[02/08/2010 - 14:02:06 | D ] E:\PP
[06/03/2011 - 20:55:06 | SHD ] E:\RECYCLER
[26/02/2011 - 08:45:04 | D ] E:\RF2010
[02/03/2011 - 19:43:51 | A | 5997568] E:\RPP4_ALS_dospelých.ppt
[03/03/2011 - 20:56:20 | A | 3053541] E:\sam_cooke_-__wonderful_world.mp3
[04/01/2010 - 22:42:44 | A | 8874999] E:\smplayer-0.6.8-win32-webdl.exe
[06/03/2011 - 16:38:49 | SHD ] E:\System Volume Information
[03/08/2010 - 11:33:24 | ASH | 4096] E:\Thumbs.db
[10/02/2011 - 14:45:14 | D ] G:\AJ
[03/02/2011 - 14:12:58 | RSHD ] G:\RECYCLER
[08/11/2010 - 14:33:38 | AH | 4096] G:\._.Trashes
[08/11/2010 - 14:33:38 | HD ] G:\.Trashes
[17/02/2011 - 12:13:40 | A | 38565193] G:\Biochémia.pdf
[13/02/2011 - 14:48:58 | A | 25088] G:\CV otec.doc
[13/11/2010 - 14:13:34 | HD ] G:\.Spotlight-V100
[13/11/2010 - 14:14:52 | AH | 4096] G:\._Lebenslauf.doc
[04/11/2010 - 18:14:52 | A | 1251830024] G:\First Aid - Basic.avi
[06/03/2011 - 15:40:08 | D ] G:\Dr.Ge.Pro.9.0.0.189
[16/02/2011 - 06:59:56 | D ] G:\Emergency Medicine
[16/02/2011 - 12:27:32 | D ] G:\MusiC

################## | Vaccin |

C:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
D:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
E:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
G:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)

################## | Upload |

Please send the file: C:\UsbFix_Upload_Me_URGENT-B5391433.zip
http://chiquitine.changelog.fr/Sample/Upload.php
Thank you for your contribution.

################## | E.O.F |
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: dlho bez antiviru, vela haveti, kontrola logu prosim

#22 Příspěvek od vyosek »

:arrow: Znovu spusťte Usbfix a zvolte možnost Uninstall.

:arrow: A pockam na novy log z RSIT
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Uživatelský avatar
Fony
Návštěvník
Návštěvník
Příspěvky: 27
Registrován: 10 pro 2009 19:35
Bydliště: Ruzomberok
Kontaktovat uživatele:
Kontaktovat uživatele Fony

Re: dlho bez antiviru, vela haveti, kontrola logu prosim

#23 Příspěvek od Fony »

Logfile of random's system information tool 1.08 (written by random/random)
Run by fony at 2011-03-08 10:56:36
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 6 GB (11%) free of 50 GB
Total RAM: 1023 MB (31% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:56:46, on 8.3.2011
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\bgsvcgen.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\AIMP2\AIMP2.exe
D:\Programs\FREEWARE\RSIT.exe
C:\Program Files\trend micro\fony.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.avira.com/
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: MegaIEMn - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ7.1\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [Mega Manager] C:\Program Files\Megaupload\Mega Manager\MegaManager.exe /Tray
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Auto run of VideoCam Suite 1.0.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files\ICQ7.1\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files\ICQ7.1\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{345230CF-B3FA-4590-AC96-0F0460749CF6}: NameServer = 10.125.254.254
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 4848 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\WGASetup.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf00e119-21a3-4fd1-b178-3b8537e75c92}]
IeMonitorBho Class - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll [2010-11-03 109568]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-10-07 13574144]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-10-07 86016]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-10-09 17021440]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2011-01-10 281768]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2004-08-04 15360]
"ICQ"=C:\Program Files\ICQ7.1\ICQ.exe [2011-01-05 133432]
"Mega Manager"=C:\Program Files\Megaupload\Mega Manager\MegaManager.exe [2010-11-03 2113024]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Auto run of VideoCam Suite 1.0.lnk - C:\Program Files\Panasonic\VideoCamSuite\VideoCamSuiteAutoStart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0
"NoDriveAutoRun"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Valve\hl.exe"="C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\ICQ7.1\ICQ.exe"="C:\Program Files\ICQ7.1\ICQ.exe:*:Enabled:ICQ7.1"
"C:\Program Files\ICQ7.1\aolload.exe"="C:\Program Files\ICQ7.1\aolload.exe:*:Enabled:aolload.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\ICQ7.1\ICQ.exe"="C:\Program Files\ICQ7.1\ICQ.exe:*:Enabled:ICQ7.1"
"C:\Program Files\ICQ7.1\aolload.exe"="C:\Program Files\ICQ7.1\aolload.exe:*:Enabled:aolload.exe"

======List of files/folders created in the last 1 months======

2011-03-08 10:56:36 ----D---- C:\rsit
2011-03-08 06:15:10 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2011-03-08 06:11:53 ----SHD---- C:\Config.Msi
2011-03-08 06:10:47 ----HDC---- C:\WINDOWS\$NtUninstallKB925720$
2011-03-07 15:54:46 ----D---- C:\Documents and Settings\fony\Application Data\Panasonic
2011-03-07 15:54:23 ----D---- C:\MC_TMP
2011-03-07 15:51:48 ----A---- C:\WINDOWS\system32\drivers\cdrbsdrv.sys
2011-03-07 15:51:47 ----A---- C:\WINDOWS\system32\GenSvcInst.exe
2011-03-07 15:51:47 ----A---- C:\WINDOWS\system32\bgsvcgen.exe
2011-03-07 15:51:43 ----A---- C:\WINDOWS\system32\sddevmgr.dll
2011-03-07 15:51:26 ----D---- C:\Program Files\Panasonic
2011-03-07 15:50:44 ----D---- C:\Documents and Settings\fony\Application Data\InstallShield
2011-03-07 05:18:13 ----A---- C:\WINDOWS\MegaManager.INI
2011-03-07 05:17:54 ----D---- C:\Documents and Settings\fony\Application Data\Megaupload
2011-03-07 05:17:10 ----D---- C:\Program Files\Megaupload
2011-03-06 22:32:36 ----D---- C:\WINDOWS\system32\XPSViewer
2011-03-06 22:32:05 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2011-03-06 22:32:05 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2011-03-06 22:32:05 ----N---- C:\WINDOWS\system32\prntvpt.dll
2011-03-06 22:32:04 ----D---- C:\d81b74fbc2cd5e593c
2011-03-06 22:30:03 ----D---- C:\Program Files\MSXML 6.0
2011-03-06 22:27:29 ----A---- C:\WINDOWS\imsins.BAK
2011-03-06 22:27:24 ----HDC---- C:\WINDOWS\$NtUninstallKB885836$
2011-03-06 20:55:10 ----RASHD---- C:\Autorun.inf
2011-03-06 20:52:33 ----D---- C:\UsbFix
2011-03-06 17:11:52 ----D---- C:\Program Files\Defraggler
2011-03-06 17:05:07 ----D---- C:\Program Files\CCleaner
2011-03-06 15:32:21 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2011-03-06 15:04:24 ----D---- C:\Documents and Settings\fony\Application Data\ICQ
2011-03-06 15:04:16 ----D---- C:\Program Files\ICQ7.1
2011-03-06 13:19:31 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2011-03-06 13:19:23 ----HDC---- C:\WINDOWS\$NtUninstallKB927891$
2011-03-06 13:13:10 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2011-03-06 10:09:25 ----A---- C:\WINDOWS\system32\muweb.dll
2011-03-06 10:09:25 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2011-03-06 10:09:25 ----A---- C:\WINDOWS\system32\mucltui.dll
2011-03-06 09:32:35 ----D---- C:\Documents and Settings\fony\Application Data\Malwarebytes
2011-03-06 09:32:28 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2011-03-06 09:32:27 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2011-03-06 09:32:24 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2011-03-06 09:32:23 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-03-05 22:59:41 ----SHD---- C:\RECYCLER
2011-03-05 22:16:03 ----D---- C:\WINDOWS\temp
2011-03-05 21:14:49 ----HDC---- C:\WINDOWS\$NtUninstallKB927779$
2011-03-05 21:14:41 ----HDC---- C:\WINDOWS\$NtUninstallKB927802$
2011-03-05 21:14:31 ----HDC---- C:\WINDOWS\$NtUninstallKB885835$
2011-03-05 21:14:02 ----HDC---- C:\WINDOWS\$NtUninstallKB928255$
2011-03-05 21:13:53 ----HDC---- C:\WINDOWS\$NtUninstallKB911927$
2011-03-05 21:13:42 ----HDC---- C:\WINDOWS\$NtUninstallKB901017$
2011-03-05 21:13:18 ----HDC---- C:\WINDOWS\$NtUninstallKB899591$
2011-03-05 21:13:11 ----HDC---- C:\WINDOWS\$NtUninstallKB893756$
2011-03-05 21:13:03 ----HDC---- C:\WINDOWS\$NtUninstallKB923980$
2011-03-05 21:12:56 ----HDC---- C:\WINDOWS\$NtUninstallKB911280$
2011-03-05 21:12:47 ----HDC---- C:\WINDOWS\$NtUninstallKB911562$
2011-03-05 21:12:41 ----HDC---- C:\WINDOWS\$NtUninstallKB938828$
2011-03-05 21:12:33 ----HDC---- C:\WINDOWS\$NtUninstallKB924667$
2011-03-05 21:12:26 ----HDC---- C:\WINDOWS\$NtUninstallKB896423$
2011-03-05 21:12:17 ----HDC---- C:\WINDOWS\$NtUninstallKB900485$
2011-03-05 21:12:06 ----HDC---- C:\WINDOWS\$NtUninstallKB931261$
2011-03-05 21:11:59 ----HDC---- C:\WINDOWS\$NtUninstallKB873339$
2011-03-05 21:11:50 ----HDC---- C:\WINDOWS\$NtUninstallKB936357$
2011-03-05 21:11:42 ----HDC---- C:\WINDOWS\$NtUninstallKB887472$
2011-03-05 21:11:35 ----HDC---- C:\WINDOWS\$NtUninstallKB946026$
2011-03-05 21:11:26 ----HDC---- C:\WINDOWS\$NtUninstallKB896358$
2011-03-05 21:11:17 ----HDC---- C:\WINDOWS\$NtUninstallKB925398_WMP64$
2011-03-05 21:10:56 ----HDC---- C:\WINDOWS\$NtUninstallKB910437$
2011-03-05 21:10:48 ----HDC---- C:\WINDOWS\$NtUninstallKB911564$
2011-03-05 21:10:31 ----HDC---- C:\WINDOWS\$NtUninstallKB925902$
2011-03-05 21:10:23 ----HDC---- C:\WINDOWS\$NtUninstallKB929123$
2011-03-05 21:10:17 ----HDC---- C:\WINDOWS\$NtUninstallKB920670$
2011-03-05 21:10:10 ----HDC---- C:\WINDOWS\$NtUninstallKB918439$
2011-03-05 21:09:59 ----HDC---- C:\WINDOWS\$NtUninstallKB902400$
2011-03-05 21:09:50 ----HDC---- C:\WINDOWS\$NtUninstallKB890046$
2011-03-05 21:09:42 ----HDC---- C:\WINDOWS\$NtUninstallKB926436$
2011-03-05 21:09:34 ----HDC---- C:\WINDOWS\$NtUninstallKB920872$
2011-03-05 21:09:25 ----HDC---- C:\WINDOWS\$NtUninstallKB930178$
2011-03-05 21:09:15 ----HDC---- C:\WINDOWS\$NtUninstallKB914388$
2011-03-05 21:09:08 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2011-03-05 21:08:48 ----HDC---- C:\WINDOWS\$NtUninstallKB905414$
2011-03-05 21:08:42 ----HDC---- C:\WINDOWS\$NtUninstallKB932168$
2011-03-05 21:08:35 ----HDC---- C:\WINDOWS\$NtUninstallKB901214$
2011-03-05 21:08:28 ----HDC---- C:\WINDOWS\$NtUninstallKB923191$
2011-03-05 21:08:14 ----HDC---- C:\WINDOWS\$NtUninstallKB922582$
2011-03-05 21:08:03 ----HDC---- C:\WINDOWS\$NtUninstallKB918118$
2011-03-05 21:07:55 ----HDC---- C:\WINDOWS\$NtUninstallKB926255$
2011-03-05 21:07:48 ----HDC---- C:\WINDOWS\$NtUninstallKB888302$
2011-03-05 21:07:39 ----HDC---- C:\WINDOWS\$NtUninstallKB900725$
2011-03-05 21:07:29 ----HDC---- C:\WINDOWS\$NtUninstallKB938127$
2011-03-05 21:07:22 ----HDC---- C:\WINDOWS\$NtUninstallKB920213$
2011-03-05 21:07:15 ----HDC---- C:\WINDOWS\$NtUninstallKB945553$
2011-03-05 21:07:09 ----HDC---- C:\WINDOWS\$NtUninstallKB886185$
2011-03-05 21:07:02 ----HDC---- C:\WINDOWS\$NtUninstallKB916595$
2011-03-05 21:06:57 ----HDC---- C:\WINDOWS\$NtUninstallKB930916$
2011-03-05 21:06:45 ----HDC---- C:\WINDOWS\$NtUninstallKB950749$
2011-03-05 21:06:38 ----HDC---- C:\WINDOWS\$NtUninstallKB908531$
2011-03-05 21:06:32 ----HDC---- C:\WINDOWS\$NtUninstallKB905749$
2011-03-05 21:06:26 ----HDC---- C:\WINDOWS\$NtUninstallKB913580$
2011-03-05 21:06:20 ----HDC---- C:\WINDOWS\$NtUninstallKB943055$
2011-03-05 21:06:13 ----HDC---- C:\WINDOWS\$NtUninstallKB894391$
2011-03-05 21:06:07 ----HDC---- C:\WINDOWS\$NtUninstallKB920683$
2011-03-05 21:06:02 ----HDC---- C:\WINDOWS\$NtUninstallKB914389$
2011-03-05 21:05:56 ----HDC---- C:\WINDOWS\$NtUninstallKB944653$
2011-03-05 21:05:46 ----HDC---- C:\WINDOWS\$NtUninstallKB890859$
2011-03-05 20:09:45 ----A---- C:\Boot.bak
2011-03-05 20:09:42 ----RASHD---- C:\cmdcons
2011-03-05 20:07:12 ----AD---- C:\Qoobox
2011-03-05 19:16:42 ----D---- C:\Program Files\trend micro
2011-03-05 18:18:42 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2011-03-05 18:18:34 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2011-03-05 18:18:25 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2011-03-05 18:18:14 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2011-03-05 18:18:04 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2011-03-05 18:17:49 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2011-03-05 18:17:40 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2011-03-05 18:17:30 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2011-03-05 18:17:16 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2011-03-05 18:17:03 ----HDC---- C:\WINDOWS\$NtUninstallKB935448$
2011-03-05 18:16:55 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2011-03-05 18:16:46 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2011-03-05 18:16:39 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2011-03-05 18:16:31 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2011-03-05 18:16:22 ----HDC---- C:\WINDOWS\$NtUninstallKB981350$
2011-03-05 18:16:12 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2011-03-05 18:16:07 ----D---- C:\WINDOWS\system32\KB905474
2011-03-05 18:15:51 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2011-03-05 18:15:42 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2011-03-05 18:15:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2011-03-05 18:15:24 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2011-03-05 18:15:16 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2011-03-05 18:15:08 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2011-03-05 18:14:59 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2011-03-05 18:14:50 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2011-03-05 18:14:41 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2011-03-05 18:14:32 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2011-03-05 18:14:23 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2011-03-05 18:13:59 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2011-03-05 18:13:44 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2011-03-05 18:13:36 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2011-03-05 18:13:27 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2011-03-05 18:13:18 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2011-03-05 18:13:10 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2011-03-05 18:13:01 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2011-03-05 18:12:51 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$
2011-03-05 18:12:40 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2011-03-05 18:12:29 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2011-03-05 18:12:20 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2011-03-05 18:12:05 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2011-03-05 18:11:56 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2011-03-05 18:11:46 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2011-03-05 18:10:26 ----A---- C:\WINDOWS\system32\MRT.exe
2011-03-05 18:10:16 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2011-03-05 18:10:05 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2011-03-05 18:09:59 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2011-03-05 18:09:50 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2011-03-05 18:09:41 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2011-03-05 18:09:31 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2011-03-05 18:09:18 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2011-03-05 18:09:09 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2011-03-05 18:08:56 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2011-03-05 18:08:39 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2011-03-05 18:08:31 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2011-03-05 18:08:22 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2011-03-05 18:08:13 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2011-03-05 18:08:05 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2011-03-05 18:07:58 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2011-03-05 18:07:51 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2011-03-05 18:07:44 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2011-03-05 18:07:34 ----D---- C:\WINDOWS\ServicePackFiles
2011-03-05 18:07:32 ----HDC---- C:\WINDOWS\$NtUninstallKB958470$
2011-03-05 18:07:23 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2011-03-05 18:07:15 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2011-03-05 18:07:06 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2011-03-05 18:06:53 ----HDC---- C:\WINDOWS\$NtUninstallKB971032$
2011-03-05 18:06:41 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2011-03-05 18:06:30 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2011-03-05 18:06:18 ----HDC---- C:\WINDOWS\$NtUninstallKB979402_WM9L$
2011-03-05 18:06:08 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2011-03-05 18:05:35 ----HDC---- C:\WINDOWS\$NtUninstallKB982381$
2011-03-05 18:05:19 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
2011-03-05 18:05:11 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2011-03-05 18:05:04 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2011-03-05 18:04:52 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2011-03-05 17:48:38 ----D---- C:\WINDOWS\system32\NtmsData
2011-03-05 17:47:54 ----D---- C:\Documents and Settings\fony\Application Data\Avira
2011-03-05 17:44:37 ----A---- C:\WINDOWS\system32\drivers\ssmdrv.sys
2011-03-05 17:44:36 ----D---- C:\Program Files\Avira
2011-03-05 17:44:36 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
2011-03-05 17:44:36 ----A---- C:\WINDOWS\system32\drivers\avipbb.sys
2011-03-05 17:44:36 ----A---- C:\WINDOWS\system32\drivers\avgntmgr.sys
2011-03-05 17:44:36 ----A---- C:\WINDOWS\system32\drivers\avgntflt.sys
2011-03-05 17:44:36 ----A---- C:\WINDOWS\system32\drivers\avgntdd.sys
2011-03-05 17:39:35 ----D---- C:\WINDOWS\system32\CatRoot_bak
2011-03-05 17:24:26 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2011-03-05 16:57:37 ----N---- C:\WINDOWS\system32\tzchange.exe
2011-03-05 16:54:21 ----A---- C:\WINDOWS\system32\xpsp3res.dll
2011-03-05 16:52:58 ----D---- C:\Documents and Settings\fony\Application Data\uniblue
2011-03-05 16:52:19 ----D---- C:\Program Files\Uniblue
2011-03-05 16:51:26 ----D---- C:\WINDOWS\system32\PreInstall
2011-03-05 16:51:24 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2011-03-05 16:51:24 ----HD---- C:\WINDOWS\$hf_mig$
2011-03-05 16:50:21 ----D---- C:\WINDOWS\system32\en-US
2011-03-05 16:50:15 ----D---- C:\Program Files\Reference Assemblies
2011-03-05 16:49:18 ----RSD---- C:\WINDOWS\assembly
2011-03-05 16:49:02 ----D---- C:\WINDOWS\Microsoft.NET
2011-03-05 16:47:44 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
2011-03-05 16:47:27 ----RD---- C:\AHCache
2011-03-05 16:45:01 ----N---- C:\WINDOWS\system32\spmsg.dll
2011-03-05 16:44:50 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2011-03-05 16:43:50 ----HDC---- C:\Documents and Settings\All Users\Application Data\{51019853-129C-4EDE-9030-D5FD7BBD9AD0}
2011-03-05 16:40:37 ----N---- C:\WINDOWS\system32\browserchoice.exe
2011-03-05 15:48:09 ----A---- C:\WINDOWS\system32\msonpmon.dll
2011-03-05 15:46:18 ----D---- C:\Program Files\Microsoft Works
2011-03-05 15:46:06 ----D---- C:\Program Files\MSBuild
2011-03-05 15:45:48 ----D---- C:\Program Files\Microsoft Visual Studio
2011-03-05 15:45:48 ----D---- C:\Program Files\Common Files\DESIGNER
2011-03-05 15:42:02 ----D---- C:\WINDOWS\SHELLNEW
2011-03-05 15:41:22 ----D---- C:\Program Files\Microsoft Office
2011-03-05 15:41:20 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2011-03-05 15:40:59 ----RD---- C:\MSOCache
2011-03-05 15:27:48 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2011-03-05 14:16:17 ----D---- C:\Program Files\Valve
2011-03-05 13:09:08 ----D---- C:\Program Files\MediaInfo
2011-03-05 12:51:49 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2011-03-05 12:51:29 ----D---- C:\Program Files\Common Files\Adobe
2011-03-05 12:51:28 ----D---- C:\Program Files\Adobe
2011-03-05 12:49:16 ----D---- C:\Documents and Settings\fony\Application Data\WinRAR
2011-03-05 12:31:28 ----D---- C:\Program Files\AIMP2
2011-03-05 11:54:35 ----D---- C:\Program Files\The KMPlayer
2011-03-05 11:54:20 ----D---- C:\Documents and Settings\fony\Application Data\ESTsoft
2011-03-05 11:54:14 ----D---- C:\Documents and Settings\All Users\Application Data\ESTsoft
2011-03-05 11:54:07 ----D---- C:\Program Files\ESTsoft
2011-03-05 11:53:32 ----D---- C:\Program Files\WinRAR
2011-03-05 11:44:18 ----D---- C:\Documents and Settings\fony\Application Data\Macromedia
2011-03-05 11:44:18 ----D---- C:\Documents and Settings\fony\Application Data\Adobe
2011-03-05 11:43:37 ----D---- C:\Documents and Settings\fony\Application Data\Mozilla
2011-03-05 11:43:25 ----D---- C:\Program Files\Mozilla Firefox
2011-03-05 10:55:33 ----A---- C:\WINDOWS\system32\h323log.txt
2011-03-05 10:53:59 ----A---- C:\WINDOWS\system32\drivers\audstub.sys
2011-03-05 10:53:18 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2011-03-05 10:52:37 ----A---- C:\WINDOWS\system32\usbui.dll
2011-03-05 10:51:40 ----SHD---- C:\WINDOWS\Installer
2011-03-05 10:51:40 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-03-05 10:51:39 ----D---- C:\Program Files\Common Files\ODBC
2011-03-05 10:51:39 ----A---- C:\WINDOWS\ODBCINST.INI
2011-03-05 10:51:36 ----RD---- C:\Program Files
2011-03-05 10:51:36 ----D---- C:\Program Files\Common Files\SpeechEngines
2011-03-05 10:51:36 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-03-05 10:51:36 ----D---- C:\Program Files\Common Files
2011-03-05 10:51:33 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2011-03-05 10:51:33 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2011-03-05 10:51:33 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2011-03-05 10:51:32 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2011-03-05 10:51:32 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2011-03-05 10:51:32 ----RA---- C:\WINDOWS\system32\kbdur.dll
2011-03-05 10:51:32 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2011-03-05 10:51:32 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2011-03-05 10:51:32 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2011-03-05 10:51:32 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2011-03-05 10:51:32 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2011-03-05 10:51:32 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2011-03-05 10:51:31 ----RA---- C:\WINDOWS\system32\kbdru.dll
2011-03-05 10:51:31 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2011-03-05 10:51:31 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2011-03-05 10:51:30 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2011-03-05 10:51:30 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2011-03-05 10:51:30 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2011-03-05 10:51:30 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2011-03-05 10:51:30 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2011-03-05 10:51:30 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2011-03-05 10:51:30 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2011-03-05 10:51:29 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2011-03-05 10:51:29 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2011-03-05 10:51:29 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2011-03-05 10:51:29 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2011-03-05 10:51:28 ----RA---- C:\WINDOWS\system32\kbdest.dll
2011-03-05 10:51:27 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2011-03-05 10:51:27 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2011-03-05 10:51:27 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2011-03-05 10:51:27 ----RA---- C:\WINDOWS\system32\kbdro.dll
2011-03-05 10:51:27 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
2011-03-05 10:51:27 ----RA---- C:\WINDOWS\system32\kbdpl.dll
2011-03-05 10:51:27 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2011-03-05 10:51:27 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2011-03-05 10:51:27 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
2011-03-05 10:51:27 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
2011-03-05 10:51:27 ----RA---- C:\WINDOWS\system32\kbdcz.dll
2011-03-05 10:51:27 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2011-03-05 10:51:27 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2011-03-05 10:51:25 ----A---- C:\WINDOWS\system32\spxcoins.dll
2011-03-05 10:51:25 ----A---- C:\WINDOWS\system32\irclass.dll
2011-03-05 10:51:25 ----A---- C:\WINDOWS\system32\dgsetup.dll
2011-03-05 10:51:25 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2011-03-05 10:51:24 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2011-03-05 10:51:23 ----A---- C:\WINDOWS\TASKMAN.EXE
2011-03-05 10:51:22 ----A---- C:\WINDOWS\system32\drivers\irenum.sys
2011-03-05 10:51:22 ----A---- C:\WINDOWS\system32\batt.dll
2011-03-05 10:51:22 ----A---- C:\WINDOWS\NOTEPAD.EXE
2011-03-05 10:51:21 ----A---- C:\WINDOWS\system32\storprop.dll
2011-03-05 10:51:14 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2011-03-05 10:51:02 ----D---- C:\WINDOWS\system32\CatRoot2
2011-03-05 10:51:02 ----D---- C:\WINDOWS\system32\CatRoot
2011-03-05 10:50:56 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2011-03-05 10:50:37 ----SHD---- C:\System Volume Information
2011-03-05 10:50:37 ----D---- C:\Documents and Settings
2011-03-05 10:49:47 ----RASH---- C:\boot.ini
2011-03-05 10:43:28 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-03-05 10:43:28 ----RSD---- C:\WINDOWS\Fonts
2011-03-05 10:43:28 ----RD---- C:\WINDOWS\Web
2011-03-05 10:43:28 ----HD---- C:\WINDOWS\inf
2011-03-05 10:43:28 ----D---- C:\WINDOWS\WinSxS
2011-03-05 10:43:28 ----D---- C:\WINDOWS\twain_32
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\wins
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\wbem
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\usmt
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\spool
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\ShellExt
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\Setup
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\ras
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\oobe
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\npp
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\mui
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\inetsrv
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\IME
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\icsxml
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\ias
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\export
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\drivers\etc
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\drivers\disdn
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\drivers
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\dhcp
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\config
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\3com_dmi
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\3076
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\2052
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\1054
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\1042
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\1041
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\1037
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\1033
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\1031
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\1028
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32\1025
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system32
2011-03-05 10:43:28 ----D---- C:\WINDOWS\system
2011-03-05 10:43:28 ----D---- C:\WINDOWS\security
2011-03-05 10:43:28 ----D---- C:\WINDOWS\Resources
2011-03-05 10:43:28 ----D---- C:\WINDOWS\repair
2011-03-05 10:43:28 ----D---- C:\WINDOWS\Provisioning
2011-03-05 10:43:28 ----D---- C:\WINDOWS\pchealth
2011-03-05 10:43:28 ----D---- C:\WINDOWS\PeerNet
2011-03-05 10:43:28 ----D---- C:\WINDOWS\mui
2011-03-05 10:43:28 ----D---- C:\WINDOWS\msapps
2011-03-05 10:43:28 ----D---- C:\WINDOWS\msagent
2011-03-05 10:43:28 ----D---- C:\WINDOWS\Media
2011-03-05 10:43:28 ----D---- C:\WINDOWS\java
2011-03-05 10:43:28 ----D---- C:\WINDOWS\ime
2011-03-05 10:43:28 ----D---- C:\WINDOWS\Help
2011-03-05 10:43:28 ----D---- C:\WINDOWS\ehome
2011-03-05 10:43:28 ----D---- C:\WINDOWS\Driver Cache
2011-03-05 10:43:28 ----D---- C:\WINDOWS\Debug
2011-03-05 10:43:28 ----D---- C:\WINDOWS\Cursors
2011-03-05 10:43:28 ----D---- C:\WINDOWS\Connection Wizard
2011-03-05 10:43:28 ----D---- C:\WINDOWS\Config
2011-03-05 10:43:28 ----D---- C:\WINDOWS\AppPatch
2011-03-05 10:43:28 ----D---- C:\WINDOWS\addins
2011-03-05 10:43:28 ----D---- C:\WINDOWS
2011-03-05 10:43:28 ----ASH---- C:\pagefile.sys
2011-03-05 10:29:23 ----A---- C:\WINDOWS\system32\WMErrSKY.dll
2011-03-05 10:29:22 ----D---- C:\WINDOWS\system32\1051
2011-03-05 10:25:05 ----D---- C:\Program Files\AVG
2011-03-05 10:22:35 ----D---- C:\WINDOWS\system32\Lang
2011-03-05 10:21:33 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2011-03-05 10:21:31 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2011-03-05 10:21:30 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys
2011-03-05 10:21:26 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2011-03-05 10:21:25 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2011-03-05 10:21:24 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2011-03-05 10:21:23 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2011-03-05 10:21:22 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2011-03-05 10:21:21 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys
2011-03-05 10:21:19 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys
2011-03-05 10:21:17 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2011-03-05 10:21:14 ----D---- C:\WINDOWS\system32\RTCOM
2011-03-05 10:21:13 ----A---- C:\WINDOWS\system32\ksuser.dll
2011-03-05 10:21:12 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2011-03-05 10:20:45 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2011-03-05 10:20:44 ----HDC---- C:\WINDOWS\$NtUninstallKB888111WXPSP2$
2011-03-05 10:20:41 ----A---- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2011-03-05 10:20:41 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2011-03-05 10:20:41 ----A---- C:\WINDOWS\SkyTel.exe
2011-03-05 10:20:41 ----A---- C:\WINDOWS\RtlUpd.exe
2011-03-05 10:20:41 ----A---- C:\WINDOWS\RTLCPL.EXE
2011-03-05 10:20:40 ----A---- C:\WINDOWS\RTHDCPL.EXE
2011-03-05 10:20:39 ----A---- C:\WINDOWS\system32\drivers\Monfilt.sys
2011-03-05 10:20:39 ----A---- C:\WINDOWS\system32\drivers\Ambfilt.sys
2011-03-05 10:20:39 ----A---- C:\WINDOWS\MicCal.exe
2011-03-05 10:20:39 ----A---- C:\WINDOWS\ALCWZRD.EXE
2011-03-05 10:20:39 ----A---- C:\WINDOWS\ALCMTR.EXE
2011-03-05 10:20:35 ----A---- C:\WINDOWS\RtlExUpd.dll
2011-03-05 10:20:35 ----A---- C:\WINDOWS\HideWin.exe
2011-03-05 10:18:06 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-03-05 10:18:05 ----D---- C:\Program Files\Intel
2011-03-05 10:15:52 ----D---- C:\WINDOWS\nview
2011-03-05 10:15:52 ----A---- C:\WINDOWS\system32\nvudisp.exe
2011-03-05 10:15:42 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2011-03-05 10:15:30 ----D---- C:\NVIDIA
2011-03-05 10:14:39 ----A---- C:\WINDOWS\system32\drivers\Rtenicxp.sys
2011-03-05 10:14:38 ----HD---- C:\Program Files\InstallShield Installation Information
2011-03-05 10:14:38 ----D---- C:\WINDOWS\OPTIONS
2011-03-05 10:14:38 ----D---- C:\Program Files\Realtek
2011-03-05 10:14:30 ----D---- C:\Program Files\Common Files\InstallShield
2011-03-05 10:12:09 ----D---- C:\Documents and Settings\fony\Application Data\Identities
2011-03-05 10:12:08 ----HD---- C:\Program Files\Uninstall Information
2011-03-05 10:12:03 ----SD---- C:\Documents and Settings\fony\Application Data\Microsoft
2011-03-05 10:12:03 ----ASH---- C:\Documents and Settings\fony\Application Data\desktop.ini
2011-03-05 10:03:11 ----D---- C:\WINDOWS\SoftwareDistribution
2011-03-05 10:03:11 ----D---- C:\WINDOWS\Prefetch
2011-03-05 10:03:10 ----SD---- C:\WINDOWS\system32\Microsoft
2011-03-05 10:03:10 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-03-05 10:00:33 ----D---- C:\WINDOWS\system32\xircom
2011-03-05 10:00:33 ----D---- C:\Program Files\xerox
2011-03-05 10:00:33 ----D---- C:\Program Files\microsoft frontpage
2011-03-05 10:00:18 ----RASH---- C:\MSDOS.SYS
2011-03-05 10:00:18 ----RASH---- C:\IO.SYS
2011-03-05 10:00:18 ----A---- C:\WINDOWS\control.ini
2011-03-05 10:00:18 ----A---- C:\CONFIG.SYS
2011-03-05 10:00:02 ----A---- C:\WINDOWS\system32\mapi32.dll
2011-03-05 09:59:27 ----RD---- C:\WINDOWS\Offline Web Pages
2011-03-05 09:59:26 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-03-05 09:59:26 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2011-03-05 09:59:22 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2011-03-05 09:59:19 ----HD---- C:\Program Files\WindowsUpdate
2011-03-05 09:59:03 ----D---- C:\WINDOWS\system32\DirectX
2011-03-05 09:58:45 ----A---- C:\WINDOWS\system32\atrace.dll
2011-03-05 09:58:43 ----A---- C:\WINDOWS\system32\desktop.ini
2011-03-05 09:58:43 ----A---- C:\WINDOWS\desktop.ini
2011-03-05 09:58:37 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2011-03-05 09:58:36 ----D---- C:\Program Files\Common Files\Services
2011-03-05 09:58:36 ----A---- C:\WINDOWS\system32\acctres.dll
2011-03-05 09:58:33 ----SD---- C:\WINDOWS\Tasks
2011-03-05 09:58:33 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2011-03-05 09:58:32 ----D---- C:\Program Files\Common Files\MSSoap
2011-03-05 09:58:29 ----D---- C:\WINDOWS\srchasst
2011-03-05 09:58:28 ----D---- C:\WINDOWS\system32\Macromed
2011-03-05 09:58:25 ----A---- C:\WINDOWS\system32\wuweb.dll
2011-03-05 09:58:25 ----A---- C:\WINDOWS\system32\wups.dll
2011-03-05 09:58:25 ----A---- C:\WINDOWS\system32\wucltui.dll
2011-03-05 09:58:25 ----A---- C:\WINDOWS\system32\wuauserv.dll
2011-03-05 09:58:25 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2011-03-05 09:58:25 ----A---- C:\WINDOWS\system32\wuaueng.dll
2011-03-05 09:58:25 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2011-03-05 09:58:25 ----A---- C:\WINDOWS\system32\wuauclt.exe
2011-03-05 09:58:25 ----A---- C:\WINDOWS\system32\wuapi.dll
2011-03-05 09:58:24 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2011-03-05 09:58:24 ----A---- C:\WINDOWS\system32\qmgr.dll
2011-03-05 09:58:24 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2011-03-05 09:58:24 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2011-03-05 09:58:21 ----D---- C:\Program Files\Movie Maker
2011-03-05 09:58:17 ----A---- C:\WINDOWS\system32\safrslv.dll
2011-03-05 09:58:17 ----A---- C:\WINDOWS\system32\safrdm.dll
2011-03-05 09:58:17 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2011-03-05 09:58:17 ----A---- C:\WINDOWS\system32\racpldlg.dll
2011-03-05 09:58:14 ----A---- C:\WINDOWS\system32\fltmc.exe
2011-03-05 09:58:14 ----A---- C:\WINDOWS\system32\fltlib.dll
2011-03-05 09:58:14 ----A---- C:\WINDOWS\system32\drivers\fltmgr.sys
2011-03-05 09:58:13 ----D---- C:\WINDOWS\system32\Restore
2011-03-05 09:58:13 ----A---- C:\WINDOWS\system32\srsvc.dll
2011-03-05 09:58:13 ----A---- C:\WINDOWS\system32\srrstr.dll
2011-03-05 09:58:13 ----A---- C:\WINDOWS\system32\srclient.dll
2011-03-05 09:58:13 ----A---- C:\WINDOWS\system32\drivers\sr.sys
2011-03-05 09:58:12 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2011-03-05 09:58:12 ----A---- C:\WINDOWS\system32\msconf.dll
2011-03-05 09:58:12 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2011-03-05 09:58:12 ----A---- C:\WINDOWS\system32\mnmdd.dll
2011-03-05 09:58:12 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2011-03-05 09:58:12 ----A---- C:\WINDOWS\system32\ils.dll
2011-03-05 09:58:09 ----D---- C:\Program Files\NetMeeting
2011-03-05 09:58:09 ----A---- C:\WINDOWS\system32\msoert2.dll
2011-03-05 09:58:09 ----A---- C:\WINDOWS\system32\msoeacct.dll
2011-03-05 09:58:08 ----A---- C:\WINDOWS\system32\inetres.dll
2011-03-05 09:58:08 ----A---- C:\WINDOWS\system32\inetcomm.dll
2011-03-05 09:58:06 ----D---- C:\Program Files\Outlook Express
2011-03-05 09:58:06 ----A---- C:\WINDOWS\system32\schedsvc.dll
2011-03-05 09:58:06 ----A---- C:\WINDOWS\system32\mstinit.exe
2011-03-05 09:58:06 ----A---- C:\WINDOWS\system32\mstask.dll
2011-03-05 09:58:05 ----A---- C:\WINDOWS\system32\isign32.dll
2011-03-05 09:58:05 ----A---- C:\WINDOWS\system32\inetcfg.dll
2011-03-05 09:58:05 ----A---- C:\WINDOWS\system32\icwphbk.dll
2011-03-05 09:58:05 ----A---- C:\WINDOWS\system32\icwdial.dll
2011-03-05 09:58:00 ----D---- C:\Program Files\Internet Explorer
2011-03-05 09:58:00 ----D---- C:\Program Files\Common Files\System
2011-03-05 09:57:33 ----D---- C:\Program Files\ComPlus Applications
2011-03-05 09:57:32 ----A---- C:\WINDOWS\vbaddin.ini
2011-03-05 09:57:32 ----A---- C:\WINDOWS\vb.ini
2011-03-05 09:57:28 ----D---- C:\WINDOWS\Registration
2011-03-05 09:57:22 ----D---- C:\Program Files\Windows Media Player
2011-03-05 09:57:22 ----D---- C:\Program Files\Online Services
2011-03-05 09:57:17 ----D---- C:\Program Files\Messenger
2011-03-05 09:57:14 ----D---- C:\Program Files\MSN Gaming Zone
2011-03-05 09:57:14 ----A---- C:\WINDOWS\system32\write.exe
2011-03-05 09:57:06 ----A---- C:\WINDOWS\system32\sndvol32.exe
2011-03-05 09:57:06 ----A---- C:\WINDOWS\system32\hticons.dll
2011-03-05 09:57:06 ----A---- C:\WINDOWS\system32\avwav.dll
2011-03-05 09:57:06 ----A---- C:\WINDOWS\system32\avtapi.dll
2011-03-05 09:57:06 ----A---- C:\WINDOWS\system32\avmeter.dll
2011-03-05 09:57:05 ----A---- C:\WINDOWS\system32\winchat.exe
2011-03-05 09:56:59 ----A---- C:\WINDOWS\system32\sol.exe
2011-03-05 09:56:59 ----A---- C:\WINDOWS\system32\charmap.exe
2011-03-05 09:56:59 ----A---- C:\WINDOWS\system32\getuname.dll
2011-03-05 09:56:59 ----A---- C:\WINDOWS\system32\calc.exe
2011-03-05 09:56:58 ----A---- C:\WINDOWS\system32\winmine.exe
2011-03-05 09:56:58 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2011-03-05 09:56:58 ----A---- C:\WINDOWS\system32\tskill.exe
2011-03-05 09:56:58 ----A---- C:\WINDOWS\system32\reset.exe
2011-03-05 09:56:58 ----A---- C:\WINDOWS\system32\mshearts.exe
2011-03-05 09:56:58 ----A---- C:\WINDOWS\system32\freecell.exe
2011-03-05 09:56:57 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2011-03-05 09:56:57 ----A---- C:\WINDOWS\system32\tslabels.ini
2011-03-05 09:56:57 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2011-03-05 09:56:57 ----A---- C:\WINDOWS\system32\tscon.exe
2011-03-05 09:56:57 ----A---- C:\WINDOWS\system32\shadow.exe
2011-03-05 09:56:57 ----A---- C:\WINDOWS\system32\rwinsta.exe
2011-03-05 09:56:57 ----A---- C:\WINDOWS\system32\regini.exe
2011-03-05 09:56:57 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2011-03-05 09:56:57 ----A---- C:\WINDOWS\system32\qwinsta.exe
2011-03-05 09:56:57 ----A---- C:\WINDOWS\system32\qappsrv.exe
2011-03-05 09:56:57 ----A---- C:\WINDOWS\system32\msg.exe
2011-03-05 09:56:57 ----A---- C:\WINDOWS\system32\logoff.exe
2011-03-05 09:56:57 ----A---- C:\WINDOWS\system32\cdmodem.dll
2011-03-05 09:56:56 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2011-03-05 09:56:56 ----A---- C:\WINDOWS\system32\mtxex.dll
2011-03-05 09:56:56 ----A---- C:\WINDOWS\system32\mtxdm.dll
2011-03-05 09:56:56 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2011-03-05 09:56:56 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2011-03-05 09:56:55 ----A---- C:\WINDOWS\system32\stclient.dll
2011-03-05 09:56:55 ----A---- C:\WINDOWS\system32\comsnap.dll
2011-03-05 09:56:55 ----A---- C:\WINDOWS\system32\comrepl.dll
2011-03-05 09:56:55 ----A---- C:\WINDOWS\system32\comaddin.dll
2011-03-05 09:56:51 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2011-03-05 09:56:41 ----D---- C:\Program Files\MSN
2011-03-05 09:56:40 ----A---- C:\WINDOWS\system32\sndrec32.exe
2011-03-05 09:56:40 ----A---- C:\WINDOWS\system32\mplay32.exe
2011-03-05 09:56:40 ----A---- C:\WINDOWS\system32\hypertrm.dll
2011-03-05 09:56:40 ----A---- C:\WINDOWS\system32\accwiz.exe
2011-03-05 09:56:39 ----D---- C:\Program Files\Windows NT
2011-03-05 09:56:39 ----A---- C:\WINDOWS\system32\spider.exe
2011-03-05 09:56:39 ----A---- C:\WINDOWS\system32\mspaint.exe
2011-03-05 09:56:39 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys
2011-03-05 09:56:39 ----A---- C:\WINDOWS\system32\clipbrd.exe
2011-03-05 09:56:38 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2011-03-05 09:56:38 ----A---- C:\WINDOWS\system32\remotepg.dll
2011-03-05 09:56:38 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2011-03-05 09:56:38 ----A---- C:\WINDOWS\system32\mstscax.dll
2011-03-05 09:56:38 ----A---- C:\WINDOWS\system32\mstsc.exe
2011-03-05 09:56:38 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys
2011-03-05 09:56:38 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys
2011-03-05 09:56:37 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2011-03-05 09:56:37 ----A---- C:\WINDOWS\system32\termsrv.dll
2011-03-05 09:56:37 ----A---- C:\WINDOWS\system32\sessmgr.exe
2011-03-05 09:56:37 ----A---- C:\WINDOWS\system32\rdshost.exe
2011-03-05 09:56:37 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2011-03-05 09:56:37 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2011-03-05 09:56:37 ----A---- C:\WINDOWS\system32\rdpclip.exe
2011-03-05 09:56:37 ----A---- C:\WINDOWS\system32\rdchost.dll
2011-03-05 09:56:37 ----A---- C:\WINDOWS\system32\qprocess.exe
2011-03-05 09:56:36 ----D---- C:\WINDOWS\system32\MsDtc
2011-03-05 09:56:36 ----A---- C:\WINDOWS\system32\mtxoci.dll
2011-03-05 09:56:36 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2011-03-05 09:56:36 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2011-03-05 09:56:36 ----A---- C:\WINDOWS\system32\icaapi.dll
2011-03-05 09:56:36 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2011-03-05 09:56:35 ----A---- C:\WINDOWS\system32\xolehlp.dll
2011-03-05 09:56:35 ----A---- C:\WINDOWS\system32\msdtctm.dll
2011-03-05 09:56:35 ----A---- C:\WINDOWS\system32\msdtclog.dll
2011-03-05 09:56:35 ----A---- C:\WINDOWS\system32\msdtc.exe
2011-03-05 09:56:34 ----D---- C:\WINDOWS\system32\Com
2011-03-05 09:56:34 ----A---- C:\WINDOWS\system32\colbact.dll
2011-03-05 09:56:34 ----A---- C:\WINDOWS\system32\clbcatex.dll
2011-03-05 09:56:34 ----A---- C:\WINDOWS\system32\catsrvut.dll
2011-03-05 09:56:34 ----A---- C:\WINDOWS\system32\catsrvps.dll
2011-03-05 09:56:34 ----A---- C:\WINDOWS\system32\catsrv.dll
2011-03-05 09:56:33 ----A---- C:\WINDOWS\system32\comuid.dll
2011-03-05 09:56:33 ----A---- C:\WINDOWS\system32\comsvcs.dll
2011-03-05 09:56:33 ----A---- C:\WINDOWS\system32\clbcatq.dll
2011-03-05 09:56:28 ----A---- C:\WINDOWS\system32\servdeps.dll
2011-03-05 09:56:28 ----A---- C:\WINDOWS\system32\mmfutil.dll
2011-03-05 09:56:28 ----A---- C:\WINDOWS\system32\licwmi.dll
2011-03-05 09:56:28 ----A---- C:\WINDOWS\system32\cmprops.dll
2011-03-05 09:56:21 ----A---- C:\WINDOWS\system32\drivers\termdd.sys
2011-03-05 09:56:21 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys

======List of files/folders modified in the last 1 months======

2011-03-06 13:14:35 ----A---- C:\WINDOWS\win.ini
2011-03-05 22:14:40 ----A---- C:\WINDOWS\system.ini
2011-03-05 09:59:55 ----ASH---- C:\WINDOWS\fonts\desktop.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2011-01-10 135096]
R1 cdrbsdrv;cdrbsdrv; C:\WINDOWS\system32\drivers\cdrbsdrv.sys [2006-02-20 33408]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-04 36096]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2010-06-17 28520]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2011-01-10 61960]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-10-13 4879360]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-10-07 6133856]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2006-08-14 83200]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2011-01-10 267944]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2011-01-10 135336]
R2 bgsvcgen;B's Recorder GOLD Library General Service; C:\WINDOWS\system32\bgsvcgen.exe [2007-06-15 145504]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-10-07 163908]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-30 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: dlho bez antiviru, vela haveti, kontrola logu prosim

#24 Příspěvek od vyosek »

Doinstalujte SP3 a aktualizujte IE na verzi 8.

Jinak v poradku :wink:
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Uživatelský avatar
Fony
Návštěvník
Návštěvník
Příspěvky: 27
Registrován: 10 pro 2009 19:35
Bydliště: Ruzomberok
Kontaktovat uživatele:
Kontaktovat uživatele Fony

Re: dlho bez antiviru, vela haveti, kontrola logu prosim

#25 Příspěvek od Fony »

vyosek píše:Doinstalujte SP3 a aktualizujte IE na verzi 8.

Jinak v poradku :wink:
je IE tak potrebny? ja z aktualizacii povolujem vzdy vsetko okrem tychto dvoch, SP3 som mal a peknych slov som nan nenasiel :cry: SP2 mi vyhovuje uplne najviac... a tato ikonka u mna uplne plati :iefox:

IE aktualizujem tu aktualizaciu mi ponuka akurat prave teraz ved 8 verzia moze byt pouzivat ju aj tak nebudem ale to SP3 nepovolim preco je to dolezite mat?

automatic updates mi stahuju dolezite security zaplaty a ine dobre veci len ten SP3 :wink: ako o nom pisalo ze je stabily tak stabily vobec nebol
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: dlho bez antiviru, vela haveti, kontrola logu prosim

#26 Příspěvek od vyosek »

Bez SP3 Vam nebude poskytovana podpora microsoftu v podobe aktualizaci, navic resi dost problemu...

IE je hodne provazan (bohuzel) se systemem, takze je treba mit i jej aktualizovany, jelikoz havet by mohla vyuzit jeho bez. der...
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: dlho bez antiviru, vela haveti, kontrola logu prosim

#27 Příspěvek od vyosek »

Via PM
Fony píše:Předmět: dlho bez antiviru, vela haveti, kontrola logu prosim
vyosek píše:Bez SP3 Vam nebude poskytovana podpora microsoftu v podobe aktualizaci, navic resi dost problemu...

IE je hodne provazan (bohuzel) se systemem, takze je treba mit i jej aktualizovany, jelikoz havet by mohla vyuzit jeho bez. der...
ahoj ale aktualizacie mam aj pri SP2 rovnako ako som ich mal aj pri SP3 mam totiz nelegalny windows ako asi vsetko co mam v pc
Prosim mdoeratory a poreseni, dekuji :wink:
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Uživatelský avatar
Caroprd111
VIP
VIP
Příspěvky: 13492
Registrován: 22 bře 2009 20:48
Bydliště: Třebíč
Kontaktovat uživatele:
Kontaktovat uživatele Caroprd111

Re: dlho bez antiviru, vela haveti, kontrola logu prosim

#28 Příspěvek od Caroprd111 »

Zdravím :)

Vzhledem k užívání nelegálního softwaru a tím porušování pravidel tento topic zamykám. Příště ovšem nepočítejte s pomocí. Naší prioritou není odvirovávat PC plné nelegálního softwaru.

:closed:
Obrázek
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“