VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

niečo mám v PC navyše

https://forum.viry.cz:443/viewtopic.php?t=104528

Stránka 1 z 1

niečo mám v PC navyše

Napsal: 09 zář 2010 21:56
od kekesko
Zdravím, niečo mám v PC navyše ale neviem ako na to. Tu je log z Rsit_u. Prosím o pomoc, dík.

Logfile of random's system information tool 1.08 (written by random/random)
Run by BOBO at 2010-09-09 22:26:26
Systém Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 34 GB (42%) free of 80 GB
Total RAM: 1919 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:26:30, on 9.9.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Eset\nod32kui.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Opera\opera.exe
C:\Documents and Settings\BOBO\Desktop\SRDownloader.exe
C:\WINDOWS\explorer.exe
C:\RSIT.exe
C:\Program Files\trend micro\BOBO.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.zoznam.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O3 - Toolbar: Grab Pro - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\IEPro\IEProRecorder.dll
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\Microsoft Office\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Prevziať cez IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Prevziať cez IDM všetky prepojenia - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Prevziať obsah FLV cez IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O9 - Extra button: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Program Files\IEPro\iepro.dll
O9 - Extra 'Tools' menuitem: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Program Files\IEPro\iepro.dll
O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\Microsoft Office\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 5017 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{DF11BF71-AC8F-4B9D-A266-D43B15436CCC}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00011268-E188-40DF-A514-835FCD78B1BF}]
IE7Pro BHO - C:\Program Files\IEPro\iepro.dll [2010-06-02 777392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files\Internet Download Manager\IDMIECC.dll [2010-09-02 197984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{C55BBCD6-41AD-48AD-9953-3609C48EACC7} - Grab Pro - C:\Program Files\IEPro\IEProRecorder.dll [2010-06-02 662736]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2010-07-07 1753192]
"nod32kui"=C:\Program Files\Eset\nod32kui.exe [2010-08-31 949376]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-02-26 16125440]
"SkyTel"=C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2010-08-31 328568]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2009-06-25 1414144]
"IDMan"=C:\Program Files\Internet Download Manager\IDMan.exe [2010-09-06 3241312]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationAgent]
bthprops.cpl,,BluetoothAuthenticationAgent []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2010-07-09 13923432]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2009-06-25 1414144]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
C:\Program Files\PowerISO\PWRISOVM.EXE [2007-08-07 200704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
C:\WINDOWS\RTHDCPL.EXE [2007-02-26 16125440]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel]
C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2010-09-01 2397424]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^BlueSoleil.lnk]
C:\PROGRA~1\IVTCOR~1\BLUESO~1\BLUESO~1.EXE [2004-12-21 1044480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Windows Search.lnk]
C:\PROGRA~1\WINDOW~4\WINDOW~1.EXE [2008-05-26 123904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"idsvc"=3
"NMIndexingService"=3
"NBService"=3
"BlueSoleil Hid Service"=2

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2009-09-04 548352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]
"{93994DE8-8239-4655-B1D1-5F4E91300429}"=C:\PROGRA~1\DVDIDL~1\DVDShell.dll [2004-10-09 49152]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoResolveSearch"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:Bluetooth Application"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Program Files\IEPro\MiniDM.exe"="C:\Program Files\IEPro\MiniDM.exe:*:Enabled:MiniDM"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-09-09 22:13:25 ----A---- C:\mbam-log-2010-09-09 (22-12-57).txt
2010-09-09 19:39:58 ----D---- C:\Documents and Settings\BOBO\Application Data\Malwarebytes
2010-09-09 19:39:56 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2010-09-09 19:39:55 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2010-09-09 19:39:54 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2010-09-09 19:39:53 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-09-09 10:35:16 ----D---- C:\Documents and Settings\BOBO\Application Data\IDM
2010-09-09 10:35:11 ----D---- C:\Program Files\Internet Download Manager
2010-09-09 10:09:05 ----D---- C:\Documents and Settings\BOBO\Application Data\Sun
2010-09-08 12:51:53 ----D---- C:\Program Files\URUSoft
2010-09-08 08:06:00 ----A---- C:\WINDOWS\ODBC.INI
2010-09-08 08:05:55 ----A---- C:\WINDOWS\system32\mdimon.dll
2010-09-08 08:05:02 ----D---- C:\Program Files\Common Files\DESIGNER
2010-09-08 08:04:50 ----D---- C:\WINDOWS\SHELLNEW
2010-09-08 08:03:55 ----D---- C:\Program Files\Microsoft Office
2010-09-07 12:48:45 ----D---- C:\Program Files\AxBx
2010-09-07 12:44:24 ----D---- C:\Documents and Settings\All Users\Application Data\Protexis
2010-09-07 12:44:21 ----RSH---- C:\WINDOWS\system32\C57564C5B5.dll
2010-09-07 11:52:57 ----A---- C:\Program Files\cache.dll
2010-09-07 11:10:53 ----A---- C:\WINDOWS\system32\MSSTDFMT.DLL
2010-09-07 11:10:47 ----D---- C:\Program Files\SpywareBlaster
2010-09-07 09:35:54 ----D---- C:\Documents and Settings\BOBO\Application Data\Uniblue
2010-09-07 09:05:13 ----D---- C:\rsit
2010-09-07 09:05:13 ----D---- C:\Program Files\trend micro
2010-09-07 09:04:17 ----A---- C:\RSIT.exe
2010-09-07 08:50:04 ----D---- C:\HiJackThis
2010-09-06 17:36:57 ----A---- C:\WINDOWS\system32\drivers\idmtdi.sys
2010-09-06 04:29:21 ----ASH---- C:\pagefile.sys
2010-09-04 03:00:46 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2010-09-04 03:00:16 ----D---- C:\Program Files\MSXML 4.0
2010-09-03 14:13:18 ----D---- C:\Program Files\IEPro
2010-09-03 12:24:51 ----A---- C:\Documents and Settings\BOBO\Application Data\DVDSubEdit.ini
2010-09-03 12:20:43 ----D---- C:\Program Files\AoA Audio Extractor
2010-09-03 12:08:06 ----D---- C:\Documents and Settings\BOBO\Application Data\MiniDm
2010-09-03 11:03:03 ----D---- C:\Documents and Settings\BOBO\Application Data\GrabPro
2010-09-03 11:02:29 ----D---- C:\Documents and Settings\BOBO\Application Data\IEPro
2010-09-03 07:55:47 ----D---- C:\Documents and Settings\BOBO\Application Data\vlc
2010-09-03 07:55:19 ----D---- C:\Program Files\VideoLAN
2010-09-03 06:17:42 ----R---- C:\WINDOWS\alcwzrd.exe
2010-09-03 06:17:42 ----R---- C:\WINDOWS\Alcmtr.exe
2010-09-03 06:17:41 ----R---- C:\WINDOWS\SkyTel.exe
2010-09-03 06:17:41 ----R---- C:\WINDOWS\RTHDCPL.exe
2010-09-03 06:17:40 ----R---- C:\WINDOWS\SoundMan.exe
2010-09-03 06:17:40 ----R---- C:\WINDOWS\RTLCPL.exe
2010-09-03 06:17:40 ----R---- C:\WINDOWS\MicCal.exe
2010-09-03 06:17:39 ----R---- C:\WINDOWS\system32\ChCfg.exe
2010-09-03 06:17:39 ----R---- C:\WINDOWS\RtlUpd.exe
2010-09-03 06:17:38 ----R---- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2010-09-03 06:16:41 ----R---- C:\WINDOWS\RtlExUpd.dll
2010-09-03 06:08:20 ----D---- C:\WINDOWS\ASUSInstAll
2010-09-03 06:05:37 ----A---- C:\WINDOWS\Ascd_log.ini
2010-09-03 04:54:02 ----A---- C:\WINDOWS\NeroDigital.ini
2010-09-02 20:54:19 ----D---- C:\Program Files\PowerISO
2010-09-02 20:39:14 ----A---- C:\WINDOWS\system32\WNASPI32.DLL
2010-09-02 20:39:14 ----A---- C:\WINDOWS\system32\drivers\ASPI32.SYS
2010-09-02 20:38:32 ----D---- C:\Program Files\BeLight
2010-09-02 20:32:47 ----D---- C:\Program Files\SubRip
2010-09-02 20:15:05 ----D---- C:\Documents and Settings\BOBO\Application Data\DMCache
2010-09-02 08:53:39 ----D---- C:\Program Files\Longfine
2010-09-02 05:45:45 ----A---- C:\WINDOWS\msvrc20.dll
2010-09-02 05:45:43 ----D---- C:\Program Files\IObit
2010-09-01 23:01:35 ----D---- C:\WINDOWS\system32\NtmsData
2010-09-01 22:07:40 ----A---- C:\WINDOWS\ModemLog_Nokia 3120 classic USB Modem #2.txt
2010-09-01 11:24:05 ----D---- C:\Program Files\Foxit Software
2010-09-01 11:13:12 ----D---- C:\Program Files\DVD2one V2
2010-09-01 11:04:55 ----D---- C:\Documents and Settings\BOBO\Application Data\SUPERAntiSpyware.com
2010-09-01 11:04:55 ----D---- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2010-09-01 11:04:51 ----D---- C:\Program Files\SUPERAntiSpyware
2010-09-01 10:39:43 ----D---- C:\Program Files\xp-aspi
2010-09-01 10:38:31 ----D---- C:\Program Files\AviSynth 2.5
2010-09-01 10:37:03 ----D---- C:\Program Files\DVD2SVCD
2010-09-01 10:34:08 ----D---- C:\Program Files\Custom Technology
2010-09-01 09:55:11 ----D---- C:\Program Files\Allok MP3 to AMR Converter
2010-09-01 09:49:25 ----D---- C:\Documents and Settings\BOBO\Application Data\Ahead
2010-09-01 09:49:11 ----D---- C:\Documents and Settings\All Users\Application Data\Ahead
2010-09-01 09:47:55 ----D---- C:\Program Files\Nero
2010-09-01 09:47:55 ----D---- C:\Program Files\Common Files\Ahead
2010-09-01 09:47:55 ----D---- C:\Documents and Settings\All Users\Application Data\Nero
2010-09-01 09:47:27 ----D---- C:\WINDOWS\RegisteredPackages
2010-09-01 09:47:03 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2010-09-01 09:47:02 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2010-09-01 09:38:15 ----D---- C:\Program Files\DVDlabPro2
2010-09-01 09:36:10 ----A---- C:\WINDOWS\DVDIdlePro.INI
2010-09-01 09:34:44 ----D---- C:\Program Files\DVDIdle Pro
2010-09-01 09:30:05 ----D---- C:\Program Files\DVD Decrypter
2010-09-01 09:28:12 ----D---- C:\Documents and Settings\All Users\Application Data\DVD Shrink
2010-09-01 09:28:11 ----D---- C:\Program Files\DVD Shrink
2010-09-01 00:06:48 ----D---- C:\Documents and Settings\BOBO\Application Data\Macromedia
2010-09-01 00:06:35 ----D---- C:\Documents and Settings\BOBO\Application Data\Adobe
2010-08-31 15:05:37 ----D---- C:\Documents and Settings\BOBO\Application Data\Opera
2010-08-31 15:05:32 ----D---- C:\Program Files\Opera
2010-08-31 11:56:20 ----D---- C:\Documents and Settings\BOBO\Application Data\uTorrent
2010-08-31 11:09:07 ----A---- C:\WINDOWS\ModemLog_Bluetooth Fax Modem.txt
2010-08-31 11:05:42 ----A---- C:\WINDOWS\ModemLog_Nokia 3120 classic USB Modem.txt
2010-08-31 10:08:05 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2010-08-31 10:07:45 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll
2010-08-31 10:07:41 ----HDC---- C:\WINDOWS\$NtUninstallWdf01007$
2010-08-31 10:06:12 ----D---- C:\Documents and Settings\BOBO\Application Data\Nokia
2010-08-31 10:06:11 ----D---- C:\Documents and Settings\BOBO\Application Data\PC Suite
2010-08-31 10:06:11 ----D---- C:\Documents and Settings\All Users\Application Data\PC Suite
2010-08-31 10:05:29 ----D---- C:\Program Files\Common Files\PCSuite
2010-08-31 10:05:25 ----D---- C:\Program Files\Common Files\Nokia
2010-08-31 10:05:21 ----D---- C:\Program Files\DIFX
2010-08-31 10:05:21 ----A---- C:\WINDOWS\system32\drivers\pccsmcfd.sys
2010-08-31 10:05:18 ----D---- C:\Program Files\PC Connectivity Solution
2010-08-31 10:05:15 ----A---- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys
2010-08-31 10:05:15 ----A---- C:\WINDOWS\system32\drivers\nmwcdnsu.sys
2010-08-31 10:05:14 ----A---- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys
2010-08-31 10:05:14 ----A---- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys
2010-08-31 10:05:13 ----A---- C:\WINDOWS\system32\drivers\ccdcmbo.sys
2010-08-31 10:05:12 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-08-31 10:05:12 ----A---- C:\WINDOWS\system32\wdfcoinstaller01007.dll
2010-08-31 10:05:12 ----A---- C:\WINDOWS\system32\nmwcdcocls.dll
2010-08-31 10:05:12 ----A---- C:\WINDOWS\system32\drivers\ccdcmb.sys
2010-08-31 10:05:07 ----D---- C:\Program Files\Nokia
2010-08-31 10:05:07 ----A---- C:\WINDOWS\system32\nmwcdcls.dll
2010-08-31 10:04:19 ----D---- C:\Documents and Settings\All Users\Application Data\Installations
2010-08-31 08:35:48 ----A---- C:\WINDOWS\system32\wshirda.dll
2010-08-31 08:35:47 ----A---- C:\WINDOWS\system32\irmon.dll
2010-08-31 08:35:47 ----A---- C:\WINDOWS\system32\irftp.exe
2010-08-31 08:32:51 ----D---- C:\Documents and Settings\All Users\Application Data\Bluetooth
2010-08-31 08:29:36 ----A---- C:\WINDOWS\system32\drivers\vfwwdm32.dll
2010-08-31 08:29:16 ----RA---- C:\WINDOWS\system32\drivers\wssbtr1f.sys
2010-08-31 08:29:15 ----RA---- C:\WINDOWS\system32\drivers\SktBt2k.sys
2010-08-31 08:29:15 ----RA---- C:\WINDOWS\system32\drivers\SioUi2k.dll
2010-08-31 08:29:15 ----RA---- C:\WINDOWS\system32\drivers\Sio9502k.sys
2010-08-31 08:29:15 ----RA---- C:\WINDOWS\system32\drivers\SCTray.exe
2010-08-31 08:29:15 ----RA---- C:\WINDOWS\system32\drivers\OXSER.SYS
2010-08-31 08:28:45 ----A---- C:\WINDOWS\system32\drivers\VHIDMini.sys
2010-08-31 08:28:45 ----A---- C:\WINDOWS\system32\drivers\VcommMgr.sys
2010-08-31 08:28:45 ----A---- C:\WINDOWS\system32\drivers\VComm.sys
2010-08-31 08:28:45 ----A---- C:\WINDOWS\system32\drivers\vbtenum.sys
2010-08-31 08:28:45 ----A---- C:\WINDOWS\system32\drivers\BTNetFilter.sys
2010-08-31 08:28:45 ----A---- C:\WINDOWS\system32\drivers\BtNetDrv.sys
2010-08-31 08:28:45 ----A---- C:\WINDOWS\system32\drivers\BTHidMgr.sys
2010-08-31 08:28:45 ----A---- C:\WINDOWS\system32\drivers\bcbthub.sys
2010-08-31 08:28:44 ----D---- C:\Program Files\IVT Corporation
2010-08-31 08:28:44 ----A---- C:\WINDOWS\system32\drivers\fw203x.sys
2010-08-31 08:28:44 ----A---- C:\WINDOWS\system32\drivers\btcusb.sys
2010-08-31 08:28:44 ----A---- C:\WINDOWS\system32\drivers\blueletaudio.sys
2010-08-31 08:28:44 ----A---- C:\WINDOWS\system32\btinstall.dll
2010-08-31 06:44:54 ----D---- C:\WINDOWS\pss
2010-08-31 05:30:21 ----D---- C:\Documents and Settings\BOBO\Application Data\MSNInstaller
2010-08-31 01:36:53 ----D---- C:\Program Files\HSDPA USB Modem
2010-08-31 01:31:10 ----SHD---- C:\Config.Msi
2010-08-31 01:25:55 ----D---- C:\Documents and Settings\BOBO\Application Data\Windows Search
2010-08-31 01:20:29 ----D---- C:\Documents and Settings\BOBO\Application Data\URSoft
2010-08-31 01:20:28 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2010-08-31 01:20:24 ----D---- C:\Program Files\Your Uninstaller 2010
2010-08-31 01:17:45 ----A---- C:\WINDOWS\system32\BASSMOD.dll
2010-08-31 01:16:42 ----D---- C:\Program Files\WinRAR
2010-08-31 01:02:14 ----A---- C:\WINDOWS\system32\ptpusb.dll
2010-08-31 01:02:14 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys
2010-08-31 01:02:12 ----A---- C:\WINDOWS\system32\ptpusd.dll
2010-08-31 00:34:49 ----A---- C:\WINDOWS\system32\imon.dll
2010-08-31 00:34:49 ----A---- C:\WINDOWS\system32\drivers\nod32drv.sys
2010-08-31 00:34:49 ----A---- C:\WINDOWS\system32\drivers\amon.sys
2010-08-31 00:33:50 ----D---- C:\Program Files\ESET
2010-08-30 23:43:23 ----A---- C:\WINDOWS\system32\drivers\mouhid.sys
2010-08-30 23:43:20 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2010-08-30 15:34:07 ----D---- C:\HDD 80GB D
2010-08-27 13:00:36 ----D---- C:\Program Files\uTorrent
2010-08-25 16:16:37 ----D---- C:\WINDOWS\system32\winrm
2010-08-25 16:16:37 ----D---- C:\WINDOWS\system32\WindowsPowerShell
2010-08-25 16:13:13 ----D---- C:\WINDOWS\ie8updates
2010-08-25 15:58:22 ----ASH---- C:\hiberfil.sys
2010-08-25 15:52:04 ----HDC---- C:\WINDOWS\ie8
2010-08-25 15:51:02 ----N---- C:\WINDOWS\system32\msrating.dll.mui
2010-08-25 15:51:02 ----A---- C:\WINDOWS\system32\msdbg2.dll
2010-08-25 15:51:01 ----N---- C:\WINDOWS\system32\mshta.exe.mui
2010-08-25 15:51:00 ----N---- C:\WINDOWS\system32\iedkcs32.dll.mui
2010-08-25 15:51:00 ----N---- C:\WINDOWS\system32\ie4uinit.exe.mui
2010-08-25 15:43:18 ----A---- C:\WINDOWS\ntbtlog.txt
2010-08-25 15:12:56 ----D---- C:\Program Files\Microsoft.NET
2010-08-25 15:09:25 ----D---- C:\WINDOWS\system32\XPSViewer
2010-08-25 15:09:24 ----D---- C:\Program Files\MSBuild
2010-08-25 15:09:19 ----D---- C:\Program Files\Reference Assemblies
2010-08-25 15:09:00 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2010-08-25 15:09:00 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2010-08-25 15:09:00 ----N---- C:\WINDOWS\system32\prntvpt.dll
2010-08-25 15:07:18 ----D---- C:\WINDOWS\system32\sk-SK
2010-08-25 15:07:04 ----N---- C:\WINDOWS\system32\SET1DC.tmp
2010-08-25 15:07:04 ----N---- C:\WINDOWS\system32\SET1DA.tmp
2010-08-25 15:07:04 ----N---- C:\WINDOWS\system32\SET1D9.tmp
2010-08-25 15:07:04 ----N---- C:\WINDOWS\system32\SET1D8.tmp
2010-08-25 15:07:04 ----N---- C:\WINDOWS\system32\SET1D3.tmp
2010-08-25 15:07:04 ----N---- C:\WINDOWS\system32\SET1D2.tmp
2010-08-25 15:07:04 ----N---- C:\WINDOWS\system32\SET1D0.tmp
2010-08-25 15:07:04 ----N---- C:\WINDOWS\system32\SET1CF.tmp
2010-08-25 15:07:04 ----N---- C:\WINDOWS\system32\SET1CE.tmp
2010-08-25 15:07:04 ----N---- C:\WINDOWS\system32\SET1CC.tmp
2010-08-25 15:07:04 ----N---- C:\WINDOWS\system32\SET1C8.tmp
2010-08-25 15:07:04 ----N---- C:\WINDOWS\system32\SET1C7.tmp
2010-08-25 15:07:04 ----N---- C:\WINDOWS\system32\SET1C6.tmp
2010-08-25 15:07:04 ----N---- C:\WINDOWS\system32\SET1C5.tmp
2010-08-25 15:07:04 ----N---- C:\WINDOWS\system32\SET1C0.tmp
2010-08-25 15:07:04 ----N---- C:\WINDOWS\system32\SET1BF.tmp
2010-08-25 15:07:04 ----N---- C:\WINDOWS\system32\SET1BE.tmp
2010-08-25 15:07:04 ----N---- C:\WINDOWS\system32\SET1BD.tmp
2010-08-25 15:06:56 ----D---- C:\WINDOWS\ie7updates
2010-08-25 15:06:46 ----D---- C:\WINDOWS\WBEM
2010-08-25 15:06:35 ----HDC---- C:\WINDOWS\ie7
2010-08-25 15:00:39 ----A---- C:\WINDOWS\system32\WinFXDocObj.exe
2010-08-25 15:00:39 ----A---- C:\WINDOWS\system32\SET125.tmp
2010-08-25 15:00:39 ----A---- C:\WINDOWS\system32\SET120.tmp
2010-08-25 15:00:39 ----A---- C:\WINDOWS\system32\SET11F.tmp
2010-08-25 15:00:39 ----A---- C:\WINDOWS\system32\SET11D.tmp
2010-08-25 15:00:39 ----A---- C:\WINDOWS\system32\SET11B.tmp
2010-08-25 15:00:39 ----A---- C:\WINDOWS\system32\SET117.tmp
2010-08-25 15:00:39 ----A---- C:\WINDOWS\system32\SET115.tmp
2010-08-25 15:00:39 ----A---- C:\WINDOWS\system32\SET113.tmp
2010-08-25 15:00:39 ----A---- C:\WINDOWS\system32\SET112.tmp
2010-08-25 15:00:39 ----A---- C:\WINDOWS\system32\SET110.tmp
2010-08-25 15:00:39 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2010-08-25 15:00:39 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2010-08-25 15:00:39 ----A---- C:\WINDOWS\system32\msfeeds.dll
2010-08-25 15:00:39 ----A---- C:\WINDOWS\system32\ieui.dll
2010-08-25 15:00:39 ----A---- C:\WINDOWS\system32\ieudinit.exe
2010-08-25 15:00:39 ----A---- C:\WINDOWS\system32\iertutil.dll
2010-08-25 15:00:39 ----A---- C:\WINDOWS\system32\ieframe.dll
2010-08-25 15:00:39 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2010-08-25 15:00:38 ----A---- C:\WINDOWS\system32\SETFC.tmp
2010-08-25 15:00:38 ----A---- C:\WINDOWS\system32\icardie.dll
2010-08-25 15:00:38 ----A---- C:\WINDOWS\system32\advpack.dll.mui
2010-08-25 15:00:35 ----A---- C:\WINDOWS\system32\ieframe.dll.mui
2010-08-25 15:00:30 ----D---- C:\Documents and Settings\BOBO\Application Data\Windows Desktop Search
2010-08-25 15:00:20 ----D---- C:\Program Files\Windows Desktop Search
2010-08-25 15:00:19 ----D---- C:\WINDOWS\system32\GroupPolicy
2010-08-25 14:59:29 ----RSD---- C:\WINDOWS\assembly
2010-08-25 14:59:29 ----D---- C:\WINDOWS\Microsoft.NET
2010-08-25 14:59:28 ----D---- C:\WINDOWS\system32\URTTemp
2010-08-25 14:51:57 ----SHD---- C:\RECYCLER
2010-08-24 12:28:34 ----D---- C:\Documents and Settings\BOBO\Application Data\Media Player Classic
2010-08-24 12:27:59 ----A---- C:\WINDOWS\system32\unrar.dll
2010-08-24 12:27:55 ----D---- C:\Program Files\K-Lite Codec Pack
2010-08-23 19:24:02 ----D---- C:\Documents and Settings\BOBO\Application Data\GHISLER
2010-08-23 17:10:09 ----A---- C:\WINDOWS\system32\h323log.txt
2010-08-23 17:06:02 ----A---- C:\WINDOWS\system32\drivers\audstub.sys
2010-08-23 17:05:25 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2010-08-23 17:04:20 ----A---- C:\WINDOWS\system32\usbui.dll
2010-08-23 17:03:15 ----A---- C:\WINDOWS\imsins.BAK
2010-08-23 17:03:14 ----SHD---- C:\WINDOWS\Installer
2010-08-23 17:03:14 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-08-23 17:03:13 ----D---- C:\Program Files\Common Files\ODBC
2010-08-23 17:03:13 ----A---- C:\WINDOWS\ODBCINST.INI
2010-08-23 17:03:10 ----D---- C:\Program Files\Common Files\SpeechEngines
2010-08-23 17:03:09 ----RD---- C:\Program Files
2010-08-23 17:03:09 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-08-23 17:03:09 ----D---- C:\Program Files\Common Files
2010-08-23 17:03:07 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2010-08-23 17:03:06 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2010-08-23 17:03:06 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2010-08-23 17:03:04 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2010-08-23 17:03:04 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2010-08-23 17:03:04 ----RA---- C:\WINDOWS\system32\kbdur.dll
2010-08-23 17:03:04 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2010-08-23 17:03:04 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2010-08-23 17:03:04 ----RA---- C:\WINDOWS\system32\kbdru.dll
2010-08-23 17:03:04 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2010-08-23 17:03:04 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2010-08-23 17:03:04 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2010-08-23 17:03:04 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2010-08-23 17:03:04 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2010-08-23 17:03:04 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2010-08-23 17:03:02 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2010-08-23 17:03:02 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2010-08-23 17:03:02 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2010-08-23 17:03:02 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2010-08-23 17:03:02 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2010-08-23 17:03:02 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2010-08-23 17:03:02 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2010-08-23 17:03:00 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2010-08-23 17:03:00 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2010-08-23 17:03:00 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2010-08-23 17:03:00 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2010-08-23 17:03:00 ----RA---- C:\WINDOWS\system32\kbdest.dll
2010-08-23 17:02:58 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2010-08-23 17:02:58 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2010-08-23 17:02:58 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2010-08-23 17:02:58 ----RA---- C:\WINDOWS\system32\kbdro.dll
2010-08-23 17:02:58 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
2010-08-23 17:02:58 ----RA---- C:\WINDOWS\system32\kbdpl.dll
2010-08-23 17:02:58 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2010-08-23 17:02:58 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2010-08-23 17:02:58 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
2010-08-23 17:02:58 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
2010-08-23 17:02:58 ----RA---- C:\WINDOWS\system32\kbdcz.dll
2010-08-23 17:02:58 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2010-08-23 17:02:58 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2010-08-23 17:02:56 ----A---- C:\WINDOWS\system32\irclass.dll
2010-08-23 17:02:56 ----A---- C:\WINDOWS\system32\dgsetup.dll
2010-08-23 17:02:56 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2010-08-23 17:02:55 ----A---- C:\WINDOWS\system32\spxcoins.dll
2010-08-23 17:02:55 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2010-08-23 17:02:53 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2010-08-23 17:02:53 ----A---- C:\WINDOWS\TASKMAN.EXE
2010-08-23 17:02:53 ----A---- C:\WINDOWS\system32\drivers\irenum.sys
2010-08-23 17:02:53 ----A---- C:\WINDOWS\system32\batt.dll
2010-08-23 17:02:52 ----A---- C:\WINDOWS\notepad.exe
2010-08-23 17:02:51 ----A---- C:\WINDOWS\system32\storprop.dll
2010-08-23 17:02:42 ----RA---- C:\WINDOWS\SET25.tmp
2010-08-23 17:02:42 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2010-08-23 17:02:40 ----RA---- C:\WINDOWS\SET8.tmp
2010-08-23 17:02:37 ----RA---- C:\WINDOWS\SET4.tmp
2010-08-23 17:02:36 ----RA---- C:\WINDOWS\SET3.tmp
2010-08-23 17:02:31 ----D---- C:\WINDOWS\system32\CatRoot2
2010-08-23 17:02:31 ----D---- C:\WINDOWS\system32\CatRoot
2010-08-23 17:02:25 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2010-08-23 17:02:04 ----A---- C:\WINDOWS\setuplog.txt
2010-08-23 17:02:03 ----D---- C:\Documents and Settings
2010-08-23 17:02:02 ----SHD---- C:\System Volume Information
2010-08-23 17:01:10 ----SH---- C:\boot.ini
2010-08-23 16:55:57 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-08-23 16:55:57 ----RSD---- C:\WINDOWS\Fonts
2010-08-23 16:55:57 ----RD---- C:\WINDOWS\Web
2010-08-23 16:55:57 ----HD---- C:\WINDOWS\inf
2010-08-23 16:55:57 ----D---- C:\WINDOWS\WinSxS
2010-08-23 16:55:57 ----D---- C:\WINDOWS\twain_32
2010-08-23 16:55:57 ----D---- C:\WINDOWS\Temp
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\wins
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\wbem
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\usmt
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\spool
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\ShellExt
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\Setup
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\ras
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\oobe
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\npp
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\mui
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\inetsrv
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\IME
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\icsxml
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\ias
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\export
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\drivers\etc
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\drivers\disdn
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\drivers
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\dhcp
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\config
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\3com_dmi
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\3076
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\2052
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\1054
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\1042
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\1041
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\1037
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\1033
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\1031
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\1028
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32\1025
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system32
2010-08-23 16:55:57 ----D---- C:\WINDOWS\system
2010-08-23 16:55:57 ----D---- C:\WINDOWS\security
2010-08-23 16:55:57 ----D---- C:\WINDOWS\Resources
2010-08-23 16:55:57 ----D---- C:\WINDOWS\repair
2010-08-23 16:55:57 ----D---- C:\WINDOWS\Provisioning
2010-08-23 16:55:57 ----D---- C:\WINDOWS\pchealth
2010-08-23 16:55:57 ----D---- C:\WINDOWS\PeerNet
2010-08-23 16:55:57 ----D---- C:\WINDOWS\mui
2010-08-23 16:55:57 ----D---- C:\WINDOWS\msapps
2010-08-23 16:55:57 ----D---- C:\WINDOWS\msagent
2010-08-23 16:55:57 ----D---- C:\WINDOWS\Media
2010-08-23 16:55:57 ----D---- C:\WINDOWS\java
2010-08-23 16:55:57 ----D---- C:\WINDOWS\ime
2010-08-23 16:55:57 ----D---- C:\WINDOWS\Help
2010-08-23 16:55:57 ----D---- C:\WINDOWS\Driver Cache
2010-08-23 16:55:57 ----D---- C:\WINDOWS\Debug
2010-08-23 16:55:57 ----D---- C:\WINDOWS\Cursors
2010-08-23 16:55:57 ----D---- C:\WINDOWS\Connection Wizard
2010-08-23 16:55:57 ----D---- C:\WINDOWS\Config
2010-08-23 16:55:57 ----D---- C:\WINDOWS\AppPatch
2010-08-23 16:55:57 ----D---- C:\WINDOWS\addins
2010-08-23 16:55:57 ----D---- C:\WINDOWS
2010-08-23 16:49:06 ----D---- C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation
2010-08-23 16:48:58 ----D---- C:\Program Files\NVIDIA Corporation
2010-08-23 16:16:23 ----D---- C:\WINDOWS\Prefetch
2010-08-23 16:08:56 ----D---- C:\WINDOWS\system32\scripting
2010-08-23 16:08:56 ----D---- C:\WINDOWS\system32\en-us
2010-08-23 16:08:55 ----D---- C:\WINDOWS\system32\en
2010-08-23 16:08:55 ----D---- C:\WINDOWS\system32\bits
2010-08-23 16:08:55 ----D---- C:\WINDOWS\l2schemas
2010-08-23 16:07:45 ----D---- C:\WINDOWS\network diagnostic
2010-08-23 16:06:46 ----D---- C:\WINDOWS\EHome
2010-08-23 15:56:53 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2010-08-23 15:56:53 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2010-08-23 15:56:53 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2010-08-23 15:56:53 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2010-08-23 15:56:53 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2010-08-23 15:56:53 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2010-08-23 15:56:51 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2010-08-23 15:56:51 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2010-08-23 15:56:51 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2010-08-23 15:56:51 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2010-08-23 15:56:51 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2010-08-23 15:56:51 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2010-08-23 15:56:50 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2010-08-23 15:56:49 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2010-08-23 15:56:49 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2010-08-23 15:56:49 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2010-08-23 15:56:48 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2010-08-23 15:56:47 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2010-08-23 15:56:47 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2010-08-23 15:56:47 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2010-08-23 15:56:24 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2010-08-23 15:52:50 ----A---- C:\WINDOWS\system32\MRT.exe
2010-08-23 15:50:15 ----D---- C:\WINDOWS\ServicePackFiles
2010-08-23 15:44:02 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2010-08-23 15:42:50 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-08-23 15:42:32 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2010-08-23 15:42:09 ----N---- C:\WINDOWS\system32\tzchange.exe
2010-08-23 15:41:33 ----N---- C:\WINDOWS\system32\xpsp4res.dll
2010-08-23 15:40:06 ----D---- C:\WINDOWS\system32\Lang
2010-08-23 15:34:45 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-08-23 15:34:45 ----D---- C:\WINDOWS\system32\PreInstall
2010-08-23 15:34:11 ----A---- C:\WINDOWS\system32\wpa.bak
2010-08-23 15:32:31 ----A---- C:\WINDOWS\system32\drivers\mstee.sys
2010-08-23 15:32:28 ----A---- C:\WINDOWS\system32\drivers\ndisip.sys
2010-08-23 15:32:27 ----A---- C:\WINDOWS\system32\drivers\streamip.sys
2010-08-23 15:32:24 ----A---- C:\WINDOWS\system32\drivers\slip.sys
2010-08-23 15:32:22 ----A---- C:\WINDOWS\system32\drivers\wstcodec.sys
2010-08-23 15:32:20 ----A---- C:\WINDOWS\system32\drivers\nabtsfec.sys
2010-08-23 15:32:18 ----A---- C:\WINDOWS\system32\drivers\ccdecode.sys
2010-08-23 15:31:59 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2010-08-23 15:30:35 ----D---- C:\WINDOWS\system32\1051
2010-08-23 15:30:03 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2010-08-23 15:30:02 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2010-08-23 15:30:01 ----A---- C:\WINDOWS\system32\drivers\dmusic.sys
2010-08-23 15:29:57 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2010-08-23 15:29:56 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2010-08-23 15:29:55 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2010-08-23 15:29:54 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2010-08-23 15:29:53 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2010-08-23 15:29:52 ----A---- C:\WINDOWS\system32\drivers\mspqm.sys
2010-08-23 15:29:52 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2010-08-23 15:29:50 ----A---- C:\WINDOWS\system32\drivers\mspclock.sys
2010-08-23 15:29:45 ----D---- C:\WINDOWS\system32\RTCOM
2010-08-23 15:29:44 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-08-23 15:29:43 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2010-08-23 15:29:18 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2010-08-23 15:28:59 ----D---- C:\Program Files\Realtek
2010-08-23 15:28:58 ----HD---- C:\Program Files\InstallShield Installation Information
2010-08-23 15:28:46 ----A---- C:\WINDOWS\HideWin.exe
2010-08-23 15:28:43 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2010-08-23 15:28:42 ----D---- C:\Program Files\Common Files\InstallShield
2010-08-23 15:28:14 ----N---- C:\WINDOWS\system32\nvuide.exe
2010-08-23 15:28:13 ----RA---- C:\WINDOWS\system32\NVCOI.DLL
2010-08-23 15:28:13 ----RA---- C:\WINDOWS\system32\idecoiins.dll
2010-08-23 15:28:13 ----RA---- C:\WINDOWS\system32\idecoi.dll
2010-08-23 15:28:13 ----RA---- C:\WINDOWS\system32\drivers\nvata.sys
2010-08-23 15:28:13 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-08-23 15:26:10 ----A---- C:\WINDOWS\system32\fdco1ins.dll
2010-08-23 15:26:10 ----A---- C:\WINDOWS\system32\fdco1.dll
2010-08-23 15:26:10 ----A---- C:\WINDOWS\system32\drivers\NVENETFD.sys
2010-08-23 15:26:08 ----A---- C:\WINDOWS\system32\nvunrm.exe
2010-08-23 15:26:07 ----RA---- C:\WINDOWS\system32\drivers\nvtcp.sys
2010-08-23 15:26:07 ----RA---- C:\WINDOWS\system32\drivers\nvsnpu.sys
2010-08-23 15:26:07 ----A---- C:\WINDOWS\system32\nvconrm.dll
2010-08-23 15:26:07 ----A---- C:\WINDOWS\system32\drivers\nvnrm.sys
2010-08-23 15:26:07 ----A---- C:\WINDOWS\system32\drivers\nvnetbus.sys
2010-08-23 15:26:07 ----A---- C:\WINDOWS\system32\bdco1ins.dll
2010-08-23 15:26:07 ----A---- C:\WINDOWS\system32\bdco1.dll
2010-08-23 15:25:31 ----D---- C:\WINDOWS\nview
2010-08-23 15:25:31 ----A---- C:\WINDOWS\system32\nvudisp.exe
2010-08-23 15:25:06 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2010-08-23 15:25:04 ----D---- C:\Documents and Settings\BOBO\Application Data\InstallShield
2010-08-23 15:22:44 ----A---- C:\WINDOWS\Ascd_tmp.ini
2010-08-23 15:22:43 ----RA---- C:\WINDOWS\system32\drivers\ASACPI.sys
2010-08-23 15:22:35 ----A---- C:\WINDOWS\system32\drivers\ASUSHWIO.SYS
2010-08-23 15:21:36 ----D---- C:\Documents and Settings\BOBO\Application Data\Identities
2010-08-23 15:21:29 ----SD---- C:\Documents and Settings\BOBO\Application Data\Microsoft
2010-08-23 15:21:29 ----ASH---- C:\Documents and Settings\BOBO\Application Data\desktop.ini
2010-08-23 15:20:42 ----D---- C:\WINDOWS\SoftwareDistribution
2010-08-23 15:20:40 ----SD---- C:\WINDOWS\system32\Microsoft
2010-08-23 15:20:40 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-08-23 15:16:53 ----D---- C:\WINDOWS\system32\xircom
2010-08-23 15:16:53 ----D---- C:\Program Files\xerox
2010-08-23 15:16:53 ----D---- C:\Program Files\microsoft frontpage
2010-08-23 15:16:49 ----HD---- C:\WINDOWS\$hf_mig$
2010-08-23 15:16:48 ----A---- C:\WINDOWS\system32\xpsp3res.dll
2010-08-23 15:16:31 ----RASH---- C:\MSDOS.SYS
2010-08-23 15:16:31 ----RASH---- C:\IO.SYS
2010-08-23 15:16:31 ----A---- C:\WINDOWS\control.ini
2010-08-23 15:16:31 ----A---- C:\CONFIG.SYS
2010-08-23 15:16:31 ----A---- C:\AUTOEXEC.BAT
2010-08-23 15:16:20 ----A---- C:\WINDOWS\OEWABLog.txt
2010-08-23 15:16:15 ----A---- C:\WINDOWS\system32\mapi32.dll
2010-08-23 15:15:30 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-08-23 15:15:30 ----RD---- C:\WINDOWS\Offline Web Pages
2010-08-23 15:15:30 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2010-08-23 15:15:25 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2010-08-23 15:15:20 ----HD---- C:\Program Files\WindowsUpdate
2010-08-23 15:14:55 ----D---- C:\WINDOWS\system32\DirectX
2010-08-23 15:14:33 ----A---- C:\WINDOWS\system32\atrace.dll
2010-08-23 15:14:30 ----A---- C:\WINDOWS\system32\desktop.ini
2010-08-23 15:14:30 ----A---- C:\WINDOWS\desktop.ini
2010-08-23 15:14:23 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2010-08-23 15:14:21 ----D---- C:\Program Files\Common Files\Services
2010-08-23 15:14:21 ----A---- C:\WINDOWS\system32\acctres.dll
2010-08-23 15:14:18 ----SD---- C:\WINDOWS\Tasks
2010-08-23 15:14:18 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2010-08-23 15:14:17 ----D---- C:\Program Files\Common Files\MSSoap
2010-08-23 15:14:13 ----D---- C:\WINDOWS\srchasst
2010-08-23 15:14:12 ----D---- C:\WINDOWS\system32\Macromed
2010-08-23 15:14:08 ----A---- C:\WINDOWS\system32\wuweb.dll
2010-08-23 15:14:08 ----A---- C:\WINDOWS\system32\wups.dll
2010-08-23 15:14:08 ----A---- C:\WINDOWS\system32\wucltui.dll
2010-08-23 15:14:08 ----A---- C:\WINDOWS\system32\wuauserv.dll
2010-08-23 15:14:08 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2010-08-23 15:14:08 ----A---- C:\WINDOWS\system32\wuaueng.dll
2010-08-23 15:14:08 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2010-08-23 15:14:08 ----A---- C:\WINDOWS\system32\wuauclt.exe
2010-08-23 15:14:08 ----A---- C:\WINDOWS\system32\wuapi.dll
2010-08-23 15:14:07 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2010-08-23 15:14:07 ----A---- C:\WINDOWS\system32\qmgr.dll
2010-08-23 15:14:07 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2010-08-23 15:14:07 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2010-08-23 15:14:03 ----D---- C:\Program Files\Movie Maker
2010-08-23 15:13:59 ----A---- C:\WINDOWS\system32\safrslv.dll
2010-08-23 15:13:59 ----A---- C:\WINDOWS\system32\safrdm.dll
2010-08-23 15:13:59 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2010-08-23 15:13:59 ----A---- C:\WINDOWS\system32\racpldlg.dll
2010-08-23 15:13:55 ----A---- C:\WINDOWS\system32\fltmc.exe
2010-08-23 15:13:55 ----A---- C:\WINDOWS\system32\fltlib.dll
2010-08-23 15:13:55 ----A---- C:\WINDOWS\system32\drivers\fltmgr.sys
2010-08-23 15:13:54 ----D---- C:\WINDOWS\system32\Restore
2010-08-23 15:13:54 ----A---- C:\WINDOWS\system32\srsvc.dll
2010-08-23 15:13:54 ----A---- C:\WINDOWS\system32\srrstr.dll
2010-08-23 15:13:54 ----A---- C:\WINDOWS\system32\srclient.dll
2010-08-23 15:13:54 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2010-08-23 15:13:54 ----A---- C:\WINDOWS\system32\ils.dll
2010-08-23 15:13:54 ----A---- C:\WINDOWS\system32\drivers\sr.sys
2010-08-23 15:13:53 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2010-08-23 15:13:53 ----A---- C:\WINDOWS\system32\msconf.dll
2010-08-23 15:13:53 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2010-08-23 15:13:53 ----A---- C:\WINDOWS\system32\mnmdd.dll
2010-08-23 15:13:50 ----D---- C:\Program Files\NetMeeting
2010-08-23 15:13:50 ----A---- C:\WINDOWS\system32\msoert2.dll
2010-08-23 15:13:50 ----A---- C:\WINDOWS\system32\msoeacct.dll
2010-08-23 15:13:49 ----A---- C:\WINDOWS\system32\inetres.dll
2010-08-23 15:13:48 ----A---- C:\WINDOWS\system32\inetcomm.dll
2010-08-23 15:13:46 ----D---- C:\Program Files\Outlook Express
2010-08-23 15:13:46 ----A---- C:\WINDOWS\system32\schedsvc.dll
2010-08-23 15:13:46 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-08-23 15:13:46 ----A---- C:\WINDOWS\system32\mstask.dll
2010-08-23 15:13:45 ----A---- C:\WINDOWS\system32\isign32.dll
2010-08-23 15:13:45 ----A---- C:\WINDOWS\system32\inetcfg.dll
2010-08-23 15:13:45 ----A---- C:\WINDOWS\system32\icwphbk.dll
2010-08-23 15:13:45 ----A---- C:\WINDOWS\system32\icwdial.dll
2010-08-23 15:13:39 ----D---- C:\Program Files\Common Files\System
2010-08-23 15:13:37 ----D---- C:\Program Files\Internet Explorer
2010-08-23 15:13:16 ----A---- C:\WINDOWS\vbaddin.ini
2010-08-23 15:13:16 ----A---- C:\WINDOWS\vb.ini
2010-08-23 15:13:12 ----D---- C:\WINDOWS\Registration
2010-08-23 15:12:43 ----D---- C:\Program Files\Windows Media Player
2010-08-23 15:12:43 ----D---- C:\Program Files\Online Services
2010-08-23 15:12:38 ----D---- C:\Program Files\Messenger
2010-08-23 15:12:34 ----D---- C:\Program Files\MSN Gaming Zone
2010-08-23 15:12:34 ----A---- C:\WINDOWS\system32\write.exe
2010-08-23 15:12:23 ----A---- C:\WINDOWS\system32\sndvol32.exe
2010-08-23 15:12:23 ----A---- C:\WINDOWS\system32\hticons.dll
2010-08-23 15:12:23 ----A---- C:\WINDOWS\system32\avwav.dll
2010-08-23 15:12:23 ----A---- C:\WINDOWS\system32\avtapi.dll
2010-08-23 15:12:23 ----A---- C:\WINDOWS\system32\avmeter.dll
2010-08-23 15:12:22 ----A---- C:\WINDOWS\system32\winchat.exe
2010-08-23 15:12:14 ----A---- C:\WINDOWS\system32\charmap.exe
2010-08-23 15:12:14 ----A---- C:\WINDOWS\system32\getuname.dll
2010-08-23 15:12:14 ----A---- C:\WINDOWS\system32\calc.exe
2010-08-23 15:12:13 ----A---- C:\WINDOWS\system32\winmine.exe
2010-08-23 15:12:13 ----A---- C:\WINDOWS\system32\sol.exe
2010-08-23 15:12:13 ----A---- C:\WINDOWS\system32\mshearts.exe
2010-08-23 15:12:12 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2010-08-23 15:12:12 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2010-08-23 15:12:12 ----A---- C:\WINDOWS\system32\tslabels.ini
2010-08-23 15:12:12 ----A---- C:\WINDOWS\system32\tskill.exe
2010-08-23 15:12:12 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2010-08-23 15:12:12 ----A---- C:\WINDOWS\system32\tscon.exe
2010-08-23 15:12:12 ----A---- C:\WINDOWS\system32\shadow.exe
2010-08-23 15:12:12 ----A---- C:\WINDOWS\system32\rwinsta.exe
2010-08-23 15:12:12 ----A---- C:\WINDOWS\system32\reset.exe
2010-08-23 15:12:12 ----A---- C:\WINDOWS\system32\regini.exe
2010-08-23 15:12:12 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2010-08-23 15:12:12 ----A---- C:\WINDOWS\system32\qwinsta.exe
2010-08-23 15:12:12 ----A---- C:\WINDOWS\system32\freecell.exe
2010-08-23 15:12:11 ----A---- C:\WINDOWS\system32\qappsrv.exe
2010-08-23 15:12:11 ----A---- C:\WINDOWS\system32\msg.exe
2010-08-23 15:12:11 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2010-08-23 15:12:11 ----A---- C:\WINDOWS\system32\logoff.exe
2010-08-23 15:12:11 ----A---- C:\WINDOWS\system32\cdmodem.dll
2010-08-23 15:12:10 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2010-08-23 15:12:10 ----A---- C:\WINDOWS\system32\mtxex.dll
2010-08-23 15:12:10 ----A---- C:\WINDOWS\system32\mtxdm.dll
2010-08-23 15:12:10 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2010-08-23 15:12:10 ----A---- C:\WINDOWS\system32\comrepl.dll
2010-08-23 15:12:10 ----A---- C:\WINDOWS\system32\comaddin.dll
2010-08-23 15:12:09 ----A---- C:\WINDOWS\system32\stclient.dll
2010-08-23 15:12:09 ----A---- C:\WINDOWS\system32\comsnap.dll
2010-08-23 15:12:05 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2010-08-23 15:11:51 ----D---- C:\Program Files\MSN
2010-08-23 15:11:50 ----A---- C:\WINDOWS\system32\sndrec32.exe
2010-08-23 15:11:50 ----A---- C:\WINDOWS\system32\accwiz.exe
2010-08-23 15:11:49 ----D---- C:\Program Files\Windows NT
2010-08-23 15:11:49 ----A---- C:\WINDOWS\system32\mspaint.exe
2010-08-23 15:11:49 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-08-23 15:11:49 ----A---- C:\WINDOWS\system32\hypertrm.dll
2010-08-23 15:11:48 ----A---- C:\WINDOWS\system32\spider.exe
2010-08-23 15:11:48 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys
2010-08-23 15:11:48 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys
2010-08-23 15:11:48 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys
2010-08-23 15:11:48 ----A---- C:\WINDOWS\system32\clipbrd.exe
2010-08-23 15:11:47 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2010-08-23 15:11:47 ----A---- C:\WINDOWS\system32\remotepg.dll
2010-08-23 15:11:47 ----A---- C:\WINDOWS\system32\rdshost.exe
2010-08-23 15:11:47 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2010-08-23 15:11:47 ----A---- C:\WINDOWS\system32\mstscax.dll
2010-08-23 15:11:47 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-08-23 15:11:46 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2010-08-23 15:11:46 ----A---- C:\WINDOWS\system32\termsrv.dll
2010-08-23 15:11:46 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-08-23 15:11:46 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2010-08-23 15:11:46 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2010-08-23 15:11:46 ----A---- C:\WINDOWS\system32\rdpclip.exe
2010-08-23 15:11:46 ----A---- C:\WINDOWS\system32\rdchost.dll
2010-08-23 15:11:46 ----A---- C:\WINDOWS\system32\qprocess.exe
2010-08-23 15:11:45 ----D---- C:\WINDOWS\system32\MsDtc
2010-08-23 15:11:45 ----A---- C:\WINDOWS\system32\mtxoci.dll
2010-08-23 15:11:45 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2010-08-23 15:11:45 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2010-08-23 15:11:45 ----A---- C:\WINDOWS\system32\icaapi.dll
2010-08-23 15:11:45 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2010-08-23 15:11:44 ----A---- C:\WINDOWS\system32\xolehlp.dll
2010-08-23 15:11:44 ----A---- C:\WINDOWS\system32\msdtctm.dll
2010-08-23 15:11:44 ----A---- C:\WINDOWS\system32\msdtclog.dll
2010-08-23 15:11:44 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-08-23 15:11:43 ----D---- C:\WINDOWS\system32\Com
2010-08-23 15:11:43 ----A---- C:\WINDOWS\system32\colbact.dll
2010-08-23 15:11:43 ----A---- C:\WINDOWS\system32\clbcatex.dll
2010-08-23 15:11:43 ----A---- C:\WINDOWS\system32\catsrvps.dll
2010-08-23 15:11:42 ----A---- C:\WINDOWS\system32\comsvcs.dll
2010-08-23 15:11:42 ----A---- C:\WINDOWS\system32\catsrvut.dll
2010-08-23 15:11:42 ----A---- C:\WINDOWS\system32\catsrv.dll
2010-08-23 15:11:41 ----A---- C:\WINDOWS\system32\comuid.dll
2010-08-23 15:11:41 ----A---- C:\WINDOWS\system32\clbcatq.dll
2010-08-23 15:11:36 ----A---- C:\WINDOWS\system32\servdeps.dll
2010-08-23 15:11:36 ----A---- C:\WINDOWS\system32\mmfutil.dll
2010-08-23 15:11:36 ----A---- C:\WINDOWS\system32\licwmi.dll
2010-08-23 15:11:36 ----A---- C:\WINDOWS\system32\cmprops.dll
2010-08-23 15:11:33 ----A---- C:\WINDOWS\system32\drivers\termdd.sys
2010-08-23 15:11:33 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys

======List of files/folders modified in the last 1 months======

2010-09-08 08:05:43 ----A---- C:\WINDOWS\win.ini
2010-09-03 12:19:18 ----A---- C:\WINDOWS\system.ini
2010-08-23 15:16:05 ----ASH---- C:\WINDOWS\fonts\desktop.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys [2004-10-19 28207]
R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2006-10-18 105472]
R1 AmdPPM;AMD HwPState Processor Driver; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 IDMTDI;IDMTDI; C:\WINDOWS\system32\DRIVERS\idmtdi.sys [2010-09-02 76896]
R1 nod32drv;nod32drv; C:\WINDOWS\system32\drivers\nod32drv.sys [2010-08-31 15424]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS []
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2007-08-07 33052]
R1 WS2IFSL;Prostredie podpory poskytovateľa služby Windows Socket 2.0 Non-IFS Service; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2006-02-28 12032]
R2 AMON;AMON; C:\WINDOWS\system32\drivers\amon.sys [2010-08-31 512096]
R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [1997-12-23 23936]
R3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2004-10-19 20096]
R3 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\system32\DRIVERS\vbtenum.sys [2004-09-21 11604]
R3 Cap713x;Cap713x Video Capture; C:\WINDOWS\system32\DRIVERS\Cap713x.sys [2004-06-10 502784]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-03-01 4484608]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-11 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-07-10 10604128]
R3 NVENETFD;NVIDIA nForce 10/100 Mbps Ethernet ; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2008-08-01 54784]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2008-08-01 22016]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2006-02-28 5888]
R3 usbstor;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys [2004-10-19 61312]
R3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [2004-11-05 82148]
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys [2004-09-21 10804]
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys [2004-12-01 22488]
S3 BthEnum;Bluetooth Enumerator Service; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BTHPORT;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-13 272128]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2009-02-09 17664]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2009-02-09 22016]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\WINDOWS\system32\drivers\nmwcdnsu.sys [2009-03-19 136704]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\WINDOWS\system32\drivers\nmwcdnsuc.sys [2009-03-19 8320]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2009-02-09 7808]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2009-02-09 7808]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]

Re: niečo mám v PC navyše

Napsal: 09 zář 2010 21:58
od kekesko
pokračovanie logu:


======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2010-08-31 552064]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-07-09 155752]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-06-02 637952]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 BlueSoleil Hid Service;BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [2004-12-13 106496]
S4 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]

-----------------EOF-----------------

Re: niečo mám v PC navyše

Napsal: 09 zář 2010 22:00
od Rudy
Nic nebezpečného nevidím. Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

Re: niečo mám v PC navyše

Napsal: 10 zář 2010 05:18
od kekesko
Tu je log:

Malwarebytes' Anti-Malware 1.27
Verzia databázy: 1127
Windows 5.1.2600 Service Pack 3

9.9.2010 22:12:57
mbam-log-2010-09-09 (22-12-57).txt

Typ kontroly: Úplná (C:\|)
Objektov kontrolovaných: 88608
Uplynutý cas: 14 minute(s), 36 second(s)

Infikovaných procesov pamäte: 0
Infikovaných modulov pamäte: 0
Infikovaných registracných klúcov: 0
Infikovaných registracných hodnôt: 0
Infikovaných registracných údajov položiek: 0
Infikovaných priecinkov: 0
Infikovaných súborov: 0

Infikovaných procesov pamäte:
(Žiadne škodlivé položky)

Infikovaných modulov pamäte:
(Žiadne škodlivé položky)

Infikovaných registracných klúcov:
(Žiadne škodlivé položky)

Infikovaných registracných hodnôt:
(Žiadne škodlivé položky)

Infikovaných registracných údajov položiek:
(Žiadne škodlivé položky)

Infikovaných priecinkov:
(Žiadne škodlivé položky)

Infikovaných súborov:
(Žiadne škodlivé položky)


Niečo tam musí byť objavili sa mi v správcovi úloh veci čo som v živote navidel.
ALCMTR, NvCpl, RTHDCPL, SkyTel, Windows search, nwiz, a na chvíľu hneď po štarte userinit. PC má velmi dlhý štart a je spomalené. Reštartuje pri spustení Opery. Tak neviem čo to je. Dík

Pre prípad pridávam log z ComboFix:


ComboFix 10-09-09.03 - BOBO 10.09.2010 6:50.2.2 - x86
Systém Microsoft Windows XP Home Edition 5.1.2600.3.1250.421.1033.18.1919.1451 [GMT 2:00]
Running from: c:\documents and settings\BOBO\Desktop\ComboFix.exe
AV: Eset NOD32 Antivirus 2.70 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.

((((((((((((((((((((((((( Files Created from 2010-08-10 to 2010-09-10 )))))))))))))))))))))))))))))))
.

2010-09-10 03:57 . 2010-09-10 03:57 -------- d-----w- c:\program files\VS Revo Group
2010-09-09 17:39 . 2010-09-09 17:39 -------- d-----w- c:\documents and settings\BOBO\Application Data\Malwarebytes
2010-09-09 17:39 . 2008-09-07 22:11 17200 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-09-09 17:39 . 2008-09-07 22:11 38528 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-09-09 17:39 . 2010-09-09 17:39 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2010-09-09 17:39 . 2010-09-09 17:39 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-09-09 08:35 . 2010-09-09 08:35 251232 ----a-w- c:\documents and settings\BOBO\Application Data\IDM\idmmzcc3\components\idmmzcc.dll
2010-09-09 08:35 . 2010-09-09 08:35 247136 ----a-w- c:\documents and settings\BOBO\Application Data\IDM\idmmzcc3\components2\idmmzcc.dll
2010-09-09 08:35 . 2010-09-09 10:46 -------- d-----w- c:\documents and settings\BOBO\Application Data\IDM
2010-09-09 08:35 . 2010-09-09 08:35 -------- d-----w- c:\program files\Internet Download Manager
2010-09-08 10:51 . 2010-09-08 10:51 -------- d-----w- c:\program files\URUSoft
2010-09-08 06:05 . 2003-06-18 23:31 18944 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\mdippr.dll
2010-09-08 06:05 . 2003-06-18 23:31 17920 ----a-w- c:\windows\system32\mdimon.dll
2010-09-08 06:04 . 2010-09-08 06:05 -------- d-----w- c:\windows\SHELLNEW
2010-09-07 10:48 . 2010-09-07 10:48 -------- d-----w- c:\program files\AxBx
2010-09-07 10:44 . 2010-09-07 10:44 -------- d-----w- c:\documents and settings\All Users\Application Data\Protexis
2010-09-07 09:52 . 2010-08-30 06:25 47616 ----a-w- c:\program files\cache.dll
2010-09-07 09:10 . 2010-01-10 17:40 118784 ----a-w- c:\windows\system32\MSSTDFMT.DLL
2010-09-07 09:10 . 2010-09-07 09:18 -------- d-----w- c:\program files\SpywareBlaster
2010-09-07 07:35 . 2010-09-07 07:35 -------- d-----w- c:\documents and settings\BOBO\Application Data\Uniblue
2010-09-07 07:05 . 2010-09-09 20:26 -------- d-----w- c:\program files\trend micro
2010-09-07 07:05 . 2010-09-07 07:05 -------- d-----w- C:\rsit
2010-09-07 07:04 . 2010-09-07 07:04 339991 ----a-w- C:\RSIT.exe
2010-09-07 06:50 . 2010-09-09 20:51 -------- d-----w- C:\HiJackThis
2010-09-06 15:36 . 2010-09-02 13:22 76896 ----a-w- c:\windows\system32\drivers\idmtdi.sys
2010-09-04 01:00 . 2010-09-04 01:00 -------- d-----w- c:\program files\MSXML 4.0
2010-09-03 12:13 . 2010-09-03 12:17 -------- d-----w- c:\program files\IEPro
2010-09-03 11:41 . 2010-09-03 11:41 -------- d-----w- c:\documents and settings\BOBO\Local Settings\Application Data\PackageAware
2010-09-03 10:20 . 2010-09-03 10:20 -------- d-----w- c:\program files\AoA Audio Extractor
2010-09-03 10:08 . 2010-09-03 10:08 -------- d-----w- c:\documents and settings\BOBO\Application Data\MiniDm
2010-09-03 09:03 . 2010-09-03 09:03 -------- d-----w- c:\documents and settings\BOBO\Application Data\GrabPro
2010-09-03 09:02 . 2010-09-03 09:03 -------- d-----w- c:\documents and settings\BOBO\Application Data\IEPro
2010-09-03 05:55 . 2010-09-03 09:26 -------- d-----w- c:\documents and settings\BOBO\Application Data\vlc
2010-09-03 05:55 . 2010-09-03 05:55 -------- d-----w- c:\program files\VideoLAN
2010-09-03 04:17 . 2006-05-04 08:26 2808832 ------r- c:\windows\alcwzrd.exe
2010-09-03 04:17 . 2005-05-03 10:43 69632 ------r- c:\windows\Alcmtr.exe
2010-09-03 04:17 . 2007-02-26 07:03 16125440 ------r- c:\windows\RTHDCPL.exe
2010-09-03 04:17 . 2006-05-16 10:04 2879488 ------r- c:\windows\SkyTel.exe
2010-09-03 04:17 . 2006-10-11 09:42 2157568 ------r- c:\windows\MicCal.exe
2010-09-03 04:17 . 2006-07-21 08:14 86016 ------r- c:\windows\SoundMan.exe
2010-09-03 04:17 . 2006-05-04 08:35 9709568 ------r- c:\windows\RTLCPL.exe
2010-09-03 04:17 . 2007-01-16 02:39 1191936 ------r- c:\windows\RtlUpd.exe
2010-09-03 04:17 . 2006-08-01 07:02 49152 ------r- c:\windows\system32\ChCfg.exe
2010-09-03 04:17 . 2007-03-01 09:27 4484608 ------r- c:\windows\system32\drivers\RtkHDAud.sys
2010-09-03 04:16 . 2007-01-12 08:54 520192 ------r- c:\windows\RtlExUpd.dll
2010-09-03 04:08 . 2010-09-03 04:08 -------- d-----w- c:\windows\ASUSInstAll
2010-09-02 18:54 . 2010-09-02 18:54 -------- d-----w- c:\program files\PowerISO
2010-09-02 18:39 . 1997-12-23 00:00 5600 ----a-w- c:\windows\system\WINASPI.DLL
2010-09-02 18:39 . 1997-12-23 00:00 48128 ----a-w- c:\windows\system32\WNASPI32.DLL
2010-09-02 18:39 . 1997-12-23 00:00 4672 ----a-w- c:\windows\system\WOWPOST.EXE
2010-09-02 18:39 . 1997-12-23 00:00 23936 ----a-w- c:\windows\system32\drivers\ASPI32.SYS
2010-09-02 18:38 . 2010-09-02 18:38 -------- d-----w- c:\program files\BeLight
2010-09-02 18:32 . 2010-09-02 18:32 -------- d-----w- c:\program files\SubRip
2010-09-02 18:15 . 2010-09-10 04:03 -------- d-----w- c:\documents and settings\BOBO\Application Data\DMCache
2010-09-02 06:53 . 2010-09-02 06:53 -------- d-----w- c:\program files\Longfine
2010-09-02 03:45 . 2010-09-02 03:45 -------- d-----w- c:\program files\IObit
2010-09-01 21:01 . 2010-09-01 21:01 -------- d-----w- c:\windows\system32\NtmsData
2010-09-01 09:24 . 2010-09-01 09:24 -------- d-----w- c:\program files\Foxit Software
2010-09-01 09:13 . 2010-09-01 09:13 -------- d-----w- c:\program files\DVD2one V2
2010-09-01 09:05 . 2010-09-01 09:05 63488 ----a-w- c:\documents and settings\BOBO\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10006.dll
2010-09-01 09:05 . 2010-09-01 09:05 52224 ----a-w- c:\documents and settings\BOBO\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
2010-09-01 09:05 . 2010-09-01 09:05 117760 ----a-w- c:\documents and settings\BOBO\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
2010-09-01 09:04 . 2010-09-01 09:04 -------- d-----w- c:\documents and settings\BOBO\Application Data\SUPERAntiSpyware.com
2010-09-01 09:04 . 2010-09-01 09:04 -------- d-----w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
2010-09-01 09:04 . 2010-09-01 09:06 -------- d-----w- c:\program files\SUPERAntiSpyware
2010-09-01 08:39 . 2010-09-01 08:39 -------- d-----w- c:\program files\xp-aspi
2010-09-01 08:38 . 2010-09-01 08:38 -------- d-----w- c:\program files\AviSynth 2.5
2010-09-01 08:37 . 2010-09-01 08:41 -------- d-----w- c:\program files\DVD2SVCD
2010-09-01 08:34 . 2010-09-01 08:34 -------- d-----w- c:\program files\Custom Technology
2010-09-01 07:55 . 2010-09-02 18:27 -------- d-----w- c:\program files\Allok MP3 to AMR Converter
2010-09-01 07:51 . 2010-09-03 04:27 -------- d-----w- c:\documents and settings\BOBO\Local Settings\Application Data\Ahead
2010-09-01 07:49 . 2010-09-03 02:54 -------- d-----w- c:\documents and settings\BOBO\Application Data\Ahead
2010-09-01 07:49 . 2010-09-01 07:49 -------- d-----w- c:\documents and settings\All Users\Application Data\Ahead
2010-09-01 07:47 . 2010-09-01 07:48 -------- d-----w- c:\program files\Common Files\Ahead
2010-09-01 07:47 . 2010-09-01 07:47 -------- d-----w- c:\program files\Nero
2010-09-01 07:47 . 2010-09-01 07:47 -------- d-----w- c:\documents and settings\All Users\Application Data\Nero
2010-09-01 07:38 . 2010-09-02 18:25 -------- d-----w- c:\program files\DVDlabPro2
2010-09-01 07:34 . 2010-09-01 07:35 -------- d-----w- c:\program files\DVDIdle Pro
2010-09-01 07:30 . 2010-09-01 07:31 -------- d-----w- c:\program files\DVD Decrypter
2010-09-01 07:28 . 2010-09-09 08:29 -------- d-----w- c:\documents and settings\All Users\Application Data\DVD Shrink
2010-09-01 07:28 . 2010-09-01 07:29 -------- d-----w- c:\program files\DVD Shrink
2010-08-31 13:05 . 2010-08-31 13:05 -------- d-----w- c:\documents and settings\BOBO\Local Settings\Application Data\Opera
2010-08-31 13:05 . 2010-08-31 13:05 -------- d-----w- c:\program files\Opera
2010-08-31 09:56 . 2010-09-10 04:37 -------- d-----w- c:\documents and settings\BOBO\Application Data\uTorrent
2010-08-31 08:08 . 2008-04-13 18:45 26112 -c--a-w- c:\windows\system32\dllcache\usbser.sys
2010-08-31 08:08 . 2008-04-13 18:45 26112 ----a-w- c:\windows\system32\drivers\usbser.sys
2010-08-31 08:07 . 2008-03-21 11:57 14640 ------w- c:\windows\system32\spmsgXP_2k3.dll
2010-08-31 08:06 . 2010-08-31 08:06 -------- d-----w- c:\documents and settings\BOBO\Application Data\Nokia
2010-08-31 08:06 . 2010-08-31 08:08 -------- d-----w- c:\documents and settings\BOBO\Application Data\PC Suite
2010-08-31 08:06 . 2010-08-31 08:06 -------- d-----w- c:\documents and settings\All Users\Application Data\PC Suite
2010-08-31 08:04 . 2010-08-31 08:04 95232 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\pcswpcsi.exe
2010-08-31 08:04 . 2010-08-31 08:04 8192 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstCCD.exe
2010-08-31 08:04 . 2010-08-31 08:04 61440 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2010-08-31 08:04 . 2010-08-31 08:04 10240 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstPCS.exe
2010-08-31 08:04 . 2010-08-31 08:04 -------- d-----w- c:\documents and settings\All Users\Application Data\Installations
2010-08-31 06:35 . 2008-04-14 00:12 8192 -c--a-w- c:\windows\system32\dllcache\wshirda.dll
2010-08-31 06:35 . 2008-04-14 00:12 8192 ----a-w- c:\windows\system32\wshirda.dll
2010-08-31 06:35 . 2008-04-14 00:12 151552 -c--a-w- c:\windows\system32\dllcache\irftp.exe
2010-08-31 06:35 . 2008-04-14 00:12 151552 ----a-w- c:\windows\system32\irftp.exe
2010-08-31 06:35 . 2008-04-14 00:11 28160 -c--a-w- c:\windows\system32\dllcache\irmon.dll
2010-08-31 06:35 . 2008-04-14 00:11 28160 ----a-w- c:\windows\system32\irmon.dll
2010-08-31 06:32 . 2010-08-31 06:35 -------- d-----w- c:\documents and settings\All Users\Application Data\Bluetooth
2010-08-31 06:29 . 2008-04-14 00:12 53760 ----a-w- c:\windows\system32\drivers\vfwwdm32.dll
2010-08-31 06:29 . 2005-01-20 02:13 63488 ----a-r- c:\windows\system32\drivers\wssbtr1f.sys
2010-08-31 06:29 . 2005-01-20 02:12 48556 ----a-r- c:\windows\system32\drivers\SktBt2k.sys
2010-08-31 06:29 . 2005-01-20 02:12 77824 ----a-r- c:\windows\system32\drivers\SioUi2k.dll
2010-08-31 06:29 . 2005-01-20 02:12 48076 ----a-r- c:\windows\system32\drivers\Sio9502k.sys
2010-08-31 06:29 . 2005-01-20 02:12 40960 ----a-r- c:\windows\system32\drivers\SCTray.exe
2010-08-31 06:29 . 2005-01-20 02:11 51169 ----a-r- c:\windows\system32\drivers\OXSER.SYS
2010-08-31 03:30 . 2010-08-31 03:30 -------- d-----w- c:\documents and settings\BOBO\Application Data\MSNInstaller
2010-08-30 23:36 . 2010-08-30 23:36 -------- d-----w- c:\program files\HSDPA USB Modem
2010-08-30 23:25 . 2010-08-30 23:25 -------- d-----w- c:\documents and settings\BOBO\Application Data\Windows Search
2010-08-30 23:20 . 2010-08-30 23:20 -------- d-----w- c:\documents and settings\BOBO\Application Data\URSoft
2010-08-30 23:20 . 2010-09-10 02:35 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-08-30 23:20 . 2010-08-30 23:20 -------- d-----w- c:\program files\Your Uninstaller 2010
2010-08-30 23:02 . 2008-04-13 18:45 15104 -c--a-w- c:\windows\system32\dllcache\usbscan.sys
2010-08-30 23:02 . 2008-04-13 18:45 15104 ----a-w- c:\windows\system32\drivers\usbscan.sys
2010-08-30 23:02 . 2001-08-17 20:36 5632 ----a-w- c:\windows\system32\ptpusb.dll
2010-08-30 23:02 . 2008-04-14 00:12 159232 ----a-w- c:\windows\system32\ptpusd.dll
2010-08-30 22:34 . 2010-08-30 22:33 512096 ----a-w- c:\windows\system32\drivers\amon.sys
2010-08-30 22:34 . 2010-08-30 22:33 298104 ----a-w- c:\windows\system32\imon.dll
2010-08-30 22:34 . 2010-08-30 22:33 15424 ----a-w- c:\windows\system32\drivers\nod32drv.sys
2010-08-30 22:33 . 2010-09-10 03:14 -------- d-----w- c:\program files\ESET
2010-08-30 21:43 . 2001-08-17 11:48 12160 -c--a-w- c:\windows\system32\dllcache\mouhid.sys
2010-08-30 21:43 . 2001-08-17 11:48 12160 ----a-w- c:\windows\system32\drivers\mouhid.sys

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-10 03:00 . 2010-08-31 08:05 -------- d-----w- c:\program files\PC Connectivity Solution
2010-09-03 04:16 . 2010-08-23 13:28 -------- d-----w- c:\program files\Realtek
2010-09-03 04:16 . 2010-08-23 13:28 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-08-31 08:07 . 2010-08-31 08:07 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
2010-08-31 08:07 . 2010-08-31 08:07 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2010-08-31 08:05 . 2010-08-31 08:05 -------- d-----w- c:\program files\DIFX
2010-08-31 08:05 . 2010-08-31 08:05 -------- d-----w- c:\program files\Common Files\PCSuite
2010-08-31 08:05 . 2010-08-31 08:05 -------- d-----w- c:\program files\Common Files\Nokia
2010-08-31 08:05 . 2010-08-31 08:05 -------- d-----w- c:\program files\Nokia
2010-08-31 08:01 . 2010-08-31 08:05 33773208 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Nokia_PC_Suite_7_1_30_9_eng_web.exe
2010-08-31 06:28 . 2010-08-31 06:28 -------- d-----w- c:\program files\IVT Corporation
2010-08-31 06:28 . 2010-08-23 13:28 -------- d-----w- c:\program files\Common Files\InstallShield
2010-08-25 14:22 . 2010-08-25 13:00 -------- d-----w- c:\program files\Windows Desktop Search
2010-08-25 13:00 . 2010-08-25 13:00 -------- d-----w- c:\documents and settings\BOBO\Application Data\Windows Desktop Search
2010-08-23 14:49 . 2010-08-23 14:48 -------- d-----w- c:\program files\NVIDIA Corporation
2010-08-23 14:49 . 2010-08-23 14:49 -------- d-----w- c:\documents and settings\All Users\Application Data\NVIDIA Corporation
2010-08-23 14:49 . 2010-08-23 14:49 232968 ----a-w- c:\windows\system32\nvdrsdb0.bin
2010-08-23 14:49 . 2010-08-23 14:49 1 ----a-w- c:\windows\system32\nvdrssel.bin
2010-08-23 14:49 . 2010-08-23 14:49 232968 ----a-w- c:\windows\system32\nvdrsdb1.bin
2010-08-23 14:09 . 2010-08-23 13:15 147275 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2010-08-23 14:09 . 2010-08-23 13:15 5110 ----a-w- c:\windows\pchealth\helpctr\PackageStore\SkuStore.bin
2010-08-23 13:31 . 2010-08-23 13:15 8972 ----a-w- c:\windows\pchealth\helpctr\Config\Cntstore.bin
2010-08-23 13:28 . 2010-08-23 13:28 315392 ----a-w- c:\windows\HideWin.exe
2010-08-23 13:25 . 2010-08-23 13:25 -------- d-----w- c:\documents and settings\BOBO\Application Data\InstallShield
2010-08-23 13:16 . 2010-08-23 13:16 -------- d-----w- c:\program files\microsoft frontpage
2010-08-23 13:13 . 2010-08-23 13:13 21640 ----a-w- c:\windows\system32\emptyregdb.dat
2010-07-09 14:24 . 2010-07-09 14:24 81920 ----a-w- c:\windows\system32\nvwddi.dll
2010-07-09 14:24 . 2010-07-09 14:24 277608 ----a-w- c:\windows\system32\nvmccs.dll
2010-07-09 14:24 . 2010-07-09 14:24 110696 ----a-w- c:\windows\system32\nvmctray.dll
2010-07-09 14:24 . 2010-07-09 14:24 155752 ----a-w- c:\windows\system32\nvsvc32.exe
2010-07-09 14:24 . 2010-07-09 14:24 145000 ----a-w- c:\windows\system32\nvcolor.exe
2010-07-09 14:24 . 2010-07-09 14:24 13923432 ----a-w- c:\windows\system32\nvcpl.dll
2010-06-30 12:31 . 2006-02-28 12:00 149504 ----a-w- c:\windows\system32\schannel.dll
2010-06-24 15:45 . 2010-08-25 13:07 3600896 ------w- c:\windows\system32\SET1C6.tmp
2010-06-24 12:22 . 2006-02-28 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2010-06-23 13:44 . 2006-02-28 12:00 1851904 ----a-w- c:\windows\system32\win32k.sys
2010-06-21 15:27 . 2006-02-28 12:00 354304 ----a-w- c:\windows\system32\drivers\srv.sys
2010-06-17 14:03 . 2006-02-28 12:00 80384 ----a-w- c:\windows\system32\iccvid.dll
2010-06-14 14:31 . 2010-08-23 13:13 744448 ----a-w- c:\windows\pchealth\helpctr\binaries\helpsvc.exe
2010-06-14 07:41 . 2006-02-28 12:00 1172480 ----a-w- c:\windows\system32\msxml3.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2010-09-02 13:22 70264 ----a-w- c:\program files\Internet Download Manager\IDMShellExt.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2010-08-31 328568]
"Revo Uninstaller"="c:\program files\VS Revo Group\Revo Uninstaller\revouninstaller.exe" [2010-06-22 3121080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nod32kui"="c:\program files\Eset\nod32kui.exe" [2010-08-30 949376]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
"{93994DE8-8239-4655-B1D1-5F4E91300429}"= "c:\progra~1\DVDIDL~1\DVDShell.dll" [2004-10-09 49152]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2009-09-03 22:21 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^BlueSoleil.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\BlueSoleil.lnk
backup=c:\windows\pss\BlueSoleil.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Windows Search.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Windows Search.lnk
backup=c:\windows\pss\Windows Search.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
2005-05-03 10:43 69632 ------r- c:\windows\Alcmtr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
2007-06-27 17:03 152872 ----a-w- c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationAgent]
2008-04-14 00:12 110592 ----a-w- c:\windows\system32\bthprops.cpl

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2007-03-01 13:57 153136 ----a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2010-07-09 14:24 13923432 ----a-w- c:\windows\system32\nvcpl.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
2010-07-07 21:52 1753192 ----a-w- c:\program files\NVIDIA Corporation\nView\nwiz.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
2009-06-25 13:12 1414144 ----a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
2007-08-07 00:05 200704 ----a-w- c:\program files\PowerISO\PWRISOVM.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2007-02-26 07:03 16125440 ------r- c:\windows\RTHDCPL.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel]
2006-05-16 10:04 2879488 ------r- c:\windows\SkyTel.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
2010-09-01 09:06 2397424 ----a-w- c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"idsvc"=3 (0x3)
"NMIndexingService"=3 (0x3)
"NBService"=3 (0x3)
"BlueSoleil Hid Service"=2 (0x2)
"ServiceLayer"=3 (0x3)
"ose"=3 (0x3)
"NVSvc"=2 (0x2)
"WSearch"=2 (0x2)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\IEPro\\MiniDM.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5985:TCP"= 5985:TCP:*:Disabled:Windows Remote Management

R1 IDMTDI;IDMTDI;c:\windows\system32\drivers\idmtdi.sys [6.9.2010 17:36 76896]
R1 nod32drv;nod32drv;c:\windows\system32\drivers\nod32drv.sys [31.8.2010 0:34 15424]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [17.2.2010 20:25 12872]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [10.5.2010 20:41 67656]
R3 Cap713x;Cap713x Video Capture;c:\windows\system32\drivers\Cap713x.sys [10.6.2004 0:14 502784]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18.3.2010 13:16 130384]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [31.8.2010 10:05 136704]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [31.8.2010 10:05 8320]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [28.2.2006 14:00 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18.3.2010 13:16 753504]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WINRM REG_MULTI_SZ WINRM
.
Contents of the 'Scheduled Tasks' folder

2010-09-09 c:\windows\Tasks\User_Feed_Synchronization-{DF11BF71-AC8F-4B9D-A266-D43B15436CCC}.job
- c:\windows\system32\msfeedssync.exe [2010-08-25 02:31]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.zoznam.sk/
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\Microsoft Office\OFFICE11\EXCEL.EXE/3000
IE: Prevziať cez IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: Prevziať cez IDM všetky prepojenia - c:\program files\Internet Download Manager\IEGetAll.htm
IE: Prevziať obsah FLV cez IDM - c:\program files\Internet Download Manager\IEGetVL.htm
LSP: c:\windows\system32\imon.dll
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-09-10 06:51
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(740)
c:\program files\SUPERAntiSpyware\SASWINLO.DLL
c:\windows\system32\WININET.dll
c:\documents and settings\BOBO\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
c:\documents and settings\BOBO\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
c:\documents and settings\BOBO\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10006.dll

- - - - - - - > 'explorer.exe'(3212)
c:\windows\system32\WININET.dll
c:\program files\Internet Download Manager\IDMShellExt.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
.
Completion time: 2010-09-10 06:52:56
ComboFix-quarantined-files.txt 2010-09-10 04:52
ComboFix2.txt 2010-09-10 04:45

Pre-Run: 35 112 013 824 bytes free
Post-Run: 35 103 973 376 bytes free

- - End Of File - - D3AE304C6CB0497614CA7995AE8E7CFB

Re: niečo mám v PC navyše

Napsal: 10 zář 2010 16:29
od Rudy
I tento log je čistý. Z čeho usuzujete, že máte v PC něco, co tam být nemá?

Re: niečo mám v PC navyše

Napsal: 11 zář 2010 19:41
od kekesko
Zdravím, usudzujem z toho, že keď zapnem Operu tak sa mi PC reštartuje a štart trvá dlho. Neviem čo sa stalo?

Re: niečo mám v PC navyše

Napsal: 11 zář 2010 19:48
od Rudy
Zkuste vyčtistit cache opery, příp. ji přeinstalujte.

Re: niečo mám v PC navyše

Napsal: 11 zář 2010 22:21
od kekesko
Rudy píše:Zkuste vyčtistit cache opery, příp. ji přeinstalujte.
Urobil som to nainštaloval znovu. Urobilo to znovu pri otvorení vašej stránky. Divné nie?
Cez IE otvára v pohode.

Re: niečo mám v PC navyše

Napsal: 11 zář 2010 22:35
od Rudy
Ještě můžeme udělat kontrolu na rootkit. Udělejte sken IceSword: http://www.viry.cz/forum/viewtopic.php?f=29&t=11394 a dejte logy Process a KernelModule. Spíše si ale myslím, že je Opera s něčím v kolizi.

Re: niečo mám v PC navyše

Napsal: 16 zář 2010 16:56
od kekesko
Zdravím, tak som tu zas. Tu sú tie logy:

Process:

System Idle Process
System
C:\Documents and Settings\BOBO\My Documents\Downloads\Compressed\IceSword122en\IceSword122en\IceSword.exe
C:\WINDOWS\system32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Opera\opera.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\ESET\nod32krn.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\WINDOWS\system32\alg.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Kernel Module:

\WINDOWS\system32\ntkrnlpa.exe
\WINDOWS\system32\hal.dll
\WINDOWS\system32\KDCOM.DLL
\WINDOWS\system32\BOOTVID.dll
ACPI.sys
\WINDOWS\system32\DRIVERS\WMILIB.SYS
pci.sys
isapnp.sys
pciide.sys
\WINDOWS\system32\DRIVERS\PCIIDEX.SYS
MountMgr.sys
ftdisk.sys
PartMgr.sys
VolSnap.sys
atapi.sys
nvata.sys
disk.sys
\WINDOWS\system32\DRIVERS\CLASSPNP.SYS
fltmgr.sys
sr.sys
KSecDD.sys
Ntfs.sys
NDIS.sys
Mup.sys
BTHidMgr.sys
\SystemRoot\system32\DRIVERS\AmdPPM.sys
\SystemRoot\system32\DRIVERS\parport.sys
\SystemRoot\system32\DRIVERS\ASACPI.sys
\SystemRoot\system32\DRIVERS\i8042prt.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\serial.sys
\SystemRoot\system32\DRIVERS\serenum.sys
\SystemRoot\system32\DRIVERS\usbohci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\Cap713x.sys
\SystemRoot\system32\DRIVERS\STREAM.SYS
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\imapi.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\DRIVERS\redbook.sys
\SystemRoot\system32\DRIVERS\nvnetbus.sys
\SystemRoot\system32\DRIVERS\NVNRM.SYS
\SystemRoot\system32\DRIVERS\nv4_mini.sys
\SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
\SystemRoot\System32\Drivers\VcommMgr.sys
\SystemRoot\system32\DRIVERS\vbtenum.sys
\SystemRoot\system32\DRIVERS\blueletaudio.sys
\SystemRoot\system32\DRIVERS\portcls.sys
\SystemRoot\system32\DRIVERS\drmk.sys
\SystemRoot\system32\DRIVERS\audstub.sys
\SystemRoot\System32\Drivers\RootMdm.sys
\SystemRoot\System32\Drivers\Modem.SYS
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\DRIVERS\psched.sys
\SystemRoot\system32\DRIVERS\msgpc.sys
\SystemRoot\system32\DRIVERS\ptilink.sys
\SystemRoot\system32\DRIVERS\raspti.sys
\SystemRoot\System32\Drivers\pcouffin.sys
\SystemRoot\system32\DRIVERS\VComm.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\update.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\NVENETFD.sys
\SystemRoot\system32\drivers\RtkHDAud.sys
\SystemRoot\System32\Drivers\Fs_Rec.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\Drivers\mnmdd.SYS
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\rasacd.sys
\SystemRoot\system32\DRIVERS\ipsec.sys
\SystemRoot\system32\DRIVERS\tcpip.sys
\SystemRoot\system32\DRIVERS\netbt.sys
\SystemRoot\system32\DRIVERS\ipnat.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\System32\drivers\ws2ifsl.sys
\SystemRoot\System32\drivers\afd.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\System32\Drivers\StarOpen.SYS
\SystemRoot\System32\Drivers\SCDEmu.SYS
\??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
\??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nod32drv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\idmtdi.sys
\SystemRoot\System32\Drivers\Fips.SYS
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\USBSTOR.SYS
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\System32\Drivers\Cdfs.SYS
\SystemRoot\system32\DRIVERS\kbdhid.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\System32\watchdog.sys
\SystemRoot\System32\drivers\dxg.sys
\SystemRoot\System32\drivers\dxgthk.sys
\SystemRoot\System32\nv4_disp.dll
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\System32\Drivers\ParVdm.SYS
\SystemRoot\system32\drivers\amon.sys
\SystemRoot\System32\Drivers\Aspi32.SYS
\SystemRoot\system32\DRIVERS\srv.sys
\SystemRoot\system32\drivers\wdmaud.sys
\SystemRoot\system32\drivers\sysaudio.sys
\SystemRoot\System32\Drivers\HTTP.sys
\SystemRoot\system32\drivers\kmixer.sys
\SystemRoot\System32\Drivers\IsDrv122.sys
\WINDOWS\system32\ntdll.dll

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

A ešte pridávam aj z MWAV: (zohnal som serial č.)

Objekt "gain.gator Spyware/Adware" nalezen v souborovém systému! Provedené akce: Záznam odstraněn.
Objekt "look2me Adware" nalezen v souborovém systému! Provedené akce: Záznam odstraněn.
Objekt "gain.gator Spyware/Adware" nalezen v souborovém systému! Provedené akce: Záznam odstraněn.
Objekt "gain.gator Spyware/Adware" nalezen v souborovém systému! Provedené akce: Záznam odstraněn.
Objekt "grokster Spyware/Adware" nalezen v souborovém systému! Provedené akce: Záznam odstraněn.
Objekt "trojan-downloader.bat.ftp.ab Trojan-Downloader" nalezen v souborovém systému! Provedené akce: Záznam odstraněn.
Objekt "trojan-downloader.bat.ftp.ab Trojan-Downloader" nalezen v souborovém systému! Provedené akce: Záznam odstraněn.
Objekt "ezula Spyware/Adware" nalezen v souborovém systému! Provedené akce: Záznam odstraněn.
Objekt "savenow Adware" nalezen v souborovém systému! Provedené akce: Záznam odstraněn.
Záznam "HKCR\AUDIOCAPTURE.AudioCaptureCtrl.1" odkazuje na neplatný objekt "{EE04C854-5448-45D6-B5D2-1CBBCB83288B}". Provedené akce: Záznam odstraněn.
Záznam "HKCR\ComPlusMetaData.MsCorHost" odkazuje na neplatný objekt "{727CDF4F-3BA0-11D3-8738-00C04F79ED0D}". Provedené akce: Záznam odstraněn.
Záznam "HKCR\ComPlusMetaData.MsCorHost.2" odkazuje na neplatný objekt "{727CDF4F-3BA0-11D3-8738-00C04F79ED0D}". Provedené akce: Záznam odstraněn.
Záznam "HKCR\DirectAnimation.PathControl" odkazuje na neplatný objekt "{D7A7D7C3-D47F-11D0-89D3-00A0C90833E6}". Provedené akce: Záznam odstraněn.
Záznam "HKCR\DirectAnimation.Sequence" odkazuje na neplatný objekt "{4F241DB1-EE9F-11D0-9824-006097C99E51}". Provedené akce: Záznam odstraněn.
Záznam "HKCR\DirectAnimation.SequencerControl" odkazuje na neplatný objekt "{B0A6BAE2-AAF0-11D0-A152-00A0C908DB96}". Provedené akce: Záznam odstraněn.
Záznam "HKCR\DirectAnimation.SpriteControl" odkazuje na neplatný objekt "{FD179533-D86E-11D0-89D6-00A0C90833E6}". Provedené akce: Záznam odstraněn.
Záznam "HKCR\DirectAnimation.StructuredGraphicsControl" odkazuje na neplatný objekt "{369303C2-D7AC-11D0-89D5-00A0C90833E6}". Provedené akce: Záznam odstraněn.
Záznam "HKCR\GenericAskToolbar.ToolbarWnd" odkazuje na neplatný objekt "{D4027C7F-154A-4066-A1AD-4243D8127440}". Provedené akce: Záznam odstraněn.
Záznam "HKCR\JavaPlugin.FamilyVersionSupport" odkazuje na neplatný objekt "{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}". Provedené akce: Záznam odstraněn.
Záznam "HKCR\MailFileAtt" odkazuje na neplatný objekt "{00020D05-0000-0000-C000-000000000046}". Provedené akce: Záznam odstraněn.
Záznam "HKCR\mapifvbx.object" odkazuje na neplatný objekt "{41116C00-8B90-101B-96CD-00AA003B14FC}". Provedené akce: Záznam odstraněn.
Záznam "HKCR\NMUIEngine.NMUIResourceLoaderHarddisk" odkazuje na neplatný objekt "{03DC5606-EA66-4f02-AB52-2065524B03821}". Provedené akce: Záznam odstraněn.
Záznam "HKCR\Search.CustomWordbreaker" odkazuje na neplatný objekt "{9E175BB4-F52A-11D8-B9A5-505054503030}". Provedené akce: Záznam odstraněn.
Záznam "HKCR\SkinCrafter.SCSkin" odkazuje na neplatný objekt "{125C3F0B-1073-4783-9A7B-D33E54269CA5}". Provedené akce: Záznam odstraněn.
Záznam "HKCR\SymWriter.pdb" odkazuje na neplatný objekt "{520DC67A-752E-11D3-8D56-00C04F680B2B}". Provedené akce: Záznam odstraněn.
Záznam "HKCR\wdsShell.WDSCalendar" odkazuje na neplatný objekt "{10935444-7CC4-483B-9FDB-37560F5F3BBF2}". Provedené akce: Záznam odstraněn.
Záznam "HKCR\wdsShell.WDSComboBox" odkazuje na neplatný objekt "{D963C07A-255A-4969-96CC-855715F2FAD2}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "KB888111WXPSP2". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "KB892130". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "KB909520". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "KB940157". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "KB963093". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "KB968930". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "NVIDIA Display Control Panel". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "Windows XP Service Pack". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{1C8DFA71-4079-4F02-B8BB-47B12C1A565F}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{1EFE09D3-6C77-4E6D-876F-76CB30D2056C}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{268789C4-53E6-4DDB-8F33-8D0F9E000BEA}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{2D1AC484-E516-408C-8825-ACB1C356AC7A}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{2E6863BB-4082-3B05-BB2C-20EF16D4BD82}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{2F3AB6ED-951C-4CE7-8AC9-8546FDCF1F5A}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{309E2514-29D4-405C-B3B1-14D7231BFA16}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{3672CD9F-3B55-3FCE-8DA5-D57C3AB10150}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{3A66FD42-50D2-3E9A-81B5-ECE3E5C3097A}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{4582C7EB-93F5-408D-9F29-5A5BE1E76845}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{492CD592-87DD-31E9-8083-8665A0256163}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{494AD45E-E071-4819-8E15-E1041FBFF073}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{724309E5-E712-426C-B94D-B6B42511C29F}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{81719652-18E0-47B1-9A12-F82BF075D4DB}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{86F7BB71-FE8F-3306-A325-F93EE06417B8}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{971D6F8B-E8C5-49A4-9ED3-89C010B0D8D2}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{AF5D3F34-843A-41BF-A0F3-2FBBA00BA9B9}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{BEEBFC3C-48B1-4A38-A3C5-81BA19DF5F40}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{C96D1542-585F-412D-8C5A-0240BDA164B9}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{CE914C4B-AC50-31E8-9DA2-15DB29D8568F}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{CF24EDF1-E236-4332-83CB-4C701A9BCBF0}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{DAC0309E-07F6-45AD-B5BF-5B0DEF71FFEE}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{DB164C6E-8E4A-4730-97C6-DE8486EB367F}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{DBC3FDEC-D5F4-439C-9A18-EF454A74E3DE}_is1". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{DF76B188-11DB-43DC-A389-10422995A979}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{ECD82B28-48BE-426C-B55B-6EC022616285}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{F0B7330E-24B8-43EA-8CD6-D114428A1CEC}". Provedené akce: Záznam odstraněn.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "{F4D03C19-DCA0-4B09-83E7-BE3B06C8D4DC}". Provedené akce: Záznam odstraněn.

Som zvedavý čo ty na to. :)

Re: niečo mám v PC navyše

Napsal: 16 zář 2010 17:21
od Rudy
1. Rootkit nebyl nalezen.
2. MWAV smazal pouze neškodné zbytky po dříve vyléčené infekci a neplatné klíče.
3. Nechlubte se nelegálním sw, pokud si nechcete vykoledovat nějakou restrikci.

Re: niečo mám v PC navyše

Napsal: 18 zář 2010 09:49
od kekesko
Nechlubím se len píšem aby ste vedel. A poslal mi to kamoš z ČR ja neviem odkial to má. Sorry a dík.

Re: niečo mám v PC navyše

Napsal: 18 zář 2010 10:22
od Rudy
Nemáte zač!
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz