obcasne zamrznutie, log

[nitram47]

zdravim.

pred necelym mesiacom som nanovo nainstaloval Win, pri instalovani roznych ovladacov z disku som klikol aj na neznamy subor, ktory bol virus (predtym zrejme ziskane cez fb chat). dlho som sa s tym trapil, rozna haved, aj pre Internet Explorer som musel udelit nejaku vynimku kvoli nejakej chybe (nesiel internet, iba Skype). IE nepouzivam.
zda sa, ze mam system uz cisty, ale sa mi niekedy javi viaz zamrznuto, ako instalacia pred tym (asi 2 roky). Dokonca niekedy uplne vytuhne, co pred tym nerobilo. Avast kazdu chvilu hlasi zablokovanu hrozbu (predtym malokedy). Neviem, ci nieco nemam v pc, co mi to sposobuje. Znova sediet za pc 4 hodiny kvoli novej instalacii sa mi nechce.


Samotny log cez RSIT zabera viac ako 69000 znakov, teda sa sem neda vlozit. mozem aj iny log? vela zaberaju instalovane subory za posledny mesiac, instalacia ovladacov a podobne

[Rudy]

Log vložíte, když ho rozdělíte na 2 posty.

[nitram47]

Logfile of random's system information tool 1.08 (written by random/random)
Run by Mato at 2011-03-05 22:09:51
Microsoft Windows XP Professional Service Pack 3
System drive C: has 22 GB (72%) free of 30 GB
Total RAM: 1790 MB (34% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:09:55, on 5. 3. 2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\NetWorx\networx.exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\IObit\IObit Security 360\IS360tray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\T-Mobile Communication Center\TMCC.exe
C:\Program Files\Skype\Phone\Skype.exe
D:\ine\net\iobit_toolbox (1)\Tools\Suo10_SmartRAM.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Toddler Keys\Toddler Keys.exe
C:\Program Files\AMD\OverDrive\AODAssist.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\PROGRA~1\T-MOBI~1\drivers\113F4D~1\FMMSER~1.EXE
C:\PROGRA~1\T-MOBI~1\FOFDMD~1.EXE
C:\PROGRA~1\T-MOBI~1\FOFDMU~1.EXE
C:\Program Files\IObit\IObit Security 360\IS360srv.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Documents and Settings\Mato\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Mato\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Mato\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Mato\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Mato\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Mato\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Mato\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Mato\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Mato\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Mato\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Mato\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Mato\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Mato\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Mato\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Mato\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Mato\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Mato\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Mato\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Mato\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\IObit\IObit Security 360\is360.exe
C:\Program Files\totalcmd\TOTALCMD.EXE
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
D:\ine\net\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\Mato.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
O3 - Toolbar: &NetWorx Desk Band - {FEEA54B4-D80F-41C7-87B9-DC08E6D3255F} - C:\PROGRA~1\NetWorx\deskband.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NetWorx] "C:\Program Files\NetWorx\networx.exe" /auto
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [IObit Security 360] "C:\Program Files\IObit\IObit Security 360\IS360tray.exe" /autostart
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TMCC] "C:\Program Files\T-Mobile Communication Center\TMCC.exe" -m
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [SmartRAM] "D:\ine\net\iobit_toolbox (1)\Tools\Suo10_SmartRAM.exe" /m
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Toddler Keys.lnk = ?
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send To Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AODService - Unknown owner - C:\Program Files\AMD\OverDrive\AODAssist.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Mobility Manager Service (FMMService) - Flarion Technologies, Inc. - C:\PROGRA~1\T-MOBI~1\drivers\113F4D~1\FMMSER~1.EXE
O23 - Service: FOFDM DHCP Timing - Paradoxx Software - C:\PROGRA~1\T-MOBI~1\FOFDMD~1.EXE
O23 - Service: FOFDM Upgrade (FOFDMUpgrade) - Paradoxx Software - C:\PROGRA~1\T-MOBI~1\FOFDMU~1.EXE
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: IS360service - IObit - C:\Program Files\IObit\IObit Security 360\IS360srv.exe
O23 - Service: Sony Ericsson PCCompanion - Avanquest Software - C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

--
End of file - 7995 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-823518204-682003330-1801674531-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-823518204-682003330-1801674531-1003UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{FEEA54B4-D80F-41C7-87B9-DC08E6D3255F} - &NetWorx Desk Band - C:\PROGRA~1\NetWorx\deskband.dll [2011-02-11 950784]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2010-03-12 19521056]
"NetWorx"=C:\Program Files\NetWorx\networx.exe [2011-02-11 2771968]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2011-02-23 3451496]
"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2010-09-02 1043968]
"IObit Security 360"=C:\Program Files\IObit\IObit Security 360\IS360tray.exe [2010-06-11 1280344]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"TMCC"=C:\Program Files\T-Mobile Communication Center\TMCC.exe [2010-06-21 770048]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-01-26 15026056]
"SmartRAM"=D:\ine\net\iobit_toolbox (1)\Tools\Suo10_SmartRAM.exe [2010-09-26 817496]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
Toddler Keys.lnk - C:\WINDOWS\Installer\{7339E7E7-FB6A-46EC-8303-D31E655EF617}\_154754de.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2011-01-26 188416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoResolveSearch"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\system32\ZoneLabs\vsmon.exe"="C:\WINDOWS\system32\ZoneLabs\vsmon.exe:*:Enabled:vsmon"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Sony Ericsson\Update Service\Update Service.exe"="C:\Program Files\Sony Ericsson\Update Service\Update Service.exe:*:Enabled:Update Service"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2011-03-05 21:30:47 ----D---- C:\rsit
2011-03-05 21:30:47 ----D---- C:\Program Files\trend micro
2011-03-05 20:01:44 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2011-03-05 20:00:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2011-03-05 20:00:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2141007$
2011-03-05 20:00:29 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2011-03-05 20:00:19 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2011-03-05 20:00:08 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2011-03-04 23:29:18 ----D---- C:\Documents and Settings\Mato\Application Data\Mozilla
2011-03-04 23:25:32 ----D---- C:\Program Files\Mozilla Firefox 4
2011-03-02 23:00:15 ----D---- C:\Documents and Settings\Mato\Application Data\Foxit Software
2011-02-28 21:17:39 ----D---- C:\Program Files\OpenOffice.org 3
2011-02-27 21:26:50 ----D---- C:\Program Files\Foxit Software
2011-02-27 12:57:52 ----A---- C:\WINDOWS\system32\SmartDefragBootTime.exe
2011-02-27 12:57:52 ----A---- C:\WINDOWS\system32\drivers\SmartDefragDriver.sys
2011-02-26 20:25:05 ----D---- C:\ATI
2011-02-26 20:04:31 ----D---- C:\WINDOWS\CSC
2011-02-26 20:04:26 ----A---- C:\WINDOWS\ntbtlog.txt
2011-02-26 19:45:12 ----D---- C:\WINDOWS\system32\appmgmt
2011-02-26 19:29:05 ----D---- C:\Documents and Settings\All Users\Application Data\ATI
2011-02-26 19:13:43 ----D---- C:\Program Files\AMD
2011-02-26 19:07:57 ----D---- C:\Program Files\Microsoft.NET
2011-02-26 16:10:22 ----A---- C:\WINDOWS\system32\SETAA3E.tmp
2011-02-26 16:10:22 ----A---- C:\WINDOWS\system32\SETA976.tmp
2011-02-26 16:10:22 ----A---- C:\WINDOWS\system32\SETA8E9.tmp
2011-02-26 16:10:22 ----A---- C:\WINDOWS\system32\SETA86D.tmp
2011-02-26 16:10:22 ----A---- C:\WINDOWS\system32\SETA7E6.tmp
2011-02-26 16:10:22 ----A---- C:\WINDOWS\system32\SETA75E.tmp
2011-02-26 16:10:22 ----A---- C:\WINDOWS\system32\SETA6D4.tmp
2011-02-26 16:10:22 ----A---- C:\WINDOWS\system32\SETA627.tmp
2011-02-26 16:10:22 ----A---- C:\WINDOWS\system32\SETA56D.tmp
2011-02-26 16:10:22 ----A---- C:\WINDOWS\system32\SETA4D1.tmp
2011-02-26 16:10:22 ----A---- C:\WINDOWS\system32\SETA43A.tmp
2011-02-26 16:10:22 ----A---- C:\WINDOWS\system32\SETA3BF.tmp
2011-02-26 16:10:22 ----A---- C:\WINDOWS\system32\ativvamv.dll
2011-02-26 16:10:22 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2011-02-26 16:09:50 ----D---- C:\Program Files\ATI
2011-02-25 23:52:44 ----RHD---- C:\AHCache
2011-02-25 23:31:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2482017$
2011-02-25 23:30:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2476687$
2011-02-25 23:30:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2485376$
2011-02-25 23:30:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2011-02-25 23:30:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2011-02-25 23:30:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2479628$
2011-02-25 23:29:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2011-02-25 23:29:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2011-02-25 23:29:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2011-02-25 23:29:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$
2011-02-25 23:29:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2443685$
2011-02-25 23:29:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2011-02-25 23:28:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2011-02-25 23:28:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2011-02-25 23:25:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2011-02-25 23:25:13 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2011-02-25 23:24:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2011-02-25 23:24:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2011-02-25 23:24:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2011-02-25 23:24:11 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2011-02-25 23:23:57 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2011-02-25 23:23:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2011-02-25 23:23:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2121546$
2011-02-25 23:23:18 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2011-02-25 23:23:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2259922$
2011-02-25 23:22:51 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2011-02-25 23:22:34 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2011-02-25 23:22:12 ----HDC---- C:\WINDOWS\$NtUninstallKB982214$
2011-02-25 23:17:24 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2011-02-25 23:17:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2011-02-25 23:16:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2011-02-25 23:13:35 ----D---- C:\WINDOWS\system32\WindowsPowerShell
2011-02-25 23:13:34 ----D---- C:\WINDOWS\system32\winrm
2011-02-25 23:13:34 ----D---- C:\WINDOWS\system32\GroupPolicy
2011-02-25 23:13:31 ----HDC---- C:\WINDOWS\$968930Uinstall_KB968930$
2011-02-25 23:13:27 ----D---- C:\WINDOWS\$NtUninstallKB968930$
2011-02-25 23:13:13 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2011-02-25 23:13:03 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2011-02-25 23:12:54 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2011-02-25 23:12:46 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2011-02-25 23:12:39 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2011-02-25 23:12:31 ----N---- C:\WINDOWS\system32\browserchoice.exe
2011-02-25 23:12:26 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2011-02-25 23:12:18 ----HDC---- C:\WINDOWS\$NtUninstallKB981349$
2011-02-25 23:12:10 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2011-02-25 23:12:02 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2011-02-25 23:11:54 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2011-02-25 23:11:46 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2011-02-25 23:11:38 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2011-02-25 23:11:29 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2011-02-25 23:11:17 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2011-02-25 23:11:05 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2011-02-25 23:10:57 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2011-02-25 23:10:49 ----HDC---- C:\WINDOWS\$NtUninstallKB971513$
2011-02-25 23:10:41 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2011-02-25 23:10:32 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2011-02-25 23:10:24 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2011-02-25 23:10:16 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2011-02-25 23:10:08 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2011-02-25 23:09:47 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2011-02-25 23:09:37 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2011-02-25 23:09:29 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2011-02-25 23:09:22 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2011-02-25 23:09:15 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2011-02-25 23:09:07 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2011-02-25 23:09:00 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2011-02-25 23:08:53 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2011-02-25 23:08:47 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2011-02-25 23:08:40 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2011-02-25 23:08:33 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2011-02-25 23:08:25 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2011-02-25 23:08:18 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2011-02-25 23:08:11 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2011-02-25 23:08:03 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2011-02-25 23:07:48 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2011-02-25 23:07:39 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2011-02-25 23:07:18 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2011-02-25 23:07:11 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2011-02-25 23:07:03 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2011-02-25 23:06:54 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2011-02-25 23:06:39 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2011-02-25 23:06:27 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2011-02-25 23:06:25 ----A---- C:\WINDOWS\system32\xpsp4res.dll
2011-02-25 23:06:18 ----HDC---- C:\WINDOWS\$NtUninstallbasecsp$
2011-02-25 23:05:04 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2011-02-25 23:04:55 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2011-02-25 23:04:46 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2011-02-25 23:04:39 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2011-02-25 23:04:32 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2011-02-25 23:04:25 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2011-02-25 23:04:18 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2011-02-25 23:04:12 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2011-02-25 23:04:05 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2011-02-25 23:03:57 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2011-02-25 23:03:37 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2011-02-25 23:03:28 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2011-02-25 23:03:22 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2011-02-25 23:03:15 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2011-02-25 23:03:10 ----D---- C:\WINDOWS\system32\PreInstall
2011-02-25 23:03:09 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2011-02-25 23:03:08 ----HD---- C:\WINDOWS\$hf_mig$
2011-02-25 23:02:37 ----N---- C:\WINDOWS\system32\spmsg.dll
2011-02-25 23:02:35 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2011-02-25 11:30:15 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2011-02-23 12:17:54 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2011-02-23 12:17:54 ----A---- C:\WINDOWS\system32\wups2.dll
2011-02-23 12:17:54 ----A---- C:\WINDOWS\system32\wucltui.dll.mui
2011-02-23 12:17:54 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui
2011-02-23 12:17:53 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
2011-02-23 12:03:59 ----D---- C:\Documents and Settings\Mato\Application Data\IObit
2011-02-23 12:03:57 ----D---- C:\Documents and Settings\All Users\Application Data\IObit
2011-02-23 12:03:52 ----D---- C:\Program Files\IObit
2011-02-22 00:26:05 ----D---- C:\Documents and Settings\All Users\Application Data\Sony Ericsson
2011-02-22 00:13:56 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2011-02-22 00:13:27 ----D---- C:\WINDOWS\system32\drivers\UMDF
2011-02-22 00:13:17 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2011-02-22 00:06:01 ----D---- C:\Documents and Settings\Mato\Application Data\MyPhoneExplorer
2011-02-21 10:05:04 ----D---- C:\WINDOWS\Minidump
2011-02-21 01:03:23 ----D---- C:\WINDOWS\system32\LogFiles
2011-02-20 16:44:09 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2011-02-20 16:42:38 ----A---- C:\WINDOWS\imsins.BAK
2011-02-20 16:42:35 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll
2011-02-20 16:42:34 ----HDC---- C:\WINDOWS\$NtUninstallWdf01007$
2011-02-20 16:37:34 ----A---- C:\WINDOWS\wcx_ftp.ini
2011-02-19 21:34:12 ----D---- C:\Documents and Settings\Mato\Application Data\XnView
2011-02-19 21:30:32 ----D---- C:\Program Files\CCleaner
2011-02-19 21:15:40 ----D---- C:\Documents and Settings\Mato\Application Data\Media Player Classic
2011-02-19 21:13:30 ----A---- C:\WINDOWS\system32\unrar.dll
2011-02-19 21:13:27 ----D---- C:\Program Files\K-Lite Codec Pack
2011-02-19 20:44:56 ----D---- C:\Program Files\Common Files\Skype
2011-02-19 20:03:20 ----D---- C:\Program Files\AIMP3
2011-02-19 17:27:54 ----D---- C:\Documents and Settings\Mato\Application Data\skypePM
2011-02-19 17:05:09 ----D---- C:\Documents and Settings\Mato\Application Data\Skype
2011-02-19 17:04:56 ----RD---- C:\Program Files\Skype
2011-02-19 17:04:53 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
2011-02-19 16:37:27 ----D---- C:\Program Files\The KMPlayer
2011-02-19 16:25:58 ----SHD---- C:\RECYCLER
2011-02-19 16:16:32 ----A---- C:\WINDOWS\system32\ztvunrar36.dll
2011-02-19 16:16:32 ----A---- C:\WINDOWS\system32\ztvunace26.dll
2011-02-19 16:16:32 ----A---- C:\WINDOWS\system32\ztvcabinet.dll
2011-02-19 16:16:31 ----D---- C:\Program Files\TUGZip
2011-02-19 16:08:56 ----D---- C:\Program Files\XnView
2011-02-19 16:07:42 ----A---- C:\WINDOWS\system32\drivers\seehcri.sys
2011-02-19 16:07:36 ----A---- C:\WINDOWS\system32\WdfCoInstaller01007.dll
2011-02-19 16:07:36 ----A---- C:\WINDOWS\system32\drivers\ggsemc.sys
2011-02-19 16:07:36 ----A---- C:\WINDOWS\system32\drivers\ggflt.sys
2011-02-19 16:07:29 ----D---- C:\Program Files\Sony Ericsson
2011-02-19 16:06:05 ----D---- C:\WINDOWS\system32\Adobe
2011-02-19 16:06:00 ----D---- C:\Documents and Settings\Mato\Application Data\Opera
2011-02-19 16:05:53 ----D---- C:\Program Files\Opera
2011-02-19 16:04:54 ----D---- C:\Program Files\MyPhoneExplorer
2011-02-19 16:02:57 ----D---- C:\Program Files\QIP Infium JadrisPack
2011-02-19 15:52:57 ----A---- C:\~GLHTTP1.TMP
2011-02-19 15:52:56 ----D---- C:\Program Files\CheckPoint
2011-02-19 15:52:52 ----A---- C:\WINDOWS\system32\vsregexp.dll
2011-02-19 15:52:51 ----A---- C:\WINDOWS\system32\zlcommdb.dll
2011-02-19 15:52:51 ----A---- C:\WINDOWS\system32\zlcomm.dll
2011-02-19 15:52:47 ----A---- C:\WINDOWS\system32\zpeng25.dll
2011-02-19 15:52:47 ----A---- C:\WINDOWS\system32\vswmi.dll
2011-02-19 15:52:46 ----D---- C:\WINDOWS\system32\ZoneLabs
2011-02-19 15:52:46 ----A---- C:\WINDOWS\system32\vsxml.dll
2011-02-19 15:52:46 ----A---- C:\WINDOWS\system32\vspubapi.dll
2011-02-19 15:52:46 ----A---- C:\WINDOWS\system32\vsmonapi.dll
2011-02-19 15:52:45 ----A---- C:\WINDOWS\system32\vsdatant.sys
2011-02-19 15:52:44 ----D---- C:\Program Files\Zone Labs
2011-02-19 15:46:23 ----D---- C:\WINDOWS\Internet Logs
2011-02-19 15:46:22 ----A---- C:\WINDOWS\system32\vsutil.dll
2011-02-19 15:46:22 ----A---- C:\WINDOWS\system32\vsinit.dll
2011-02-19 15:46:22 ----A---- C:\WINDOWS\system32\vsdata.dll
2011-02-19 15:30:03 ----D---- C:\Documents and Settings\Mato\Application Data\ATI
2011-02-19 15:29:43 ----D---- C:\WINDOWS\system32\Lang
2011-02-19 15:27:47 ----D---- C:\Program Files\Toddler Keys
2011-02-19 15:24:14 ----A---- C:\WINDOWS\system32\atibtmon.exe
2011-02-19 15:24:13 ----A---- C:\WINDOWS\system32\atimpc32.dll
2011-02-19 15:24:13 ----A---- C:\WINDOWS\system32\aticalrt.dll
2011-02-19 15:24:13 ----A---- C:\WINDOWS\system32\aticaldd.dll
2011-02-19 15:24:13 ----A---- C:\WINDOWS\system32\aticalcl.dll
2011-02-19 15:19:37 ----A---- C:\WINDOWS\system32\BtwRSupport.dll
2011-02-19 15:19:29 ----A---- C:\WINDOWS\system32\drivers\btwusb.sys
2011-02-19 15:19:29 ----A---- C:\WINDOWS\system32\drivers\btwsecfl.sys
2011-02-19 15:19:29 ----A---- C:\WINDOWS\system32\drivers\btwmodem.sys
2011-02-19 15:19:29 ----A---- C:\WINDOWS\system32\drivers\btwhid.sys
2011-02-19 15:19:29 ----A---- C:\WINDOWS\system32\drivers\btwdndis.sys
2011-02-19 15:19:29 ----A---- C:\WINDOWS\system32\drivers\btport.sys
2011-02-19 15:19:29 ----A---- C:\WINDOWS\system32\drivers\btkrnl.sys
2011-02-19 15:19:29 ----A---- C:\WINDOWS\system32\drivers\btaudio.sys
2011-02-19 15:19:18 ----D---- C:\Program Files\WIDCOMM
2011-02-19 15:18:23 ----D---- C:\Program Files\MSBuild
2011-02-19 15:18:21 ----D---- C:\WINDOWS\system32\XPSViewer
2011-02-19 15:18:18 ----D---- C:\Program Files\Reference Assemblies
2011-02-19 15:17:59 ----N---- C:\WINDOWS\system32\spmsg2.dll
2011-02-19 15:17:27 ----RSD---- C:\WINDOWS\assembly
2011-02-19 15:17:09 ----D---- C:\WINDOWS\Microsoft.NET
2011-02-19 14:55:04 ----A---- C:\WINDOWS\system32\btw_ci.dll
2011-02-19 14:49:25 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2011-02-19 14:49:25 ----A---- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2011-02-19 14:49:24 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2011-02-19 14:49:24 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2011-02-19 14:49:23 ----A---- C:\WINDOWS\system32\drivers\aswmon2.sys
2011-02-19 14:49:23 ----A---- C:\WINDOWS\system32\drivers\aswmon.sys
2011-02-19 14:49:22 ----A---- C:\WINDOWS\system32\drivers\aavmker4.sys
2011-02-19 14:49:16 ----A---- C:\WINDOWS\system32\aswBoot.exe
2011-02-19 14:49:13 ----D---- C:\Program Files\Alwil Software
2011-02-19 14:49:13 ----D---- C:\Documents and Settings\All Users\Application Data\Alwil Software
2011-02-19 14:48:16 ----D---- C:\Documents and Settings\Mato\Application Data\Macromedia
2011-02-19 14:48:16 ----D---- C:\Documents and Settings\Mato\Application Data\Adobe
2011-02-19 14:46:33 ----D---- C:\Program Files\totalcmd
2011-02-19 14:46:33 ----A---- C:\WINDOWS\wincmd.ini
2011-02-19 14:46:33 ----A---- C:\WINDOWS\UC.PIF
2011-02-19 14:46:33 ----A---- C:\WINDOWS\RAR.PIF
2011-02-19 14:46:33 ----A---- C:\WINDOWS\PKZIP.PIF
2011-02-19 14:46:33 ----A---- C:\WINDOWS\PKUNZIP.PIF
2011-02-19 14:46:33 ----A---- C:\WINDOWS\NOCLOSE.PIF
2011-02-19 14:46:33 ----A---- C:\WINDOWS\LHA.PIF
2011-02-19 14:46:33 ----A---- C:\WINDOWS\ARJ.PIF
2011-02-19 14:43:10 ----A---- C:\WINDOWS\system32\h323log.txt
2011-02-19 14:40:19 ----A---- C:\WINDOWS\system32\drivers\audstub.sys
2011-02-19 14:39:43 ----A---- C:\WINDOWS\system32\hidserv.dll
2011-02-19 14:39:23 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2011-02-19 14:39:15 ----D---- C:\Program Files\NetWorx
2011-02-19 14:39:15 ----D---- C:\Documents and Settings\All Users\Application Data\SoftPerfect
2011-02-19 14:39:15 ----A---- C:\WINDOWS\system32\drivers\networx.sys
2011-02-19 14:38:50 ----A---- C:\WINDOWS\system32\drivers\enum1394.sys
2011-02-19 14:38:31 ----A---- C:\WINDOWS\system32\usbui.dll
2011-02-19 14:38:15 ----A---- C:\WINDOWS\system32\drivers\wmiacpi.sys
2011-02-19 14:37:31 ----SHD---- C:\WINDOWS\Installer
2011-02-19 14:37:31 ----D---- C:\Program Files\Common Files\ODBC
2011-02-19 14:37:31 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-02-19 14:37:31 ----A---- C:\WINDOWS\ODBCINST.INI
2011-02-19 14:37:27 ----D---- C:\Program Files\Common Files\SpeechEngines
2011-02-19 14:37:27 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-02-19 14:37:26 ----RD---- C:\Program Files
2011-02-19 14:37:26 ----D---- C:\Program Files\Common Files
2011-02-19 14:37:24 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2011-02-19 14:37:24 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2011-02-19 14:37:24 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2011-02-19 14:37:21 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2011-02-19 14:37:21 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2011-02-19 14:37:21 ----RA---- C:\WINDOWS\system32\kbdur.dll
2011-02-19 14:37:21 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2011-02-19 14:37:21 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2011-02-19 14:37:21 ----RA---- C:\WINDOWS\system32\kbdru.dll
2011-02-19 14:37:21 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2011-02-19 14:37:21 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2011-02-19 14:37:21 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2011-02-19 14:37:21 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2011-02-19 14:37:21 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2011-02-19 14:37:21 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2011-02-19 14:37:18 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2011-02-19 14:37:18 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2011-02-19 14:37:18 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2011-02-19 14:37:18 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2011-02-19 14:37:18 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2011-02-19 14:37:18 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2011-02-19 14:37:18 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2011-02-19 14:37:16 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2011-02-19 14:37:16 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2011-02-19 14:37:16 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2011-02-19 14:37:16 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2011-02-19 14:37:16 ----RA---- C:\WINDOWS\system32\kbdest.dll
2011-02-19 14:37:14 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2011-02-19 14:37:14 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2011-02-19 14:37:14 ----RA---- C:\WINDOWS\system32\kbdro.dll
2011-02-19 14:37:14 ----RA---- C:\WINDOWS\system32\kbdpl.dll
2011-02-19 14:37:13 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2011-02-19 14:37:13 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
2011-02-19 14:37:13 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2011-02-19 14:37:13 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2011-02-19 14:37:13 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
2011-02-19 14:37:13 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
2011-02-19 14:37:13 ----RA---- C:\WINDOWS\system32\kbdcz.dll
2011-02-19 14:37:13 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2011-02-19 14:37:13 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2011-02-19 14:37:11 ----A---- C:\WINDOWS\system32\irclass.dll
2011-02-19 14:37:11 ----A---- C:\WINDOWS\system32\dgsetup.dll
2011-02-19 14:37:11 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2011-02-19 14:37:10 ----A---- C:\WINDOWS\system32\spxcoins.dll
2011-02-19 14:37:10 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2011-02-19 14:37:08 ----A---- C:\WINDOWS\TASKMAN.EXE
2011-02-19 14:37:07 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2011-02-19 14:37:07 ----A---- C:\WINDOWS\system32\drivers\irenum.sys
2011-02-19 14:37:07 ----A---- C:\WINDOWS\system32\batt.dll
2011-02-19 14:37:07 ----A---- C:\WINDOWS\notepad.exe
2011-02-19 14:37:06 ----A---- C:\WINDOWS\system32\storprop.dll
2011-02-19 14:36:59 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2011-02-19 14:36:55 ----RA---- C:\WINDOWS\SET8.tmp
2011-02-19 14:36:52 ----RA---- C:\WINDOWS\SET4.tmp
2011-02-19 14:36:51 ----RA---- C:\WINDOWS\SET3.tmp
2011-02-19 14:36:47 ----D---- C:\WINDOWS\system32\CatRoot2
2011-02-19 14:36:47 ----D---- C:\WINDOWS\system32\CatRoot
2011-02-19 14:36:41 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2011-02-19 14:33:45 ----D---- C:\Documents and Settings\Mato\Application Data\Paradoxx
2011-02-19 14:33:41 ----D---- C:\Documents and Settings\All Users\Application Data\Paradoxx
2011-02-19 14:33:41 ----A---- C:\WINDOWS\system32\SkinCrafter3_vs2005.dll
2011-02-19 14:33:16 ----DC---- C:\WINDOWS\system32\DRVSTORE
2011-02-19 14:33:16 ----A---- C:\WINDOWS\system32\drivers\LtkUSB.sys
2011-02-19 14:33:15 ----D---- C:\Program Files\T-Mobile Communication Center
2011-02-19 14:31:29 ----SHD---- C:\System Volume Information
2011-02-19 14:31:29 ----D---- C:\Documents and Settings
2011-02-19 14:30:32 ----RASH---- C:\boot.ini
2011-02-19 14:24:52 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-02-19 14:24:52 ----RSD---- C:\WINDOWS\Fonts
2011-02-19 14:24:52 ----RD---- C:\WINDOWS\Web
2011-02-19 14:24:52 ----HD---- C:\WINDOWS\inf
2011-02-19 14:24:52 ----D---- C:\WINDOWS\WinSxS
2011-02-19 14:24:52 ----D---- C:\WINDOWS\twain_32
2011-02-19 14:24:52 ----D---- C:\WINDOWS\Temp
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\wins
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\wbem
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\usmt
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\spool
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\ShellExt
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\Setup
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\ras
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\oobe
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\npp
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\mui
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\inetsrv
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\IME
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\icsxml
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\ias
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\export
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\drivers\etc
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\drivers\disdn
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\drivers
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\dhcp
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\config
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\3com_dmi
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\3076
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\2052
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\1054
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\1042
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\1041
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\1037
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\1033
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\1031
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\1028
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32\1025
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system32
2011-02-19 14:24:52 ----D---- C:\WINDOWS\system
2011-02-19 14:24:52 ----D---- C:\WINDOWS\security
2011-02-19 14:24:52 ----D---- C:\WINDOWS\Resources
2011-02-19 14:24:52 ----D---- C:\WINDOWS\repair
2011-02-19 14:24:52 ----D---- C:\WINDOWS\Provisioning
2011-02-19 14:24:52 ----D---- C:\WINDOWS\pchealth
2011-02-19 14:24:52 ----D---- C:\WINDOWS\PeerNet
2011-02-19 14:24:52 ----D---- C:\WINDOWS\mui
2011-02-19 14:24:52 ----D---- C:\WINDOWS\msapps
2011-02-19 14:24:52 ----D---- C:\WINDOWS\msagent
2011-02-19 14:24:52 ----D---- C:\WINDOWS\Media
2011-02-19 14:24:52 ----D---- C:\WINDOWS\java
2011-02-19 14:24:52 ----D---- C:\WINDOWS\ime
2011-02-19 14:24:52 ----D---- C:\WINDOWS\Help
2011-02-19 14:24:52 ----D---- C:\WINDOWS\ehome
2011-02-19 14:24:52 ----D---- C:\WINDOWS\Driver Cache
2011-02-19 14:24:52 ----D---- C:\WINDOWS\Debug
2011-02-19 14:24:52 ----D---- C:\WINDOWS\Cursors
2011-02-19 14:24:52 ----D---- C:\WINDOWS\Connection Wizard
2011-02-19 14:24:52 ----D---- C:\WINDOWS\Config
2011-02-19 14:24:52 ----D---- C:\WINDOWS\AppPatch
2011-02-19 14:24:52 ----D---- C:\WINDOWS\addins
2011-02-19 14:24:52 ----D---- C:\WINDOWS
2011-02-19 14:24:51 ----ASH---- C:\pagefile.sys
2011-02-19 14:22:52 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2011-02-19 14:22:50 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2011-02-19 14:22:49 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys
2011-02-19 14:22:48 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2011-02-19 14:22:46 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2011-02-19 14:22:45 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2011-02-19 14:22:44 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2011-02-19 14:22:43 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2011-02-19 14:22:42 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys
2011-02-19 14:22:41 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys
2011-02-19 14:22:39 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2011-02-19 14:22:31 ----D---- C:\WINDOWS\system32\RTCOM
2011-02-19 14:22:29 ----A---- C:\WINDOWS\system32\ksuser.dll
2011-02-19 14:22:29 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2011-02-19 14:22:29 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2011-02-19 14:22:25 ----A---- C:\WINDOWS\system32\RHCoInstXP.dll
2011-02-19 14:22:25 ----A---- C:\WINDOWS\system32\drivers\RtKHDMI.sys
2011-02-19 14:22:25 ----A---- C:\WINDOWS\RtaUpd.exe
2011-02-19 14:22:24 ----A---- C:\WINDOWS\vncutil.exe
2011-02-19 14:22:24 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2011-02-19 14:22:24 ----A---- C:\WINDOWS\SkyTel.exe
2011-02-19 14:22:24 ----A---- C:\WINDOWS\RtlUpd.exe
2011-02-19 14:22:23 ----A---- C:\WINDOWS\RTLCPL.EXE
2011-02-19 14:22:22 ----A---- C:\WINDOWS\system32\RtkCoInstXP.dll
2011-02-19 14:22:22 ----A---- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2011-02-19 14:22:22 ----A---- C:\WINDOWS\RtkAudioService.exe
2011-02-19 14:22:19 ----A---- C:\WINDOWS\system32\drivers\Monfilt.sys
2011-02-19 14:22:19 ----A---- C:\WINDOWS\RTHDCPL.EXE
2011-02-19 14:22:19 ----A---- C:\WINDOWS\MicCal.exe
2011-02-19 14:22:18 ----A---- C:\WINDOWS\system32\drivers\Ambfilt.sys
2011-02-19 14:22:16 ----D---- C:\Program Files\Realtek
2011-02-19 14:22:16 ----A---- C:\WINDOWS\ALCWZRD.EXE
2011-02-19 14:22:16 ----A---- C:\WINDOWS\ALCMTR.EXE
2011-02-19 14:22:11 ----A---- C:\WINDOWS\RtlExUpd.dll
2011-02-19 14:10:40 ----HD---- C:\Program Files\InstallShield Installation Information
2011-02-19 14:10:40 ----D---- C:\Program Files\ATI Technologies
2011-02-19 14:10:30 ----D---- C:\Program Files\Common Files\InstallShield
2011-02-19 14:06:06 ----D---- C:\WINDOWS\Prefetch
2011-02-19 14:03:12 ----N---- C:\WINDOWS\system32\msxml6r.dll
2011-02-19 14:03:12 ----N---- C:\WINDOWS\system32\msxml6.dll
2011-02-19 14:03:03 ----N---- C:\WINDOWS\system32\smtpapi.dll
2011-02-19 14:03:03 ----N---- C:\WINDOWS\system32\rwnh.dll
2011-02-19 14:03:03 ----N---- C:\WINDOWS\system32\drivers\irbus.sys
2011-02-19 14:03:03 ----N---- C:\WINDOWS\system32\comsdupd.exe
2011-02-19 14:03:02 ----N---- C:\WINDOWS\system32\dot3ui.dll
2011-02-19 14:03:02 ----N---- C:\WINDOWS\system32\dot3svc.dll
2011-02-19 14:03:02 ----N---- C:\WINDOWS\system32\dot3msm.dll
2011-02-19 14:03:02 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2011-02-19 14:03:02 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2011-02-19 14:03:02 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2011-02-19 14:03:02 ----N---- C:\WINDOWS\system32\dot3api.dll
2011-02-19 14:03:02 ----N---- C:\WINDOWS\system32\dimsroam.dll
2011-02-19 14:03:02 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2011-02-19 14:03:02 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2011-02-19 14:03:02 ----N---- C:\WINDOWS\system32\credssp.dll
2011-02-19 14:03:02 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2011-02-19 14:03:02 ----N---- C:\WINDOWS\system32\azroles.dll
2011-02-19 14:03:02 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2011-02-19 14:03:02 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2011-02-19 14:03:02 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2011-02-19 14:03:02 ----N---- C:\WINDOWS\system32\aaclient.dll
2011-02-19 14:03:02 ----A---- C:\WINDOWS\system32\ativvaxx.dll
2011-02-19 14:03:02 ----A---- C:\WINDOWS\system32\ati3duag.dll
2011-02-19 14:03:02 ----A---- C:\WINDOWS\system32\ati2dvag.dll
2011-02-19 14:03:02 ----A---- C:\WINDOWS\system32\ati2cqag.dll
2011-02-19 14:03:01 ----N---- C:\WINDOWS\system32\kbdpash.dll
2011-02-19 14:03:01 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2011-02-19 14:03:01 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2011-02-19 14:03:01 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2011-02-19 14:03:01 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2011-02-19 14:03:01 ----N---- C:\WINDOWS\system32\eapsvc.dll
2011-02-19 14:03:01 ----N---- C:\WINDOWS\system32\eapqec.dll
2011-02-19 14:03:01 ----N---- C:\WINDOWS\system32\eappprxy.dll
2011-02-19 14:03:01 ----N---- C:\WINDOWS\system32\eapphost.dll
2011-02-19 14:03:01 ----N---- C:\WINDOWS\system32\eappgnui.dll
2011-02-19 14:03:01 ----N---- C:\WINDOWS\system32\eappcfg.dll
2011-02-19 14:03:01 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2011-02-19 14:03:01 ----N---- C:\WINDOWS\system32\eapolqec.dll
2011-02-19 14:03:00 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2011-02-19 14:03:00 ----N---- C:\WINDOWS\system32\onex.dll
2011-02-19 14:03:00 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2011-02-19 14:03:00 ----N---- C:\WINDOWS\system32\napstat.exe
2011-02-19 14:03:00 ----N---- C:\WINDOWS\system32\napmontr.dll
2011-02-19 14:03:00 ----N---- C:\WINDOWS\system32\napipsec.dll
2011-02-19 14:03:00 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2011-02-19 14:03:00 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2011-02-19 14:03:00 ----N---- C:\WINDOWS\system32\mssha.dll
2011-02-19 14:03:00 ----N---- C:\WINDOWS\system32\mmcperf.exe
2011-02-19 14:03:00 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2011-02-19 14:03:00 ----N---- C:\WINDOWS\system32\mmcex.dll
2011-02-19 14:03:00 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2011-02-19 14:03:00 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2011-02-19 14:03:00 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2011-02-19 14:03:00 ----N---- C:\WINDOWS\system32\kmsvc.dll
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\wmphoto.dll
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\wlanapi.dll
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\verclsid.exe
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\tzchange.exe
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\tspkg.dll
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\tsgqec.dll
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\slserv.exe
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\slrundll.exe
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\slgen.dll
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\slextspk.dll
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\slcoinst.dll
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\setupn.exe
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\s3gnb.dll
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\rasqec.dll
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\qutil.dll
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\qcliprov.dll
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\qagentrt.dll
2011-02-19 14:02:59 ----N---- C:\WINDOWS\system32\qagent.dll
2011-02-19 14:02:58 ----N---- C:\WINDOWS\system32\xpsp3res.dll
2011-02-19 14:02:58 ----N---- C:\WINDOWS\system32\xmllite.dll
2011-02-19 14:02:58 ----N---- C:\WINDOWS\slrundll.exe
2011-02-19 14:02:58 ----D---- C:\WINDOWS\system32\en-us
2011-02-19 14:02:57 ----D---- C:\WINDOWS\system32\scripting
2011-02-19 14:02:57 ----D---- C:\WINDOWS\system32\en
2011-02-19 14:02:57 ----D---- C:\WINDOWS\l2schemas
2011-02-19 14:02:56 ----D---- C:\WINDOWS\system32\bits
2011-02-19 14:01:37 ----D---- C:\WINDOWS\ServicePackFiles
2011-02-19 14:00:19 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2011-02-19 14:00:19 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2011-02-19 14:00:19 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2011-02-19 14:00:19 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2011-02-19 14:00:19 ----N---- C:\WINDOWS\system32\drivers\amdagp.sys
2011-02-19 14:00:19 ----N---- C:\WINDOWS\system32\drivers\alim1541.sys
2011-02-19 14:00:19 ----N---- C:\WINDOWS\system32\drivers\agpcpq.sys
2011-02-19 14:00:19 ----N---- C:\WINDOWS\system32\drivers\agp440.sys
2011-02-19 14:00:19 ----N---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2011-02-19 14:00:19 ----N---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2011-02-19 14:00:19 ----N---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2011-02-19 14:00:19 ----N---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2011-02-19 14:00:19 ----N---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2011-02-19 14:00:19 ----N---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2011-02-19 14:00:19 ----N---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2011-02-19 14:00:19 ----D---- C:\WINDOWS\network diagnostic
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\hidir.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\hidbth.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\bthusb.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\bthprint.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\bthpan.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\bthmodem.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\bthenum.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2011-02-19 14:00:18 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2011-02-19 14:00:18 ----A---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2011-02-19 14:00:17 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2011-02-19 14:00:17 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2011-02-19 14:00:17 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys
2011-02-19 14:00:17 ----N---- C:\WINDOWS\system32\drivers\rfcomm.sys
2011-02-19 14:00:17 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2011-02-19 14:00:17 ----N---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2011-02-19 14:00:17 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2011-02-19 14:00:17 ----N---- C:\WINDOWS\system32\drivers\mutohpen.sys
2011-02-19 14:00:17 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2011-02-19 14:00:17 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2011-02-19 14:00:17 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2011-02-19 14:00:17 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2011-02-19 14:00:17 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2011-02-19 14:00:16 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2011-02-19 14:00:16 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2011-02-19 14:00:16 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2011-02-19 14:00:16 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2011-02-19 14:00:16 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2011-02-19 14:00:16 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2011-02-19 14:00:16 ----N---- C:\WINDOWS\system32\drivers\wacompen.sys
2011-02-19 14:00:16 ----N---- C:\WINDOWS\system32\drivers\viaagp.sys
2011-02-19 14:00:16 ----N---- C:\WINDOWS\system32\drivers\vchnt5.dll
2011-02-19 14:00:16 ----N---- C:\WINDOWS\system32\drivers\usbvideo.sys
2011-02-19 14:00:16 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys
2011-02-19 14:00:16 ----N---- C:\WINDOWS\system32\drivers\uagp35.sys
2011-02-19 14:00:16 ----N---- C:\WINDOWS\system32\drivers\smbali.sys
2011-02-19 14:00:16 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2011-02-19 14:00:16 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2011-02-19 14:00:16 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2011-02-19 14:00:16 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2011-02-19 14:00:16 ----N---- C:\WINDOWS\system32\drivers\sisagp.sys
2011-02-19 14:00:16 ----N---- C:\WINDOWS\system32\drivers\siint5.dll

[nitram47]

2011-02-19 13:59:22 ----A---- C:\WINDOWS\002853_.tmp
2011-02-19 13:59:15 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-02-19 13:59:10 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2011-02-19 13:57:57 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2011-02-19 13:53:57 ----D---- C:\Documents and Settings\Mato\Application Data\Identities
2011-02-19 13:53:55 ----HD---- C:\Program Files\Uninstall Information
2011-02-19 13:53:51 ----ASH---- C:\Documents and Settings\Mato\Application Data\desktop.ini
2011-02-19 13:53:50 ----SD---- C:\Documents and Settings\Mato\Application Data\Microsoft
2011-02-19 13:53:14 ----D---- C:\WINDOWS\SoftwareDistribution
2011-02-19 13:53:12 ----SD---- C:\WINDOWS\system32\Microsoft
2011-02-19 13:53:12 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-02-19 13:49:32 ----D---- C:\WINDOWS\system32\xircom
2011-02-19 13:49:32 ----D---- C:\Program Files\xerox
2011-02-19 13:49:32 ----D---- C:\Program Files\microsoft frontpage
2011-02-19 13:49:15 ----RASH---- C:\MSDOS.SYS
2011-02-19 13:49:15 ----RASH---- C:\IO.SYS
2011-02-19 13:49:15 ----A---- C:\WINDOWS\control.ini
2011-02-19 13:49:15 ----A---- C:\CONFIG.SYS
2011-02-19 13:49:15 ----A---- C:\AUTOEXEC.BAT
2011-02-19 13:49:04 ----A---- C:\WINDOWS\system32\mapi32.dll
2011-02-19 13:48:27 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-02-19 13:48:27 ----RD---- C:\WINDOWS\Offline Web Pages
2011-02-19 13:48:27 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2011-02-19 13:48:22 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2011-02-19 13:48:19 ----HD---- C:\Program Files\WindowsUpdate
2011-02-19 13:47:58 ----D---- C:\WINDOWS\system32\DirectX
2011-02-19 13:47:33 ----A---- C:\WINDOWS\system32\atrace.dll
2011-02-19 13:47:29 ----A---- C:\WINDOWS\system32\desktop.ini
2011-02-19 13:47:29 ----A---- C:\WINDOWS\desktop.ini
2011-02-19 13:47:21 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2011-02-19 13:47:20 ----A---- C:\WINDOWS\system32\acctres.dll
2011-02-19 13:47:19 ----D---- C:\Program Files\Common Files\Services
2011-02-19 13:47:16 ----SD---- C:\WINDOWS\Tasks
2011-02-19 13:47:16 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2011-02-19 13:47:15 ----D---- C:\Program Files\Common Files\MSSoap
2011-02-19 13:47:10 ----D---- C:\WINDOWS\srchasst
2011-02-19 13:47:09 ----D---- C:\WINDOWS\system32\Macromed
2011-02-19 13:47:05 ----A---- C:\WINDOWS\system32\wuweb.dll
2011-02-19 13:47:05 ----A---- C:\WINDOWS\system32\wups.dll
2011-02-19 13:47:05 ----A---- C:\WINDOWS\system32\wucltui.dll
2011-02-19 13:47:05 ----A---- C:\WINDOWS\system32\wuauserv.dll
2011-02-19 13:47:05 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2011-02-19 13:47:05 ----A---- C:\WINDOWS\system32\wuaueng.dll
2011-02-19 13:47:05 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2011-02-19 13:47:04 ----A---- C:\WINDOWS\system32\wuauclt.exe
2011-02-19 13:47:04 ----A---- C:\WINDOWS\system32\wuapi.dll
2011-02-19 13:47:04 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2011-02-19 13:47:04 ----A---- C:\WINDOWS\system32\qmgr.dll
2011-02-19 13:47:04 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2011-02-19 13:47:04 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2011-02-19 13:46:59 ----D---- C:\Program Files\Movie Maker
2011-02-19 13:46:54 ----A---- C:\WINDOWS\system32\safrslv.dll
2011-02-19 13:46:54 ----A---- C:\WINDOWS\system32\safrdm.dll
2011-02-19 13:46:54 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2011-02-19 13:46:54 ----A---- C:\WINDOWS\system32\racpldlg.dll
2011-02-19 13:46:49 ----A---- C:\WINDOWS\system32\fltmc.exe
2011-02-19 13:46:49 ----A---- C:\WINDOWS\system32\fltlib.dll
2011-02-19 13:46:49 ----A---- C:\WINDOWS\system32\drivers\fltmgr.sys
2011-02-19 13:46:48 ----D---- C:\WINDOWS\system32\Restore
2011-02-19 13:46:48 ----A---- C:\WINDOWS\system32\srsvc.dll
2011-02-19 13:46:48 ----A---- C:\WINDOWS\system32\srrstr.dll
2011-02-19 13:46:48 ----A---- C:\WINDOWS\system32\srclient.dll
2011-02-19 13:46:48 ----A---- C:\WINDOWS\system32\drivers\sr.sys
2011-02-19 13:46:47 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2011-02-19 13:46:47 ----A---- C:\WINDOWS\system32\msconf.dll
2011-02-19 13:46:47 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2011-02-19 13:46:47 ----A---- C:\WINDOWS\system32\mnmdd.dll
2011-02-19 13:46:47 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2011-02-19 13:46:47 ----A---- C:\WINDOWS\system32\ils.dll
2011-02-19 13:46:43 ----D---- C:\Program Files\NetMeeting
2011-02-19 13:46:43 ----A---- C:\WINDOWS\system32\msoert2.dll
2011-02-19 13:46:43 ----A---- C:\WINDOWS\system32\msoeacct.dll
2011-02-19 13:46:42 ----A---- C:\WINDOWS\system32\inetres.dll
2011-02-19 13:46:42 ----A---- C:\WINDOWS\system32\inetcomm.dll
2011-02-19 13:46:39 ----D---- C:\Program Files\Outlook Express
2011-02-19 13:46:39 ----A---- C:\WINDOWS\system32\schedsvc.dll
2011-02-19 13:46:39 ----A---- C:\WINDOWS\system32\mstinit.exe
2011-02-19 13:46:39 ----A---- C:\WINDOWS\system32\mstask.dll
2011-02-19 13:46:38 ----A---- C:\WINDOWS\system32\isign32.dll
2011-02-19 13:46:38 ----A---- C:\WINDOWS\system32\inetcfg.dll
2011-02-19 13:46:38 ----A---- C:\WINDOWS\system32\icwphbk.dll
2011-02-19 13:46:38 ----A---- C:\WINDOWS\system32\icwdial.dll
2011-02-19 13:46:31 ----D---- C:\Program Files\Common Files\System
2011-02-19 13:46:30 ----D---- C:\Program Files\Internet Explorer
2011-02-19 13:46:04 ----D---- C:\Program Files\ComPlus Applications
2011-02-19 13:46:02 ----A---- C:\WINDOWS\vbaddin.ini
2011-02-19 13:46:02 ----A---- C:\WINDOWS\vb.ini
2011-02-19 13:45:59 ----D---- C:\WINDOWS\Registration
2011-02-19 13:45:53 ----D---- C:\Program Files\Windows Media Player
2011-02-19 13:45:53 ----D---- C:\Program Files\Online Services
2011-02-19 13:45:47 ----D---- C:\Program Files\Messenger
2011-02-19 13:45:42 ----D---- C:\Program Files\MSN Gaming Zone
2011-02-19 13:45:42 ----A---- C:\WINDOWS\system32\write.exe
2011-02-19 13:45:31 ----A---- C:\WINDOWS\system32\sndvol32.exe
2011-02-19 13:45:30 ----A---- C:\WINDOWS\system32\hticons.dll
2011-02-19 13:45:30 ----A---- C:\WINDOWS\system32\avwav.dll
2011-02-19 13:45:30 ----A---- C:\WINDOWS\system32\avtapi.dll
2011-02-19 13:45:30 ----A---- C:\WINDOWS\system32\avmeter.dll
2011-02-19 13:45:29 ----A---- C:\WINDOWS\system32\winchat.exe
2011-02-19 13:45:21 ----A---- C:\WINDOWS\system32\charmap.exe
2011-02-19 13:45:21 ----A---- C:\WINDOWS\system32\getuname.dll
2011-02-19 13:45:20 ----A---- C:\WINDOWS\system32\winmine.exe
2011-02-19 13:45:20 ----A---- C:\WINDOWS\system32\sol.exe
2011-02-19 13:45:20 ----A---- C:\WINDOWS\system32\calc.exe
2011-02-19 13:45:19 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2011-02-19 13:45:19 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2011-02-19 13:45:19 ----A---- C:\WINDOWS\system32\tslabels.ini
2011-02-19 13:45:19 ----A---- C:\WINDOWS\system32\tskill.exe
2011-02-19 13:45:19 ----A---- C:\WINDOWS\system32\reset.exe
2011-02-19 13:45:19 ----A---- C:\WINDOWS\system32\mshearts.exe
2011-02-19 13:45:19 ----A---- C:\WINDOWS\system32\freecell.exe
2011-02-19 13:45:18 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2011-02-19 13:45:18 ----A---- C:\WINDOWS\system32\tscon.exe
2011-02-19 13:45:18 ----A---- C:\WINDOWS\system32\shadow.exe
2011-02-19 13:45:18 ----A---- C:\WINDOWS\system32\rwinsta.exe
2011-02-19 13:45:18 ----A---- C:\WINDOWS\system32\regini.exe
2011-02-19 13:45:18 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2011-02-19 13:45:18 ----A---- C:\WINDOWS\system32\qwinsta.exe
2011-02-19 13:45:18 ----A---- C:\WINDOWS\system32\qappsrv.exe
2011-02-19 13:45:18 ----A---- C:\WINDOWS\system32\msg.exe
2011-02-19 13:45:18 ----A---- C:\WINDOWS\system32\logoff.exe
2011-02-19 13:45:17 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2011-02-19 13:45:17 ----A---- C:\WINDOWS\system32\cdmodem.dll
2011-02-19 13:45:16 ----A---- C:\WINDOWS\system32\stclient.dll
2011-02-19 13:45:16 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2011-02-19 13:45:16 ----A---- C:\WINDOWS\system32\mtxex.dll
2011-02-19 13:45:16 ----A---- C:\WINDOWS\system32\mtxdm.dll
2011-02-19 13:45:16 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2011-02-19 13:45:16 ----A---- C:\WINDOWS\system32\comrepl.dll
2011-02-19 13:45:16 ----A---- C:\WINDOWS\system32\comaddin.dll
2011-02-19 13:45:15 ----A---- C:\WINDOWS\system32\comsnap.dll
2011-02-19 13:45:09 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2011-02-19 13:44:53 ----D---- C:\Program Files\MSN
2011-02-19 13:44:52 ----A---- C:\WINDOWS\system32\sndrec32.exe
2011-02-19 13:44:52 ----A---- C:\WINDOWS\system32\accwiz.exe
2011-02-19 13:44:51 ----A---- C:\WINDOWS\system32\mplay32.exe
2011-02-19 13:44:51 ----A---- C:\WINDOWS\system32\hypertrm.dll
2011-02-19 13:44:50 ----D---- C:\Program Files\Windows NT
2011-02-19 13:44:50 ----A---- C:\WINDOWS\system32\spider.exe
2011-02-19 13:44:50 ----A---- C:\WINDOWS\system32\mspaint.exe
2011-02-19 13:44:50 ----A---- C:\WINDOWS\system32\clipbrd.exe
2011-02-19 13:44:49 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2011-02-19 13:44:49 ----A---- C:\WINDOWS\system32\mstscax.dll
2011-02-19 13:44:49 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys
2011-02-19 13:44:49 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys
2011-02-19 13:44:49 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys
2011-02-19 13:44:48 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2011-02-19 13:44:48 ----A---- C:\WINDOWS\system32\sessmgr.exe
2011-02-19 13:44:48 ----A---- C:\WINDOWS\system32\remotepg.dll
2011-02-19 13:44:48 ----A---- C:\WINDOWS\system32\rdshost.exe
2011-02-19 13:44:48 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2011-02-19 13:44:48 ----A---- C:\WINDOWS\system32\rdchost.dll
2011-02-19 13:44:48 ----A---- C:\WINDOWS\system32\mstsc.exe
2011-02-19 13:44:47 ----D---- C:\WINDOWS\system32\MsDtc
2011-02-19 13:44:47 ----A---- C:\WINDOWS\system32\termsrv.dll
2011-02-19 13:44:47 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2011-02-19 13:44:47 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2011-02-19 13:44:47 ----A---- C:\WINDOWS\system32\rdpclip.exe
2011-02-19 13:44:47 ----A---- C:\WINDOWS\system32\qprocess.exe
2011-02-19 13:44:47 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2011-02-19 13:44:47 ----A---- C:\WINDOWS\system32\icaapi.dll
2011-02-19 13:44:47 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2011-02-19 13:44:46 ----A---- C:\WINDOWS\system32\xolehlp.dll
2011-02-19 13:44:46 ----A---- C:\WINDOWS\system32\mtxoci.dll
2011-02-19 13:44:46 ----A---- C:\WINDOWS\system32\msdtctm.dll
2011-02-19 13:44:46 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2011-02-19 13:44:45 ----A---- C:\WINDOWS\system32\msdtclog.dll
2011-02-19 13:44:45 ----A---- C:\WINDOWS\system32\msdtc.exe
2011-02-19 13:44:44 ----D---- C:\WINDOWS\system32\Com
2011-02-19 13:44:44 ----A---- C:\WINDOWS\system32\colbact.dll
2011-02-19 13:44:44 ----A---- C:\WINDOWS\system32\clbcatex.dll
2011-02-19 13:44:44 ----A---- C:\WINDOWS\system32\catsrvut.dll
2011-02-19 13:44:44 ----A---- C:\WINDOWS\system32\catsrvps.dll
2011-02-19 13:44:44 ----A---- C:\WINDOWS\system32\catsrv.dll
2011-02-19 13:44:43 ----A---- C:\WINDOWS\system32\comuid.dll
2011-02-19 13:44:43 ----A---- C:\WINDOWS\system32\comsvcs.dll
2011-02-19 13:44:42 ----A---- C:\WINDOWS\system32\clbcatq.dll
2011-02-19 13:44:35 ----A---- C:\WINDOWS\system32\servdeps.dll
2011-02-19 13:44:35 ----A---- C:\WINDOWS\system32\mmfutil.dll
2011-02-19 13:44:34 ----A---- C:\WINDOWS\system32\licwmi.dll
2011-02-19 13:44:34 ----A---- C:\WINDOWS\system32\cmprops.dll
2011-02-19 13:44:30 ----A---- C:\WINDOWS\system32\drivers\termdd.sys
2011-02-19 13:44:30 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys

======List of files/folders modified in the last 1 months======

2011-02-21 12:28:00 ----A---- C:\WINDOWS\win.ini
2011-02-19 14:41:53 ----A---- C:\WINDOWS\system.ini
2011-02-19 13:48:55 ----ASH---- C:\WINDOWS\fonts\desktop.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ohci1394;Texas Instruments OHCI Compliant IEEE 1394 Host Controller; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 SmartDefragDriver;SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [2010-11-26 14776]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-02-23 30680]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-02-23 25432]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2011-02-23 371544]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-02-23 301528]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-02-23 49240]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 networx;networx; C:\WINDOWS\system32\drivers\networx.sys [2011-02-08 51640]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-02-23 19544]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-02-23 102232]
R2 vsdatant;vsdatant; \??\C:\WINDOWS\system32\vsdatant.sys []
R3 AODDriver2;AODDriver2; \??\C:\Program Files\AMD\OverDrive\i386\AODDriver2.sys []
R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2011-01-27 6406656]
R3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2011-02-19 556200]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2011-02-19 37160]
R3 btkrnl;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2011-02-19 933416]
R3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2011-02-19 59688]
R3 btwmodem;Bluetooth Modem; C:\WINDOWS\system32\DRIVERS\btwmodem.sys [2011-02-19 37032]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2011-02-19 51752]
R3 FlrnUSB;Leadtek USB Network Interface; C:\WINDOWS\system32\DRIVERS\LtkUSB.sys [2011-02-19 42984]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2010-03-12 5867040]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-04 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 RTHDMIAzAudService;Service for HDMI; C:\WINDOWS\system32\drivers\RtKHDMI.sys [2010-01-27 4078400]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\WINDOWS\system32\DRIVERS\seehcri.sys [2011-02-19 27632]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 ATICDSDr;ATICDSDr; \??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ATICDSDr.sys []
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2011-02-19 118440]
S3 FileMonitor;FileMonitor; \??\C:\Program Files\IObit\IObit Malware Fighter\Drivers\wxp_x86\FileMonitor.sys []
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2011-02-19 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2011-02-19 25512]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 RegFilter;RegFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wxp_x86\RegFilter.sys []
S3 UrlFilter;UrlFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wxp_x86\UrlFilter.sys []
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AODService;AODService; C:\Program Files\AMD\OverDrive\AODAssist.exe [2010-07-01 136616]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2011-01-26 638976]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-02-23 42184]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2010-12-09 365912]
R2 FMMService;Mobility Manager Service; C:\PROGRA~1\T-MOBI~1\drivers\113F4D~1\FMMSER~1.EXE [2011-02-19 40960]
R2 FOFDM DHCP Timing;FOFDM DHCP Timing; C:\PROGRA~1\T-MOBI~1\FOFDMD~1.EXE [2009-11-18 81920]
R2 FOFDMUpgrade;FOFDM Upgrade; C:\PROGRA~1\T-MOBI~1\FOFDMU~1.EXE [2010-01-17 188416]
R2 IMFservice;IMF Service; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [2011-01-29 821592]
R2 IS360service;IS360service; C:\Program Files\IObit\IObit Security 360\IS360srv.exe [2010-06-11 312152]
R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2010-09-02 2435592]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256]
S3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion; C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [2010-10-26 155344]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[Rudy]

1. Odinstalujte IObit Security 360. Patně se bije s Avastem.
2. Dejte log z ComboFix.

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware

[nitram47]

od rana sa mi konecne podarilo urobit log


ComboFix 11-03-05.02 - Mato . 03. 2011 14:31:09.2.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1250.421.1033.18.1790.1371 [GMT 1:00]
Running from: c:\documents and settings\Mato\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: ZoneAlarm Firewall *Disabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}
.
.
((((((((((((((((((((((((( Files Created from 2011-02-06 to 2011-03-06 )))))))))))))))))))))))))))))))
.
.
2011-03-05 20:30 . 2011-03-05 20:31 -------- d-----w- C:\rsit
2011-02-26 19:25 . 2011-02-26 19:25 -------- d-----w- C:\ATI
2011-02-25 22:52 . 2011-02-25 22:52 -------- d-----r- C:\AHCache
2011-02-19 14:52 . 2011-02-19 14:54 1290240 ----a-w- C:\~GLHTTP1.TMP
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-01-26 23:05 . 2008-11-09 18:24 17252352 ----a-w- c:\windows\system32\atioglxx.dll
2011-01-26 22:52 . 2008-11-09 18:24 462848 ----a-w- c:\windows\system32\ATIDEMGX.dll
2011-01-26 22:41 . 2008-11-09 18:24 311296 ----a-w- c:\windows\system32\atiiiexx.dll
2011-01-26 22:32 . 2008-11-09 18:24 212992 ----a-w- c:\windows\system32\atipdlxx.dll
2011-01-26 22:31 . 2008-11-09 18:24 155648 ----a-w- c:\windows\system32\Oemdspif.dll
2011-01-26 22:31 . 2008-11-09 18:24 26112 ----a-w- c:\windows\system32\Ati2mdxx.exe
2011-01-26 22:31 . 2008-11-09 18:24 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2011-01-26 22:31 . 2008-11-09 18:24 188416 ----a-w- c:\windows\system32\ati2evxx.dll
2011-01-26 22:30 . 2008-11-09 18:24 638976 ----a-w- c:\windows\system32\ati2evxx.exe
2011-01-26 22:28 . 2008-11-09 18:24 53248 ----a-w- c:\windows\system32\ATIDDC.DLL
2011-01-26 22:23 . 2008-11-09 18:24 651264 ----a-w- c:\windows\system32\atikvmag.dll
2011-01-26 22:21 . 2008-11-09 18:24 196608 ----a-w- c:\windows\system32\atiadlxx.dll
2011-01-26 22:21 . 2008-11-09 18:24 483328 ----a-w- c:\windows\system32\atiok3x2.dll
2011-01-26 22:21 . 2008-11-09 18:24 17408 ----a-w- c:\windows\system32\atitvo32.dll
2011-01-26 22:12 . 2008-11-09 18:24 64512 ----a-w- c:\windows\system32\amdpcom32.dll
2011-01-26 22:12 . 2008-11-09 18:24 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2011-01-21 14:44 . 2004-08-04 01:07 439296 ----a-w- c:\windows\system32\shimgvw.dll
2011-01-07 14:09 . 2004-08-04 01:07 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-12-31 13:10 . 2004-08-04 01:07 1854976 ----a-w- c:\windows\system32\win32k.sys
2010-12-22 12:34 . 2004-08-04 01:07 301568 ----a-w- c:\windows\system32\kerberos.dll
2010-12-20 22:15 . 2004-08-04 01:07 667136 ----a-w- c:\windows\system32\wininet.dll
2010-12-20 22:15 . 2004-08-04 01:07 61952 ----a-w- c:\windows\system32\tdc.ocx
2010-12-20 22:15 . 2004-08-04 01:07 81920 ----a-w- c:\windows\system32\ieencode.dll
2010-12-20 17:26 . 2004-08-04 01:07 730112 ----a-w- c:\windows\system32\lsasrv.dll
2010-12-20 15:30 . 2004-08-04 01:07 369664 ----a-w- c:\windows\system32\html.iec
2010-12-09 17:27 . 2010-12-09 17:27 99688 ----a-w- c:\windows\system32\BtMmHook.dll
2010-12-09 17:27 . 2010-12-09 17:27 2860384 ----a-w- c:\windows\system32\btwicons.dll
2010-12-09 17:27 . 2010-12-09 17:27 972144 ----a-w- c:\windows\system32\BTNeighborhood.dll
2010-12-09 17:27 . 2010-12-09 17:27 439648 ----a-w- c:\windows\system32\btcss.dll
2010-12-09 17:27 . 2010-12-09 17:27 242976 ----a-w- c:\windows\system32\btwhidcs.dll
2010-12-09 17:27 . 2010-12-09 17:27 218464 ----a-w- c:\windows\system32\btsec.dll
2010-12-09 17:27 . 2010-12-09 17:27 181616 ----a-w- c:\windows\system32\BtWiaExt.dll
2010-12-09 17:27 . 2010-12-09 17:27 1799528 ----a-w- c:\windows\system32\BtWizard.dll
2010-12-09 17:27 . 2010-12-09 17:27 177496 ----a-w- c:\windows\system32\btsendto_ie.dll
2010-12-09 17:27 . 2010-12-09 17:27 83232 ----a-w- c:\windows\system32\btprn2k.dll
2010-12-09 17:27 . 2010-12-09 17:27 361808 ----a-w- c:\windows\system32\btosif_ol.dll
2010-12-09 17:27 . 2010-12-09 17:27 333144 ----a-w- c:\windows\system32\btosif_notes.dll
2010-12-09 17:27 . 2010-12-09 17:27 288088 ----a-w- c:\windows\system32\btsendto_office.dll
2010-12-09 17:27 . 2010-12-09 17:27 169304 ----a-w- c:\windows\system32\btsendto_wab.dll
2010-12-09 17:27 . 2010-12-09 17:27 165152 ----a-w- c:\windows\system32\btosif_olx.dll
2010-12-09 17:27 . 2010-12-09 17:27 157016 ----a-w- c:\windows\system32\btsendto_notes.dll
2010-12-09 17:27 . 2010-12-09 17:27 128288 ----a-w- c:\windows\system32\bthcrpui.dll
2010-12-09 17:27 . 2010-12-09 17:27 91504 ----a-w- c:\windows\system32\BtAudioHelper.dll
2010-12-09 17:27 . 2010-12-09 17:27 804176 ----a-w- c:\windows\system32\BTChooser.dll
2010-12-09 17:27 . 2010-12-09 17:27 58720 ----a-w- c:\windows\system32\btdev.dll
2010-12-09 17:27 . 2010-12-09 17:27 341328 ----a-w- c:\windows\system32\btsendto.dll
2010-12-09 17:27 . 2010-12-09 17:27 29984 ----a-w- c:\windows\system32\BtXpShell.dll
2010-12-09 17:27 . 2010-12-09 17:27 243024 ----a-w- c:\windows\system32\btosif.dll
2010-12-09 17:27 . 2010-12-09 17:27 173392 ----a-w- c:\windows\system32\btwpimif.dll
2010-12-09 17:27 . 2010-12-09 17:27 128360 ----a-w- c:\windows\system32\bt2k_ins.dll
2010-12-09 17:27 . 2010-12-09 17:27 128288 ----a-w- c:\windows\system32\btbigbmp.dll
2010-12-09 17:27 . 2010-12-09 17:27 111904 ----a-w- c:\windows\system32\BTXPPanel.dll
2010-12-09 17:27 . 2010-12-09 17:27 111904 ----a-w- c:\windows\system32\bthcrp.dll
2010-12-09 17:27 . 2010-12-09 17:27 99616 ----a-w- c:\windows\system32\btrezxp.dll
2010-12-09 17:27 . 2010-12-09 17:27 628000 ----a-w- c:\windows\system32\WidcommSdk.dll
2010-12-09 17:27 . 2010-12-09 17:27 570720 ----a-w- c:\windows\system32\btins.dll
2010-12-09 17:27 . 2010-12-09 17:27 54560 ----a-w- c:\windows\system32\BTNCopy.dll
2010-12-09 17:27 . 2010-12-09 17:27 529760 ----a-w- c:\windows\system32\wbtapi.dll
2010-12-09 17:27 . 2010-12-09 17:27 296272 ----a-w- c:\windows\system32\btbip.dll
2010-12-09 17:27 . 2010-12-09 17:27 1127760 ----a-w- c:\windows\system32\btrez.dll
2010-12-09 17:27 . 2010-12-09 17:27 30040 ----a-w- c:\windows\BtwIEProxy.exe
2010-12-09 17:20 . 2010-12-09 17:20 401467 ----a-w- c:\windows\system32\btcpl.cpl
2010-12-09 15:15 . 2004-08-04 01:07 718336 ----a-w- c:\windows\system32\ntdll.dll
2010-12-09 14:30 . 2004-08-04 01:07 33280 ----a-w- c:\windows\system32\csrsrv.dll
2010-12-09 13:42 . 2004-08-04 01:07 2148864 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-12-09 13:07 . 2004-08-03 22:59 2027008 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-12-07 11:14 . 2010-12-07 11:14 51200 ----a-w- c:\windows\system32\OpenCL.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-03-06_12.20.19 )))))))))))))))))))))))))))))))))))))))))
.
- 2004-08-04 01:07 . 2011-03-06 12:11 76460 c:\windows\system32\perfc009.dat
+ 2004-08-04 01:07 . 2011-03-06 13:33 76460 c:\windows\system32\perfc009.dat
+ 2004-08-04 01:07 . 2011-03-06 13:33 457854 c:\windows\system32\perfh009.dat
- 2004-08-04 01:07 . 2011-03-06 12:11 457854 c:\windows\system32\perfh009.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-02-23 15:04 122512 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TMCC"="c:\program files\T-Mobile Communication Center\TMCC.exe" [2010-06-21 770048]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-01-26 15026056]
"SmartRAM"="d:\ine\net\iobit_toolbox (1)\Tools\Suo10_SmartRAM.exe" [2010-09-26 817496]
"SpywareTerminatorUpdate"="c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe" [2011-03-05 3318784]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2010-03-12 19521056]
"NetWorx"="c:\program files\NetWorx\networx.exe" [2011-02-11 2771968]
"ZoneAlarm Client"="c:\program files\Zone Labs\ZoneAlarm\zlclient.exe" [2010-09-02 1043968]
"SpywareTerminator"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2011-03-05 2216960]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-12-9 636256]
Toddler Keys.lnk - c:\windows\Installer\{7339E7E7-FB6A-46EC-8303-D31E655EF617}\_154754de.exe [2011-2-19 766]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\ZoneLabs\\vsmon.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Sony Ericsson\\Update Service\\Update Service.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
"5985:TCP"= 5985:TCP:*:Disabled:Windows Remote Management
.
R0 SmartDefragDriver;SmartDefragDriver;c:\windows\system32\drivers\SmartDefragDriver.sys [27. 2. 2011 12:57 14776]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [25. 2. 2011 11:30 371544]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [19. 2. 2011 14:49 301528]
R1 networx;networx;c:\windows\system32\drivers\networx.sys [19. 2. 2011 14:39 51640]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [6. 3. 2011 0:10 142592]
R2 AODService;AODService;c:\program files\AMD\OverDrive\AODAssist.exe [1. 7. 2010 4:45 136616]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [19. 2. 2011 14:49 19544]
R2 FMMService;Mobility Manager Service;c:\progra~1\T-MOBI~1\drivers\113F4D~1\FMMSER~1.EXE [19. 2. 2011 14:33 40960]
R2 FOFDM DHCP Timing;FOFDM DHCP Timing;c:\progra~1\T-MOBI~1\FOFDMD~1.EXE [19. 2. 2011 14:33 81920]
R2 FOFDMUpgrade;FOFDM Upgrade;c:\progra~1\T-MOBI~1\FOFDMU~1.EXE [19. 2. 2011 14:33 188416]
R2 IMFservice;IMF Service;c:\program files\IObit\IObit Malware Fighter\IMFsrv.exe [26. 2. 2011 0:05 821592]
R3 AODDriver2;AODDriver2;c:\program files\AMD\OverDrive\i386\AODDriver2.sys [1. 7. 2010 4:38 36864]
R3 FlrnUSB;Leadtek USB Network Interface;c:\windows\system32\drivers\LtkUSB.sys [19. 2. 2011 14:33 42984]
R3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [19. 2. 2011 16:07 27632]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18. 3. 2010 13:16 130384]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [19. 2. 2011 14:22 1691480]
S3 ATICDSDr;ATICDSDr;\??\c:\docume~1\ADMINI~1\LOCALS~1\Temp\ATICDSDr.sys --> c:\docume~1\ADMINI~1\LOCALS~1\Temp\ATICDSDr.sys [?]
S3 FileMonitor;FileMonitor;c:\program files\IObit\IObit Malware Fighter\Drivers\wxp_x86\FileMonitor.sys [26. 2. 2011 0:05 239344]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [19. 2. 2011 16:07 13224]
S3 RegFilter;RegFilter;c:\program files\IObit\IObit Malware Fighter\Drivers\wxp_x86\RegFilter.sys [26. 2. 2011 0:05 41200]
S3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion;c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [22. 2. 2011 0:26 155344]
S3 UrlFilter;UrlFilter;c:\program files\IObit\IObit Malware Fighter\Drivers\wxp_x86\UrlFilter.sys [26. 2. 2011 0:05 24200]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [4. 8. 2004 2:07 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18. 3. 2010 13:16 753504]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WINRM REG_MULTI_SZ WINRM
.
Contents of the 'Scheduled Tasks' folder
.
2011-03-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-823518204-682003330-1801674531-1003Core.job
- c:\documents and settings\Mato\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-02-19 18:23]
.
2011-03-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-823518204-682003330-1801674531-1003UA.job
- c:\documents and settings\Mato\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-02-19 18:23]
.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
IE: Crawler Search - tbr:iemenu
IE: Send to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send To Bluetooth - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - c:\progra~1\Crawler\ctbr.dll
FF - ProfilePath - c:\documents and settings\Mato\Application Data\Mozilla\Firefox\Profiles\zkzwa64f.default\
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-06 14:37
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(680)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
Completion time: 2011-03-06 14:40:43
ComboFix-quarantined-files.txt 2011-03-06 13:40
.
Pre-Run: 22 531 878 912 bytes free
Post-Run: 22 505 365 504 bytes free
.
- - End Of File - - 974C8325FECB336E7490A0994B934D72

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Collect::
C:\~GLHTTP1.TMP

Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkaz ze skriptu.

[nitram47]

do navodu dopiste aj vypnutie Avastu (aj po restarte) pre ComboFix

a na stranke http://www.bleepingcomputer.com/pf.php pisu, aby som dal vediet, ze subor som odoslal na kontrolu. Subor, co vytvoril ComboFix.


ComboFix 11-03-05.02 - Mato . 03. 2011 20:34:44.3.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1250.421.1033.18.1790.1370 [GMT 1:00]
Running from: c:\documents and settings\Mato\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Mato\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: ZoneAlarm Firewall *Enabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}
.
file zipped: C:\~GLHTTP1.TMP
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\~GLHTTP1.TMP
.
.
((((((((((((((((((((((((( Files Created from 2011-02-06 to 2011-03-06 )))))))))))))))))))))))))))))))
.
.
2011-03-05 20:30 . 2011-03-05 20:31 -------- d-----w- C:\rsit
2011-02-26 19:25 . 2011-02-26 19:25 -------- d-----w- C:\ATI
2011-02-25 22:52 . 2011-02-25 22:52 -------- d-----r- C:\AHCache
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-01-26 23:05 . 2008-11-09 18:24 17252352 ----a-w- c:\windows\system32\atioglxx.dll
2011-01-26 22:52 . 2008-11-09 18:24 462848 ----a-w- c:\windows\system32\ATIDEMGX.dll
2011-01-26 22:41 . 2008-11-09 18:24 311296 ----a-w- c:\windows\system32\atiiiexx.dll
2011-01-26 22:32 . 2008-11-09 18:24 212992 ----a-w- c:\windows\system32\atipdlxx.dll
2011-01-26 22:31 . 2008-11-09 18:24 155648 ----a-w- c:\windows\system32\Oemdspif.dll
2011-01-26 22:31 . 2008-11-09 18:24 26112 ----a-w- c:\windows\system32\Ati2mdxx.exe
2011-01-26 22:31 . 2008-11-09 18:24 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2011-01-26 22:31 . 2008-11-09 18:24 188416 ----a-w- c:\windows\system32\ati2evxx.dll
2011-01-26 22:30 . 2008-11-09 18:24 638976 ----a-w- c:\windows\system32\ati2evxx.exe
2011-01-26 22:28 . 2008-11-09 18:24 53248 ----a-w- c:\windows\system32\ATIDDC.DLL
2011-01-26 22:23 . 2008-11-09 18:24 651264 ----a-w- c:\windows\system32\atikvmag.dll
2011-01-26 22:21 . 2008-11-09 18:24 196608 ----a-w- c:\windows\system32\atiadlxx.dll
2011-01-26 22:21 . 2008-11-09 18:24 483328 ----a-w- c:\windows\system32\atiok3x2.dll
2011-01-26 22:21 . 2008-11-09 18:24 17408 ----a-w- c:\windows\system32\atitvo32.dll
2011-01-26 22:12 . 2008-11-09 18:24 64512 ----a-w- c:\windows\system32\amdpcom32.dll
2011-01-26 22:12 . 2008-11-09 18:24 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2011-01-21 14:44 . 2004-08-04 01:07 439296 ----a-w- c:\windows\system32\shimgvw.dll
2011-01-07 14:09 . 2004-08-04 01:07 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-12-31 13:10 . 2004-08-04 01:07 1854976 ----a-w- c:\windows\system32\win32k.sys
2010-12-22 12:34 . 2004-08-04 01:07 301568 ----a-w- c:\windows\system32\kerberos.dll
2010-12-20 22:15 . 2004-08-04 01:07 667136 ----a-w- c:\windows\system32\wininet.dll
2010-12-20 22:15 . 2004-08-04 01:07 61952 ----a-w- c:\windows\system32\tdc.ocx
2010-12-20 22:15 . 2004-08-04 01:07 81920 ----a-w- c:\windows\system32\ieencode.dll
2010-12-20 17:26 . 2004-08-04 01:07 730112 ----a-w- c:\windows\system32\lsasrv.dll
2010-12-20 15:30 . 2004-08-04 01:07 369664 ----a-w- c:\windows\system32\html.iec
2010-12-09 17:27 . 2010-12-09 17:27 99688 ----a-w- c:\windows\system32\BtMmHook.dll
2010-12-09 17:27 . 2010-12-09 17:27 2860384 ----a-w- c:\windows\system32\btwicons.dll
2010-12-09 17:27 . 2010-12-09 17:27 972144 ----a-w- c:\windows\system32\BTNeighborhood.dll
2010-12-09 17:27 . 2010-12-09 17:27 439648 ----a-w- c:\windows\system32\btcss.dll
2010-12-09 17:27 . 2010-12-09 17:27 242976 ----a-w- c:\windows\system32\btwhidcs.dll
2010-12-09 17:27 . 2010-12-09 17:27 218464 ----a-w- c:\windows\system32\btsec.dll
2010-12-09 17:27 . 2010-12-09 17:27 181616 ----a-w- c:\windows\system32\BtWiaExt.dll
2010-12-09 17:27 . 2010-12-09 17:27 1799528 ----a-w- c:\windows\system32\BtWizard.dll
2010-12-09 17:27 . 2010-12-09 17:27 177496 ----a-w- c:\windows\system32\btsendto_ie.dll
2010-12-09 17:27 . 2010-12-09 17:27 83232 ----a-w- c:\windows\system32\btprn2k.dll
2010-12-09 17:27 . 2010-12-09 17:27 361808 ----a-w- c:\windows\system32\btosif_ol.dll
2010-12-09 17:27 . 2010-12-09 17:27 333144 ----a-w- c:\windows\system32\btosif_notes.dll
2010-12-09 17:27 . 2010-12-09 17:27 288088 ----a-w- c:\windows\system32\btsendto_office.dll
2010-12-09 17:27 . 2010-12-09 17:27 169304 ----a-w- c:\windows\system32\btsendto_wab.dll
2010-12-09 17:27 . 2010-12-09 17:27 165152 ----a-w- c:\windows\system32\btosif_olx.dll
2010-12-09 17:27 . 2010-12-09 17:27 157016 ----a-w- c:\windows\system32\btsendto_notes.dll
2010-12-09 17:27 . 2010-12-09 17:27 128288 ----a-w- c:\windows\system32\bthcrpui.dll
2010-12-09 17:27 . 2010-12-09 17:27 91504 ----a-w- c:\windows\system32\BtAudioHelper.dll
2010-12-09 17:27 . 2010-12-09 17:27 804176 ----a-w- c:\windows\system32\BTChooser.dll
2010-12-09 17:27 . 2010-12-09 17:27 58720 ----a-w- c:\windows\system32\btdev.dll
2010-12-09 17:27 . 2010-12-09 17:27 341328 ----a-w- c:\windows\system32\btsendto.dll
2010-12-09 17:27 . 2010-12-09 17:27 29984 ----a-w- c:\windows\system32\BtXpShell.dll
2010-12-09 17:27 . 2010-12-09 17:27 243024 ----a-w- c:\windows\system32\btosif.dll
2010-12-09 17:27 . 2010-12-09 17:27 173392 ----a-w- c:\windows\system32\btwpimif.dll
2010-12-09 17:27 . 2010-12-09 17:27 128360 ----a-w- c:\windows\system32\bt2k_ins.dll
2010-12-09 17:27 . 2010-12-09 17:27 128288 ----a-w- c:\windows\system32\btbigbmp.dll
2010-12-09 17:27 . 2010-12-09 17:27 111904 ----a-w- c:\windows\system32\BTXPPanel.dll
2010-12-09 17:27 . 2010-12-09 17:27 111904 ----a-w- c:\windows\system32\bthcrp.dll
2010-12-09 17:27 . 2010-12-09 17:27 99616 ----a-w- c:\windows\system32\btrezxp.dll
2010-12-09 17:27 . 2010-12-09 17:27 628000 ----a-w- c:\windows\system32\WidcommSdk.dll
2010-12-09 17:27 . 2010-12-09 17:27 570720 ----a-w- c:\windows\system32\btins.dll
2010-12-09 17:27 . 2010-12-09 17:27 54560 ----a-w- c:\windows\system32\BTNCopy.dll
2010-12-09 17:27 . 2010-12-09 17:27 529760 ----a-w- c:\windows\system32\wbtapi.dll
2010-12-09 17:27 . 2010-12-09 17:27 296272 ----a-w- c:\windows\system32\btbip.dll
2010-12-09 17:27 . 2010-12-09 17:27 1127760 ----a-w- c:\windows\system32\btrez.dll
2010-12-09 17:27 . 2010-12-09 17:27 30040 ----a-w- c:\windows\BtwIEProxy.exe
2010-12-09 17:20 . 2010-12-09 17:20 401467 ----a-w- c:\windows\system32\btcpl.cpl
2010-12-09 15:15 . 2004-08-04 01:07 718336 ----a-w- c:\windows\system32\ntdll.dll
2010-12-09 14:30 . 2004-08-04 01:07 33280 ----a-w- c:\windows\system32\csrsrv.dll
2010-12-09 13:42 . 2004-08-04 01:07 2148864 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-12-09 13:07 . 2004-08-03 22:59 2027008 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-12-07 11:14 . 2010-12-07 11:14 51200 ----a-w- c:\windows\system32\OpenCL.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-03-06_12.20.19 )))))))))))))))))))))))))))))))))))))))))
.
- 2004-08-04 01:07 . 2011-03-06 12:11 76460 c:\windows\system32\perfc009.dat
+ 2004-08-04 01:07 . 2011-03-06 19:37 76460 c:\windows\system32\perfc009.dat
+ 2004-08-04 01:07 . 2011-03-06 19:37 457854 c:\windows\system32\perfh009.dat
- 2004-08-04 01:07 . 2011-03-06 12:11 457854 c:\windows\system32\perfh009.dat
+ 2011-03-06 14:41 . 2011-02-04 16:34 37443528 c:\windows\system32\MRT.exe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-02-23 15:04 122512 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TMCC"="c:\program files\T-Mobile Communication Center\TMCC.exe" [2010-06-21 770048]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-01-26 15026056]
"SmartRAM"="d:\ine\net\iobit_toolbox (1)\Tools\Suo10_SmartRAM.exe" [2010-09-26 817496]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2010-03-12 19521056]
"NetWorx"="c:\program files\NetWorx\networx.exe" [2011-02-11 2771968]
"ZoneAlarm Client"="c:\program files\Zone Labs\ZoneAlarm\zlclient.exe" [2010-09-02 1043968]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-12-9 636256]
Toddler Keys.lnk - c:\windows\Installer\{7339E7E7-FB6A-46EC-8303-D31E655EF617}\_154754de.exe [2011-2-19 766]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\ZoneLabs\\vsmon.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Sony Ericsson\\Update Service\\Update Service.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
"5985:TCP"= 5985:TCP:*:Disabled:Windows Remote Management
.
R0 SmartDefragDriver;SmartDefragDriver;c:\windows\system32\drivers\SmartDefragDriver.sys [27. 2. 2011 12:57 14776]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [25. 2. 2011 11:30 371544]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [19. 2. 2011 14:49 301528]
R1 networx;networx;c:\windows\system32\drivers\networx.sys [19. 2. 2011 14:39 51640]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [6. 3. 2011 0:10 142592]
R2 AODService;AODService;c:\program files\AMD\OverDrive\AODAssist.exe [1. 7. 2010 4:45 136616]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [19. 2. 2011 14:49 19544]
R2 FMMService;Mobility Manager Service;c:\progra~1\T-MOBI~1\drivers\113F4D~1\FMMSER~1.EXE [19. 2. 2011 14:33 40960]
R2 FOFDM DHCP Timing;FOFDM DHCP Timing;c:\progra~1\T-MOBI~1\FOFDMD~1.EXE [19. 2. 2011 14:33 81920]
R2 FOFDMUpgrade;FOFDM Upgrade;c:\progra~1\T-MOBI~1\FOFDMU~1.EXE [19. 2. 2011 14:33 188416]
R2 IMFservice;IMF Service;c:\program files\IObit\IObit Malware Fighter\IMFsrv.exe [26. 2. 2011 0:05 821592]
R3 AODDriver2;AODDriver2;c:\program files\AMD\OverDrive\i386\AODDriver2.sys [1. 7. 2010 4:38 36864]
R3 FlrnUSB;Leadtek USB Network Interface;c:\windows\system32\drivers\LtkUSB.sys [19. 2. 2011 14:33 42984]
R3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [19. 2. 2011 16:07 27632]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18. 3. 2010 13:16 130384]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [19. 2. 2011 14:22 1691480]
S3 ATICDSDr;ATICDSDr;\??\c:\docume~1\ADMINI~1\LOCALS~1\Temp\ATICDSDr.sys --> c:\docume~1\ADMINI~1\LOCALS~1\Temp\ATICDSDr.sys [?]
S3 FileMonitor;FileMonitor;c:\program files\IObit\IObit Malware Fighter\Drivers\wxp_x86\FileMonitor.sys [26. 2. 2011 0:05 239344]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [19. 2. 2011 16:07 13224]
S3 RegFilter;RegFilter;c:\program files\IObit\IObit Malware Fighter\Drivers\wxp_x86\RegFilter.sys [26. 2. 2011 0:05 41200]
S3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion;c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [22. 2. 2011 0:26 155344]
S3 UrlFilter;UrlFilter;c:\program files\IObit\IObit Malware Fighter\Drivers\wxp_x86\UrlFilter.sys [26. 2. 2011 0:05 24200]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [4. 8. 2004 2:07 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18. 3. 2010 13:16 753504]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WINRM REG_MULTI_SZ WINRM
.
Contents of the 'Scheduled Tasks' folder
.
2011-03-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-823518204-682003330-1801674531-1003Core.job
- c:\documents and settings\Mato\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-02-19 18:23]
.
2011-03-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-823518204-682003330-1801674531-1003UA.job
- c:\documents and settings\Mato\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-02-19 18:23]
.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
IE: Crawler Search - tbr:iemenu
IE: Send to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send To Bluetooth - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - c:\progra~1\Crawler\ctbr.dll
FF - ProfilePath - c:\documents and settings\Mato\Application Data\Mozilla\Firefox\Profiles\zkzwa64f.default\
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-06 20:41
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(680)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
Completion time: 2011-03-06 20:44:11
ComboFix-quarantined-files.txt 2011-03-06 19:44
ComboFix2.txt 2011-03-06 13:40
.
Pre-Run: 22 487 101 440 bytes free
Post-Run: 22 468 956 160 bytes free
.
- - End Of File - - A1F70D7E3C17B08BDF25E45808A02F3F

[Rudy]

Smazáno, log již vypadá čistý.

do navodu dopiste aj vypnutie Avastu (aj po restarte) pre ComboFix....

I jiné antiviry (jejich rez štíty) je třeba vypnout. Něteré (např. AVG)¨, je nutné dočasně odinstalovat.

Nastala nějaká změna?

[nitram47]

zmenu uvidim casom, ako sa to bude chovat. zatial vdaka. bordel sa vymazal pretiahnutim toho suboru na Combo?

znova zaucinkoval Avast
Objekt: 195.34.110.163:135/tcp
Infekcia: DCOM Exploit
toto sa mi objavuje kazdy den

[Rudy]

Ano smazal. Skript spustí CF a vykoná to, co je v něm napsáno. Zatím nemáte zač!

[nitram47]

mozte odpovedat aj na ten moj edit? na googli som nasiel postup ako vypnut DCOM, ale taketo veci si radsej precitam v reci, ktorej 100% rozumiem.

[Rudy]

To je reakce rez štítu Avastu, který zablokoval přístup exploitu z uvedené IP adresy. Do PC by se tak němělo nic dostat.

[nitram47]

co som pochopil, su to nahodne utoky zvonka? takze v pc nie je nic, co si vyzaduje z netu stahovat haved. toto bol tiez z dovodov, preco som sem napisal tak este raz vdaka.

[Rudy]

Ano, tak. V PC jste měl jen 1 blíže nespecifikovaný nelegitimní soubor, který jsme pomocí skriptu smazali. Nemáte zač!