VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o kontrolu

https://forum.viry.cz:443/viewtopic.php?t=115746

Stránka 1 z 2

Prosím o kontrolu

Napsal: 29 zář 2011 14:33
od casualties
Logfile of random's system information tool 1.09 (written by random/random)
Run by peter1 at 2011-09-29 15:32:29
Systém Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 37 GB (73%) free of 51 GB
Total RAM: 1023 MB (33% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:32:40, on 29.9.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS1\System32\smss.exe
C:\WINDOWS1\system32\winlogon.exe
C:\WINDOWS1\system32\services.exe
C:\WINDOWS1\system32\lsass.exe
C:\WINDOWS1\system32\svchost.exe
C:\WINDOWS1\System32\svchost.exe
C:\WINDOWS1\system32\svchost.exe
C:\WINDOWS1\Explorer.EXE
C:\WINDOWS1\system32\spoolsv.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS1\system32\rundll32.exe
C:\Program Files\MSI\BToes Bluetooth Software\bin\btwdins.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\WINDOWS1\system32\nvsvc32.exe
C:\WINDOWS1\system32\svchost.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Winamp\winamp.exe
C:\Documents and Settings\peter1\Desktop\RSIT.exe
C:\Program Files\trend micro\peter1.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: FreeOnlineRadioPlayerRecorder Toolbar - {f999a48b-1950-4d81-9971-79018f807b4b} - C:\Program Files\FreeOnlineRadioPlayerRecorder\prxtbFree.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll
O2 - BHO: FreeOnlineRadioPlayerRecorder - {f999a48b-1950-4d81-9971-79018f807b4b} - C:\Program Files\FreeOnlineRadioPlayerRecorder\prxtbFree.dll
O3 - Toolbar: FreeOnlineRadioPlayerRecorder Toolbar - {f999a48b-1950-4d81-9971-79018f807b4b} - C:\Program Files\FreeOnlineRadioPlayerRecorder\prxtbFree.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll
O4 - HKLM\..\Run: [WinSys2] C:\WINDOWS1\system32\winsys2.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS1\system32\NvCpl.dll,NvStartup
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS1\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS1\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-823518204-790525478-725345543-1005\..\Run: [CTFMON.EXE] C:\WINDOWS1\system32\CTFMON.EXE (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS1\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS1\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\MSI\BToes Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\MSI\BToes Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\MSI\BToes Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS1\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS1\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDow ... rtScan.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS1\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS1\system32\browseui.dll
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\MSI\BToes Bluetooth Software\bin\btwdins.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS1\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

--
End of file - 6671 bytes

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\peter1\Application Data\Mozilla\Firefox\Profiles\3b6bt19t.default

prefs.js - "browser.startup.homepage" - "www.google.sk"
prefs.js - "keyword.URL" - "http://search.icq.com/search/afe_result ... r=1.2.9&q="

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS1\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
NPOFF12.DLL
nppdf32.dll

C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

C:\Documents and Settings\peter1\Application Data\Mozilla\Firefox\Profiles\3b6bt19t.default\extensions\
{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
{f999a48b-1950-4d81-9971-79018f807b4b}

C:\Documents and Settings\peter1\Application Data\Mozilla\Firefox\Profiles\3b6bt19t.default\searchplugins\
icqplugin.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - C:\Program Files\ConduitEngine\prxConduitEngine.dll [2011-01-17 175912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f999a48b-1950-4d81-9971-79018f807b4b}]
FreeOnlineRadioPlayerRecorder Toolbar - C:\Program Files\FreeOnlineRadioPlayerRecorder\prxtbFree.dll [2011-01-17 175912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{f999a48b-1950-4d81-9971-79018f807b4b} - FreeOnlineRadioPlayerRecorder Toolbar - C:\Program Files\FreeOnlineRadioPlayerRecorder\prxtbFree.dll [2011-01-17 175912]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files\ConduitEngine\prxConduitEngine.dll [2011-01-17 175912]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"WinSys2"=C:\WINDOWS1\system32\winsys2.exe [2009-10-12 208896]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2011-09-06 3076144]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"NvCplDaemon"=C:\WINDOWS1\system32\NvCpl.dll [2011-08-03 13892200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]
C:\Program Files\Ask.com\Updater\Updater.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationAgent]
bthprops.cpl,,BluetoothAuthenticationAgent []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
C:\WINDOWS1\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1]
C:\WINDOWS1\IME\imjp8_1\IMJPMIG.EXE [2004-08-04 208952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSPY2002]
C:\WINDOWS1\system32\IME\PINTLGNT\ImScInst.exe [2004-08-04 59392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nTrayFw]
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe [2005-04-29 266240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS1\system32\NvCpl.dll [2011-08-03 13892200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
NvMCTray.dll,NvTaskbarInit -login []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /install []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002A]
C:\WINDOWS1\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-04 455168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002ASync]
C:\WINDOWS1\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-04 455168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSTray]
C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe [2007-12-14 132624]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
C:\WINDOWS1\SOUNDMAN.EXE [2005-04-15 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [2011-07-11 74752]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS1^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\MSI\BTOESB~1\BTTray.exe [2005-05-31 577597]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS1\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe"="C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\WINDOWS1\system32\muzapp.exe"="C:\WINDOWS1\system32\muzapp.exe:*:Enabled:MUZ AOD APP player"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"midi"=wdmaud.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS1\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS1\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer6"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll

======List of files/folders created in the last 1 month======

2011-09-29 15:32:30 ----D---- C:\Program Files\trend micro
2011-09-29 15:32:29 ----D---- C:\rsit
2011-09-28 18:13:48 ----D---- C:\Program Files\Conduit
2011-09-28 18:13:41 ----D---- C:\Program Files\ConduitEngine
2011-09-28 18:13:38 ----D---- C:\Program Files\FreeOnlineRadioPlayerRecorder
2011-09-28 18:13:32 ----D---- C:\Documents and Settings\peter1\Application Data\All Free Video Converter
2011-09-28 18:13:20 ----A---- C:\WINDOWS1\system32\NCTWMAFile2.dll
2011-09-28 18:13:20 ----A---- C:\WINDOWS1\system32\NCTAudioRecord2.dll
2011-09-28 18:13:20 ----A---- C:\WINDOWS1\system32\NCTAudioPlayer2.dll
2011-09-28 18:13:20 ----A---- C:\WINDOWS1\system32\NCTAudioInformation2.dll
2011-09-28 18:13:20 ----A---- C:\WINDOWS1\system32\NCTAudioFile2.dll
2011-09-28 18:13:17 ----D---- C:\Program Files\All Free Video Converter
2011-09-28 18:07:03 ----A---- C:\WINDOWS1\system32\3ivx.dll
2011-09-27 18:20:02 ----A---- C:\WINDOWS1\system32\unrar.dll
2011-09-27 18:20:01 ----A---- C:\WINDOWS1\avisplitter.ini
2011-09-27 18:20:00 ----A---- C:\WINDOWS1\system32\xvidvfw.dll
2011-09-27 18:20:00 ----A---- C:\WINDOWS1\system32\xvidcore.dll
2011-09-27 18:20:00 ----A---- C:\WINDOWS1\system32\ff_vfw.dll
2011-09-27 18:16:22 ----A---- C:\WINDOWS1\FISHUI.INI
2011-09-26 17:09:00 ----D---- C:\Documents and Settings\All Users.WINDOWS1\Application Data\ESET
2011-09-24 15:34:48 ----A---- C:\WINDOWS1\system32\nvUnsupRes.dat
2011-09-24 14:25:47 ----D---- C:\WINDOWS1\SxsCaPendDel
2011-09-24 10:01:48 ----A---- C:\WINDOWS1\system32\muweb.dll
2011-09-24 10:01:48 ----A---- C:\WINDOWS1\system32\mucltui.dll
2011-09-24 09:57:36 ----D---- C:\Program Files\Microsoft Works
2011-09-24 09:57:30 ----D---- C:\Program Files\MSBuild
2011-09-24 09:54:17 ----D---- C:\WINDOWS1\SHELLNEW
2011-09-24 09:54:01 ----D---- C:\Documents and Settings\All Users.WINDOWS1\Application Data\Microsoft Help
2011-09-24 09:53:27 ----RHD---- C:\MSOCache
2011-09-23 17:50:36 ----D---- C:\Program Files\MSXML 4.0
2011-09-22 17:41:00 ----D---- C:\Program Files\MyFree Codec
2011-09-22 16:55:13 ----D---- C:\Program Files\Adobe
2011-09-22 16:54:43 ----D---- C:\Documents and Settings\All Users.WINDOWS1\Application Data\Adobe
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\vorbisenc.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\vorbis.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\unicows.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\TG_DUMP0708.DLL
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\tg_dump.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\OggDS.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\Ogg.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\muzwmts.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\muzapp.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\muzaf1.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\msxml4r.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\msxml4a.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\msvcr71.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\msvcr70.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\msvcp71.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\MSLUR71.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\MSLUP71.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\MFC71u.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\MFC71LU.DLL
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\MFC71.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\mfc70.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\MaDRM.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\atl71.dll
2011-09-22 16:45:43 ----A---- C:\WINDOWS1\system32\muzapp.exe
2011-09-22 16:45:41 ----N---- C:\WINDOWS1\system32\MAMACExtract.dll
2011-09-22 16:45:31 ----D---- C:\Program Files\Samsung
2011-09-22 16:45:31 ----D---- C:\Program Files\MarkAny
2011-09-22 16:45:31 ----D---- C:\Documents and Settings\peter1\Application Data\DataCast
2011-09-20 19:34:51 ----A---- C:\WINDOWS1\RtlRack.ini
2011-09-16 19:01:44 ----A---- C:\WINDOWS1\system32\wshirda.dll
2011-09-16 19:01:44 ----A---- C:\WINDOWS1\system32\irmon.dll
2011-09-16 19:01:44 ----A---- C:\WINDOWS1\system32\irftp.exe
2011-09-16 18:59:52 ----D---- C:\Program Files\MSI
2011-09-15 21:53:28 ----D---- C:\Documents and Settings\peter1\Application Data\Winamp
2011-09-14 19:40:37 ----D---- C:\Documents and Settings\peter1\Application Data\OpenCandy
2011-09-14 19:34:05 ----A---- C:\WINDOWS1\system32\ptpusb.dll
2011-09-14 19:34:05 ----A---- C:\WINDOWS1\system32\drivers\usbscan.sys
2011-09-14 19:34:04 ----A---- C:\WINDOWS1\system32\ptpusd.dll
2011-09-14 17:13:49 ----D---- C:\Documents and Settings\peter1\Application Data\Nero
2011-09-14 17:13:15 ----D---- C:\WINDOWS
2011-09-14 17:13:12 ----D---- C:\Program Files\Nero
2011-09-13 22:21:16 ----HDC---- C:\WINDOWS1\$NtUninstallKB2616676$
2011-09-13 22:20:06 ----HDC---- C:\WINDOWS1\$NtUninstallKB2570947$
2011-09-11 19:26:29 ----D---- C:\Documents and Settings\All Users.WINDOWS1\Application Data\ICQ
2011-09-11 10:18:47 ----D---- C:\Program Files\The KMPlayer
2011-09-11 10:04:43 ----A---- C:\WINDOWS1\system32\drivers\USBSTOR.SYS
2011-09-10 13:03:54 ----A---- C:\WINDOWS1\system32\nvhdap32.dll
2011-09-10 13:03:54 ----A---- C:\WINDOWS1\system32\nvhdagenco322040.dll
2011-09-10 13:03:54 ----A---- C:\WINDOWS1\system32\drivers\nvhda32.sys
2011-09-10 13:03:51 ----A---- C:\WINDOWS1\system32\nvgenco32.dll
2011-09-10 13:03:51 ----A---- C:\WINDOWS1\system32\nvdispco32.dll
2011-09-10 11:05:57 ----A---- C:\WINDOWS1\system32\chtbrkr.dll
2011-09-10 11:05:57 ----A---- C:\WINDOWS1\system32\chsbrkr.dll
2011-09-10 11:05:56 ----A---- C:\WINDOWS1\system32\msir3jp.dll
2011-09-10 11:05:56 ----A---- C:\WINDOWS1\system32\korwbrkr.dll
2011-09-10 11:05:43 ----A---- C:\WINDOWS1\system32\kbd101a.dll
2011-09-10 11:05:34 ----A---- C:\WINDOWS1\system32\kbdnecNT.dll
2011-09-10 11:05:34 ----A---- C:\WINDOWS1\system32\kbdnecAT.dll
2011-09-10 11:05:34 ----A---- C:\WINDOWS1\system32\kbdnec95.dll
2011-09-10 11:05:13 ----A---- C:\WINDOWS1\system32\c_is2022.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdintel.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdintam.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdinpun.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdinmar.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdinkan.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdinhin.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdinguj.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdindev.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdgeo.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdarmw.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdarme.dll
2011-09-10 11:05:11 ----A---- C:\WINDOWS1\system32\Thawbrkr.dll
2011-09-10 11:05:11 ----A---- C:\WINDOWS1\system32\c_iscii.dll
2011-09-10 11:05:10 ----RA---- C:\WINDOWS1\system32\kbdvntc.dll
2011-09-10 11:05:09 ----RA---- C:\WINDOWS1\system32\kbdurdu.dll
2011-09-10 11:05:09 ----RA---- C:\WINDOWS1\system32\kbdsyr2.dll
2011-09-10 11:05:09 ----RA---- C:\WINDOWS1\system32\kbdsyr1.dll
2011-09-10 11:05:09 ----RA---- C:\WINDOWS1\system32\kbdfa.dll
2011-09-10 11:05:09 ----RA---- C:\WINDOWS1\system32\kbddiv2.dll
2011-09-10 11:05:09 ----RA---- C:\WINDOWS1\system32\kbddiv1.dll
2011-09-10 11:05:09 ----RA---- C:\WINDOWS1\system32\kbda3.dll
2011-09-10 11:05:09 ----RA---- C:\WINDOWS1\system32\kbda2.dll
2011-09-10 11:05:09 ----RA---- C:\WINDOWS1\system32\kbda1.dll
2011-09-10 11:05:09 ----A---- C:\WINDOWS1\system32\kbdusa.dll
2011-09-10 11:05:06 ----RA---- C:\WINDOWS1\system32\kbdheb.dll
2011-09-10 11:05:03 ----RA---- C:\WINDOWS1\system32\kbdth3.dll
2011-09-10 11:05:03 ----RA---- C:\WINDOWS1\system32\kbdth2.dll
2011-09-10 11:05:03 ----RA---- C:\WINDOWS1\system32\kbdth1.dll
2011-09-10 11:05:03 ----RA---- C:\WINDOWS1\system32\kbdth0.dll
2011-09-10 11:05:03 ----A---- C:\WINDOWS1\system32\ftlx041e.dll
2011-09-10 11:01:05 ----A---- C:\WINDOWS1\system32\kbdkor.dll
2011-09-10 11:01:05 ----A---- C:\WINDOWS1\system32\kbdjpn.dll
2011-09-10 11:01:05 ----A---- C:\WINDOWS1\system32\kbd103.dll
2011-09-10 11:01:05 ----A---- C:\WINDOWS1\system32\kbd101c.dll
2011-09-10 11:01:02 ----A---- C:\WINDOWS1\system32\kbd106.dll
2011-09-10 11:01:02 ----A---- C:\WINDOWS1\system32\kbd101b.dll
2011-09-10 10:58:38 ----HDC---- C:\WINDOWS1\$NtUninstallKB954154_WM11$
2011-09-10 10:58:33 ----HDC---- C:\WINDOWS1\$NtUninstallKB929399$
2011-09-10 10:58:05 ----HDC---- C:\WINDOWS1\$NtUninstallKB939683$
2011-09-10 10:54:03 ----N---- C:\WINDOWS1\system32\spmsg.dll
2011-09-10 10:54:01 ----HDC---- C:\WINDOWS1\$NtUninstallMSCompPackV1$
2011-09-10 10:53:50 ----D---- C:\Program Files\Windows Media Connect 2
2011-09-10 10:53:44 ----HDC---- C:\WINDOWS1\$NtUninstallwmp11$
2011-09-10 10:53:14 ----HDC---- C:\WINDOWS1\$NtUninstallWMFDist11$
2011-09-10 10:52:58 ----D---- C:\WINDOWS1\system32\LogFiles
2011-09-10 10:52:58 ----D---- C:\WINDOWS1\system32\drivers\UMDF
2011-09-10 10:52:56 ----HDC---- C:\WINDOWS1\$NtUninstallWudf01000$
2011-09-10 10:43:54 ----HDC---- C:\WINDOWS1\$NtUninstallKB941569$
2011-09-10 10:32:05 ----A---- C:\WINDOWS1\system32\D3DX9_42.dll
2011-09-10 10:32:04 ----A---- C:\WINDOWS1\system32\d3dx9_31.dll
2011-09-10 10:32:03 ----D---- C:\WINDOWS1\Logs
2011-09-10 10:31:37 ----D---- C:\WINDOWS1\RegisteredPackages
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\vxblock.dll
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxwma.dll
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxwave.dll
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxsfs.dll
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxmas.dll
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxinsi64.exe
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxinsa64.exe
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxhpinst.exe
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxdrv.dll
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxcpyi64.exe
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxcpya64.exe
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxafs.dll
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\px.dll
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\drivers\PxHelp20.sys
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\drivers\cdralw2k.sys
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\drivers\cdr4_xp.sys
2011-09-10 10:30:54 ----D---- C:\Program Files\Winamp
2011-09-10 10:26:48 ----D---- C:\Program Files\totalcmd
2011-09-10 10:26:48 ----A---- C:\WINDOWS1\UC.PIF
2011-09-10 10:26:48 ----A---- C:\WINDOWS1\RAR.PIF
2011-09-10 10:26:48 ----A---- C:\WINDOWS1\PKZIP.PIF
2011-09-10 10:26:48 ----A---- C:\WINDOWS1\PKUNZIP.PIF
2011-09-10 10:26:48 ----A---- C:\WINDOWS1\NOCLOSE.PIF
2011-09-10 10:26:48 ----A---- C:\WINDOWS1\LHA.PIF
2011-09-10 10:26:48 ----A---- C:\WINDOWS1\ARJ.PIF
2011-09-10 10:24:37 ----D---- C:\Program Files\WinRAR
2011-09-10 09:55:39 ----D---- C:\WINDOWS1\system32\1051
2011-09-10 00:39:29 ----A---- C:\WINDOWS1\FCRCfg.ini
2011-09-10 00:29:52 ----D---- C:\Documents and Settings\peter1\Application Data\AnvSoft
2011-09-09 18:41:15 ----D---- C:\Documents and Settings\All Users.WINDOWS1\Application Data\NVIDIA
2011-09-09 18:40:58 ----A---- C:\WINDOWS1\system32\easyupdatusapiu.dll
2011-09-09 18:06:24 ----HDC---- C:\WINDOWS1\$NtUninstallKB2607712$
2011-09-09 14:44:44 ----HDC---- C:\WINDOWS1\$NtUninstallKB2570791$
2011-09-09 14:44:40 ----HDC---- C:\WINDOWS1\$NtUninstallKB2387149$
2011-09-09 14:44:34 ----HDC---- C:\WINDOWS1\$NtUninstallKB2479943$
2011-09-09 14:44:29 ----HDC---- C:\WINDOWS1\$NtUninstallKB2567680$
2011-09-09 14:44:25 ----HDC---- C:\WINDOWS1\$NtUninstallKB2478971$
2011-09-09 14:44:20 ----HDC---- C:\WINDOWS1\$NtUninstallKB2345886$
2011-09-09 14:44:15 ----HDC---- C:\WINDOWS1\$NtUninstallKB2536276-v2$
2011-09-09 14:44:09 ----HDC---- C:\WINDOWS1\$NtUninstallKB970430$
2011-09-09 14:44:05 ----HDC---- C:\WINDOWS1\$NtUninstallKB2296011$
2011-09-09 14:44:00 ----HDC---- C:\WINDOWS1\$NtUninstallKB2115168$
2011-09-09 14:43:56 ----HDC---- C:\WINDOWS1\$NtUninstallKB975558_WM8$
2011-09-09 14:43:52 ----HDC---- C:\WINDOWS1\$NtUninstallKB2378111_WM9$
2011-09-09 14:43:48 ----HDC---- C:\WINDOWS1\$NtUninstallKB951978$
2011-09-09 14:43:43 ----HDC---- C:\WINDOWS1\$NtUninstallKB2443105$
2011-09-09 14:43:37 ----HDC---- C:\WINDOWS1\$NtUninstallKB2481109$
2011-09-09 14:43:33 ----HDC---- C:\WINDOWS1\$NtUninstallKB2485663$
2011-09-09 14:43:29 ----HDC---- C:\WINDOWS1\$NtUninstallKB2440591$
2011-09-09 14:43:24 ----HDC---- C:\WINDOWS1\$NtUninstallKB982132$
2011-09-09 14:43:18 ----HDC---- C:\WINDOWS1\$NtUninstallKB2507938$
2011-09-09 14:43:13 ----HDC---- C:\WINDOWS1\$NtUninstallKB956744$
2011-09-09 14:43:08 ----HDC---- C:\WINDOWS1\$NtUninstallKB2476490$
2011-09-09 14:43:04 ----HDC---- C:\WINDOWS1\$NtUninstallKB2503665$
2011-09-09 14:43:00 ----HDC---- C:\WINDOWS1\$NtUninstallKB2347290$
2011-09-09 14:42:52 ----HDC---- C:\WINDOWS1\$NtUninstallKB2483185$
2011-09-09 14:42:48 ----HDC---- C:\WINDOWS1\$NtUninstallKB2079403$
2011-09-09 14:42:43 ----HDC---- C:\WINDOWS1\$NtUninstallKB2524375$
2011-09-09 14:42:39 ----HDC---- C:\WINDOWS1\$NtUninstallKB979687$
2011-09-09 14:42:34 ----HDC---- C:\WINDOWS1\$NtUninstallKB2570222$
2011-09-09 14:42:29 ----HDC---- C:\WINDOWS1\$NtUninstallKB2535512$
2011-09-09 14:42:26 ----HDC---- C:\WINDOWS1\$NtUninstallKB2412687$
2011-09-09 14:42:22 ----HDC---- C:\WINDOWS1\$NtUninstallKB2508272$
2011-09-09 14:42:18 ----HDC---- C:\WINDOWS1\$NtUninstallKB980436$
2011-09-09 14:42:14 ----HDC---- C:\WINDOWS1\$NtUninstallKB981322$
2011-09-09 14:42:07 ----HDC---- C:\WINDOWS1\$NtUninstallKB2507618$
2011-09-09 14:42:02 ----HDC---- C:\WINDOWS1\$NtUninstallKB973540_WM9$
2011-09-09 14:41:56 ----HDC---- C:\WINDOWS1\$NtUninstallKB2419632$
2011-09-09 14:41:52 ----HDC---- C:\WINDOWS1\$NtUninstallKB2508429$
2011-09-09 14:41:46 ----HDC---- C:\WINDOWS1\$NtUninstallKB971029$
2011-09-09 14:41:41 ----HDC---- C:\WINDOWS1\$NtUninstallKB2506212$
2011-09-09 14:41:38 ----HDC---- C:\WINDOWS1\$NtUninstallKB971737$
2011-09-09 14:41:30 ----HDC---- C:\WINDOWS1\$NtUninstallKB981997$
2011-09-09 14:41:26 ----HDC---- C:\WINDOWS1\$NtUninstallKB2544893$
2011-09-09 14:41:20 ----HDC---- C:\WINDOWS1\$NtUninstallKB2509553$
2011-09-09 14:41:12 ----HDC---- C:\WINDOWS1\$NtUninstallKB982665$
2011-09-09 14:41:08 ----HDC---- C:\WINDOWS1\$NtUninstallKB2541763$
2011-09-09 14:40:59 ----HDC---- C:\WINDOWS1\$NtUninstallKB2555917$
2011-09-09 14:40:55 ----HDC---- C:\WINDOWS1\$NtUninstallKB2478960$
2011-09-09 14:40:50 ----HDC---- C:\WINDOWS1\$NtUninstallKB2393802$
2011-09-09 14:40:29 ----HDC---- C:\WINDOWS1\$NtUninstallKB2566454$
2011-09-09 14:40:25 ----HDC---- C:\WINDOWS1\$NtUninstallKB2562937$
2011-09-09 14:40:21 ----HDC---- C:\WINDOWS1\$NtUninstallKB2423089$
2011-09-09 14:40:12 ----HDC---- C:\WINDOWS1\$NtUninstallKB2360937$
2011-09-09 14:32:51 ----D---- C:\WINDOWS1\Prefetch
2011-09-09 14:29:58 ----HDC---- C:\WINDOWS1\$NtUninstallKB980232$
2011-09-09 14:29:53 ----HDC---- C:\WINDOWS1\$NtUninstallKB980218$
2011-09-09 14:29:45 ----HDC---- C:\WINDOWS1\$NtUninstallKB979683$
2011-09-09 14:29:39 ----HDC---- C:\WINDOWS1\$NtUninstallKB979559$
2011-09-09 14:29:33 ----HDC---- C:\WINDOWS1\$NtUninstallKB979482$
2011-09-09 14:29:28 ----HDC---- C:\WINDOWS1\$NtUninstallKB979309$
2011-09-09 14:29:23 ----HDC---- C:\WINDOWS1\$NtUninstallKB978706$
2011-09-09 14:29:19 ----HDC---- C:\WINDOWS1\$NtUninstallKB978601$
2011-09-09 14:29:14 ----HDC---- C:\WINDOWS1\$NtUninstallKB978542$
2011-09-09 14:29:09 ----HDC---- C:\WINDOWS1\$NtUninstallKB978338$
2011-09-09 14:29:05 ----HDC---- C:\WINDOWS1\$NtUninstallKB978037$
2011-09-09 14:29:00 ----HDC---- C:\WINDOWS1\$NtUninstallKB977914$
2011-09-09 14:28:54 ----HDC---- C:\WINDOWS1\$NtUninstallKB975713$
2011-09-09 14:28:49 ----HDC---- C:\WINDOWS1\$NtUninstallKB975562$
2011-09-09 14:28:44 ----HDC---- C:\WINDOWS1\$NtUninstallKB975561$
2011-09-09 14:28:39 ----HDC---- C:\WINDOWS1\$NtUninstallKB975560$
2011-09-09 14:28:34 ----HDC---- C:\WINDOWS1\$NtUninstallKB975467$
2011-09-09 14:28:29 ----HDC---- C:\WINDOWS1\$NtUninstallKB975025$
2011-09-09 14:28:24 ----HDC---- C:\WINDOWS1\$NtUninstallKB974571$
2011-09-09 14:28:19 ----HDC---- C:\WINDOWS1\$NtUninstallKB974392$
2011-09-09 14:28:14 ----HDC---- C:\WINDOWS1\$NtUninstallKB974318$
2011-09-09 14:28:10 ----HDC---- C:\WINDOWS1\$NtUninstallKB974112$
2011-09-09 14:28:04 ----HDC---- C:\WINDOWS1\$NtUninstallKB973869$
2011-09-09 14:27:57 ----HDC---- C:\WINDOWS1\$NtUninstallKB973815$
2011-09-09 14:27:51 ----HDC---- C:\WINDOWS1\$NtUninstallKB973687$
2011-09-09 14:27:44 ----HDC---- C:\WINDOWS1\$NtUninstallKB973507$
2011-09-09 14:27:38 ----HDC---- C:\WINDOWS1\$NtUninstallKB972270$
2011-09-09 14:27:32 ----HDC---- C:\WINDOWS1\$NtUninstallKB971657$
2011-09-09 14:27:26 ----HDC---- C:\WINDOWS1\$NtUninstallKB971468$
2011-09-09 14:27:20 ----HDC---- C:\WINDOWS1\$NtUninstallKB970238$
2011-09-09 14:27:15 ----HDC---- C:\WINDOWS1\$NtUninstallKB969059$
2011-09-09 14:27:09 ----HDC---- C:\WINDOWS1\$NtUninstallKB968389$
2011-09-09 14:27:02 ----HDC---- C:\WINDOWS1\$NtUninstallKB967715$
2011-09-09 14:26:55 ----HDC---- C:\WINDOWS1\$NtUninstallKB961501$
2011-09-09 14:26:47 ----HDC---- C:\WINDOWS1\$NtUninstallKB960859$
2011-09-09 14:26:42 ----HDC---- C:\WINDOWS1\$NtUninstallKB960803$
2011-09-09 14:26:37 ----HDC---- C:\WINDOWS1\$NtUninstallKB960225$
2011-09-09 14:26:32 ----HDC---- C:\WINDOWS1\$NtUninstallKB959426$
2011-09-09 14:26:27 ----HDC---- C:\WINDOWS1\$NtUninstallKB958644$
2011-09-09 14:26:22 ----HDC---- C:\WINDOWS1\$NtUninstallKB956844$
2011-09-09 14:26:18 ----HDC---- C:\WINDOWS1\$NtUninstallKB956803$
2011-09-09 14:26:13 ----HDC---- C:\WINDOWS1\$NtUninstallKB956802$
2011-09-09 14:26:05 ----HDC---- C:\WINDOWS1\$NtUninstallKB956572$
2011-09-09 14:26:00 ----HDC---- C:\WINDOWS1\$NtUninstallKB955759$
2011-09-09 14:25:55 ----HDC---- C:\WINDOWS1\$NtUninstallKB973687_1$
2011-09-09 14:25:50 ----HDC---- C:\WINDOWS1\$NtUninstallKB955069$
2011-09-09 14:25:45 ----HDC---- C:\WINDOWS1\$NtUninstallKB952954$
2011-09-09 14:25:40 ----HDC---- C:\WINDOWS1\$NtUninstallKB952287$
2011-09-09 14:25:35 ----HDC---- C:\WINDOWS1\$NtUninstallKB952004$
2011-09-09 14:25:30 ----HDC---- C:\WINDOWS1\$NtUninstallKB951748$
2011-09-09 14:25:25 ----HDC---- C:\WINDOWS1\$NtUninstallKB951376-v2$
2011-09-09 14:25:21 ----HDC---- C:\WINDOWS1\$NtUninstallKB950974$
2011-09-09 14:25:16 ----HDC---- C:\WINDOWS1\$NtUninstallKB950762$
2011-09-09 14:25:11 ----HDC---- C:\WINDOWS1\$NtUninstallKB946648$
2011-09-09 14:25:06 ----HDC---- C:\WINDOWS1\$NtUninstallKB923561$
2011-09-09 14:25:00 ----HDC---- C:\WINDOWS1\$NtUninstallKB2229593$
2011-09-09 14:22:47 ----D---- C:\WINDOWS1\system32\scripting
2011-09-09 14:22:46 ----D---- C:\WINDOWS1\system32\en
2011-09-09 14:22:46 ----D---- C:\WINDOWS1\system32\bits
2011-09-09 14:22:46 ----D---- C:\WINDOWS1\l2schemas
2011-09-09 14:20:04 ----D---- C:\WINDOWS1\network diagnostic
2011-09-09 14:17:42 ----HDC---- C:\WINDOWS1\$NtServicePackUninstall$
2011-09-09 14:17:27 ----D---- C:\WINDOWS1\EHome
2011-09-09 14:09:17 ----N---- C:\WINDOWS1\system32\drivers\watv10nt.sys
2011-09-09 14:09:17 ----N---- C:\WINDOWS1\system32\drivers\watv06nt.sys
2011-09-09 14:09:17 ----N---- C:\WINDOWS1\system32\drivers\wadv11nt.sys
2011-09-09 14:09:17 ----N---- C:\WINDOWS1\system32\drivers\wadv09nt.sys
2011-09-09 14:09:17 ----N---- C:\WINDOWS1\system32\drivers\wadv08nt.sys
2011-09-09 14:09:17 ----N---- C:\WINDOWS1\system32\drivers\wadv07nt.sys
2011-09-09 14:09:14 ----N---- C:\WINDOWS1\system32\drivers\slwdmsup.sys
2011-09-09 14:09:14 ----N---- C:\WINDOWS1\system32\drivers\slnthal.sys
2011-09-09 14:09:14 ----N---- C:\WINDOWS1\system32\drivers\slntamr.sys
2011-09-09 14:09:13 ----N---- C:\WINDOWS1\system32\drivers\slnt7554.sys
2011-09-09 14:09:13 ----N---- C:\WINDOWS1\system32\drivers\s3gnbm.sys
2011-09-09 14:09:12 ----N---- C:\WINDOWS1\system32\drivers\recagent.sys
2011-09-09 14:09:11 ----N---- C:\WINDOWS1\system32\drivers\ntmtlfax.sys
2011-09-09 14:09:10 ----N---- C:\WINDOWS1\system32\drivers\mtxparhm.sys
2011-09-09 14:09:10 ----N---- C:\WINDOWS1\system32\drivers\mtlstrm.sys
2011-09-09 14:09:10 ----N---- C:\WINDOWS1\system32\drivers\mtlmnt5.sys
2011-09-09 14:09:06 ----N---- C:\WINDOWS1\system32\drivers\mdmxsdk.sys
2011-09-09 14:09:03 ----N---- C:\WINDOWS1\system32\drivers\hsfdpsp2.sys
2011-09-09 14:09:02 ----N---- C:\WINDOWS1\system32\drivers\hsfcxts2.sys
2011-09-09 14:09:02 ----N---- C:\WINDOWS1\system32\drivers\hsfbs2s2.sys
2011-09-09 14:07:17 ----N---- C:\WINDOWS1\system32\drivers\atinxsxx.sys
2011-09-09 14:07:17 ----N---- C:\WINDOWS1\system32\drivers\atinxbxx.sys
2011-09-09 14:07:17 ----N---- C:\WINDOWS1\system32\drivers\atintuxx.sys
2011-09-09 14:07:17 ----N---- C:\WINDOWS1\system32\drivers\atinttxx.sys
2011-09-09 14:07:17 ----N---- C:\WINDOWS1\system32\drivers\atinsnxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\atinrvxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\atinraxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\atinpdxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\atinmdxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\atinbtxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati2mtag.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati2mtaa.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1xsxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1xbxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1tuxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1ttxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1snxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1rvxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1raxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1pdxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1mdxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1btxx.sys
2011-09-09 13:48:08 ----HDC---- C:\WINDOWS1\$NtUninstallKB2229593_0$
2011-09-09 13:47:57 ----HDC---- C:\WINDOWS1\$NtUninstallKB982381$
2011-09-09 13:47:48 ----HDC---- C:\WINDOWS1\$NtUninstallKB979559_0$
2011-09-09 13:47:43 ----HDC---- C:\WINDOWS1\$NtUninstallKB975562_0$
2011-09-09 13:47:38 ----HDC---- C:\WINDOWS1\$NtUninstallKB979482_0$
2011-09-09 13:47:34 ----HDC---- C:\WINDOWS1\$NtUninstallKB980195$
2011-09-09 13:47:30 ----HDC---- C:\WINDOWS1\$NtUninstallKB978695_WM9$
2011-09-09 13:47:26 ----HDC---- C:\WINDOWS1\$NtUninstallKB980218_0$
2011-09-09 13:47:21 ----HDC---- C:\WINDOWS1\$NtUninstallKB981793$
2011-09-09 13:47:17 ----HDC---- C:\WINDOWS1\$NtUninstallKB978542_0$
2011-09-09 13:47:09 ----HDC---- C:\WINDOWS1\$NtUninstallKB978601_0$
2011-09-09 13:47:04 ----HDC---- C:\WINDOWS1\$NtUninstallKB979402_WM9L$
2011-09-09 13:46:56 ----HDC---- C:\WINDOWS1\$NtUninstallKB979683_0$
2011-09-09 13:46:49 ----HDC---- C:\WINDOWS1\$NtUninstallKB978338_0$
2011-09-09 13:46:44 ----HDC---- C:\WINDOWS1\$NtUninstallKB979309_0$
2011-09-09 13:46:40 ----HDC---- C:\WINDOWS1\$NtUninstallKB981350$
2011-09-09 13:46:36 ----HDC---- C:\WINDOWS1\$NtUninstallKB977816$
2011-09-09 13:46:31 ----HDC---- C:\WINDOWS1\$NtUninstallKB980232_0$
2011-09-09 13:46:25 ----HDC---- C:\WINDOWS1\$NtUninstallKB975561_0$
2011-09-09 13:46:20 ----HDC---- C:\WINDOWS1\$NtUninstallKB978706_0$
2011-09-09 13:46:15 ----HDC---- C:\WINDOWS1\$NtUninstallKB971468_0$
2011-09-09 13:46:10 ----HDC---- C:\WINDOWS1\$NtUninstallKB977914_0$
2011-09-09 13:46:03 ----HDC---- C:\WINDOWS1\$NtUninstallKB975560_0$
2011-09-09 13:45:55 ----HDC---- C:\WINDOWS1\$NtUninstallKB978037_0$
2011-09-09 13:45:51 ----HDC---- C:\WINDOWS1\$NtUninstallKB975713_0$
2011-09-09 13:45:46 ----HDC---- C:\WINDOWS1\$NtUninstallKB972270_0$
2011-09-09 13:45:41 ----HDC---- C:\WINDOWS1\$NtUninstallKB973904$
2011-09-09 13:45:35 ----HDC---- C:\WINDOWS1\$NtUninstallKB955759_0$
2011-09-09 13:45:30 ----HDC---- C:\WINDOWS1\$NtUninstallKB974392_0$
2011-09-09 13:45:25 ----HDC---- C:\WINDOWS1\$NtUninstallKB974318_0$
2011-09-09 13:45:20 ----HDC---- C:\WINDOWS1\$NtUninstallKB952069_WM9$
2011-09-09 13:45:15 ----HDC---- C:\WINDOWS1\$NtUninstallKB973687_0$
2011-09-09 13:45:10 ----HDC---- C:\WINDOWS1\$NtUninstallKB975467_0$
2011-09-09 13:45:04 ----HDC---- C:\WINDOWS1\$NtUninstallKB968389_0$
2011-09-09 13:44:59 ----HDC---- C:\WINDOWS1\$NtUninstallKB969059_0$
2011-09-09 13:44:55 ----HDC---- C:\WINDOWS1\$NtUninstallKB958869$
2011-09-09 13:44:51 ----HDC---- C:\WINDOWS1\$NtUninstallKB974112_0$
2011-09-09 13:44:47 ----HDC---- C:\WINDOWS1\$NtUninstallKB974571_0$
2011-09-09 13:44:42 ----HDC---- C:\WINDOWS1\$NtUninstallKB975025_0$
2011-09-09 13:44:38 ----HDC---- C:\WINDOWS1\$NtUninstallKB954155_WM9$
2011-09-09 13:44:34 ----HDC---- C:\WINDOWS1\$NtUninstallKB971961$
2011-09-09 13:44:30 ----HDC---- C:\WINDOWS1\$NtUninstallKB956844_0$
2011-09-09 13:44:16 ----D---- C:\WINDOWS1\ie8updates
2011-09-09 13:44:03 ----D---- C:\WINDOWS1\WBEM
2011-09-09 13:43:45 ----HDC---- C:\WINDOWS1\ie8
2011-09-09 13:43:45 ----D---- C:\WINDOWS1\system32\en-US
2011-09-09 13:42:13 ----A---- C:\WINDOWS1\system32\MRT.exe
2011-09-09 13:40:47 ----HDC---- C:\WINDOWS1\$NtUninstallKB971657_0$
2011-09-09 13:40:42 ----HDC---- C:\WINDOWS1\$NtUninstallKB973815_0$
2011-09-09 13:40:38 ----HDC---- C:\WINDOWS1\$NtUninstallKB960859_0$
2011-09-09 13:40:34 ----HDC---- C:\WINDOWS1\$NtUninstallKB973507_0$
2011-09-09 13:40:29 ----D---- C:\WINDOWS1\ServicePackFiles
2011-09-09 13:40:27 ----HDC---- C:\WINDOWS1\$NtUninstallKB958470$
2011-09-09 13:40:22 ----HDC---- C:\WINDOWS1\$NtUninstallKB973869_0$
2011-09-09 13:40:17 ----HDC---- C:\WINDOWS1\$NtUninstallKB973540_WM9L$
2011-09-09 13:40:13 ----HDC---- C:\WINDOWS1\$NtUninstallKB970238_0$
2011-09-09 13:40:08 ----HDC---- C:\WINDOWS1\$NtUninstallKB961501_0$
2011-09-09 13:40:04 ----HDC---- C:\WINDOWS1\$NtUninstallKB959426_0$
2011-09-09 13:39:59 ----HDC---- C:\WINDOWS1\$NtUninstallKB960803_0$
2011-09-09 13:39:54 ----HDC---- C:\WINDOWS1\$NtUninstallKB952004_0$
2011-09-09 13:39:42 ----HDC---- C:\WINDOWS1\$NtUninstallKB956572_0$
2011-09-09 13:39:34 ----HDC---- C:\WINDOWS1\$NtUninstallKB923561_0$
2011-09-09 13:39:27 ----HDC---- C:\WINDOWS1\$NtUninstallKB967715_0$
2011-09-09 13:39:22 ----HDC---- C:\WINDOWS1\$NtUninstallKB960225_0$
2011-09-09 13:39:18 ----HDC---- C:\WINDOWS1\$NtUninstallKB956803_0$
2011-09-09 13:39:14 ----HDC---- C:\WINDOWS1\$NtUninstallKB956802_0$
2011-09-09 13:39:10 ----HDC---- C:\WINDOWS1\$NtUninstallKB955069_0$
2011-09-09 13:39:06 ----HDC---- C:\WINDOWS1\$NtUninstallKB958644_0$
2011-09-09 13:39:02 ----HDC---- C:\WINDOWS1\$NtUninstallKB952287_0$
2011-09-09 13:38:58 ----HDC---- C:\WINDOWS1\$NtUninstallKB950974_0$
2011-09-09 13:38:54 ----HDC---- C:\WINDOWS1\$NtUninstallKB952954_0$
2011-09-09 13:38:50 ----HDC---- C:\WINDOWS1\$NtUninstallKB946648_0$
2011-09-09 13:38:46 ----HDC---- C:\WINDOWS1\$NtUninstallKB944338-v2$
2011-09-09 13:38:41 ----HDC---- C:\WINDOWS1\$NtUninstallKB951748_0$
2011-09-09 13:38:38 ----HDC---- C:\WINDOWS1\$NtUninstallKB951376-v2_0$
2011-09-09 13:38:29 ----HDC---- C:\WINDOWS1\$NtUninstallKB950762_0$
2011-09-09 13:36:24 ----N---- C:\WINDOWS1\system32\tzchange.exe
2011-09-09 13:36:12 ----N---- C:\WINDOWS1\system32\browserchoice.exe
2011-09-09 13:30:38 ----A---- C:\WINDOWS1\system32\xpsp4res.dll
2011-09-09 13:30:38 ----A---- C:\WINDOWS1\system32\xpsp3res.dll
2011-09-09 13:29:38 ----A---- C:\WINDOWS1\system32\drivers\bthport.sys
2011-09-08 22:35:54 ----D---- C:\Documents and Settings\peter1\Application Data\GHISLER
2011-09-08 22:04:56 ----D---- C:\Documents and Settings\peter1\Application Data\WinRAR
2011-09-08 22:00:18 ----D---- C:\Documents and Settings\All Users.WINDOWS1\Application Data\Windows Genuine Advantage
2011-09-08 22:00:09 ----D---- C:\WINDOWS1\system32\PreInstall
2011-09-08 22:00:09 ----A---- C:\WINDOWS1\system32\spupdsvc.exe
2011-09-08 22:00:08 ----HDC---- C:\WINDOWS1\$NtUninstallKB898461$
2011-09-08 22:00:08 ----HD---- C:\WINDOWS1\$hf_mig$
2011-09-08 20:24:52 ----A---- C:\WINDOWS1\system32\h323log.txt
2011-09-08 20:22:16 ----A---- C:\WINDOWS1\system32\drivers\splitter.sys
2011-09-08 20:22:14 ----A---- C:\WINDOWS1\system32\drivers\aec.sys
2011-09-08 20:22:13 ----A---- C:\WINDOWS1\system32\drivers\drmkaud.sys
2011-09-08 20:22:11 ----A---- C:\WINDOWS1\system32\drivers\mspqm.sys
2011-09-08 20:22:09 ----A---- C:\WINDOWS1\system32\drivers\wdmaud.sys
2011-09-08 20:22:05 ----A---- C:\WINDOWS1\system32\drivers\swmidi.sys
2011-09-08 20:22:03 ----A---- C:\WINDOWS1\system32\drivers\dmusic.sys
2011-09-08 20:22:01 ----A---- C:\WINDOWS1\system32\drivers\kmixer.sys
2011-09-08 20:21:59 ----A---- C:\WINDOWS1\system32\drivers\sysaudio.sys
2011-09-08 20:21:57 ----A---- C:\WINDOWS1\system32\drivers\mskssrv.sys
2011-09-08 20:21:55 ----A---- C:\WINDOWS1\system32\drivers\mspclock.sys
2011-09-08 20:21:50 ----A---- C:\WINDOWS1\system32\drivers\audstub.sys
2011-09-08 20:21:19 ----A---- C:\WINDOWS1\system32\drivers\redbook.sys
2011-09-08 20:20:44 ----A---- C:\WINDOWS1\system32\ksuser.dll
2011-09-08 20:20:44 ----A---- C:\WINDOWS1\system32\drivers\portcls.sys
2011-09-08 20:20:44 ----A---- C:\WINDOWS1\system32\drivers\msmpu401.sys
2011-09-08 20:20:44 ----A---- C:\WINDOWS1\system32\drivers\drmk.sys
2011-09-08 20:20:42 ----A---- C:\WINDOWS1\system32\drivers\gameenum.sys
2011-09-08 20:20:09 ----A---- C:\WINDOWS1\system32\usbui.dll
2011-09-08 20:17:56 ----A---- C:\WINDOWS1\imsins.BAK
2011-09-08 20:17:53 ----SHD---- C:\WINDOWS1\Installer
2011-09-08 20:17:53 ----A---- C:\WINDOWS1\system32\PerfStringBackup.INI
2011-09-08 20:17:52 ----A---- C:\WINDOWS1\ODBCINST.INI
2011-09-08 20:17:47 ----RA---- C:\WINDOWS1\system32\kbdtuq.dll
2011-09-08 20:17:47 ----RA---- C:\WINDOWS1\system32\kbdtuf.dll
2011-09-08 20:17:47 ----RA---- C:\WINDOWS1\system32\kbdazel.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdycc.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbduzb.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdur.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdtat.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdru1.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdru.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdmon.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdkyr.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdkaz.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdbu.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdblr.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdaze.dll
2011-09-08 20:17:44 ----RA---- C:\WINDOWS1\system32\kbdhept.dll
2011-09-08 20:17:44 ----RA---- C:\WINDOWS1\system32\kbdhela3.dll
2011-09-08 20:17:44 ----RA---- C:\WINDOWS1\system32\kbdhela2.dll
2011-09-08 20:17:44 ----RA---- C:\WINDOWS1\system32\kbdhe319.dll
2011-09-08 20:17:44 ----RA---- C:\WINDOWS1\system32\kbdhe220.dll
2011-09-08 20:17:44 ----RA---- C:\WINDOWS1\system32\kbdhe.dll
2011-09-08 20:17:44 ----RA---- C:\WINDOWS1\system32\kbdgkl.dll
2011-09-08 20:17:43 ----RA---- C:\WINDOWS1\system32\kbdlv1.dll
2011-09-08 20:17:43 ----RA---- C:\WINDOWS1\system32\kbdlv.dll
2011-09-08 20:17:43 ----RA---- C:\WINDOWS1\system32\kbdlt1.dll
2011-09-08 20:17:43 ----RA---- C:\WINDOWS1\system32\kbdlt.dll
2011-09-08 20:17:43 ----RA---- C:\WINDOWS1\system32\kbdest.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdycl.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdsl1.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdsl.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdro.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdpl1.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdpl.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdhu1.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdhu.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdcz2.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdcz1.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdcz.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdcr.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\KBDAL.DLL
2011-09-08 20:17:39 ----A---- C:\WINDOWS1\system32\spxcoins.dll
2011-09-08 20:17:39 ----A---- C:\WINDOWS1\system32\irclass.dll
2011-09-08 20:17:39 ----A---- C:\WINDOWS1\system32\EqnClass.Dll
2011-09-08 20:17:39 ----A---- C:\WINDOWS1\system32\dgsetup.dll
2011-09-08 20:17:39 ----A---- C:\WINDOWS1\system32\dgrpsetu.dll
2011-09-08 20:17:37 ----N---- C:\WINDOWS1\system32\CONFIG.TMP
2011-09-08 20:17:37 ----A---- C:\WINDOWS1\TASKMAN.EXE
2011-09-08 20:17:37 ----A---- C:\WINDOWS1\system32\drivers\irenum.sys
2011-09-08 20:17:37 ----A---- C:\WINDOWS1\system32\batt.dll
2011-09-08 20:17:36 ----A---- C:\WINDOWS1\notepad.exe
2011-09-08 20:17:35 ----A---- C:\WINDOWS1\system32\storprop.dll
2011-09-08 20:17:24 ----ASH---- C:\Documents and Settings\All Users.WINDOWS1\Application Data\desktop.ini
2011-09-08 20:17:21 ----RA---- C:\WINDOWS1\SET8.tmp
2011-09-08 20:17:18 ----RA---- C:\WINDOWS1\SET4.tmp
2011-09-08 20:17:17 ----RA---- C:\WINDOWS1\SET3.tmp
2011-09-08 20:17:12 ----D---- C:\WINDOWS1\system32\CatRoot2
2011-09-08 20:17:12 ----D---- C:\WINDOWS1\system32\CatRoot
2011-09-08 20:17:06 ----SD---- C:\Documents and Settings\All Users.WINDOWS1\Application Data\Microsoft
2011-09-08 20:16:45 ----A---- C:\WINDOWS1\setuplog.txt
2011-09-08 20:16:37 ----A---- C:\WINDOWS1\system32\FNTCACHE.DAT
2011-09-08 20:10:19 ----D---- C:\WINDOWS1\system32\IME
2011-09-08 20:10:19 ----D---- C:\WINDOWS1\system32\3com_dmi
2011-09-08 20:10:19 ----D---- C:\WINDOWS1\pchealth
2011-09-08 20:10:19 ----D---- C:\WINDOWS1\PeerNet
2011-09-08 20:10:19 ----D---- C:\WINDOWS1\ime
2011-09-08 20:10:18 ----RSHDC---- C:\WINDOWS1\system32\dllcache
2011-09-08 20:10:18 ----RSD---- C:\WINDOWS1\Fonts
2011-09-08 20:10:18 ----RD---- C:\WINDOWS1\Web
2011-09-08 20:10:18 ----HD---- C:\WINDOWS1\inf
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\WinSxS
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\twain_32
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\Temp
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\wins
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\wbem
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\usmt
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\spool
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\ShellExt
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\Setup
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\ras
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\oobe
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\npp
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\mui
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\inetsrv
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\icsxml
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\ias
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\export
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\drivers\etc
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\drivers\disdn
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\drivers
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\dhcp
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\config
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\3076
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\2052
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\1054
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\1042
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\1041
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\1037
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\1033
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\1031
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\1028
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\1025
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\security
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\Resources
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\repair
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\Provisioning
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\mui
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\msapps
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\msagent
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\Media
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\java
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\Help
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\Driver Cache
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\Debug
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\Cursors
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\Connection Wizard
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\Config
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\AppPatch
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\addins
2011-09-08 20:10:18 ----D---- C:\WINDOWS1
2011-09-08 20:10:18 ----ASH---- C:\pagefile.sys
2011-09-08 19:42:34 ----D---- C:\WINDOWS1\system32\SoftwareDistribution
2011-09-08 19:41:25 ----D---- C:\Documents and Settings\peter1\Application Data\Macromedia
2011-09-08 19:41:24 ----D---- C:\Documents and Settings\peter1\Application Data\Adobe
2011-09-08 19:39:05 ----D---- C:\Documents and Settings\peter1\Application Data\ESET
2011-09-08 19:11:06 ----D---- C:\Documents and Settings\peter1\Application Data\Mozilla
2011-09-08 19:10:14 ----A---- C:\WINDOWS1\ALCFDRTM.EXE
2011-09-08 19:10:12 ----D---- C:\WINDOWS1\system32\Lang
2011-09-08 19:07:05 ----D---- C:\WINDOWS1\pss
2011-09-08 18:57:08 ----A---- C:\WINDOWS1\msicpl.ini
2011-09-08 18:55:06 ----A---- C:\WINDOWS1\system32\wpa.bak
2011-09-08 18:52:09 ----HDC---- C:\WINDOWS1\$MSI31Uninstall_KB893803v2$
2011-09-08 18:51:49 ----D---- C:\Documents and Settings\All Users.WINDOWS1\Application Data\NVIDIA Corporation
2011-09-08 18:51:05 ----RA---- C:\WINDOWS1\system32\smdll.dll
2011-09-08 18:51:05 ----RA---- C:\WINDOWS1\system32\MadCHook.dll
2011-09-08 18:51:04 ----RA---- C:\WINDOWS1\system32\d3dx9_28.dll
2011-09-08 18:51:03 ----RA---- C:\WINDOWS1\system32\WinSys2.exe
2011-09-08 18:51:03 ----RA---- C:\WINDOWS1\system32\msvcr80.dll
2011-09-08 18:51:03 ----RA---- C:\WINDOWS1\system32\d3dx9_27.dll
2011-09-08 18:51:03 ----RA---- C:\WINDOWS1\system32\Auxiliary.dll
2011-09-08 18:51:02 ----RA---- C:\WINDOWS1\system32\msicpl.dll
2011-09-08 18:46:48 ----D---- C:\Program Files\Realtek Sound Manager
2011-09-08 18:46:45 ----N---- C:\WINDOWS1\avrack.ini
2011-09-08 18:46:41 ----N---- C:\WINDOWS1\system32\ChCfg.exe
2011-09-08 18:46:41 ----A---- C:\WINDOWS1\system32\RTLCPAPI.dll
2011-09-08 18:46:41 ----A---- C:\WINDOWS1\system32\drivers\ALCXWDM.SYS
2011-09-08 18:46:41 ----A---- C:\WINDOWS1\SOUNDMAN.EXE
2011-09-08 18:46:38 ----A---- C:\WINDOWS1\system32\RTLCPL.EXE
2011-09-08 18:46:26 ----N---- C:\WINDOWS1\alcupd.exe
2011-09-08 18:46:26 ----N---- C:\WINDOWS1\alcrmv.exe
2011-09-08 18:46:20 ----N---- C:\WINDOWS1\RtlExUpd.dll
2011-09-08 18:39:41 ----D---- C:\WINDOWS1\Downloaded Installations
2011-09-08 18:38:54 ----A---- C:\WINDOWS1\system32\CapabilityTable.exe
2011-09-08 18:38:42 ----RA---- C:\WINDOWS1\system32\idecoi.dll
2011-09-08 18:38:42 ----RA---- C:\WINDOWS1\system32\drivers\nvata.sys
2011-09-08 18:38:22 ----A---- C:\WINDOWS1\system32\fdco1ins.dll
2011-09-08 18:38:22 ----A---- C:\WINDOWS1\system32\fdco1.dll
2011-09-08 18:38:22 ----A---- C:\WINDOWS1\system32\drivers\NVENETFD.sys
2011-09-08 18:38:19 ----RA---- C:\WINDOWS1\system32\drivers\nvsnpu.sys
2011-09-08 18:38:19 ----A---- C:\WINDOWS1\system32\nvunrm.exe
2011-09-08 18:38:19 ----A---- C:\WINDOWS1\system32\nvconrm.dll
2011-09-08 18:38:19 ----A---- C:\WINDOWS1\system32\drivers\nvnrm.sys
2011-09-08 18:38:19 ----A---- C:\WINDOWS1\system32\drivers\nvnetbus.sys
2011-09-08 18:38:19 ----A---- C:\WINDOWS1\system32\bdco1ins.dll
2011-09-08 18:38:19 ----A---- C:\WINDOWS1\system32\bdco1.dll
2011-09-08 18:38:18 ----RA---- C:\WINDOWS1\system32\nvusmb.exe
2011-09-08 18:38:18 ----A---- C:\WINDOWS1\system32\NVUNINST.EXE
2011-09-08 18:38:05 ----D---- C:\WINDOWS1\system32\ReinstallBackups
2011-09-08 18:37:38 ----RA---- C:\WINDOWS1\system32\raidmgmt.ini
2011-09-08 18:37:06 ----RA---- C:\WINDOWS1\system32\drivers\ASACPI.sys
2011-09-08 18:37:03 ----A---- C:\WINDOWS1\Ascd_tmp.ini
2011-09-08 18:37:00 ----A---- C:\WINDOWS1\system32\drivers\ASUSHWIO.SYS
2011-09-08 18:36:22 ----D---- C:\Documents and Settings\peter1\Application Data\Identities
2011-09-08 18:36:15 ----ASH---- C:\Documents and Settings\peter1\Application Data\desktop.ini
2011-09-08 18:36:14 ----SD---- C:\Documents and Settings\peter1\Application Data\Microsoft
2011-09-08 18:34:58 ----D---- C:\WINDOWS1\SoftwareDistribution
2011-09-08 18:34:56 ----SD---- C:\WINDOWS1\system32\Microsoft
2011-09-08 18:34:56 ----A---- C:\WINDOWS1\SchedLgU.Txt
2011-09-08 18:33:30 ----AS---- C:\WINDOWS1\bootstat.dat
2011-09-08 18:31:24 ----D---- C:\WINDOWS1\system32\xircom
2011-09-08 18:31:12 ----A---- C:\WINDOWS1\control.ini
2011-09-08 18:31:12 ----A---- C:\AUTOEXEC.BAT
2011-09-08 18:30:56 ----A---- C:\WINDOWS1\OEWABLog.txt
2011-09-08 18:30:50 ----A---- C:\WINDOWS1\system32\mapi32.dll
2011-09-08 18:29:49 ----SD---- C:\WINDOWS1\Downloaded Program Files
2011-09-08 18:29:49 ----RD---- C:\WINDOWS1\Offline Web Pages
2011-09-08 18:29:12 ----D---- C:\WINDOWS1\system32\DirectX
2011-09-08 18:28:54 ----A---- C:\WINDOWS1\system32\atrace.dll
2011-09-08 18:28:52 ----A---- C:\WINDOWS1\system32\desktop.ini
2011-09-08 18:28:52 ----A---- C:\WINDOWS1\desktop.ini
2011-09-08 18:28:45 ----A---- C:\WINDOWS1\system32\nmevtmsg.dll
2011-09-08 18:28:44 ----SD---- C:\WINDOWS1\Tasks
2011-09-08 18:28:44 ----A---- C:\WINDOWS1\system32\icfgnt5.dll
2011-09-08 18:28:44 ----A---- C:\WINDOWS1\system32\acctres.dll
2011-09-08 18:28:40 ----D---- C:\WINDOWS1\srchasst
2011-09-08 18:28:39 ----D---- C:\WINDOWS1\system32\Macromed
2011-09-08 18:28:36 ----A---- C:\WINDOWS1\system32\wuweb.dll
2011-09-08 18:28:36 ----A---- C:\WINDOWS1\system32\wups.dll
2011-09-08 18:28:36 ----A---- C:\WINDOWS1\system32\wucltui.dll
2011-09-08 18:28:36 ----A---- C:\WINDOWS1\system32\wuauserv.dll
2011-09-08 18:28:36 ----A---- C:\WINDOWS1\system32\wuaueng1.dll
2011-09-08 18:28:36 ----A---- C:\WINDOWS1\system32\wuaueng.dll
2011-09-08 18:28:36 ----A---- C:\WINDOWS1\system32\wuauclt1.exe
2011-09-08 18:28:36 ----A---- C:\WINDOWS1\system32\wuauclt.exe
2011-09-08 18:28:35 ----A---- C:\WINDOWS1\system32\wuapi.dll
2011-09-08 18:28:35 ----A---- C:\WINDOWS1\system32\qmgrprxy.dll
2011-09-08 18:28:35 ----A---- C:\WINDOWS1\system32\qmgr.dll
2011-09-08 18:28:35 ----A---- C:\WINDOWS1\system32\bitsprx3.dll
2011-09-08 18:28:35 ----A---- C:\WINDOWS1\system32\bitsprx2.dll
2011-09-08 18:28:27 ----A---- C:\WINDOWS1\system32\safrslv.dll
2011-09-08 18:28:27 ----A---- C:\WINDOWS1\system32\safrdm.dll
2011-09-08 18:28:27 ----A---- C:\WINDOWS1\system32\safrcdlg.dll
2011-09-08 18:28:27 ----A---- C:\WINDOWS1\system32\racpldlg.dll
2011-09-08 18:28:24 ----A---- C:\WINDOWS1\system32\fltmc.exe
2011-09-08 18:28:24 ----A---- C:\WINDOWS1\system32\fltlib.dll
2011-09-08 18:28:24 ----A---- C:\WINDOWS1\system32\drivers\fltmgr.sys
2011-09-08 18:28:23 ----D---- C:\WINDOWS1\system32\Restore
2011-09-08 18:28:23 ----A---- C:\WINDOWS1\system32\srsvc.dll
2011-09-08 18:28:23 ----A---- C:\WINDOWS1\system32\srrstr.dll
2011-09-08 18:28:23 ----A---- C:\WINDOWS1\system32\srclient.dll
2011-09-08 18:28:23 ----A---- C:\WINDOWS1\system32\drivers\sr.sys
2011-09-08 18:28:22 ----A---- C:\WINDOWS1\system32\ils.dll
2011-09-08 18:28:20 ----A---- C:\WINDOWS1\system32\nmmkcert.dll
2011-09-08 18:28:20 ----A---- C:\WINDOWS1\system32\mnmsrvc.exe
2011-09-08 18:28:20 ----A---- C:\WINDOWS1\system32\mnmdd.dll
2011-09-08 18:28:20 ----A---- C:\WINDOWS1\system32\isrdbg32.dll
2011-09-08 18:28:19 ----A---- C:\WINDOWS1\system32\msconf.dll
2011-09-08 18:28:16 ----A---- C:\WINDOWS1\system32\msoert2.dll
2011-09-08 18:28:16 ----A---- C:\WINDOWS1\system32\msoeacct.dll
2011-09-08 18:28:15 ----A---- C:\WINDOWS1\system32\inetres.dll
2011-09-08 18:28:14 ----A---- C:\WINDOWS1\system32\inetcomm.dll
2011-09-08 18:28:13 ----A---- C:\WINDOWS1\system32\schedsvc.dll
2011-09-08 18:28:12 ----A---- C:\WINDOWS1\system32\mstinit.exe
2011-09-08 18:28:12 ----A---- C:\WINDOWS1\system32\mstask.dll
2011-09-08 18:28:12 ----A---- C:\WINDOWS1\system32\isign32.dll
2011-09-08 18:28:12 ----A---- C:\WINDOWS1\system32\inetcfg.dll
2011-09-08 18:28:12 ----A---- C:\WINDOWS1\system32\icwphbk.dll
2011-09-08 18:28:12 ----A---- C:\WINDOWS1\system32\icwdial.dll
2011-09-08 18:27:53 ----A---- C:\WINDOWS1\system32\emptyregdb.dat
2011-09-08 18:27:36 ----A---- C:\WINDOWS1\vbaddin.ini
2011-09-08 18:27:36 ----A---- C:\WINDOWS1\vb.ini
2011-09-08 18:27:29 ----D---- C:\WINDOWS1\Registration
2011-09-08 18:26:50 ----D---- C:\Program Files\Messenger
2011-09-08 18:26:49 ----A---- C:\WINDOWS1\system32\write.exe
2011-09-08 18:26:44 ----A---- C:\WINDOWS1\system32\sndvol32.exe
2011-09-08 18:26:44 ----A---- C:\WINDOWS1\system32\hticons.dll
2011-09-08 18:26:44 ----A---- C:\WINDOWS1\system32\avwav.dll
2011-09-08 18:26:44 ----A---- C:\WINDOWS1\system32\avtapi.dll
2011-09-08 18:26:44 ----A---- C:\WINDOWS1\system32\avmeter.dll
2011-09-08 18:26:43 ----A---- C:\WINDOWS1\system32\winchat.exe
2011-09-08 18:26:38 ----A---- C:\WINDOWS1\system32\getuname.dll
2011-09-08 18:26:37 ----A---- C:\WINDOWS1\system32\winmine.exe
2011-09-08 18:26:37 ----A---- C:\WINDOWS1\system32\sol.exe
2011-09-08 18:26:37 ----A---- C:\WINDOWS1\system32\mshearts.exe
2011-09-08 18:26:37 ----A---- C:\WINDOWS1\system32\charmap.exe
2011-09-08 18:26:37 ----A---- C:\WINDOWS1\system32\calc.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\usrlogon.cmd
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\tsshutdn.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\tslabels.ini
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\tskill.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\tsdiscon.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\tscon.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\shadow.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\rwinsta.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\reset.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\regini.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\rdpcfgex.dll
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\qwinsta.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\qappsrv.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\freecell.exe
2011-09-08 18:26:35 ----A---- C:\WINDOWS1\system32\msg.exe
2011-09-08 18:26:35 ----A---- C:\WINDOWS1\system32\msdtcprf.ini
2011-09-08 18:26:35 ----A---- C:\WINDOWS1\system32\logoff.exe
2011-09-08 18:26:35 ----A---- C:\WINDOWS1\system32\cdmodem.dll
2011-09-08 18:26:34 ----A---- C:\WINDOWS1\system32\stclient.dll
2011-09-08 18:26:34 ----A---- C:\WINDOWS1\system32\mtxlegih.dll
2011-09-08 18:26:34 ----A---- C:\WINDOWS1\system32\mtxex.dll
2011-09-08 18:26:34 ----A---- C:\WINDOWS1\system32\mtxdm.dll
2011-09-08 18:26:34 ----A---- C:\WINDOWS1\system32\dcomcnfg.exe
2011-09-08 18:26:34 ----A---- C:\WINDOWS1\system32\comsnap.dll
2011-09-08 18:26:34 ----A---- C:\WINDOWS1\system32\comrepl.dll
2011-09-08 18:26:34 ----A---- C:\WINDOWS1\system32\comaddin.dll
2011-09-08 18:26:30 ----A---- C:\WINDOWS1\system32\wmimgmt.msc
2011-09-08 18:26:28 ----A---- C:\WINDOWS1\system32\accwiz.exe
2011-09-08 18:26:27 ----A---- C:\WINDOWS1\system32\sndrec32.exe
2011-09-08 18:26:27 ----A---- C:\WINDOWS1\system32\mspaint.exe
2011-09-08 18:26:27 ----A---- C:\WINDOWS1\system32\mplay32.exe
2011-09-08 18:26:27 ----A---- C:\WINDOWS1\system32\hypertrm.dll
2011-09-08 18:26:26 ----A---- C:\WINDOWS1\system32\tscfgwmi.dll
2011-09-08 18:26:26 ----A---- C:\WINDOWS1\system32\spider.exe
2011-09-08 18:26:26 ----A---- C:\WINDOWS1\system32\drivers\tdtcp.sys
2011-09-08 18:26:26 ----A---- C:\WINDOWS1\system32\drivers\tdpipe.sys
2011-09-08 18:26:26 ----A---- C:\WINDOWS1\system32\drivers\rdpwd.sys
2011-09-08 18:26:26 ----A---- C:\WINDOWS1\system32\clipbrd.exe
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\tscupgrd.exe
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\termsrv.dll
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\sessmgr.exe
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\remotepg.dll
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\rdshost.exe
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\rdsaddin.exe
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\rdpwsx.dll
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\rdpsnd.dll
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\rdpclip.exe
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\rdchost.dll
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\mstscax.dll
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\mstsc.exe
2011-09-08 18:26:24 ----D---- C:\WINDOWS1\system32\MsDtc
2011-09-08 18:26:24 ----A---- C:\WINDOWS1\system32\qprocess.exe
2011-09-08 18:26:24 ----A---- C:\WINDOWS1\system32\mtxoci.dll
2011-09-08 18:26:24 ----A---- C:\WINDOWS1\system32\msdtcuiu.dll
2011-09-08 18:26:24 ----A---- C:\WINDOWS1\system32\msdtcprx.dll
2011-09-08 18:26:24 ----A---- C:\WINDOWS1\system32\icaapi.dll
2011-09-08 18:26:24 ----A---- C:\WINDOWS1\system32\cfgbkend.dll
2011-09-08 18:26:23 ----D---- C:\WINDOWS1\system32\Com
2011-09-08 18:26:23 ----A---- C:\WINDOWS1\system32\xolehlp.dll
2011-09-08 18:26:23 ----A---- C:\WINDOWS1\system32\msdtctm.dll
2011-09-08 18:26:23 ----A---- C:\WINDOWS1\system32\msdtclog.dll
2011-09-08 18:26:23 ----A---- C:\WINDOWS1\system32\msdtc.exe
2011-09-08 18:26:23 ----A---- C:\WINDOWS1\system32\colbact.dll
2011-09-08 18:26:22 ----A---- C:\WINDOWS1\system32\comuid.dll
2011-09-08 18:26:22 ----A---- C:\WINDOWS1\system32\comsvcs.dll
2011-09-08 18:26:22 ----A---- C:\WINDOWS1\system32\clbcatex.dll
2011-09-08 18:26:22 ----A---- C:\WINDOWS1\system32\catsrvut.dll
2011-09-08 18:26:22 ----A---- C:\WINDOWS1\system32\catsrvps.dll
2011-09-08 18:26:22 ----A---- C:\WINDOWS1\system32\catsrv.dll
2011-09-08 18:26:21 ----A---- C:\WINDOWS1\system32\clbcatq.dll
2011-09-08 18:26:17 ----A---- C:\WINDOWS1\system32\servdeps.dll
2011-09-08 18:26:17 ----A---- C:\WINDOWS1\system32\mmfutil.dll
2011-09-08 18:26:17 ----A---- C:\WINDOWS1\system32\licwmi.dll
2011-09-08 18:26:17 ----A---- C:\WINDOWS1\system32\cmprops.dll
2011-09-08 18:26:14 ----A---- C:\WINDOWS1\system32\drivers\termdd.sys
2011-09-08 18:26:14 ----A---- C:\WINDOWS1\system32\drivers\rdpdr.sys

======List of files/folders modified in the last 1 month======

2011-09-29 15:32:30 ----D---- C:\Program Files
2011-09-28 16:33:22 ----ASH---- C:\boot.ini
2011-09-28 16:33:22 ----A---- C:\WINDOWS1\win.ini
2011-09-28 16:33:22 ----A---- C:\WINDOWS1\system.ini
2011-09-27 22:51:30 ----D---- C:\Program Files\Mozilla Firefox
2011-09-27 18:20:07 ----D---- C:\Program Files\K-Lite Codec Pack
2011-09-24 14:23:12 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-09-24 09:59:39 ----D---- C:\Program Files\Common Files\DESIGNER
2011-09-22 16:55:27 ----D---- C:\Program Files\Common Files\Adobe
2011-09-11 19:26:32 ----HD---- C:\Program Files\InstallShield Installation Information
2011-09-10 13:04:02 ----D---- C:\Program Files\NVIDIA Corporation
2011-09-10 10:53:50 ----D---- C:\Program Files\Windows Media Player
2011-09-10 00:31:00 ----D---- C:\Program Files\Common Files\Services
2011-09-09 18:41:15 ----D---- C:\Documents and Settings
2011-09-09 14:41:32 ----D---- C:\Program Files\Movie Maker
2011-09-09 14:40:23 ----D---- C:\Program Files\Outlook Express
2011-09-09 14:22:47 ----D---- C:\Program Files\Internet Explorer
2011-09-09 14:21:10 ----D---- C:\Program Files\NetMeeting
2011-09-09 14:21:08 ----D---- C:\Program Files\Windows NT
2011-09-09 14:21:07 ----D---- C:\Program Files\Common Files\System
2011-09-09 11:12:13 ----A---- C:\WINDOWS1\system32\crypt32.dll
2011-09-08 19:41:35 ----SHD---- C:\RECYCLER
2011-09-08 18:52:47 ----D---- C:\NVIDIA
2011-09-08 18:46:48 ----D---- C:\Program Files\AvRack
2011-09-08 18:34:59 ----SHD---- C:\System Volume Information
2011-09-08 18:30:38 ----ASH---- C:\WINDOWS1\fonts\desktop.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nvata;nvata; C:\WINDOWS1\system32\DRIVERS\nvata.sys [2005-05-17 92800]
R0 PxHelp20;PxHelp20; C:\WINDOWS1\System32\Drivers\PxHelp20.sys [2011-03-04 45648]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS1\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 AmdPPM;AMD HwPState Processor Driver; C:\WINDOWS1\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 ehdrv;ehdrv; C:\WINDOWS1\system32\DRIVERS\ehdrv.sys [2011-08-04 118104]
R1 epfwtdi;epfwtdi; C:\WINDOWS1\system32\DRIVERS\epfwtdi.sys [2011-08-04 61936]
R1 WS2IFSL;Prostredie podpory poskytovateľa služby Windows Socket 2.0 Non-IFS Service; C:\WINDOWS1\System32\drivers\ws2ifsl.sys [2004-08-04 12032]
R2 eamon;eamon; C:\WINDOWS1\system32\DRIVERS\eamon.sys [2011-08-09 154136]
R2 epfw;epfw; C:\WINDOWS1\system32\DRIVERS\epfw.sys [2011-08-04 147480]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS1\system32\drivers\ALCXWDM.SYS [2005-04-19 2317504]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS1\system32\DRIVERS\btkrnl.sys [2005-05-31 1341466]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS1\system32\DRIVERS\Epfwndis.sys [2011-08-04 39824]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS1\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS1\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Mouse HID Driver; C:\WINDOWS1\system32\DRIVERS\mouhid.sys [2004-08-04 12160]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS1\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS1\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS1\system32\DRIVERS\nv4_mini.sys [2011-08-03 12542592]
R3 NVENETFD;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\WINDOWS1\system32\DRIVERS\NVENETFD.sys [2008-08-01 54784]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS1\system32\drivers\nvhda32.sys [2011-05-10 119528]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS1\system32\DRIVERS\nvnetbus.sys [2008-08-01 22016]
S2 BTSERIAL;Bluetooth Serial Driver; \??\C:\WINDOWS1\system32\drivers\btserial.sys []
S2 BTSLBCSP;Bluetooth Port Client Driver; \??\C:\WINDOWS1\system32\drivers\btslbcsp.sys []
S3 btaudio;Bluetooth Audio Device; C:\WINDOWS1\system32\drivers\btaudio.sys [2005-05-31 401152]
S3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS1\system32\DRIVERS\btport.sys [2005-05-31 30363]
S3 BthEnum;Bluetooth Request Block Driver; C:\WINDOWS1\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BTHMODEM;Bluetooth Serial Communications Driver; C:\WINDOWS1\system32\DRIVERS\bthmodem.sys [2008-04-13 37888]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS1\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Bluetooth Port Driver; C:\WINDOWS1\System32\Drivers\BTHport.sys [2008-06-13 272128]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\WINDOWS1\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS1\system32\DRIVERS\btwdndis.sys [2005-05-31 148040]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS1\System32\Drivers\btwusb.sys [2005-05-31 56648]
S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
S3 MSICPL;MSICPL; \??\E:\install4\MSICPL.sys []
S3 n558;N558 Bluetooth USB Filter Driver; C:\WINDOWS1\System32\Drivers\n558.sys [2007-08-15 9600]
S3 NTACCESS;NTACCESS; \??\E:\NTACCESS.sys []
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS1\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 SetupNTGLM7X;SetupNTGLM7X; \??\E:\NTGLM7X.sys []
S3 usbscan;USB Scanner Driver; C:\WINDOWS1\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS1\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS1\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS1\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 BthServ;Bluetooth Support Service; C:\WINDOWS1\system32\svchost.exe [2008-04-14 14336]
R2 btwdins;Bluetooth Service; C:\Program Files\MSI\BToes Bluetooth Software\bin\btwdins.exe [2005-05-31 258103]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2011-09-06 974944]
R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe [2005-04-29 139264]
R2 ForcewareWebInterface;Forceware Web Interface; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe [2004-11-30 20543]
R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe [2005-04-29 131136]
R2 nSvcLog;ForceWare user log service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe [2005-04-29 57412]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS1\system32\nvsvc32.exe [2011-08-03 146024]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-08-03 2255464]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS1\system32\svchost.exe [2008-04-14 14336]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]

-----------------EOF-----------------

Re: Prosím o kontrolu

Napsal: 29 zář 2011 20:56
od Rudy
Poprosím o log z ComboFix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware
Vidím tam minimálně jednoho trojáka.

Re: Prosím o kontrolu

Napsal: 29 zář 2011 21:36
od casualties
ComboFix 11-09-29.06 - peter1 29.09.2011 22:28:06.1.1 - x86
Systém Microsoft Windows XP Home Edition 5.1.2600.3.1250.421.1033.18.1023.590 [GMT 2:00]
Running from: c:\documents and settings\peter1\Desktop\ComboFix.exe
AV: ESET Smart Security 5.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *Disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
FW: NVIDIA Firewall *Disabled* {EDC10449-64D1-46c7-A59A-EC20D662F26D}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\boot.inf
c:\documents and settings\Administrator\Local Settings\Application Data\ApplicationHistory
c:\documents and settings\Administrator\Local Settings\Application Data\ApplicationHistory\CLI.exe.c88dbd71.ini
c:\documents and settings\Peter\Local Settings\Application Data\ApplicationHistory
c:\documents and settings\Peter\Local Settings\Application Data\ApplicationHistory\CLI.exe.c88dbd71.ini
c:\documents and settings\Peter\Local Settings\Application Data\ApplicationHistory\csc.exe.3e4ac0af.ini
c:\documents and settings\Peter\Local Settings\Application Data\ApplicationHistory\HPQDocViewer.exe.100bbc94.ini
c:\documents and settings\Peter\Local Settings\Application Data\ApplicationHistory\Load.exe.f0acafbd.ini
c:\documents and settings\Peter\Local Settings\Application Data\ApplicationHistory\mmc.exe.959a7e97.ini
c:\documents and settings\Peter\Local Settings\Application Data\ApplicationHistory\ngen.exe.2c05686e.ini
c:\documents and settings\Peter\Local Settings\Application Data\ApplicationHistory\SL2B49.tmp.b0bed35d.ini
c:\program files\google\common\google updater\googleupdaterservice.exe
c:\windows1\system32\_000010_.tmp.dll
c:\windows1\system32\_000019_.tmp.dll
c:\windows1\system32\_003882_.tmp.dll
c:\windows1\system32\muzapp.exe
.
.
((((((((((((((((((((((((( Files Created from 2011-08-28 to 2011-09-29 )))))))))))))))))))))))))))))))
.
.
2011-09-29 13:32 . 2011-09-29 13:32 -------- d-----w- c:\program files\trend micro
2011-09-29 13:32 . 2011-09-29 13:32 -------- d-----w- C:\rsit
2011-09-28 16:13 . 2011-09-28 16:13 -------- d-----w- c:\program files\Conduit
2011-09-28 16:13 . 2011-09-28 16:13 -------- d-----w- c:\program files\FreeOnlineRadioPlayerRecorder
2011-09-28 16:13 . 2011-09-28 16:13 -------- d-----w- c:\program files\All Free Video Converter
2011-09-24 07:57 . 2011-09-24 12:23 -------- d-----w- c:\program files\Microsoft Works
2011-09-24 07:57 . 2011-09-24 07:57 -------- d-----w- c:\program files\MSBuild
2011-09-24 07:53 . 2011-09-24 07:53 -------- d-----r- C:\MSOCache
2011-09-23 15:50 . 2011-09-23 15:50 -------- d-----w- c:\program files\MSXML 4.0
2011-09-22 15:41 . 2011-09-22 15:41 -------- d-----w- c:\program files\MyFree Codec
2011-09-22 14:45 . 2011-09-22 14:45 -------- d-----w- c:\program files\Samsung
2011-09-22 14:45 . 2011-09-22 14:45 -------- d-----w- c:\program files\MarkAny
2011-09-16 16:59 . 2011-09-16 16:59 -------- d-----w- c:\program files\MSI
2011-09-14 15:13 . 2010-04-26 22:32 -------- d-----w- C:\WINDOWS
2011-09-14 15:13 . 2010-04-26 18:18 -------- d-----w- c:\program files\Nero
2011-09-11 08:18 . 2011-09-28 15:44 -------- d-----w- c:\program files\The KMPlayer
2011-09-10 08:53 . 2011-09-10 08:53 -------- d-----w- c:\program files\Windows Media Connect 2
2011-09-10 08:30 . 2011-09-27 16:45 -------- d-----w- c:\program files\Winamp
2011-09-10 08:26 . 2011-09-10 08:27 -------- d-----w- c:\program files\totalcmd
2011-09-09 16:41 . 2011-09-09 16:41 -------- d-----w- c:\documents and settings\UpdatusUser.PETER
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-09 09:12 . 2004-08-04 12:00 599040 ----a-w- c:\windows1\system32\crypt32.dll
2011-08-09 11:57 . 2010-12-21 13:04 154136 ----a-w- c:\windows1\system32\drivers\eamon.sys
2011-08-04 07:20 . 2010-12-21 11:47 39824 ----a-w- c:\windows1\system32\drivers\epfwndis.sys
2011-08-04 07:20 . 2010-12-21 11:47 147480 ----a-w- c:\windows1\system32\drivers\epfw.sys
2011-08-04 07:20 . 2010-08-03 10:28 61936 ----a-w- c:\windows1\system32\drivers\epfwtdi.sys
2011-08-04 07:20 . 2010-12-21 13:04 118104 ----a-w- c:\windows1\system32\drivers\ehdrv.sys
2011-08-03 11:49 . 2011-05-21 04:01 61440 ----a-w- c:\windows1\system32\OpenCL.dll
2011-08-03 11:49 . 2011-05-21 04:01 17186816 ----a-w- c:\windows1\system32\nvcompiler.dll
2011-08-03 11:49 . 2009-09-27 23:12 5427200 ----a-w- c:\windows1\system32\nvcuda.dll
2011-08-03 11:49 . 2009-09-27 23:12 4210816 ----a-w- c:\windows1\system32\nv4_disp.dll
2011-08-03 11:49 . 2009-09-27 23:12 2404864 ----a-w- c:\windows1\system32\nvapi.dll
2011-08-03 11:49 . 2009-09-27 23:12 2387560 ----a-w- c:\windows1\system32\nvcuvid.dll
2011-08-03 11:49 . 2009-09-27 23:12 2090088 ----a-w- c:\windows1\system32\nvcuvenc.dll
2011-08-03 11:49 . 2009-09-27 23:12 16191488 ----a-w- c:\windows1\system32\nvoglnt.dll
2011-08-03 11:49 . 2009-09-27 23:12 12542592 ----a-w- c:\windows1\system32\drivers\nv4_mini.sys
2011-08-03 11:49 . 2009-09-27 16:20 54272 ----a-w- c:\windows1\system32\nvwddi.dll
2011-08-03 11:49 . 2009-09-27 16:19 146024 ----a-w- c:\windows1\system32\nvsvc32.exe
2011-08-03 11:49 . 2009-09-27 16:19 145000 ----a-w- c:\windows1\system32\nvcolor.exe
2011-08-03 11:49 . 2009-09-27 16:19 13892200 ----a-w- c:\windows1\system32\nvcpl.dll
2011-08-03 11:49 . 2009-09-27 16:19 111208 ----a-w- c:\windows1\system32\nvmctray.dll
2011-07-15 13:29 . 2004-08-04 12:00 456320 ----a-w- c:\windows1\system32\drivers\mrxsmb.sys
2011-07-08 14:02 . 2004-08-04 12:00 10496 ----a-w- c:\windows1\system32\drivers\ndistapi.sys
2011-09-27 20:51 . 2011-09-08 17:11 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{f999a48b-1950-4d81-9971-79018f807b4b}"= "c:\program files\FreeOnlineRadioPlayerRecorder\prxtbFree.dll" [2011-01-17 175912]
.
[HKEY_CLASSES_ROOT\clsid\{f999a48b-1950-4d81-9971-79018f807b4b}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2011-01-17 14:54 175912 ----a-w- c:\program files\ConduitEngine\prxConduitEngine.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{f999a48b-1950-4d81-9971-79018f807b4b}]
2011-01-17 14:54 175912 ----a-w- c:\program files\FreeOnlineRadioPlayerRecorder\prxtbFree.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{f999a48b-1950-4d81-9971-79018f807b4b}"= "c:\program files\FreeOnlineRadioPlayerRecorder\prxtbFree.dll" [2011-01-17 175912]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\prxConduitEngine.dll" [2011-01-17 175912]
.
[HKEY_CLASSES_ROOT\clsid\{f999a48b-1950-4d81-9971-79018f807b4b}]
.
[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WinSys2"="c:\windows1\system32\winsys2.exe" [2009-10-12 208896]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-06 3076144]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"NvCplDaemon"="c:\windows1\system32\NvCpl.dll" [2011-08-03 13892200]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows1\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS1^Start Menu^Programs^Startup^Bluetooth.lnk]
path=c:\documents and settings\All Users.WINDOWS1\Start Menu\Programs\Startup\Bluetooth.lnk
backup=c:\windows1\pss\Bluetooth.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2011-06-06 10:55 937920 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationAgent]
2008-04-14 00:12 110592 ----a-w- c:\windows1\system32\bthprops.cpl
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
2008-04-14 00:12 15360 ----a-w- c:\windows1\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1]
2004-08-04 12:00 208952 ----a-w- c:\windows1\ime\imjp8_1\imjpmig.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 00:12 1695232 ------w- c:\program files\Messenger\msmsgs.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSPY2002]
2004-08-04 12:00 59392 ----a-w- c:\windows1\system32\IME\PINTLGNT\IMSCINST.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nTrayFw]
2005-04-29 16:22 266240 ----a-w- c:\program files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2011-08-03 11:49 13892200 ----a-w- c:\windows1\system32\nvcpl.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
2011-08-03 11:49 111208 ----a-w- c:\windows1\system32\nvmctray.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002A]
2004-08-04 12:00 455168 ----a-w- c:\windows1\system32\IME\TINTLGNT\TINTSETP.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002ASync]
2004-08-04 12:00 455168 ----a-w- c:\windows1\system32\IME\TINTLGNT\TINTSETP.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSTray]
2007-12-14 15:19 132624 ------w- c:\program files\Samsung\Samsung Media Studio 5\SMSTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
2005-04-15 03:01 77824 ----a-w- c:\windows1\SOUNDMAN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
2011-07-11 21:47 74752 ----a-w- c:\program files\Winamp\winampa.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NetworkAccessManager\\Apache Group\\Apache2\\bin\\Apache.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
.
R1 ehdrv;ehdrv;c:\windows1\system32\drivers\ehdrv.sys [21.12.2010 15:04 118104]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [6.9.2011 18:16 974944]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [21.5.2011 12:45 2255464]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows1\system32\drivers\nvhda32.sys [10.9.2011 13:03 119528]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\e:\ntglm7x.sys --> e:\NTGLM7X.sys [?]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.sk/
uInternet Settings,ProxyOverride = local
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Send To &Bluetooth - c:\program files\MSI\BToes Bluetooth Software\btsendto_ie_ctx.htm
LSP: %SYSTEMROOT%\system32\nvappfilter.dll
TCP: DhcpNameServer = 10.0.0.1 195.146.128.62
FF - ProfilePath - c:\documents and settings\peter1\Application Data\Mozilla\Firefox\Profiles\3b6bt19t.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - www.google.sk
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.2.9&q=
.
- - - - ORPHANS REMOVED - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
MSConfigStartUp-ApnUpdater - c:\program files\Ask.com\Updater\Updater.exe
MSConfigStartUp-nwiz - nwiz.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-09-29 22:33
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'lsass.exe'(960)
c:\windows1\system32\nvappfilter.dll
.
Completion time: 2011-09-29 22:35:08
ComboFix-quarantined-files.txt 2011-09-29 20:35
.
Pre-Run: 39 142 834 176 bytes free
Post-Run: 39 254 298 624 bytes free
.
- - End Of File - - C83201AAE740A9741920FDC2A137867D

Re: Prosím o kontrolu

Napsal: 29 zář 2011 21:55
od Rudy
Ještě dočistíme. Otevřte poznámkový blok a zkopírujte do něj:
Collect::
c:\windows1\system32\winsys2.exe

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WinSys2"=-
Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

Obrázek

Re: Prosím o kontrolu

Napsal: 29 zář 2011 22:13
od casualties
ComboFix 11-09-29.06 - peter1 29.09.2011 23:01:33.2.1 - x86
Systém Microsoft Windows XP Home Edition 5.1.2600.3.1250.421.1033.18.1023.551 [GMT 2:00]
Running from: c:\documents and settings\peter1\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\peter1\Desktop\CFScript.txt
AV: ESET Smart Security 5.0 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *Enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
FW: NVIDIA Firewall *Disabled* {EDC10449-64D1-46c7-A59A-EC20D662F26D}
* Resident AV is active
.
.
file zipped: c:\windows1\system32\winsys2.exe
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows1\system32\winsys2.exe
.
.
((((((((((((((((((((((((( Files Created from 2011-08-28 to 2011-09-29 )))))))))))))))))))))))))))))))
.
.
2011-09-29 13:32 . 2011-09-29 13:32 -------- d-----w- c:\program files\trend micro
2011-09-29 13:32 . 2011-09-29 13:32 -------- d-----w- C:\rsit
2011-09-28 16:13 . 2011-09-28 16:13 -------- d-----w- c:\program files\Conduit
2011-09-28 16:13 . 2011-09-28 16:13 -------- d-----w- c:\program files\FreeOnlineRadioPlayerRecorder
2011-09-28 16:13 . 2011-09-28 16:13 -------- d-----w- c:\program files\All Free Video Converter
2011-09-24 07:57 . 2011-09-24 12:23 -------- d-----w- c:\program files\Microsoft Works
2011-09-24 07:57 . 2011-09-24 07:57 -------- d-----w- c:\program files\MSBuild
2011-09-24 07:53 . 2011-09-24 07:53 -------- d-----r- C:\MSOCache
2011-09-23 15:50 . 2011-09-23 15:50 -------- d-----w- c:\program files\MSXML 4.0
2011-09-22 15:41 . 2011-09-22 15:41 -------- d-----w- c:\program files\MyFree Codec
2011-09-22 14:45 . 2011-09-22 14:45 -------- d-----w- c:\program files\Samsung
2011-09-22 14:45 . 2011-09-22 14:45 -------- d-----w- c:\program files\MarkAny
2011-09-16 16:59 . 2011-09-16 16:59 -------- d-----w- c:\program files\MSI
2011-09-14 15:13 . 2010-04-26 22:32 -------- d-----w- C:\WINDOWS
2011-09-14 15:13 . 2010-04-26 18:18 -------- d-----w- c:\program files\Nero
2011-09-11 08:18 . 2011-09-28 15:44 -------- d-----w- c:\program files\The KMPlayer
2011-09-10 08:53 . 2011-09-10 08:53 -------- d-----w- c:\program files\Windows Media Connect 2
2011-09-10 08:30 . 2011-09-27 16:45 -------- d-----w- c:\program files\Winamp
2011-09-10 08:26 . 2011-09-10 08:27 -------- d-----w- c:\program files\totalcmd
2011-09-09 16:41 . 2011-09-09 16:41 -------- d-----w- c:\documents and settings\UpdatusUser.PETER
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-09 09:12 . 2004-08-04 12:00 599040 ----a-w- c:\windows1\system32\crypt32.dll
2011-08-09 11:57 . 2010-12-21 13:04 154136 ----a-w- c:\windows1\system32\drivers\eamon.sys
2011-08-04 07:20 . 2010-12-21 11:47 39824 ----a-w- c:\windows1\system32\drivers\epfwndis.sys
2011-08-04 07:20 . 2010-12-21 11:47 147480 ----a-w- c:\windows1\system32\drivers\epfw.sys
2011-08-04 07:20 . 2010-08-03 10:28 61936 ----a-w- c:\windows1\system32\drivers\epfwtdi.sys
2011-08-04 07:20 . 2010-12-21 13:04 118104 ----a-w- c:\windows1\system32\drivers\ehdrv.sys
2011-08-03 11:49 . 2011-05-21 04:01 61440 ----a-w- c:\windows1\system32\OpenCL.dll
2011-08-03 11:49 . 2011-05-21 04:01 17186816 ----a-w- c:\windows1\system32\nvcompiler.dll
2011-08-03 11:49 . 2009-09-27 23:12 5427200 ----a-w- c:\windows1\system32\nvcuda.dll
2011-08-03 11:49 . 2009-09-27 23:12 4210816 ----a-w- c:\windows1\system32\nv4_disp.dll
2011-08-03 11:49 . 2009-09-27 23:12 2404864 ----a-w- c:\windows1\system32\nvapi.dll
2011-08-03 11:49 . 2009-09-27 23:12 2387560 ----a-w- c:\windows1\system32\nvcuvid.dll
2011-08-03 11:49 . 2009-09-27 23:12 2090088 ----a-w- c:\windows1\system32\nvcuvenc.dll
2011-08-03 11:49 . 2009-09-27 23:12 16191488 ----a-w- c:\windows1\system32\nvoglnt.dll
2011-08-03 11:49 . 2009-09-27 23:12 12542592 ----a-w- c:\windows1\system32\drivers\nv4_mini.sys
2011-08-03 11:49 . 2009-09-27 16:20 54272 ----a-w- c:\windows1\system32\nvwddi.dll
2011-08-03 11:49 . 2009-09-27 16:19 146024 ----a-w- c:\windows1\system32\nvsvc32.exe
2011-08-03 11:49 . 2009-09-27 16:19 145000 ----a-w- c:\windows1\system32\nvcolor.exe
2011-08-03 11:49 . 2009-09-27 16:19 13892200 ----a-w- c:\windows1\system32\nvcpl.dll
2011-08-03 11:49 . 2009-09-27 16:19 111208 ----a-w- c:\windows1\system32\nvmctray.dll
2011-07-15 13:29 . 2004-08-04 12:00 456320 ----a-w- c:\windows1\system32\drivers\mrxsmb.sys
2011-07-08 14:02 . 2004-08-04 12:00 10496 ----a-w- c:\windows1\system32\drivers\ndistapi.sys
2011-09-27 20:51 . 2011-09-08 17:11 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{f999a48b-1950-4d81-9971-79018f807b4b}"= "c:\program files\FreeOnlineRadioPlayerRecorder\prxtbFree.dll" [2011-01-17 175912]
.
[HKEY_CLASSES_ROOT\clsid\{f999a48b-1950-4d81-9971-79018f807b4b}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2011-01-17 14:54 175912 ----a-w- c:\program files\ConduitEngine\prxConduitEngine.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{f999a48b-1950-4d81-9971-79018f807b4b}]
2011-01-17 14:54 175912 ----a-w- c:\program files\FreeOnlineRadioPlayerRecorder\prxtbFree.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{f999a48b-1950-4d81-9971-79018f807b4b}"= "c:\program files\FreeOnlineRadioPlayerRecorder\prxtbFree.dll" [2011-01-17 175912]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\prxConduitEngine.dll" [2011-01-17 175912]
.
[HKEY_CLASSES_ROOT\clsid\{f999a48b-1950-4d81-9971-79018f807b4b}]
.
[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-06 3076144]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"NvCplDaemon"="c:\windows1\system32\NvCpl.dll" [2011-08-03 13892200]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows1\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS1^Start Menu^Programs^Startup^Bluetooth.lnk]
path=c:\documents and settings\All Users.WINDOWS1\Start Menu\Programs\Startup\Bluetooth.lnk
backup=c:\windows1\pss\Bluetooth.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2011-06-06 10:55 937920 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationAgent]
2008-04-14 00:12 110592 ----a-w- c:\windows1\system32\bthprops.cpl
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
2008-04-14 00:12 15360 ----a-w- c:\windows1\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1]
2004-08-04 12:00 208952 ----a-w- c:\windows1\ime\imjp8_1\imjpmig.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 00:12 1695232 ------w- c:\program files\Messenger\msmsgs.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSPY2002]
2004-08-04 12:00 59392 ----a-w- c:\windows1\system32\IME\PINTLGNT\IMSCINST.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nTrayFw]
2005-04-29 16:22 266240 ----a-w- c:\program files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2011-08-03 11:49 13892200 ----a-w- c:\windows1\system32\nvcpl.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
2011-08-03 11:49 111208 ----a-w- c:\windows1\system32\nvmctray.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002A]
2004-08-04 12:00 455168 ----a-w- c:\windows1\system32\IME\TINTLGNT\TINTSETP.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002ASync]
2004-08-04 12:00 455168 ----a-w- c:\windows1\system32\IME\TINTLGNT\TINTSETP.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSTray]
2007-12-14 15:19 132624 ------w- c:\program files\Samsung\Samsung Media Studio 5\SMSTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
2005-04-15 03:01 77824 ----a-w- c:\windows1\SOUNDMAN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
2011-07-11 21:47 74752 ----a-w- c:\program files\Winamp\winampa.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NetworkAccessManager\\Apache Group\\Apache2\\bin\\Apache.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
.
R1 ehdrv;ehdrv;c:\windows1\system32\drivers\ehdrv.sys [21.12.2010 15:04 118104]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [6.9.2011 18:16 974944]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [21.5.2011 12:45 2255464]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows1\system32\drivers\nvhda32.sys [10.9.2011 13:03 119528]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\e:\ntglm7x.sys --> e:\NTGLM7X.sys [?]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.sk/
uInternet Settings,ProxyOverride = local
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Send To &Bluetooth - c:\program files\MSI\BToes Bluetooth Software\btsendto_ie_ctx.htm
LSP: %SYSTEMROOT%\system32\nvappfilter.dll
TCP: DhcpNameServer = 10.0.0.1 195.146.128.62
FF - ProfilePath - c:\documents and settings\peter1\Application Data\Mozilla\Firefox\Profiles\3b6bt19t.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - www.google.sk
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.2.9&q=
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-09-29 23:08
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'lsass.exe'(960)
c:\windows1\system32\nvappfilter.dll
.
- - - - - - - > 'explorer.exe'(600)
c:\windows1\system32\WININET.dll
c:\windows1\system32\ieframe.dll
c:\windows1\system32\webcheck.dll
c:\windows1\system32\WPDShServiceObj.dll
c:\windows1\system32\btncopy.dll
c:\windows1\system32\PortableDeviceTypes.dll
c:\windows1\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows1\system32\rundll32.exe
c:\program files\MSI\BToes Bluetooth Software\bin\btwdins.exe
c:\program files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
c:\program files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
c:\program files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
c:\windows1\system32\nvsvc32.exe
c:\program files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
c:\program files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
.
**************************************************************************
.
Completion time: 2011-09-29 23:11:33 - machine was rebooted
ComboFix-quarantined-files.txt 2011-09-29 21:11
ComboFix2.txt 2011-09-29 20:35
.
Pre-Run: 39 264 169 984 bytes free
Post-Run: 12 adresárov, 39 246 434 304 voľných bajtov
.
- - End Of File - - 2528425C8039FAB5F94F1EBA3E01B052
Upload was successful

Re: Prosím o kontrolu

Napsal: 30 zář 2011 18:18
od Rudy
Ještě jednou spusťte CF tímto skriptem:
Firefox::
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_result ... r=1.2.9&q=

Re: Prosím o kontrolu

Napsal: 30 zář 2011 21:10
od casualties
už niekoľko minút stále vypisuje: preparing log report

do not run any programs until combofix has finished

už to celkom dosť dlho trvá...

Re: Prosím o kontrolu

Napsal: 30 zář 2011 21:23
od Rudy
Pokud se nedokončí, restartujte do nouz. režimu a spusťte sken tam. Použijte stejný skript.

Re: Prosím o kontrolu

Napsal: 30 zář 2011 21:26
od casualties
ale neviem kolko mam este cakat, lebo to trva uz asi pol hodiny

Re: Prosím o kontrolu

Napsal: 30 zář 2011 21:31
od Rudy
Tak to zrušte a restartujte. 1/2 hodiny je příliš.

Re: Prosím o kontrolu

Napsal: 30 zář 2011 21:53
od casualties
ComboFix 11-09-30.05 - Administrator . 09. 2011 22:46:28.4.1 - x86 NETWORK
Systém Microsoft Windows XP Home Edition 5.1.2600.3.1250.421.1033.18.1023.823 [GMT 2:00]
Running from: c:\documents and settings\Administrator.PETER\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Administrator.PETER\Desktop\CFScript.txt
AV: ESET Smart Security 5.0 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *Enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
FW: NVIDIA Firewall *Disabled* {EDC10449-64D1-46c7-A59A-EC20D662F26D}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Previous Run -------
.
c:\documents and settings\Peter\Application Data\vso_ts_preview.xml
.
.
((((((((((((((((((((((((( Files Created from 2011-08-28 to 2011-09-30 )))))))))))))))))))))))))))))))
.
.
2011-09-30 20:38 . 2011-09-30 20:38 -------- d-----w- c:\documents and settings\Administrator.PETER
2011-09-28 16:13 . 2011-09-28 16:13 -------- d-----w- c:\program files\All Free Video Converter
2011-09-24 07:57 . 2011-09-24 12:23 -------- d-----w- c:\program files\Microsoft Works
2011-09-22 15:41 . 2011-09-22 15:41 -------- d-----w- c:\program files\MyFree Codec
2011-09-22 14:45 . 2011-09-22 14:45 -------- d-----w- c:\program files\Samsung
2011-09-22 14:45 . 2011-09-22 14:45 -------- d-----w- c:\program files\MarkAny
2011-09-16 16:59 . 2011-09-16 16:59 -------- d-----w- c:\program files\MSI
2011-09-14 15:13 . 2010-04-26 22:32 -------- d-----w- C:\WINDOWS
2011-09-14 15:13 . 2010-04-26 18:18 -------- d-----w- c:\program files\Nero
2011-09-11 08:18 . 2011-09-30 09:40 -------- d-----w- c:\program files\The KMPlayer
2011-09-10 08:53 . 2011-09-10 08:53 -------- d-----w- c:\program files\Windows Media Connect 2
2011-09-10 08:30 . 2011-09-27 16:45 -------- d-----w- c:\program files\Winamp
2011-09-10 08:26 . 2011-09-10 08:27 -------- d-----w- c:\program files\totalcmd
2011-09-09 16:41 . 2011-09-09 16:41 -------- d-----w- c:\documents and settings\UpdatusUser.PETER
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-09 09:12 . 2004-08-04 12:00 599040 ----a-w- c:\windows1\system32\crypt32.dll
2011-08-09 11:57 . 2010-12-21 13:04 154136 ----a-w- c:\windows1\system32\drivers\eamon.sys
2011-08-04 07:20 . 2010-12-21 11:47 39824 ----a-w- c:\windows1\system32\drivers\epfwndis.sys
2011-08-04 07:20 . 2010-12-21 11:47 147480 ----a-w- c:\windows1\system32\drivers\epfw.sys
2011-08-04 07:20 . 2010-08-03 10:28 61936 ----a-w- c:\windows1\system32\drivers\epfwtdi.sys
2011-08-04 07:20 . 2010-12-21 13:04 118104 ----a-w- c:\windows1\system32\drivers\ehdrv.sys
2011-08-03 11:49 . 2011-05-21 04:01 61440 ----a-w- c:\windows1\system32\OpenCL.dll
2011-08-03 11:49 . 2011-05-21 04:01 17186816 ----a-w- c:\windows1\system32\nvcompiler.dll
2011-08-03 11:49 . 2009-09-27 23:12 5427200 ----a-w- c:\windows1\system32\nvcuda.dll
2011-08-03 11:49 . 2009-09-27 23:12 4210816 ----a-w- c:\windows1\system32\nv4_disp.dll
2011-08-03 11:49 . 2009-09-27 23:12 2404864 ----a-w- c:\windows1\system32\nvapi.dll
2011-08-03 11:49 . 2009-09-27 23:12 2387560 ----a-w- c:\windows1\system32\nvcuvid.dll
2011-08-03 11:49 . 2009-09-27 23:12 2090088 ----a-w- c:\windows1\system32\nvcuvenc.dll
2011-08-03 11:49 . 2009-09-27 23:12 16191488 ----a-w- c:\windows1\system32\nvoglnt.dll
2011-08-03 11:49 . 2009-09-27 23:12 12542592 ----a-w- c:\windows1\system32\drivers\nv4_mini.sys
2011-08-03 11:49 . 2009-09-27 16:20 54272 ----a-w- c:\windows1\system32\nvwddi.dll
2011-08-03 11:49 . 2009-09-27 16:19 146024 ----a-w- c:\windows1\system32\nvsvc32.exe
2011-08-03 11:49 . 2009-09-27 16:19 145000 ----a-w- c:\windows1\system32\nvcolor.exe
2011-08-03 11:49 . 2009-09-27 16:19 13892200 ----a-w- c:\windows1\system32\nvcpl.dll
2011-08-03 11:49 . 2009-09-27 16:19 111208 ----a-w- c:\windows1\system32\nvmctray.dll
2011-07-15 13:29 . 2004-08-04 12:00 456320 ----a-w- c:\windows1\system32\drivers\mrxsmb.sys
2011-07-08 14:02 . 2004-08-04 12:00 10496 ----a-w- c:\windows1\system32\drivers\ndistapi.sys
2011-09-27 20:51 . 2011-09-08 17:11 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-06 3076144]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"NvCplDaemon"="c:\windows1\system32\NvCpl.dll" [2011-08-03 13892200]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows1\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS1^Start Menu^Programs^Startup^Bluetooth.lnk]
path=c:\documents and settings\All Users.WINDOWS1\Start Menu\Programs\Startup\Bluetooth.lnk
backup=c:\windows1\pss\Bluetooth.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2011-06-06 10:55 937920 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationAgent]
2008-04-14 00:12 110592 ----a-w- c:\windows1\system32\bthprops.cpl
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
2008-04-14 00:12 15360 ----a-w- c:\windows1\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1]
2004-08-04 12:00 208952 ----a-w- c:\windows1\ime\imjp8_1\imjpmig.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
c:\program files\Messenger\msmsgs.exe [BU]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSPY2002]
2004-08-04 12:00 59392 ----a-w- c:\windows1\system32\IME\PINTLGNT\IMSCINST.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nTrayFw]
2005-04-29 16:22 266240 ----a-w- c:\program files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2011-08-03 11:49 13892200 ----a-w- c:\windows1\system32\nvcpl.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
2011-08-03 11:49 111208 ----a-w- c:\windows1\system32\nvmctray.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002A]
2004-08-04 12:00 455168 ----a-w- c:\windows1\system32\IME\TINTLGNT\TINTSETP.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002ASync]
2004-08-04 12:00 455168 ----a-w- c:\windows1\system32\IME\TINTLGNT\TINTSETP.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSTray]
2007-12-14 15:19 132624 ------w- c:\program files\Samsung\Samsung Media Studio 5\SMSTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
2005-04-15 03:01 77824 ----a-w- c:\windows1\SOUNDMAN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
2011-07-11 21:47 74752 ----a-w- c:\program files\Winamp\winampa.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NetworkAccessManager\\Apache Group\\Apache2\\bin\\Apache.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
.
S1 ehdrv;ehdrv;c:\windows1\system32\drivers\ehdrv.sys [21. 12. 2010 15:04 118104]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [6. 9. 2011 18:16 974944]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [21. 5. 2011 12:45 2255464]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows1\system32\drivers\nvhda32.sys [10. 9. 2011 13:03 119528]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\e:\ntglm7x.sys --> e:\NTGLM7X.sys [?]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - BTSERIAL
*NewlyCreated* - BTSLBCSP
.
.
------- Supplementary Scan -------
.
LSP: %SYSTEMROOT%\system32\nvappfilter.dll
TCP: DhcpNameServer = 10.0.0.1 195.146.128.62
FF - ProfilePath - c:\documents and settings\Administrator.PETER\Application Data\Mozilla\Firefox\Profiles\7wq6f7xo.default\
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-09-30 22:50
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'explorer.exe'(1224)
c:\windows1\system32\WININET.dll
.
Completion time: 2011-09-30 22:51:51
ComboFix-quarantined-files.txt 2011-09-30 20:51
.
Pre-Run: 39 943 176 192 bytes free
Post-Run: 10 adresárov, 39 925 837 824 voľných bajtov
.
- - End Of File - - C93309C7E80D04B7F463B50550E96449

Re: Prosím o kontrolu

Napsal: 30 zář 2011 22:05
od Rudy
Log již vypadá OK.

Re: Prosím o kontrolu

Napsal: 30 zář 2011 22:07
od casualties
Dakujem pekne!

Re: Prosím o kontrolu

Napsal: 30 zář 2011 22:10
od Rudy
Nemáte zač!

Re: Prosím o kontrolu

Napsal: 30 zář 2011 22:10
od casualties
Dam este pre istotu log:

Logfile of random's system information tool 1.09 (written by random/random)
Run by peter1 at 2011-09-30 23:10:14
Systém Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 38 GB (75%) free of 51 GB
Total RAM: 1023 MB (52% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:10:20, on 30.9.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS1\System32\smss.exe
C:\WINDOWS1\system32\winlogon.exe
C:\WINDOWS1\system32\services.exe
C:\WINDOWS1\system32\lsass.exe
C:\WINDOWS1\system32\svchost.exe
C:\WINDOWS1\System32\svchost.exe
C:\WINDOWS1\system32\svchost.exe
C:\WINDOWS1\system32\spoolsv.exe
C:\WINDOWS1\Explorer.EXE
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\WINDOWS1\system32\nvsvc32.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS1\system32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\peter1\Desktop\RSIT.exe
C:\Program Files\trend micro\peter1.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS1\system32\NvCpl.dll,NvStartup
O4 - HKUS\S-1-5-21-823518204-790525478-725345543-1005\..\Run: [CTFMON.EXE] C:\WINDOWS1\system32\CTFMON.EXE (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS1\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS1\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\MSI\BToes Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\MSI\BToes Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\MSI\BToes Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS1\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS1\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDow ... rtScan.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS1\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS1\system32\browseui.dll
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\MSI\BToes Bluetooth Software\bin\btwdins.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS1\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

--
End of file - 5600 bytes

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\peter1\Application Data\Mozilla\Firefox\Profiles\3b6bt19t.default

prefs.js - "browser.startup.homepage" - "www.google.sk"
prefs.js - "keyword.URL" - "http://search.icq.com/search/afe_result ... r=1.2.9&q="

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS1\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
NPOFF12.DLL
nppdf32.dll

C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

C:\Documents and Settings\peter1\Application Data\Mozilla\Firefox\Profiles\3b6bt19t.default\searchplugins\
icqplugin.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2011-09-06 3076144]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"NvCplDaemon"=C:\WINDOWS1\system32\NvCpl.dll [2011-08-03 13892200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationAgent]
bthprops.cpl,,BluetoothAuthenticationAgent []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
C:\WINDOWS1\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1]
C:\WINDOWS1\IME\imjp8_1\IMJPMIG.EXE [2004-08-04 208952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe /background []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSPY2002]
C:\WINDOWS1\system32\IME\PINTLGNT\ImScInst.exe [2004-08-04 59392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nTrayFw]
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe [2005-04-29 266240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS1\system32\NvCpl.dll [2011-08-03 13892200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
NvMCTray.dll,NvTaskbarInit -login []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002A]
C:\WINDOWS1\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-04 455168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002ASync]
C:\WINDOWS1\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-04 455168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSTray]
C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe [2007-12-14 132624]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
C:\WINDOWS1\SOUNDMAN.EXE [2005-04-15 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [2011-07-11 74752]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS1^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\MSI\BTOESB~1\BTTray.exe [2005-05-31 577597]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS1\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe"="C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"midi"=wdmaud.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS1\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS1\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer6"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll

======List of files/folders created in the last 1 month======

2011-09-30 23:10:14 ----D---- C:\rsit
2011-09-30 23:10:14 ----D---- C:\Program Files\trend micro
2011-09-30 22:51:53 ----D---- C:\WINDOWS1\temp
2011-09-30 22:51:51 ----A---- C:\ComboFix.txt
2011-09-30 22:38:25 ----A---- C:\WINDOWS1\ntbtlog.txt
2011-09-30 21:32:14 ----D---- C:\WINDOWS1\ERDNT
2011-09-28 18:13:32 ----D---- C:\Documents and Settings\peter1\Application Data\All Free Video Converter
2011-09-28 18:13:20 ----A---- C:\WINDOWS1\system32\NCTWMAFile2.dll
2011-09-28 18:13:20 ----A---- C:\WINDOWS1\system32\NCTAudioRecord2.dll
2011-09-28 18:13:20 ----A---- C:\WINDOWS1\system32\NCTAudioPlayer2.dll
2011-09-28 18:13:20 ----A---- C:\WINDOWS1\system32\NCTAudioInformation2.dll
2011-09-28 18:13:20 ----A---- C:\WINDOWS1\system32\NCTAudioFile2.dll
2011-09-28 18:13:17 ----D---- C:\Program Files\All Free Video Converter
2011-09-28 18:07:03 ----A---- C:\WINDOWS1\system32\3ivx.dll
2011-09-27 18:20:02 ----A---- C:\WINDOWS1\system32\unrar.dll
2011-09-27 18:20:01 ----A---- C:\WINDOWS1\avisplitter.ini
2011-09-27 18:20:00 ----A---- C:\WINDOWS1\system32\xvidvfw.dll
2011-09-27 18:20:00 ----A---- C:\WINDOWS1\system32\xvidcore.dll
2011-09-27 18:20:00 ----A---- C:\WINDOWS1\system32\ff_vfw.dll
2011-09-27 18:16:22 ----A---- C:\WINDOWS1\FISHUI.INI
2011-09-26 17:09:00 ----D---- C:\Documents and Settings\All Users.WINDOWS1\Application Data\ESET
2011-09-24 15:34:48 ----A---- C:\WINDOWS1\system32\nvUnsupRes.dat
2011-09-24 14:25:47 ----D---- C:\WINDOWS1\SxsCaPendDel
2011-09-24 10:01:48 ----A---- C:\WINDOWS1\system32\muweb.dll
2011-09-24 10:01:48 ----A---- C:\WINDOWS1\system32\mucltui.dll
2011-09-24 09:57:36 ----D---- C:\Program Files\Microsoft Works
2011-09-24 09:54:17 ----D---- C:\WINDOWS1\SHELLNEW
2011-09-24 09:54:01 ----D---- C:\Documents and Settings\All Users.WINDOWS1\Application Data\Microsoft Help
2011-09-22 17:41:00 ----D---- C:\Program Files\MyFree Codec
2011-09-22 16:55:13 ----D---- C:\Program Files\Adobe
2011-09-22 16:54:43 ----D---- C:\Documents and Settings\All Users.WINDOWS1\Application Data\Adobe
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\vorbisenc.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\vorbis.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\unicows.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\TG_DUMP0708.DLL
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\tg_dump.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\OggDS.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\Ogg.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\muzwmts.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\muzapp.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\muzaf1.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\msxml4r.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\msxml4a.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\msvcr71.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\msvcr70.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\msvcp71.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\MSLUR71.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\MSLUP71.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\MFC71u.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\MFC71LU.DLL
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\MFC71.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\mfc70.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\MaDRM.dll
2011-09-22 16:45:43 ----N---- C:\WINDOWS1\system32\atl71.dll
2011-09-22 16:45:41 ----N---- C:\WINDOWS1\system32\MAMACExtract.dll
2011-09-22 16:45:31 ----D---- C:\Program Files\Samsung
2011-09-22 16:45:31 ----D---- C:\Program Files\MarkAny
2011-09-22 16:45:31 ----D---- C:\Documents and Settings\peter1\Application Data\DataCast
2011-09-20 19:34:51 ----A---- C:\WINDOWS1\RtlRack.ini
2011-09-16 19:01:44 ----A---- C:\WINDOWS1\system32\wshirda.dll
2011-09-16 19:01:44 ----A---- C:\WINDOWS1\system32\irmon.dll
2011-09-16 19:01:44 ----A---- C:\WINDOWS1\system32\irftp.exe
2011-09-16 18:59:52 ----D---- C:\Program Files\MSI
2011-09-15 21:53:28 ----D---- C:\Documents and Settings\peter1\Application Data\Winamp
2011-09-14 19:40:37 ----D---- C:\Documents and Settings\peter1\Application Data\OpenCandy
2011-09-14 19:34:05 ----A---- C:\WINDOWS1\system32\ptpusb.dll
2011-09-14 19:34:05 ----A---- C:\WINDOWS1\system32\drivers\usbscan.sys
2011-09-14 19:34:04 ----A---- C:\WINDOWS1\system32\ptpusd.dll
2011-09-14 17:13:49 ----D---- C:\Documents and Settings\peter1\Application Data\Nero
2011-09-14 17:13:15 ----D---- C:\WINDOWS
2011-09-14 17:13:12 ----D---- C:\Program Files\Nero
2011-09-13 22:21:16 ----HDC---- C:\WINDOWS1\$NtUninstallKB2616676$
2011-09-13 22:20:06 ----HDC---- C:\WINDOWS1\$NtUninstallKB2570947$
2011-09-11 19:26:29 ----D---- C:\Documents and Settings\All Users.WINDOWS1\Application Data\ICQ
2011-09-11 10:18:47 ----D---- C:\Program Files\The KMPlayer
2011-09-11 10:04:43 ----A---- C:\WINDOWS1\system32\drivers\USBSTOR.SYS
2011-09-10 13:03:54 ----A---- C:\WINDOWS1\system32\nvhdap32.dll
2011-09-10 13:03:54 ----A---- C:\WINDOWS1\system32\nvhdagenco322040.dll
2011-09-10 13:03:54 ----A---- C:\WINDOWS1\system32\drivers\nvhda32.sys
2011-09-10 13:03:51 ----A---- C:\WINDOWS1\system32\nvgenco32.dll
2011-09-10 13:03:51 ----A---- C:\WINDOWS1\system32\nvdispco32.dll
2011-09-10 11:05:57 ----A---- C:\WINDOWS1\system32\chtbrkr.dll
2011-09-10 11:05:57 ----A---- C:\WINDOWS1\system32\chsbrkr.dll
2011-09-10 11:05:56 ----A---- C:\WINDOWS1\system32\msir3jp.dll
2011-09-10 11:05:56 ----A---- C:\WINDOWS1\system32\korwbrkr.dll
2011-09-10 11:05:43 ----A---- C:\WINDOWS1\system32\kbd101a.dll
2011-09-10 11:05:34 ----A---- C:\WINDOWS1\system32\kbdnecNT.dll
2011-09-10 11:05:34 ----A---- C:\WINDOWS1\system32\kbdnecAT.dll
2011-09-10 11:05:34 ----A---- C:\WINDOWS1\system32\kbdnec95.dll
2011-09-10 11:05:13 ----A---- C:\WINDOWS1\system32\c_is2022.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdintel.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdintam.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdinpun.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdinmar.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdinkan.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdinhin.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdinguj.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdindev.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdgeo.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdarmw.dll
2011-09-10 11:05:11 ----RA---- C:\WINDOWS1\system32\kbdarme.dll
2011-09-10 11:05:11 ----A---- C:\WINDOWS1\system32\Thawbrkr.dll
2011-09-10 11:05:11 ----A---- C:\WINDOWS1\system32\c_iscii.dll
2011-09-10 11:05:10 ----RA---- C:\WINDOWS1\system32\kbdvntc.dll
2011-09-10 11:05:09 ----RA---- C:\WINDOWS1\system32\kbdurdu.dll
2011-09-10 11:05:09 ----RA---- C:\WINDOWS1\system32\kbdsyr2.dll
2011-09-10 11:05:09 ----RA---- C:\WINDOWS1\system32\kbdsyr1.dll
2011-09-10 11:05:09 ----RA---- C:\WINDOWS1\system32\kbdfa.dll
2011-09-10 11:05:09 ----RA---- C:\WINDOWS1\system32\kbddiv2.dll
2011-09-10 11:05:09 ----RA---- C:\WINDOWS1\system32\kbddiv1.dll
2011-09-10 11:05:09 ----RA---- C:\WINDOWS1\system32\kbda3.dll
2011-09-10 11:05:09 ----RA---- C:\WINDOWS1\system32\kbda2.dll
2011-09-10 11:05:09 ----RA---- C:\WINDOWS1\system32\kbda1.dll
2011-09-10 11:05:09 ----A---- C:\WINDOWS1\system32\kbdusa.dll
2011-09-10 11:05:06 ----RA---- C:\WINDOWS1\system32\kbdheb.dll
2011-09-10 11:05:03 ----RA---- C:\WINDOWS1\system32\kbdth3.dll
2011-09-10 11:05:03 ----RA---- C:\WINDOWS1\system32\kbdth2.dll
2011-09-10 11:05:03 ----RA---- C:\WINDOWS1\system32\kbdth1.dll
2011-09-10 11:05:03 ----RA---- C:\WINDOWS1\system32\kbdth0.dll
2011-09-10 11:05:03 ----A---- C:\WINDOWS1\system32\ftlx041e.dll
2011-09-10 11:01:05 ----A---- C:\WINDOWS1\system32\kbdkor.dll
2011-09-10 11:01:05 ----A---- C:\WINDOWS1\system32\kbdjpn.dll
2011-09-10 11:01:05 ----A---- C:\WINDOWS1\system32\kbd103.dll
2011-09-10 11:01:05 ----A---- C:\WINDOWS1\system32\kbd101c.dll
2011-09-10 11:01:02 ----A---- C:\WINDOWS1\system32\kbd106.dll
2011-09-10 11:01:02 ----A---- C:\WINDOWS1\system32\kbd101b.dll
2011-09-10 10:58:38 ----HDC---- C:\WINDOWS1\$NtUninstallKB954154_WM11$
2011-09-10 10:58:33 ----HDC---- C:\WINDOWS1\$NtUninstallKB929399$
2011-09-10 10:58:05 ----HDC---- C:\WINDOWS1\$NtUninstallKB939683$
2011-09-10 10:54:03 ----N---- C:\WINDOWS1\system32\spmsg.dll
2011-09-10 10:54:01 ----HDC---- C:\WINDOWS1\$NtUninstallMSCompPackV1$
2011-09-10 10:53:50 ----D---- C:\Program Files\Windows Media Connect 2
2011-09-10 10:53:44 ----HDC---- C:\WINDOWS1\$NtUninstallwmp11$
2011-09-10 10:53:14 ----HDC---- C:\WINDOWS1\$NtUninstallWMFDist11$
2011-09-10 10:52:58 ----D---- C:\WINDOWS1\system32\LogFiles
2011-09-10 10:52:58 ----D---- C:\WINDOWS1\system32\drivers\UMDF
2011-09-10 10:52:56 ----HDC---- C:\WINDOWS1\$NtUninstallWudf01000$
2011-09-10 10:43:54 ----HDC---- C:\WINDOWS1\$NtUninstallKB941569$
2011-09-10 10:32:05 ----A---- C:\WINDOWS1\system32\D3DX9_42.dll
2011-09-10 10:32:04 ----A---- C:\WINDOWS1\system32\d3dx9_31.dll
2011-09-10 10:32:03 ----D---- C:\WINDOWS1\Logs
2011-09-10 10:31:37 ----D---- C:\WINDOWS1\RegisteredPackages
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\vxblock.dll
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxwma.dll
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxwave.dll
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxsfs.dll
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxmas.dll
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxinsi64.exe
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxinsa64.exe
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxhpinst.exe
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxdrv.dll
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxcpyi64.exe
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxcpya64.exe
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\pxafs.dll
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\px.dll
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\drivers\PxHelp20.sys
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\drivers\cdralw2k.sys
2011-09-10 10:30:55 ----N---- C:\WINDOWS1\system32\drivers\cdr4_xp.sys
2011-09-10 10:30:54 ----D---- C:\Program Files\Winamp
2011-09-10 10:26:48 ----D---- C:\Program Files\totalcmd
2011-09-10 10:26:48 ----A---- C:\WINDOWS1\UC.PIF
2011-09-10 10:26:48 ----A---- C:\WINDOWS1\RAR.PIF
2011-09-10 10:26:48 ----A---- C:\WINDOWS1\PKZIP.PIF
2011-09-10 10:26:48 ----A---- C:\WINDOWS1\PKUNZIP.PIF
2011-09-10 10:26:48 ----A---- C:\WINDOWS1\NOCLOSE.PIF
2011-09-10 10:26:48 ----A---- C:\WINDOWS1\LHA.PIF
2011-09-10 10:26:48 ----A---- C:\WINDOWS1\ARJ.PIF
2011-09-10 10:24:37 ----D---- C:\Program Files\WinRAR
2011-09-10 09:55:39 ----D---- C:\WINDOWS1\system32\1051
2011-09-10 00:39:29 ----A---- C:\WINDOWS1\FCRCfg.ini
2011-09-10 00:29:52 ----D---- C:\Documents and Settings\peter1\Application Data\AnvSoft
2011-09-09 18:41:15 ----D---- C:\Documents and Settings\All Users.WINDOWS1\Application Data\NVIDIA
2011-09-09 18:40:58 ----A---- C:\WINDOWS1\system32\easyupdatusapiu.dll
2011-09-09 18:06:24 ----HDC---- C:\WINDOWS1\$NtUninstallKB2607712$
2011-09-09 14:44:44 ----HDC---- C:\WINDOWS1\$NtUninstallKB2570791$
2011-09-09 14:44:40 ----HDC---- C:\WINDOWS1\$NtUninstallKB2387149$
2011-09-09 14:44:34 ----HDC---- C:\WINDOWS1\$NtUninstallKB2479943$
2011-09-09 14:44:29 ----HDC---- C:\WINDOWS1\$NtUninstallKB2567680$
2011-09-09 14:44:25 ----HDC---- C:\WINDOWS1\$NtUninstallKB2478971$
2011-09-09 14:44:20 ----HDC---- C:\WINDOWS1\$NtUninstallKB2345886$
2011-09-09 14:44:15 ----HDC---- C:\WINDOWS1\$NtUninstallKB2536276-v2$
2011-09-09 14:44:09 ----HDC---- C:\WINDOWS1\$NtUninstallKB970430$
2011-09-09 14:44:05 ----HDC---- C:\WINDOWS1\$NtUninstallKB2296011$
2011-09-09 14:44:00 ----HDC---- C:\WINDOWS1\$NtUninstallKB2115168$
2011-09-09 14:43:56 ----HDC---- C:\WINDOWS1\$NtUninstallKB975558_WM8$
2011-09-09 14:43:52 ----HDC---- C:\WINDOWS1\$NtUninstallKB2378111_WM9$
2011-09-09 14:43:48 ----HDC---- C:\WINDOWS1\$NtUninstallKB951978$
2011-09-09 14:43:43 ----HDC---- C:\WINDOWS1\$NtUninstallKB2443105$
2011-09-09 14:43:37 ----HDC---- C:\WINDOWS1\$NtUninstallKB2481109$
2011-09-09 14:43:33 ----HDC---- C:\WINDOWS1\$NtUninstallKB2485663$
2011-09-09 14:43:29 ----HDC---- C:\WINDOWS1\$NtUninstallKB2440591$
2011-09-09 14:43:24 ----HDC---- C:\WINDOWS1\$NtUninstallKB982132$
2011-09-09 14:43:18 ----HDC---- C:\WINDOWS1\$NtUninstallKB2507938$
2011-09-09 14:43:13 ----HDC---- C:\WINDOWS1\$NtUninstallKB956744$
2011-09-09 14:43:08 ----HDC---- C:\WINDOWS1\$NtUninstallKB2476490$
2011-09-09 14:43:04 ----HDC---- C:\WINDOWS1\$NtUninstallKB2503665$
2011-09-09 14:43:00 ----HDC---- C:\WINDOWS1\$NtUninstallKB2347290$
2011-09-09 14:42:52 ----HDC---- C:\WINDOWS1\$NtUninstallKB2483185$
2011-09-09 14:42:48 ----HDC---- C:\WINDOWS1\$NtUninstallKB2079403$
2011-09-09 14:42:43 ----HDC---- C:\WINDOWS1\$NtUninstallKB2524375$
2011-09-09 14:42:39 ----HDC---- C:\WINDOWS1\$NtUninstallKB979687$
2011-09-09 14:42:34 ----HDC---- C:\WINDOWS1\$NtUninstallKB2570222$
2011-09-09 14:42:29 ----HDC---- C:\WINDOWS1\$NtUninstallKB2535512$
2011-09-09 14:42:26 ----HDC---- C:\WINDOWS1\$NtUninstallKB2412687$
2011-09-09 14:42:22 ----HDC---- C:\WINDOWS1\$NtUninstallKB2508272$
2011-09-09 14:42:18 ----HDC---- C:\WINDOWS1\$NtUninstallKB980436$
2011-09-09 14:42:14 ----HDC---- C:\WINDOWS1\$NtUninstallKB981322$
2011-09-09 14:42:07 ----HDC---- C:\WINDOWS1\$NtUninstallKB2507618$
2011-09-09 14:42:02 ----HDC---- C:\WINDOWS1\$NtUninstallKB973540_WM9$
2011-09-09 14:41:56 ----HDC---- C:\WINDOWS1\$NtUninstallKB2419632$
2011-09-09 14:41:52 ----HDC---- C:\WINDOWS1\$NtUninstallKB2508429$
2011-09-09 14:41:46 ----HDC---- C:\WINDOWS1\$NtUninstallKB971029$
2011-09-09 14:41:41 ----HDC---- C:\WINDOWS1\$NtUninstallKB2506212$
2011-09-09 14:41:38 ----HDC---- C:\WINDOWS1\$NtUninstallKB971737$
2011-09-09 14:41:30 ----HDC---- C:\WINDOWS1\$NtUninstallKB981997$
2011-09-09 14:41:26 ----HDC---- C:\WINDOWS1\$NtUninstallKB2544893$
2011-09-09 14:41:20 ----HDC---- C:\WINDOWS1\$NtUninstallKB2509553$
2011-09-09 14:41:12 ----HDC---- C:\WINDOWS1\$NtUninstallKB982665$
2011-09-09 14:41:08 ----HDC---- C:\WINDOWS1\$NtUninstallKB2541763$
2011-09-09 14:40:59 ----HDC---- C:\WINDOWS1\$NtUninstallKB2555917$
2011-09-09 14:40:55 ----HDC---- C:\WINDOWS1\$NtUninstallKB2478960$
2011-09-09 14:40:50 ----HDC---- C:\WINDOWS1\$NtUninstallKB2393802$
2011-09-09 14:40:29 ----HDC---- C:\WINDOWS1\$NtUninstallKB2566454$
2011-09-09 14:40:25 ----HDC---- C:\WINDOWS1\$NtUninstallKB2562937$
2011-09-09 14:40:21 ----HDC---- C:\WINDOWS1\$NtUninstallKB2423089$
2011-09-09 14:40:12 ----HDC---- C:\WINDOWS1\$NtUninstallKB2360937$
2011-09-09 14:32:51 ----D---- C:\WINDOWS1\Prefetch
2011-09-09 14:29:58 ----HDC---- C:\WINDOWS1\$NtUninstallKB980232$
2011-09-09 14:29:53 ----HDC---- C:\WINDOWS1\$NtUninstallKB980218$
2011-09-09 14:29:45 ----HDC---- C:\WINDOWS1\$NtUninstallKB979683$
2011-09-09 14:29:39 ----HDC---- C:\WINDOWS1\$NtUninstallKB979559$
2011-09-09 14:29:33 ----HDC---- C:\WINDOWS1\$NtUninstallKB979482$
2011-09-09 14:29:28 ----HDC---- C:\WINDOWS1\$NtUninstallKB979309$
2011-09-09 14:29:23 ----HDC---- C:\WINDOWS1\$NtUninstallKB978706$
2011-09-09 14:29:19 ----HDC---- C:\WINDOWS1\$NtUninstallKB978601$
2011-09-09 14:29:14 ----HDC---- C:\WINDOWS1\$NtUninstallKB978542$
2011-09-09 14:29:09 ----HDC---- C:\WINDOWS1\$NtUninstallKB978338$
2011-09-09 14:29:05 ----HDC---- C:\WINDOWS1\$NtUninstallKB978037$
2011-09-09 14:29:00 ----HDC---- C:\WINDOWS1\$NtUninstallKB977914$
2011-09-09 14:28:54 ----HDC---- C:\WINDOWS1\$NtUninstallKB975713$
2011-09-09 14:28:49 ----HDC---- C:\WINDOWS1\$NtUninstallKB975562$
2011-09-09 14:28:44 ----HDC---- C:\WINDOWS1\$NtUninstallKB975561$
2011-09-09 14:28:39 ----HDC---- C:\WINDOWS1\$NtUninstallKB975560$
2011-09-09 14:28:34 ----HDC---- C:\WINDOWS1\$NtUninstallKB975467$
2011-09-09 14:28:29 ----HDC---- C:\WINDOWS1\$NtUninstallKB975025$
2011-09-09 14:28:24 ----HDC---- C:\WINDOWS1\$NtUninstallKB974571$
2011-09-09 14:28:19 ----HDC---- C:\WINDOWS1\$NtUninstallKB974392$
2011-09-09 14:28:14 ----HDC---- C:\WINDOWS1\$NtUninstallKB974318$
2011-09-09 14:28:10 ----HDC---- C:\WINDOWS1\$NtUninstallKB974112$
2011-09-09 14:28:04 ----HDC---- C:\WINDOWS1\$NtUninstallKB973869$
2011-09-09 14:27:57 ----HDC---- C:\WINDOWS1\$NtUninstallKB973815$
2011-09-09 14:27:51 ----HDC---- C:\WINDOWS1\$NtUninstallKB973687$
2011-09-09 14:27:44 ----HDC---- C:\WINDOWS1\$NtUninstallKB973507$
2011-09-09 14:27:38 ----HDC---- C:\WINDOWS1\$NtUninstallKB972270$
2011-09-09 14:27:32 ----HDC---- C:\WINDOWS1\$NtUninstallKB971657$
2011-09-09 14:27:26 ----HDC---- C:\WINDOWS1\$NtUninstallKB971468$
2011-09-09 14:27:20 ----HDC---- C:\WINDOWS1\$NtUninstallKB970238$
2011-09-09 14:27:15 ----HDC---- C:\WINDOWS1\$NtUninstallKB969059$
2011-09-09 14:27:09 ----HDC---- C:\WINDOWS1\$NtUninstallKB968389$
2011-09-09 14:27:02 ----HDC---- C:\WINDOWS1\$NtUninstallKB967715$
2011-09-09 14:26:55 ----HDC---- C:\WINDOWS1\$NtUninstallKB961501$
2011-09-09 14:26:47 ----HDC---- C:\WINDOWS1\$NtUninstallKB960859$
2011-09-09 14:26:42 ----HDC---- C:\WINDOWS1\$NtUninstallKB960803$
2011-09-09 14:26:37 ----HDC---- C:\WINDOWS1\$NtUninstallKB960225$
2011-09-09 14:26:32 ----HDC---- C:\WINDOWS1\$NtUninstallKB959426$
2011-09-09 14:26:27 ----HDC---- C:\WINDOWS1\$NtUninstallKB958644$
2011-09-09 14:26:22 ----HDC---- C:\WINDOWS1\$NtUninstallKB956844$
2011-09-09 14:26:18 ----HDC---- C:\WINDOWS1\$NtUninstallKB956803$
2011-09-09 14:26:13 ----HDC---- C:\WINDOWS1\$NtUninstallKB956802$
2011-09-09 14:26:05 ----HDC---- C:\WINDOWS1\$NtUninstallKB956572$
2011-09-09 14:26:00 ----HDC---- C:\WINDOWS1\$NtUninstallKB955759$
2011-09-09 14:25:55 ----HDC---- C:\WINDOWS1\$NtUninstallKB973687_1$
2011-09-09 14:25:50 ----HDC---- C:\WINDOWS1\$NtUninstallKB955069$
2011-09-09 14:25:45 ----HDC---- C:\WINDOWS1\$NtUninstallKB952954$
2011-09-09 14:25:40 ----HDC---- C:\WINDOWS1\$NtUninstallKB952287$
2011-09-09 14:25:35 ----HDC---- C:\WINDOWS1\$NtUninstallKB952004$
2011-09-09 14:25:30 ----HDC---- C:\WINDOWS1\$NtUninstallKB951748$
2011-09-09 14:25:25 ----HDC---- C:\WINDOWS1\$NtUninstallKB951376-v2$
2011-09-09 14:25:21 ----HDC---- C:\WINDOWS1\$NtUninstallKB950974$
2011-09-09 14:25:16 ----HDC---- C:\WINDOWS1\$NtUninstallKB950762$
2011-09-09 14:25:11 ----HDC---- C:\WINDOWS1\$NtUninstallKB946648$
2011-09-09 14:25:06 ----HDC---- C:\WINDOWS1\$NtUninstallKB923561$
2011-09-09 14:25:00 ----HDC---- C:\WINDOWS1\$NtUninstallKB2229593$
2011-09-09 14:22:47 ----D---- C:\WINDOWS1\system32\scripting
2011-09-09 14:22:46 ----D---- C:\WINDOWS1\system32\en
2011-09-09 14:22:46 ----D---- C:\WINDOWS1\system32\bits
2011-09-09 14:22:46 ----D---- C:\WINDOWS1\l2schemas
2011-09-09 14:20:04 ----D---- C:\WINDOWS1\network diagnostic
2011-09-09 14:17:42 ----HDC---- C:\WINDOWS1\$NtServicePackUninstall$
2011-09-09 14:17:27 ----D---- C:\WINDOWS1\EHome
2011-09-09 14:09:17 ----N---- C:\WINDOWS1\system32\drivers\watv10nt.sys
2011-09-09 14:09:17 ----N---- C:\WINDOWS1\system32\drivers\watv06nt.sys
2011-09-09 14:09:17 ----N---- C:\WINDOWS1\system32\drivers\wadv11nt.sys
2011-09-09 14:09:17 ----N---- C:\WINDOWS1\system32\drivers\wadv09nt.sys
2011-09-09 14:09:17 ----N---- C:\WINDOWS1\system32\drivers\wadv08nt.sys
2011-09-09 14:09:17 ----N---- C:\WINDOWS1\system32\drivers\wadv07nt.sys
2011-09-09 14:09:14 ----N---- C:\WINDOWS1\system32\drivers\slwdmsup.sys
2011-09-09 14:09:14 ----N---- C:\WINDOWS1\system32\drivers\slnthal.sys
2011-09-09 14:09:14 ----N---- C:\WINDOWS1\system32\drivers\slntamr.sys
2011-09-09 14:09:13 ----N---- C:\WINDOWS1\system32\drivers\slnt7554.sys
2011-09-09 14:09:13 ----N---- C:\WINDOWS1\system32\drivers\s3gnbm.sys
2011-09-09 14:09:12 ----N---- C:\WINDOWS1\system32\drivers\recagent.sys
2011-09-09 14:09:11 ----N---- C:\WINDOWS1\system32\drivers\ntmtlfax.sys
2011-09-09 14:09:10 ----N---- C:\WINDOWS1\system32\drivers\mtxparhm.sys
2011-09-09 14:09:10 ----N---- C:\WINDOWS1\system32\drivers\mtlstrm.sys
2011-09-09 14:09:10 ----N---- C:\WINDOWS1\system32\drivers\mtlmnt5.sys
2011-09-09 14:09:06 ----N---- C:\WINDOWS1\system32\drivers\mdmxsdk.sys
2011-09-09 14:09:03 ----N---- C:\WINDOWS1\system32\drivers\hsfdpsp2.sys
2011-09-09 14:09:02 ----N---- C:\WINDOWS1\system32\drivers\hsfcxts2.sys
2011-09-09 14:09:02 ----N---- C:\WINDOWS1\system32\drivers\hsfbs2s2.sys
2011-09-09 14:07:17 ----N---- C:\WINDOWS1\system32\drivers\atinxsxx.sys
2011-09-09 14:07:17 ----N---- C:\WINDOWS1\system32\drivers\atinxbxx.sys
2011-09-09 14:07:17 ----N---- C:\WINDOWS1\system32\drivers\atintuxx.sys
2011-09-09 14:07:17 ----N---- C:\WINDOWS1\system32\drivers\atinttxx.sys
2011-09-09 14:07:17 ----N---- C:\WINDOWS1\system32\drivers\atinsnxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\atinrvxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\atinraxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\atinpdxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\atinmdxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\atinbtxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati2mtag.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati2mtaa.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1xsxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1xbxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1tuxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1ttxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1snxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1rvxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1raxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1pdxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1mdxx.sys
2011-09-09 14:07:16 ----N---- C:\WINDOWS1\system32\drivers\ati1btxx.sys
2011-09-09 13:48:08 ----HDC---- C:\WINDOWS1\$NtUninstallKB2229593_0$
2011-09-09 13:47:57 ----HDC---- C:\WINDOWS1\$NtUninstallKB982381$
2011-09-09 13:47:48 ----HDC---- C:\WINDOWS1\$NtUninstallKB979559_0$
2011-09-09 13:47:43 ----HDC---- C:\WINDOWS1\$NtUninstallKB975562_0$
2011-09-09 13:47:38 ----HDC---- C:\WINDOWS1\$NtUninstallKB979482_0$
2011-09-09 13:47:34 ----HDC---- C:\WINDOWS1\$NtUninstallKB980195$
2011-09-09 13:47:30 ----HDC---- C:\WINDOWS1\$NtUninstallKB978695_WM9$
2011-09-09 13:47:26 ----HDC---- C:\WINDOWS1\$NtUninstallKB980218_0$
2011-09-09 13:47:21 ----HDC---- C:\WINDOWS1\$NtUninstallKB981793$
2011-09-09 13:47:17 ----HDC---- C:\WINDOWS1\$NtUninstallKB978542_0$
2011-09-09 13:47:09 ----HDC---- C:\WINDOWS1\$NtUninstallKB978601_0$
2011-09-09 13:47:04 ----HDC---- C:\WINDOWS1\$NtUninstallKB979402_WM9L$
2011-09-09 13:46:56 ----HDC---- C:\WINDOWS1\$NtUninstallKB979683_0$
2011-09-09 13:46:49 ----HDC---- C:\WINDOWS1\$NtUninstallKB978338_0$
2011-09-09 13:46:44 ----HDC---- C:\WINDOWS1\$NtUninstallKB979309_0$
2011-09-09 13:46:40 ----HDC---- C:\WINDOWS1\$NtUninstallKB981350$
2011-09-09 13:46:36 ----HDC---- C:\WINDOWS1\$NtUninstallKB977816$
2011-09-09 13:46:31 ----HDC---- C:\WINDOWS1\$NtUninstallKB980232_0$
2011-09-09 13:46:25 ----HDC---- C:\WINDOWS1\$NtUninstallKB975561_0$
2011-09-09 13:46:20 ----HDC---- C:\WINDOWS1\$NtUninstallKB978706_0$
2011-09-09 13:46:15 ----HDC---- C:\WINDOWS1\$NtUninstallKB971468_0$
2011-09-09 13:46:10 ----HDC---- C:\WINDOWS1\$NtUninstallKB977914_0$
2011-09-09 13:46:03 ----HDC---- C:\WINDOWS1\$NtUninstallKB975560_0$
2011-09-09 13:45:55 ----HDC---- C:\WINDOWS1\$NtUninstallKB978037_0$
2011-09-09 13:45:51 ----HDC---- C:\WINDOWS1\$NtUninstallKB975713_0$
2011-09-09 13:45:46 ----HDC---- C:\WINDOWS1\$NtUninstallKB972270_0$
2011-09-09 13:45:41 ----HDC---- C:\WINDOWS1\$NtUninstallKB973904$
2011-09-09 13:45:35 ----HDC---- C:\WINDOWS1\$NtUninstallKB955759_0$
2011-09-09 13:45:30 ----HDC---- C:\WINDOWS1\$NtUninstallKB974392_0$
2011-09-09 13:45:25 ----HDC---- C:\WINDOWS1\$NtUninstallKB974318_0$
2011-09-09 13:45:20 ----HDC---- C:\WINDOWS1\$NtUninstallKB952069_WM9$
2011-09-09 13:45:15 ----HDC---- C:\WINDOWS1\$NtUninstallKB973687_0$
2011-09-09 13:45:10 ----HDC---- C:\WINDOWS1\$NtUninstallKB975467_0$
2011-09-09 13:45:04 ----HDC---- C:\WINDOWS1\$NtUninstallKB968389_0$
2011-09-09 13:44:59 ----HDC---- C:\WINDOWS1\$NtUninstallKB969059_0$
2011-09-09 13:44:55 ----HDC---- C:\WINDOWS1\$NtUninstallKB958869$
2011-09-09 13:44:51 ----HDC---- C:\WINDOWS1\$NtUninstallKB974112_0$
2011-09-09 13:44:47 ----HDC---- C:\WINDOWS1\$NtUninstallKB974571_0$
2011-09-09 13:44:42 ----HDC---- C:\WINDOWS1\$NtUninstallKB975025_0$
2011-09-09 13:44:38 ----HDC---- C:\WINDOWS1\$NtUninstallKB954155_WM9$
2011-09-09 13:44:34 ----HDC---- C:\WINDOWS1\$NtUninstallKB971961$
2011-09-09 13:44:30 ----HDC---- C:\WINDOWS1\$NtUninstallKB956844_0$
2011-09-09 13:44:16 ----D---- C:\WINDOWS1\ie8updates
2011-09-09 13:44:03 ----D---- C:\WINDOWS1\WBEM
2011-09-09 13:43:45 ----HDC---- C:\WINDOWS1\ie8
2011-09-09 13:43:45 ----D---- C:\WINDOWS1\system32\en-US
2011-09-09 13:42:13 ----A---- C:\WINDOWS1\system32\MRT.exe
2011-09-09 13:40:47 ----HDC---- C:\WINDOWS1\$NtUninstallKB971657_0$
2011-09-09 13:40:42 ----HDC---- C:\WINDOWS1\$NtUninstallKB973815_0$
2011-09-09 13:40:38 ----HDC---- C:\WINDOWS1\$NtUninstallKB960859_0$
2011-09-09 13:40:34 ----HDC---- C:\WINDOWS1\$NtUninstallKB973507_0$
2011-09-09 13:40:29 ----D---- C:\WINDOWS1\ServicePackFiles
2011-09-09 13:40:27 ----HDC---- C:\WINDOWS1\$NtUninstallKB958470$
2011-09-09 13:40:22 ----HDC---- C:\WINDOWS1\$NtUninstallKB973869_0$
2011-09-09 13:40:17 ----HDC---- C:\WINDOWS1\$NtUninstallKB973540_WM9L$
2011-09-09 13:40:13 ----HDC---- C:\WINDOWS1\$NtUninstallKB970238_0$
2011-09-09 13:40:08 ----HDC---- C:\WINDOWS1\$NtUninstallKB961501_0$
2011-09-09 13:40:04 ----HDC---- C:\WINDOWS1\$NtUninstallKB959426_0$
2011-09-09 13:39:59 ----HDC---- C:\WINDOWS1\$NtUninstallKB960803_0$
2011-09-09 13:39:54 ----HDC---- C:\WINDOWS1\$NtUninstallKB952004_0$
2011-09-09 13:39:42 ----HDC---- C:\WINDOWS1\$NtUninstallKB956572_0$
2011-09-09 13:39:34 ----HDC---- C:\WINDOWS1\$NtUninstallKB923561_0$
2011-09-09 13:39:27 ----HDC---- C:\WINDOWS1\$NtUninstallKB967715_0$
2011-09-09 13:39:22 ----HDC---- C:\WINDOWS1\$NtUninstallKB960225_0$
2011-09-09 13:39:18 ----HDC---- C:\WINDOWS1\$NtUninstallKB956803_0$
2011-09-09 13:39:14 ----HDC---- C:\WINDOWS1\$NtUninstallKB956802_0$
2011-09-09 13:39:10 ----HDC---- C:\WINDOWS1\$NtUninstallKB955069_0$
2011-09-09 13:39:06 ----HDC---- C:\WINDOWS1\$NtUninstallKB958644_0$
2011-09-09 13:39:02 ----HDC---- C:\WINDOWS1\$NtUninstallKB952287_0$
2011-09-09 13:38:58 ----HDC---- C:\WINDOWS1\$NtUninstallKB950974_0$
2011-09-09 13:38:54 ----HDC---- C:\WINDOWS1\$NtUninstallKB952954_0$
2011-09-09 13:38:50 ----HDC---- C:\WINDOWS1\$NtUninstallKB946648_0$
2011-09-09 13:38:46 ----HDC---- C:\WINDOWS1\$NtUninstallKB944338-v2$
2011-09-09 13:38:41 ----HDC---- C:\WINDOWS1\$NtUninstallKB951748_0$
2011-09-09 13:38:38 ----HDC---- C:\WINDOWS1\$NtUninstallKB951376-v2_0$
2011-09-09 13:38:29 ----HDC---- C:\WINDOWS1\$NtUninstallKB950762_0$
2011-09-09 13:36:24 ----N---- C:\WINDOWS1\system32\tzchange.exe
2011-09-09 13:36:12 ----N---- C:\WINDOWS1\system32\browserchoice.exe
2011-09-09 13:30:38 ----A---- C:\WINDOWS1\system32\xpsp4res.dll
2011-09-09 13:30:38 ----A---- C:\WINDOWS1\system32\xpsp3res.dll
2011-09-09 13:29:38 ----A---- C:\WINDOWS1\system32\drivers\bthport.sys
2011-09-08 22:35:54 ----D---- C:\Documents and Settings\peter1\Application Data\GHISLER
2011-09-08 22:04:56 ----D---- C:\Documents and Settings\peter1\Application Data\WinRAR
2011-09-08 22:00:18 ----D---- C:\Documents and Settings\All Users.WINDOWS1\Application Data\Windows Genuine Advantage
2011-09-08 22:00:09 ----D---- C:\WINDOWS1\system32\PreInstall
2011-09-08 22:00:09 ----A---- C:\WINDOWS1\system32\spupdsvc.exe
2011-09-08 22:00:08 ----HDC---- C:\WINDOWS1\$NtUninstallKB898461$
2011-09-08 22:00:08 ----HD---- C:\WINDOWS1\$hf_mig$
2011-09-08 20:24:52 ----A---- C:\WINDOWS1\system32\h323log.txt
2011-09-08 20:22:16 ----A---- C:\WINDOWS1\system32\drivers\splitter.sys
2011-09-08 20:22:14 ----A---- C:\WINDOWS1\system32\drivers\aec.sys
2011-09-08 20:22:13 ----A---- C:\WINDOWS1\system32\drivers\drmkaud.sys
2011-09-08 20:22:11 ----A---- C:\WINDOWS1\system32\drivers\mspqm.sys
2011-09-08 20:22:09 ----A---- C:\WINDOWS1\system32\drivers\wdmaud.sys
2011-09-08 20:22:05 ----A---- C:\WINDOWS1\system32\drivers\swmidi.sys
2011-09-08 20:22:03 ----A---- C:\WINDOWS1\system32\drivers\dmusic.sys
2011-09-08 20:22:01 ----A---- C:\WINDOWS1\system32\drivers\kmixer.sys
2011-09-08 20:21:59 ----A---- C:\WINDOWS1\system32\drivers\sysaudio.sys
2011-09-08 20:21:57 ----A---- C:\WINDOWS1\system32\drivers\mskssrv.sys
2011-09-08 20:21:55 ----A---- C:\WINDOWS1\system32\drivers\mspclock.sys
2011-09-08 20:21:50 ----A---- C:\WINDOWS1\system32\drivers\audstub.sys
2011-09-08 20:21:19 ----A---- C:\WINDOWS1\system32\drivers\redbook.sys
2011-09-08 20:20:44 ----A---- C:\WINDOWS1\system32\ksuser.dll
2011-09-08 20:20:44 ----A---- C:\WINDOWS1\system32\drivers\portcls.sys
2011-09-08 20:20:44 ----A---- C:\WINDOWS1\system32\drivers\msmpu401.sys
2011-09-08 20:20:44 ----A---- C:\WINDOWS1\system32\drivers\drmk.sys
2011-09-08 20:20:42 ----A---- C:\WINDOWS1\system32\drivers\gameenum.sys
2011-09-08 20:20:09 ----A---- C:\WINDOWS1\system32\usbui.dll
2011-09-08 20:17:56 ----A---- C:\WINDOWS1\imsins.BAK
2011-09-08 20:17:53 ----SHD---- C:\WINDOWS1\Installer
2011-09-08 20:17:53 ----A---- C:\WINDOWS1\system32\PerfStringBackup.INI
2011-09-08 20:17:52 ----A---- C:\WINDOWS1\ODBCINST.INI
2011-09-08 20:17:47 ----RA---- C:\WINDOWS1\system32\kbdtuq.dll
2011-09-08 20:17:47 ----RA---- C:\WINDOWS1\system32\kbdtuf.dll
2011-09-08 20:17:47 ----RA---- C:\WINDOWS1\system32\kbdazel.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdycc.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbduzb.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdur.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdtat.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdru1.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdru.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdmon.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdkyr.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdkaz.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdbu.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdblr.dll
2011-09-08 20:17:45 ----RA---- C:\WINDOWS1\system32\kbdaze.dll
2011-09-08 20:17:44 ----RA---- C:\WINDOWS1\system32\kbdhept.dll
2011-09-08 20:17:44 ----RA---- C:\WINDOWS1\system32\kbdhela3.dll
2011-09-08 20:17:44 ----RA---- C:\WINDOWS1\system32\kbdhela2.dll
2011-09-08 20:17:44 ----RA---- C:\WINDOWS1\system32\kbdhe319.dll
2011-09-08 20:17:44 ----RA---- C:\WINDOWS1\system32\kbdhe220.dll
2011-09-08 20:17:44 ----RA---- C:\WINDOWS1\system32\kbdhe.dll
2011-09-08 20:17:44 ----RA---- C:\WINDOWS1\system32\kbdgkl.dll
2011-09-08 20:17:43 ----RA---- C:\WINDOWS1\system32\kbdlv1.dll
2011-09-08 20:17:43 ----RA---- C:\WINDOWS1\system32\kbdlv.dll
2011-09-08 20:17:43 ----RA---- C:\WINDOWS1\system32\kbdlt1.dll
2011-09-08 20:17:43 ----RA---- C:\WINDOWS1\system32\kbdlt.dll
2011-09-08 20:17:43 ----RA---- C:\WINDOWS1\system32\kbdest.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdycl.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdsl1.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdsl.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdro.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdpl1.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdpl.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdhu1.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdhu.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdcz2.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdcz1.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdcz.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\kbdcr.dll
2011-09-08 20:17:41 ----RA---- C:\WINDOWS1\system32\KBDAL.DLL
2011-09-08 20:17:39 ----A---- C:\WINDOWS1\system32\spxcoins.dll
2011-09-08 20:17:39 ----A---- C:\WINDOWS1\system32\irclass.dll
2011-09-08 20:17:39 ----A---- C:\WINDOWS1\system32\EqnClass.Dll
2011-09-08 20:17:39 ----A---- C:\WINDOWS1\system32\dgsetup.dll
2011-09-08 20:17:39 ----A---- C:\WINDOWS1\system32\dgrpsetu.dll
2011-09-08 20:17:37 ----N---- C:\WINDOWS1\system32\CONFIG.TMP
2011-09-08 20:17:37 ----A---- C:\WINDOWS1\TASKMAN.EXE
2011-09-08 20:17:37 ----A---- C:\WINDOWS1\system32\drivers\irenum.sys
2011-09-08 20:17:37 ----A---- C:\WINDOWS1\system32\batt.dll
2011-09-08 20:17:36 ----A---- C:\WINDOWS1\notepad.exe
2011-09-08 20:17:35 ----A---- C:\WINDOWS1\system32\storprop.dll
2011-09-08 20:17:24 ----ASH---- C:\Documents and Settings\All Users.WINDOWS1\Application Data\desktop.ini
2011-09-08 20:17:21 ----RA---- C:\WINDOWS1\SET8.tmp
2011-09-08 20:17:18 ----RA---- C:\WINDOWS1\SET4.tmp
2011-09-08 20:17:17 ----RA---- C:\WINDOWS1\SET3.tmp
2011-09-08 20:17:12 ----D---- C:\WINDOWS1\system32\CatRoot2
2011-09-08 20:17:12 ----D---- C:\WINDOWS1\system32\CatRoot
2011-09-08 20:17:06 ----SD---- C:\Documents and Settings\All Users.WINDOWS1\Application Data\Microsoft
2011-09-08 20:16:45 ----A---- C:\WINDOWS1\setuplog.txt
2011-09-08 20:16:37 ----A---- C:\WINDOWS1\system32\FNTCACHE.DAT
2011-09-08 20:10:19 ----D---- C:\WINDOWS1\system32\IME
2011-09-08 20:10:19 ----D---- C:\WINDOWS1\system32\3com_dmi
2011-09-08 20:10:19 ----D---- C:\WINDOWS1\pchealth
2011-09-08 20:10:19 ----D---- C:\WINDOWS1\PeerNet
2011-09-08 20:10:19 ----D---- C:\WINDOWS1\ime
2011-09-08 20:10:18 ----RSHDC---- C:\WINDOWS1\system32\dllcache
2011-09-08 20:10:18 ----RSD---- C:\WINDOWS1\Fonts
2011-09-08 20:10:18 ----RD---- C:\WINDOWS1\Web
2011-09-08 20:10:18 ----HD---- C:\WINDOWS1\inf
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\WinSxS
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\twain_32
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\wins
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\wbem
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\usmt
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\spool
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\ShellExt
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\Setup
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\ras
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\oobe
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\npp
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\mui
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\inetsrv
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\icsxml
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\ias
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\export
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\drivers\etc
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\drivers\disdn
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\drivers
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\dhcp
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\config
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\3076
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\2052
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\1054
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\1042
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\1041
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\1037
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\1033
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\1031
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\1028
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32\1025
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system32
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\system
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\security
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\Resources
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\repair
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\Provisioning
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\mui
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\msapps
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\msagent
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\Media
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\java
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\Help
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\Driver Cache
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\Debug
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\Cursors
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\Connection Wizard
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\Config
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\AppPatch
2011-09-08 20:10:18 ----D---- C:\WINDOWS1\addins
2011-09-08 20:10:18 ----D---- C:\WINDOWS1
2011-09-08 20:10:18 ----ASH---- C:\pagefile.sys
2011-09-08 19:42:34 ----D---- C:\WINDOWS1\system32\SoftwareDistribution
2011-09-08 19:41:25 ----D---- C:\Documents and Settings\peter1\Application Data\Macromedia
2011-09-08 19:41:24 ----D---- C:\Documents and Settings\peter1\Application Data\Adobe
2011-09-08 19:39:05 ----D---- C:\Documents and Settings\peter1\Application Data\ESET
2011-09-08 19:11:06 ----D---- C:\Documents and Settings\peter1\Application Data\Mozilla
2011-09-08 19:10:14 ----A---- C:\WINDOWS1\ALCFDRTM.EXE
2011-09-08 19:10:12 ----D---- C:\WINDOWS1\system32\Lang
2011-09-08 19:07:05 ----D---- C:\WINDOWS1\pss
2011-09-08 18:57:08 ----A---- C:\WINDOWS1\msicpl.ini
2011-09-08 18:55:06 ----A---- C:\WINDOWS1\system32\wpa.bak
2011-09-08 18:52:09 ----HDC---- C:\WINDOWS1\$MSI31Uninstall_KB893803v2$
2011-09-08 18:51:49 ----D---- C:\Documents and Settings\All Users.WINDOWS1\Application Data\NVIDIA Corporation
2011-09-08 18:51:05 ----RA---- C:\WINDOWS1\system32\smdll.dll
2011-09-08 18:51:05 ----RA---- C:\WINDOWS1\system32\MadCHook.dll
2011-09-08 18:51:04 ----RA---- C:\WINDOWS1\system32\d3dx9_28.dll
2011-09-08 18:51:03 ----RA---- C:\WINDOWS1\system32\msvcr80.dll
2011-09-08 18:51:03 ----RA---- C:\WINDOWS1\system32\d3dx9_27.dll
2011-09-08 18:51:03 ----RA---- C:\WINDOWS1\system32\Auxiliary.dll
2011-09-08 18:51:02 ----RA---- C:\WINDOWS1\system32\msicpl.dll
2011-09-08 18:46:45 ----N---- C:\WINDOWS1\avrack.ini
2011-09-08 18:46:41 ----N---- C:\WINDOWS1\system32\ChCfg.exe
2011-09-08 18:46:41 ----A---- C:\WINDOWS1\system32\RTLCPAPI.dll
2011-09-08 18:46:41 ----A---- C:\WINDOWS1\system32\drivers\ALCXWDM.SYS
2011-09-08 18:46:41 ----A---- C:\WINDOWS1\SOUNDMAN.EXE
2011-09-08 18:46:38 ----A---- C:\WINDOWS1\system32\RTLCPL.EXE
2011-09-08 18:46:26 ----N---- C:\WINDOWS1\alcupd.exe
2011-09-08 18:46:26 ----N---- C:\WINDOWS1\alcrmv.exe
2011-09-08 18:46:20 ----N---- C:\WINDOWS1\RtlExUpd.dll
2011-09-08 18:39:41 ----D---- C:\WINDOWS1\Downloaded Installations
2011-09-08 18:38:54 ----A---- C:\WINDOWS1\system32\CapabilityTable.exe
2011-09-08 18:38:42 ----RA---- C:\WINDOWS1\system32\idecoi.dll
2011-09-08 18:38:42 ----RA---- C:\WINDOWS1\system32\drivers\nvata.sys
2011-09-08 18:38:22 ----A---- C:\WINDOWS1\system32\fdco1ins.dll
2011-09-08 18:38:22 ----A---- C:\WINDOWS1\system32\fdco1.dll
2011-09-08 18:38:22 ----A---- C:\WINDOWS1\system32\drivers\NVENETFD.sys
2011-09-08 18:38:19 ----RA---- C:\WINDOWS1\system32\drivers\nvsnpu.sys
2011-09-08 18:38:19 ----A---- C:\WINDOWS1\system32\nvunrm.exe
2011-09-08 18:38:19 ----A---- C:\WINDOWS1\system32\nvconrm.dll
2011-09-08 18:38:19 ----A---- C:\WINDOWS1\system32\drivers\nvnrm.sys
2011-09-08 18:38:19 ----A---- C:\WINDOWS1\system32\drivers\nvnetbus.sys
2011-09-08 18:38:19 ----A---- C:\WINDOWS1\system32\bdco1ins.dll
2011-09-08 18:38:19 ----A---- C:\WINDOWS1\system32\bdco1.dll
2011-09-08 18:38:18 ----RA---- C:\WINDOWS1\system32\nvusmb.exe
2011-09-08 18:38:18 ----A---- C:\WINDOWS1\system32\NVUNINST.EXE
2011-09-08 18:38:05 ----D---- C:\WINDOWS1\system32\ReinstallBackups
2011-09-08 18:37:38 ----RA---- C:\WINDOWS1\system32\raidmgmt.ini
2011-09-08 18:37:06 ----RA---- C:\WINDOWS1\system32\drivers\ASACPI.sys
2011-09-08 18:37:03 ----A---- C:\WINDOWS1\Ascd_tmp.ini
2011-09-08 18:37:00 ----A---- C:\WINDOWS1\system32\drivers\ASUSHWIO.SYS
2011-09-08 18:36:22 ----D---- C:\Documents and Settings\peter1\Application Data\Identities
2011-09-08 18:36:15 ----ASH---- C:\Documents and Settings\peter1\Application Data\desktop.ini
2011-09-08 18:36:14 ----SD---- C:\Documents and Settings\peter1\Application Data\Microsoft
2011-09-08 18:34:58 ----D---- C:\WINDOWS1\SoftwareDistribution
2011-09-08 18:34:56 ----SD---- C:\WINDOWS1\system32\Microsoft
2011-09-08 18:34:56 ----A---- C:\WINDOWS1\SchedLgU.Txt
2011-09-08 18:33:30 ----AS---- C:\WINDOWS1\bootstat.dat
2011-09-08 18:31:24 ----D---- C:\WINDOWS1\system32\xircom
2011-09-08 18:31:12 ----A---- C:\WINDOWS1\control.ini
2011-09-08 18:30:56 ----A---- C:\WINDOWS1\OEWABLog.txt
2011-09-08 18:30:50 ----A---- C:\WINDOWS1\system32\mapi32.dll
2011-09-08 18:29:49 ----SD---- C:\WINDOWS1\Downloaded Program Files
2011-09-08 18:29:49 ----RD---- C:\WINDOWS1\Offline Web Pages
2011-09-08 18:29:12 ----D---- C:\WINDOWS1\system32\DirectX
2011-09-08 18:28:54 ----A---- C:\WINDOWS1\system32\atrace.dll
2011-09-08 18:28:52 ----A---- C:\WINDOWS1\system32\desktop.ini
2011-09-08 18:28:52 ----A---- C:\WINDOWS1\desktop.ini
2011-09-08 18:28:45 ----A---- C:\WINDOWS1\system32\nmevtmsg.dll
2011-09-08 18:28:44 ----SD---- C:\WINDOWS1\Tasks
2011-09-08 18:28:44 ----A---- C:\WINDOWS1\system32\icfgnt5.dll
2011-09-08 18:28:44 ----A---- C:\WINDOWS1\system32\acctres.dll
2011-09-08 18:28:40 ----D---- C:\WINDOWS1\srchasst
2011-09-08 18:28:39 ----D---- C:\WINDOWS1\system32\Macromed
2011-09-08 18:28:36 ----A---- C:\WINDOWS1\system32\wuweb.dll
2011-09-08 18:28:36 ----A---- C:\WINDOWS1\system32\wups.dll
2011-09-08 18:28:36 ----A---- C:\WINDOWS1\system32\wucltui.dll
2011-09-08 18:28:36 ----A---- C:\WINDOWS1\system32\wuauserv.dll
2011-09-08 18:28:36 ----A---- C:\WINDOWS1\system32\wuaueng1.dll
2011-09-08 18:28:36 ----A---- C:\WINDOWS1\system32\wuaueng.dll
2011-09-08 18:28:36 ----A---- C:\WINDOWS1\system32\wuauclt1.exe
2011-09-08 18:28:36 ----A---- C:\WINDOWS1\system32\wuauclt.exe
2011-09-08 18:28:35 ----A---- C:\WINDOWS1\system32\wuapi.dll
2011-09-08 18:28:35 ----A---- C:\WINDOWS1\system32\qmgrprxy.dll
2011-09-08 18:28:35 ----A---- C:\WINDOWS1\system32\qmgr.dll
2011-09-08 18:28:35 ----A---- C:\WINDOWS1\system32\bitsprx3.dll
2011-09-08 18:28:35 ----A---- C:\WINDOWS1\system32\bitsprx2.dll
2011-09-08 18:28:27 ----A---- C:\WINDOWS1\system32\safrslv.dll
2011-09-08 18:28:27 ----A---- C:\WINDOWS1\system32\safrdm.dll
2011-09-08 18:28:27 ----A---- C:\WINDOWS1\system32\safrcdlg.dll
2011-09-08 18:28:27 ----A---- C:\WINDOWS1\system32\racpldlg.dll
2011-09-08 18:28:24 ----A---- C:\WINDOWS1\system32\fltmc.exe
2011-09-08 18:28:24 ----A---- C:\WINDOWS1\system32\fltlib.dll
2011-09-08 18:28:24 ----A---- C:\WINDOWS1\system32\drivers\fltmgr.sys
2011-09-08 18:28:23 ----D---- C:\WINDOWS1\system32\Restore
2011-09-08 18:28:23 ----A---- C:\WINDOWS1\system32\srsvc.dll
2011-09-08 18:28:23 ----A---- C:\WINDOWS1\system32\srrstr.dll
2011-09-08 18:28:23 ----A---- C:\WINDOWS1\system32\srclient.dll
2011-09-08 18:28:23 ----A---- C:\WINDOWS1\system32\drivers\sr.sys
2011-09-08 18:28:22 ----A---- C:\WINDOWS1\system32\ils.dll
2011-09-08 18:28:20 ----A---- C:\WINDOWS1\system32\nmmkcert.dll
2011-09-08 18:28:20 ----A---- C:\WINDOWS1\system32\mnmsrvc.exe
2011-09-08 18:28:20 ----A---- C:\WINDOWS1\system32\mnmdd.dll
2011-09-08 18:28:20 ----A---- C:\WINDOWS1\system32\isrdbg32.dll
2011-09-08 18:28:19 ----A---- C:\WINDOWS1\system32\msconf.dll
2011-09-08 18:28:16 ----A---- C:\WINDOWS1\system32\msoert2.dll
2011-09-08 18:28:16 ----A---- C:\WINDOWS1\system32\msoeacct.dll
2011-09-08 18:28:15 ----A---- C:\WINDOWS1\system32\inetres.dll
2011-09-08 18:28:14 ----A---- C:\WINDOWS1\system32\inetcomm.dll
2011-09-08 18:28:13 ----A---- C:\WINDOWS1\system32\schedsvc.dll
2011-09-08 18:28:12 ----A---- C:\WINDOWS1\system32\mstinit.exe
2011-09-08 18:28:12 ----A---- C:\WINDOWS1\system32\mstask.dll
2011-09-08 18:28:12 ----A---- C:\WINDOWS1\system32\isign32.dll
2011-09-08 18:28:12 ----A---- C:\WINDOWS1\system32\inetcfg.dll
2011-09-08 18:28:12 ----A---- C:\WINDOWS1\system32\icwphbk.dll
2011-09-08 18:28:12 ----A---- C:\WINDOWS1\system32\icwdial.dll
2011-09-08 18:27:53 ----A---- C:\WINDOWS1\system32\emptyregdb.dat
2011-09-08 18:27:36 ----A---- C:\WINDOWS1\vbaddin.ini
2011-09-08 18:27:36 ----A---- C:\WINDOWS1\vb.ini
2011-09-08 18:27:29 ----D---- C:\WINDOWS1\Registration
2011-09-08 18:26:49 ----A---- C:\WINDOWS1\system32\write.exe
2011-09-08 18:26:44 ----A---- C:\WINDOWS1\system32\sndvol32.exe
2011-09-08 18:26:44 ----A---- C:\WINDOWS1\system32\hticons.dll
2011-09-08 18:26:44 ----A---- C:\WINDOWS1\system32\avwav.dll
2011-09-08 18:26:44 ----A---- C:\WINDOWS1\system32\avtapi.dll
2011-09-08 18:26:44 ----A---- C:\WINDOWS1\system32\avmeter.dll
2011-09-08 18:26:43 ----A---- C:\WINDOWS1\system32\winchat.exe
2011-09-08 18:26:38 ----A---- C:\WINDOWS1\system32\getuname.dll
2011-09-08 18:26:37 ----A---- C:\WINDOWS1\system32\winmine.exe
2011-09-08 18:26:37 ----A---- C:\WINDOWS1\system32\sol.exe
2011-09-08 18:26:37 ----A---- C:\WINDOWS1\system32\mshearts.exe
2011-09-08 18:26:37 ----A---- C:\WINDOWS1\system32\charmap.exe
2011-09-08 18:26:37 ----A---- C:\WINDOWS1\system32\calc.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\usrlogon.cmd
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\tsshutdn.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\tslabels.ini
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\tskill.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\tsdiscon.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\tscon.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\shadow.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\rwinsta.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\reset.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\regini.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\rdpcfgex.dll
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\qwinsta.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\qappsrv.exe
2011-09-08 18:26:36 ----A---- C:\WINDOWS1\system32\freecell.exe
2011-09-08 18:26:35 ----A---- C:\WINDOWS1\system32\msg.exe
2011-09-08 18:26:35 ----A---- C:\WINDOWS1\system32\msdtcprf.ini
2011-09-08 18:26:35 ----A---- C:\WINDOWS1\system32\logoff.exe
2011-09-08 18:26:35 ----A---- C:\WINDOWS1\system32\cdmodem.dll
2011-09-08 18:26:34 ----A---- C:\WINDOWS1\system32\stclient.dll
2011-09-08 18:26:34 ----A---- C:\WINDOWS1\system32\mtxlegih.dll
2011-09-08 18:26:34 ----A---- C:\WINDOWS1\system32\mtxex.dll
2011-09-08 18:26:34 ----A---- C:\WINDOWS1\system32\mtxdm.dll
2011-09-08 18:26:34 ----A---- C:\WINDOWS1\system32\dcomcnfg.exe
2011-09-08 18:26:34 ----A---- C:\WINDOWS1\system32\comsnap.dll
2011-09-08 18:26:34 ----A---- C:\WINDOWS1\system32\comrepl.dll
2011-09-08 18:26:34 ----A---- C:\WINDOWS1\system32\comaddin.dll
2011-09-08 18:26:30 ----A---- C:\WINDOWS1\system32\wmimgmt.msc
2011-09-08 18:26:28 ----A---- C:\WINDOWS1\system32\accwiz.exe
2011-09-08 18:26:27 ----A---- C:\WINDOWS1\system32\sndrec32.exe
2011-09-08 18:26:27 ----A---- C:\WINDOWS1\system32\mspaint.exe
2011-09-08 18:26:27 ----A---- C:\WINDOWS1\system32\mplay32.exe
2011-09-08 18:26:27 ----A---- C:\WINDOWS1\system32\hypertrm.dll
2011-09-08 18:26:26 ----A---- C:\WINDOWS1\system32\tscfgwmi.dll
2011-09-08 18:26:26 ----A---- C:\WINDOWS1\system32\spider.exe
2011-09-08 18:26:26 ----A---- C:\WINDOWS1\system32\drivers\tdtcp.sys
2011-09-08 18:26:26 ----A---- C:\WINDOWS1\system32\drivers\tdpipe.sys
2011-09-08 18:26:26 ----A---- C:\WINDOWS1\system32\drivers\rdpwd.sys
2011-09-08 18:26:26 ----A---- C:\WINDOWS1\system32\clipbrd.exe
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\tscupgrd.exe
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\termsrv.dll
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\sessmgr.exe
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\remotepg.dll
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\rdshost.exe
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\rdsaddin.exe
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\rdpwsx.dll
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\rdpsnd.dll
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\rdpclip.exe
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\rdchost.dll
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\mstscax.dll
2011-09-08 18:26:25 ----A---- C:\WINDOWS1\system32\mstsc.exe
2011-09-08 18:26:24 ----D---- C:\WINDOWS1\system32\MsDtc
2011-09-08 18:26:24 ----A---- C:\WINDOWS1\system32\qprocess.exe
2011-09-08 18:26:24 ----A---- C:\WINDOWS1\system32\mtxoci.dll
2011-09-08 18:26:24 ----A---- C:\WINDOWS1\system32\msdtcuiu.dll
2011-09-08 18:26:24 ----A---- C:\WINDOWS1\system32\msdtcprx.dll
2011-09-08 18:26:24 ----A---- C:\WINDOWS1\system32\icaapi.dll
2011-09-08 18:26:24 ----A---- C:\WINDOWS1\system32\cfgbkend.dll
2011-09-08 18:26:23 ----D---- C:\WINDOWS1\system32\Com
2011-09-08 18:26:23 ----A---- C:\WINDOWS1\system32\xolehlp.dll
2011-09-08 18:26:23 ----A---- C:\WINDOWS1\system32\msdtctm.dll
2011-09-08 18:26:23 ----A---- C:\WINDOWS1\system32\msdtclog.dll
2011-09-08 18:26:23 ----A---- C:\WINDOWS1\system32\msdtc.exe
2011-09-08 18:26:23 ----A---- C:\WINDOWS1\system32\colbact.dll
2011-09-08 18:26:22 ----A---- C:\WINDOWS1\system32\comuid.dll
2011-09-08 18:26:22 ----A---- C:\WINDOWS1\system32\comsvcs.dll
2011-09-08 18:26:22 ----A---- C:\WINDOWS1\system32\clbcatex.dll
2011-09-08 18:26:22 ----A---- C:\WINDOWS1\system32\catsrvut.dll
2011-09-08 18:26:22 ----A---- C:\WINDOWS1\system32\catsrvps.dll
2011-09-08 18:26:22 ----A---- C:\WINDOWS1\system32\catsrv.dll
2011-09-08 18:26:21 ----A---- C:\WINDOWS1\system32\clbcatq.dll
2011-09-08 18:26:17 ----A---- C:\WINDOWS1\system32\servdeps.dll
2011-09-08 18:26:17 ----A---- C:\WINDOWS1\system32\mmfutil.dll
2011-09-08 18:26:17 ----A---- C:\WINDOWS1\system32\licwmi.dll
2011-09-08 18:26:17 ----A---- C:\WINDOWS1\system32\cmprops.dll
2011-09-08 18:26:14 ----A---- C:\WINDOWS1\system32\drivers\termdd.sys
2011-09-08 18:26:14 ----A---- C:\WINDOWS1\system32\drivers\rdpdr.sys

======List of files/folders modified in the last 1 month======

2011-09-30 23:10:14 ----D---- C:\Program Files
2011-09-30 23:09:39 ----D---- C:\Program Files\Mozilla Firefox
2011-09-30 22:50:40 ----A---- C:\WINDOWS1\system.ini
2011-09-30 22:48:40 ----D---- C:\Program Files\Common Files
2011-09-30 22:38:36 ----D---- C:\Documents and Settings
2011-09-30 11:35:17 ----SHD---- C:\System Volume Information
2011-09-30 09:46:09 ----ASH---- C:\boot.ini
2011-09-28 16:33:22 ----A---- C:\WINDOWS1\win.ini
2011-09-27 18:20:07 ----D---- C:\Program Files\K-Lite Codec Pack
2011-09-24 14:23:12 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-09-24 09:59:39 ----D---- C:\Program Files\Common Files\DESIGNER
2011-09-22 16:55:27 ----D---- C:\Program Files\Common Files\Adobe
2011-09-11 19:26:32 ----HD---- C:\Program Files\InstallShield Installation Information
2011-09-10 13:04:02 ----D---- C:\Program Files\NVIDIA Corporation
2011-09-10 10:53:50 ----D---- C:\Program Files\Windows Media Player
2011-09-10 00:31:00 ----D---- C:\Program Files\Common Files\Services
2011-09-09 14:41:32 ----D---- C:\Program Files\Movie Maker
2011-09-09 14:40:23 ----D---- C:\Program Files\Outlook Express
2011-09-09 14:22:47 ----D---- C:\Program Files\Internet Explorer
2011-09-09 14:21:10 ----D---- C:\Program Files\NetMeeting
2011-09-09 14:21:08 ----D---- C:\Program Files\Windows NT
2011-09-09 14:21:07 ----D---- C:\Program Files\Common Files\System
2011-09-09 11:12:13 ----A---- C:\WINDOWS1\system32\crypt32.dll
2011-09-08 18:52:47 ----D---- C:\NVIDIA
2011-09-08 18:46:48 ----D---- C:\Program Files\AvRack
2011-09-08 18:30:38 ----ASH---- C:\WINDOWS1\fonts\desktop.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nvata;nvata; C:\WINDOWS1\system32\DRIVERS\nvata.sys [2005-05-17 92800]
R0 PxHelp20;PxHelp20; C:\WINDOWS1\System32\Drivers\PxHelp20.sys [2011-03-04 45648]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS1\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 AmdPPM;AMD HwPState Processor Driver; C:\WINDOWS1\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 ehdrv;ehdrv; C:\WINDOWS1\system32\DRIVERS\ehdrv.sys [2011-08-04 118104]
R1 epfwtdi;epfwtdi; C:\WINDOWS1\system32\DRIVERS\epfwtdi.sys [2011-08-04 61936]
R1 WS2IFSL;Prostredie podpory poskytovateľa služby Windows Socket 2.0 Non-IFS Service; C:\WINDOWS1\System32\drivers\ws2ifsl.sys [2004-08-04 12032]
R2 eamon;eamon; C:\WINDOWS1\system32\DRIVERS\eamon.sys [2011-08-09 154136]
R2 epfw;epfw; C:\WINDOWS1\system32\DRIVERS\epfw.sys [2011-08-04 147480]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS1\system32\drivers\ALCXWDM.SYS [2005-04-19 2317504]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS1\system32\DRIVERS\btkrnl.sys [2005-05-31 1341466]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS1\system32\DRIVERS\Epfwndis.sys [2011-08-04 39824]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS1\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS1\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Mouse HID Driver; C:\WINDOWS1\system32\DRIVERS\mouhid.sys [2004-08-04 12160]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS1\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS1\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS1\system32\DRIVERS\nv4_mini.sys [2011-08-03 12542592]
R3 NVENETFD;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\WINDOWS1\system32\DRIVERS\NVENETFD.sys [2008-08-01 54784]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS1\system32\drivers\nvhda32.sys [2011-05-10 119528]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS1\system32\DRIVERS\nvnetbus.sys [2008-08-01 22016]
S2 BTSERIAL;Bluetooth Serial Driver; \??\C:\WINDOWS1\system32\drivers\btserial.sys []
S2 BTSLBCSP;Bluetooth Port Client Driver; \??\C:\WINDOWS1\system32\drivers\btslbcsp.sys []
S3 btaudio;Bluetooth Audio Device; C:\WINDOWS1\system32\drivers\btaudio.sys [2005-05-31 401152]
S3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS1\system32\DRIVERS\btport.sys [2005-05-31 30363]
S3 BthEnum;Bluetooth Request Block Driver; C:\WINDOWS1\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BTHMODEM;Bluetooth Serial Communications Driver; C:\WINDOWS1\system32\DRIVERS\bthmodem.sys [2008-04-13 37888]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS1\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Bluetooth Port Driver; C:\WINDOWS1\System32\Drivers\BTHport.sys [2008-06-13 272128]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\WINDOWS1\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS1\system32\DRIVERS\btwdndis.sys [2005-05-31 148040]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS1\System32\Drivers\btwusb.sys [2005-05-31 56648]
S3 catchme;catchme; \??\C:\DOCUME~1\ADMINI~1.PE~\LOCALS~1\Temp\catchme.sys []
S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
S3 MSICPL;MSICPL; \??\E:\install4\MSICPL.sys []
S3 n558;N558 Bluetooth USB Filter Driver; C:\WINDOWS1\System32\Drivers\n558.sys [2007-08-15 9600]
S3 NTACCESS;NTACCESS; \??\E:\NTACCESS.sys []
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS1\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 SetupNTGLM7X;SetupNTGLM7X; \??\E:\NTGLM7X.sys []
S3 usbscan;USB Scanner Driver; C:\WINDOWS1\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS1\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS1\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS1\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2011-09-06 974944]
R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe [2005-04-29 139264]
R2 ForcewareWebInterface;Forceware Web Interface; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe [2004-11-30 20543]
R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe [2005-04-29 131136]
R2 nSvcLog;ForceWare user log service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe [2005-04-29 57412]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS1\system32\nvsvc32.exe [2011-08-03 146024]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-08-03 2255464]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS1\system32\svchost.exe [2008-04-14 14336]
S3 BthServ;Bluetooth Support Service; C:\WINDOWS1\system32\svchost.exe [2008-04-14 14336]
S3 btwdins;Bluetooth Service; C:\Program Files\MSI\BToes Bluetooth Software\bin\btwdins.exe [2005-05-31 258103]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]

-----------------EOF-----------------
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz