Prosím o kontrolu logu,win je možná nemocný...

[alenka_v_říši_divů]

Ahoj...v návaznosti na http://www.pc-help.cz/viewtopic.php?f=46&t=39316 posilám HJT log...teď se i začali rapidně zpomalovat manipulace s plochou....když chcu oskenovat PC MBAM-em ..tak se asi půl hodiny načítá a všechno strašně rezonuje,šrotí a píská...no..a po tý pul hodině načítání se stejně nic neděje .... haha ... CF nereaguje a pokud ano,tak špatně...jeden CF co sem stahl furt "hovořil" o špatnym datu..odinstaloval sem a vyčistil T-Cleanerem....další CF se ani nerozjel..jen načítal ve spravci procesů..a to sem čekal tak 40 minut...odinstaloval sem...pak do třetice "jestli koukáš jaro .. tak z tvyho odkazu" sem stahl a spustil,vyskočila hláška,že něco nekompatibilní a pak ještě něco o aplikaci win32....ale za chvili se objevilo cmd okynko s tím,že mám počkat až se CF připraví...čekal sem zase něco kolem půl hodiny a nic...vypl sem... tady log: Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 05:48, on 2009-03-02
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v5.00 SP4 (5.00.2920.0000)
Boot mode: Normal

Running processes:
E:\WINNT\System32\smss.exe
E:\WINNT\system32\winlogon.exe
E:\WINNT\system32\services.exe
E:\WINNT\system32\lsass.exe
E:\WINNT\system32\svchost.exe
E:\WINNT\system32\spoolsv.exe
E:\Program Files\ESET\ESET Smart Security\ekrn.exe
E:\WINNT\system32\svchost.exe
E:\Program Files\NETGATE\FortKnox Personal Firewall 2008\FortKnox.exe
E:\Program Files\Java\jre6\bin\jqs.exe
E:\WINNT\system32\regsvc.exe
E:\WINNT\system32\MSTask.exe
E:\WINNT\System32\WBEM\WinMgmt.exe
E:\WINNT\Explorer.EXE
E:\Program Files\ESET\ESET Smart Security\egui.exe
E:\Program Files\Java\jre6\bin\jusched.exe
E:\WINNT\system32\internat.exe
E:\WINNT\system32\taskmgr.exe
E:\Program Files\Opera\opera.exe
E:\Documents and Settings\Torrentino1\Plocha\CPORTS\cports.exe
E:\Documents and Settings\Torrentino1\Plocha\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: @msdxmLC.dll,-1@1033,&Rádio - {8E718888-423F-11D2-876E-00A0C9082467} - E:\WINNT\system32\msdxm.ocx
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [egui] "E:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [FortKnoxPersonalFirewall] "E:\Program Files\NETGATE\FortKnox Personal Firewall 2008\FortKnoxGUI.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "E:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [internat.exe] internat.exe
O4 - HKCU\..\Run: [FreeRAM XP] "E:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe" -win
O4 - HKUS\.DEFAULT\..\Run: [internat.exe] internat.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [^SetupICWDesktop] E:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop (User 'Default user')
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - E:\WINNT\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - E:\WINNT\web\related.htm
O14 - IERESET.INF: START_PAGE_URL=http://msn.atlas.cz
O14 - IERESET.INF: MS_START_PAGE_URL=http://msn.atlas.cz
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - E:\WINNT\System32\dmadmin.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - E:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - E:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: FortKnox Personal Firewall (fortknox) - NETGATE Technologies s.r.o. - E:\Program Files\NETGATE\FortKnox Personal Firewall 2008\FortKnox.exe
O23 - Service: Google Updater Service (gusvc) - Google - E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ISP Monitor (ISPMonitorSrv) - How2 Studios - E:\Program Files\ISP Monitor\ISPMonitorSrv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - E:\Program Files\Java\jre6\bin\jqs.exe

--
End of file - 3798 bytes

[Reklama]

[jaro3]

To koukám

Stáhni si RSIT (by random/random)
- spusť ho, objeví se ti okno, tak pro pokračování klikni na Continue
- počkej až program proběhne a zobrazí se ti log jinak ho najdeš zde: C:\rsit\log.txt zkopíruj sem prosím celý jeho obsah

[alenka_v_říši_divů]

díky...tady je log:Logfile of random's system information tool 1.06 (written by random/random)
Run by Torrentino1 at 2009-03-02 09:03:57
Microsoft Windows 2000 Professional Service Pack 4
System drive E: has 3 GB (45%) free of 6 GB
Total RAM: 192 MB (16% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:04:55, on 2.3.2009
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v5.00 SP4 (5.00.2920.0000)
Boot mode: Normal

Running processes:
E:\WINNT\System32\smss.exe
E:\WINNT\system32\winlogon.exe
E:\WINNT\system32\services.exe
E:\WINNT\system32\lsass.exe
E:\WINNT\system32\svchost.exe
E:\WINNT\system32\spoolsv.exe
E:\Program Files\Comodo\CBOClean\BOCORE.exe
E:\Program Files\ESET\ESET Smart Security\ekrn.exe
E:\WINNT\system32\svchost.exe
E:\Program Files\NETGATE\FortKnox Personal Firewall 2008\FortKnox.exe
E:\Program Files\Java\jre6\bin\jqs.exe
E:\WINNT\system32\regsvc.exe
E:\WINNT\system32\MSTask.exe
E:\WINNT\System32\WBEM\WinMgmt.exe
E:\WINNT\Explorer.EXE
E:\Program Files\ESET\ESET Smart Security\egui.exe
E:\Program Files\Java\jre6\bin\jusched.exe
E:\WINNT\system32\internat.exe
E:\Program Files\Opera\opera.exe
E:\WINNT\system32\taskmgr.exe
E:\Documents and Settings\Torrentino1\Plocha\RSIT.exe
E:\Documents and Settings\Torrentino1\Plocha\Torrentino1.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: @msdxmLC.dll,-1@1033,&Rádio - {8E718888-423F-11D2-876E-00A0C9082467} - E:\WINNT\system32\msdxm.ocx
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [egui] "E:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [FortKnoxPersonalFirewall] "E:\Program Files\NETGATE\FortKnox Personal Firewall 2008\FortKnoxGUI.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "E:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [BOC-427] E:\PROGRA~1\Comodo\CBOClean\BOC427.exe
O4 - HKCU\..\Run: [internat.exe] internat.exe
O4 - HKCU\..\Run: [FreeRAM XP] "E:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe" -win
O4 - HKUS\.DEFAULT\..\Run: [internat.exe] internat.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [^SetupICWDesktop] E:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop (User 'Default user')
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - E:\WINNT\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - E:\WINNT\web\related.htm
O14 - IERESET.INF: START_PAGE_URL=http://msn.atlas.cz
O14 - IERESET.INF: MS_START_PAGE_URL=http://msn.atlas.cz
O23 - Service: BOCore - COMODO - E:\Program Files\Comodo\CBOClean\BOCORE.exe
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - E:\WINNT\System32\dmadmin.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - E:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - E:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: FortKnox Personal Firewall (fortknox) - NETGATE Technologies s.r.o. - E:\Program Files\NETGATE\FortKnox Personal Firewall 2008\FortKnox.exe
O23 - Service: Google Updater Service (gusvc) - Google - E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ISP Monitor (ISPMonitorSrv) - How2 Studios - E:\Program Files\ISP Monitor\ISPMonitorSrv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - E:\Program Files\Java\jre6\bin\jqs.exe

--
End of file - 3981 bytes

======Scheduled tasks folder======

E:\WINNT\tasks\1-Click Maintenance.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - E:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-04-06 35840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-04-06 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E718888-423F-11D2-876E-00A0C9082467} - @msdxmLC.dll,-1@1033,&Rádio - E:\WINNT\system32\msdxm.ocx [2003-06-19 844828]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Synchronization Manager"=mobsync.exe /logon []
"egui"=E:\Program Files\ESET\ESET Smart Security\egui.exe [2008-08-18 1447168]
"FortKnoxPersonalFirewall"=E:\Program Files\NETGATE\FortKnox Personal Firewall 2008\FortKnoxGUI.exe [2008-11-10 1669712]
"SunJavaUpdateSched"=E:\Program Files\Java\jre6\bin\jusched.exe [2009-04-06 148888]
"BOC-427"=E:\PROGRA~1\Comodo\CBOClean\BOC427.exe [2008-07-14 351480]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"internat.exe"=E:\WINNT\system32\internat.exe [2000-03-20 20752]
"FreeRAM XP"=E:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe [2006-03-23 1591808]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======List of files/folders created in the last 1 months======

2009-04-09 01:48:56 ----A---- E:\WINNT\system32\CF3331.exe
2009-04-09 01:46:30 ----A---- E:\WINNT\system32\CF2847.exe
2009-04-09 01:40:55 ----A---- E:\WINNT\system32\CF1665.exe
2009-04-08 18:32:46 ----D---- E:\195
2009-04-08 18:22:42 ----D---- E:\150
2009-04-08 18:15:19 ----D---- E:\114
2009-04-08 18:04:30 ----D---- E:\7
2009-04-08 17:36:24 ----D---- E:\201
2009-04-08 17:36:12 ----D---- E:\196
2009-04-08 17:20:16 ----D---- E:\175
2009-04-08 17:16:30 ----D---- E:\93
2009-04-08 17:03:21 ----D---- E:\52
2009-04-08 16:24:03 ----D---- E:\Program Files\DOSBox-0.72
2009-04-08 16:13:01 ----D---- E:\SF2
2009-04-07 02:06:26 ----D---- E:\NTCrack
2009-04-06 17:43:49 ----A---- E:\WINNT\system32\deploytk.dll
2009-04-06 17:43:47 ----A---- E:\WINNT\system32\javaws.exe
2009-04-06 17:43:43 ----A---- E:\WINNT\system32\javaw.exe
2009-04-06 17:43:32 ----A---- E:\WINNT\system32\java.exe
2009-04-06 17:30:49 ----D---- E:\Program Files\Java
2009-04-06 17:28:36 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\Sun
2009-04-04 19:48:41 ----D---- E:\Program Files\NETGATE
2009-04-04 19:48:41 ----D---- E:\Documents and Settings\All Users\Data aplikací\NETGATE
2009-04-03 23:44:44 ----D---- E:\Program Files\tuxanci
2009-03-31 18:58:25 ----D---- E:\Program Files\PDF Shrink 1
2009-03-31 18:58:25 ----A---- E:\WINNT\cadkasdeinst01e.exe
2009-03-31 16:43:32 ----D---- E:\Program Files\YourWare Solutions
2009-03-31 03:48:09 ----D---- E:\Program Files\Acme CADPacker
2009-03-31 03:38:55 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\PE Explorer
2009-03-31 03:38:31 ----D---- E:\Program Files\PE Explorer
2009-03-31 03:17:38 ----A---- E:\WINNT\ARCHPR.INI
2009-03-31 03:15:13 ----D---- E:\Program Files\Default Company Name
2009-03-31 02:55:37 ----D---- E:\Program Files\ElcomSoft
2009-03-31 01:47:13 ----D---- E:\Program Files\NETCPPcryptV29
2009-03-30 21:31:30 ----D---- E:\WINNT\temp
2009-03-30 20:17:54 ----D---- E:\Program Files\ImTOO
2009-03-30 18:30:01 ----D---- E:\Program Files\CamStudio
2009-03-30 18:22:47 ----D---- E:\Program Files\Codec Pack - All In 1
2009-03-30 18:21:23 ----A---- E:\WINNT\Codec Pack - All In 1 Setup Log.txt
2009-03-30 16:35:25 ----D---- E:\Program Files\DesktopCentral_Server
2009-03-30 16:29:02 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\Mikogo
2009-03-30 16:27:51 ----D---- E:\Program Files\RealVNC
2009-03-30 16:20:40 ----D---- E:\Program Files\Domain Tools
2009-03-30 02:49:45 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\SumatraPDF
2009-03-30 02:42:16 ----D---- E:\Program Files\SumatraPDF
2009-03-29 23:27:56 ----D---- E:\Program Files\Unknown Device Identifier
2009-03-29 22:43:28 ----D---- E:\Program Files\LANView
2009-03-29 22:41:22 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\DameWare Development
2009-03-29 22:33:23 ----D---- E:\Program Files\DameWare Development
2009-03-29 22:07:38 ----A---- E:\WINNT\system32\sqliteodbc.dll
2009-03-29 22:06:28 ----A---- E:\WINNT\system32\hrPing.exe
2009-03-29 22:06:25 ----A---- E:\WINNT\system32\ijl11.dll
2009-03-29 22:06:19 ----A---- E:\WINNT\system32\vbalIPrg.dll
2009-03-29 22:06:19 ----A---- E:\WINNT\system32\mbr_sqlite.dll
2009-03-29 22:06:18 ----A---- E:\WINNT\system32\SSubTmr6.dll
2009-03-29 22:06:17 ----A---- E:\WINNT\system32\CMDLGD6.dll
2009-03-29 22:06:04 ----A---- E:\WINNT\system32\VB6DE.dll
2009-03-29 22:06:03 ----D---- E:\Program Files\AdvancedRemoteInfo
2009-03-29 21:48:19 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\ISP Monitor
2009-03-29 21:45:26 ----A---- E:\WINNT\iun6002.exe
2009-03-29 21:44:23 ----A---- E:\scanner.ini
2009-03-29 21:44:01 ----D---- E:\Program Files\ISP Monitor
2009-03-29 21:19:01 ----D---- E:\Program Files\OstroSoft Internet Tools
2009-03-29 21:18:44 ----N---- E:\WINNT\Setup1.exe
2009-03-29 21:18:10 ----N---- E:\WINNT\ST6UNST.EXE
2009-03-29 20:56:43 ----D---- E:\Program Files\Viable Software Alternatives
2009-03-29 20:52:58 ----A---- E:\WINNT\uninst.exe
2009-03-29 19:15:22 ----N---- E:\WINNT\system32\pxhpinst.exe
2009-03-29 19:15:21 ----N---- E:\WINNT\system32\vxblock.dll
2009-03-29 19:15:21 ----N---- E:\WINNT\system32\pxdrv.dll
2009-03-29 19:15:20 ----N---- E:\WINNT\system32\pxwave.dll
2009-03-29 19:15:19 ----N---- E:\WINNT\system32\pxmas.dll
2009-03-29 19:15:18 ----N---- E:\WINNT\system32\px.dll
2009-03-29 19:14:07 ----D---- E:\WINNT\system32\IOSUBSYS
2009-03-29 19:11:35 ----D---- E:\Program Files\Google
2009-03-29 15:44:36 ----D---- E:\FOUND.001
2009-03-29 14:20:17 ----RSD---- E:\WINNT\assembly
2009-03-29 14:12:21 ----D---- E:\WINNT\PCHEALTH
2009-03-29 14:12:21 ----D---- E:\WINNT\Microsoft.NET
2009-03-29 13:38:52 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\Apple Computer
2009-03-29 13:35:21 ----D---- E:\Program Files\Safari
2009-03-29 13:35:06 ----D---- E:\WINNT\winsxs
2009-03-29 13:32:37 ----D---- E:\Program Files\Apple Software Update
2009-03-29 13:32:36 ----D---- E:\Documents and Settings\All Users\Data aplikací\Apple
2009-03-29 13:21:07 ----N---- E:\WINNT\system32\spmsg.dll
2009-03-29 13:20:33 ----HD---- E:\WINNT\$MSI31Uninstall_KB893803v2$
2009-03-27 17:47:41 ----D---- E:\Program Files\ArcSoft
2009-03-27 17:47:37 ----HD---- E:\Program Files\InstallShield Installation Information
2009-03-27 17:46:59 ----D---- E:\Program Files\Common Files\InstallShield
2009-03-27 10:31:02 ----HD---- E:\WINNT\PIF
2009-03-27 10:28:47 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\Help
2009-03-27 10:27:51 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\ArcSoft
2009-03-27 08:32:31 ----A---- E:\WINNT\merge.INI
2009-03-27 08:29:44 ----D---- E:\Program Files\Merge
2009-03-27 08:13:49 ----D---- E:\Program Files\AMS Photo Effects
2009-03-27 08:04:33 ----D---- E:\WINNT\system32\(app)
2009-03-27 08:04:24 ----D---- E:\Program Files\s_merge
2009-03-26 23:11:56 ----D---- E:\Program Files\Google Hacks
2009-03-26 22:17:13 ----D---- E:\Program Files\PuTTY
2009-03-26 16:45:54 ----D---- E:\Program Files\Advanced LAN Scanner
2009-03-25 17:56:00 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\Malwarebytes
2009-03-25 17:55:22 ----D---- E:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2009-03-25 17:55:14 ----D---- E:\Program Files\Malwarebytes' Anti-Malware
2009-03-25 17:17:32 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\XemiComputers
2009-03-25 17:17:32 ----D---- E:\Documents and Settings\All Users\Data aplikací\XemiComputers
2009-03-25 17:16:49 ----D---- E:\Program Files\XemiComputers
2009-03-25 17:04:43 ----A---- E:\WINNT\system32\BASSMOD.dll
2009-03-25 17:03:13 ----D---- E:\Program Files\Anti Trojan Elite
2009-03-25 17:00:10 ----A---- E:\WINNT\system32\D3D8.DLL
2009-03-25 16:59:58 ----A---- E:\WINNT\D3D8.DLL
2009-03-25 16:55:40 ----D---- E:\Program Files\Formosoft
2009-03-25 15:33:22 ----D---- E:\Program Files\IrfanView
2009-03-25 13:21:31 ----D---- E:\Program Files\Quackshot Starring Donald Duck
2009-03-25 03:55:05 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\Media Player Classic
2009-03-25 03:43:42 ----A---- E:\WINNT\system32\ksuser.dll
2009-03-25 03:08:15 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\ESET
2009-03-25 03:06:59 ----D---- E:\WINNT\Minidump
2009-03-25 03:06:32 ----D---- E:\FOUND.000
2009-03-25 03:03:27 ----SD---- E:\WINNT\Temporary Internet Files
2009-03-25 03:03:27 ----SD---- E:\WINNT\History
2009-03-25 03:03:27 ----SD---- E:\WINNT\Cookies
2009-03-25 03:01:50 ----D---- E:\Program Files\Lavalys
2009-03-25 02:41:42 ----D---- E:\Program Files\ESET
2009-03-25 02:41:42 ----D---- E:\Documents and Settings\All Users\Data aplikací\ESET
2009-03-25 01:58:21 ----D---- E:\Program Files\TuneUp Utilities 2007
2009-03-25 01:58:21 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\TuneUp Software
2009-03-25 01:57:25 ----D---- E:\Documents and Settings\All Users\Data aplikací\TuneUp Software
2009-03-25 01:57:10 ----D---- E:\Program Files\Common Files\Wise Installation Wizard
2009-03-25 01:56:00 ----D---- E:\Program Files\7-Zip
2009-03-25 01:12:07 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\Macromedia
2009-03-25 01:12:06 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\Adobe
2009-03-25 01:10:47 ----D---- E:\WINNT\system32\Macromed
2009-03-24 22:52:55 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\Opera
2009-03-24 22:52:09 ----D---- E:\Program Files\Opera
2009-03-24 22:45:24 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\QIP
2009-03-24 22:43:54 ----SHD---- E:\Recycled
2009-03-24 22:40:49 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\Mozilla
2009-03-24 22:40:25 ----D---- E:\Program Files\Mozilla Firefox
2009-03-24 21:56:32 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\TeamViewer
2009-03-24 21:51:42 ----A---- E:\WINNT\ModemLog_Sériový kabel mezi dvěma počítači.txt
2009-03-24 21:48:27 ----D---- E:\WINNT\system32\NtmsData
2009-03-24 21:48:13 ----SHD---- E:\WINNT\Installer
2009-03-24 21:48:12 ----D---- E:\Documents and Settings\Torrentino1\Data aplikací\Identities
2009-03-24 21:48:00 ----HD---- E:\WINNT\system32\GroupPolicy
2009-03-24 21:47:59 ----SD---- E:\Documents and Settings\Torrentino1\Data aplikací\Microsoft
2009-03-24 21:47:58 ----SHD---- E:\WINNT\CSC
2009-03-24 21:47:43 ----D---- E:\WINNT\system32\Microsoft
2009-03-24 21:47:43 ----A---- E:\WINNT\SchedLgU.Txt
2009-03-24 21:27:43 ----D---- E:\WINNT\system32\rocket
2009-03-24 21:27:43 ----D---- E:\WINNT\mww32
2009-03-24 21:27:43 ----D---- E:\WINNT\ime
2009-03-24 21:27:42 ----D---- E:\WINNT\system32\rpcproxy
2009-03-24 21:27:42 ----D---- E:\WINNT\system32\inetsrv
2009-03-24 21:27:42 ----D---- E:\Program Files\microsoft frontpage
2009-03-24 21:26:02 ----A---- E:\WINNT\control.ini
2009-03-24 21:25:51 ----A---- E:\WINNT\OEWABLog.txt
2009-03-24 21:23:50 ----A---- E:\WINNT\system32\mapi32.dll
2009-03-24 21:23:04 ----H---- E:\WINNT\system32\desktop.ini
2009-03-24 21:23:04 ----H---- E:\WINNT\desktop.ini
2009-03-24 21:23:04 ----H---- E:\Program Files\desktop.ini
2009-03-24 21:23:01 ----SD---- E:\WINNT\Downloaded Program Files
2009-03-24 21:23:01 ----RD---- E:\WINNT\Offline Web Pages
2009-03-24 21:22:20 ----A---- E:\WINNT\system32\nmevtmsg.dll
2009-03-24 21:22:20 ----A---- E:\WINNT\system32\ils.dll
2009-03-24 21:22:19 ----A---- E:\WINNT\system32\nmmkcert.dll
2009-03-24 21:22:19 ----A---- E:\WINNT\system32\mnmdd.dll
2009-03-24 21:22:18 ----A---- E:\WINNT\system32\msconf.dll
2009-03-24 21:22:18 ----A---- E:\WINNT\system32\mnmsrvc.exe
2009-03-24 21:22:13 ----D---- E:\Program Files\Common Files\Services
2009-03-24 21:22:07 ----SD---- E:\WINNT\Tasks
2009-03-24 21:22:07 ----A---- E:\WINNT\system32\mstinit.exe
2009-03-24 21:22:04 ----A---- E:\WINNT\system32\icwphbk.dll
2009-03-24 21:22:04 ----A---- E:\WINNT\system32\icwdial.dll
2009-03-24 21:22:03 ----A---- E:\WINNT\system32\inetcfg.dll
2009-03-24 21:22:03 ----A---- E:\WINNT\system32\icfgnt5.dll
2009-03-24 21:21:51 ----D---- E:\Program Files\NetMeeting
2009-03-24 21:21:50 ----A---- E:\WINNT\system32\msoert2.dll
2009-03-24 21:21:49 ----A---- E:\WINNT\system32\msoeacct.dll
2009-03-24 21:21:49 ----A---- E:\WINNT\system32\acctres.dll
2009-03-24 21:21:45 ----A---- E:\WINNT\system32\inetres.dll
2009-03-24 21:21:45 ----A---- E:\WINNT\system32\inetcomm.dll
2009-03-24 21:21:40 ----D---- E:\Program Files\Outlook Express
2009-03-24 21:21:39 ----A---- E:\WINNT\system32\mstask.exe
2009-03-24 21:21:39 ----A---- E:\WINNT\system32\mstask.dll
2009-03-24 21:21:39 ----A---- E:\WINNT\system32\isign32.dll
2009-03-24 21:21:38 ----D---- E:\Program Files\Internet Explorer
2009-03-24 21:21:26 ----D---- E:\Program Files\Common Files\System
2009-03-24 21:21:04 ----D---- E:\Program Files\ComPlus Applications
2009-03-24 21:19:48 ----D---- E:\WINNT\Registration
2009-03-24 21:19:45 ----A---- E:\WINNT\vbaddin.ini
2009-03-24 21:19:45 ----A---- E:\WINNT\vb.ini
2009-03-24 21:19:22 ----D---- E:\WINNT\system32\DTCLog
2009-03-24 21:19:15 ----HD---- E:\Program Files\WindowsUpdate
2009-03-24 21:19:15 ----D---- E:\Program Files\Windows Media Player
2009-03-24 21:19:11 ----A---- E:\WINNT\system32\write.exe
2009-03-24 21:18:40 ----A---- E:\WINNT\system32\sndvol32.exe
2009-03-24 21:18:39 ----A---- E:\WINNT\system32\mplay32.exe
2009-03-24 21:18:38 ----A---- E:\WINNT\system32\cdplayer.exe
2009-03-24 21:18:30 ----A---- E:\WINNT\system32\avwav.dll
2009-03-24 21:18:30 ----A---- E:\WINNT\system32\avmeter.dll
2009-03-24 21:18:29 ----A---- E:\WINNT\system32\winchat.exe
2009-03-24 21:18:15 ----A---- E:\WINNT\system32\clipbrd.exe
2009-03-24 21:18:13 ----A---- E:\WINNT\system32\getuname.dll
2009-03-24 21:18:12 ----A---- E:\WINNT\system32\charmap.exe
2009-03-24 21:18:12 ----A---- E:\WINNT\system32\calc.exe
2009-03-24 21:18:11 ----A---- E:\WINNT\system32\sol.exe
2009-03-24 21:18:10 ----D---- E:\Program Files\Příslušenství
2009-03-24 21:18:10 ----A---- E:\WINNT\system32\winmine.exe
2009-03-24 21:18:10 ----A---- E:\WINNT\system32\freecell.exe
2009-03-24 21:18:09 ----A---- E:\WINNT\system32\tifflt.dll
2009-03-24 21:18:08 ----A---- E:\WINNT\system32\xiffr3_0.dll
2009-03-24 21:18:08 ----A---- E:\WINNT\system32\oislb400.dll
2009-03-24 21:18:07 ----A---- E:\WINNT\system32\oitwa400.dll
2009-03-24 21:18:07 ----A---- E:\WINNT\system32\oissq400.dll
2009-03-24 21:18:07 ----A---- E:\WINNT\system32\oiprt400.dll
2009-03-24 21:18:07 ----A---- E:\WINNT\system32\jpeg2x32.dll
2009-03-24 21:18:07 ----A---- E:\WINNT\system32\jpeg1x32.dll
2009-03-24 21:18:07 ----A---- E:\WINNT\system32\imgshl.dll
2009-03-24 21:18:06 ----A---- E:\WINNT\system32\imgcmn.dll
2009-03-24 21:18:05 ----A---- E:\WINNT\system32\xolehlp.dll
2009-03-24 21:18:05 ----A---- E:\WINNT\system32\msdtcprf.ini
2009-03-24 21:18:04 ----A---- E:\WINNT\system32\msdtc.exe
2009-03-24 21:18:03 ----A---- E:\WINNT\system32\comclust.exe
2009-03-24 21:18:02 ----A---- E:\WINNT\system32\stclient.dll
2009-03-24 21:18:02 ----A---- E:\WINNT\system32\mtxlegih.dll
2009-03-24 21:18:02 ----A---- E:\WINNT\system32\mtxex.dll
2009-03-24 21:18:02 ----A---- E:\WINNT\system32\DComExt.dll
2009-03-24 21:18:02 ----A---- E:\WINNT\system32\comaddin.dll
2009-03-24 21:18:01 ----A---- E:\WINNT\system32\txflog.dll
2009-03-24 21:18:01 ----A---- E:\WINNT\system32\catsrvps.dll
2009-03-24 21:18:00 ----A---- E:\WINNT\system32\comsnap.dll
2009-03-24 21:17:59 ----A---- E:\WINNT\system32\sndrec32.exe
2009-03-24 21:17:59 ----A---- E:\WINNT\system32\accwiz.exe
2009-03-24 21:17:58 ----D---- E:\Program Files\Windows NT
2009-03-24 21:17:58 ----A---- E:\WINNT\system32\hypertrm.dll
2009-03-24 21:17:58 ----A---- E:\WINNT\system32\hticons.dll
2009-03-24 21:17:58 ----A---- E:\WINNT\system32\avtapi.dll
2009-03-24 21:17:57 ----A---- E:\WINNT\system32\packager.exe
2009-03-24 21:17:57 ----A---- E:\WINNT\system32\mspaint.exe
2009-03-24 21:17:56 ----A---- E:\WINNT\system32\wuauclt.exe
2009-03-24 21:17:55 ----A---- E:\WINNT\system32\wuauserv.dll
2009-03-24 21:17:55 ----A---- E:\WINNT\system32\wuaueng.dll
2009-03-24 21:17:54 ----A---- E:\WINNT\system32\oiui400.dll
2009-03-24 21:17:54 ----A---- E:\WINNT\system32\oieng400.dll
2009-03-24 21:17:54 ----A---- E:\WINNT\system32\mtxoci.dll
2009-03-24 21:17:53 ----A---- E:\WINNT\system32\msdtcprx.dll
2009-03-24 21:17:52 ----A---- E:\WINNT\system32\msdtctm.dll
2009-03-24 21:17:51 ----A---- E:\WINNT\system32\txfaux.dll
2009-03-24 21:17:51 ----A---- E:\WINNT\system32\msdtcui.dll
2009-03-24 21:17:51 ----A---- E:\WINNT\system32\msdtclog.dll
2009-03-24 21:17:50 ----RA---- E:\WINNT\system32\dtcsetup.exe
2009-03-24 21:17:48 ----A---- E:\WINNT\system32\mtxdm.dll
2009-03-24 21:17:48 ----A---- E:\WINNT\system32\colbact.dll
2009-03-24 21:17:47 ----D---- E:\WINNT\system32\Com
2009-03-24 21:17:47 ----A---- E:\WINNT\system32\comrepl.dll
2009-03-24 21:17:47 ----A---- E:\WINNT\system32\clbcatex.dll
2009-03-24 21:17:47 ----A---- E:\WINNT\system32\catsrvut.dll
2009-03-24 21:17:46 ----A---- E:\WINNT\system32\catsrv.dll
2009-03-24 21:17:45 ----A---- E:\WINNT\system32\comuid.dll
2009-03-24 21:17:45 ----A---- E:\WINNT\system32\comsvcs.dll
2009-03-24 21:17:44 ----A---- E:\WINNT\system32\clbcatq.dll
2009-03-24 21:16:03 ----D---- E:\Documents and Settings\All Users\Data aplikací\Microsoft
2009-03-24 21:10:25 ----A---- E:\WINNT\ModemDet.txt
2009-03-24 21:07:47 ----A---- E:\WINNT\system32\usbui.dll
2009-03-24 21:07:42 ----A---- E:\WINNT\system32\SiSV256.dll
2009-03-24 21:05:36 ----A---- E:\WINNT\imsins.BAK
2009-03-24 21:05:28 ----A---- E:\WINNT\system32\PerfStringBackup.INI
2009-03-24 21:05:25 ----D---- E:\Program Files\Common Files\ODBC
2009-03-24 21:05:24 ----A---- E:\WINNT\ODBCINST.INI
2009-03-24 21:05:16 ----D---- E:\WINNT\Speech
2009-03-24 21:05:13 ----D---- E:\Program Files\Common Files\Microsoft Shared
2009-03-24 21:05:13 ----A---- E:\WINNT\delttsul.exe
2009-03-24 21:05:12 ----RD---- E:\Program Files
2009-03-24 21:05:12 ----D---- E:\Program Files\Common Files
2009-03-24 21:05:00 ----RA---- E:\WINNT\system32\kbdsl1.dll
2009-03-24 21:05:00 ----RA---- E:\WINNT\system32\kbdsl.dll
2009-03-24 21:04:59 ----RA---- E:\WINNT\system32\kbdpl1.dll
2009-03-24 21:04:59 ----RA---- E:\WINNT\system32\kbdpl.dll
2009-03-24 21:04:59 ----RA---- E:\WINNT\system32\kbdhu1.dll
2009-03-24 21:04:59 ----RA---- E:\WINNT\system32\kbdhu.dll
2009-03-24 21:04:59 ----RA---- E:\WINNT\system32\kbdcr.dll
2009-03-24 21:04:59 ----RA---- E:\WINNT\system32\KBDAL.DLL
2009-03-24 21:04:58 ----RA---- E:\WINNT\system32\kbdycl.dll
2009-03-24 21:04:58 ----RA---- E:\WINNT\system32\kbdro.dll
2009-03-24 21:04:54 ----A---- E:\WINNT\system32\dgsetup.dll
2009-03-24 21:04:54 ----A---- E:\WINNT\system32\dgrpsetu.dll
2009-03-24 21:04:53 ----A---- E:\WINNT\system32\spxcoins.dll
2009-03-24 21:04:53 ----A---- E:\WINNT\system32\EqnClass.Dll
2009-03-24 21:04:53 ----A---- E:\WINNT\system32\batt.dll
2009-03-24 21:04:47 ----A---- E:\WINNT\TASKMAN.EXE
2009-03-24 21:04:46 ----N---- E:\WINNT\system32\CONFIG.TMP
2009-03-24 21:04:46 ----A---- E:\WINNT\NOTEPAD.EXE
2009-03-24 21:04:45 ----A---- E:\WINNT\system32\SPOOLSV.EXE
2009-03-24 21:04:45 ----A---- E:\WINNT\system32\SPOOLSS.DLL
2009-03-24 21:04:40 ----A---- E:\WINNT\system32\storprop.dll
2009-03-24 21:04:21 ----RA---- E:\WINNT\SET51.tmp
2009-03-24 21:04:14 ----RA---- E:\WINNT\SET29.tmp
2009-03-24 21:03:59 ----D---- E:\WINNT\system32\CatRoot
2009-03-24 21:03:51 ----A---- E:\WINNT\setuplog.txt
2009-03-24 21:03:34 ----D---- E:\Documents and Settings
2009-03-24 20:56:46 ----SD---- E:\WINNT\Web
2009-03-24 20:56:46 ----RSHD---- E:\WINNT\system32\dllcache
2009-03-24 20:56:46 ----RSD---- E:\WINNT\Fonts
2009-03-24 20:56:46 ----HD---- E:\WINNT\inf
2009-03-24 20:56:46 ----D---- E:\WINNT\twain_32
2009-03-24 20:56:46 ----D---- E:\WINNT\system32\wins
2009-03-24 20:56:46 ----D---- E:\WINNT\system32\wbem
2009-03-24 20:56:46 ----D---- E:\WINNT\system32\spool
2009-03-24 20:56:46 ----D---- E:\WINNT\system32\ShellExt
2009-03-24 20:56:46 ----D---- E:\WINNT\system32\Setup
2009-03-24 20:56:46 ----D---- E:\WINNT\system32\ras
2009-03-24 20:56:46 ----D---- E:\WINNT\system32\os2
2009-03-24 20:56:46 ----D---- E:\WINNT\system32\npp
2009-03-24 20:56:46 ----D---- E:\WINNT\system32\mui
2009-03-24 20:56:46 ----D---- E:\WINNT\system32\ie_de
2009-03-24 20:56:46 ----D---- E:\WINNT\system32\ias
2009-03-24 20:56:46 ----D---- E:\WINNT\system32\export
2009-03-24 20:56:46 ----D---- E:\WINNT\system32\drivers
2009-03-24 20:56:46 ----D---- E:\WINNT\system32\dhcp
2009-03-24 20:56:46 ----D---- E:\WINNT\system32\config
2009-03-24 20:56:46 ----D---- E:\WINNT\system32
2009-03-24 20:56:46 ----D---- E:\WINNT\system
2009-03-24 20:56:46 ----D---- E:\WINNT\security
2009-03-24 20:56:46 ----D---- E:\WINNT\repair
2009-03-24 20:56:46 ----D---- E:\WINNT\msapps
2009-03-24 20:56:46 ----D---- E:\WINNT\msagent
2009-03-24 20:56:46 ----D---- E:\WINNT\Media
2009-03-24 20:56:46 ----D---- E:\WINNT\Help
2009-03-24 20:56:46 ----D---- E:\WINNT\Driver Cache
2009-03-24 20:56:46 ----D---- E:\WINNT\Debug
2009-03-24 20:56:46 ----D---- E:\WINNT\Cursors
2009-03-24 20:56:46 ----D---- E:\WINNT\Connection Wizard
2009-03-24 20:56:46 ----D---- E:\WINNT\Config
2009-03-24 20:56:46 ----D---- E:\WINNT\AppPatch
2009-03-24 20:56:46 ----D---- E:\WINNT\addins
2009-03-24 20:56:46 ----D---- E:\WINNT
2009-03-02 09:03:57 ----D---- E:\rsit
2009-03-02 08:36:44 ----D---- E:\ComboFix
2009-03-02 08:29:45 ----A---- E:\WINNT\ntbtlog.txt
2009-03-02 08:26:56 ----D---- E:\WINNT\ERDNT
2009-03-02 08:24:12 ----A---- E:\WINNT\system32\CF20453.exe
2009-03-02 08:23:46 ----D---- E:\Qoobox
2009-03-02 06:45:16 ----A---- E:\BOClist.txt
2009-03-02 06:45:03 ----A---- E:\BOreport.txt
2009-03-02 06:34:04 ----A---- E:\WINNT\UNBOC.EXE
2009-03-02 06:34:03 ----A---- E:\WINNT\CMDLIC.DLL
2009-03-02 06:33:56 ----D---- E:\Documents and Settings\All Users\Data aplikací\BOC427
2009-03-02 06:33:52 ----A---- E:\WINNT\BOC427.INI
2009-03-02 06:33:49 ----D---- E:\Program Files\Comodo
2009-03-02 05:06:44 ----A---- E:\WINNT\system32\CF14612.exe
2009-03-02 02:04:12 ----A---- E:\WINNT\system32\CF11638.exe
2009-03-02 02:04:11 ----A---- E:\WINNT\system32\CF11632.exe
2009-03-02 01:58:48 ----D---- E:\nmviodshvo
2009-03-02 01:51:18 ----A---- E:\WINNT\system32\CF9111.exe

======List of files/folders modified in the last 1 months======

2009-03-31 03:25:42 ----A---- E:\WINNT\system.ini
2009-03-24 21:26:00 ----A---- E:\WINNT\win.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 easdrv;easdrv; E:\WINNT\system32\DRIVERS\easdrv.sys [2008-08-18 53256]
R1 epfwndhk;epfwndhk; E:\WINNT\system32\DRIVERS\EPFWNDHK.sys [2008-08-18 33288]
R1 epfwtdi;epfwtdi; E:\WINNT\system32\DRIVERS\epfwtdi.sys [2008-08-18 54280]
R1 fortknox_drv;fortknox_drv; E:\WINNT\system32\drivers\fortknoxfw.sys [2008-08-27 57680]
R2 eamon;EAMON; E:\WINNT\system32\DRIVERS\eamon.sys [2008-08-18 39944]
R2 epfw;epfw; E:\WINNT\system32\DRIVERS\epfw.sys [2008-08-18 71688]
R3 BOCDRIVE;BOClean Kernel Monitor.; \??\E:\Program Files\Comodo\CBOClean\BOCDRIVE.sys []
R3 cm8330;C-Media CM8330 Audio Driver (WDM); E:\WINNT\system32\drivers\cm8330.sys [2000-02-25 23413]
R3 Fkndisf;FortKnox Firewall NDIS Filter Service; E:\WINNT\system32\DRIVERS\fortknoxfw_ndisim.sys [2008-03-05 23248]
R3 openhci;Ovladač otevřeného hostitelského řadiče USB; E:\WINNT\system32\DRIVERS\openhci.sys [2003-06-19 24784]
R3 rtl8139;Realtek RTL8139-based PCI Fast Ethernet Adapter NT Driver; E:\WINNT\system32\DRIVERS\RTL8139.SYS [1999-09-25 18704]
R3 sermouse;Ovladač sériové myši; E:\WINNT\system32\DRIVERS\sermouse.sys [2000-03-20 17136]
R3 SiSV;SiSV; E:\WINNT\system32\DRIVERS\SiSV.sys [1999-09-28 49904]
R3 usbhub;Ovladač standardního rozbočovače USB; E:\WINNT\system32\DRIVERS\usbhub.sys [2003-06-19 40176]
S3 ATE_PROCMON;ATE_PROCMON; \??\E:\Program Files\Anti Trojan Elite\ATEPMon.sys []
S3 catchme;catchme; \??\E:\DOCUME~1\TORREN~1\LOCALS~1\Temp\catchme.sys []
S3 NtApm;Ovladač rozhraní služby NT Apm/Legacy; E:\WINNT\system32\DRIVERS\NtApm.sys [2000-03-08 9136]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; E:\WINNT\System32\Drivers\RootMdm.sys [2000-03-20 6032]
S4 ACPI;ACPI; E:\WINNT\system32\drivers\ACPI.sys []
S4 IntelIde;IntelIde; E:\WINNT\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 BOCore;BOCore; E:\Program Files\Comodo\CBOClean\BOCORE.exe [2008-07-14 73464]
R2 ekrn;Eset Service; E:\Program Files\ESET\ESET Smart Security\ekrn.exe [2008-08-18 468224]
R2 fortknox;FortKnox Personal Firewall; E:\Program Files\NETGATE\FortKnox Personal Firewall 2008\FortKnox.exe [2008-09-17 502352]
R2 JavaQuickStarterService;Java Quick Starter; E:\Program Files\Java\jre6\bin\jqs.exe [2009-04-06 152984]
S2 ISPMonitorSrv;ISP Monitor; E:\Program Files\ISP Monitor\ISPMonitorSrv.exe [2008-06-10 36864]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; E:\WINNT\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 EhttpSrv;Eset HTTP Server; E:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2008-08-18 19200]
S3 gusvc;Google Updater Service; E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-11-20 136120]

-----------------EOF-----------------//ještě sem málem zapoměl na druhej log: info.txt logfile of random's system information tool 1.06 2009-03-02 09:05:23

======Uninstall list======

7-Zip 4.65-->"E:\Program Files\7-Zip\Uninstall.exe"
Acme CADPacker-->E:\Program Files\Acme CADPacker\uninstall.exe
Active Desktop Calendar 7.52-->"E:\Program Files\XemiComputers\Active Desktop Calendar\unins000.exe"
Adobe Flash Player 10 Plugin-->E:\WINNT\system32\Macromed\Flash\uninstall_plugin.exe
Advanced Archive Password Recovery (remove only)-->E:\Program Files\ElcomSoft\ARCHPR\uninstall.exe
Advanced LAN Scanner v1.0 BETA 1-->E:\Program Files\Advanced LAN Scanner\uninstal.exe
AdvancedRemoteInfo-->"E:\Program Files\AdvancedRemoteInfo\unins000.exe"
Alert LinkRunner-->E:\WINNT\uninst.exe -f"E:\Program Files\Viable Software Alternatives\Alert LinkRunner\DeIsL1.isu" -c"E:\Program Files\Viable Software Alternatives\Alert LinkRunner\_ISREG32.DLL"
AMS Photo Effects 1.77-->"E:\Program Files\AMS Photo Effects\unins000.exe"
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
ArcSoft PhotoStudio Darkroom-->RunDll32 E:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "E:\Program Files\InstallShield Installation Information\{81DB8D9A-9611-4DEE-B8A8-AE131A707800}\Setup.exe" -l0x5
BOClean-->E:\WINNT\UNBOC.EXE
CamStudio-->E:\Program Files\CamStudio\uninstall.exe
Codec Pack - All In 1 6.0.3.0-->E:\WINNT\iun6002.exe "E:\Program Files\Codec Pack - All In 1\irunin.ini"
DameWare Exporter-->MsiExec.exe /I{842DBE3C-89DE-4963-87F3-0B0036232488}
ESET Smart Security-->MsiExec.exe /I{CBE0549E-6304-41DE-B063-51FF18EDD7DC}
EVEREST Ultimate Edition v5.00-->"E:\Program Files\Lavalys\EVEREST Ultimate Edition\unins000.exe"
FortKnox Personal Firewall 2008-->"E:\Program Files\NETGATE\FortKnox Personal Firewall 2008\unins000.exe"
HijackThis 2.0.2-->"E:\Documents and Settings\Torrentino1\Plocha\HijackThis.exe" /uninstall
ImTOO MPEG Encoder Ultimate-->E:\Program Files\ImTOO\MPEG Encoder Ultimate\Uninstall.exe
IrfanView (remove only)-->E:\Program Files\IrfanView\iv_uninstall.exe
ISP Monitor-->E:\WINNT\iun6002.exe "E:\Program Files\ISP Monitor\isp.ini"
Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
LANView 3.0.1 build 205-->"E:\Program Files\LANView\unins000.exe"
Malwarebytes' Anti-Malware-->"E:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
ManageEngine Desktop Central 6 - Server-->RunDll32 E:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "E:\Program Files\InstallShield Installation Information\{BCEF6F6B-E530-4D5E-8DB7-C54F96DB9D2A}\Setup.exe" uninstall
Merge Version 2.0-->"E:\Program Files\Merge\unins000.exe"
Microsoft .NET Framework 2.0-->E:\WINNT\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Mikogo-->E:\Documents and Settings\Torrentino1\Data aplikací\Mikogo\remover.exe
Mozilla Firefox (3.0.7)-->E:\Program Files\Mozilla Firefox\uninstall\helper.exe
NETCPPcryptV29. The program works on Windows XP/Vista and REQUI-->"E:\Program Files\NETCPPcryptV29\unins000.exe"
Opera 9.64-->MsiExec.exe /X{E1BBBAC5-2857-4155-82A6-54492CE88620}
OstroSoft Internet Tools-->E:\WINNT\st6unst.exe -n "E:\Program Files\OstroSoft Internet Tools\ST6UNST.LOG"
PDF Shrink 1-->E:\WINNT\cadkasdeinst01e.exe "E:\Program Files\PDF Shrink 1\"
PE Explorer 1.99 R5-->"E:\Program Files\PE Explorer\unins000.exe"
PExplorerInstall-->MsiExec.exe /I{FB2AADA6-398A-43EE-9014-7DFE03AF42DF}
Picasa 3-->"E:\Program Files\Google\Picasa3\Uninstall.exe"
ProjectWhois-->E:\Program Files\Domain Tools\ProjectWhois\ProjectWhoisUninstall.exe
PuTTY version 0.60-->"E:\Program Files\PuTTY\unins000.exe"
Qip Infium pack verze: 9030 RC4 s IRC protokolem-->C:\Program Files\QIP Infium\uninst.exe
Quackshot Starring Donald Duck 1.0-->"E:\Program Files\Quackshot Starring Donald Duck\unins000.exe"
S_Merge Version 1.3-->"E:\Program Files\s_merge\unins000.exe"
Safari-->MsiExec.exe /X{D90AFDE3-3E67-407A-ACA8-F0BAAD012F08}
Sumatra PDF reader-->"E:\Program Files\SumatraPDF\uninstall.exe"
TuneUp Utilities 2007-->MsiExec.exe /I{C8BB4912-12D9-42AE-B571-E580D8CD1B5B}
Unknown Device Identifier 6.01-->"E:\Program Files\Unknown Device Identifier\unins000.exe"
VNC Free Edition 4.1.2-->"E:\Program Files\RealVNC\VNC4\unins000.exe"
Windows Installer 3.1 (KB893803)-->"E:\WINNT\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"

=====HijackThis Backups=====

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://E:\WINNT\system32\GPhotos.scr/200 [2009-03-30]
O23 - Service: Google Updater Service (gusvc) - Google - E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-30]
O4 - HKCU\..\Run: [Active Desktop Calendar] E:\Program Files\XemiComputers\Active Desktop Calendar\ADC.exe [2009-03-31]
O4 - HKCU\..\Run: [ISPMonitor] E:\Program Files\ISP Monitor\isp.exe [2009-03-31]
O4 - HKCU\..\Run: [Mikogo] "E:\Documents and Settings\Torrentino1\Data aplikací\Mikogo\Mikogo-Host.exe" [2009-03-31]
O23 - Service: Google Updater Service (gusvc) - Google - E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-31]
O23 - Service: Google Updater Service (gusvc) - Google - E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-01]
O23 - Service: ISP Monitor (ISPMonitorSrv) - How2 Studios - E:\Program Files\ISP Monitor\ISPMonitorSrv.exe [2009-04-01]
O4 - Startup: HPF.lnk = C:\Program Files\Hurricanesoft\Hurricanesoft Personal Firewall\HPF.exe [2009-04-06]
O23 - Service: Google Updater Service (gusvc) - Google - E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-06]

======System event log======

Computer Name: TORRENTINO
Event Code: 1000
Message: Zapůjčení adresy IP počítače xx.42.253.33 pro
síťovou kartu se síťovou adresou x byla ukončena.

Record Number: 17
Source Name: Dhcp
Time Written: 20090325004621.000000+060
Event Type: error
User:

Computer Name: TORRENTINO
Event Code: 1003
Message: Nebylo možno obnovit adresu počítače ze sítě (ze serveru
DHCP) pro síťovou kartu s adresou x. Došlo k následující
chybě:
Časový limit semaforu vypršel.
.
Počítač se bude pokoušet získat síťovou adresu samostatně ze serveru
DHCP.

Record Number: 16
Source Name: Dhcp
Time Written: 20090325004621.000000+060
Event Type: warning
User:

Computer Name: TORRENTINO
Event Code: 2
Message: Priorita (null) dokumentu Fax vlastněného (null) byla na (null) změněna na hodnotu (null).

Record Number: 5
Source Name: Print
Time Written: 20090324215029.000000+060
Event Type: warning
User: TORRENTINO\Torrentino1

Computer Name: TORRENTINO
Event Code: 20
Message: Časový limit dokumentu Windows NT Fax Driver, Windows NT x86 patřícímu uživateli Version-3 na FAXDRV.DLL, FAXUI.DLL, FAXDRV.DLL vypršel. Zařazovací služba čekala (null) milisekund a neobdržela žádná data.

Record Number: 4
Source Name: Print
Time Written: 20090324215029.000000+060
Event Type: warning
User: NT AUTHORITY\SYSTEM

Computer Name: TORRENTINO
Event Code: 12102
Message: Informace o registraci souboru bitové kopie Unknown není platná.

Record Number: 3
Source Name: WMI
Time Written: 20090324215017.000000+060
Event Type: warning
User:

=====Application event log=====

Computer Name: TORRENTINO
Event Code: 2001
Message:
Record Number: 11
Source Name: rasctrs
Time Written: 20090325031448.000000+060
Event Type: error
User:

Computer Name: TORRENTINO
Event Code: 1000
Message: Systém Windows nemůže uvolnit soubor registru. Pokud máte cestovní profil, vaše nastavení nebude replikováno. Obraťte se na správce systému.

PODROBNOSTI: Přístup byl odepřen. , číslo sestavení((2195)).

Record Number: 10
Source Name: Userenv
Time Written: 20090325031147.000000+060
Event Type: error
User: NT AUTHORITY\SYSTEM

Computer Name: TORRENTINO
Event Code: 2001
Message:
Record Number: 9
Source Name: rasctrs
Time Written: 20090325030901.000000+060
Event Type: error
User:

Computer Name: TORRENTINO
Event Code: 36
Message: Program WMI ADAP nemohl načíst knihovnu výkonu Spooler, protože vrátila neplatný návratový kód: 0x80041001

Record Number: 5
Source Name: WinMgmt
Time Written: 20090325011420.000000+060
Event Type: warning
User:

Computer Name: TORRENTINO
Event Code: 8222
Message: Nebyla nalezena žádná faxovací zařízení.

Record Number: 2
Source Name: Fax Service
Time Written: 20090324215030.000000+060
Event Type: error
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Os2LibPath"=%SystemRoot%\system32\os2\dll;
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=5
"PROCESSOR_IDENTIFIER"=x86 Family 5 Model 6 Stepping 1, AuthenticAMD
"PROCESSOR_REVISION"=0601
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------

[jaro3]

Máš :
ESET Smart Security- komplexní ochrana

Odinstaloval bych:
Comodo\CBOClean
NETGATE\FortKnox Personal Firewall 2008
Anti Trojan Elite

Stáhni si program OTMoveIt3 (by OldTimer) a ulož si ho na disk C a spusť ho.
- Do levého sloupce (Paste Instructions for Items to be Moved) zkopíruj tyto cesty:
Poznámka: Nepoužij k označení funkci VYBRAT VŠE

Kód: Vybrat vše

:Processes
explorer.exe

:Services

:Reg

:Files
E:\Documents and Settings\Torrentino1\Plocha\Torrentino1.exe
E:\WINNT\imsins.BAK
E:\FOUND.001
E:\FOUND.000
E:\WINNT\SET51.tmp
E:\WINNT\SET29.tmp

:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]

- Po zkopírování klikni na tlačítko MoveIt! a vlož sem následně celý obsah z pravého sloupce, jinak uložený ve složce C:\_OTMoveIt\MovedFiles\, který bude informovat o výsledcích
- Je možné, že pokud nebudou moci být soubory odstraněny, budeš dotázán na restart počítače, v tom případě restart potvrď.

Toto znáš:
E:\nmviodshvo
E:\195
E:\150
E:\114
E:\7
E:\201
E:\196
E:\175
E:\93
E:\52 ?

Toto otestuj na Virustotal
E:\WINNT\system32\mbr_sqlite.dll
Vlož sem pak odkaz výsledku.

[alenka_v_říši_divů]

Pravě mi bude za par dnu končit eset..a vypinam u něj FW....a tam ten KNOX si asi nechám...COMODO/CBOClean sem tedy odinstaloval a Anti Trojan Elite..nemužu nikde najít/třeba v přidat nebo odebrat program/..už sem ho ale davno odinstaloval..ale evidentně po nem neco zbylo :) zde log z Movelt:/je to on?...objevil se mi po restartu ========== PROCESSES ==========
Process explorer.exe killed successfully.
========== SERVICES/DRIVERS ==========
========== REGISTRY ==========
========== FILES ==========
E:\Documents and Settings\Torrentino1\Plocha\Torrentino1.exe moved successfully.
E:\WINNT\imsins.BAK moved successfully.
E:\FOUND.001 moved successfully.
E:\FOUND.000 moved successfully.
E:\WINNT\SET51.tmp moved successfully.
E:\WINNT\SET29.tmp moved successfully.
========== COMMANDS ==========
User's Temp folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
User's Temporary Internet Files folder emptied.
Windows Temp folder emptied.
Java cache emptied.
FireFox cache emptied.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0012\w.ax scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0012\wb.vx scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0012\md.dat scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0012\adoc.bx scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0012\url.ax scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0011\w.ax scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0011\wb.vx scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0011\md.dat scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0011\adoc.bx scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0011\url.ax scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0010\w.ax scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0010\wb.vx scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0010\md.dat scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0010\adoc.bx scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0010\url.ax scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0006\w.ax scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0006\wb.vx scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0006\md.dat scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0006\adoc.bx scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0006\url.ax scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0005\w.ax scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0005\wb.vx scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0005\md.dat scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0005\adoc.bx scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0005\url.ax scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0004\w.ax scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0004\wb.vx scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0004\md.dat scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0004\adoc.bx scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0004\url.ax scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0001\w.ax scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0001\wb.vx scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0001\md.dat scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0001\adoc.bx scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0001\url.ax scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0000\w.ax scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0000\wb.vx scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0000\md.dat scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0000\adoc.bx scheduled to be deleted on reboot.
File delete failed. E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0000\url.ax scheduled to be deleted on reboot.
Opera cache emptied.
Temp folders emptied.
Explorer started successfully

OTMoveIt3 by OldTimer - Version 1.0.10.0 log created on 03022009_110402

Files moved on Reboot...
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0012\w.ax moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0012\wb.vx moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0012\md.dat moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0012\adoc.bx moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0012\url.ax moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0011\w.ax moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0011\wb.vx moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0011\md.dat moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0011\adoc.bx moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0011\url.ax moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0010\w.ax moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0010\wb.vx moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0010\md.dat moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0010\adoc.bx moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0010\url.ax moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0006\w.ax moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0006\wb.vx moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0006\md.dat moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0006\adoc.bx moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0006\url.ax moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0005\w.ax moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0005\wb.vx moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0005\md.dat moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0005\adoc.bx moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0005\url.ax moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0004\w.ax moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0004\wb.vx moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0004\md.dat moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0004\adoc.bx moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0004\url.ax moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0001\w.ax moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0001\wb.vx moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0001\md.dat moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0001\adoc.bx moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0001\url.ax moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0000\w.ax moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0000\wb.vx moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0000\md.dat moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0000\adoc.bx moved successfully.
E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera\Opera\Profile\vps\0000\url.ax moved successfully.
zde VT http://www.virustotal.com/cs/analisis/4d04421241b2238c02500be40e09d4e3 //jinak tam ty soubory na E: znám...

[jaro3]

Je to on..
Zkus nyní stáhnout a spustit v nouz. režimu ten MbAM.

[alenka_v_říši_divů]

zde je log Malwarebytes' Anti-Malware 1.36
Verze databáze: 1945
Windows 5.0.2195 Service Pack 4

2009-04-09 20:41:24
mbam-log-2009-04-09 (20-41-04).txt

Typ skenu: Rychlý sken
Objektu skenováno: 51972
Uplynulý cas: 23 minute(s), 9 second(s)

Infikované procesy pameti: 0
Infikované pametové moduly: 0
Infikované klíce registru: 0
Infikované hodnoty registru: 0
Infikované položky dat registru: 0
Infikované složky: 0
Infikované soubory: 1

Infikované procesy pameti:
(Žádné zákerné položky nebyly zjišteny)

Infikované pametové moduly:
(Žádné zákerné položky nebyly zjišteny)

Infikované klíce registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované hodnoty registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované položky dat registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované složky:
(Žádné zákerné položky nebyly zjišteny)

Infikované soubory:
E:\Documents and Settings\Torrentino1\Plocha\attacker.exe (Trojan.Flooder) -> No action taken.
...jinak nejde mbam aktualizovat..ukazuje to chybu aktualizace...a te attacker.exe sem stahoval tak pred hodinou a pul...takže jinak čisty...na rychlo scan....

[jaro3]

Takže ho dej smazat v MbAM.

Pak zkus spustit Combofix v nouz. režimu, deaktivuj ESS.
Vlož sem z něj log , podívám se zítra.

[alenka_v_říši_divů]

už se maže....jinak ten CF sem dnes zkoušel hodněkrát..v nouzaku...a stahoval z vicero zdrojů..naposled tak pred hodinkou...a dycky se to sekne s hláškou : PV nelze nacist..neznámý ...neni ani davkovacim souborem..atd...ani ted nejde...to zas ukazuje nejakou nekompatibilitu...

[jaro3]

Ujisti se , že jsi připojen k netu.
Stáhni si program OTMoveIt3 (by OldTimer) a ulož si ho na disk C a spusť ho.
Klikni na CleanUp!
Stáhne se list na čištění malware.Pokud budou problémy s firewalem, antivirem , vše povol.Klikni na Yes na začátek čistícího procesu.Když se Tě dotáže na restart k ukončení procesu ,klikni na Yes.
*****************************************************************************************************************************************
Stáhni si OTViewIt (by OldTimer)
- ukonči všechna aktivní okna a spusť ho.
- klikni na tlačítko Run Scan a počkej až proběhne kontrola
- po jejím ukončení se ti zobrazí log tak ho sem vlož.

[alenka_v_říši_divů]

no..tedy..tak ten OTMovelt3 si nechtěl nic natahnout z netu..hlásilo to např.:File/Folder avenger.zip not found.
File/Folder avenger.exe not found.
File/Folder Avenger not found.
File/Folder avenger.txt not found.
File/Folder bfu.zip not found.
File/Folder BFU not found.
File/Folder combofix.exe not found.
File/Folder Combo-Fix.sys not found.
File/Folder ComboFix not found.
File/Folder erdnt\subs not found.
File/Folder QooBox not found.
File/Folder ComboFix*.txt not found.
Service not present: catchme.
File/Folder catchme.exe not found.
File/Folder fdsv.exe not found.
File/Folder grep.exe not found.
File/Folder moveex.exe not found.
File/Folder nircmd.exe not found.
File/Folder sed.exe not found.
File/Folder swreg.exe not found.
File/Folder Swsc.exe not found.
File/Folder Swxcacls.exe not found.
File/Folder VFind.exe not found.
File/Folder WS2Fix.exe not found.
File/Folder zip.exe not found.
File/Folder tmp.reg not found.
File/Folder dss.exe not found.
File/Folder Deckard not found.
File/Folder deljob.exe not found.
File/Folder deljob not found.
File/Folder logit.txt not found.
File/Folder FindAWF.exe not found.
File/Folder AWF.txt not found.
File/Folder fixwareout.exe not found.
File/Folder fixwareout not found.
File/Folder fsbl.exe not found.
File/Folder fsbl*.log not found.
File/Folder gmer.exe not found.
File/Folder gmer.dll not found.
File/Folder gmer.ini not found.
File/Folder gmer.log not found.
File/Folder gmer_uninstall.cmd not found.
File/Folder gmer.sys not found.
Service not present: gmer.
File/Folder haxfix.exe not found.
File/Folder haxfix.txt not found.
File/Folder killbox.exe not found.
File/Folder !Killbox not found.
File/Folder NoLop.exe not found.
File/Folder NoLop.txt not found.
File/Folder NoLopOLD.txt not found.
File/Folder delete.bat not found.
File/Folder OTListIt2.exe not found.
File/Folder OTListIt.txt not found.Service not present: catchme.
Service not present: gmer.
Service not present: catchme.
Service not present: gmer.
Service not present: catchme.
Service not present: gmer.....FW sem měl vyplej..dokonce i killnutej v procesech...avast deaktivovanej.."dnes vyprsela licence" ... na netu sem byl připojenej na 100% .... takže nevim jestli mám dávat ten log nebo ne..když neproběhlo čištění..ale asi jo... :) OTViewIt logfile created on: 2009-04-10 03:08:55 - Run
OTViewIt by OldTimer - Version 1.0.21.0 Folder = E:\Documents and Settings\Torrentino1\Plocha
Windows 2000 Professional Edition Service Pack 4 (Version = 5.0.2195) - Type = NTWorkstation
Internet Explorer (Version = 5.00.3700.1000)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: yyyy-MM-dd

191.55 Mb Total Physical Memory | 109.76 Mb Available Physical Memory | 57.30% Memory free
461.58 Mb Paging File | 335.76 Mb Available in Paging File | 72.74% Paging File free
Paging file location(s): E:\pagefile.sys 288 576;

%SystemDrive% = E: | %SystemRoot% = E:\WINNT | %ProgramFiles% = E:\Program Files
Drive C: | 1.96 Gb Total Space | 0.37 Gb Free Space | 18.69% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 5.99 Gb Total Space | 2.77 Gb Free Space | 46.29% Space Free | Partition Type: FAT32
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: TORRENTINO
Current User Name: Torrentino1
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Whitelist: On
File Age = 30 Days

========== Processes ==========

[2008-08-18 13:25:10 | 00,468,224 | ---- | M] (ESET) -- E:\Program Files\ESET\ESET Smart Security\ekrn.exe
[2003-06-19 10:05:04 | 00,068,368 | ---- | M] (Microsoft Corporation) -- E:\WINNT\system32\regsvc.exe
[2003-06-19 11:05:04 | 00,119,568 | ---- | M] (Microsoft Corporation) -- E:\WINNT\system32\MSTask.exe
[2003-06-19 10:05:04 | 00,196,706 | ---- | M] (Microsoft Corporation) -- E:\WINNT\System32\WBEM\WinMgmt.exe
[2008-08-18 13:23:50 | 01,447,168 | ---- | M] (ESET) -- E:\Program Files\ESET\ESET Smart Security\egui.exe
[2009-04-06 17:34:54 | 00,148,888 | ---- | M] (Sun Microsystems, Inc.) -- E:\Program Files\Java\jre6\bin\jusched.exe
[2000-03-20 00:00:00 | 00,020,752 | ---- | M] (Microsoft Corporation) -- E:\WINNT\system32\internat.exe
[2003-06-19 10:05:04 | 00,087,824 | ---- | M] (Microsoft Corporation) -- E:\WINNT\system32\taskmgr.exe
[2009-02-26 10:49:18 | 00,099,328 | ---- | M] (Opera Software) -- E:\Program Files\Opera\opera.exe
[2009-04-10 03:08:10 | 00,422,912 | ---- | M] (OldTimer Tools) -- E:\Documents and Settings\Torrentino1\Plocha\OTViewIt.exe

========== (O23) Win32 Services ==========

[2005-09-23 07:28:56 | 00,066,240 | ---- | M] (Microsoft Corporation) -- E:\WINNT\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
[2003-06-19 10:05:04 | 00,147,728 | ---- | M] (VERITAS Software Corp.) -- E:\WINNT\System32\dmadmin.exe -- (dmadmin [On_Demand | Stopped])
[2008-08-18 13:30:58 | 00,019,200 | ---- | M] (ESET) -- E:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv [On_Demand | Stopped])
[2008-08-18 13:25:10 | 00,468,224 | ---- | M] (ESET) -- E:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn [Auto | Running])
[2003-06-19 10:05:04 | 00,096,016 | ---- | M] (Microsoft Corporation) -- E:\WINNT\system32\faxsvc.exe -- (Fax [On_Demand | Stopped])
[2008-09-17 07:18:06 | 00,502,352 | ---- | M] (NETGATE Technologies s.r.o.) -- E:\Program Files\NETGATE\FortKnox Personal Firewall 2008\FortKnox.exe -- (fortknox [Auto | Stopped])
[2008-11-20 21:18:52 | 00,136,120 | ---- | M] (Google) -- E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [On_Demand | Stopped])
[2008-06-10 00:06:30 | 00,036,864 | ---- | M] (How2 Studios) -- E:\Program Files\ISP Monitor\ISPMonitorSrv.exe -- (ISPMonitorSrv [Auto | Stopped])
[2009-04-06 17:34:42 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- E:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Stopped])
[2003-06-19 10:05:04 | 00,068,368 | ---- | M] (Microsoft Corporation) -- E:\WINNT\system32\regsvc.exe -- (RemoteRegistry [Auto | Running])
[2003-06-19 11:05:04 | 00,119,568 | ---- | M] (Microsoft Corporation) -- E:\WINNT\system32\MSTask.exe -- (Schedule [Auto | Running])
[2003-06-19 10:05:04 | 00,022,800 | ---- | M] (Microsoft Corporation) -- E:\WINNT\System32\UtilMan.exe -- (UtilMan [On_Demand | Stopped])
[2003-06-19 10:05:04 | 00,196,706 | ---- | M] (Microsoft Corporation) -- E:\WINNT\System32\WBEM\WinMgmt.exe -- (WinMgmt [Auto | Running])

========== Driver Services ==========

[2000-02-25 15:44:26 | 00,023,413 | ---- | M] (C-Media Inc) -- E:\WINNT\system32\drivers\cm8330.sys -- (cm8330 [On_Demand | Running])
[2003-06-19 10:05:04 | 00,007,728 | ---- | M] (Microsoft Corporation) -- E:\WINNT\System32\drivers\diskperf.sys -- (Diskperf [Boot | Running])
[2003-06-19 10:05:04 | 00,369,104 | ---- | M] (VERITAS Software Corp.) -- E:\WINNT\System32\drivers\dmboot.sys -- (dmboot [Disabled | Stopped])
[2003-06-19 10:05:04 | 00,137,936 | ---- | M] (VERITAS Software Corp.) -- E:\WINNT\System32\drivers\dmio.sys -- (dmio [Boot | Running])
[2003-06-19 10:05:04 | 00,007,312 | ---- | M] (VERITAS Software Corp.) -- E:\WINNT\System32\drivers\dmload.sys -- (dmload [Boot | Running])
[2008-08-18 13:18:26 | 00,039,944 | ---- | M] (ESET) -- E:\WINNT\system32\DRIVERS\eamon.sys -- (eamon [Auto | Running])
[2008-08-18 13:19:26 | 00,053,256 | ---- | M] (ESET) -- E:\WINNT\system32\DRIVERS\easdrv.sys -- (easdrv [System | Running])
[2003-06-19 10:05:04 | 00,027,440 | ---- | M] (Microsoft Corporation) -- E:\WINNT\System32\drivers\efs.sys -- (EFS [Disabled | Running])
[2008-08-18 13:27:36 | 00,071,688 | ---- | M] (ESET) -- E:\WINNT\system32\DRIVERS\epfw.sys -- (epfw [Auto | Running])
[2008-08-18 13:27:38 | 00,033,288 | ---- | M] (ESET) -- E:\WINNT\system32\DRIVERS\EPFWNDHK.sys -- (epfwndhk [System | Running])
[2008-08-18 13:27:42 | 00,054,280 | ---- | M] (ESET) -- E:\WINNT\system32\DRIVERS\epfwtdi.sys -- (epfwtdi [System | Running])
[2008-03-05 17:51:54 | 00,023,248 | ---- | M] (NETGATE Technologies s.r.o.) -- E:\WINNT\system32\DRIVERS\fortknoxfw_ndisim.sys -- (Fkndisf [On_Demand | Running])
[2008-08-27 08:55:08 | 00,057,680 | ---- | M] (NETGATE Technologies s.r.o.) -- E:\WINNT\system32\drivers\fortknoxfw.sys -- (fortknox_drv [System | Running])
[2009-04-06 15:32:54 | 00,038,496 | ---- | M] (Malwarebytes Corporation) -- E:\WINNT\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy [On_Demand | Stopped])
[2000-03-20 00:00:00 | 00,009,680 | ---- | M] (Microsoft Corporation) -- E:\WINNT\system32\drivers\netdtect.sys -- (NetDetect [On_Demand | Stopped])
[2000-03-08 19:28:32 | 00,009,136 | ---- | M] (Microsoft Corporation) -- E:\WINNT\system32\DRIVERS\NtApm.sys -- (NtApm [On_Demand | Stopped])
[2003-06-19 10:05:04 | 00,024,784 | ---- | M] (Microsoft Corporation) -- E:\WINNT\system32\DRIVERS\openhci.sys -- (openhci [On_Demand | Running])
[2003-06-19 10:05:04 | 00,060,208 | ---- | M] (Microsoft Corporation) -- E:\WINNT\system32\DRIVERS\parallel.sys -- (Parallel [On_Demand | Running])
[2003-06-19 10:05:04 | 00,017,680 | ---- | M] (Parallel Technologies, Inc.) -- E:\WINNT\system32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])
[2008-11-20 21:19:06 | 00,043,872 | ---- | M] (Sonic Solutions) -- E:\WINNT\System32\Drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running])
[2000-03-20 00:00:00 | 00,021,712 | ---- | M] (Microsoft Corporation) -- E:\WINNT\system32\drivers\RCA.sys -- (RCA [On_Demand | Stopped])
[2000-03-20 00:00:00 | 00,006,032 | ---- | M] (Microsoft Corporation) -- E:\WINNT\System32\Drivers\RootMdm.sys -- (ROOTMODEM [On_Demand | Stopped])
[1999-09-25 03:17:18 | 00,018,704 | ---- | M] (Realtek Semiconductor Corporation ) -- E:\WINNT\system32\DRIVERS\RTL8139.SYS -- (rtl8139 [On_Demand | Running])
[2000-03-20 00:00:00 | 00,017,136 | ---- | M] (Microsoft Corporation) -- E:\WINNT\system32\DRIVERS\sermouse.sys -- (sermouse [On_Demand | Running])
[1999-09-28 04:02:18 | 00,049,904 | ---- | M] (Silicon Integrated Systems Corporation) -- E:\WINNT\system32\DRIVERS\SiSV.sys -- (SiSV [On_Demand | Running])

========== (R ) Internet Explorer ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main]
"Default_Page_URL"=http://go.microsoft.com/fwlink/?LinkId=69157
"Default_Search_URL"=http://go.microsoft.com/fwlink/?LinkId=54896
"Local Page"=%SystemRoot%\system32\blank.htm
"Search Page"=http://go.microsoft.com/fwlink/?LinkId=54896
"Start Page"=http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Search]
"CustomizeSearch"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
"SearchAssistant"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main]
"Local Page"=E:\WINNT\system32\blank.htm
"Search Page"=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
"Start Page"=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURL]
"provider"=

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" (HKLM) -- E:\WINNT\system32\shdocvw.dll (Microsoft Corporation)

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"ProxyEnable" = 0

========== (O1) Hosts File ==========

HOSTS File = (737 bytes) - E:\WINNT\System32\drivers\etc\Hosts
First 25 entries...
127.0.0.1 localhost

========== (O2) BHO's ==========

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\]
{DBC80044-A445-435b-BC74-9C25C1C588A9} (HKLM) -- E:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
{E7E6F031-17CE-4C07-BC86-EABFE594F69C} (HKLM) -- E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)

========== (O3) Toolbars ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]
"{8E718888-423F-11D2-876E-00A0C9082467}" (HKLM) -- E:\WINNT\system32\msdxm.ocx (Microsoft Corporation)

========== (O4) Run Keys ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="E:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice (ESET)
"FortKnoxPersonalFirewall"="E:\Program Files\NETGATE\FortKnox Personal Firewall 2008\FortKnoxGUI.exe" (NETGATE Technologies s.r.o.)
"SunJavaUpdateSched"="E:\Program Files\Java\jre6\bin\jusched.exe" (Sun Microsystems, Inc.)
"Synchronization Manager"=mobsync.exe /logon (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"FreeRAM XP"="E:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe" -win (YourWare Solutions (TM))
"internat.exe"=internat.exe (Microsoft Corporation)

========== (O6 & O7) Current Version Policies ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"DisableRegistryTools"=0

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
"disableregistrytools"=0

========== (O9) IE Extensions ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\]
{c95fe080-8f5d-11d2-a20b-00aa003c157a}: Button: @shdoclc.dll,-866 -- %SystemRoot%\web\related.htm [2000-03-20 00:00:00 | 00,000,642 | ---- | M] ()
{c95fe080-8f5d-11d2-a20b-00aa003c157a}: Menu: @shdoclc.dll,-864 -- %SystemRoot%\web\related.htm [2000-03-20 00:00:00 | 00,000,642 | ---- | M] ()

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\]
CmdMapping\\{c95fe080-8f5d-11d2-a20b-00aa003c157a} [HKLM] -> [@shdoclc.dll,-866] -> File not found

========== (O12) Internet Explorer Plugins ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\]
PluginsPage: "" = http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s
PluginsPageFriendlyName: "" = Microsoft ActiveX Gallery

========== (O13) Default Prefixes ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix]
""=http://

========== (O16) DPF ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\]
{8AD9C840-044E-11D1-B3E9-00805F499D93}: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab -- Java Plug-in 1.6.0_13
{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab -- Java Plug-in 1.6.0_13
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab -- Java Plug-in 1.6.0_13

========== (O17) DNS Name Servers ==========

{89C5D05D-9FCC-4B12-B368-76942B702CA8} (Servers: | Description: Realtek RTL8139(A) PCI Fast Ethernet Adapter)

========== (O20) Winlogon Notify Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\]
wzcnotif: "DllName" = wzcdlg.dll -- E:\WINNT\system32\wzcdlg.dll (Microsoft Corporation)

========== (O21) SSODL Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
"Network.ConnectionTray"={7007ACCF-3202-11D1-AAD2-00805FC1270E} (HKLM) -- E:\WINNT\system32\NETSHELL.dll (Microsoft Corporation)

========== Safeboot Options ==========

"AlternateShell"=cmd.exe

========== CDRom AutoRun Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom]
"AutoRun" = 1

========== Autorun Files on Drives ==========

AUTOEXEC.BAT []
[2006-09-09 16:09:55 | 00,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT -- [ NTFS ]

========== Files/Folders - Created Within 30 Days ==========

[1 E:\WINNT\System32\*.tmp files]
[2009-04-10 03:08:04 | 00,422,912 | ---- | C] (OldTimer Tools) -- E:\Documents and Settings\Torrentino1\Plocha\OTViewIt.exe
[2009-04-09 21:06:12 | 00,237,328 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\CF557.exe
[2009-04-09 20:01:02 | 00,000,577 | ---- | C] () -- E:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2009-04-09 20:01:01 | 00,015,504 | ---- | C] (Malwarebytes Corporation) -- E:\WINNT\System32\drivers\mbam.sys
[2009-04-09 20:00:53 | 00,038,496 | ---- | C] (Malwarebytes Corporation) -- E:\WINNT\System32\drivers\mbamswissarmy.sys
[2009-04-09 20:00:14 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\Malwarebytes' Anti-Malware
[2009-04-09 19:53:46 | 02,967,800 | ---- | C] (Malwarebytes Corporation ) -- E:\Documents and Settings\Torrentino1\Plocha\mbagm-setup.exe
[2009-04-09 19:28:46 | 00,007,279 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\klaxon.wav
[2009-04-09 19:28:46 | 00,000,528 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\attacker.cfg
[2009-04-09 19:28:12 | 00,024,252 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\attacker.zip
[2009-04-09 19:17:49 | 00,178,204 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\cport.zip
[2009-04-09 18:51:46 | 00,016,384 | ---- | C] () -- E:\WINNT\System32\Perflib_Perfdata_2fc.dat
[2009-04-09 18:49:12 | 00,237,328 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\CF6576.exe
[2009-04-09 01:48:56 | 00,237,328 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\CF3331.exe
[2009-04-09 01:46:30 | 00,237,328 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\CF2847.exe
[2009-04-09 01:40:55 | 00,237,328 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\CF1665.exe
[2009-04-09 00:51:11 | 00,401,720 | ---- | C] (Trend Micro Inc.) -- E:\Documents and Settings\Torrentino1\Plocha\HijackThis.exe
[2009-04-08 23:28:09 | 03,153,920 | ---- | C] () -- E:\WINNT\sectest.db
[2009-04-08 23:26:58 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\Dial-a-fix-v0.60.0.24
[2009-04-08 18:32:46 | 00,000,000 | ---D | C] -- E:\195
[2009-04-08 18:22:42 | 00,000,000 | ---D | C] -- E:\150
[2009-04-08 18:15:19 | 00,000,000 | ---D | C] -- E:\114
[2009-04-08 18:04:30 | 00,000,000 | ---D | C] -- E:\7
[2009-04-08 17:36:24 | 00,000,000 | ---D | C] -- E:\201
[2009-04-08 17:36:12 | 00,000,000 | ---D | C] -- E:\196
[2009-04-08 17:20:16 | 00,000,000 | ---D | C] -- E:\175
[2009-04-08 17:16:30 | 00,000,000 | ---D | C] -- E:\93
[2009-04-08 17:03:21 | 00,000,000 | ---D | C] -- E:\52
[2009-04-08 16:24:15 | 00,001,448 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\DOSBox 0.72.lnk
[2009-04-08 16:24:03 | 00,000,000 | ---D | C] -- E:\Program Files\DOSBox-0.72
[2009-04-08 16:20:44 | 01,258,638 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\DOSBox-0.72-install.exe
[2009-04-08 16:13:01 | 00,000,000 | ---D | C] -- E:\SF2
[2009-04-08 16:09:42 | 03,911,037 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\sf2.exe
[2009-04-07 08:55:04 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\5296_PG218_R147_UAAV10a-5013
[2009-04-07 08:04:17 | 00,008,936 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\PDT_wcj.gif
[2009-04-07 04:14:50 | 00,051,232 | ---- | C] (gkweb) -- E:\Documents and Settings\Torrentino1\Plocha\wwdc.exe
[2009-04-07 02:06:26 | 00,000,000 | ---D | C] -- E:\NTCrack
[2009-04-07 02:04:58 | 00,023,302 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\NTCrack.zip
[2009-04-06 17:44:11 | 00,016,384 | ---- | C] () -- E:\WINNT\System32\Perflib_Perfdata_49c.dat
[2009-04-06 17:30:49 | 00,000,000 | ---D | C] -- E:\Program Files\Java
[2009-04-06 17:28:36 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\Sun
[2009-04-06 15:31:33 | 01,053,080 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\Vyladte si Win XP.pdf
[2009-04-06 15:29:05 | 00,699,896 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\Vyladte si Win XP.zip
[2009-04-06 13:42:09 | 00,040,200 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\mbam-setup.exe
[2009-04-05 05:59:17 | 02,766,480 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\install_3_8_17.exe
[2009-04-04 19:49:22 | 00,000,580 | ---- | C] () -- E:\Documents and Settings\All Users\Plocha\FortKnox Personal Firewall 2008.lnk
[2009-04-04 19:48:46 | 00,057,680 | ---- | C] (NETGATE Technologies s.r.o.) -- E:\WINNT\System32\drivers\fortknoxfw.sys
[2009-04-04 19:48:46 | 00,023,248 | ---- | C] (NETGATE Technologies s.r.o.) -- E:\WINNT\System32\drivers\fortknoxfw_ndisim.sys
[2009-04-04 19:48:41 | 00,000,000 | ---D | C] -- E:\Program Files\NETGATE
[2009-04-04 19:48:41 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\NETGATE
[2009-04-04 19:48:04 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\FortKnox_Personal_Firewall_2008_3.0.305
[2009-04-04 19:46:18 | 08,735,252 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\FortKnox_Personal_Firewall_2008_3.0.305.rar
[2009-04-04 19:42:51 | 02,198,695 | ---- | C] () -- E:\WINNT\DS_FW.CAB
[2009-04-04 19:42:51 | 00,073,216 | ---- | C] (Microsoft Corporation) -- E:\WINNT\temp.000
[2009-04-04 19:42:50 | 00,000,342 | ---- | C] () -- E:\WINNT\ST6UNST.001
[2009-04-04 19:40:48 | 02,295,296 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\dsfw124.exe
[2009-04-04 16:06:21 | 00,027,522 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\ICQ6.png
[2009-04-04 16:03:44 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\ICQ6ani
[2009-04-04 16:03:15 | 00,140,811 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\ICQ6ani.zip
[2009-04-04 01:24:05 | 00,393,602 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\OSUD - Na mobilech již má dávno být_ VAROVÁNÍ MZ - TELEFONOVÁNÍ ZPŮSOBUJE RAKOVINU!.mht
[2009-04-03 23:44:44 | 00,000,000 | ---D | C] -- E:\Program Files\tuxanci
[2009-04-03 23:41:40 | 05,327,047 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\tuxanci-0.20.0.exe
[2009-04-02 20:08:48 | 00,000,204 | ---- | C] () -- E:\ddosping.cfg
[2009-04-02 20:07:45 | 00,000,400 | ---- | C] () -- E:\attacker.cfg
[2009-04-02 14:49:08 | 00,041,461 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\outlook9.jpg
[2009-04-02 14:48:28 | 00,041,139 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\outlook8.jpg
[2009-04-02 14:14:06 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Identities
[2009-04-02 11:28:11 | 00,939,956 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\7z465.exe
[2009-04-02 11:17:36 | 02,857,535 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\elinks-current-0.13.tar.bz2
[2009-04-02 11:14:05 | 00,049,463 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\shexview.zip
[2009-04-02 10:57:57 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\.links
[2009-04-02 10:55:33 | 00,895,304 | ---- | C] (Red Hat) -- E:\Documents and Settings\Torrentino1\Plocha\cygwin1.dll
[2009-04-02 10:55:28 | 00,159,744 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\cygssl.dll
[2009-04-02 10:55:21 | 00,635,904 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\cygcrypto.dll
[2009-04-02 10:54:18 | 00,124,022 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\links2.zip
[2009-04-02 10:46:53 | 00,866,816 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\links-0.98.exe
[2009-04-02 09:07:32 | 00,074,200 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\shellexview_02.jpg
[2009-04-02 08:30:19 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\shexview
[2009-04-02 08:13:12 | 02,290,647 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\9901.pdf
[2009-04-02 04:46:49 | 00,717,312 | ---- | C] (SoftPerfect Research) -- E:\Documents and Settings\Torrentino1\Plocha\netfscan.exe
[2009-04-02 04:39:05 | 00,717,312 | ---- | C] (SoftPerfect Research) -- E:\Documents and Settings\Torrentino1\Plocha\netscan.exe
[2009-04-02 04:19:58 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\CPORTS
[2009-04-02 04:16:16 | 00,071,161 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\cports_czech.exe
[2009-04-02 04:14:10 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\locale
[2009-04-02 04:10:28 | 00,064,287 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\portcard.exe
[2009-04-02 04:09:35 | 00,004,315 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\cport.exe
[2009-04-01 15:13:06 | 01,126,912 | ---- | C] (The Author of QIP) -- E:\Documents and Settings\Torrentino1\Dokumenty\qipcmu.exe
[2009-04-01 09:28:54 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\xsvr
[2009-04-01 08:13:06 | 00,045,895 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\xsvr.rar
[2009-03-31 18:58:44 | 00,001,202 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\ebay.com.lnk
[2009-03-31 18:58:25 | 00,075,264 | ---- | C] () -- E:\WINNT\cadkasdeinst01e.exe
[2009-03-31 18:58:25 | 00,000,000 | ---D | C] -- E:\Program Files\PDF Shrink 1
[2009-03-31 18:56:48 | 02,262,112 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Dokumenty\pdfshrink!.exe
[2009-03-31 18:29:42 | 01,178,841 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\d2100_2ííííí-3_0.9.pdf
[2009-03-31 17:45:28 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Dokumenty\LopFind
[2009-03-31 16:43:32 | 00,000,000 | ---D | C] -- E:\Program Files\YourWare Solutions
[2009-03-31 16:42:36 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\framxpro
[2009-03-31 16:40:12 | 00,620,127 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\framxpro.zip
[2009-03-31 06:30:23 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\Plocha2
[2009-03-31 03:48:09 | 00,000,000 | ---D | C] -- E:\Program Files\Acme CADPacker
[2009-03-31 03:38:55 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\PE Explorer
[2009-03-31 03:38:31 | 00,000,000 | ---D | C] -- E:\Program Files\PE Explorer
[2009-03-31 03:18:05 | 00,008,224 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
[2009-03-31 03:15:29 | 00,002,412 | ---- | C] () -- E:\Documents and Settings\All Users\Plocha\DataSoft's PExplorer.lnk
[2009-03-31 03:15:13 | 00,000,000 | ---D | C] -- E:\Program Files\Default Company Name
[2009-03-31 03:05:02 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\elcom
[2009-03-31 02:55:47 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\PE.Explorer_setup
[2009-03-31 02:55:37 | 00,000,000 | ---D | C] -- E:\Program Files\ElcomSoft
[2009-03-31 01:50:46 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\WindowsInstaller-hfhfv2-x86
[2009-03-31 01:47:13 | 00,000,000 | ---D | C] -- E:\Program Files\NETCPPcryptV29
[2009-03-31 01:42:35 | 00,000,007 | ---- | C] () -- E:\WINNT\INI2=No
[2009-03-31 01:42:35 | 00,000,007 | ---- | C] () -- E:\WINNT\INI1=No
[2009-03-30 21:31:30 | 00,000,000 | ---D | C] -- E:\WINNT\temp
[2009-03-30 20:17:54 | 00,000,000 | ---D | C] -- E:\Program Files\ImTOO
[2009-03-30 20:16:06 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\ImTOO_MPEG_Encoder_Ultimate_5.1.17_build_1205
[2009-03-30 18:30:35 | 00,000,487 | ---- | C] () -- E:\Documents and Settings\All Users\Plocha\CamStudio.lnk
[2009-03-30 18:30:01 | 00,000,000 | ---D | C] -- E:\Program Files\CamStudio
[2009-03-30 18:22:47 | 00,000,000 | ---D | C] -- E:\Program Files\Codec Pack - All In 1
[2009-03-30 18:14:30 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\mpc_6490+_2kXP_cze
[2009-03-30 16:35:25 | 00,000,000 | ---D | C] -- E:\Program Files\DesktopCentral_Server
[2009-03-30 16:29:02 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\Mikogo
[2009-03-30 16:27:51 | 00,000,000 | ---D | C] -- E:\Program Files\RealVNC
[2009-03-30 16:20:40 | 00,000,000 | ---D | C] -- E:\Program Files\Domain Tools
[2009-03-30 03:51:54 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\Wi-Fi_prakticky_pruvodce
[2009-03-30 02:49:45 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\SumatraPDF
[2009-03-30 02:42:16 | 00,000,000 | ---D | C] -- E:\Program Files\SumatraPDF
[2009-03-30 02:15:49 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\backups
[2009-03-29 23:27:56 | 00,000,000 | ---D | C] -- E:\Program Files\Unknown Device Identifier
[2009-03-29 23:16:20 | 00,009,216 | ---- | C] (WhitSoft Development) -- E:\Documents and Settings\Torrentino1\Plocha\Trayconizer.exe
[2009-03-29 22:43:28 | 00,000,000 | ---D | C] -- E:\Program Files\LANView
[2009-03-29 22:41:22 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Dokumenty\DameWare Development
[2009-03-29 22:41:22 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\DameWare Development
[2009-03-29 22:33:23 | 00,000,000 | ---D | C] -- E:\Program Files\DameWare Development
[2009-03-29 22:07:38 | 00,140,800 | ---- | C] (Christian Werner Software & Consulting) -- E:\WINNT\System32\sqliteodbc.dll
[2009-03-29 22:06:28 | 00,096,256 | ---- | C] () -- E:\WINNT\System32\hrPing.exe
[2009-03-29 22:06:27 | 00,203,976 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\RICHTX32.OCX
[2009-03-29 22:06:26 | 00,098,304 | ---- | C] (vbAccelerator) -- E:\WINNT\System32\vbalDTab6.ocx
[2009-03-29 22:06:24 | 00,069,632 | ---- | C] (Stanislav Okhvat) -- E:\WINNT\System32\sfFrameControl.ocx
[2009-03-29 22:06:21 | 00,491,520 | ---- | C] (vbAccelerator) -- E:\WINNT\System32\vbalSGrid6.ocx
[2009-03-29 22:06:19 | 00,294,912 | ---- | C] () -- E:\WINNT\System32\mbr_sqlite.dll
[2009-03-29 22:06:19 | 00,020,992 | ---- | C] (vbAccelerator) -- E:\WINNT\System32\vbalIPrg.dll
[2009-03-29 22:06:18 | 00,094,208 | ---- | C] (vbAccelerator) -- E:\WINNT\System32\vbalIml6.ocx
[2009-03-29 22:06:18 | 00,053,248 | ---- | C] (vbAccelerator) -- E:\WINNT\System32\SSubTmr6.dll
[2009-03-29 22:06:17 | 00,126,976 | ---- | C] (Gonchuki Systems) -- E:\WINNT\System32\chameleonButton.ocx
[2009-03-29 22:06:17 | 00,094,208 | ---- | C] (vbAccelerator) -- E:\WINNT\System32\CMDLGD6.dll
[2009-03-29 22:06:13 | 00,684,032 | ---- | C] (10Tec) -- E:\WINNT\System32\iGrid251_75B4A91C.ocx
[2009-03-29 22:06:08 | 00,209,192 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\TABCTL32.OCX
[2009-03-29 22:06:05 | 00,335,872 | ---- | C] (TDL) -- E:\WINNT\System32\HookMenu.ocx
[2009-03-29 22:06:04 | 00,415,176 | ---- | C] (Microsoft Corporation ) -- E:\WINNT\System32\COMCT332.OCX
[2009-03-29 22:06:04 | 00,029,696 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\VB6DE.dll
[2009-03-29 22:06:03 | 00,000,000 | ---D | C] -- E:\Program Files\AdvancedRemoteInfo
[2009-03-29 21:48:19 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\ISP Monitor
[2009-03-29 21:45:26 | 00,737,280 | ---- | C] (Indigo Rose Corporation) -- E:\WINNT\iun6002.exe
[2009-03-29 21:44:23 | 00,000,728 | ---- | C] () -- E:\scanner.ini
[2009-03-29 21:44:01 | 00,000,000 | ---D | C] -- E:\Program Files\ISP Monitor
[2009-03-29 21:22:23 | 04,830,310 | ---- | C] () -- E:\WINNT\ostronet.CAB
[2009-03-29 21:22:23 | 00,000,303 | ---- | C] () -- E:\WINNT\ST6UNST.000
[2009-03-29 21:19:01 | 00,000,000 | ---D | C] -- E:\Program Files\OstroSoft Internet Tools
[2009-03-29 21:18:44 | 00,249,856 | ---- | C] (Microsoft Corporation) -- E:\WINNT\Setup1.exe
[2009-03-29 21:18:10 | 00,073,216 | ---- | C] (Microsoft Corporation) -- E:\WINNT\ST6UNST.EXE
[2009-03-29 20:58:02 | 00,000,011 | ---- | C] () -- E:\WINNT\winintvl.sys
[2009-03-29 20:57:28 | 00,112,752 | ---- | C] (devSoft Inc. - http://www.dev-soft.com) -- E:\WINNT\System32\smtp40.ocx
[2009-03-29 20:57:28 | 00,112,752 | ---- | C] (devSoft Inc. - http://www.dev-soft.com) -- E:\WINNT\System32\mime40.ocx
[2009-03-29 20:57:28 | 00,096,368 | ---- | C] (devSoft Inc. - http://www.dev-soft.com) -- E:\WINNT\System32\netcod40.ocx
[2009-03-29 20:57:27 | 00,116,848 | ---- | C] (devSoft Inc. - http://www.dev-soft.com) -- E:\WINNT\System32\http40.ocx
[2009-03-29 20:57:27 | 00,112,752 | ---- | C] (devSoft Inc. - http://www.dev-soft.com) -- E:\WINNT\System32\ftp40.ocx
[2009-03-29 20:57:27 | 00,088,176 | ---- | C] (devSoft Inc. - http://www.dev-soft.com) -- E:\WINNT\System32\ipinfo40.ocx
[2009-03-29 20:56:43 | 00,000,000 | ---D | C] -- E:\Program Files\Viable Software Alternatives
[2009-03-29 20:52:58 | 00,299,520 | ---- | C] (InstallShield Corporation, Inc.) -- E:\WINNT\uninst.exe
[2009-03-29 19:19:41 | 00,008,664 | -H-- | C] () -- E:\WINNT\System32\mlfcache.dat
[2009-03-29 19:15:17 | 00,000,532 | ---- | C] () -- E:\Documents and Settings\All Users\Plocha\Picasa 3.lnk
[2009-03-29 19:14:07 | 00,000,000 | ---D | C] -- E:\WINNT\System32\IOSUBSYS
[2009-03-29 14:20:17 | 00,000,000 | R-SD | C] -- E:\WINNT\assembly
[2009-03-29 14:12:21 | 00,000,000 | ---D | C] -- E:\WINNT\PCHEALTH
[2009-03-29 14:12:21 | 00,000,000 | ---D | C] -- E:\WINNT\Microsoft.NET
[2009-03-29 13:38:52 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Apple Computer
[2009-03-29 13:38:52 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\Apple Computer
[2009-03-29 13:38:24 | 00,001,397 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\Safari.lnk
[2009-03-29 13:38:24 | 00,001,391 | ---- | C] () -- E:\Documents and Settings\All Users\Plocha\Safari.lnk
[2009-03-29 13:35:21 | 00,000,000 | ---D | C] -- E:\Program Files\Safari
[2009-03-29 13:35:06 | 00,000,000 | ---D | C] -- E:\WINNT\winsxs
[2009-03-29 13:33:09 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Apple
[2009-03-29 13:32:37 | 00,000,000 | ---D | C] -- E:\Program Files\Apple Software Update
[2009-03-29 13:32:36 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\Apple
[2009-03-29 13:21:07 | 00,014,560 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\spmsg.dll
[2009-03-29 13:20:33 | 00,000,000 | -H-D | C] -- E:\WINNT\$MSI31Uninstall_KB893803v2$
[2009-03-28 17:23:53 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\upm_4_1_3
[2009-03-27 19:21:07 | 00,131,072 | ---- | C] (Microsoft Corporation) -- E:\Documents and Settings\Torrentino1\Plocha\mscoree.dll
[2009-03-27 17:49:16 | 00,001,455 | ---- | C] () -- E:\Documents and Settings\All Users\Plocha\PhotoStudio Darkroom.lnk
[2009-03-27 17:47:41 | 00,000,000 | ---D | C] -- E:\Program Files\ArcSoft
[2009-03-27 17:47:37 | 00,000,000 | -H-D | C] -- E:\Program Files\InstallShield Installation Information
[2009-03-27 17:46:59 | 00,000,000 | ---D | C] -- E:\Program Files\Common Files\InstallShield
[2009-03-27 17:45:12 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\ASPSD170110
[2009-03-27 10:31:02 | 00,000,000 | -H-D | C] -- E:\WINNT\PIF
[2009-03-27 10:29:12 | 00,000,010 | R--- | C] () -- E:\WINNT\ABC3D.SN
[2009-03-27 10:28:47 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Help
[2009-03-27 10:28:47 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\Help
[2009-03-27 10:27:52 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Dokumenty\My Albums
[2009-03-27 10:27:51 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\ArcSoft
[2009-03-27 10:05:23 | 00,641,470 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\ArcSoft PhotoStudio 5.5.0.61 cz.exe
[2009-03-27 09:47:10 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\PhotoStudio_www.thesaltinez.com
[2009-03-27 09:20:41 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\Portable_Photo_Brush_4.1
[2009-03-27 08:56:07 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\AFS_2.71_Portable
[2009-03-27 08:32:31 | 00,000,000 | ---- | C] () -- E:\WINNT\merge.INI
[2009-03-27 08:29:44 | 00,000,000 | ---D | C] -- E:\Program Files\Merge
[2009-03-27 08:13:49 | 00,000,000 | ---D | C] -- E:\Program Files\AMS Photo Effects
[2009-03-27 08:04:33 | 00,000,000 | ---D | C] -- E:\WINNT\System32\(app)
[2009-03-27 08:04:24 | 00,000,000 | ---D | C] -- E:\Program Files\s_merge
[2009-03-27 08:00:08 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\JSFD
[2009-03-27 06:50:57 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\plocha
[2009-03-26 22:17:13 | 00,000,000 | ---D | C] -- E:\Program Files\PuTTY
[2009-03-26 22:16:51 | 00,000,600 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\PUTTY.RND
[2009-03-26 16:45:54 | 00,000,000 | ---D | C] -- E:\Program Files\Advanced LAN Scanner
[2009-03-25 17:56:00 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\Malwarebytes
[2009-03-25 17:55:22 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2009-03-25 17:17:32 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\XemiComputers
[2009-03-25 17:17:32 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\XemiComputers
[2009-03-25 17:17:31 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\XemiComputers
[2009-03-25 17:16:49 | 00,000,000 | ---D | C] -- E:\Program Files\XemiComputers
[2009-03-25 17:04:43 | 00,014,848 | ---- | C] () -- E:\WINNT\System32\BASSMOD.dll
[2009-03-25 17:03:13 | 00,000,000 | ---D | C] -- E:\Program Files\Anti Trojan Elite
[2009-03-25 17:00:10 | 01,209,344 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\D3D8.DLL
[2009-03-25 16:59:58 | 01,209,344 | ---- | C] (Microsoft Corporation) -- E:\WINNT\D3D8.DLL
[2009-03-25 16:55:40 | 00,000,000 | ---D | C] -- E:\Program Files\Formosoft
[2009-03-25 15:33:22 | 00,000,000 | ---D | C] -- E:\Program Files\IrfanView
[2009-03-25 13:21:31 | 00,000,000 | ---D | C] -- E:\Program Files\Quackshot Starring Donald Duck
[2009-03-25 13:06:01 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Dokumenty\DrWatson
[2009-03-25 11:17:57 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\ATE_4.4.7
[2009-03-25 04:33:53 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\skrytenastaveni
[2009-03-25 04:33:45 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\TCL228E
[2009-03-25 04:33:26 | 03,550,592 | ---- | C] (Sysinternals - http://www.sysinternals.com) -- E:\Documents and Settings\Torrentino1\Plocha\procexp.exe

[alenka_v_říši_divů]

[2009-03-25 04:33:17 | 00,477,696 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\default.pif
[2009-03-25 03:55:05 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\Media Player Classic
[2009-03-25 03:54:33 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\mplayerc_20081005
[2009-03-25 03:45:20 | 00,073,872 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\drivers\wdmaud.sys
[2009-03-25 03:45:20 | 00,073,872 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\wdmaud.sys
[2009-03-25 03:45:13 | 00,051,152 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\drivers\DMusic.sys
[2009-03-25 03:45:13 | 00,051,152 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\dmusic.sys
[2009-03-25 03:44:58 | 00,053,552 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\drivers\swmidi.sys
[2009-03-25 03:44:58 | 00,053,552 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\swmidi.sys
[2009-03-25 03:44:51 | 00,148,304 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\drivers\kmixer.sys
[2009-03-25 03:44:51 | 00,148,304 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kmixer.sys
[2009-03-25 03:44:39 | 00,047,568 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\drivers\sysaudio.sys
[2009-03-25 03:44:39 | 00,047,568 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\sysaudio.sys
[2009-03-25 03:44:18 | 00,021,264 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\wdmaud.drv
[2009-03-25 03:43:49 | 00,042,000 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\drivers\stream.sys
[2009-03-25 03:43:49 | 00,042,000 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\stream.sys
[2009-03-25 03:43:46 | 00,148,208 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\drivers\portcls.sys
[2009-03-25 03:43:46 | 00,148,208 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\portcls.sys
[2009-03-25 03:43:43 | 00,113,744 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\drivers\ks.sys
[2009-03-25 03:43:43 | 00,113,744 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\ks.sys
[2009-03-25 03:43:42 | 00,010,000 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\ksvpintf.ax
[2009-03-25 03:43:42 | 00,010,000 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\ksvpintf.ax
[2009-03-25 03:43:42 | 00,004,880 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\ksuser.dll
[2009-03-25 03:43:42 | 00,004,880 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\ksuser.dll
[2009-03-25 03:43:41 | 00,103,696 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\ksproxy.ax
[2009-03-25 03:43:41 | 00,103,696 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\ksproxy.ax
[2009-03-25 03:43:40 | 00,007,952 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\ksinterf.ax
[2009-03-25 03:43:40 | 00,007,952 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\ksinterf.ax
[2009-03-25 03:43:40 | 00,006,928 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\ksdata.ax
[2009-03-25 03:43:40 | 00,006,928 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\ksdata.ax
[2009-03-25 03:43:39 | 00,007,440 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\ksclockf.ax
[2009-03-25 03:43:39 | 00,007,440 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\ksclockf.ax
[2009-03-25 03:35:45 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\ESET
[2009-03-25 03:08:15 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\ESET
[2009-03-25 03:06:59 | 00,000,000 | ---D | C] -- E:\WINNT\Minidump
[2009-03-25 03:03:27 | 00,000,000 | --SD | C] -- E:\WINNT\Temporary Internet Files
[2009-03-25 03:03:27 | 00,000,000 | --SD | C] -- E:\WINNT\History
[2009-03-25 03:03:27 | 00,000,000 | --SD | C] -- E:\WINNT\Cookies
[2009-03-25 03:01:50 | 00,000,000 | ---D | C] -- E:\Program Files\Lavalys
[2009-03-25 03:00:52 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\everest 500
[2009-03-25 02:41:42 | 00,000,000 | ---D | C] -- E:\Program Files\ESET
[2009-03-25 02:41:42 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\ESET
[2009-03-25 02:38:32 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Plocha\Eset_Smart_Security_32bit_by_Mathys.of.Elite.uploaders.group
[2009-03-25 02:00:00 | 00,000,402 | ---- | C] () -- E:\WINNT\tasks\1-Click Maintenance.job
[2009-03-25 01:59:10 | 00,000,729 | ---- | C] () -- E:\Documents and Settings\All Users\Plocha\1-Click Maintenance.lnk
[2009-03-25 01:59:10 | 00,000,617 | ---- | C] () -- E:\Documents and Settings\All Users\Plocha\TuneUp Utilities 2007.lnk
[2009-03-25 01:58:21 | 00,000,000 | ---D | C] -- E:\Program Files\TuneUp Utilities 2007
[2009-03-25 01:58:21 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\TuneUp Software
[2009-03-25 01:57:25 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2009-03-25 01:57:10 | 00,000,000 | ---D | C] -- E:\Program Files\Common Files\Wise Installation Wizard
[2009-03-25 01:56:00 | 00,000,000 | ---D | C] -- E:\Program Files\7-Zip
[2009-03-25 01:12:07 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\Macromedia
[2009-03-25 01:12:06 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\Adobe
[2009-03-25 01:10:47 | 00,000,000 | ---D | C] -- E:\WINNT\System32\Macromed
[2009-03-24 22:52:55 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Opera
[2009-03-24 22:52:55 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\Opera
[2009-03-24 22:52:22 | 00,000,390 | ---- | C] () -- E:\Documents and Settings\All Users\Plocha\Opera.lnk
[2009-03-24 22:52:09 | 00,000,000 | ---D | C] -- E:\Program Files\Opera
[2009-03-24 22:45:24 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\QIP
[2009-03-24 22:43:54 | 00,000,000 | -HSD | C] -- E:\Recycled
[2009-03-24 22:43:39 | 00,000,489 | ---- | C] () -- E:\Documents and Settings\Torrentino1\Plocha\QIP Infium.lnk
[2009-03-24 22:41:05 | 00,000,000 | ---- | C] () -- E:\WINNT\nsreg.dat
[2009-03-24 22:40:49 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Mozilla
[2009-03-24 22:40:49 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\Mozilla
[2009-03-24 22:40:39 | 00,001,385 | ---- | C] () -- E:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
[2009-03-24 22:40:25 | 00,000,000 | ---D | C] -- E:\Program Files\Mozilla Firefox
[2009-03-24 21:56:32 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\TeamViewer
[2009-03-24 21:48:58 | 00,008,192 | ---- | C] () -- E:\WINNT\REGLOCS.OLD
[2009-03-24 21:48:27 | 00,000,000 | ---D | C] -- E:\WINNT\System32\NtmsData
[2009-03-24 21:48:13 | 00,000,000 | -HSD | C] -- E:\WINNT\Installer
[2009-03-24 21:48:12 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\Identities
[2009-03-24 21:48:00 | 00,000,000 | -H-D | C] -- E:\WINNT\System32\GroupPolicy
[2009-03-24 21:48:00 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Torrentino1\Local Settings\Data aplikací\Microsoft
[2009-03-24 21:47:59 | 00,000,000 | --SD | C] -- E:\Documents and Settings\Torrentino1\Data aplikací\Microsoft
[2009-03-24 21:47:59 | 00,000,000 | R--D | C] -- E:\Documents and Settings\Torrentino1\Dokumenty\Obrázky
[2009-03-24 21:47:58 | 00,000,000 | -HSD | C] -- E:\WINNT\CSC
[2009-03-24 21:47:43 | 00,000,000 | ---D | C] -- E:\WINNT\System32\Microsoft
[2009-03-24 21:36:25 | 00,186,128 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\wordpad.exe
[2009-03-24 21:36:14 | 00,068,880 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\wbemperm.exe
[2009-03-24 21:36:10 | 00,007,440 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\wamregps.dll
[2009-03-24 21:36:10 | 00,007,440 | ---- | C] (Eastman Software, Inc., A Kodak Business) -- E:\WINNT\System32\dllcache\wangimg.exe
[2009-03-24 21:36:09 | 00,046,864 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\wamreg.dll
[2009-03-24 21:36:09 | 00,007,440 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\wamps.dll
[2009-03-24 21:36:08 | 00,072,976 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\wam.dll
[2009-03-24 21:36:06 | 00,347,920 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\w3svc.dll
[2009-03-24 21:36:05 | 00,006,928 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\w3svapi.dll
[2009-03-24 21:36:04 | 00,426,768 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\w3scfg.dll
[2009-03-24 21:36:04 | 00,033,552 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\w3ext.dll
[2009-03-24 21:36:03 | 00,007,440 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\w3ctrs.dll
[2009-03-24 21:35:52 | 00,074,000 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\uniime.dll
[2009-03-24 21:35:49 | 00,018,864 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\trident.sys
[2009-03-24 21:35:48 | 00,030,992 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\tools.dll
[2009-03-24 21:35:48 | 00,009,488 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\trace.dll
[2009-03-24 21:35:44 | 00,016,384 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\tcptsat.dll
[2009-03-24 21:35:43 | 00,032,827 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\tcptest.exe
[2009-03-24 21:35:42 | 00,010,800 | ---- | C] (Thomas-Conrad Corporation) -- E:\WINNT\System32\dllcache\tcarc.sys
[2009-03-24 21:35:38 | 00,009,328 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\synth.sys
[2009-03-24 21:35:37 | 00,037,136 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\synth.dll
[2009-03-24 21:35:36 | 00,040,720 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\svcext.dll
[2009-03-24 21:35:34 | 00,017,680 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\status.dll
[2009-03-24 21:35:34 | 00,008,464 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\staxmem.dll
[2009-03-24 21:35:33 | 00,043,792 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\sspifilt.dll
[2009-03-24 21:35:32 | 00,041,744 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\ssinc.dll
[2009-03-24 21:35:31 | 00,012,336 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\spud.sys
[2009-03-24 21:35:28 | 00,120,448 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\softkey.dll
[2009-03-24 21:35:22 | 00,007,952 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\snmptrap.exe
[2009-03-24 21:35:22 | 00,007,952 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\smtp_snprfdll.dll
[2009-03-24 21:35:21 | 00,030,480 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\snmp.exe
[2009-03-24 21:35:21 | 00,005,904 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\snmpmib.dll
[2009-03-24 21:35:20 | 00,042,736 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\sndblst.sys
[2009-03-24 21:35:19 | 00,069,392 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\sndblst.dll
[2009-03-24 21:35:12 | 00,448,272 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\smtp_smtpsvc.dll
[2009-03-24 21:35:04 | 02,533,648 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\smtp_smtpsnap.dll
[2009-03-24 21:35:00 | 00,007,952 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\smtp_smtpmib.dll
[2009-03-24 21:34:57 | 00,013,584 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\smtp_smtpctrs.dll
[2009-03-24 21:34:53 | 00,011,024 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\smtp_smtpapi.dll
[2009-03-24 21:34:48 | 00,183,568 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\smtp_smtpadm.dll
[2009-03-24 21:34:47 | 00,019,728 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\simptcp.dll
[2009-03-24 21:34:45 | 00,016,437 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\shtml.exe
[2009-03-24 21:34:43 | 00,020,536 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\shtml.dll
[2009-03-24 21:34:37 | 00,010,176 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\sgibvid.dll
[2009-03-24 21:34:29 | 00,026,896 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\smtp_seos.dll
[2009-03-24 21:34:25 | 00,234,768 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\smtp_seo.dll
[2009-03-24 21:34:20 | 00,077,584 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\smtp_scripto.dll
[2009-03-24 21:34:15 | 00,011,024 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\smtp_rwnh.dll
[2009-03-24 21:34:14 | 00,035,600 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\rtumext.dll
[2009-03-24 21:34:11 | 00,004,368 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\rpcref.dll
[2009-03-24 21:34:06 | 00,024,336 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\smtp_regtrace.exe
[2009-03-24 21:33:50 | 03,442,432 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\pyime.exe
[2009-03-24 21:33:50 | 00,032,528 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\pwstray.exe
[2009-03-24 21:33:50 | 00,007,952 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\pwsdata.dll
[2009-03-24 21:33:49 | 00,379,152 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\pws.exe
[2009-03-24 21:33:40 | 01,409,792 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\phime.exe
[2009-03-24 21:33:16 | 00,038,672 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\smtp_ntfsdrv.dll
[2009-03-24 21:33:07 | 00,044,304 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\nsepm.dll
[2009-03-24 21:32:56 | 00,026,384 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\myinfo.dll
[2009-03-24 21:32:35 | 00,177,056 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\multibox.dll
[2009-03-24 21:32:34 | 00,151,312 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mtstocom.exe
[2009-03-24 21:32:15 | 00,086,097 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\msir2jp.dll
[2009-03-24 21:31:52 | 00,297,744 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqxp32.dll
[2009-03-24 21:31:51 | 00,110,864 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqutil.dll
[2009-03-24 21:31:51 | 00,023,824 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqupgrd.dll
[2009-03-24 21:31:51 | 00,014,096 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqsvc.exe
[2009-03-24 21:31:50 | 00,402,192 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqsnap.dll
[2009-03-24 21:31:49 | 00,102,672 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqrt.dll
[2009-03-24 21:31:49 | 00,071,440 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqsec.dll
[2009-03-24 21:31:48 | 00,428,304 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqqm.dll
[2009-03-24 21:31:48 | 00,008,464 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqperf.dll
[2009-03-24 21:31:47 | 00,266,000 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqmigrat.dll
[2009-03-24 21:31:47 | 00,098,064 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqmig.exe
[2009-03-24 21:31:46 | 00,185,104 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqmailvb.dll
[2009-03-24 21:31:46 | 00,072,976 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqmailoa.dll
[2009-03-24 21:31:45 | 00,308,496 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqexchng.exe
[2009-03-24 21:31:45 | 00,087,312 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqlogmgr.dll
[2009-03-24 21:31:44 | 00,029,968 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqdbodbc.dll
[2009-03-24 21:31:44 | 00,029,968 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqcertui.dll
[2009-03-24 21:31:43 | 00,075,536 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqac.sys
[2009-03-24 21:31:43 | 00,025,872 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqbkup.exe
[2009-03-24 21:31:43 | 00,014,096 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mq1sync.exe
[2009-03-24 21:31:42 | 00,284,432 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mq1repl.dll
[2009-03-24 21:31:35 | 00,087,312 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\migregdb.exe
[2009-03-24 21:31:29 | 00,070,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\metadata.dll
[2009-03-24 21:31:27 | 00,033,552 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\md5filt.dll
[2009-03-24 21:31:27 | 00,026,896 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mdsync.dll
[2009-03-24 21:31:23 | 00,067,344 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\smtp_mailmsg.dll
[2009-03-24 21:31:21 | 00,021,776 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\lpdsvc.dll
[2009-03-24 21:31:21 | 00,018,192 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\lprmon.dll
[2009-03-24 21:31:20 | 00,059,152 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\logui.ocx
[2009-03-24 21:31:20 | 00,025,360 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\logscrpt.dll
[2009-03-24 21:31:20 | 00,012,048 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\lonsint.dll
[2009-03-24 21:31:17 | 00,029,968 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\lmmib2.dll
[2009-03-24 21:31:16 | 00,074,512 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\korwbrkr.dll
[2009-03-24 21:31:14 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdycc.dll
[2009-03-24 21:31:14 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdvntc.dll
[2009-03-24 21:31:14 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbduzb.dll
[2009-03-24 21:31:13 | 00,007,440 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdtuf.dll
[2009-03-24 21:31:13 | 00,006,928 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdtuq.dll
[2009-03-24 21:31:13 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdusa.dll
[2009-03-24 21:31:13 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdur.dll
[2009-03-24 21:31:12 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdth3.dll
[2009-03-24 21:31:12 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdth2.dll
[2009-03-24 21:31:12 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdth1.dll
[2009-03-24 21:31:12 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdth0.dll
[2009-03-24 21:31:11 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdtat.dll
[2009-03-24 21:31:11 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdru1.dll
[2009-03-24 21:31:11 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdru.dll
[2009-03-24 21:31:10 | 00,010,000 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdnecat.dll
[2009-03-24 21:31:10 | 00,008,464 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdnecnt.dll
[2009-03-24 21:31:10 | 00,007,952 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdnec95.dll
[2009-03-24 21:31:09 | 00,007,440 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdnec.dll
[2009-03-24 21:31:09 | 00,006,928 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdlv1.dll
[2009-03-24 21:31:09 | 00,006,928 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdlv.dll
[2009-03-24 21:31:09 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdlt1.dll
[2009-03-24 21:31:08 | 00,007,440 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdlk41j.dll
[2009-03-24 21:31:08 | 00,007,440 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdlk41a.dll
[2009-03-24 21:31:08 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdlt.dll
[2009-03-24 21:31:07 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdkaz.dll
[2009-03-24 21:31:07 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdintam.dll
[2009-03-24 21:31:07 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdinmar.dll
[2009-03-24 21:31:07 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdinhin.dll
[2009-03-24 21:31:06 | 00,008,976 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdhept.dll
[2009-03-24 21:31:06 | 00,007,440 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdibm02.dll
[2009-03-24 21:31:06 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdindev.dll
[2009-03-24 21:31:05 | 00,006,928 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdhela3.dll
[2009-03-24 21:31:05 | 00,006,928 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdhela2.dll
[2009-03-24 21:31:05 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdheb.dll
[2009-03-24 21:31:04 | 00,006,928 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdhe220.dll
[2009-03-24 21:31:04 | 00,006,928 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdhe.dll
[2009-03-24 21:31:04 | 00,006,928 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdgkl.dll
[2009-03-24 21:31:04 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdhe319.dll
[2009-03-24 21:31:03 | 00,006,928 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdest.dll
[2009-03-24 21:31:03 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdfa.dll
[2009-03-24 21:31:03 | 00,005,904 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdgeo.dll
[2009-03-24 21:31:02 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdbu.dll
[2009-03-24 21:31:02 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdblr.dll
[2009-03-24 21:31:01 | 00,006,928 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdax2.dll
[2009-03-24 21:31:01 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdazel.dll
[2009-03-24 21:31:01 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdaze.dll
[2009-03-24 21:31:01 | 00,005,904 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdarmw.dll
[2009-03-24 21:31:00 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbda3.dll
[2009-03-24 21:31:00 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbda2.dll
[2009-03-24 21:31:00 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbda1.dll
[2009-03-24 21:31:00 | 00,005,904 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbdarme.dll
[2009-03-24 21:30:59 | 00,006,928 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbd106n.dll
[2009-03-24 21:30:59 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbd101a.dll
[2009-03-24 21:30:58 | 00,006,928 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\kbd101.dll
[2009-03-24 21:30:57 | 00,008,976 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\iwrps.dll
[2009-03-24 21:30:56 | 00,046,352 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\ism.dll
[2009-03-24 21:30:55 | 00,062,736 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\isatq.dll
[2009-03-24 21:30:55 | 00,025,360 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\iscomlog.dll
[2009-03-24 21:30:52 | 00,034,576 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\iprip.dll
[2009-03-24 21:30:48 | 00,009,488 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\infoctrs.dll
[2009-03-24 21:30:47 | 00,248,080 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\infocomm.dll
[2009-03-24 21:30:47 | 00,020,752 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\inetsloc.dll
[2009-03-24 21:30:47 | 00,013,584 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\infoadmn.dll
[2009-03-24 21:30:46 | 00,008,464 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\inetmgr.exe
[2009-03-24 21:30:45 | 00,179,984 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\inetmgr.dll
[2009-03-24 21:30:45 | 00,015,120 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\inetinfo.exe
[2009-03-24 21:30:43 | 00,303,680 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\imeskf.dll
[2009-03-24 21:30:42 | 00,293,136 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\imepad.dll
[2009-03-24 21:30:42 | 00,208,784 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\imejputy.dll
[2009-03-24 21:30:42 | 00,087,344 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\imeskdic.dll
[2009-03-24 21:30:41 | 00,057,344 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\imejpmgr.exe
[2009-03-24 21:30:41 | 00,045,056 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\imejpuex.exe
[2009-03-24 21:30:40 | 00,575,517 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\imejpknl.dll
[2009-03-24 21:30:40 | 00,475,136 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\imejpcus.dll
[2009-03-24 21:30:40 | 00,267,536 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\imejpdct.dll
[2009-03-24 21:30:38 | 00,016,445 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\imagemap.exe
[2009-03-24 21:30:37 | 00,304,400 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\iisui.dll
[2009-03-24 21:30:36 | 00,028,944 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\iisrstas.exe
[2009-03-24 21:30:36 | 00,007,440 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\iissync.exe
[2009-03-24 21:30:36 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\iisrstap.dll
[2009-03-24 21:30:35 | 00,058,128 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\iismap.dll
[2009-03-24 21:30:35 | 00,015,120 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\iisreset.exe
[2009-03-24 21:30:34 | 00,077,072 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\iislog.dll
[2009-03-24 21:30:34 | 00,007,440 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\iisfecnv.dll
[2009-03-24 21:30:33 | 00,056,592 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\iisext.dll
[2009-03-24 21:30:33 | 00,020,240 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\iiscrmap.dll
[2009-03-24 21:30:32 | 00,121,616 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\iischema.dll
[2009-03-24 21:30:32 | 00,065,296 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\iisclex4.dll
[2009-03-24 21:30:31 | 00,124,176 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\iisrtl.dll
[2009-03-24 21:30:31 | 00,016,144 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\iisadmin.dll
[2009-03-24 21:30:15 | 08,929,280 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\hwxjpn.dll
[2009-03-24 21:30:14 | 00,057,104 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\httpodbc.dll
[2009-03-24 21:30:14 | 00,009,488 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\httpmib.dll
[2009-03-24 21:30:13 | 00,246,544 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\httpext.dll
[2009-03-24 21:30:12 | 00,016,444 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\htimage.exe
[2009-03-24 21:30:11 | 00,037,648 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\hostmib.dll
[2009-03-24 21:30:08 | 00,030,992 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\gzip.dll
[2009-03-24 21:30:06 | 00,040,208 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\gameenum.exe
[2009-03-24 21:30:05 | 00,118,544 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\ftpsvc2.dll
[2009-03-24 21:30:04 | 00,008,464 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\ftpctrs2.dll
[2009-03-24 21:30:04 | 00,006,928 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\ftpsapi2.dll
[2009-03-24 21:30:04 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\ftpmib.dll
[2009-03-24 21:30:03 | 00,008,112 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\ftlx0411.dll
[2009-03-24 21:30:03 | 00,007,088 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\ftlx041e.dll
[2009-03-24 21:30:02 | 00,300,304 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fscfg.dll
[2009-03-24 21:30:01 | 00,020,538 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fpremadm.exe
[2009-03-24 21:29:59 | 00,212,992 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fpmmcsat.dll
[2009-03-24 21:29:58 | 00,598,071 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fpmmc.dll
[2009-03-24 21:29:57 | 00,020,541 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fpexedll.dll
[2009-03-24 21:29:56 | 00,094,208 | ---- | C] () -- E:\WINNT\System32\dllcache\fpencode.dll
[2009-03-24 21:29:54 | 00,188,494 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fpcount.exe
[2009-03-24 21:29:53 | 00,020,541 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fpadmdll.dll
[2009-03-24 21:29:52 | 00,024,632 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fpadmcgi.exe
[2009-03-24 21:29:51 | 00,109,328 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fp98swin.exe
[2009-03-24 21:29:49 | 00,014,608 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fp98sadm.exe
[2009-03-24 21:29:48 | 00,876,653 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fp4awel.dll
[2009-03-24 21:29:47 | 00,049,212 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fp4awebs.dll
[2009-03-24 21:29:46 | 00,032,826 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fp4avss.dll
[2009-03-24 21:29:45 | 00,041,020 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fp4avnb.dll
[2009-03-24 21:29:43 | 00,618,605 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fp4autl.dll
[2009-03-24 21:29:43 | 00,102,509 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fp4atxt.dll
[2009-03-24 21:29:41 | 00,147,513 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fp4apws.dll
[2009-03-24 21:29:40 | 00,082,035 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fp4anscp.dll
[2009-03-24 21:29:38 | 00,184,435 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fp4amsft.dll
[2009-03-24 21:29:38 | 00,049,210 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fp4areg.dll
[2009-03-24 21:29:37 | 00,015,120 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fortutil.exe
[2009-03-24 21:29:33 | 00,044,816 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\smtp_fcachdll.dll
[2009-03-24 21:29:31 | 00,007,952 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\f3ahvoas.dll
[2009-03-24 21:29:30 | 00,014,096 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\exstrace.dll
[2009-03-24 21:29:29 | 00,090,384 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\evntwin.exe
[2009-03-24 21:29:29 | 00,023,824 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\evntcmd.exe
[2009-03-24 21:29:28 | 00,102,160 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\evntagnt.dll
[2009-03-24 21:29:24 | 00,514,832 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\edb500.dll
[2009-03-24 21:29:17 | 00,015,632 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\smtp_dt_ctrl.dll
[2009-03-24 21:28:54 | 00,040,960 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\cplexe.exe
[2009-03-24 21:28:53 | 00,068,880 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\convlog.exe
[2009-03-24 21:28:53 | 00,021,264 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\counters.dll
[2009-03-24 21:28:47 | 00,023,312 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\compfilt.dll
[2009-03-24 21:28:45 | 00,040,720 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\coadmin.dll
[2009-03-24 21:28:38 | 01,577,216 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\cjime.exe
[2009-03-24 21:28:36 | 00,012,560 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\chtbrkr.dll
[2009-03-24 21:28:36 | 00,012,560 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\chsbrkr.dll
[2009-03-24 21:28:35 | 00,188,480 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\cfgwiz.exe
[2009-03-24 21:28:26 | 00,011,536 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\c_iscii.dll
[2009-03-24 21:28:26 | 00,011,376 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\busmouse.sys
[2009-03-24 21:28:26 | 00,007,440 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\c_is2022.dll
[2009-03-24 21:28:24 | 00,047,376 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\browscap.dll
[2009-03-24 21:28:19 | 00,016,439 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\author.exe
[2009-03-24 21:28:18 | 00,020,540 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\author.dll
[2009-03-24 21:28:18 | 00,011,024 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\authfilt.dll
[2009-03-24 21:28:16 | 00,030,480 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\asptxn.dll
[2009-03-24 21:28:15 | 00,341,264 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\asp.dll
[2009-03-24 21:28:15 | 00,010,000 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\aspperf.dll
[2009-03-24 21:28:13 | 00,322,320 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\smtp_aqueue.dll
[2009-03-24 21:28:12 | 00,045,328 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\smtp_aqadmin.dll
[2009-03-24 21:28:11 | 00,019,456 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\agt0804.dll
[2009-03-24 21:28:10 | 00,019,456 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\agt041f.dll
[2009-03-24 21:28:10 | 00,019,456 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\agt0419.dll
[2009-03-24 21:28:10 | 00,019,456 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\agt0412.dll
[2009-03-24 21:28:09 | 00,022,016 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\agt0408.dll
[2009-03-24 21:28:09 | 00,019,456 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\agt0411.dll
[2009-03-24 21:28:09 | 00,019,456 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\agt040d.dll
[2009-03-24 21:28:08 | 00,019,456 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\agt0404.dll
[2009-03-24 21:28:08 | 00,019,456 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\agt0401.dll
[2009-03-24 21:28:05 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\smtp_adsiisex.dll
[2009-03-24 21:28:04 | 00,246,544 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\adsiis.dll
[2009-03-24 21:28:04 | 00,032,528 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\admwprox.dll
[2009-03-24 21:28:04 | 00,006,928 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\admxprox.dll
[2009-03-24 21:28:02 | 00,016,439 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\admin.exe
[2009-03-24 21:28:00 | 00,028,432 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\admexs.dll
[2009-03-24 21:28:00 | 00,020,540 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\admin.dll
[2009-03-24 21:27:57 | 00,012,560 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\thawbrkr.dll
[2009-03-24 21:27:56 | 00,024,336 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\sm9332.dll
[2009-03-24 21:27:55 | 00,024,336 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\sm9232.dll
[2009-03-24 21:27:55 | 00,016,656 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\rpcproxy.dll
[2009-03-24 21:27:54 | 00,035,088 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\pagecnt.dll
[2009-03-24 21:27:54 | 00,022,800 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\permchk.dll
[2009-03-24 21:27:53 | 00,055,056 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\nextlink.dll
[2009-03-24 21:27:52 | 00,222,992 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqoa.dll
[2009-03-24 21:27:51 | 00,217,360 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqads.dll
[2009-03-24 21:27:51 | 00,076,560 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqdscli.dll
[2009-03-24 21:27:51 | 00,042,256 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mqdssrv.dll
[2009-03-24 21:27:50 | 00,008,464 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\ksolay.ax
[2009-03-24 21:27:50 | 00,007,440 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\is60.dll
[2009-03-24 21:27:49 | 00,007,440 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\is50.dll
[2009-03-24 21:27:48 | 00,007,440 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\fs2.dll
[2009-03-24 21:27:47 | 00,110,864 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\cnfgprts.ocx
[2009-03-24 21:27:47 | 00,036,112 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\controt.dll
[2009-03-24 21:27:46 | 00,202,512 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\certwiz.ocx
[2009-03-24 21:27:46 | 00,151,824 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\certmap.ocx
[2009-03-24 21:27:45 | 00,053,008 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\adrot.dll
[2009-03-24 21:27:43 | 00,000,000 | ---D | C] -- E:\WINNT\System32\rocket
[2009-03-24 21:27:43 | 00,000,000 | ---D | C] -- E:\WINNT\mww32
[2009-03-24 21:27:43 | 00,000,000 | ---D | C] -- E:\WINNT\ime
[2009-03-24 21:27:42 | 00,000,000 | ---D | C] -- E:\WINNT\System32\rpcproxy
[2009-03-24 21:27:42 | 00,000,000 | ---D | C] -- E:\WINNT\System32\inetsrv
[2009-03-24 21:27:42 | 00,000,000 | ---D | C] -- E:\Program Files\microsoft frontpage
[2009-03-24 21:26:25 | 00,006,640 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\drivers\MSKSSRV.sys
[2009-03-24 21:26:21 | 00,004,816 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\drivers\MSPQM.sys
[2009-03-24 21:26:18 | 00,005,008 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\drivers\MSPCLOCK.sys
[2009-03-24 21:26:02 | 00,002,504 | ---- | C] () -- E:\WINNT\System32\CONFIG.NT
[2009-03-24 21:26:02 | 00,000,000 | ---- | C] () -- E:\WINNT\control.ini
[2009-03-24 21:25:57 | 00,023,392 | ---- | C] () -- E:\WINNT\System32\nscompat.tlb
[2009-03-24 21:25:57 | 00,016,832 | ---- | C] () -- E:\WINNT\System32\amcompat.tlb
[2009-03-24 21:25:46 | 00,000,006 | -H-- | C] () -- E:\WINNT\tasks\SA.DAT
[2009-03-24 21:23:50 | 00,131,344 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\mapi32.dll
[2009-03-24 21:23:04 | 00,022,034 | -H-- | C] () -- E:\Program Files\folder.htt
[2009-03-24 21:23:04 | 00,021,770 | -H-- | C] () -- E:\WINNT\System32\folder.htt
[2009-03-24 21:23:04 | 00,021,770 | -H-- | C] () -- E:\WINNT\folder.htt
[2009-03-24 21:23:04 | 00,000,271 | -H-- | C] () -- E:\WINNT\System32\desktop.ini
[2009-03-24 21:23:04 | 00,000,271 | -H-- | C] () -- E:\WINNT\desktop.ini
[2009-03-24 21:23:04 | 00,000,271 | -H-- | C] () -- E:\Program Files\desktop.ini
[2009-03-24 21:23:01 | 00,000,000 | --SD | C] -- E:\WINNT\Downloaded Program Files
[2009-03-24 21:23:01 | 00,000,000 | R--D | C] -- E:\WINNT\Offline Web Pages
[2009-03-24 21:22:22 | 01,753,160 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\vgx.dll
[2009-03-24 21:22:22 | 00,008,464 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\npwmsdrm.dll
[2009-03-24 21:22:20 | 00,063,248 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\ils.dll
[2009-03-24 21:22:20 | 00,063,248 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\ils.dll
[2009-03-24 21:22:20 | 00,034,064 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\lhacm.acm
[2009-03-24 21:22:20 | 00,003,072 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\nmevtmsg.dll
[2009-03-24 21:22:20 | 00,003,072 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\nmevtmsg.dll
[2009-03-24 21:22:19 | 00,167,696 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\msh261.drv
[2009-03-24 21:22:19 | 00,032,880 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\mnmdd.dll
[2009-03-24 21:22:19 | 00,032,880 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mnmdd.dll
[2009-03-24 21:22:19 | 00,012,560 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\nmmkcert.dll
[2009-03-24 21:22:19 | 00,012,560 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\nmmkcert.dll
[2009-03-24 21:22:18 | 00,109,328 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\msg723.acm
[2009-03-24 21:22:18 | 00,054,032 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\msconf.dll
[2009-03-24 21:22:18 | 00,054,032 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\msconf.dll
[2009-03-24 21:22:18 | 00,021,776 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\mnmsrvc.exe
[2009-03-24 21:22:18 | 00,021,776 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mnmsrvc.exe
[2009-03-24 21:22:17 | 00,045,840 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\rrcm.dll
[2009-03-24 21:22:17 | 00,040,208 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\h323cc.dll
[2009-03-24 21:22:17 | 00,037,136 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\dcap32.dll
[2009-03-24 21:22:17 | 00,008,976 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\nmasnt.dll
[2009-03-24 21:22:16 | 00,201,488 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\nac.dll
[2009-03-24 21:22:16 | 00,032,016 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\confmrsl.dll
[2009-03-24 21:22:15 | 00,151,824 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\nmoldwb.dll
[2009-03-24 21:22:15 | 00,065,296 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\nmchat.dll
[2009-03-24 21:22:15 | 00,004,880 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\wb32.exe
[2009-03-24 21:22:14 | 00,004,880 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\cb32.exe
[2009-03-24 21:22:13 | 00,000,000 | ---D | C] -- E:\Program Files\Common Files\Services
[2009-03-24 21:22:07 | 00,010,000 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\mstinit.exe
[2009-03-24 21:22:07 | 00,010,000 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mstinit.exe
[2009-03-24 21:22:07 | 00,000,065 | RH-- | C] () -- E:\WINNT\tasks\desktop.ini
[2009-03-24 21:22:07 | 00,000,000 | --SD | C] -- E:\WINNT\Tasks
[2009-03-24 21:22:06 | 00,421,947 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\msiprov.dll
[2009-03-24 21:22:06 | 00,200,761 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\dsprov.dll
[2009-03-24 21:22:05 | 00,151,613 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\viewprov.dll
[2009-03-24 21:22:05 | 00,069,708 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\provthrd.dll
[2009-03-24 21:22:04 | 00,057,616 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\icwdial.dll
[2009-03-24 21:22:04 | 00,057,616 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\icwdial.dll
[2009-03-24 21:22:04 | 00,049,424 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\icwphbk.dll
[2009-03-24 21:22:04 | 00,049,424 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\icwphbk.dll
[2009-03-24 21:22:03 | 00,253,712 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\inetcfg.dll
[2009-03-24 21:22:03 | 00,253,712 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\inetcfg.dll
[2009-03-24 21:22:03 | 00,005,904 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\icfgnt5.dll
[2009-03-24 21:22:03 | 00,005,904 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\icfgnt5.dll
[2009-03-24 21:22:01 | 00,055,296 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\icwres.dll
[2009-03-24 21:22:01 | 00,034,064 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\icwutil.dll
[2009-03-24 21:22:01 | 00,029,968 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\trialoc.dll
[2009-03-24 21:22:01 | 00,015,632 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\icwrmind.exe
[2009-03-24 21:22:01 | 00,015,632 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\icwdl.dll
[2009-03-24 21:22:00 | 00,151,824 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\icwhelp.dll
[2009-03-24 21:22:00 | 00,059,152 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\icwtutor.exe
[2009-03-24 21:22:00 | 00,044,816 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\icwconn.dll
[2009-03-24 21:22:00 | 00,012,048 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\inetwiz.exe
[2009-03-24 21:22:00 | 00,006,416 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\isignup.exe
[2009-03-24 21:21:59 | 00,062,224 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\icwconn2.exe
[2009-03-24 21:21:58 | 00,149,776 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\triedit.dll
[2009-03-24 21:21:57 | 00,117,008 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\dhtmled.ocx
[2009-03-24 21:21:55 | 00,060,688 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\iexplore.exe
[2009-03-24 21:21:55 | 00,014,608 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\hmmapi.dll
[2009-03-24 21:21:54 | 00,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- E:\WINNT\System32\dllcache\npdsplay.dll
[2009-03-24 21:21:54 | 00,065,296 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\logagent.exe
[2009-03-24 21:21:54 | 00,026,896 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\laprxy.dll
[2009-03-24 21:21:54 | 00,004,639 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mplayer2.exe
[2009-03-24 21:21:53 | 00,393,488 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\callcont.dll
[2009-03-24 21:21:53 | 00,212,752 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\nmas.dll
[2009-03-24 21:21:53 | 00,062,736 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\nmcom.dll
[2009-03-24 21:21:52 | 00,249,616 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mst120.dll
[2009-03-24 21:21:52 | 00,177,424 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\nmwb.dll
[2009-03-24 21:21:52 | 00,039,696 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mst123.dll
[2009-03-24 21:21:51 | 00,661,776 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\conf.exe
[2009-03-24 21:21:51 | 00,136,976 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\nmft.dll
[2009-03-24 21:21:51 | 00,000,000 | ---D | C] -- E:\Program Files\NetMeeting
[2009-03-24 21:21:50 | 00,325,392 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\msinfo32.dll
[2009-03-24 21:21:50 | 00,068,368 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\msoert2.dll
[2009-03-24 21:21:50 | 00,068,368 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\msoert2.dll
[2009-03-24 21:21:50 | 00,016,656 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\msinfo32.exe
[2009-03-24 21:21:49 | 00,200,976 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\msoeacct.dll
[2009-03-24 21:21:49 | 00,200,976 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\msoeacct.dll
[2009-03-24 21:21:49 | 00,062,464 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\acctres.dll
[2009-03-24 21:21:49 | 00,062,464 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\acctres.dll
[2009-03-24 21:21:49 | 00,041,360 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\wabmig.exe
[2009-03-24 21:21:49 | 00,024,976 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\wab.exe
[2009-03-24 21:21:48 | 00,449,808 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\wab32.dll
[2009-03-24 21:21:48 | 00,084,752 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\wabimp.dll
[2009-03-24 21:21:48 | 00,009,488 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\wabfind.dll
[2009-03-24 21:21:47 | 00,159,744 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\wab32res.dll
[2009-03-24 21:21:46 | 00,058,128 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\directdb.dll
[2009-03-24 21:21:45 | 00,572,688 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\inetcomm.dll
[2009-03-24 21:21:45 | 00,572,688 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\inetcomm.dll
[2009-03-24 21:21:45 | 00,047,616 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\inetres.dll
[2009-03-24 21:21:45 | 00,047,616 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\inetres.dll
[2009-03-24 21:21:44 | 00,074,512 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\oeimport.dll
[2009-03-24 21:21:44 | 00,049,168 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\msimn.exe
[2009-03-24 21:21:42 | 01,146,640 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\msoe.dll
[2009-03-24 21:21:42 | 00,924,160 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\msoeres.dll
[2009-03-24 21:21:41 | 00,065,593 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\csapi3t1.dll
[2009-03-24 21:21:40 | 00,075,536 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\setup50.exe
[2009-03-24 21:21:40 | 00,068,112 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\oemig50.exe
[2009-03-24 21:21:40 | 00,039,184 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\oemiglib.dll
[2009-03-24 21:21:40 | 00,000,000 | ---D | C] -- E:\Program Files\Outlook Express
[2009-03-24 21:21:39 | 00,217,872 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\mstask.dll
[2009-03-24 21:21:39 | 00,217,872 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mstask.dll
[2009-03-24 21:21:39 | 00,119,568 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\mstask.exe
[2009-03-24 21:21:39 | 00,119,568 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\mstask.exe
[2009-03-24 21:21:39 | 00,073,488 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\isign32.dll
[2009-03-24 21:21:39 | 00,073,488 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\isign32.dll
[2009-03-24 21:21:38 | 00,188,688 | ---- | C] (Microsoft Corporation) -- E:\WINNT\System32\dllcache\icwconn1.exe
[2009-03-24 21:21:38 | 00,000,000 | ---D | C] -- E:\Program Files\Internet Explorer