DnS94 Skrevet 19. august 2009 Del Skrevet 19. august 2009 (endret) ja som i overskriften har jeg fått den virusen og jeg kan vise dere logg filen fra MBAM håper noen kan hjelpe Malwarebytes' Anti-Malware 1.33 Databaseversjon: 1666 Windows 6.0.6001 Service Pack 1 18.01.2009 22:30:38 mbam-log-2009-01-18 (22-30-38).txt Skanntype: Rask Skann Objekter skannet: 56894 Tid tilbakelagt: 4 minute(s), 20 second(s) Minneprosesser infisert: 0 Minnemoduler infisert: 0 Registernøkler infisert: 0 Registerverdier infisert: 0 Registerfiler infisert: 6 Mapper infisert: 0 Filer infisert: 0 Minneprosesser infisert: (Ingen mistenkelige filer funnet) Minnemoduler infisert: (Ingen mistenkelige filer funnet) Registernøkler infisert: (Ingen mistenkelige filer funnet) Registerverdier infisert: (Ingen mistenkelige filer funnet) Registerfiler infisert: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\DhcpNameServer (Trojan.DNSChanger) -> Data: 85.255.112.154 85.255.112.140 1.2.3.4 -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{3ba854c3-d683-4fee-8197-e97172874734}\DhcpNameServer (Trojan.DNSChanger) -> Data: 85.255.112.154 85.255.112.140 1.2.3.4 -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\Parameters\DhcpNameServer (Trojan.DNSChanger) -> Data: 85.255.112.154 85.255.112.140 1.2.3.4 -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{3ba854c3-d683-4fee-8197-e97172874734}\DhcpNameServer (Trojan.DNSChanger) -> Data: 85.255.112.154 85.255.112.140 1.2.3.4 -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Tcpip\Parameters\DhcpNameServer (Trojan.DNSChanger) -> Data: 85.255.112.154 85.255.112.140 1.2.3.4 -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Tcpip\Parameters\Interfaces\{3ba854c3-d683-4fee-8197-e97172874734}\DhcpNameServer (Trojan.DNSChanger) -> Data: 85.255.112.154 85.255.112.140 1.2.3.4 -> Quarantined and deleted successfully. Mapper infisert: (Ingen mistenkelige filer funnet) Filer infisert: (Ingen mistenkelige filer funnet) Endret 25. august 2009 av dinesh Lenke til kommentar
Bruker-133566 Skrevet 20. august 2009 Del Skrevet 20. august 2009 http://www.spywareguide.com/spydet_2371_dn...ger_trojan.html http://www.dnschanger.com/ test ut disse Lenke til kommentar
MidnightCreep Skrevet 20. august 2009 Del Skrevet 20. august 2009 Hei Du bør iallefall oppdatere MBAM til nyeste versjon. Lenke til kommentar
DnS94 Skrevet 20. august 2009 Forfatter Del Skrevet 20. august 2009 Hei Du bør iallefall oppdatere MBAM til nyeste versjon. har prøvd det 1 milliard ganger Lenke til kommentar
Atiks Skrevet 20. august 2009 Del Skrevet 20. august 2009 (endret) Prøv også SAS. Endret 20. august 2009 av snippern Lenke til kommentar
DnS94 Skrevet 20. august 2009 Forfatter Del Skrevet 20. august 2009 http://www.spywareguide.com/spydet_2371_dn...ger_trojan.html http://www.dnschanger.com/ test ut disse hei spywareguiden var ikke ti stor hjelp men hvis du kan forklare hva jeg skal gjøre der så ville jeg vært veldig glad og www.dnschanger.com siden er bare bullsh*t jeg har norton fra før og de 2 andre er mac men takk for at du prøvde (Y) men hjelp ? xD Lenke til kommentar
DnS94 Skrevet 20. august 2009 Forfatter Del Skrevet 20. august 2009 (endret) Prøv også SAS. har prøvd SAS det var bare Waste of Time tok meg 45 minutter eller no og jeg har lssm 500k-1mill filer på pcen!! og den kunen værtfall funnet noe som helst men den fant bare cookies men MBAM var best den fant hvertfall viruset Endret 20. august 2009 av dinesh Lenke til kommentar
snippsat Skrevet 20. august 2009 Del Skrevet 20. august 2009 Last Combofix ned ,legg på skrivebordet. Ikke klikk på vindu mens programmet kjører. post logg C:\combofix.txt Lenke til kommentar
DnS94 Skrevet 20. august 2009 Forfatter Del Skrevet 20. august 2009 Last Combofix ned ,legg på skrivebordet.Ikke klikk på vindu mens programmet kjører. post logg C:\combofix.txt jeg jeg prøvde det men jeg har Win7 og der står det at det støtter bare 2000 og XP Lenke til kommentar
snippsat Skrevet 21. august 2009 Del Skrevet 21. august 2009 Last ned RSIT (Random's System Information Tool) til skrivebordet Start programmet ved å dobbeltklikke på RSIT.exe Klikk Continue Etter få strakser vil det lages en logg (log.txt). Den poster du. Lenke til kommentar
DnS94 Skrevet 21. august 2009 Forfatter Del Skrevet 21. august 2009 Last ned RSIT (Random's System Information Tool) til skrivebordetStart programmet ved å dobbeltklikke på RSIT.exe Klikk Continue Etter få strakser vil det lages en logg (log.txt). Den poster du. Prøvde det nettopp så kommer det "Line-1: Error: Varriable used without being declared." Lenke til kommentar
mago Skrevet 23. august 2009 Del Skrevet 23. august 2009 (endret) Hei Du bør iallefall oppdatere MBAM til nyeste versjon. har prøvd det 1 milliard ganger oppdatering funket ikke, men dette funket last ned nyeste mbam program http://www.malwarebytes.org/ - avinstaller gammel versjon - install ny 1.40 versjon og oppdater database Endret 23. august 2009 av mago Lenke til kommentar
DnS94 Skrevet 23. august 2009 Forfatter Del Skrevet 23. august 2009 Hei Du bør iallefall oppdatere MBAM til nyeste versjon. har prøvd det 1 milliard ganger oppdatering funket ikke, men dette funket last ned nyeste mbam program http://www.malwarebytes.org/ - avinstaller gammel versjon - install ny 1.40 versjon og oppdater database ja problem der også når jeg går hjemmesiden blir den blokka så jeg pleier å laste ned ny versjon via filehippo men jeg kan ikke laste ned database der så jeg trenger alt. lenke Lenke til kommentar
DnS94 Skrevet 25. august 2009 Forfatter Del Skrevet 25. august 2009 (endret) Noen som kan hjelpe ? pluss tror jeg på en måte fikk til litt av den Rsit log filen Klikk for å se/fjerne innholdet nedenfor Logfile of random's system information tool 1.06 (written by random/random) Run by Dinesh at 2009-08-24 16:48:24 Microsoft Windows 7 Ultimate System drive C: has 114 GB (49%) free of 232 GB Total RAM: 3070 MB (69% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:48:36, on 24.08.2009 Platform: Unknown Windows (WinNT 6.01.3004) MSIE: Internet Explorer v8.00 (8.00.7100.0000) Boot mode: Normal Running processes: C:\Program Files\Norton 360\Norton 360\Engine\3.5.0.15\ccSvcHst.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\System32\rundll32.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe C:\Program Files\Windows Live\Family Safety\fsui.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\HP\HP Software Update\hpwuSchd2.exe C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files\HP\QuickPlay\QPService.exe C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\SuperF4\SuperF4.exe C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Windows\system32\taskhost.exe C:\Users\Dinesh\Desktop\RSIT.exe C:\Program Files\trend micro\Dinesh.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=NB_NO&c=73&bd=Pavilion&pf=laptop R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://securityresponse.symantec.com/avcenter/fix_homepage/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://securityresponse.symantec.com/avcenter/fix_homepage/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://securityresponse.symantec.com/avcenter/fix_homepage/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage/ R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe O1 - Hosts: ::1 localhost O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360\Norton 360\Engine\3.5.0.15\coIEPlg.dll O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton 360\Norton 360\Engine\3.5.0.15\IPSBHO.DLL O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Norton 360\Engine\3.5.0.15\coIEPlg.dll O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [HP Health Check Scheduler] C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe" O4 - HKLM\..\Run: [WAWifiMessage] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [SuperF4] "C:\Program Files\SuperF4\SuperF4.exe" -hide O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKAL TJENESTE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKAL TJENESTE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETTVERKSTJENESTE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETTVERKSTJENESTE') O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\ssv.dll O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O13 - Gopher Prefix: O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{1ABAB27F-FF34-45E8-BFCD-3F19EADA0DBC}: NameServer = 192.168.0.1 O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: symres - {AA1061FE-6C41-421F-9344-69640C9732AB} - C:\Program Files\Norton 360\Norton 360\Engine\3.5.0.15\coIEPlg.dll O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Bonjour-tjeneste (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe O23 - Service: Com4Qlb - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: GTMM Device Service - Option nv - C:\Program Files\Telenor\Mobilt Bredbånd\GtmmDeviceService.exe O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod-tjeneste (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LiveUpdate\LuComServer_3_2.EXE O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files\Norton 360\Norton 360\Engine\3.5.0.15\ccSvcHst.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Sesam Control Service (SesamService) - Swisscom - C:\Program Files\Telenor\Mobilt Bredbånd\Sesam\BIN\SecMIPService.exe O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: TeamViewer 4 (TeamViewer4) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version4\TeamViewer_Service.exe -- End of file - 10484 bytes ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}] Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2009-02-06 61808] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}] Symantec NCO BHO - C:\Program Files\Norton 360\Norton 360\Engine\3.5.0.15\coIEPlg.dll [2009-06-21 376176] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}] Symantec Intrusion Prevention - C:\Program Files\Norton 360\Norton 360\Engine\3.5.0.15\IPSBHO.DLL [2009-06-21 107896] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2009-08-11 321312] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-11 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files\Norton 360\Norton 360\Engine\3.5.0.15\coIEPlg.dll [2009-06-21 376176] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-01-14 4874240] "SMSERIAL"=C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2009-05-05 1466368] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696] "BrMfcWnd"=C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [2007-02-15 622592] "fssui"=C:\Program Files\Windows Live\Family Safety\fsui.exe [2009-02-06 454000] "GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072] "HP Health Check Scheduler"=C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2007-03-12 50696] "HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2007-05-08 54840] "hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2007-03-01 472776] "IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-15 178712] "NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-05-27 13781536] "QPService"=C:\Program Files\HP\QuickPlay\QPService.exe [2007-04-23 176128] "WAWifiMessage"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe [2007-01-10 317128] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-12-06 1029416] "PWRISOVM.EXE"=C:\Program Files\PowerISO\PWRISOVM.EXE [2009-07-27 180224] "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-08-11 149280] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-22 1174016] "SuperF4"=C:\Program Files\SuperF4\SuperF4.exe [2009-08-19 34816] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager] C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-11-13 611712] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2009-05-13 177472] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe [2006-07-19 65536] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\fssui] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe [2009-07-13 292128] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE [2009-07-27 180224] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Dinesh^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MagicDisc.lnk] [] C:\Users\Dinesh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup OneNote 2007 Screen Clipper and Launcher.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\System32\webcheck.dll [2009-04-22 236032] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vga.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vgasave.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vga.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vgasave.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "DisableTaskMgr"=0 "legalnoticetext"= [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=149 "NofolderOptions"=0 "NoRun"=0 "NoStartMenuMorePrograms"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "C:\Program Files\PPStream\PPSAP.exe"="C:\Program Files\PPStream\PPSAP.exe:*:Enabled:PPS ÍøÂç¼ÓËÙÆ÷" "C:\Program Files\PPStream\PPStream.exe"="C:\Program Files\PPStream\PPStream.exe:*:Enabled:PPSÍøÂçµçÊÓ" "C:\Windows\system32\winlogon.exe"="C:\Windows\system32\winlogon.exe:*:enabled:@shell32.dll,-1" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 3 months====== 2009-08-24 16:47:49 ----D---- C:\32788R22FWJFW 2009-08-23 23:02:29 ----D---- C:\ProgramData\TVU Networks 2009-08-23 23:02:20 ----D---- C:\Program Files\TVUPlayer 2009-08-22 17:36:06 ----D---- C:\Program Files\Pointstone 2009-08-22 01:18:59 ----D---- C:\Program Files\trend micro 2009-08-22 01:18:57 ----D---- C:\rsit 2009-08-21 16:49:29 ----D---- C:\Program Files\EA SPORTS 2009-08-20 20:31:50 ----D---- C:\Program Files\PowerISO 2009-08-20 19:40:26 ----A---- C:\Windows\system32\GEARAspi.dll 2009-08-20 19:25:45 ----A---- C:\Windows\system32\MSVCR71.DLL 2009-08-20 19:25:45 ----A---- C:\Windows\system32\MSVCP71.DLL 2009-08-20 19:25:45 ----A---- C:\Windows\system32\MFC71.DLL 2009-08-20 01:06:05 ----D---- C:\Program Files\Synaptics 2009-08-20 01:05:19 ----A---- C:\Windows\system32\WdfCoInstaller01000.dll 2009-08-20 01:05:19 ----A---- C:\Windows\system32\SynTPCo4.dll 2009-08-20 01:05:19 ----A---- C:\Windows\system32\SynTPAPI.dll 2009-08-20 01:05:19 ----A---- C:\Windows\system32\SynCtrl.dll 2009-08-20 01:05:19 ----A---- C:\Windows\system32\SynCOM.dll 2009-08-19 23:04:45 ----A---- C:\Bug.txt 2009-08-19 23:04:42 ----A---- C:\Windows\system32\cmd.execf 2009-08-19 21:36:46 ----D---- C:\Windows\BDOSCAN8 2009-08-19 00:05:46 ----D---- C:\Users\Dinesh\AppData\Roaming\Passware 2009-08-18 23:58:40 ----D---- C:\Program Files\Passware 2009-08-18 23:47:05 ----D---- C:\Program Files\SeePassword 2009-08-18 23:34:07 ----D---- C:\Program Files\Camtech 2009-08-18 22:49:31 ----D---- C:\Program Files\Poker Indicator 2009-08-18 00:24:53 ----D---- C:\Program Files\Uniblue 2009-08-17 19:13:10 ----D---- C:\Users\Dinesh\AppData\Roaming\Spearit 2009-08-17 19:13:10 ----D---- C:\ProgramData\Spearit 2009-08-17 19:13:01 ----D---- C:\ProgramData\Laplink 2009-08-17 19:12:15 ----D---- C:\Program Files\Laplink 2009-08-17 19:02:09 ----D---- C:\Users\Dinesh\AppData\Roaming\Trillian 2009-08-17 19:01:36 ----D---- C:\Program Files\Trillian 2009-08-17 12:44:30 ----D---- C:\Users\Dinesh\AppData\Roaming\Acronis 2009-08-17 12:38:44 ----D---- C:\Program Files\Common Files\Acronis 2009-08-17 12:25:59 ----D---- C:\ProgramData\Genie-Soft 2009-08-17 12:24:21 ----D---- C:\Users\Dinesh\AppData\Roaming\Genie-Soft 2009-08-16 14:41:38 ----D---- C:\Users\Dinesh\AppData\Roaming\Watermark Express 2009-08-16 14:41:23 ----D---- C:\Program Files\Software Informer 2009-08-15 16:36:05 ----D---- C:\Users\Dinesh\AppData\Roaming\PlayFirst 2009-08-15 16:36:05 ----D---- C:\ProgramData\PlayFirst 2009-08-15 15:00:08 ----D---- C:\Users\Dinesh\AppData\Roaming\YoudaGames 2009-08-14 23:37:36 ----D---- C:\Program Files\eMule 2009-08-14 23:31:29 ----D---- C:\Program Files\Bitcollider 2009-08-14 23:31:29 ----A---- C:\Windows\system32\BCSHEL~1.DLL 2009-08-11 17:13:43 ----A---- C:\ProgramData\hpe6C00.dll 2009-08-11 17:07:48 ----D---- C:\Program Files\SuperF4 2009-08-11 13:58:37 ----D---- C:\Program Files\TeamViewer 2009-08-11 12:42:51 ----D---- C:\Program Files\Brice Lambson 2009-08-11 00:45:26 ----D---- C:\Program Files\Pivot Stickfigure Animator 2009-08-10 19:09:09 ----D---- C:\Users\Dinesh\AppData\Roaming\downyourtube 2009-08-10 17:10:55 ----D---- C:\Windows\system32\lib 2009-08-10 17:10:55 ----D---- C:\Program Files\YouTube Video Ripper 2009-08-09 01:59:40 ----D---- C:\Program Files\Common Files\LightScribe 2009-08-09 01:58:52 ----A---- C:\Windows\system32\rmoc3260.dll 2009-08-09 01:58:52 ----A---- C:\Windows\system32\pndx5032.dll 2009-08-09 01:58:52 ----A---- C:\Windows\system32\pndx5016.dll 2009-08-09 01:58:51 ----D---- C:\ProgramData\Real 2009-08-09 01:57:19 ----A---- C:\Windows\system32\javaws.exe 2009-08-09 01:57:19 ----A---- C:\Windows\system32\javaw.exe 2009-08-09 01:57:19 ----A---- C:\Windows\system32\java.exe 2009-08-08 13:48:36 ----D---- C:\Users\Dinesh\AppData\Roaming\Uniblue 2009-08-08 13:39:18 ----D---- C:\Program Files\XPC Tools 2009-08-08 12:25:56 ----D---- C:\Users\Dinesh\AppData\Roaming\cspa 2009-08-08 12:17:00 ----D---- C:\ProgramData\PC Drivers HeadQuarters 2009-08-06 21:54:02 ----D---- C:\Program Files\WIN7TS 2009-08-06 21:52:25 ----D---- C:\Program Files\AuthenTec, Inc 2009-08-06 21:48:27 ----A---- C:\Windows\system32\unrar.dll 2009-08-06 21:48:26 ----A---- C:\Windows\avisplitter.ini 2009-08-06 21:48:24 ----A---- C:\Windows\system32\yv12vfw.dll 2009-08-06 21:48:23 ----A---- C:\Windows\system32\xvidvfw.dll 2009-08-06 21:48:23 ----A---- C:\Windows\system32\xvidcore.dll 2009-08-06 21:48:22 ----A---- C:\Windows\system32\qt-dx331.dll 2009-08-06 21:48:22 ----A---- C:\Windows\system32\dpl100.dll 2009-08-06 21:48:21 ----A---- C:\Windows\system32\divx.dll 2009-08-06 21:48:20 ----A---- C:\Windows\system32\ff_vfw.dll.manifest 2009-08-06 21:48:20 ----A---- C:\Windows\system32\ff_vfw.dll 2009-08-06 21:14:05 ----A---- C:\Windows\system32\WdfCoinstaller01007.dll 2009-08-06 20:46:48 ----D---- C:\Program Files\Microsoft Games for Windows - LIVE 2009-08-04 03:13:02 ----D---- C:\Users\Dinesh\AppData\Roaming\vlc 2009-07-31 18:26:29 ----D---- C:\Windows\Applian FLV Player 2009-07-31 18:26:29 ----D---- C:\Program Files\FLV Player 2009-07-31 18:25:24 ----D---- C:\Program Files\ConvertHelper 2009-07-30 21:51:52 ----D---- C:\Program Files\iTunes 2009-07-30 21:51:52 ----D---- C:\Program Files\iPod 2009-07-30 13:11:20 ----D---- C:\Users\Dinesh\AppData\Roaming\Any Video Converter Professional 2009-07-30 13:11:16 ----D---- C:\Program Files\Any Video Converter Professional 2009-07-29 19:50:21 ----D---- C:\divx 2009-07-29 02:07:14 ----D---- C:\Users\Dinesh\AppData\Roaming\Bump Technologies, Inc 2009-07-29 02:06:48 ----D---- C:\Program Files\BumpTop 2009-07-29 00:23:25 ----D---- C:\ProgramData\DVD Shrink 2009-07-29 00:19:49 ----D---- C:\Windows\system32\appmgmt 2009-07-29 00:00:56 ----D---- C:\Program Files\Sony Setup 2009-07-28 23:30:40 ----D---- C:\Users\Dinesh\AppData\Roaming\Roxio 2009-07-28 22:52:07 ----A---- C:\Windows\system32\ieframe.dll 2009-07-28 22:52:06 ----A---- C:\Windows\system32\mshtml.dll 2009-07-21 15:44:52 ----A---- C:\Windows\system32\msmpeg2vdec.dll 2009-07-21 15:44:51 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL 2009-07-21 15:44:51 ----A---- C:\Windows\system32\msmpeg2adec.dll 2009-07-21 15:44:51 ----A---- C:\Windows\system32\MSAC3ENC.DLL 2009-07-21 15:44:51 ----A---- C:\Windows\system32\mfAACEnc.dll 2009-07-21 15:44:48 ----A---- C:\Windows\system32\iertutil.dll 2009-07-21 15:44:46 ----A---- C:\Windows\system32\McxDriv.dll 2009-07-21 15:44:40 ----A---- C:\Windows\system32\tquery.dll 2009-07-21 15:44:40 ----A---- C:\Windows\system32\sxs.dll 2009-07-21 15:44:40 ----A---- C:\Windows\system32\SearchIndexer.exe 2009-07-21 15:44:40 ----A---- C:\Windows\system32\mssvp.dll 2009-07-21 15:44:40 ----A---- C:\Windows\system32\mssrch.dll 2009-07-21 15:44:37 ----A---- C:\Windows\system32\user32.dll 2009-07-21 15:44:37 ----A---- C:\Windows\system32\mssph.dll 2009-07-21 15:44:36 ----A---- C:\Windows\system32\SearchProtocolHost.exe 2009-07-21 15:44:36 ----A---- C:\Windows\system32\SearchFilterHost.exe 2009-07-21 15:44:36 ----A---- C:\Windows\system32\mssphtb.dll 2009-07-21 15:44:36 ----A---- C:\Windows\system32\msscntrs.dll 2009-07-21 15:44:36 ----A---- C:\Windows\system32\gdi32.dll 2009-07-21 15:44:36 ----A---- C:\Windows\system32\comctl32.dll 2009-07-21 15:44:36 ----A---- C:\Windows\system32\cdosys.dll 2009-07-21 15:44:32 ----A---- C:\Windows\system32\wininet.dll 2009-07-21 15:44:32 ----A---- C:\Windows\system32\urlmon.dll 2009-07-21 15:44:32 ----A---- C:\Windows\system32\pngfilt.dll 2009-07-21 15:44:32 ----A---- C:\Windows\system32\mstime.dll 2009-07-21 15:44:32 ----A---- C:\Windows\system32\msrating.dll 2009-07-21 15:44:32 ----A---- C:\Windows\system32\mshtmled.dll 2009-07-21 15:44:32 ----A---- C:\Windows\system32\jsproxy.dll 2009-07-21 15:44:32 ----A---- C:\Windows\system32\inseng.dll 2009-07-21 15:44:32 ----A---- C:\Windows\system32\iepeers.dll 2009-07-21 15:44:32 ----A---- C:\Windows\system32\dxtrans.dll 2009-07-21 15:44:32 ----A---- C:\Windows\system32\dxtmsft.dll 2009-07-21 15:44:29 ----A---- C:\Windows\system32\poqexec.exe 2009-07-21 02:17:29 ----D---- C:\Temp 2009-07-20 01:21:13 ----A---- C:\Windows\system32\PnkBstrB.exe 2009-07-20 01:21:11 ----A---- C:\Windows\system32\PnkBstrA.exe 2009-07-20 01:21:11 ----A---- C:\Windows\system32\pbsvc.exe 2009-07-16 14:25:34 ----D---- C:\Windows\Panther 2009-07-16 14:07:01 ----HD---- C:\$WINDOWS.~Q 2009-07-16 13:53:20 ----HD---- C:\$INPLACE.~TR 2009-07-16 10:23:14 ----SHD---- C:\Recovery 2009-07-16 05:59:01 ----A---- C:\Windows\system32\PerfStringBackup.INI 2009-07-16 04:31:21 ----SD---- C:\Users\Dinesh\AppData\Roaming\Microsoft 2009-07-16 04:31:21 ----D---- C:\Users\Dinesh\AppData\Roaming\Media Center Programs 2009-07-16 04:30:06 ----A---- C:\Windows\system32\nvuninst.exe 2009-07-16 04:29:49 ----D---- C:\Program Files\Motorola 2009-07-16 04:29:30 ----D---- C:\Windows\system32\RTCOM 2009-07-16 04:28:13 ----D---- C:\Windows\Prefetch 2009-07-16 02:29:30 ----D---- C:\Windows\system32\ENU 2009-07-16 01:15:29 ----D---- C:\Windows\system32\Vistalizator 2009-07-14 17:17:04 ----A---- C:\Windows\system32\xlivefnt.dll 2009-07-14 17:17:04 ----A---- C:\Windows\system32\xlive.dll 2009-07-14 17:15:00 ----A---- C:\Windows\system32\xlive.dll.cat 2009-07-05 03:56:35 ----D---- C:\Windows\CheckSur 2009-06-28 03:04:54 ----A---- C:\Windows\RTKAUDIOSERVICE.EXE 2009-06-28 03:03:19 ----D---- C:\Program Files\Realtek 2009-06-28 03:03:19 ----A---- C:\Windows\system32\SRSWOW.dll 2009-06-28 03:03:19 ----A---- C:\Windows\system32\SRSTSXT.dll 2009-06-28 03:03:19 ----A---- C:\Windows\system32\RtkPgExt.dll 2009-06-28 03:03:19 ----A---- C:\Windows\system32\RtkCoInst.dll 2009-06-28 03:03:19 ----A---- C:\Windows\system32\RtkAPO.dll 2009-06-28 03:03:19 ----A---- C:\Windows\RtlUpd.exe 2009-06-28 03:03:19 ----A---- C:\Windows\RtHDVCpl.exe 2009-06-28 03:03:16 ----A---- C:\Windows\RtlExUpd.dll 2009-06-21 12:26:22 ----D---- C:\Program Files\Symantec 2009-06-21 12:25:38 ----D---- C:\Program Files\NortonInstaller 2009-06-16 21:14:42 ----D---- C:\ProgramData\eMule 2009-06-08 19:43:35 ----D---- C:\ProgramData\Kaspersky Lab 2009-06-08 19:40:57 ----D---- C:\ProgramData\Kaspersky Lab Setup Files 2009-06-08 14:52:54 ----D---- C:\ProgramData\avg8 2009-06-06 13:46:26 ----D---- C:\Users\Dinesh\AppData\Roaming\Unity 2009-06-06 13:15:55 ----D---- C:\Program Files\Unity 2009-06-05 14:02:41 ----SHD---- C:\Windows\system32\%APPDATA% 2009-06-05 13:27:33 ----D---- C:\ProgramData\{7B6BA59A-FB0E-4499-8536-A7420338BF3B} 2009-06-05 13:25:29 ----D---- C:\ProgramData\Norton 2009-06-05 13:22:37 ----D---- C:\Windows\E80F62FF5D3C4A1984099721F2928206.TMP 2009-06-05 13:20:11 ----D---- C:\ProgramData\NortonInstaller 2009-06-04 22:37:42 ----D---- C:\Users\Dinesh\AppData\Roaming\Screenshot Sender 2009-06-02 22:00:43 ----D---- C:\Users\Dinesh\AppData\Roaming\Thinstall 2009-06-02 21:59:47 ----D---- C:\Program Files\QuickTime 2009-05-29 13:36:16 ----A---- C:\Windows\system32\usbaaplrc.dll 2009-05-28 17:41:16 ----D---- C:\Windows\system32\EventProviders 2009-05-28 17:29:05 ----D---- C:\Program Files\Windows Live SkyDrive 2009-05-27 18:00:46 ----A---- C:\Windows\system32\nvcpluir.dll 2009-05-27 18:00:46 ----A---- C:\Windows\system32\nvcplui.exe 2009-05-27 18:00:44 ----A---- C:\Windows\system32\nvsvsr.dll 2009-05-27 18:00:44 ----A---- C:\Windows\system32\nvsvs.dll 2009-05-27 18:00:32 ----A---- C:\Windows\system32\nvwssr.dll 2009-05-27 18:00:32 ----A---- C:\Windows\system32\nvwss.dll 2009-05-27 18:00:32 ----A---- C:\Windows\system32\nvvsvc.exe 2009-05-27 18:00:32 ----A---- C:\Windows\system32\nvvitvsr.dll 2009-05-27 18:00:32 ----A---- C:\Windows\system32\nvvitvs.dll 2009-05-27 18:00:32 ----A---- C:\Windows\system32\nvmoblsr.dll 2009-05-27 18:00:32 ----A---- C:\Windows\system32\nvmobls.dll 2009-05-27 18:00:32 ----A---- C:\Windows\system32\nvmccssr.dll 2009-05-27 18:00:32 ----A---- C:\Windows\system32\nvmccss.dll 2009-05-27 18:00:32 ----A---- C:\Windows\system32\nvgamesr.dll 2009-05-27 18:00:32 ----A---- C:\Windows\system32\nvgames.dll 2009-05-27 18:00:32 ----A---- C:\Windows\system32\nvdispsr.dll 2009-05-27 18:00:32 ----A---- C:\Windows\system32\nvdisps.dll 2009-05-27 18:00:30 ----A---- C:\Windows\system32\nvsvcr.dll 2009-05-27 18:00:30 ----A---- C:\Windows\system32\nvsvc.dll 2009-05-27 18:00:30 ----A---- C:\Windows\system32\nvshext.dll 2009-05-27 18:00:30 ----A---- C:\Windows\system32\nvmctray.dll 2009-05-27 18:00:30 ----A---- C:\Windows\system32\nvhotkey.dll 2009-05-27 18:00:30 ----A---- C:\Windows\system32\nvcpl.dll 2009-05-27 16:04:00 ----A---- C:\Windows\system32\nvwgf2um.dll 2009-05-27 16:04:00 ----A---- C:\Windows\system32\nvudisp.exe 2009-05-27 16:04:00 ----A---- C:\Windows\system32\nvoglv32.dll 2009-05-27 16:04:00 ----A---- C:\Windows\system32\nvencodemft.dll 2009-05-27 16:04:00 ----A---- C:\Windows\system32\nvdecodemft.dll 2009-05-27 16:04:00 ----A---- C:\Windows\system32\nvd3dum.dll 2009-05-27 16:04:00 ----A---- C:\Windows\system32\nvcuvid.dll 2009-05-27 16:04:00 ----A---- C:\Windows\system32\nvcuvenc.dll 2009-05-27 16:04:00 ----A---- C:\Windows\system32\nvcuda.dll 2009-05-27 16:04:00 ----A---- C:\Windows\system32\nvcod151.dll 2009-05-27 16:04:00 ----A---- C:\Windows\system32\nvcod.dll 2009-05-27 16:04:00 ----A---- C:\Windows\system32\nvapi.dll 2009-05-27 16:04:00 ----A---- C:\Windows\system32\dpinst.exe ======List of files/folders modified in the last 3 months====== 2009-08-24 16:43:40 ----D---- C:\Program Files\PeerGuardian2 2009-08-24 16:43:37 ----D---- C:\Users\Dinesh\AppData\Roaming\LimeWire 2009-08-24 16:39:48 ----D---- C:\Windows\Temp 2009-08-24 16:20:13 ----D---- C:\Windows\system32\config 2009-08-24 16:01:46 ----AD---- C:\Windows 2009-08-24 16:01:04 ----D---- C:\Windows\system32\drivers 2009-08-24 15:59:56 ----D---- C:\Windows\system32\catroot 2009-08-24 15:58:49 ----D---- C:\Program Files\Mozilla Firefox 2009-08-24 15:58:45 ----RD---- C:\Program Files 2009-08-24 15:58:31 ----SHD---- C:\Windows\Installer 2009-08-24 15:58:09 ----D---- C:\Program Files\Java 2009-08-24 15:58:03 ----D---- C:\Windows\System32 2009-08-24 15:57:01 ----D---- C:\Program Files\Microsoft Works 2009-08-24 15:57:00 ----D---- C:\Program Files\Microsoft Office 2009-08-24 15:52:45 ----HD---- C:\ProgramData 2009-08-24 15:52:35 ----D---- C:\Windows\Registration 2009-08-24 15:52:14 ----DC---- C:\Windows\system32\DRVSTORE 2009-08-22 20:11:01 ----D---- C:\Windows\system32\catroot2 2009-08-22 17:37:03 ----D---- C:\Windows\system32\Tasks 2009-08-21 20:48:16 ----D---- C:\Users\Dinesh\AppData\Roaming\temp 2009-08-21 18:35:20 ----SHD---- C:\System Volume Information 2009-08-20 20:43:39 ----D---- C:\Users\Dinesh\AppData\Roaming\Vso 2009-08-20 20:30:49 ----D---- C:\Users\Dinesh\AppData\Roaming\uTorrent 2009-08-20 19:59:03 ----D---- C:\Users\Dinesh\AppData\Roaming\Symantec 2009-08-20 19:28:45 ----D---- C:\ProgramData\Symantec 2009-08-20 19:25:43 ----D---- C:\Program Files\Common Files\Symantec Shared 2009-08-20 01:05:57 ----D---- C:\Windows\inf 2009-08-20 01:05:51 ----D---- C:\Windows\system32\DriverStore 2009-08-19 22:49:38 ----D---- C:\Program Files\Common Files\Wise Installation Wizard 2009-08-19 21:49:40 ----D---- C:\Users\Dinesh\AppData\Roaming\SUPERAntiSpyware.com 2009-08-19 21:36:48 ----D---- C:\Windows\Downloaded Program Files 2009-08-17 19:31:26 ----D---- C:\Program Files\Common Files 2009-08-17 12:42:30 ----D---- C:\ProgramData\Acronis 2009-08-16 22:08:32 ----D---- C:\Windows\pss 2009-08-16 14:04:33 ----D---- C:\Windows\system32\LogFiles 2009-08-15 23:31:42 ----AD---- C:\ProgramData\TEMP 2009-08-14 23:07:54 ----D---- C:\Windows\system32\oobe 2009-08-11 17:13:36 ----HD---- C:\Program Files\InstallShield Installation Information 2009-08-11 17:13:36 ----D---- C:\Program Files\Sony Ericsson 2009-08-11 17:11:01 ----A---- C:\Windows\system32\deploytk.dll 2009-08-09 02:01:53 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2009-08-09 01:58:57 ----D---- C:\Program Files\Real Alternative 2009-08-09 01:58:26 ----D---- C:\Program Files\Common Files\Real 2009-08-09 01:58:25 ----D---- C:\Users\Dinesh\AppData\Roaming\Real 2009-08-08 12:17:23 ----RSD---- C:\Windows\assembly 2009-08-08 01:52:36 ----D---- C:\Windows\system32\wdi 2009-08-07 12:39:26 ----D---- C:\Windows\Downloaded Installations 2009-08-06 21:52:07 ----D---- C:\Windows\winsxs 2009-08-06 21:48:51 ----D---- C:\Program Files\K-Lite Codec Pack 2009-08-06 21:16:42 ----D---- C:\Windows\system32\WinBioDatabase 2009-08-06 21:14:44 ----D---- C:\Windows\system32\WinBioPlugIns 2009-08-06 20:44:46 ----D---- C:\Program Files\Common Files\microsoft shared 2009-07-31 18:48:06 ----D---- C:\Program Files\Microsoft Silverlight 2009-07-31 18:28:38 ----D---- C:\Users\Dinesh\AppData\Roaming\DivX 2009-07-31 18:06:40 ----D---- C:\Program Files\DivX 2009-07-31 01:25:01 ----D---- C:\Users\Dinesh\AppData\Roaming\Adobe 2009-07-31 00:11:54 ----D---- C:\Windows\system32\NDF 2009-07-30 23:24:23 ----D---- C:\ProgramData\Adobe 2009-07-30 21:51:52 ----D---- C:\Program Files\Common Files\Apple 2009-07-30 21:00:31 ----D---- C:\Users\Dinesh\AppData\Roaming\dvdcss 2009-07-30 13:42:07 ----D---- C:\Users\Dinesh\AppData\Roaming\Spotify 2009-07-29 01:25:04 ----D---- C:\Program Files\Elaborate Bytes 2009-07-28 23:46:51 ----A---- C:\Users\Dinesh\AppData\Roaming\inst.exe 2009-07-28 23:30:44 ----D---- C:\ProgramData\Sonic 2009-07-25 13:32:04 ----D---- C:\Program Files\LimeWire 2009-07-24 22:03:37 ----D---- C:\ProgramData\Apple 2009-07-23 04:50:38 ----D---- C:\Windows\Microsoft.NET 2009-07-23 04:25:21 ----D---- C:\Program Files\Internet Explorer 2009-07-23 04:25:20 ----D---- C:\Windows\system32\migration 2009-07-23 04:25:20 ----D---- C:\Windows\ehome 2009-07-23 04:03:33 ----D---- C:\ProgramData\Microsoft Help 2009-07-21 02:17:29 ----SHD---- C:\boot 2009-07-20 01:04:52 ----D---- C:\Program Files\EA GAMES 2009-07-19 19:51:19 ----D---- C:\Windows\rescache 2009-07-17 01:17:17 ----D---- C:\Program Files\Windows Photo Viewer 2009-07-17 01:17:17 ----D---- C:\Program Files\DVD Maker 2009-07-17 01:17:16 ----D---- C:\Windows\servicing 2009-07-17 01:17:16 ----D---- C:\Program Files\Windows Defender 2009-07-17 01:17:12 ----D---- C:\Windows\nb-NO 2009-07-17 01:17:10 ----D---- C:\Windows\system32\no 2009-07-17 01:17:10 ----D---- C:\Windows\system32\migwiz 2009-07-17 01:17:09 ----D---- C:\Windows\system32\nb-NO 2009-07-17 01:16:54 ----D---- C:\Windows\system32\Dism 2009-07-17 01:16:44 ----D---- C:\Windows\system32\wbem 2009-07-17 01:16:44 ----D---- C:\Windows\system32\com 2009-07-17 01:16:44 ----D---- C:\Windows\AppPatch 2009-07-16 14:25:20 ----RASH---- C:\BOOTSECT.BAK 2009-07-16 14:19:57 ----SD---- C:\Windows\system32\Microsoft 2009-07-16 10:41:34 ----SD---- C:\ProgramData\Microsoft 2009-07-16 10:24:32 ----D---- C:\Windows\Tasks 2009-07-16 10:23:14 ----D---- C:\Windows\system32\Recovery 2009-07-16 07:04:52 ----D---- C:\Windows\system32\restore 2009-07-16 06:05:01 ----D---- C:\Windows\SoftwareDistribution 2009-07-16 05:51:56 ----D---- C:\Windows\tracing 2009-07-16 05:31:11 ----RSD---- C:\Windows\Media 2009-07-16 05:22:58 ----RD---- C:\Users 2009-07-16 05:22:58 ----D---- C:\Windows\Help 2009-07-16 05:14:59 ----D---- C:\Users\Dinesh\AppData\Roaming\Ventrilo 2009-07-16 05:14:52 ----D---- C:\Users\Dinesh\AppData\Roaming\USBSafelyRemove 2009-07-16 05:14:52 ----D---- C:\Users\Dinesh\AppData\Roaming\Template 2009-07-16 05:14:52 ----D---- C:\Users\Dinesh\AppData\Roaming\Teleca 2009-07-16 05:14:52 ----D---- C:\Users\Dinesh\AppData\Roaming\TeamViewer 2009-07-16 05:14:52 ----D---- C:\Users\Dinesh\AppData\Roaming\Stardock 2009-07-16 05:14:51 ----D---- C:\Users\Dinesh\AppData\Roaming\Sports Interactive 2009-07-16 05:14:50 ----D---- C:\Users\Dinesh\AppData\Roaming\SPORE 2009-07-16 05:14:49 ----RHD---- C:\Users\Dinesh\AppData\Roaming\SecuROM 2009-07-16 05:14:49 ----D---- C:\Users\Dinesh\AppData\Roaming\Sony Ericsson 2009-07-16 05:14:49 ----D---- C:\Users\Dinesh\AppData\Roaming\Safer Networking 2009-07-16 05:14:47 ----D---- C:\Users\Dinesh\AppData\Roaming\PPStream 2009-07-16 05:14:47 ----D---- C:\Users\Dinesh\AppData\Roaming\Parental Scanner 2009-07-16 05:14:47 ----D---- C:\Users\Dinesh\AppData\Roaming\Orbit 2009-07-16 05:14:46 ----D---- C:\Users\Dinesh\AppData\Roaming\Opera 2009-07-16 05:14:45 ----D---- C:\Users\Dinesh\AppData\Roaming\Nero 2009-07-16 05:14:45 ----D---- C:\Users\Dinesh\AppData\Roaming\MozillaControl 2009-07-16 05:14:45 ----D---- C:\Users\Dinesh\AppData\Roaming\Mozilla Firefox 2009-07-16 05:14:41 ----D---- C:\Users\Dinesh\AppData\Roaming\Mozilla 2009-07-16 05:14:37 ----D---- C:\Users\Dinesh\AppData\Roaming\MessengerGadget 2009-07-16 05:14:37 ----D---- C:\Users\Dinesh\AppData\Roaming\Media Player Classic 2009-07-16 05:14:37 ----D---- C:\Users\Dinesh\AppData\Roaming\Manager 2009-07-16 05:14:36 ----D---- C:\Users\Dinesh\AppData\Roaming\Malwarebytes 2009-07-16 05:14:35 ----D---- C:\Users\Dinesh\AppData\Roaming\Macromedia 2009-07-16 05:14:28 ----D---- C:\Users\Dinesh\AppData\Roaming\Leadertech 2009-07-16 05:14:28 ----D---- C:\Users\Dinesh\AppData\Roaming\Kristanix Software 2009-07-16 05:14:28 ----D---- C:\Users\Dinesh\AppData\Roaming\iPhoneRingToneMaker 2009-07-16 05:14:28 ----D---- C:\Users\Dinesh\AppData\Roaming\InstallShield 2009-07-16 05:14:28 ----D---- C:\Users\Dinesh\AppData\Roaming\Identities 2009-07-16 05:14:28 ----D---- C:\Users\Dinesh\AppData\Roaming\HP 2009-07-16 05:14:28 ----D---- C:\Users\Dinesh\AppData\Roaming\Hewlett-Packard 2009-07-16 05:14:28 ----D---- C:\Users\Dinesh\AppData\Roaming\gtopala 2009-07-16 05:14:28 ----D---- C:\Users\Dinesh\AppData\Roaming\Google 2009-07-16 05:14:28 ----D---- C:\Users\Dinesh\AppData\Roaming\FrostWire 2009-07-16 05:14:28 ----D---- C:\Users\Dinesh\AppData\Roaming\FlashGet 2009-07-16 05:14:27 ----D---- C:\Users\Dinesh\AppData\Roaming\Download Manager 2009-07-16 05:14:27 ----D---- C:\Users\Dinesh\AppData\Roaming\Desktopicon 2009-07-16 05:14:27 ----D---- C:\Users\Dinesh\AppData\Roaming\Desktop Software 2009-07-16 05:14:27 ----D---- C:\Users\Dinesh\AppData\Roaming\DAEMON Tools 2009-07-16 05:14:27 ----D---- C:\Users\Dinesh\AppData\Roaming\CyberLink 2009-07-16 05:14:27 ----D---- C:\Users\Dinesh\AppData\Roaming\CoreFTP 2009-07-16 05:14:27 ----D---- C:\Users\Dinesh\AppData\Roaming\BinarySense 2009-07-16 05:14:27 ----D---- C:\Users\Dinesh\AppData\Roaming\Apple Computer 2009-07-16 05:13:48 ----SHD---- C:\Users\Dinesh\AppData\Roaming\.# 2009-07-16 04:54:04 ----D---- C:\Windows\WindowsMobile 2009-07-16 04:54:04 ----D---- C:\Windows\twain_32 2009-07-16 04:54:03 ----D---- C:\Windows\system32\XPSViewer 2009-07-16 04:54:03 ----D---- C:\Windows\system32\xlive 2009-07-16 04:54:03 ----D---- C:\Windows\system32\winrm 2009-07-16 04:54:03 ----D---- C:\Windows\system32\WCN 2009-07-16 04:54:03 ----D---- C:\Windows\system32\sysprep 2009-07-16 04:53:48 ----D---- C:\Windows\system32\slmgr 2009-07-16 04:53:48 ----D---- C:\Windows\system32\RemInst 2009-07-16 04:53:48 ----D---- C:\Windows\system32\Printing_Admin_Scripts 2009-07-16 04:53:47 ----D---- C:\Windows\system32\oldcatroot2 2009-07-16 04:53:46 ----D---- C:\Windows\system32\MUI 2009-07-16 04:53:46 ----D---- C:\Windows\system32\Macromed 2009-07-16 04:53:46 ----D---- C:\Windows\system32\Lang 2009-07-16 04:53:46 ----D---- C:\Windows\system32\inetsrv 2009-07-16 04:53:45 ----D---- C:\Windows\system32\Futuremark 2009-07-16 04:53:45 ----D---- C:\Windows\system32\en-US 2009-07-16 04:53:42 ----D---- C:\Windows\system32\Branding 2009-07-16 04:53:42 ----D---- C:\Windows\system32\Boot 2009-07-16 04:53:42 ----D---- C:\Windows\system32\AGEIA 2009-07-16 04:53:41 ----D---- C:\Windows\system32\Adobe 2009-07-16 04:53:34 ----D---- C:\Windows\system 2009-07-16 04:53:34 ----D---- C:\Windows\SoftwareDistribution.old 2009-07-16 04:53:32 ----D---- C:\Windows\SMINST 2009-07-16 04:53:29 ----D---- C:\Windows\ShellNew 2009-07-16 04:53:27 ----D---- C:\Windows\PolicyDefinitions 2009-07-16 04:53:27 ----D---- C:\Windows\nap 2009-07-16 04:53:22 ----D---- C:\Windows\Logs 2009-07-16 04:53:22 ----D---- C:\Windows\LiveKernelReports 2009-07-16 04:53:04 ----D---- C:\Windows\IME 2009-07-16 04:52:58 ----RSD---- C:\Windows\Fonts 2009-07-16 04:52:42 ----D---- C:\Windows\DigitalLocker 2009-07-16 04:52:42 ----D---- C:\Windows\Cursors 2009-07-16 04:52:41 ----D---- C:\Windows\CtDrvInstall 2009-07-16 04:52:41 ----D---- C:\Windows\Boot 2009-07-16 04:52:32 ----HD---- C:\ProgramData\{F0297D39-7A45-442F-AFF5-271488E85934} 2009-07-16 04:52:31 ----D---- C:\ProgramData\Zabersoft 2009-07-16 04:52:31 ----D---- C:\ProgramData\WLInstaller 2009-07-16 04:52:31 ----D---- C:\ProgramData\vsosdk 2009-07-16 04:52:31 ----D---- C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} 2009-07-16 04:52:31 ----D---- C:\ProgramData\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3} 2009-07-16 04:52:30 ----D---- C:\ProgramData\VIZ_MPS 2009-07-16 04:52:30 ----D---- C:\ProgramData\USBSRService 2009-07-16 04:52:30 ----D---- C:\ProgramData\TVManager 2009-07-16 04:52:30 ----D---- C:\ProgramData\Symantec Temporary Files 2009-07-16 04:52:30 ----D---- C:\ProgramData\SUPERAntiSpyware.com 2009-07-16 04:52:30 ----D---- C:\ProgramData\Stardock 2009-07-16 04:52:28 ----D---- C:\ProgramData\Spybot - Search & Destroy 2009-07-16 04:52:28 ----D---- C:\ProgramData\Sony Ericsson 2009-07-16 04:52:28 ----D---- C:\ProgramData\RT_Multiplayer 2009-07-16 04:52:27 ----D---- C:\ProgramData\Roxio 2009-07-16 04:52:27 ----D---- C:\ProgramData\RoboForm 2009-07-16 04:52:27 ----D---- C:\ProgramData\NVIDIA 2009-07-16 04:52:18 ----D---- C:\ProgramData\Nero 2009-07-16 04:52:18 ----D---- C:\ProgramData\Mobilt Bredbånd 2009-07-16 04:52:18 ----D---- C:\ProgramData\Mobile Broadband 2009-07-16 04:51:55 ----D---- C:\ProgramData\Messenger Plus! 2009-07-16 04:51:55 ----D---- C:\ProgramData\Malwarebytes 2009-07-16 04:51:55 ----D---- C:\ProgramData\Local 2009-07-16 04:51:55 ----D---- C:\ProgramData\LightScribe 2009-07-16 04:51:55 ----D---- C:\ProgramData\Lavasoft 2009-07-16 04:51:54 ----D---- C:\ProgramData\HP 2009-07-16 04:51:54 ----D---- C:\ProgramData\Hewlett-Packard 2009-07-16 04:51:53 ----D---- C:\ProgramData\Google 2009-07-16 04:51:53 ----D---- C:\ProgramData\FLEXnet 2009-07-16 04:51:53 ----D---- C:\ProgramData\Electronic Arts 2009-07-16 04:51:53 ----D---- C:\ProgramData\Elaborate Bytes 2009-07-16 04:51:53 ----D---- C:\ProgramData\CyberLink 2009-07-16 04:51:52 ----HD---- C:\ProgramData\CanonBJ 2009-07-16 04:51:52 ----D---- C:\ProgramData\BVRP Software 2009-07-16 04:51:52 ----D---- C:\ProgramData\Brother 2009-07-16 04:51:52 ----D---- C:\ProgramData\Apple Computer 2009-07-16 04:51:41 ----HD---- C:\Program Files\Zero G Registry 2009-07-16 04:51:41 ----D---- C:\Program Files\Windows Sidebar 2009-07-16 04:51:40 ----D---- C:\Program Files\Windows Photo Gallery 2009-07-16 04:51:40 ----D---- C:\Program Files\Windows Media Player 2009-07-16 04:51:40 ----D---- C:\Program Files\Windows Mail 2009-07-16 04:51:40 ----D---- C:\Program Files\Windows Live Safety Center 2009-07-16 04:51:39 ----D---- C:\Program Files\Windows Live 2009-07-16 04:51:38 ----D---- C:\Program Files\Windows Journal 2009-07-16 04:51:38 ----D---- C:\Program Files\Windows Collaboration 2009-07-16 04:51:38 ----D---- C:\Program Files\Windows Calendar 2009-07-16 04:51:33 ----D---- C:\Program Files\VSO 2009-07-16 04:51:26 ----D---- C:\Program Files\Vizky 2009-07-16 04:51:16 ----D---- C:\Program Files\VideoLAN 2009-07-16 04:51:13 ----D---- C:\Program Files\Ventrilo 2009-07-16 04:51:12 ----D---- C:\Program Files\uTorrent 2009-07-16 04:51:07 ----D---- C:\Program Files\Telenor 2009-07-16 04:50:34 ----D---- C:\Program Files\Steam 2009-07-16 04:49:56 ----D---- C:\Program Files\Spotify 2009-07-16 04:49:31 ----D---- C:\Program Files\Roxio 2009-07-16 04:49:30 ----D---- C:\Program Files\RivaTuner v2.24 2009-07-16 04:49:27 ----D---- C:\Program Files\Recuva 2009-07-16 04:48:56 ----D---- C:\Program Files\Online Services 2009-07-16 04:48:55 ----D---- C:\Program Files\Norton 360 2009-07-16 04:48:48 ----D---- C:\Program Files\Nero 2009-07-16 04:48:48 ----D---- C:\Program Files\MSBuild 2009-07-16 04:48:41 ----D---- C:\Program Files\Microsoft.NET 2009-07-16 04:48:29 ----D---- C:\Program Files\Microsoft Visual Studio 8 2009-07-16 04:48:28 ----D---- C:\Program Files\Microsoft Visual Studio 2009-07-16 04:47:30 ----D---- C:\Program Files\Microsoft Games 2009-07-16 04:47:30 ----D---- C:\Program Files\Microsoft 2009-07-16 04:47:28 ----D---- C:\Program Files\Messenger Plus! Live 2009-07-16 04:46:26 ----D---- C:\Program Files\Intel 2009-07-16 04:46:23 ----D---- C:\Program Files\HPQ 2009-07-16 04:45:24 ----D---- C:\Program Files\HP 2009-07-16 04:45:16 ----D---- C:\Program Files\Hewlett-Packard 2009-07-16 04:41:19 ----D---- C:\Program Files\Google 2009-07-16 04:41:19 ----D---- C:\Program Files\Fingerprint Sensor 2009-07-16 04:41:19 ----D---- C:\Program Files\filehippo.com 2009-07-16 04:41:16 ----D---- C:\Program Files\EasyBits 2009-07-16 04:41:11 ----D---- C:\Program Files\Creative 2009-07-16 04:38:06 ----SHDC---- C:\Program Files\Common Files\WindowsLiveInstaller 2009-07-16 04:38:06 ----D---- C:\Program Files\Conduit 2009-07-16 04:38:05 ----D---- C:\Program Files\Common Files\Windows Live 2009-07-16 04:38:05 ----D---- C:\Program Files\Common Files\Teleca Shared 2009-07-16 04:38:04 ----D---- C:\Program Files\Common Files\System 2009-07-16 04:38:03 ----D---- C:\Program Files\Common Files\SureThing Shared 2009-07-16 04:38:03 ----D---- C:\Program Files\Common Files\Steam 2009-07-16 04:38:03 ----D---- C:\Program Files\Common Files\Sonic Shared 2009-07-16 04:38:03 ----D---- C:\Program Files\Common Files\Roxio Shared 2009-07-16 04:37:39 ----D---- C:\Program Files\Common Files\PX Storage Engine 2009-07-16 04:37:39 ----D---- C:\Program Files\Common Files\Nero 2009-07-16 04:37:28 ----D---- C:\Program Files\Common Files\Macrovision Shared 2009-07-16 04:37:27 ----D---- C:\Program Files\Common Files\Java 2009-07-16 04:37:26 ----D---- C:\Program Files\Common Files\InstallShield 2009-07-16 04:37:25 ----D---- C:\Program Files\Common Files\HP 2009-07-16 04:37:25 ----D---- C:\Program Files\Common Files\Futuremark Shared 2009-07-16 04:37:25 ----D---- C:\Program Files\Common Files\DivX Shared 2009-07-16 04:37:24 ----D---- C:\Program Files\Common Files\DESIGNER 2009-07-16 04:37:11 ----D---- C:\Windows\system32\CodeIntegrity 2009-07-16 04:36:53 ----D---- C:\Program Files\Common Files\Adobe 2009-07-16 04:35:26 ----D---- C:\Program Files\CCleaner 2009-07-16 04:35:26 ----D---- C:\Program Files\CamStudio 2009-07-16 04:35:22 ----D---- C:\Program Files\Brother 2009-07-16 04:35:21 ----D---- C:\Program Files\Bonjour 2009-07-16 04:35:20 ----D---- C:\Program Files\AviSynth 2.5 2009-07-16 04:35:20 ----D---- C:\Program Files\AVG 2009-07-16 04:35:20 ----D---- C:\Program Files\Avanquest update 2009-07-16 04:35:19 ----D---- C:\Program Files\Apple Software Update 2009-07-16 04:35:19 ----D---- C:\Program Files\AGEIA Technologies 2009-07-16 04:35:07 ----D---- C:\Program Files\Adobe 2009-07-16 04:33:55 ----D---- C:\Program Files\7-Zip 2009-07-16 04:33:54 ----D---- C:\Program Files\${MOZILLA_ACTIVEX_DIR_NAME} 2009-07-16 04:30:37 ----D---- C:\Windows\debug 2009-07-16 04:28:15 ----D---- C:\Windows\CSC 2009-07-16 02:29:00 ----D---- C:\SwSetup 2009-07-04 08:41:26 ----D---- C:\.jagex_cache_32 2009-06-28 03:03:21 ----A---- C:\Windows\DIFxAPI.dll 2009-06-13 23:44:50 ----D---- C:\NVIDIA 2009-06-07 12:17:39 ----D---- C:\Program Files\Graboid 2009-05-28 17:33:59 ----A---- C:\Windows\win.ini Endret 26. august 2009 av WheelMan la huuuuge codetag i spoiler Lenke til kommentar
snippsat Skrevet 26. august 2009 Del Skrevet 26. august 2009 (endret) Det ser bra ut,loggen viser ikke noe malware som kjører. MBAM fjernet nok grumset du hadde. Sjekk om software er oppdatert Secunia Endret 26. august 2009 av SNIPPSAT Lenke til kommentar
DnS94 Skrevet 26. august 2009 Forfatter Del Skrevet 26. august 2009 (endret) Det ser bra ut,loggen viser ikke noe malware som kjører.MBAM fjernet nok grumset du hadde. Sjekk om software er oppdatert Secunia Åja men jeg har alltid trodd det jeg siden Windows Update har aldri funket og jeg hadde søkt litt rundt om kring å det stod at det var PGA den og jeg får fortsatt ikke opptatert Win har Win7 og Error koden er : Kode 80072EE2 og jeg kan ikke laste ned noe som helst fra Microsoft men det funker f.eks når jeg drar til en kompis og kobler til internetten hans så funker alt helt vanlig null problem men hjemme så funker det ikke .... så om du kunne hjelpe meg med det så ville jeg blitt glad. Endret 29. august 2009 av dinesh Lenke til kommentar
DnS94 Skrevet 29. august 2009 Forfatter Del Skrevet 29. august 2009 HJELP?!?!?!??!?!?!!??!?!? Lenke til kommentar
Pizzaen Skrevet 30. august 2009 Del Skrevet 30. august 2009 (endret) Sitat fra et annet forum med samme feilkode: Write this in the command promt:1. proxycfg -d (to clear proxy cache) 2. net stop wuauserv (to stop Automatic updates service) Using Windows Explorer 3. Delete all files and folders in C:\WINDOWS\SoftwareDistribution (your windows folder may vary) Again using command prompt 4. net start wuauserv (to start Automatic updates service) Endret 30. august 2009 av Pizzaen Lenke til kommentar
DnS94 Skrevet 30. august 2009 Forfatter Del Skrevet 30. august 2009 Sitat fra et annet forum med samme feilkode:Write this in the command promt:1. proxycfg -d (to clear proxy cache) 2. net stop wuauserv (to stop Automatic updates service) Using Windows Explorer 3. Delete all files and folders in C:\WINDOWS\SoftwareDistribution (your windows folder may vary) Again using command prompt 4. net start wuauserv (to start Automatic updates service) Takk for at du prøvde men det funka ikke.... men når jeg søker med MBAM så er den Trojanen der fortsatt ?!? jeg forstår ikke noe som helst... Lenke til kommentar
Anbefalte innlegg
Opprett en konto eller logg inn for å kommentere
Du må være et medlem for å kunne skrive en kommentar
Opprett konto
Det er enkelt å melde seg inn for å starte en ny konto!
Start en kontoLogg inn
Har du allerede en konto? Logg inn her.
Logg inn nå