RRT Enterprise Edition v5.0.0.7 - Demo Mode :: Monitoring...

Log file for Admini strator - myRTID: 000000000(on 7/27/2011 8:44:39 AM) Please send this file to a computer techie for analysis, mostly, some one at Ser giwa.com -----------------Smart Mode OFF -----------------Running Processes: -----------------C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe C:\Program Files\Classroom Spy Pro\bin\csagtprosvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe C:\Program Files\Classroom Spy Pro\bin\csagtpro.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\system32\igfxsrvc.exe C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\uTorrent\uTorrent.exe C:\Documents and Settings\Administrator\Application Data\taskhost.exe C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe C:\Program Files\WinZip\WZQKPICK.EXE C:\PROGRA~1\Yahoo!\Messenger\ymsgr_tray.exe C:\Program Files\Nero\Nero 7\Core\nero.exe E:\RRT.exe -----------------Startup items: -----------------C:\WINDOWS\system32\ctfmon.exe C:\Program Files\uTorrent\uTorrent.exe C:\Documents and Settings\Administrator\Application Data\taskhost.exe C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe C:\PROGRA~1\Yahoo!\Messenger\YahooMessenger.exe C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\U pdate\GoogleUpdate.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\Documents and Settings\Administrator\Application Data\taskhost.exe C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe E:\RRT.exe

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\desktop.ini -----------------C:\ -----------------C:\Ghost11.5.0.2165.ima C:\NG115.bin C:\NG115.sys C:\Presentation1.jpg -----------------Smart Mode ON -----------------Running Processes: -----------------Potentially Dangerous File Found - Buy to reveal and remove! -----------------Startup items: -----------------Potentially Dangerous Startup Item Found - Buy to reveal and remove! Potentially Dangerous Startup Item Found - Buy to reveal and remove! -----------------Files on common folders: -----------------C:\ -----------------Potentially Dangerous File Found - Buy to reveal and remove! Potentially Dangerous File Found - Buy to reveal and remove! -----------------C:\WINDOWS\ -----------------Nothing found! -----------------C:\WINDOWS\System -----------------Nothing found! -----------------C:\WINDOWS\system32\ -----------------Nothing found! -----------------C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ -----------------Nothing found! -----------------C:\Documents and Settings\Administrator\Start Menu\Programs\Startup -----------------Nothing found! -----------------C:\Documents and Settings\Administrator\Desktop -----------------Nothing found! -----------------Database: -----------------Database is empty! -----------------End of file -----------------Log Serial Number : 0-18CA57B8-BB63DA60-F939A61F Please send this file to a computer techie for analysis, mostly, some one at Ser giwa.com