Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
ochromeny pc
Moderátor: Moderátoři
Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: ochromeny pc
Záleží na tom, jestli problém přetrvává - zdá se, že jsi v normálním režimu
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: ochromeny pc
Ještě se podívej do Správce úloh (Ctrl+Alt+Del) který soubor nejvíc zatěžuje procesor
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
Re: ochromeny pc
nejvic me tam zatezuje desktop window manager dwm.exe a taktez explorer.exe i kdyz ho nemam vubec spustenej... jinak pro jistotu prikladam dalsi rsit
btw mam tu dva nezname procesy a temi jsou csrss.exe a nvvsvc.exe nevite co to je???
Logfile of random's system information tool 1.09 (written by random/random)
Run by halo 1 at 2011-09-26 15:17:21
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 86 GB (61%) free of 141 GB
Total RAM: 2046 MB (53% free)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2009-12-18 61888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2011-09-23 1111320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2011-02-16 325408]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2011-09-23 1968920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-16 305328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-04-15 1164680]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll [2011-08-16 1007160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-16 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-16 305328]
{A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2011-09-23 1968920]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPStart"=C:\Program Files\Synaptics\SynTP\SynTPStart.exe [2007-09-15 102400]
"SMSERIAL"=C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2007-01-17 634880]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-03-09 4390912]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-15 178712]
"QPService"=C:\Program Files\HP\QuickPlay\QPService.exe [2007-10-01 181544]
"QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2007-09-19 202032]
"OnScreenDisplay"=C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe [2007-09-04 554320]
"UCam_Menu"=C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [2007-08-17 218408]
"HP Health Check Scheduler"=c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-06-16 75008]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2007-09-13 480560]
"WAWifiMessage"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe [2007-01-09 311296]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-10-03 13826664]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2011-09-23 2048352]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisor"=C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [2007-10-02 1783136]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-05-22 68856]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-05-26 15147400]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.l3codecp"=l3codecp.acm
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2011-09-26 13:43:41 ----D---- C:\Windows\temp
2011-09-26 13:43:39 ----A---- C:\ComboFix.txt
2011-09-26 13:35:25 ----D---- C:\$RECYCLE.BIN
2011-09-26 13:22:38 ----D---- C:\zmije2.com
2011-09-26 13:05:44 ----D---- C:\Users\halo 1\AppData\Roaming\Malwarebytes
2011-09-26 13:05:17 ----D---- C:\ProgramData\Malwarebytes
2011-09-26 13:05:17 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2011-09-26 13:05:14 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-09-26 13:05:14 ----A---- C:\Windows\system32\drivers\mbam.sys
2011-09-26 10:59:16 ----ASH---- C:\hiberfil.sys
2011-09-26 10:13:06 ----A---- C:\Windows\system32\nvvsvc.exe
2011-09-26 09:54:36 ----A---- C:\Windows\system32\drivers\afd.sys
2011-09-26 09:52:22 ----D---- C:\zmije.com20474z
2011-09-26 09:51:20 ----A---- C:\Windows\zip.exe
2011-09-26 09:51:20 ----A---- C:\Windows\SWSC.exe
2011-09-26 09:51:20 ----A---- C:\Windows\SWREG.exe
2011-09-26 09:51:20 ----A---- C:\Windows\sed.exe
2011-09-26 09:51:20 ----A---- C:\Windows\PEV.exe
2011-09-26 09:51:20 ----A---- C:\Windows\NIRCMD.exe
2011-09-26 09:51:20 ----A---- C:\Windows\MBR.exe
2011-09-26 09:51:20 ----A---- C:\Windows\grep.exe
2011-09-26 09:51:10 ----D---- C:\zmije.com
2011-09-26 09:51:10 ----D---- C:\Windows\ERDNT
2011-09-26 09:50:08 ----D---- C:\Qoobox
2011-09-24 12:36:32 ----A---- C:\Windows\ntbtlog.txt
2011-09-24 12:16:44 ----D---- C:\Program Files\trend micro
2011-09-24 12:16:43 ----D---- C:\rsit
2011-09-24 00:27:06 ----D---- C:\Program Files\Microsoft Security Client
2011-09-23 20:53:03 ----D---- C:\$AVG8.VAULT$
2011-09-23 19:44:26 ----A---- C:\Windows\system32\drivers\avgtdix.sys
2011-09-23 19:44:26 ----A---- C:\Windows\system32\avgrsstx.dll
2011-09-23 19:43:44 ----A---- C:\Windows\system32\drivers\avgldx86.sys
2011-09-23 19:43:42 ----A---- C:\Windows\system32\drivers\avgmfx86.sys
2011-09-23 19:43:41 ----D---- C:\Windows\system32\drivers\Avg
2011-09-23 19:43:32 ----D---- C:\ProgramData\avg8
2011-09-23 16:55:58 ----HD---- C:\ProgramData\Common Files
======List of files/folders modified in the last 1 month======
2011-09-26 15:16:21 ----D---- C:\Users\halo 1\AppData\Roaming\Skype
2011-09-26 13:43:42 ----D---- C:\Windows\system32\drivers
2011-09-26 13:43:41 ----D---- C:\Windows
2011-09-26 13:37:28 ----A---- C:\Windows\system.ini
2011-09-26 13:36:08 ----D---- C:\Windows\Prefetch
2011-09-26 13:35:21 ----D---- C:\Windows\system32\drivers\etc
2011-09-26 13:33:29 ----D---- C:\Windows\system32\config
2011-09-26 13:32:30 ----D---- C:\Windows\System32
2011-09-26 13:29:53 ----D---- C:\Windows\AppPatch
2011-09-26 13:29:51 ----D---- C:\Program Files\Common Files
2011-09-26 13:05:17 ----D---- C:\ProgramData
2011-09-26 13:05:14 ----RD---- C:\Program Files
2011-09-26 11:03:55 ----D---- C:\Windows\inf
2011-09-26 11:03:41 ----D---- C:\Windows\Minidump
2011-09-26 09:54:24 ----SHDC---- C:\Windows\$NtUninstallKB3255$
2011-09-26 09:41:01 ----D---- C:\Windows\system32\catroot2
2011-09-25 15:51:22 ----SHD---- C:\System Volume Information
2011-09-25 15:12:24 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-09-25 08:50:09 ----D---- C:\Windows\Tasks
2011-09-24 11:56:18 ----SD---- C:\Users\halo 1\AppData\Roaming\Microsoft
2011-09-24 10:59:35 ----D---- C:\Windows\system32\Tasks
2011-09-24 10:42:04 ----SHD---- C:\Windows\Installer
2011-09-24 10:41:54 ----D---- C:\Program Files\Windows Sidebar
2011-09-24 00:27:51 ----D---- C:\Windows\system32\catroot
2011-09-24 00:27:45 ----SD---- C:\ProgramData\Microsoft
2011-09-24 00:26:55 ----D---- C:\Windows\winsxs
2011-09-24 00:03:09 ----D---- C:\ProgramData\MFAData
2011-09-23 19:04:53 ----HD---- C:\Windows\system32\GroupPolicy
2011-09-23 17:08:39 ----D---- C:\Program Files\AVG
2011-09-23 14:14:21 ----D---- C:\ProgramData\Google Updater
2011-09-21 19:26:37 ----D---- C:\Windows\LiveKernelReports
2011-09-15 03:05:27 ----D---- C:\ProgramData\Microsoft Help
2011-09-15 03:03:16 ----A---- C:\Windows\system32\mrt.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2008-04-15 312344]
R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\Windows\System32\Drivers\avgldx86.sys [2011-09-23 335240]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\Windows\System32\Drivers\avgmfx86.sys [2011-09-23 27784]
R1 AvgTdiX;AVG Free8 Network Redirector; C:\Windows\System32\Drivers\avgtdix.sys [2011-09-23 108552]
R2 {22D78859-9CE9-4B77-BF18-AC83E81A9263};{22D78859-9CE9-4B77-BF18-AC83E81A9263}; \??\C:\Program Files\HP\QuickPlay\000.fcl [2007-10-01 39408]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-24 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-03-22 37376]
R3 catchme;catchme; \??\C:\zmije2.com\catchme.sys []
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
R3 HpqRemHid;HP Remote Control HID Device; C:\Windows\system32\DRIVERS\HpqRemHid.sys [2007-07-11 7168]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-03-12 1747936]
R3 NETw4v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-06-28 2222080]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-10-03 9905096]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-09-18 98816]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-19 88576]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2007-01-17 983936]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-09-15 191408]
R3 usbvideo;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016]
S3 BCM43XV;Broadcom Extensible 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2006-11-02 464384]
S3 dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-19 131584]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-19 16384]
S3 Dot4Scan;Scan Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Scan.sys [2008-01-19 10752]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-19 36864]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 E100B;Intel(R) PRO Adapter Driver; C:\Windows\system32\DRIVERS\e100b325.sys [2006-11-02 163328]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2008-03-13 57536]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2008-03-13 72000]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2006-11-02 987648]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2006-10-19 1380864]
S3 mbr;mbr; \??\C:\Users\HALO1~1\AppData\Local\Temp\mbr.sys []
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 winachsf;winachsf; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2006-11-02 654336]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-19 39936]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-10-03 219752]
S2 avg8emc;AVG Free8 E-mail Scanner; C:\PROGRA~1\AVG\AVG8\avgemc.exe [2011-09-23 908056]
S3 Com4Qlb;Com4Qlb; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe [2007-03-05 110592]
S3 GameConsoleService;GameConsoleService; C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe [2007-07-24 181800]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
-----------------EOF-----------------
btw mam tu dva nezname procesy a temi jsou csrss.exe a nvvsvc.exe nevite co to je???
Logfile of random's system information tool 1.09 (written by random/random)
Run by halo 1 at 2011-09-26 15:17:21
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 86 GB (61%) free of 141 GB
Total RAM: 2046 MB (53% free)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2009-12-18 61888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2011-09-23 1111320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2011-02-16 325408]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2011-09-23 1968920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-16 305328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-04-15 1164680]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll [2011-08-16 1007160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-16 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-16 305328]
{A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2011-09-23 1968920]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPStart"=C:\Program Files\Synaptics\SynTP\SynTPStart.exe [2007-09-15 102400]
"SMSERIAL"=C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2007-01-17 634880]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-03-09 4390912]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-15 178712]
"QPService"=C:\Program Files\HP\QuickPlay\QPService.exe [2007-10-01 181544]
"QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2007-09-19 202032]
"OnScreenDisplay"=C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe [2007-09-04 554320]
"UCam_Menu"=C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [2007-08-17 218408]
"HP Health Check Scheduler"=c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-06-16 75008]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2007-09-13 480560]
"WAWifiMessage"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe [2007-01-09 311296]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-10-03 13826664]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2011-09-23 2048352]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisor"=C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [2007-10-02 1783136]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-05-22 68856]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-05-26 15147400]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.l3codecp"=l3codecp.acm
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2011-09-26 13:43:41 ----D---- C:\Windows\temp
2011-09-26 13:43:39 ----A---- C:\ComboFix.txt
2011-09-26 13:35:25 ----D---- C:\$RECYCLE.BIN
2011-09-26 13:22:38 ----D---- C:\zmije2.com
2011-09-26 13:05:44 ----D---- C:\Users\halo 1\AppData\Roaming\Malwarebytes
2011-09-26 13:05:17 ----D---- C:\ProgramData\Malwarebytes
2011-09-26 13:05:17 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2011-09-26 13:05:14 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-09-26 13:05:14 ----A---- C:\Windows\system32\drivers\mbam.sys
2011-09-26 10:59:16 ----ASH---- C:\hiberfil.sys
2011-09-26 10:13:06 ----A---- C:\Windows\system32\nvvsvc.exe
2011-09-26 09:54:36 ----A---- C:\Windows\system32\drivers\afd.sys
2011-09-26 09:52:22 ----D---- C:\zmije.com20474z
2011-09-26 09:51:20 ----A---- C:\Windows\zip.exe
2011-09-26 09:51:20 ----A---- C:\Windows\SWSC.exe
2011-09-26 09:51:20 ----A---- C:\Windows\SWREG.exe
2011-09-26 09:51:20 ----A---- C:\Windows\sed.exe
2011-09-26 09:51:20 ----A---- C:\Windows\PEV.exe
2011-09-26 09:51:20 ----A---- C:\Windows\NIRCMD.exe
2011-09-26 09:51:20 ----A---- C:\Windows\MBR.exe
2011-09-26 09:51:20 ----A---- C:\Windows\grep.exe
2011-09-26 09:51:10 ----D---- C:\zmije.com
2011-09-26 09:51:10 ----D---- C:\Windows\ERDNT
2011-09-26 09:50:08 ----D---- C:\Qoobox
2011-09-24 12:36:32 ----A---- C:\Windows\ntbtlog.txt
2011-09-24 12:16:44 ----D---- C:\Program Files\trend micro
2011-09-24 12:16:43 ----D---- C:\rsit
2011-09-24 00:27:06 ----D---- C:\Program Files\Microsoft Security Client
2011-09-23 20:53:03 ----D---- C:\$AVG8.VAULT$
2011-09-23 19:44:26 ----A---- C:\Windows\system32\drivers\avgtdix.sys
2011-09-23 19:44:26 ----A---- C:\Windows\system32\avgrsstx.dll
2011-09-23 19:43:44 ----A---- C:\Windows\system32\drivers\avgldx86.sys
2011-09-23 19:43:42 ----A---- C:\Windows\system32\drivers\avgmfx86.sys
2011-09-23 19:43:41 ----D---- C:\Windows\system32\drivers\Avg
2011-09-23 19:43:32 ----D---- C:\ProgramData\avg8
2011-09-23 16:55:58 ----HD---- C:\ProgramData\Common Files
======List of files/folders modified in the last 1 month======
2011-09-26 15:16:21 ----D---- C:\Users\halo 1\AppData\Roaming\Skype
2011-09-26 13:43:42 ----D---- C:\Windows\system32\drivers
2011-09-26 13:43:41 ----D---- C:\Windows
2011-09-26 13:37:28 ----A---- C:\Windows\system.ini
2011-09-26 13:36:08 ----D---- C:\Windows\Prefetch
2011-09-26 13:35:21 ----D---- C:\Windows\system32\drivers\etc
2011-09-26 13:33:29 ----D---- C:\Windows\system32\config
2011-09-26 13:32:30 ----D---- C:\Windows\System32
2011-09-26 13:29:53 ----D---- C:\Windows\AppPatch
2011-09-26 13:29:51 ----D---- C:\Program Files\Common Files
2011-09-26 13:05:17 ----D---- C:\ProgramData
2011-09-26 13:05:14 ----RD---- C:\Program Files
2011-09-26 11:03:55 ----D---- C:\Windows\inf
2011-09-26 11:03:41 ----D---- C:\Windows\Minidump
2011-09-26 09:54:24 ----SHDC---- C:\Windows\$NtUninstallKB3255$
2011-09-26 09:41:01 ----D---- C:\Windows\system32\catroot2
2011-09-25 15:51:22 ----SHD---- C:\System Volume Information
2011-09-25 15:12:24 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-09-25 08:50:09 ----D---- C:\Windows\Tasks
2011-09-24 11:56:18 ----SD---- C:\Users\halo 1\AppData\Roaming\Microsoft
2011-09-24 10:59:35 ----D---- C:\Windows\system32\Tasks
2011-09-24 10:42:04 ----SHD---- C:\Windows\Installer
2011-09-24 10:41:54 ----D---- C:\Program Files\Windows Sidebar
2011-09-24 00:27:51 ----D---- C:\Windows\system32\catroot
2011-09-24 00:27:45 ----SD---- C:\ProgramData\Microsoft
2011-09-24 00:26:55 ----D---- C:\Windows\winsxs
2011-09-24 00:03:09 ----D---- C:\ProgramData\MFAData
2011-09-23 19:04:53 ----HD---- C:\Windows\system32\GroupPolicy
2011-09-23 17:08:39 ----D---- C:\Program Files\AVG
2011-09-23 14:14:21 ----D---- C:\ProgramData\Google Updater
2011-09-21 19:26:37 ----D---- C:\Windows\LiveKernelReports
2011-09-15 03:05:27 ----D---- C:\ProgramData\Microsoft Help
2011-09-15 03:03:16 ----A---- C:\Windows\system32\mrt.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2008-04-15 312344]
R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\Windows\System32\Drivers\avgldx86.sys [2011-09-23 335240]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\Windows\System32\Drivers\avgmfx86.sys [2011-09-23 27784]
R1 AvgTdiX;AVG Free8 Network Redirector; C:\Windows\System32\Drivers\avgtdix.sys [2011-09-23 108552]
R2 {22D78859-9CE9-4B77-BF18-AC83E81A9263};{22D78859-9CE9-4B77-BF18-AC83E81A9263}; \??\C:\Program Files\HP\QuickPlay\000.fcl [2007-10-01 39408]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-24 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-03-22 37376]
R3 catchme;catchme; \??\C:\zmije2.com\catchme.sys []
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
R3 HpqRemHid;HP Remote Control HID Device; C:\Windows\system32\DRIVERS\HpqRemHid.sys [2007-07-11 7168]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-03-12 1747936]
R3 NETw4v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-06-28 2222080]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-10-03 9905096]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-09-18 98816]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-19 88576]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2007-01-17 983936]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-09-15 191408]
R3 usbvideo;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016]
S3 BCM43XV;Broadcom Extensible 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2006-11-02 464384]
S3 dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-19 131584]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-19 16384]
S3 Dot4Scan;Scan Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Scan.sys [2008-01-19 10752]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-19 36864]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 E100B;Intel(R) PRO Adapter Driver; C:\Windows\system32\DRIVERS\e100b325.sys [2006-11-02 163328]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2008-03-13 57536]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2008-03-13 72000]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2006-11-02 987648]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2006-10-19 1380864]
S3 mbr;mbr; \??\C:\Users\HALO1~1\AppData\Local\Temp\mbr.sys []
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 winachsf;winachsf; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2006-11-02 654336]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-19 39936]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-10-03 219752]
S2 avg8emc;AVG Free8 E-mail Scanner; C:\PROGRA~1\AVG\AVG8\avgemc.exe [2011-09-23 908056]
S3 Com4Qlb;Com4Qlb; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe [2007-03-05 110592]
S3 GameConsoleService;GameConsoleService; C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe [2007-07-24 181800]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
-----------------EOF-----------------
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: ochromeny pc
Když něco nevím, snažím se to vygooglit 
Normálně jsou to systémové soubory + ovladač NVidie
Podezřelé soubory testuji na VT
Normálně jsou to systémové soubory + ovladač NVidie
Podezřelé soubory testuji na VT
totéž se souborem C:\Windows\system32\nvvsvc.exeKlikni na https://www.virustotal.com/cs/
klik "Procházet" > do zadávacího pole "Název souboru" jen zkopíruj:
C:\Windows\system32\drivers\afd.sys
"Send file" (pokud byl již testován, nech testovat znovu - Reanalyse)
Trpělivě vyčkej dokončení scanu dokud se neobjeví konečný výsledek např.0/41
Do fóra zkopíruj výsledný log. nebo odkaz z adresního řádku na stránku.
Pokud nebude nález stačí jen oznámit
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
Re: ochromeny pc
afd log & nvvsvc log:
afd log -------------------------------------------------
File name: afd.sys
Submission date: 2011-09-26 15:51:13 (UTC)
Current status: queued queued analysing finished
Result: 0/ 44 (0.0%)
VT Community
not reviewed
Safety score: -
Compact Print results Antivirus Version Last Update Result
AhnLab-V3 2011.09.26.00 2011.09.26 -
AntiVir 7.11.15.40 2011.09.26 -
Antiy-AVL 2.0.3.7 2011.09.26 -
Avast 4.8.1351.0 2011.09.26 -
Avast5 6.0.1289.0 2011.09.26 -
AVG 10.0.0.1190 2011.09.26 -
BitDefender 7.2 2011.09.26 -
ByteHero 1.0.0.1 2011.09.23 -
CAT-QuickHeal 11.00 2011.09.26 -
ClamAV 0.97.0.0 2011.09.26 -
Commtouch 5.3.2.6 2011.09.26 -
Comodo 10248 2011.09.26 -
DrWeb 5.0.2.03300 2011.09.26 -
Emsisoft 5.1.0.11 2011.09.26 -
eSafe 7.0.17.0 2011.09.26 -
eTrust-Vet 36.1.8581 2011.09.26 -
F-Prot 4.6.2.117 2011.09.26 -
F-Secure 9.0.16440.0 2011.09.26 -
Fortinet 4.3.370.0 2011.09.25 -
GData 22 2011.09.26 -
Ikarus T3.1.1.107.0 2011.09.26 -
Jiangmin 13.0.900 2011.09.26 -
K7AntiVirus 9.113.5184 2011.09.23 -
Kaspersky 9.0.0.837 2011.09.26 -
McAfee 5.400.0.1158 2011.09.26 -
McAfee-GW-Edition 2010.1D 2011.09.25 -
Microsoft 1.7702 2011.09.26 -
NOD32 6495 2011.09.26 -
Norman 6.07.11 2011.09.26 -
nProtect 2011-09-26.02 2011.09.26 -
Panda 10.0.3.5 2011.09.26 -
PCTools 8.0.0.5 2011.09.26 -
Prevx 3.0 2011.09.26 -
Rising 23.77.00.02 2011.09.26 -
Sophos 4.69.0 2011.09.26 -
SUPERAntiSpyware 4.40.0.1006 2011.09.26 -
Symantec 20111.2.0.82 2011.09.26 -
TheHacker 6.7.0.1.310 2011.09.25 -
TrendMicro 9.500.0.1008 2011.09.26 -
TrendMicro-HouseCall 9.500.0.1008 2011.09.26 -
VBA32 3.12.16.4 2011.09.26 -
VIPRE 10589 2011.09.26 -
ViRobot 2011.9.26.4689 2011.09.26 -
VirusBuster 14.0.234.0 2011.09.26 -
Additional informationShow all
MD5 : 48eb99503533c27ac6135648e5474457
SHA1 : dbb3495d5caf0059efc616458c7b4f0e48285dc8
SHA256: 344a83008f41aac3cdfc52efc4f2eff441971c58182597d2fbed315b3fc62137
ssdeep: 6144:nPElLNfsAFS5wLcpTDuvzOaTiASLk/Nj1h5ci:nclWAcpyXSG5c
File size : 273408 bytes
First seen: 2011-07-14 23:36:00
Last seen : 2011-09-26 15:51:13
TrID:
Win32 Executable Generic (68.0%)
Generic Win/DOS Executable (15.9%)
DOS Executable Generic (15.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
sigcheck:
publisher....: Microsoft Corporation
copyright....: (c) Microsoft Corporation. All rights reserved.
product......: Microsoft_ Windows_ Operating System
description..: Ancillary Function Driver for WinSock
original name: afd.sys
internal name: afd.sys
file version.: 6.0.6001.18639 (vistasp1_gdr.110421-0338)
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
PEInfo: PE structure information
[[ basic data ]]
entrypointaddress: 0x3B504
timedatestamp....: 0x4DB02E37 (Thu Apr 21 13:16:39 2011)
machinetype......: 0x14c (I386)
[[ 9 section(s) ]]
name, viradd, virsiz, rawdsiz, ntropy, md5
.text, 0x1000, 0xE8E4, 0xEA00, 6.50, 8a80bd59427d773d1efbe375dabbfb4f
.rdata, 0x10000, 0x167C, 0x1800, 4.24, 0b868d142e02ed0a7fdd3b2b72354d53
.data, 0x12000, 0x12C8, 0x800, 3.44, 2fb7e5fec46d2c1681579d3806b530c9
PAGE, 0x14000, 0x9F50, 0xA000, 6.51, a3e46762030298b07e3a72a884ef12c0
PAGEAFD, 0x1E000, 0x191C9, 0x19200, 6.58, cf8361ffda89d2a69204b4e3199d3d4d
PAGESAN, 0x38000, 0x2815, 0x2A00, 6.27, 75c64a1d0c2311fb557af971f2d3578f
INIT, 0x3B000, 0x2BCA, 0x2C00, 6.17, 387edc77d82f918618a303e91a4687fa
.rsrc, 0x3E000, 0x6680, 0x6800, 3.76, 2f5cc33cc267527c9e87f10065ec8dd3
.reloc, 0x45000, 0x2D68, 0x2E00, 6.77, 464aba674b9318e54243da67fe5a935f
[[ 4 import(s) ]]
ntoskrnl.exe: IoSetTopLevelIrp, FsRtlInsertExtraCreateParameter, FsRtlFreeExtraCreateParameterList, FsRtlAllocateExtraCreateParameter, FsRtlAllocateExtraCreateParameterList, ExAllocatePoolWithQuotaTag, RtlAppendUnicodeToString, RtlPrefixUnicodeString, RtlEqualUnicodeString, KeResetEvent, KeWaitForSingleObject, KeInitializeEvent, memset, ObDereferenceSecurityDescriptor, IoFreeIrp, PsReturnPoolQuota, IoCreateFile, PsChargeProcessPoolQuota, RtlCopyUnicodeString, ExAllocatePoolWithTagPriority, RtlCompareUnicodeString, MmResetDriverPaging, ExAcquireResourceExclusiveLite, ExReleaseResourceLite, IoGetCurrentProcess, MmSizeOfMdl, MmBuildMdlForNonPagedPool, IoInitializeIrp, ExRaiseStatus, PsGetProcessExitTime, IoSetIoCompletion, SeUnlockSubjectContext, SeFreePrivileges, SeAppendPrivileges, SeAccessCheck, SeLockSubjectContext, RtlMapGenericMask, IoGetFileObjectGenericMapping, ObLogSecurityDescriptor, SeAssignSecurity, PsGetCurrentProcessId, RtlEqualString, RtlInitString, IoAllocateIrp, IoBuildDeviceIoControlRequest, KeSetEvent, ProbeForWrite, ExEventObjectType, ExGetPreviousMode, ExRaiseAccessViolation, ExInitializeResourceLite, ExDeleteResourceLite, ZwOpenKey, ZwCreateKey, ZwQueryValueKey, RtlAddAccessAllowedAce, RtlCreateAcl, RtlLengthSid, SeExports, ObReleaseObjectSecurity, SeSetSecurityDescriptorInfo, ExAllocatePoolWithTag, RtlLengthSecurityDescriptor, RtlSetDaclSecurityDescriptor, ObGetObjectSecurity, IoDeleteDevice, KeGetCurrentThread, ExUnregisterCallback, IoQueueWorkItem, ZwNotifyChangeKey, IoFreeWorkItem, IoCreateFileEx, IoAllocateWorkItem, IoCreateDevice, MmUserProbeAddress, DbgBreakPoint, KeReadStateEvent, KeLeaveCriticalRegion, KeEnterCriticalRegion, KePulseEvent, MmAdvanceMdl, KeBugCheckEx, ExInterlockedFlushSList, KeFlushQueuedDpcs, _aulldiv, KeSetTimerEx, KeInitializeDpc, KeInitializeTimer, MmLockPagableDataSection, ObCloseHandle, SeDeleteAccessState, SeCreateAccessState, SeQuerySecurityDescriptorInfo, KeSetTimer, MmUnlockPagableImageSection, KeRemoveQueueDpc, KeCancelTimer, _alldiv, KefReleaseSpinLockFromDpcLevel, KefAcquireSpinLockAtDpcLevel, _allmul, KeInitializeTimerEx, ExAcquireResourceSharedLite, IoThreadToProcess, PsGetCurrentProcess, MmUnmapLockedPages, ExQueueWorkItem, FsRtlMdlReadComplete, IoCancelIrp, KeDetachProcess, FsRtlMdlRead, KeAttachProcess, IoGetRequestorProcess, FsRtlCopyRead, IoQueryFileInformation, _aullrem, ObFindHandleForObject, ObOpenObjectByName, MmSystemRangeStart, KeQueryActiveProcessorCount, IoReuseIrp, RtlIntegerToUnicode, ObReferenceSecurityDescriptor, RtlAppendUnicodeStringToString, KeDelayExecutionThread, IoWriteErrorLogEntry, IoAllocateErrorLogEntry, EtwUnregister, IoWMIWriteEvent, EtwRegister, IoGetDeviceAttachmentBaseRef, KeTickCount, RtlUnwind, ExEnterCriticalRegionAndAcquireResourceShared, ExReleaseResourceAndLeaveCriticalRegion, RtlCompareMemory, memcpy, DbgPrint, IoGetTopLevelIrp, FsRtlFindExtraCreateParameter, KeGetRecommendedSharedDataAlignment, MmQuerySystemSize, MmIsThisAnNtAsSystem, ObOpenObjectByPointer, ZwClose, RtlInitUnicodeString, ExCreateCallback, ExEnterCriticalRegionAndAcquireResourceExclusive, ExInitializeNPagedLookasideList, ExRegisterCallback, RtlCreateSecurityDescriptor, MmProbeAndLockPages, MmUnlockPages, IoAllocateMdl, MmMapLockedPages, InterlockedPopEntrySList, KeQueryInterruptTime, IoBuildPartialMdl, IoGetRelatedDeviceObject, IoFileObjectType, IofCallDriver, KeInitializeApc, KeInsertQueueApc, KeAcquireInStackQueuedSpinLockAtDpcLevel, KeReleaseInStackQueuedSpinLockFromDpcLevel, ObfReferenceObject, memmove, ExFreePoolWithTag, IoAcquireCancelSpinLock, EtwWrite, ObReferenceObjectByHandle, IoReleaseCancelSpinLock, ExRaiseDatatypeMisalignment, IofCompleteRequest, InterlockedPushEntrySList, MmMapLockedPagesSpecifyCache, IoFreeMdl, ExDeleteNPagedLookasideList, ObfDereferenceObject, ExInitializeLookasideListEx, ExDeleteLookasideListEx
HAL.dll: KeReleaseInStackQueuedSpinLock, KeGetCurrentIrql, KfLowerIrql, KfRaiseIrql, KeReleaseQueuedSpinLock, KeAcquireQueuedSpinLock, KfReleaseSpinLock, KfAcquireSpinLock, KeAcquireInStackQueuedSpinLock
TDI.SYS: TdiDeregisterPnPHandlers, TdiMatchPdoWithChainedReceiveContext, TdiReturnChainedReceives, TdiCopyBufferToMdl, TdiCopyMdlToBuffer, TdiRegisterPnPHandlers
NETIO.SYS: NmrDeregisterClient, NmrWaitForClientDeregisterComplete, NsiAllocateAndGetTable, NsiFreeTable, NsiRegisterChangeNotification, NsiDeregisterChangeNotification, NsiGetAllParameters, RtlInitializeTimerWheel, NmrRegisterClient, RtlGetNextExpiredTimerWheelEntry, RtlReturnTimerWheelEntry, RtlIndicateTimerWheelEntryTimerStart, RtlCleanupTimerWheelEntry, RtlInitializeTimerWheelEntry, RtlSuspendTimerWheel, RtlCleanupTimerWheel, RtlCopyMdlToMdl, RtlCopyMdlToBuffer, NmrClientDetachProviderComplete, NmrClientAttachProvider, NmrWaitForProviderDeregisterComplete, NmrDeregisterProvider, NmrRegisterProvider, NmrProviderDetachClientComplete, NetioShutdownWorkQueue, NetioInsertWorkQueue, RtlUpdateCurrentTimerWheelTick, NetioInitializeWorkQueue
nvvsvc log ------------------------------------------------------
File name: nvvsvc.exe
Submission date: 2011-09-26 16:16:22 (UTC)
Current status: queued (#6) queued (#7) analysing finished
Result: 0/ 44 (0.0%)
VT Community
not reviewed
Safety score: -
Compact Print results Antivirus Version Last Update Result
AhnLab-V3 2011.09.26.00 2011.09.26 -
AntiVir 7.11.15.40 2011.09.26 -
Antiy-AVL 2.0.3.7 2011.09.26 -
Avast 4.8.1351.0 2011.09.26 -
Avast5 6.0.1289.0 2011.09.26 -
AVG 10.0.0.1190 2011.09.26 -
BitDefender 7.2 2011.09.26 -
ByteHero 1.0.0.1 2011.09.23 -
CAT-QuickHeal 11.00 2011.09.26 -
ClamAV 0.97.0.0 2011.09.26 -
Commtouch 5.3.2.6 2011.09.26 -
Comodo 10248 2011.09.26 -
DrWeb 5.0.2.03300 2011.09.26 -
Emsisoft 5.1.0.11 2011.09.26 -
eSafe 7.0.17.0 2011.09.26 -
eTrust-Vet 36.1.8581 2011.09.26 -
F-Prot 4.6.2.117 2011.09.26 -
F-Secure 9.0.16440.0 2011.09.26 -
Fortinet 4.3.370.0 2011.09.25 -
GData 22 2011.09.26 -
Ikarus T3.1.1.107.0 2011.09.26 -
Jiangmin 13.0.900 2011.09.26 -
K7AntiVirus 9.113.5195 2011.09.26 -
Kaspersky 9.0.0.837 2011.09.26 -
McAfee 5.400.0.1158 2011.09.26 -
McAfee-GW-Edition 2010.1D 2011.09.25 -
Microsoft 1.7702 2011.09.26 -
NOD32 6495 2011.09.26 -
Norman 6.07.11 2011.09.26 -
nProtect 2011-09-26.02 2011.09.26 -
Panda 10.0.3.5 2011.09.26 -
PCTools 8.0.0.5 2011.09.26 -
Prevx 3.0 2011.09.26 -
Rising 23.77.00.02 2011.09.26 -
Sophos 4.69.0 2011.09.26 -
SUPERAntiSpyware 4.40.0.1006 2011.09.26 -
Symantec 20111.2.0.82 2011.09.26 -
TheHacker 6.7.0.1.310 2011.09.25 -
TrendMicro 9.500.0.1008 2011.09.26 -
TrendMicro-HouseCall 9.500.0.1008 2011.09.26 -
VBA32 3.12.16.4 2011.09.26 -
VIPRE 10589 2011.09.26 -
ViRobot 2011.9.26.4689 2011.09.26 -
VirusBuster 14.0.234.0 2011.09.26 -
Additional informationShow all
MD5 : c4d17f11526f87bc762f31da5bd2580b
SHA1 : 5c3a1435e3c2832543a05552adfcec5036fb18d6
SHA256: 2e2741676407b3c23ce7c1a61a38c053f3b150713697ca94211b99a7bf601d12
ssdeep: 3072:dg4gZnmTJ2MpAI10/UfULiRa2DAocPs75YTtH6/tn8k:WzZAJgMSPs7STF6xP
File size : 219752 bytes
First seen: 2009-10-28 08:57:52
Last seen : 2011-09-26 16:16:22
TrID:
Win64 Executable Generic (59.6%)
Win32 Executable MS Visual C++ (generic) (26.2%)
Win32 Executable Generic (5.9%)
Win32 Dynamic Link Library (generic) (5.2%)
Generic Win/DOS Executable (1.3%)
sigcheck:
publisher....: NVIDIA Corporation
copyright....: (C) NVIDIA Corporation. All rights reserved.
product......: NVIDIA Driver Helper Service, Version 187.66
description..: NVIDIA Driver Helper Service, Version 187.66
original name: nvsvc32.exe
internal name: NVSVC
file version.: 8.16.11.8766
comments.....: n/a
signers......: NVIDIA Corporation
VeriSign Class 3 Code Signing 2009-2 CA
Class 3 Public Primary Certification Authority
signing date.: 20:40 03/10/2009
verified.....: -
PEInfo: PE structure information
[[ basic data ]]
entrypointaddress: 0xB05C
timedatestamp....: 0x4AC796F0 (Sat Oct 03 18:24:48 2009)
machinetype......: 0x14c (I386)
[[ 4 section(s) ]]
name, viradd, virsiz, rawdsiz, ntropy, md5
.text, 0x1000, 0x28324, 0x29000, 6.62, 77a55209cba1c653e5f6a65f764a60f5
.rdata, 0x2A000, 0x6632, 0x7000, 5.03, 29e24622bbfa3bf4128eb1a450739935
.data, 0x31000, 0x3190, 0x2000, 1.90, 0fdda452cbc77ccc0ab391a6efdca744
.rsrc, 0x35000, 0x6B8, 0x1000, 2.34, 2fedff1dd60446f78a32eb4225a5cc24
[[ 6 import(s) ]]
KERNEL32.dll: DisconnectNamedPipe, FlushFileBuffers, WriteFile, ReadFile, ResumeThread, InterlockedIncrement, ConnectNamedPipe, CreateNamedPipeW, InterlockedDecrement, CompareStringW, CompareStringA, CreateFileA, GetTimeZoneInformation, GetLocaleInfoW, WriteConsoleW, GetConsoleOutputCP, WriteConsoleA, SetStdHandle, CreateFileW, SwitchToThread, GetCommandLineW, InitializeCriticalSection, OpenEventW, DeleteCriticalSection, SetEvent, WTSGetActiveConsoleSessionId, CreateThread, GetCurrentProcess, EnterCriticalSection, LeaveCriticalSection, WaitForMultipleObjects, CloseHandle, SetLastError, GetLastError, Sleep, GetSystemDirectoryW, LoadLibraryW, GetProcAddress, FreeLibrary, CreateEventW, LocalFree, SetEnvironmentVariableA, WaitForSingleObject, IsValidCodePage, IsValidLocale, EnumSystemLocalesA, GetLocaleInfoA, InterlockedCompareExchange, GetUserDefaultLCID, TerminateProcess, UnhandledExceptionFilter, SetUnhandledExceptionFilter, IsDebuggerPresent, RaiseException, RtlUnwind, HeapFree, GetCommandLineA, GetVersionExA, HeapAlloc, GetProcessHeap, GetStartupInfoA, GetModuleHandleA, TlsGetValue, TlsAlloc, TlsSetValue, TlsFree, GetCurrentThreadId, GetCurrentThread, HeapSize, ExitProcess, GetCPInfo, GetACP, GetOEMCP, HeapDestroy, HeapCreate, VirtualFree, FatalAppExitA, VirtualAlloc, HeapReAlloc, GetStdHandle, GetModuleFileNameA, FreeEnvironmentStringsA, GetEnvironmentStrings, FreeEnvironmentStringsW, WideCharToMultiByte, GetEnvironmentStringsW, SetHandleCount, GetFileType, QueryPerformanceCounter, GetTickCount, GetCurrentProcessId, GetSystemTimeAsFileTime, SetFilePointer, GetConsoleCP, GetConsoleMode, MultiByteToWideChar, SetConsoleCtrlHandler, InterlockedExchange, LoadLibraryA, LCMapStringA, LCMapStringW, GetStringTypeA, GetStringTypeW, GetTimeFormatA, GetDateFormatA
SHLWAPI.dll: SHDeleteValueW, PathAppendW, PathFileExistsW, SHSetValueW, PathAddBackslashW
SHELL32.dll: SHGetFolderPathW, CommandLineToArgvW, SHCreateDirectoryExW
ADVAPI32.dll: RegGetValueW, RegQueryValueExW, RegCloseKey, RegEnumKeyExW, RegSetValueExW, RegOpenKeyExW, InitializeSecurityDescriptor, SetSecurityDescriptorDacl, StartServiceCtrlDispatcherW, RegisterServiceCtrlHandlerExW, SetServiceStatus, OpenProcessToken, DuplicateTokenEx, SetTokenInformation, CreateProcessAsUserW, OpenServiceW, ControlService, QueryServiceStatus, DeleteService, OpenSCManagerW, CreateServiceW, CloseServiceHandle, ConvertStringSecurityDescriptorToSecurityDescriptorW, RegDeleteValueW
RPCRT4.dll: UuidToStringW, RpcStringFreeW
ole32.dll: CoInitializeSecurity, CoInitialize
ExifTool:
file metadata
CharacterSet: Windows, Latin1
CodeSize: 167936
CompanyName: NVIDIA Corporation
EntryPoint: 0xb05c
FileDescription: NVIDIA Driver Helper Service, Version 187.66
FileFlagsMask: 0x003f
FileOS: Win32
FileSize: 215 kB
FileSubtype: 0
FileType: Win32 EXE
FileVersion: 8.16.11.8766
FileVersionNumber: 8.16.11.8766
ImageVersion: 0.0
InitializedDataSize: 49152
InternalName: NVSVC
LanguageCode: English (U.S.)
LegalCopyright: (C) NVIDIA Corporation. All rights reserved.
LinkerVersion: 8.0
MIMEType: application/octet-stream
MachineType: Intel 386 or later, and compatibles
OSVersion: 4.0
ObjectFileType: Dynamic link library
OriginalFilename: nvsvc32.exe
PEType: PE32
ProductName: NVIDIA Driver Helper Service, Version 187.66
ProductVersion: 8.16.11.8766
ProductVersionNumber: 8.16.11.8766
Subsystem: Windows GUI
SubsystemVersion: 4.0
TimeStamp: 2009:10:03 20:24:48+02:00
UninitializedDataSize: 0
afd log -------------------------------------------------
File name: afd.sys
Submission date: 2011-09-26 15:51:13 (UTC)
Current status: queued queued analysing finished
Result: 0/ 44 (0.0%)
VT Community
not reviewed
Safety score: -
Compact Print results Antivirus Version Last Update Result
AhnLab-V3 2011.09.26.00 2011.09.26 -
AntiVir 7.11.15.40 2011.09.26 -
Antiy-AVL 2.0.3.7 2011.09.26 -
Avast 4.8.1351.0 2011.09.26 -
Avast5 6.0.1289.0 2011.09.26 -
AVG 10.0.0.1190 2011.09.26 -
BitDefender 7.2 2011.09.26 -
ByteHero 1.0.0.1 2011.09.23 -
CAT-QuickHeal 11.00 2011.09.26 -
ClamAV 0.97.0.0 2011.09.26 -
Commtouch 5.3.2.6 2011.09.26 -
Comodo 10248 2011.09.26 -
DrWeb 5.0.2.03300 2011.09.26 -
Emsisoft 5.1.0.11 2011.09.26 -
eSafe 7.0.17.0 2011.09.26 -
eTrust-Vet 36.1.8581 2011.09.26 -
F-Prot 4.6.2.117 2011.09.26 -
F-Secure 9.0.16440.0 2011.09.26 -
Fortinet 4.3.370.0 2011.09.25 -
GData 22 2011.09.26 -
Ikarus T3.1.1.107.0 2011.09.26 -
Jiangmin 13.0.900 2011.09.26 -
K7AntiVirus 9.113.5184 2011.09.23 -
Kaspersky 9.0.0.837 2011.09.26 -
McAfee 5.400.0.1158 2011.09.26 -
McAfee-GW-Edition 2010.1D 2011.09.25 -
Microsoft 1.7702 2011.09.26 -
NOD32 6495 2011.09.26 -
Norman 6.07.11 2011.09.26 -
nProtect 2011-09-26.02 2011.09.26 -
Panda 10.0.3.5 2011.09.26 -
PCTools 8.0.0.5 2011.09.26 -
Prevx 3.0 2011.09.26 -
Rising 23.77.00.02 2011.09.26 -
Sophos 4.69.0 2011.09.26 -
SUPERAntiSpyware 4.40.0.1006 2011.09.26 -
Symantec 20111.2.0.82 2011.09.26 -
TheHacker 6.7.0.1.310 2011.09.25 -
TrendMicro 9.500.0.1008 2011.09.26 -
TrendMicro-HouseCall 9.500.0.1008 2011.09.26 -
VBA32 3.12.16.4 2011.09.26 -
VIPRE 10589 2011.09.26 -
ViRobot 2011.9.26.4689 2011.09.26 -
VirusBuster 14.0.234.0 2011.09.26 -
Additional informationShow all
MD5 : 48eb99503533c27ac6135648e5474457
SHA1 : dbb3495d5caf0059efc616458c7b4f0e48285dc8
SHA256: 344a83008f41aac3cdfc52efc4f2eff441971c58182597d2fbed315b3fc62137
ssdeep: 6144:nPElLNfsAFS5wLcpTDuvzOaTiASLk/Nj1h5ci:nclWAcpyXSG5c
File size : 273408 bytes
First seen: 2011-07-14 23:36:00
Last seen : 2011-09-26 15:51:13
TrID:
Win32 Executable Generic (68.0%)
Generic Win/DOS Executable (15.9%)
DOS Executable Generic (15.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
sigcheck:
publisher....: Microsoft Corporation
copyright....: (c) Microsoft Corporation. All rights reserved.
product......: Microsoft_ Windows_ Operating System
description..: Ancillary Function Driver for WinSock
original name: afd.sys
internal name: afd.sys
file version.: 6.0.6001.18639 (vistasp1_gdr.110421-0338)
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
PEInfo: PE structure information
[[ basic data ]]
entrypointaddress: 0x3B504
timedatestamp....: 0x4DB02E37 (Thu Apr 21 13:16:39 2011)
machinetype......: 0x14c (I386)
[[ 9 section(s) ]]
name, viradd, virsiz, rawdsiz, ntropy, md5
.text, 0x1000, 0xE8E4, 0xEA00, 6.50, 8a80bd59427d773d1efbe375dabbfb4f
.rdata, 0x10000, 0x167C, 0x1800, 4.24, 0b868d142e02ed0a7fdd3b2b72354d53
.data, 0x12000, 0x12C8, 0x800, 3.44, 2fb7e5fec46d2c1681579d3806b530c9
PAGE, 0x14000, 0x9F50, 0xA000, 6.51, a3e46762030298b07e3a72a884ef12c0
PAGEAFD, 0x1E000, 0x191C9, 0x19200, 6.58, cf8361ffda89d2a69204b4e3199d3d4d
PAGESAN, 0x38000, 0x2815, 0x2A00, 6.27, 75c64a1d0c2311fb557af971f2d3578f
INIT, 0x3B000, 0x2BCA, 0x2C00, 6.17, 387edc77d82f918618a303e91a4687fa
.rsrc, 0x3E000, 0x6680, 0x6800, 3.76, 2f5cc33cc267527c9e87f10065ec8dd3
.reloc, 0x45000, 0x2D68, 0x2E00, 6.77, 464aba674b9318e54243da67fe5a935f
[[ 4 import(s) ]]
ntoskrnl.exe: IoSetTopLevelIrp, FsRtlInsertExtraCreateParameter, FsRtlFreeExtraCreateParameterList, FsRtlAllocateExtraCreateParameter, FsRtlAllocateExtraCreateParameterList, ExAllocatePoolWithQuotaTag, RtlAppendUnicodeToString, RtlPrefixUnicodeString, RtlEqualUnicodeString, KeResetEvent, KeWaitForSingleObject, KeInitializeEvent, memset, ObDereferenceSecurityDescriptor, IoFreeIrp, PsReturnPoolQuota, IoCreateFile, PsChargeProcessPoolQuota, RtlCopyUnicodeString, ExAllocatePoolWithTagPriority, RtlCompareUnicodeString, MmResetDriverPaging, ExAcquireResourceExclusiveLite, ExReleaseResourceLite, IoGetCurrentProcess, MmSizeOfMdl, MmBuildMdlForNonPagedPool, IoInitializeIrp, ExRaiseStatus, PsGetProcessExitTime, IoSetIoCompletion, SeUnlockSubjectContext, SeFreePrivileges, SeAppendPrivileges, SeAccessCheck, SeLockSubjectContext, RtlMapGenericMask, IoGetFileObjectGenericMapping, ObLogSecurityDescriptor, SeAssignSecurity, PsGetCurrentProcessId, RtlEqualString, RtlInitString, IoAllocateIrp, IoBuildDeviceIoControlRequest, KeSetEvent, ProbeForWrite, ExEventObjectType, ExGetPreviousMode, ExRaiseAccessViolation, ExInitializeResourceLite, ExDeleteResourceLite, ZwOpenKey, ZwCreateKey, ZwQueryValueKey, RtlAddAccessAllowedAce, RtlCreateAcl, RtlLengthSid, SeExports, ObReleaseObjectSecurity, SeSetSecurityDescriptorInfo, ExAllocatePoolWithTag, RtlLengthSecurityDescriptor, RtlSetDaclSecurityDescriptor, ObGetObjectSecurity, IoDeleteDevice, KeGetCurrentThread, ExUnregisterCallback, IoQueueWorkItem, ZwNotifyChangeKey, IoFreeWorkItem, IoCreateFileEx, IoAllocateWorkItem, IoCreateDevice, MmUserProbeAddress, DbgBreakPoint, KeReadStateEvent, KeLeaveCriticalRegion, KeEnterCriticalRegion, KePulseEvent, MmAdvanceMdl, KeBugCheckEx, ExInterlockedFlushSList, KeFlushQueuedDpcs, _aulldiv, KeSetTimerEx, KeInitializeDpc, KeInitializeTimer, MmLockPagableDataSection, ObCloseHandle, SeDeleteAccessState, SeCreateAccessState, SeQuerySecurityDescriptorInfo, KeSetTimer, MmUnlockPagableImageSection, KeRemoveQueueDpc, KeCancelTimer, _alldiv, KefReleaseSpinLockFromDpcLevel, KefAcquireSpinLockAtDpcLevel, _allmul, KeInitializeTimerEx, ExAcquireResourceSharedLite, IoThreadToProcess, PsGetCurrentProcess, MmUnmapLockedPages, ExQueueWorkItem, FsRtlMdlReadComplete, IoCancelIrp, KeDetachProcess, FsRtlMdlRead, KeAttachProcess, IoGetRequestorProcess, FsRtlCopyRead, IoQueryFileInformation, _aullrem, ObFindHandleForObject, ObOpenObjectByName, MmSystemRangeStart, KeQueryActiveProcessorCount, IoReuseIrp, RtlIntegerToUnicode, ObReferenceSecurityDescriptor, RtlAppendUnicodeStringToString, KeDelayExecutionThread, IoWriteErrorLogEntry, IoAllocateErrorLogEntry, EtwUnregister, IoWMIWriteEvent, EtwRegister, IoGetDeviceAttachmentBaseRef, KeTickCount, RtlUnwind, ExEnterCriticalRegionAndAcquireResourceShared, ExReleaseResourceAndLeaveCriticalRegion, RtlCompareMemory, memcpy, DbgPrint, IoGetTopLevelIrp, FsRtlFindExtraCreateParameter, KeGetRecommendedSharedDataAlignment, MmQuerySystemSize, MmIsThisAnNtAsSystem, ObOpenObjectByPointer, ZwClose, RtlInitUnicodeString, ExCreateCallback, ExEnterCriticalRegionAndAcquireResourceExclusive, ExInitializeNPagedLookasideList, ExRegisterCallback, RtlCreateSecurityDescriptor, MmProbeAndLockPages, MmUnlockPages, IoAllocateMdl, MmMapLockedPages, InterlockedPopEntrySList, KeQueryInterruptTime, IoBuildPartialMdl, IoGetRelatedDeviceObject, IoFileObjectType, IofCallDriver, KeInitializeApc, KeInsertQueueApc, KeAcquireInStackQueuedSpinLockAtDpcLevel, KeReleaseInStackQueuedSpinLockFromDpcLevel, ObfReferenceObject, memmove, ExFreePoolWithTag, IoAcquireCancelSpinLock, EtwWrite, ObReferenceObjectByHandle, IoReleaseCancelSpinLock, ExRaiseDatatypeMisalignment, IofCompleteRequest, InterlockedPushEntrySList, MmMapLockedPagesSpecifyCache, IoFreeMdl, ExDeleteNPagedLookasideList, ObfDereferenceObject, ExInitializeLookasideListEx, ExDeleteLookasideListEx
HAL.dll: KeReleaseInStackQueuedSpinLock, KeGetCurrentIrql, KfLowerIrql, KfRaiseIrql, KeReleaseQueuedSpinLock, KeAcquireQueuedSpinLock, KfReleaseSpinLock, KfAcquireSpinLock, KeAcquireInStackQueuedSpinLock
TDI.SYS: TdiDeregisterPnPHandlers, TdiMatchPdoWithChainedReceiveContext, TdiReturnChainedReceives, TdiCopyBufferToMdl, TdiCopyMdlToBuffer, TdiRegisterPnPHandlers
NETIO.SYS: NmrDeregisterClient, NmrWaitForClientDeregisterComplete, NsiAllocateAndGetTable, NsiFreeTable, NsiRegisterChangeNotification, NsiDeregisterChangeNotification, NsiGetAllParameters, RtlInitializeTimerWheel, NmrRegisterClient, RtlGetNextExpiredTimerWheelEntry, RtlReturnTimerWheelEntry, RtlIndicateTimerWheelEntryTimerStart, RtlCleanupTimerWheelEntry, RtlInitializeTimerWheelEntry, RtlSuspendTimerWheel, RtlCleanupTimerWheel, RtlCopyMdlToMdl, RtlCopyMdlToBuffer, NmrClientDetachProviderComplete, NmrClientAttachProvider, NmrWaitForProviderDeregisterComplete, NmrDeregisterProvider, NmrRegisterProvider, NmrProviderDetachClientComplete, NetioShutdownWorkQueue, NetioInsertWorkQueue, RtlUpdateCurrentTimerWheelTick, NetioInitializeWorkQueue
nvvsvc log ------------------------------------------------------
File name: nvvsvc.exe
Submission date: 2011-09-26 16:16:22 (UTC)
Current status: queued (#6) queued (#7) analysing finished
Result: 0/ 44 (0.0%)
VT Community
not reviewed
Safety score: -
Compact Print results Antivirus Version Last Update Result
AhnLab-V3 2011.09.26.00 2011.09.26 -
AntiVir 7.11.15.40 2011.09.26 -
Antiy-AVL 2.0.3.7 2011.09.26 -
Avast 4.8.1351.0 2011.09.26 -
Avast5 6.0.1289.0 2011.09.26 -
AVG 10.0.0.1190 2011.09.26 -
BitDefender 7.2 2011.09.26 -
ByteHero 1.0.0.1 2011.09.23 -
CAT-QuickHeal 11.00 2011.09.26 -
ClamAV 0.97.0.0 2011.09.26 -
Commtouch 5.3.2.6 2011.09.26 -
Comodo 10248 2011.09.26 -
DrWeb 5.0.2.03300 2011.09.26 -
Emsisoft 5.1.0.11 2011.09.26 -
eSafe 7.0.17.0 2011.09.26 -
eTrust-Vet 36.1.8581 2011.09.26 -
F-Prot 4.6.2.117 2011.09.26 -
F-Secure 9.0.16440.0 2011.09.26 -
Fortinet 4.3.370.0 2011.09.25 -
GData 22 2011.09.26 -
Ikarus T3.1.1.107.0 2011.09.26 -
Jiangmin 13.0.900 2011.09.26 -
K7AntiVirus 9.113.5195 2011.09.26 -
Kaspersky 9.0.0.837 2011.09.26 -
McAfee 5.400.0.1158 2011.09.26 -
McAfee-GW-Edition 2010.1D 2011.09.25 -
Microsoft 1.7702 2011.09.26 -
NOD32 6495 2011.09.26 -
Norman 6.07.11 2011.09.26 -
nProtect 2011-09-26.02 2011.09.26 -
Panda 10.0.3.5 2011.09.26 -
PCTools 8.0.0.5 2011.09.26 -
Prevx 3.0 2011.09.26 -
Rising 23.77.00.02 2011.09.26 -
Sophos 4.69.0 2011.09.26 -
SUPERAntiSpyware 4.40.0.1006 2011.09.26 -
Symantec 20111.2.0.82 2011.09.26 -
TheHacker 6.7.0.1.310 2011.09.25 -
TrendMicro 9.500.0.1008 2011.09.26 -
TrendMicro-HouseCall 9.500.0.1008 2011.09.26 -
VBA32 3.12.16.4 2011.09.26 -
VIPRE 10589 2011.09.26 -
ViRobot 2011.9.26.4689 2011.09.26 -
VirusBuster 14.0.234.0 2011.09.26 -
Additional informationShow all
MD5 : c4d17f11526f87bc762f31da5bd2580b
SHA1 : 5c3a1435e3c2832543a05552adfcec5036fb18d6
SHA256: 2e2741676407b3c23ce7c1a61a38c053f3b150713697ca94211b99a7bf601d12
ssdeep: 3072:dg4gZnmTJ2MpAI10/UfULiRa2DAocPs75YTtH6/tn8k:WzZAJgMSPs7STF6xP
File size : 219752 bytes
First seen: 2009-10-28 08:57:52
Last seen : 2011-09-26 16:16:22
TrID:
Win64 Executable Generic (59.6%)
Win32 Executable MS Visual C++ (generic) (26.2%)
Win32 Executable Generic (5.9%)
Win32 Dynamic Link Library (generic) (5.2%)
Generic Win/DOS Executable (1.3%)
sigcheck:
publisher....: NVIDIA Corporation
copyright....: (C) NVIDIA Corporation. All rights reserved.
product......: NVIDIA Driver Helper Service, Version 187.66
description..: NVIDIA Driver Helper Service, Version 187.66
original name: nvsvc32.exe
internal name: NVSVC
file version.: 8.16.11.8766
comments.....: n/a
signers......: NVIDIA Corporation
VeriSign Class 3 Code Signing 2009-2 CA
Class 3 Public Primary Certification Authority
signing date.: 20:40 03/10/2009
verified.....: -
PEInfo: PE structure information
[[ basic data ]]
entrypointaddress: 0xB05C
timedatestamp....: 0x4AC796F0 (Sat Oct 03 18:24:48 2009)
machinetype......: 0x14c (I386)
[[ 4 section(s) ]]
name, viradd, virsiz, rawdsiz, ntropy, md5
.text, 0x1000, 0x28324, 0x29000, 6.62, 77a55209cba1c653e5f6a65f764a60f5
.rdata, 0x2A000, 0x6632, 0x7000, 5.03, 29e24622bbfa3bf4128eb1a450739935
.data, 0x31000, 0x3190, 0x2000, 1.90, 0fdda452cbc77ccc0ab391a6efdca744
.rsrc, 0x35000, 0x6B8, 0x1000, 2.34, 2fedff1dd60446f78a32eb4225a5cc24
[[ 6 import(s) ]]
KERNEL32.dll: DisconnectNamedPipe, FlushFileBuffers, WriteFile, ReadFile, ResumeThread, InterlockedIncrement, ConnectNamedPipe, CreateNamedPipeW, InterlockedDecrement, CompareStringW, CompareStringA, CreateFileA, GetTimeZoneInformation, GetLocaleInfoW, WriteConsoleW, GetConsoleOutputCP, WriteConsoleA, SetStdHandle, CreateFileW, SwitchToThread, GetCommandLineW, InitializeCriticalSection, OpenEventW, DeleteCriticalSection, SetEvent, WTSGetActiveConsoleSessionId, CreateThread, GetCurrentProcess, EnterCriticalSection, LeaveCriticalSection, WaitForMultipleObjects, CloseHandle, SetLastError, GetLastError, Sleep, GetSystemDirectoryW, LoadLibraryW, GetProcAddress, FreeLibrary, CreateEventW, LocalFree, SetEnvironmentVariableA, WaitForSingleObject, IsValidCodePage, IsValidLocale, EnumSystemLocalesA, GetLocaleInfoA, InterlockedCompareExchange, GetUserDefaultLCID, TerminateProcess, UnhandledExceptionFilter, SetUnhandledExceptionFilter, IsDebuggerPresent, RaiseException, RtlUnwind, HeapFree, GetCommandLineA, GetVersionExA, HeapAlloc, GetProcessHeap, GetStartupInfoA, GetModuleHandleA, TlsGetValue, TlsAlloc, TlsSetValue, TlsFree, GetCurrentThreadId, GetCurrentThread, HeapSize, ExitProcess, GetCPInfo, GetACP, GetOEMCP, HeapDestroy, HeapCreate, VirtualFree, FatalAppExitA, VirtualAlloc, HeapReAlloc, GetStdHandle, GetModuleFileNameA, FreeEnvironmentStringsA, GetEnvironmentStrings, FreeEnvironmentStringsW, WideCharToMultiByte, GetEnvironmentStringsW, SetHandleCount, GetFileType, QueryPerformanceCounter, GetTickCount, GetCurrentProcessId, GetSystemTimeAsFileTime, SetFilePointer, GetConsoleCP, GetConsoleMode, MultiByteToWideChar, SetConsoleCtrlHandler, InterlockedExchange, LoadLibraryA, LCMapStringA, LCMapStringW, GetStringTypeA, GetStringTypeW, GetTimeFormatA, GetDateFormatA
SHLWAPI.dll: SHDeleteValueW, PathAppendW, PathFileExistsW, SHSetValueW, PathAddBackslashW
SHELL32.dll: SHGetFolderPathW, CommandLineToArgvW, SHCreateDirectoryExW
ADVAPI32.dll: RegGetValueW, RegQueryValueExW, RegCloseKey, RegEnumKeyExW, RegSetValueExW, RegOpenKeyExW, InitializeSecurityDescriptor, SetSecurityDescriptorDacl, StartServiceCtrlDispatcherW, RegisterServiceCtrlHandlerExW, SetServiceStatus, OpenProcessToken, DuplicateTokenEx, SetTokenInformation, CreateProcessAsUserW, OpenServiceW, ControlService, QueryServiceStatus, DeleteService, OpenSCManagerW, CreateServiceW, CloseServiceHandle, ConvertStringSecurityDescriptorToSecurityDescriptorW, RegDeleteValueW
RPCRT4.dll: UuidToStringW, RpcStringFreeW
ole32.dll: CoInitializeSecurity, CoInitialize
ExifTool:
file metadata
CharacterSet: Windows, Latin1
CodeSize: 167936
CompanyName: NVIDIA Corporation
EntryPoint: 0xb05c
FileDescription: NVIDIA Driver Helper Service, Version 187.66
FileFlagsMask: 0x003f
FileOS: Win32
FileSize: 215 kB
FileSubtype: 0
FileType: Win32 EXE
FileVersion: 8.16.11.8766
FileVersionNumber: 8.16.11.8766
ImageVersion: 0.0
InitializedDataSize: 49152
InternalName: NVSVC
LanguageCode: English (U.S.)
LegalCopyright: (C) NVIDIA Corporation. All rights reserved.
LinkerVersion: 8.0
MIMEType: application/octet-stream
MachineType: Intel 386 or later, and compatibles
OSVersion: 4.0
ObjectFileType: Dynamic link library
OriginalFilename: nvsvc32.exe
PEType: PE32
ProductName: NVIDIA Driver Helper Service, Version 187.66
ProductVersion: 8.16.11.8766
ProductVersionNumber: 8.16.11.8766
Subsystem: Windows GUI
SubsystemVersion: 4.0
TimeStamp: 2009:10:03 20:24:48+02:00
UninitializedDataSize: 0
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: ochromeny pc
Marek-26 píše:Stáhněte TDSSKiller a uložte ho na plochu.
Poté spusťte TDSSKiller.exe a poté klikněte na Start Scan.
Až to najde infikované soubory klikněte na tlačítko Continue.
Nejspíše po Vás aplikace bude chtít povolit restartovat počítač. Klikněte tedy na tlačítko Reboot Now. Log poté najdete zde: C:\TDSSKiller\_log.txt
Pokud nebude požadovat restart klikněte na Report a vložte sem obsah logu.
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
Re: ochromeny pc
Tak tady to je.
Reboot nebyl vyzadovan, ale napsalo to, ze to nic nenaslo.
Tohle je ten report log.
22:20:17.0506 1116 TDSS rootkit removing tool 2.6.1.0 Sep 26 2011 09:21:32
22:20:17.0646 1116 ============================================================
22:20:17.0646 1116 Current date / time: 2011/09/26 22:20:17.0646
22:20:17.0646 1116 SystemInfo:
22:20:17.0646 1116
22:20:17.0646 1116 OS Version: 6.0.6001 ServicePack: 1.0
22:20:17.0646 1116 Product type: Workstation
22:20:17.0646 1116 ComputerName: HALO1-PC
22:20:17.0646 1116 UserName: halo 1
22:20:17.0646 1116 Windows directory: C:\Windows
22:20:17.0646 1116 System windows directory: C:\Windows
22:20:17.0646 1116 Processor architecture: Intel x86
22:20:17.0646 1116 Number of processors: 2
22:20:17.0646 1116 Page size: 0x1000
22:20:17.0646 1116 Boot type: Safe boot with network
22:20:17.0646 1116 ============================================================
22:20:18.0270 1116 Initialize success
22:20:31.0140 1248 ============================================================
22:20:31.0140 1248 Scan started
22:20:31.0140 1248 Mode: Manual;
22:20:31.0140 1248 ============================================================
22:20:31.0748 1248 ACPI (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys
22:20:31.0748 1248 ACPI - ok
22:20:31.0826 1248 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
22:20:31.0826 1248 adp94xx - ok
22:20:31.0858 1248 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
22:20:31.0873 1248 adpahci - ok
22:20:31.0920 1248 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
22:20:31.0936 1248 adpu160m - ok
22:20:31.0982 1248 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
22:20:31.0982 1248 adpu320 - ok
22:20:32.0107 1248 AFD (48eb99503533c27ac6135648e5474457) C:\Windows\system32\drivers\afd.sys
22:20:32.0107 1248 AFD - ok
22:20:32.0138 1248 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
22:20:32.0138 1248 agp440 - ok
22:20:32.0216 1248 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
22:20:32.0216 1248 aic78xx - ok
22:20:32.0232 1248 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
22:20:32.0232 1248 aliide - ok
22:20:32.0263 1248 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
22:20:32.0279 1248 amdagp - ok
22:20:32.0310 1248 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
22:20:32.0310 1248 amdide - ok
22:20:32.0341 1248 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
22:20:32.0341 1248 AmdK7 - ok
22:20:32.0357 1248 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys
22:20:32.0357 1248 AmdK8 - ok
22:20:32.0419 1248 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
22:20:32.0419 1248 arc - ok
22:20:32.0450 1248 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
22:20:32.0450 1248 arcsas - ok
22:20:32.0482 1248 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
22:20:32.0482 1248 AsyncMac - ok
22:20:32.0528 1248 atapi (2d9c903dc76a66813d350a562de40ed9) C:\Windows\system32\drivers\atapi.sys
22:20:32.0528 1248 atapi - ok
22:20:32.0591 1248 AvgLdx86 (bc12f2404bb6f2b6b2ff3c4c246cb752) C:\Windows\System32\Drivers\avgldx86.sys
22:20:32.0606 1248 AvgLdx86 - ok
22:20:32.0638 1248 AvgMfx86 (5903d729d4f0c5bca74123c96a1b29e0) C:\Windows\System32\Drivers\avgmfx86.sys
22:20:32.0638 1248 AvgMfx86 - ok
22:20:32.0684 1248 AvgTdiX (92d8e1e8502e649b60e70074eb29c380) C:\Windows\System32\Drivers\avgtdix.sys
22:20:32.0684 1248 AvgTdiX - ok
22:20:32.0778 1248 BCM43XV (cf6a67c90951e3e763d2135dede44b85) C:\Windows\system32\DRIVERS\bcmwl6.sys
22:20:32.0794 1248 BCM43XV - ok
22:20:32.0825 1248 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
22:20:32.0825 1248 Beep - ok
22:20:32.0856 1248 blbdrive - ok
22:20:32.0934 1248 bowser (8153396d5551276227fa146900f734e6) C:\Windows\system32\DRIVERS\bowser.sys
22:20:32.0934 1248 bowser - ok
22:20:32.0981 1248 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
22:20:32.0981 1248 BrFiltLo - ok
22:20:32.0996 1248 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
22:20:32.0996 1248 BrFiltUp - ok
22:20:33.0074 1248 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
22:20:33.0090 1248 Brserid - ok
22:20:33.0152 1248 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
22:20:33.0152 1248 BrSerWdm - ok
22:20:33.0184 1248 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
22:20:33.0184 1248 BrUsbMdm - ok
22:20:33.0199 1248 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
22:20:33.0199 1248 BrUsbSer - ok
22:20:33.0262 1248 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
22:20:33.0262 1248 BTHMODEM - ok
22:20:33.0293 1248 catchme - ok
22:20:33.0340 1248 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
22:20:33.0340 1248 cdfs - ok
22:20:33.0371 1248 cdrom (1ec25cea0de6ac4718bf89f9e1778b57) C:\Windows\system32\DRIVERS\cdrom.sys
22:20:33.0371 1248 cdrom - ok
22:20:33.0402 1248 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
22:20:33.0402 1248 circlass - ok
22:20:33.0480 1248 CLFS (465745561c832b29f7c48b488aab3842) C:\Windows\system32\CLFS.sys
22:20:33.0496 1248 CLFS - ok
22:20:33.0589 1248 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
22:20:33.0589 1248 CmBatt - ok
22:20:33.0620 1248 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
22:20:33.0620 1248 cmdide - ok
22:20:33.0667 1248 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
22:20:33.0667 1248 Compbatt - ok
22:20:33.0730 1248 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
22:20:33.0730 1248 crcdisk - ok
22:20:33.0745 1248 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
22:20:33.0745 1248 Crusoe - ok
22:20:33.0839 1248 DfsC (a3e9fa213f443ac77c7746119d13feec) C:\Windows\system32\Drivers\dfsc.sys
22:20:33.0839 1248 DfsC - ok
22:20:33.0917 1248 disk (64109e623abd6955c8fb110b592e68b7) C:\Windows\system32\drivers\disk.sys
22:20:33.0917 1248 disk - ok
22:20:33.0979 1248 dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
22:20:33.0979 1248 dot4 - ok
22:20:34.0026 1248 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
22:20:34.0026 1248 Dot4Print - ok
22:20:34.0073 1248 Dot4Scan (a84d8a9006b1ae515cc7b6b3586c295a) C:\Windows\system32\DRIVERS\Dot4Scan.sys
22:20:34.0073 1248 Dot4Scan - ok
22:20:34.0088 1248 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
22:20:34.0104 1248 dot4usb - ok
22:20:34.0229 1248 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
22:20:34.0229 1248 drmkaud - ok
22:20:34.0291 1248 DXGKrnl (85f33880b8cfb554bd3d9ccdb486845a) C:\Windows\System32\drivers\dxgkrnl.sys
22:20:34.0291 1248 DXGKrnl - ok
22:20:34.0338 1248 E100B (c0b00e55cf82d122d25983c7a6a53dea) C:\Windows\system32\DRIVERS\e100b325.sys
22:20:34.0338 1248 E100B - ok
22:20:34.0354 1248 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
22:20:34.0354 1248 E1G60 - ok
22:20:34.0432 1248 Ecache (dd2cd259d83d8b72c02c5f2331ff9d68) C:\Windows\system32\drivers\ecache.sys
22:20:34.0447 1248 Ecache - ok
22:20:34.0525 1248 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
22:20:34.0541 1248 elxstor - ok
22:20:34.0603 1248 exfat (0d858eb20589a34efb25695acaa6aa2d) C:\Windows\system32\drivers\exfat.sys
22:20:34.0603 1248 exfat - ok
22:20:34.0650 1248 fastfat (3c489390c2e2064563727752af8eab9e) C:\Windows\system32\drivers\fastfat.sys
22:20:34.0666 1248 fastfat - ok
22:20:34.0712 1248 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
22:20:34.0712 1248 fdc - ok
22:20:34.0790 1248 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
22:20:34.0790 1248 FileInfo - ok
22:20:34.0822 1248 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
22:20:34.0822 1248 Filetrace - ok
22:20:34.0884 1248 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
22:20:34.0884 1248 flpydisk - ok
22:20:34.0900 1248 FltMgr (05ea53afe985443011e36dab07343b46) C:\Windows\system32\drivers\fltmgr.sys
22:20:34.0915 1248 FltMgr - ok
22:20:34.0962 1248 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
22:20:34.0962 1248 Fs_Rec - ok
22:20:35.0009 1248 FTDIBUS (47b9cf937ac479046da289bd5a769ce9) C:\Windows\system32\drivers\ftdibus.sys
22:20:35.0024 1248 FTDIBUS - ok
22:20:35.0040 1248 FTSER2K (216b9a2191676034999785c7f94fa5d6) C:\Windows\system32\drivers\ftser2k.sys
22:20:35.0040 1248 FTSER2K - ok
22:20:35.0071 1248 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
22:20:35.0071 1248 gagp30kx - ok
22:20:35.0134 1248 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
22:20:35.0134 1248 HdAudAddService - ok
22:20:35.0180 1248 HDAudBus (c87b1ee051c0464491c1a7b03fa0bc99) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:20:35.0180 1248 HDAudBus - ok
22:20:35.0227 1248 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
22:20:35.0227 1248 HidBth - ok
22:20:35.0290 1248 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
22:20:35.0290 1248 HidIr - ok
22:20:35.0336 1248 HidUsb (3c64042b95e583b366ba4e5d2450235e) C:\Windows\system32\drivers\hidusb.sys
22:20:35.0336 1248 HidUsb - ok
22:20:35.0399 1248 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
22:20:35.0399 1248 HpCISSs - ok
22:20:35.0461 1248 HpqKbFiltr (35956140e686d53bf676cf0c778880fc) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
22:20:35.0461 1248 HpqKbFiltr - ok
22:20:35.0492 1248 HpqRemHid (115c0933b3ed51dfbec4449348c8065b) C:\Windows\system32\DRIVERS\HpqRemHid.sys
22:20:35.0492 1248 HpqRemHid - ok
22:20:35.0524 1248 HSFHWAZL (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
22:20:35.0539 1248 HSFHWAZL - ok
22:20:35.0602 1248 HSF_DPV (ec36f1d542ed4252390d446bf6d4dfd0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
22:20:35.0664 1248 HSF_DPV - ok
22:20:35.0726 1248 HTTP (96e241624c71211a79c84f50a8e71cab) C:\Windows\system32\drivers\HTTP.sys
22:20:35.0726 1248 HTTP - ok
22:20:35.0789 1248 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
22:20:35.0789 1248 i2omp - ok
22:20:35.0820 1248 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
22:20:35.0820 1248 i8042prt - ok
22:20:35.0882 1248 ialm (496db78e6a0c4c44023d9a92b4a7ac31) C:\Windows\system32\DRIVERS\igdkmd32.sys
22:20:35.0960 1248 ialm - ok
22:20:36.0007 1248 iaStor (db0cc620b27a928d968c1a1e9cd9cb87) C:\Windows\system32\DRIVERS\iaStor.sys
22:20:36.0007 1248 iaStor - ok
22:20:36.0038 1248 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
22:20:36.0038 1248 iaStorV - ok
22:20:36.0070 1248 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
22:20:36.0085 1248 iirsp - ok
22:20:36.0194 1248 IntcAzAudAddService (8d7eb1fd498fd0a34c95a298685ec1c7) C:\Windows\system32\drivers\RTKVHDA.sys
22:20:36.0257 1248 IntcAzAudAddService - ok
22:20:36.0319 1248 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
22:20:36.0319 1248 intelide - ok
22:20:36.0366 1248 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
22:20:36.0366 1248 intelppm - ok
22:20:36.0428 1248 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:20:36.0428 1248 IpFilterDriver - ok
22:20:36.0506 1248 IpInIp - ok
22:20:36.0538 1248 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
22:20:36.0538 1248 IPMIDRV - ok
22:20:36.0616 1248 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
22:20:36.0616 1248 IPNAT - ok
22:20:36.0662 1248 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
22:20:36.0678 1248 IRENUM - ok
22:20:36.0709 1248 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
22:20:36.0709 1248 isapnp - ok
22:20:36.0740 1248 iScsiPrt (f247eec28317f6c739c16de420097301) C:\Windows\system32\DRIVERS\msiscsi.sys
22:20:36.0740 1248 iScsiPrt - ok
22:20:36.0787 1248 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
22:20:36.0787 1248 iteatapi - ok
22:20:36.0818 1248 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
22:20:36.0818 1248 iteraid - ok
22:20:36.0865 1248 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:20:36.0865 1248 kbdclass - ok
22:20:36.0896 1248 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\DRIVERS\kbdhid.sys
22:20:36.0896 1248 kbdhid - ok
22:20:36.0990 1248 KSecDD (7a0cf7908b6824d6a2a1d313e5ae3dca) C:\Windows\system32\Drivers\ksecdd.sys
22:20:36.0990 1248 KSecDD - ok
22:20:37.0208 1248 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
22:20:37.0208 1248 lltdio - ok
22:20:37.0255 1248 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
22:20:37.0271 1248 LSI_FC - ok
22:20:37.0271 1248 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
22:20:37.0271 1248 LSI_SAS - ok
22:20:37.0349 1248 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
22:20:37.0349 1248 LSI_SCSI - ok
22:20:37.0396 1248 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
22:20:37.0396 1248 luafv - ok
22:20:37.0442 1248 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
22:20:37.0442 1248 megasas - ok
22:20:37.0489 1248 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
22:20:37.0505 1248 Modem - ok
22:20:37.0536 1248 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
22:20:37.0536 1248 monitor - ok
22:20:37.0567 1248 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
22:20:37.0567 1248 mouclass - ok
22:20:37.0598 1248 mouhid (a3a6dff7e9e757db3df51a833bc28885) C:\Windows\system32\drivers\mouhid.sys
22:20:37.0598 1248 mouhid - ok
22:20:37.0645 1248 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
22:20:37.0645 1248 MountMgr - ok
22:20:37.0692 1248 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
22:20:37.0708 1248 mpio - ok
22:20:37.0770 1248 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
22:20:37.0770 1248 mpsdrv - ok
22:20:37.0864 1248 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
22:20:37.0864 1248 Mraid35x - ok
22:20:37.0957 1248 MRxDAV (ae3de84536b6799d2267443cec8edbb9) C:\Windows\system32\drivers\mrxdav.sys
22:20:37.0957 1248 MRxDAV - ok
22:20:38.0020 1248 mrxsmb (5734a0f2be7e495f7d3ed6efd4b9f5a1) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:20:38.0020 1248 mrxsmb - ok
22:20:38.0082 1248 mrxsmb10 (6b5fa5adfacac9dbbe0991f4566d7d55) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:20:38.0082 1248 mrxsmb10 - ok
22:20:38.0144 1248 mrxsmb20 (5c80d8159181c7abf1b14ba703b01e0b) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:20:38.0144 1248 mrxsmb20 - ok
22:20:38.0176 1248 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
22:20:38.0176 1248 msahci - ok
22:20:38.0269 1248 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
22:20:38.0269 1248 msdsm - ok
22:20:38.0332 1248 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
22:20:38.0332 1248 Msfs - ok
22:20:38.0347 1248 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
22:20:38.0347 1248 msisadrv - ok
22:20:38.0472 1248 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
22:20:38.0472 1248 MSKSSRV - ok
22:20:38.0519 1248 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
22:20:38.0519 1248 MSPCLOCK - ok
22:20:38.0581 1248 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
22:20:38.0581 1248 MSPQM - ok
22:20:38.0644 1248 MsRPC (b5614aecb05a9340aa0fb55bf561cc63) C:\Windows\system32\drivers\MsRPC.sys
22:20:38.0659 1248 MsRPC - ok
22:20:38.0737 1248 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
22:20:38.0737 1248 mssmbios - ok
22:20:38.0831 1248 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
22:20:38.0831 1248 MSTEE - ok
22:20:38.0893 1248 Mup (6dfd1d322de55b0b7db7d21b90bec49c) C:\Windows\system32\Drivers\mup.sys
22:20:38.0893 1248 Mup - ok
22:20:38.0956 1248 NativeWifiP (3c21ce48ff529bb73dadb98770b54025) C:\Windows\system32\DRIVERS\nwifi.sys
22:20:38.0956 1248 NativeWifiP - ok
22:20:39.0034 1248 NDIS (9bdc71790fa08f0a0b5f10462b1bd0b1) C:\Windows\system32\drivers\ndis.sys
22:20:39.0034 1248 NDIS - ok
22:20:39.0080 1248 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
22:20:39.0080 1248 NdisTapi - ok
22:20:39.0143 1248 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
22:20:39.0143 1248 Ndisuio - ok
22:20:39.0174 1248 NdisWan (3d14c3b3496f88890d431e8aa022a411) C:\Windows\system32\DRIVERS\ndiswan.sys
22:20:39.0174 1248 NdisWan - ok
22:20:39.0268 1248 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
22:20:39.0268 1248 NDProxy - ok
22:20:39.0330 1248 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
22:20:39.0330 1248 NetBIOS - ok
22:20:39.0377 1248 netbt (7c5fee5b1c5728507cd96fb4a13e7a02) C:\Windows\system32\DRIVERS\netbt.sys
22:20:39.0377 1248 netbt - ok
22:20:39.0517 1248 NETw3v32 (a15f219208843a5a210c8cb391384453) C:\Windows\system32\DRIVERS\NETw3v32.sys
22:20:39.0564 1248 NETw3v32 - ok
22:20:39.0673 1248 NETw4v32 (25acccfc33dd448b9d3037c5e439e830) C:\Windows\system32\DRIVERS\NETw4v32.sys
22:20:39.0736 1248 NETw4v32 - ok
22:20:39.0814 1248 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
22:20:39.0814 1248 nfrd960 - ok
22:20:39.0876 1248 Npfs (ecb5003f484f9ed6c608d6d6c7886cbb) C:\Windows\system32\drivers\Npfs.sys
22:20:39.0876 1248 Npfs - ok
22:20:40.0001 1248 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
22:20:40.0001 1248 nsiproxy - ok
22:20:40.0063 1248 Ntfs (b4effe29eb4f15538fd8a9681108492d) C:\Windows\system32\drivers\Ntfs.sys
22:20:40.0126 1248 Ntfs - ok
22:20:40.0172 1248 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
22:20:40.0172 1248 ntrigdigi - ok
22:20:40.0235 1248 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
22:20:40.0250 1248 Null - ok
22:20:40.0578 1248 nvlddmkm (24000b817cc84ac1555f41929879af5a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:20:40.0890 1248 nvlddmkm - ok
22:20:41.0015 1248 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
22:20:41.0015 1248 nvraid - ok
22:20:41.0046 1248 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
22:20:41.0046 1248 nvstor - ok
22:20:41.0093 1248 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
22:20:41.0093 1248 nv_agp - ok
22:20:41.0124 1248 NwlnkFlt - ok
22:20:41.0140 1248 NwlnkFwd - ok
22:20:41.0171 1248 ohci1394 (790e27c3db53410b40ff9ef2fd10a1d9) C:\Windows\system32\DRIVERS\ohci1394.sys
22:20:41.0171 1248 ohci1394 - ok
22:20:41.0218 1248 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
22:20:41.0218 1248 Parport - ok
22:20:41.0264 1248 partmgr (3b38467e7c3daed009dfe359e17f139f) C:\Windows\system32\drivers\partmgr.sys
22:20:41.0264 1248 partmgr - ok
22:20:41.0296 1248 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
22:20:41.0296 1248 Parvdm - ok
22:20:41.0358 1248 pci (01b94418deb235dff777cc80076354b4) C:\Windows\system32\drivers\pci.sys
22:20:41.0374 1248 pci - ok
22:20:41.0389 1248 pciide (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\drivers\pciide.sys
22:20:41.0389 1248 pciide - ok
22:20:41.0405 1248 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
22:20:41.0420 1248 pcmcia - ok
22:20:41.0467 1248 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
22:20:41.0514 1248 PEAUTH - ok
22:20:41.0701 1248 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
22:20:41.0701 1248 PptpMiniport - ok
22:20:41.0732 1248 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
22:20:41.0732 1248 Processor - ok
22:20:41.0779 1248 PSched (bfef604508a0ed1eae2a73e872555ffb) C:\Windows\system32\DRIVERS\pacer.sys
22:20:41.0779 1248 PSched - ok
22:20:41.0842 1248 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
22:20:41.0873 1248 ql2300 - ok
22:20:41.0904 1248 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
22:20:41.0904 1248 ql40xx - ok
22:20:41.0966 1248 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
22:20:41.0966 1248 QWAVEdrv - ok
22:20:42.0013 1248 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
22:20:42.0013 1248 RasAcd - ok
22:20:42.0076 1248 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:20:42.0076 1248 Rasl2tp - ok
22:20:42.0169 1248 RasPppoe (3e9d9b048107b40d87b97df2e48e0744) C:\Windows\system32\DRIVERS\raspppoe.sys
22:20:42.0169 1248 RasPppoe - ok
22:20:42.0232 1248 RasSstp (a7d141684e9500ac928a772ed8e6b671) C:\Windows\system32\DRIVERS\rassstp.sys
22:20:42.0232 1248 RasSstp - ok
22:20:42.0325 1248 rdbss (6e1c5d0457622f9ee35f683110e93d14) C:\Windows\system32\DRIVERS\rdbss.sys
22:20:42.0325 1248 rdbss - ok
22:20:42.0372 1248 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:20:42.0372 1248 RDPCDD - ok
22:20:42.0419 1248 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
22:20:42.0434 1248 rdpdr - ok
22:20:42.0434 1248 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
22:20:42.0434 1248 RDPENCDD - ok
22:20:42.0528 1248 RDPWD (e1c18f4097a5abcec941dc4b2f99db7e) C:\Windows\system32\drivers\RDPWD.sys
22:20:42.0544 1248 RDPWD - ok
22:20:42.0637 1248 rimmptsk (355aac141b214bef1dbc1483afd9bd50) C:\Windows\system32\DRIVERS\rimmptsk.sys
22:20:42.0637 1248 rimmptsk - ok
22:20:42.0684 1248 rimsptsk (a4216c71dd4f60b26418ccfd99cd0815) C:\Windows\system32\DRIVERS\rimsptsk.sys
22:20:42.0684 1248 rimsptsk - ok
22:20:42.0700 1248 rismxdp (d231b577024aa324af13a42f3a807d10) C:\Windows\system32\DRIVERS\rixdptsk.sys
22:20:42.0700 1248 rismxdp - ok
22:20:42.0793 1248 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
22:20:42.0793 1248 rspndr - ok
22:20:42.0824 1248 RTL8169 (9a929308a64183d3d9dccbb6df4badae) C:\Windows\system32\DRIVERS\Rtlh86.sys
22:20:42.0840 1248 RTL8169 - ok
22:20:42.0871 1248 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
22:20:42.0887 1248 sbp2port - ok
22:20:42.0949 1248 sdbus (126ea89bcc413ee45e3004fb0764888f) C:\Windows\system32\DRIVERS\sdbus.sys
22:20:42.0949 1248 sdbus - ok
22:20:42.0980 1248 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:20:42.0980 1248 secdrv - ok
22:20:43.0027 1248 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\DRIVERS\serenum.sys
22:20:43.0027 1248 Serenum - ok
22:20:43.0074 1248 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
22:20:43.0074 1248 Serial - ok
22:20:43.0121 1248 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
22:20:43.0121 1248 sermouse - ok
22:20:43.0183 1248 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
22:20:43.0183 1248 sffdisk - ok
22:20:43.0199 1248 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
22:20:43.0199 1248 sffp_mmc - ok
22:20:43.0246 1248 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
22:20:43.0246 1248 sffp_sd - ok
22:20:43.0261 1248 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
22:20:43.0261 1248 sfloppy - ok
22:20:43.0386 1248 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
22:20:43.0386 1248 sisagp - ok
22:20:43.0448 1248 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
22:20:43.0448 1248 SiSRaid2 - ok
22:20:43.0480 1248 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
22:20:43.0480 1248 SiSRaid4 - ok
22:20:43.0636 1248 Smb (031e6bcd53c9b2b9ace111eafec347b6) C:\Windows\system32\DRIVERS\smb.sys
22:20:43.0636 1248 Smb - ok
22:20:43.0714 1248 smserial (63b3b77bdb67ee674771c0e6fb96da9e) C:\Windows\system32\DRIVERS\smserial.sys
22:20:43.0745 1248 smserial - ok
22:20:43.0807 1248 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
22:20:43.0823 1248 spldr - ok
22:20:43.0870 1248 srv (2252aef839b1093d16761189f45af885) C:\Windows\system32\DRIVERS\srv.sys
22:20:43.0885 1248 srv - ok
22:20:43.0916 1248 srv2 (b7ff59408034119476b00a81bb53d5d1) C:\Windows\system32\DRIVERS\srv2.sys
22:20:43.0932 1248 srv2 - ok
22:20:43.0948 1248 srvnet (2accc9b12af02030f531e6cca6f8b76e) C:\Windows\system32\DRIVERS\srvnet.sys
22:20:43.0948 1248 srvnet - ok
22:20:44.0010 1248 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
22:20:44.0010 1248 swenum - ok
22:20:44.0026 1248 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
22:20:44.0026 1248 Symc8xx - ok
22:20:44.0072 1248 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
22:20:44.0072 1248 Sym_hi - ok
22:20:44.0135 1248 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
22:20:44.0135 1248 Sym_u3 - ok
22:20:44.0166 1248 SynTP (3d6316279c3540aa268bf025f4621ef3) C:\Windows\system32\DRIVERS\SynTP.sys
22:20:44.0166 1248 SynTP - ok
22:20:44.0291 1248 Tcpip (6216a954ed7045b62880a92d6c9b9fc7) C:\Windows\system32\drivers\tcpip.sys
22:20:44.0322 1248 Tcpip - ok
22:20:44.0400 1248 Tcpip6 (6216a954ed7045b62880a92d6c9b9fc7) C:\Windows\system32\DRIVERS\tcpip.sys
22:20:44.0416 1248 Tcpip6 - ok
22:20:44.0462 1248 tcpipreg (d4a2e4a4b011f3a883af77315a5ae76b) C:\Windows\system32\drivers\tcpipreg.sys
22:20:44.0478 1248 tcpipreg - ok
22:20:44.0525 1248 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
22:20:44.0525 1248 TDPIPE - ok
22:20:44.0587 1248 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
22:20:44.0587 1248 TDTCP - ok
22:20:44.0634 1248 tdx (d09276b1fab033ce1d40dcbdf303d10f) C:\Windows\system32\DRIVERS\tdx.sys
22:20:44.0634 1248 tdx - ok
22:20:44.0696 1248 TermDD (a048056f5e1a96a9bf3071b91741a5aa) C:\Windows\system32\DRIVERS\termdd.sys
22:20:44.0696 1248 TermDD - ok
22:20:44.0852 1248 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:20:44.0852 1248 tssecsrv - ok
22:20:44.0915 1248 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
22:20:44.0915 1248 tunmp - ok
22:20:44.0977 1248 tunnel (119b8184e106baedc83fce5ddf3950da) C:\Windows\system32\DRIVERS\tunnel.sys
22:20:44.0977 1248 tunnel - ok
22:20:45.0008 1248 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
22:20:45.0008 1248 uagp35 - ok
22:20:45.0071 1248 udfs (8b5088058fa1d1cd897a2113ccff6c58) C:\Windows\system32\DRIVERS\udfs.sys
22:20:45.0071 1248 udfs - ok
22:20:45.0133 1248 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
22:20:45.0133 1248 uliagpkx - ok
22:20:45.0164 1248 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
22:20:45.0164 1248 uliahci - ok
22:20:45.0196 1248 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
22:20:45.0196 1248 UlSata - ok
22:20:45.0242 1248 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
22:20:45.0258 1248 ulsata2 - ok
22:20:45.0289 1248 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
22:20:45.0289 1248 umbus - ok
22:20:45.0367 1248 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
22:20:45.0383 1248 usbccgp - ok
22:20:45.0414 1248 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
22:20:45.0414 1248 usbcir - ok
22:20:45.0508 1248 usbehci (cebe90821810e76320155beba722fcf9) C:\Windows\system32\DRIVERS\usbehci.sys
22:20:45.0508 1248 usbehci - ok
22:20:45.0586 1248 usbhub (cc6b28e4ce39951357963119ce47b143) C:\Windows\system32\DRIVERS\usbhub.sys
22:20:45.0601 1248 usbhub - ok
22:20:45.0617 1248 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
22:20:45.0617 1248 usbohci - ok
22:20:45.0632 1248 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
22:20:45.0632 1248 usbprint - ok
22:20:45.0679 1248 USBSTOR (87ba6b83c5d19b69160968d07d6e2982) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:20:45.0679 1248 USBSTOR - ok
22:20:45.0726 1248 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
22:20:45.0726 1248 usbuhci - ok
22:20:45.0804 1248 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
22:20:45.0835 1248 usbvideo - ok
22:20:45.0898 1248 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
22:20:45.0898 1248 vga - ok
22:20:45.0960 1248 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
22:20:45.0960 1248 VgaSave - ok
22:20:45.0976 1248 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
22:20:45.0976 1248 viaagp - ok
22:20:46.0007 1248 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
22:20:46.0007 1248 ViaC7 - ok
22:20:46.0054 1248 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
22:20:46.0054 1248 viaide - ok
22:20:46.0085 1248 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
22:20:46.0085 1248 volmgr - ok
22:20:46.0147 1248 volmgrx (98f5ffe6316bd74e9e2c97206c190196) C:\Windows\system32\drivers\volmgrx.sys
22:20:46.0147 1248 volmgrx - ok
22:20:46.0210 1248 volsnap (d8b4a53dd2769f226b3eb374374987c9) C:\Windows\system32\drivers\volsnap.sys
22:20:46.0210 1248 volsnap - ok
22:20:46.0241 1248 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
22:20:46.0256 1248 vsmraid - ok
22:20:46.0397 1248 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
22:20:46.0397 1248 WacomPen - ok
22:20:46.0428 1248 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:20:46.0444 1248 Wanarp - ok
22:20:46.0459 1248 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:20:46.0459 1248 Wanarpv6 - ok
22:20:46.0553 1248 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
22:20:46.0553 1248 Wd - ok
22:20:46.0646 1248 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
22:20:46.0646 1248 Wdf01000 - ok
22:20:46.0756 1248 winachsf (5c7bdcf5864db00323fe2d90fa26a8a2) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
22:20:46.0787 1248 winachsf - ok
22:20:46.0990 1248 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
22:20:46.0990 1248 WmiAcpi - ok
22:20:47.0036 1248 WpdUsb (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys
22:20:47.0036 1248 WpdUsb - ok
22:20:47.0099 1248 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
22:20:47.0099 1248 ws2ifsl - ok
22:20:47.0161 1248 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:20:47.0161 1248 WUDFRd - ok
22:20:47.0270 1248 {22D78859-9CE9-4B77-BF18-AC83E81A9263} (8903c6979ea677a9af3d36e0d3709203) C:\Program Files\HP\QuickPlay\000.fcl
22:20:47.0270 1248 {22D78859-9CE9-4B77-BF18-AC83E81A9263} - ok
22:20:47.0317 1248 MBR (0x1B8) (1a1a06f62e891045814007163c1c76c3) \Device\Harddisk0\DR0
22:20:47.0333 1248 \Device\Harddisk0\DR0 - ok
22:20:47.0333 1248 MBR (0x1B8) (e5fa06aca0d60ba9c870d0ef3d9898c9) \Device\Harddisk1\DR1
22:20:52.0403 1248 \Device\Harddisk1\DR1 - ok
22:20:52.0465 1248 Boot (0x1200) (000e1060be3467b87440d65f2b54a614) \Device\Harddisk0\DR0\Partition0
22:20:52.0465 1248 \Device\Harddisk0\DR0\Partition0 - ok
22:20:52.0481 1248 Boot (0x1200) (d723f814f728c8c7d229014844b9410a) \Device\Harddisk0\DR0\Partition1
22:20:52.0481 1248 \Device\Harddisk0\DR0\Partition1 - ok
22:20:52.0481 1248 Boot (0x1200) (105b2b184286691b599d3c7fb885d076) \Device\Harddisk1\DR1\Partition0
22:20:52.0481 1248 \Device\Harddisk1\DR1\Partition0 - ok
22:20:52.0481 1248 ============================================================
22:20:52.0481 1248 Scan finished
22:20:52.0481 1248 ============================================================
22:20:52.0497 0496 Detected object count: 0
22:20:52.0497 0496 Actual detected object count: 0
Reboot nebyl vyzadovan, ale napsalo to, ze to nic nenaslo.
Tohle je ten report log.
22:20:17.0506 1116 TDSS rootkit removing tool 2.6.1.0 Sep 26 2011 09:21:32
22:20:17.0646 1116 ============================================================
22:20:17.0646 1116 Current date / time: 2011/09/26 22:20:17.0646
22:20:17.0646 1116 SystemInfo:
22:20:17.0646 1116
22:20:17.0646 1116 OS Version: 6.0.6001 ServicePack: 1.0
22:20:17.0646 1116 Product type: Workstation
22:20:17.0646 1116 ComputerName: HALO1-PC
22:20:17.0646 1116 UserName: halo 1
22:20:17.0646 1116 Windows directory: C:\Windows
22:20:17.0646 1116 System windows directory: C:\Windows
22:20:17.0646 1116 Processor architecture: Intel x86
22:20:17.0646 1116 Number of processors: 2
22:20:17.0646 1116 Page size: 0x1000
22:20:17.0646 1116 Boot type: Safe boot with network
22:20:17.0646 1116 ============================================================
22:20:18.0270 1116 Initialize success
22:20:31.0140 1248 ============================================================
22:20:31.0140 1248 Scan started
22:20:31.0140 1248 Mode: Manual;
22:20:31.0140 1248 ============================================================
22:20:31.0748 1248 ACPI (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys
22:20:31.0748 1248 ACPI - ok
22:20:31.0826 1248 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
22:20:31.0826 1248 adp94xx - ok
22:20:31.0858 1248 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
22:20:31.0873 1248 adpahci - ok
22:20:31.0920 1248 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
22:20:31.0936 1248 adpu160m - ok
22:20:31.0982 1248 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
22:20:31.0982 1248 adpu320 - ok
22:20:32.0107 1248 AFD (48eb99503533c27ac6135648e5474457) C:\Windows\system32\drivers\afd.sys
22:20:32.0107 1248 AFD - ok
22:20:32.0138 1248 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
22:20:32.0138 1248 agp440 - ok
22:20:32.0216 1248 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
22:20:32.0216 1248 aic78xx - ok
22:20:32.0232 1248 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
22:20:32.0232 1248 aliide - ok
22:20:32.0263 1248 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
22:20:32.0279 1248 amdagp - ok
22:20:32.0310 1248 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
22:20:32.0310 1248 amdide - ok
22:20:32.0341 1248 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
22:20:32.0341 1248 AmdK7 - ok
22:20:32.0357 1248 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys
22:20:32.0357 1248 AmdK8 - ok
22:20:32.0419 1248 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
22:20:32.0419 1248 arc - ok
22:20:32.0450 1248 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
22:20:32.0450 1248 arcsas - ok
22:20:32.0482 1248 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
22:20:32.0482 1248 AsyncMac - ok
22:20:32.0528 1248 atapi (2d9c903dc76a66813d350a562de40ed9) C:\Windows\system32\drivers\atapi.sys
22:20:32.0528 1248 atapi - ok
22:20:32.0591 1248 AvgLdx86 (bc12f2404bb6f2b6b2ff3c4c246cb752) C:\Windows\System32\Drivers\avgldx86.sys
22:20:32.0606 1248 AvgLdx86 - ok
22:20:32.0638 1248 AvgMfx86 (5903d729d4f0c5bca74123c96a1b29e0) C:\Windows\System32\Drivers\avgmfx86.sys
22:20:32.0638 1248 AvgMfx86 - ok
22:20:32.0684 1248 AvgTdiX (92d8e1e8502e649b60e70074eb29c380) C:\Windows\System32\Drivers\avgtdix.sys
22:20:32.0684 1248 AvgTdiX - ok
22:20:32.0778 1248 BCM43XV (cf6a67c90951e3e763d2135dede44b85) C:\Windows\system32\DRIVERS\bcmwl6.sys
22:20:32.0794 1248 BCM43XV - ok
22:20:32.0825 1248 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
22:20:32.0825 1248 Beep - ok
22:20:32.0856 1248 blbdrive - ok
22:20:32.0934 1248 bowser (8153396d5551276227fa146900f734e6) C:\Windows\system32\DRIVERS\bowser.sys
22:20:32.0934 1248 bowser - ok
22:20:32.0981 1248 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
22:20:32.0981 1248 BrFiltLo - ok
22:20:32.0996 1248 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
22:20:32.0996 1248 BrFiltUp - ok
22:20:33.0074 1248 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
22:20:33.0090 1248 Brserid - ok
22:20:33.0152 1248 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
22:20:33.0152 1248 BrSerWdm - ok
22:20:33.0184 1248 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
22:20:33.0184 1248 BrUsbMdm - ok
22:20:33.0199 1248 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
22:20:33.0199 1248 BrUsbSer - ok
22:20:33.0262 1248 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
22:20:33.0262 1248 BTHMODEM - ok
22:20:33.0293 1248 catchme - ok
22:20:33.0340 1248 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
22:20:33.0340 1248 cdfs - ok
22:20:33.0371 1248 cdrom (1ec25cea0de6ac4718bf89f9e1778b57) C:\Windows\system32\DRIVERS\cdrom.sys
22:20:33.0371 1248 cdrom - ok
22:20:33.0402 1248 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
22:20:33.0402 1248 circlass - ok
22:20:33.0480 1248 CLFS (465745561c832b29f7c48b488aab3842) C:\Windows\system32\CLFS.sys
22:20:33.0496 1248 CLFS - ok
22:20:33.0589 1248 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
22:20:33.0589 1248 CmBatt - ok
22:20:33.0620 1248 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
22:20:33.0620 1248 cmdide - ok
22:20:33.0667 1248 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
22:20:33.0667 1248 Compbatt - ok
22:20:33.0730 1248 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
22:20:33.0730 1248 crcdisk - ok
22:20:33.0745 1248 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
22:20:33.0745 1248 Crusoe - ok
22:20:33.0839 1248 DfsC (a3e9fa213f443ac77c7746119d13feec) C:\Windows\system32\Drivers\dfsc.sys
22:20:33.0839 1248 DfsC - ok
22:20:33.0917 1248 disk (64109e623abd6955c8fb110b592e68b7) C:\Windows\system32\drivers\disk.sys
22:20:33.0917 1248 disk - ok
22:20:33.0979 1248 dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
22:20:33.0979 1248 dot4 - ok
22:20:34.0026 1248 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
22:20:34.0026 1248 Dot4Print - ok
22:20:34.0073 1248 Dot4Scan (a84d8a9006b1ae515cc7b6b3586c295a) C:\Windows\system32\DRIVERS\Dot4Scan.sys
22:20:34.0073 1248 Dot4Scan - ok
22:20:34.0088 1248 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
22:20:34.0104 1248 dot4usb - ok
22:20:34.0229 1248 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
22:20:34.0229 1248 drmkaud - ok
22:20:34.0291 1248 DXGKrnl (85f33880b8cfb554bd3d9ccdb486845a) C:\Windows\System32\drivers\dxgkrnl.sys
22:20:34.0291 1248 DXGKrnl - ok
22:20:34.0338 1248 E100B (c0b00e55cf82d122d25983c7a6a53dea) C:\Windows\system32\DRIVERS\e100b325.sys
22:20:34.0338 1248 E100B - ok
22:20:34.0354 1248 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
22:20:34.0354 1248 E1G60 - ok
22:20:34.0432 1248 Ecache (dd2cd259d83d8b72c02c5f2331ff9d68) C:\Windows\system32\drivers\ecache.sys
22:20:34.0447 1248 Ecache - ok
22:20:34.0525 1248 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
22:20:34.0541 1248 elxstor - ok
22:20:34.0603 1248 exfat (0d858eb20589a34efb25695acaa6aa2d) C:\Windows\system32\drivers\exfat.sys
22:20:34.0603 1248 exfat - ok
22:20:34.0650 1248 fastfat (3c489390c2e2064563727752af8eab9e) C:\Windows\system32\drivers\fastfat.sys
22:20:34.0666 1248 fastfat - ok
22:20:34.0712 1248 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
22:20:34.0712 1248 fdc - ok
22:20:34.0790 1248 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
22:20:34.0790 1248 FileInfo - ok
22:20:34.0822 1248 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
22:20:34.0822 1248 Filetrace - ok
22:20:34.0884 1248 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
22:20:34.0884 1248 flpydisk - ok
22:20:34.0900 1248 FltMgr (05ea53afe985443011e36dab07343b46) C:\Windows\system32\drivers\fltmgr.sys
22:20:34.0915 1248 FltMgr - ok
22:20:34.0962 1248 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
22:20:34.0962 1248 Fs_Rec - ok
22:20:35.0009 1248 FTDIBUS (47b9cf937ac479046da289bd5a769ce9) C:\Windows\system32\drivers\ftdibus.sys
22:20:35.0024 1248 FTDIBUS - ok
22:20:35.0040 1248 FTSER2K (216b9a2191676034999785c7f94fa5d6) C:\Windows\system32\drivers\ftser2k.sys
22:20:35.0040 1248 FTSER2K - ok
22:20:35.0071 1248 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
22:20:35.0071 1248 gagp30kx - ok
22:20:35.0134 1248 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
22:20:35.0134 1248 HdAudAddService - ok
22:20:35.0180 1248 HDAudBus (c87b1ee051c0464491c1a7b03fa0bc99) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:20:35.0180 1248 HDAudBus - ok
22:20:35.0227 1248 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
22:20:35.0227 1248 HidBth - ok
22:20:35.0290 1248 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
22:20:35.0290 1248 HidIr - ok
22:20:35.0336 1248 HidUsb (3c64042b95e583b366ba4e5d2450235e) C:\Windows\system32\drivers\hidusb.sys
22:20:35.0336 1248 HidUsb - ok
22:20:35.0399 1248 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
22:20:35.0399 1248 HpCISSs - ok
22:20:35.0461 1248 HpqKbFiltr (35956140e686d53bf676cf0c778880fc) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
22:20:35.0461 1248 HpqKbFiltr - ok
22:20:35.0492 1248 HpqRemHid (115c0933b3ed51dfbec4449348c8065b) C:\Windows\system32\DRIVERS\HpqRemHid.sys
22:20:35.0492 1248 HpqRemHid - ok
22:20:35.0524 1248 HSFHWAZL (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
22:20:35.0539 1248 HSFHWAZL - ok
22:20:35.0602 1248 HSF_DPV (ec36f1d542ed4252390d446bf6d4dfd0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
22:20:35.0664 1248 HSF_DPV - ok
22:20:35.0726 1248 HTTP (96e241624c71211a79c84f50a8e71cab) C:\Windows\system32\drivers\HTTP.sys
22:20:35.0726 1248 HTTP - ok
22:20:35.0789 1248 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
22:20:35.0789 1248 i2omp - ok
22:20:35.0820 1248 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
22:20:35.0820 1248 i8042prt - ok
22:20:35.0882 1248 ialm (496db78e6a0c4c44023d9a92b4a7ac31) C:\Windows\system32\DRIVERS\igdkmd32.sys
22:20:35.0960 1248 ialm - ok
22:20:36.0007 1248 iaStor (db0cc620b27a928d968c1a1e9cd9cb87) C:\Windows\system32\DRIVERS\iaStor.sys
22:20:36.0007 1248 iaStor - ok
22:20:36.0038 1248 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
22:20:36.0038 1248 iaStorV - ok
22:20:36.0070 1248 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
22:20:36.0085 1248 iirsp - ok
22:20:36.0194 1248 IntcAzAudAddService (8d7eb1fd498fd0a34c95a298685ec1c7) C:\Windows\system32\drivers\RTKVHDA.sys
22:20:36.0257 1248 IntcAzAudAddService - ok
22:20:36.0319 1248 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
22:20:36.0319 1248 intelide - ok
22:20:36.0366 1248 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
22:20:36.0366 1248 intelppm - ok
22:20:36.0428 1248 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:20:36.0428 1248 IpFilterDriver - ok
22:20:36.0506 1248 IpInIp - ok
22:20:36.0538 1248 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
22:20:36.0538 1248 IPMIDRV - ok
22:20:36.0616 1248 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
22:20:36.0616 1248 IPNAT - ok
22:20:36.0662 1248 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
22:20:36.0678 1248 IRENUM - ok
22:20:36.0709 1248 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
22:20:36.0709 1248 isapnp - ok
22:20:36.0740 1248 iScsiPrt (f247eec28317f6c739c16de420097301) C:\Windows\system32\DRIVERS\msiscsi.sys
22:20:36.0740 1248 iScsiPrt - ok
22:20:36.0787 1248 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
22:20:36.0787 1248 iteatapi - ok
22:20:36.0818 1248 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
22:20:36.0818 1248 iteraid - ok
22:20:36.0865 1248 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:20:36.0865 1248 kbdclass - ok
22:20:36.0896 1248 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\DRIVERS\kbdhid.sys
22:20:36.0896 1248 kbdhid - ok
22:20:36.0990 1248 KSecDD (7a0cf7908b6824d6a2a1d313e5ae3dca) C:\Windows\system32\Drivers\ksecdd.sys
22:20:36.0990 1248 KSecDD - ok
22:20:37.0208 1248 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
22:20:37.0208 1248 lltdio - ok
22:20:37.0255 1248 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
22:20:37.0271 1248 LSI_FC - ok
22:20:37.0271 1248 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
22:20:37.0271 1248 LSI_SAS - ok
22:20:37.0349 1248 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
22:20:37.0349 1248 LSI_SCSI - ok
22:20:37.0396 1248 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
22:20:37.0396 1248 luafv - ok
22:20:37.0442 1248 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
22:20:37.0442 1248 megasas - ok
22:20:37.0489 1248 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
22:20:37.0505 1248 Modem - ok
22:20:37.0536 1248 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
22:20:37.0536 1248 monitor - ok
22:20:37.0567 1248 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
22:20:37.0567 1248 mouclass - ok
22:20:37.0598 1248 mouhid (a3a6dff7e9e757db3df51a833bc28885) C:\Windows\system32\drivers\mouhid.sys
22:20:37.0598 1248 mouhid - ok
22:20:37.0645 1248 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
22:20:37.0645 1248 MountMgr - ok
22:20:37.0692 1248 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
22:20:37.0708 1248 mpio - ok
22:20:37.0770 1248 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
22:20:37.0770 1248 mpsdrv - ok
22:20:37.0864 1248 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
22:20:37.0864 1248 Mraid35x - ok
22:20:37.0957 1248 MRxDAV (ae3de84536b6799d2267443cec8edbb9) C:\Windows\system32\drivers\mrxdav.sys
22:20:37.0957 1248 MRxDAV - ok
22:20:38.0020 1248 mrxsmb (5734a0f2be7e495f7d3ed6efd4b9f5a1) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:20:38.0020 1248 mrxsmb - ok
22:20:38.0082 1248 mrxsmb10 (6b5fa5adfacac9dbbe0991f4566d7d55) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:20:38.0082 1248 mrxsmb10 - ok
22:20:38.0144 1248 mrxsmb20 (5c80d8159181c7abf1b14ba703b01e0b) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:20:38.0144 1248 mrxsmb20 - ok
22:20:38.0176 1248 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
22:20:38.0176 1248 msahci - ok
22:20:38.0269 1248 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
22:20:38.0269 1248 msdsm - ok
22:20:38.0332 1248 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
22:20:38.0332 1248 Msfs - ok
22:20:38.0347 1248 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
22:20:38.0347 1248 msisadrv - ok
22:20:38.0472 1248 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
22:20:38.0472 1248 MSKSSRV - ok
22:20:38.0519 1248 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
22:20:38.0519 1248 MSPCLOCK - ok
22:20:38.0581 1248 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
22:20:38.0581 1248 MSPQM - ok
22:20:38.0644 1248 MsRPC (b5614aecb05a9340aa0fb55bf561cc63) C:\Windows\system32\drivers\MsRPC.sys
22:20:38.0659 1248 MsRPC - ok
22:20:38.0737 1248 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
22:20:38.0737 1248 mssmbios - ok
22:20:38.0831 1248 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
22:20:38.0831 1248 MSTEE - ok
22:20:38.0893 1248 Mup (6dfd1d322de55b0b7db7d21b90bec49c) C:\Windows\system32\Drivers\mup.sys
22:20:38.0893 1248 Mup - ok
22:20:38.0956 1248 NativeWifiP (3c21ce48ff529bb73dadb98770b54025) C:\Windows\system32\DRIVERS\nwifi.sys
22:20:38.0956 1248 NativeWifiP - ok
22:20:39.0034 1248 NDIS (9bdc71790fa08f0a0b5f10462b1bd0b1) C:\Windows\system32\drivers\ndis.sys
22:20:39.0034 1248 NDIS - ok
22:20:39.0080 1248 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
22:20:39.0080 1248 NdisTapi - ok
22:20:39.0143 1248 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
22:20:39.0143 1248 Ndisuio - ok
22:20:39.0174 1248 NdisWan (3d14c3b3496f88890d431e8aa022a411) C:\Windows\system32\DRIVERS\ndiswan.sys
22:20:39.0174 1248 NdisWan - ok
22:20:39.0268 1248 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
22:20:39.0268 1248 NDProxy - ok
22:20:39.0330 1248 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
22:20:39.0330 1248 NetBIOS - ok
22:20:39.0377 1248 netbt (7c5fee5b1c5728507cd96fb4a13e7a02) C:\Windows\system32\DRIVERS\netbt.sys
22:20:39.0377 1248 netbt - ok
22:20:39.0517 1248 NETw3v32 (a15f219208843a5a210c8cb391384453) C:\Windows\system32\DRIVERS\NETw3v32.sys
22:20:39.0564 1248 NETw3v32 - ok
22:20:39.0673 1248 NETw4v32 (25acccfc33dd448b9d3037c5e439e830) C:\Windows\system32\DRIVERS\NETw4v32.sys
22:20:39.0736 1248 NETw4v32 - ok
22:20:39.0814 1248 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
22:20:39.0814 1248 nfrd960 - ok
22:20:39.0876 1248 Npfs (ecb5003f484f9ed6c608d6d6c7886cbb) C:\Windows\system32\drivers\Npfs.sys
22:20:39.0876 1248 Npfs - ok
22:20:40.0001 1248 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
22:20:40.0001 1248 nsiproxy - ok
22:20:40.0063 1248 Ntfs (b4effe29eb4f15538fd8a9681108492d) C:\Windows\system32\drivers\Ntfs.sys
22:20:40.0126 1248 Ntfs - ok
22:20:40.0172 1248 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
22:20:40.0172 1248 ntrigdigi - ok
22:20:40.0235 1248 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
22:20:40.0250 1248 Null - ok
22:20:40.0578 1248 nvlddmkm (24000b817cc84ac1555f41929879af5a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:20:40.0890 1248 nvlddmkm - ok
22:20:41.0015 1248 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
22:20:41.0015 1248 nvraid - ok
22:20:41.0046 1248 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
22:20:41.0046 1248 nvstor - ok
22:20:41.0093 1248 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
22:20:41.0093 1248 nv_agp - ok
22:20:41.0124 1248 NwlnkFlt - ok
22:20:41.0140 1248 NwlnkFwd - ok
22:20:41.0171 1248 ohci1394 (790e27c3db53410b40ff9ef2fd10a1d9) C:\Windows\system32\DRIVERS\ohci1394.sys
22:20:41.0171 1248 ohci1394 - ok
22:20:41.0218 1248 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
22:20:41.0218 1248 Parport - ok
22:20:41.0264 1248 partmgr (3b38467e7c3daed009dfe359e17f139f) C:\Windows\system32\drivers\partmgr.sys
22:20:41.0264 1248 partmgr - ok
22:20:41.0296 1248 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
22:20:41.0296 1248 Parvdm - ok
22:20:41.0358 1248 pci (01b94418deb235dff777cc80076354b4) C:\Windows\system32\drivers\pci.sys
22:20:41.0374 1248 pci - ok
22:20:41.0389 1248 pciide (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\drivers\pciide.sys
22:20:41.0389 1248 pciide - ok
22:20:41.0405 1248 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
22:20:41.0420 1248 pcmcia - ok
22:20:41.0467 1248 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
22:20:41.0514 1248 PEAUTH - ok
22:20:41.0701 1248 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
22:20:41.0701 1248 PptpMiniport - ok
22:20:41.0732 1248 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
22:20:41.0732 1248 Processor - ok
22:20:41.0779 1248 PSched (bfef604508a0ed1eae2a73e872555ffb) C:\Windows\system32\DRIVERS\pacer.sys
22:20:41.0779 1248 PSched - ok
22:20:41.0842 1248 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
22:20:41.0873 1248 ql2300 - ok
22:20:41.0904 1248 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
22:20:41.0904 1248 ql40xx - ok
22:20:41.0966 1248 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
22:20:41.0966 1248 QWAVEdrv - ok
22:20:42.0013 1248 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
22:20:42.0013 1248 RasAcd - ok
22:20:42.0076 1248 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:20:42.0076 1248 Rasl2tp - ok
22:20:42.0169 1248 RasPppoe (3e9d9b048107b40d87b97df2e48e0744) C:\Windows\system32\DRIVERS\raspppoe.sys
22:20:42.0169 1248 RasPppoe - ok
22:20:42.0232 1248 RasSstp (a7d141684e9500ac928a772ed8e6b671) C:\Windows\system32\DRIVERS\rassstp.sys
22:20:42.0232 1248 RasSstp - ok
22:20:42.0325 1248 rdbss (6e1c5d0457622f9ee35f683110e93d14) C:\Windows\system32\DRIVERS\rdbss.sys
22:20:42.0325 1248 rdbss - ok
22:20:42.0372 1248 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:20:42.0372 1248 RDPCDD - ok
22:20:42.0419 1248 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
22:20:42.0434 1248 rdpdr - ok
22:20:42.0434 1248 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
22:20:42.0434 1248 RDPENCDD - ok
22:20:42.0528 1248 RDPWD (e1c18f4097a5abcec941dc4b2f99db7e) C:\Windows\system32\drivers\RDPWD.sys
22:20:42.0544 1248 RDPWD - ok
22:20:42.0637 1248 rimmptsk (355aac141b214bef1dbc1483afd9bd50) C:\Windows\system32\DRIVERS\rimmptsk.sys
22:20:42.0637 1248 rimmptsk - ok
22:20:42.0684 1248 rimsptsk (a4216c71dd4f60b26418ccfd99cd0815) C:\Windows\system32\DRIVERS\rimsptsk.sys
22:20:42.0684 1248 rimsptsk - ok
22:20:42.0700 1248 rismxdp (d231b577024aa324af13a42f3a807d10) C:\Windows\system32\DRIVERS\rixdptsk.sys
22:20:42.0700 1248 rismxdp - ok
22:20:42.0793 1248 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
22:20:42.0793 1248 rspndr - ok
22:20:42.0824 1248 RTL8169 (9a929308a64183d3d9dccbb6df4badae) C:\Windows\system32\DRIVERS\Rtlh86.sys
22:20:42.0840 1248 RTL8169 - ok
22:20:42.0871 1248 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
22:20:42.0887 1248 sbp2port - ok
22:20:42.0949 1248 sdbus (126ea89bcc413ee45e3004fb0764888f) C:\Windows\system32\DRIVERS\sdbus.sys
22:20:42.0949 1248 sdbus - ok
22:20:42.0980 1248 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:20:42.0980 1248 secdrv - ok
22:20:43.0027 1248 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\DRIVERS\serenum.sys
22:20:43.0027 1248 Serenum - ok
22:20:43.0074 1248 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
22:20:43.0074 1248 Serial - ok
22:20:43.0121 1248 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
22:20:43.0121 1248 sermouse - ok
22:20:43.0183 1248 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
22:20:43.0183 1248 sffdisk - ok
22:20:43.0199 1248 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
22:20:43.0199 1248 sffp_mmc - ok
22:20:43.0246 1248 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
22:20:43.0246 1248 sffp_sd - ok
22:20:43.0261 1248 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
22:20:43.0261 1248 sfloppy - ok
22:20:43.0386 1248 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
22:20:43.0386 1248 sisagp - ok
22:20:43.0448 1248 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
22:20:43.0448 1248 SiSRaid2 - ok
22:20:43.0480 1248 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
22:20:43.0480 1248 SiSRaid4 - ok
22:20:43.0636 1248 Smb (031e6bcd53c9b2b9ace111eafec347b6) C:\Windows\system32\DRIVERS\smb.sys
22:20:43.0636 1248 Smb - ok
22:20:43.0714 1248 smserial (63b3b77bdb67ee674771c0e6fb96da9e) C:\Windows\system32\DRIVERS\smserial.sys
22:20:43.0745 1248 smserial - ok
22:20:43.0807 1248 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
22:20:43.0823 1248 spldr - ok
22:20:43.0870 1248 srv (2252aef839b1093d16761189f45af885) C:\Windows\system32\DRIVERS\srv.sys
22:20:43.0885 1248 srv - ok
22:20:43.0916 1248 srv2 (b7ff59408034119476b00a81bb53d5d1) C:\Windows\system32\DRIVERS\srv2.sys
22:20:43.0932 1248 srv2 - ok
22:20:43.0948 1248 srvnet (2accc9b12af02030f531e6cca6f8b76e) C:\Windows\system32\DRIVERS\srvnet.sys
22:20:43.0948 1248 srvnet - ok
22:20:44.0010 1248 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
22:20:44.0010 1248 swenum - ok
22:20:44.0026 1248 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
22:20:44.0026 1248 Symc8xx - ok
22:20:44.0072 1248 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
22:20:44.0072 1248 Sym_hi - ok
22:20:44.0135 1248 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
22:20:44.0135 1248 Sym_u3 - ok
22:20:44.0166 1248 SynTP (3d6316279c3540aa268bf025f4621ef3) C:\Windows\system32\DRIVERS\SynTP.sys
22:20:44.0166 1248 SynTP - ok
22:20:44.0291 1248 Tcpip (6216a954ed7045b62880a92d6c9b9fc7) C:\Windows\system32\drivers\tcpip.sys
22:20:44.0322 1248 Tcpip - ok
22:20:44.0400 1248 Tcpip6 (6216a954ed7045b62880a92d6c9b9fc7) C:\Windows\system32\DRIVERS\tcpip.sys
22:20:44.0416 1248 Tcpip6 - ok
22:20:44.0462 1248 tcpipreg (d4a2e4a4b011f3a883af77315a5ae76b) C:\Windows\system32\drivers\tcpipreg.sys
22:20:44.0478 1248 tcpipreg - ok
22:20:44.0525 1248 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
22:20:44.0525 1248 TDPIPE - ok
22:20:44.0587 1248 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
22:20:44.0587 1248 TDTCP - ok
22:20:44.0634 1248 tdx (d09276b1fab033ce1d40dcbdf303d10f) C:\Windows\system32\DRIVERS\tdx.sys
22:20:44.0634 1248 tdx - ok
22:20:44.0696 1248 TermDD (a048056f5e1a96a9bf3071b91741a5aa) C:\Windows\system32\DRIVERS\termdd.sys
22:20:44.0696 1248 TermDD - ok
22:20:44.0852 1248 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:20:44.0852 1248 tssecsrv - ok
22:20:44.0915 1248 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
22:20:44.0915 1248 tunmp - ok
22:20:44.0977 1248 tunnel (119b8184e106baedc83fce5ddf3950da) C:\Windows\system32\DRIVERS\tunnel.sys
22:20:44.0977 1248 tunnel - ok
22:20:45.0008 1248 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
22:20:45.0008 1248 uagp35 - ok
22:20:45.0071 1248 udfs (8b5088058fa1d1cd897a2113ccff6c58) C:\Windows\system32\DRIVERS\udfs.sys
22:20:45.0071 1248 udfs - ok
22:20:45.0133 1248 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
22:20:45.0133 1248 uliagpkx - ok
22:20:45.0164 1248 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
22:20:45.0164 1248 uliahci - ok
22:20:45.0196 1248 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
22:20:45.0196 1248 UlSata - ok
22:20:45.0242 1248 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
22:20:45.0258 1248 ulsata2 - ok
22:20:45.0289 1248 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
22:20:45.0289 1248 umbus - ok
22:20:45.0367 1248 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
22:20:45.0383 1248 usbccgp - ok
22:20:45.0414 1248 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
22:20:45.0414 1248 usbcir - ok
22:20:45.0508 1248 usbehci (cebe90821810e76320155beba722fcf9) C:\Windows\system32\DRIVERS\usbehci.sys
22:20:45.0508 1248 usbehci - ok
22:20:45.0586 1248 usbhub (cc6b28e4ce39951357963119ce47b143) C:\Windows\system32\DRIVERS\usbhub.sys
22:20:45.0601 1248 usbhub - ok
22:20:45.0617 1248 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
22:20:45.0617 1248 usbohci - ok
22:20:45.0632 1248 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
22:20:45.0632 1248 usbprint - ok
22:20:45.0679 1248 USBSTOR (87ba6b83c5d19b69160968d07d6e2982) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:20:45.0679 1248 USBSTOR - ok
22:20:45.0726 1248 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
22:20:45.0726 1248 usbuhci - ok
22:20:45.0804 1248 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
22:20:45.0835 1248 usbvideo - ok
22:20:45.0898 1248 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
22:20:45.0898 1248 vga - ok
22:20:45.0960 1248 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
22:20:45.0960 1248 VgaSave - ok
22:20:45.0976 1248 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
22:20:45.0976 1248 viaagp - ok
22:20:46.0007 1248 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
22:20:46.0007 1248 ViaC7 - ok
22:20:46.0054 1248 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
22:20:46.0054 1248 viaide - ok
22:20:46.0085 1248 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
22:20:46.0085 1248 volmgr - ok
22:20:46.0147 1248 volmgrx (98f5ffe6316bd74e9e2c97206c190196) C:\Windows\system32\drivers\volmgrx.sys
22:20:46.0147 1248 volmgrx - ok
22:20:46.0210 1248 volsnap (d8b4a53dd2769f226b3eb374374987c9) C:\Windows\system32\drivers\volsnap.sys
22:20:46.0210 1248 volsnap - ok
22:20:46.0241 1248 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
22:20:46.0256 1248 vsmraid - ok
22:20:46.0397 1248 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
22:20:46.0397 1248 WacomPen - ok
22:20:46.0428 1248 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:20:46.0444 1248 Wanarp - ok
22:20:46.0459 1248 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:20:46.0459 1248 Wanarpv6 - ok
22:20:46.0553 1248 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
22:20:46.0553 1248 Wd - ok
22:20:46.0646 1248 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
22:20:46.0646 1248 Wdf01000 - ok
22:20:46.0756 1248 winachsf (5c7bdcf5864db00323fe2d90fa26a8a2) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
22:20:46.0787 1248 winachsf - ok
22:20:46.0990 1248 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
22:20:46.0990 1248 WmiAcpi - ok
22:20:47.0036 1248 WpdUsb (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys
22:20:47.0036 1248 WpdUsb - ok
22:20:47.0099 1248 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
22:20:47.0099 1248 ws2ifsl - ok
22:20:47.0161 1248 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:20:47.0161 1248 WUDFRd - ok
22:20:47.0270 1248 {22D78859-9CE9-4B77-BF18-AC83E81A9263} (8903c6979ea677a9af3d36e0d3709203) C:\Program Files\HP\QuickPlay\000.fcl
22:20:47.0270 1248 {22D78859-9CE9-4B77-BF18-AC83E81A9263} - ok
22:20:47.0317 1248 MBR (0x1B8) (1a1a06f62e891045814007163c1c76c3) \Device\Harddisk0\DR0
22:20:47.0333 1248 \Device\Harddisk0\DR0 - ok
22:20:47.0333 1248 MBR (0x1B8) (e5fa06aca0d60ba9c870d0ef3d9898c9) \Device\Harddisk1\DR1
22:20:52.0403 1248 \Device\Harddisk1\DR1 - ok
22:20:52.0465 1248 Boot (0x1200) (000e1060be3467b87440d65f2b54a614) \Device\Harddisk0\DR0\Partition0
22:20:52.0465 1248 \Device\Harddisk0\DR0\Partition0 - ok
22:20:52.0481 1248 Boot (0x1200) (d723f814f728c8c7d229014844b9410a) \Device\Harddisk0\DR0\Partition1
22:20:52.0481 1248 \Device\Harddisk0\DR0\Partition1 - ok
22:20:52.0481 1248 Boot (0x1200) (105b2b184286691b599d3c7fb885d076) \Device\Harddisk1\DR1\Partition0
22:20:52.0481 1248 \Device\Harddisk1\DR1\Partition0 - ok
22:20:52.0481 1248 ============================================================
22:20:52.0481 1248 Scan finished
22:20:52.0481 1248 ============================================================
22:20:52.0497 0496 Detected object count: 0
22:20:52.0497 0496 Actual detected object count: 0
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: ochromeny pc
Zapoj do PC všechny USB klíče (flashky, ext. disky apod.)
- Stáhni a ulož na plochu UsbFix zde http://riffman.ic.cz/files/UsbFix.exe - návod zde: http://www.viry.cz/forum/viewtopic.php?f=24&t=102308
- Spusť a klikni na Deletion
- Po dokončení sem vlož log, pokud se sám neotevře, najdeš jej zde C:\UsbFix.txt
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
Re: ochromeny pc
nejdriv jsem zkousel usb fix rozjet v save modu ale po 48 procentech se to hryzlo a vyhodilo mi to tuto hlasku:
AutoIT error
line 10073 (file "C:\usbfix\usbfix.exe"
error: variable must be of tzpe "subject"
takze jsem najel do normalniho modu a tam se to povedlo.... prikladam i log z Rsitu
USBFIX LOG -----------------------------------------------------------------------------
############################## | UsbFix 7.014 | [Deletion]
User: halo 1 (Administrator) # HALO1-PC [Hewlett-Packard HP Pavilion dv6700 Notebook PC]
Updated 24/06/10 by El Desaparecido / C_XX
Started at 11:27:10 | 28/09/2011
Website: http://pagesperso-orange.fr/NosTools/index.html
Contact: FindyKill.Contact@gmail.com
CPU: Intel(R) Core(TM)2 Duo CPU T5450 @ 1.66GHz
CPU 2: Intel(R) Core(TM)2 Duo CPU T5450 @ 1.66GHz
Microsoft® Windows Vista™ Home Premium (6.0.6001 32-Bit) # Service Pack 1
Internet Explorer 8.0.6001.19088
Windows Firewall: Enabled
RAM -> 2046 Mb
C:\ (%systemdrive%) -> Fixed drive # 137 Gb (84 Mb free - 61%) [] # NTFS
D:\ -> Fixed drive # 12 Gb (2 Mb free - 17%) [HP_RECOVERY] # NTFS
E:\ -> CD-ROM
F:\ -> Removable drive # 2 Gb (2 Mb free - 87%) [] # FAT32
H:\ -> Removable drive # 2 Gb (2 Mb free - 99%) [] # FAT32
################## | Files # Infected Folders |
################## | Registry |
Deleted ! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableRegistryTools
Deleted ! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives
Deleted ! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives
################## | Mountpoints2 |
################## | Listing |
[29/12/2010 - 09:27:04 | D ] C:\$AVG
[23/09/2011 - 21:19:59 | D ] C:\$AVG8.VAULT$
[28/09/2011 - 11:35:08 | D ] C:\$RECYCLE.BIN
[26/11/2007 - 16:50:49 | A | 74] C:\autoexec.bat
[18/11/2008 - 19:33:08 | D ] C:\boot
[19/01/2008 - 08:45:45 | RASH | 333203] C:\bootmgr
[26/09/2011 - 13:43:39 | A | 8025] C:\ComboFix.txt
[18/09/2006 - 22:43:37 | A | 10] C:\config.sys
[26/11/2007 - 17:19:31 | D ] C:\CVS
[02/11/2006 - 14:02:03 | SHD ] C:\Documents and Settings
[05/02/2009 - 17:22:25 | D ] C:\Halopps_work
[28/09/2011 - 11:24:37 | ASH | 2145837056] C:\hiberfil.sys
[27/01/2008 - 17:16:03 | D ] C:\HP
[27/11/2008 - 16:18:48 | D ] C:\Intel
[26/11/2007 - 16:26:16 | AH | 360] C:\IPH.PH
[26/11/2007 - 17:00:16 | RD ] C:\MSOCache
[01/12/2008 - 21:17:45 | D ] C:\old
[28/09/2011 - 11:24:34 | ASH | 2459627520] C:\pagefile.sys
[18/11/2008 - 19:19:58 | D ] C:\PerfLogs
[26/09/2011 - 13:05:14 | RD ] C:\Program Files
[26/09/2011 - 13:05:17 | D ] C:\ProgramData
[26/09/2011 - 13:43:42 | D ] C:\Qoobox
[17/08/2008 - 21:09:15 | A | 471] C:\RHDSetup.log
[26/09/2011 - 09:36:54 | A | 370] C:\rkill.log
[26/09/2011 - 10:57:25 | D ] C:\rsit
[27/11/2008 - 16:18:24 | D ] C:\SWSETUP
[28/09/2011 - 11:31:33 | SHD ] C:\System Volume Information
[27/11/2008 - 15:49:18 | D ] C:\System.sav
[26/09/2011 - 22:20:55 | A | 73396] C:\TDSSKiller.2.6.1.0_26.09.2011_22.20.17_log.txt
[24/04/2009 - 20:08:38 | A | 989] C:\updatedatfix.log
[28/09/2011 - 11:35:08 | D ] C:\UsbFix
[28/09/2011 - 11:27:19 | A | 2795] C:\UsbFix.txt
[19/04/2008 - 14:12:40 | RD ] C:\Users
[26/09/2011 - 13:43:41 | D ] C:\Windows
[26/09/2011 - 09:52:03 | D ] C:\zmije.com
[26/09/2011 - 09:55:35 | D ] C:\zmije.com20474z
[26/09/2011 - 13:43:42 | D ] C:\zmije2.com
[28/09/2011 - 11:35:08 | D ] D:\$RECYCLE.BIN
[11/09/2005 - 16:18:54 | SH | 340] D:\AUTOMODE
[19/04/2008 - 14:13:23 | SH | 13] D:\BLOCK.RIN
[27/01/2008 - 18:38:18 | D ] D:\boot
[04/10/2006 - 00:02:44 | SH | 438328] D:\bootmgr
[06/09/2008 - 12:19:22 | SH | 891] D:\Desktop.ini
[10/09/2002 - 17:14:28 | SH | 8134] D:\Folder.htt
[27/01/2008 - 18:38:18 | D ] D:\HP
[19/04/2008 - 14:31:50 | ASH | 734] D:\MASTER.LOG
[27/01/2008 - 18:38:18 | D ] D:\preload
[16/09/2002 - 15:37:48 | SH | 181898] D:\protect.chinese hong kong
[16/09/2002 - 15:37:40 | SH | 181916] D:\protect.chinese simplified
[16/09/2002 - 15:37:48 | SH | 181898] D:\protect.chinese traditional
[27/04/2006 - 17:19:40 | SH | 181865] D:\protect.czech
[03/11/2005 - 16:21:26 | SH | 181726] D:\protect.danish
[10/09/2002 - 14:56:12 | SH | 181605] D:\protect.dutch
[10/09/2002 - 14:50:18 | SH | 181651] D:\protect.ed
[22/11/2004 - 16:28:30 | SH | 181648] D:\protect.english
[03/11/2005 - 16:20:20 | SH | 181673] D:\protect.finnish
[03/11/2005 - 16:19:52 | SH | 181736] D:\protect.french
[03/11/2005 - 16:18:10 | SH | 181669] D:\protect.german
[23/11/2005 - 16:56:46 | SH | 182689] D:\protect.greek
[23/01/2006 - 10:18:00 | SH | 182605] D:\protect.hebrew
[28/08/2007 - 15:58:08 | SH | 181696] D:\protect.hungarian
[03/11/2005 - 16:17:00 | SH | 181554] D:\protect.italian
[10/04/2006 - 10:46:30 | SH | 182566] D:\protect.japanese
[24/11/2005 - 12:24:44 | SH | 218295] D:\protect.korean
[03/11/2005 - 16:15:12 | SH | 181578] D:\protect.norwegian
[25/04/2006 - 15:44:10 | SH | 181789] D:\protect.polish
[03/11/2005 - 16:13:12 | SH | 181624] D:\protect.portuguese
[27/10/2005 - 20:24:10 | SH | 181882] D:\protect.portuguese brazilian
[28/06/2004 - 09:52:46 | SH | 211936] D:\protect.russian
[03/11/2005 - 16:11:46 | SH | 181586] D:\protect.spanish
[10/09/2002 - 15:15:06 | SH | 181602] D:\protect.swedish
[12/08/2003 - 11:37:30 | SH | 181783] D:\protect.turkish
[27/01/2008 - 18:38:20 | RD ] D:\RECOVERY
[27/01/2008 - 18:38:19 | D ] D:\SOURCES
[27/01/2008 - 18:38:19 | SHD ] D:\System Volume Information
[27/01/2008 - 18:38:21 | D ] D:\Tools
[27/01/2008 - 17:23:45 | SH | 0] D:\USER
[27/01/2008 - 18:38:20 | D ] D:\WINDOWS
################## | Vaccin |
C:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
D:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
################## | E.O.F |
RSIT LOG -------------------------------------------------------------------------------------
Logfile of random's system information tool 1.09 (written by random/random)
Run by halo 1 at 2011-09-28 11:37:48
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 86 GB (61%) free of 141 GB
Total RAM: 2046 MB (49% free)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2009-12-18 61888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2011-09-23 1111320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2011-02-16 325408]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2011-09-23 1968920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-16 305328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-04-15 1164680]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll [2011-08-16 1007160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-16 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-16 305328]
{A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2011-09-23 1968920]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPStart"=C:\Program Files\Synaptics\SynTP\SynTPStart.exe [2007-09-15 102400]
"SMSERIAL"=C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2007-01-17 634880]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-03-09 4390912]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-15 178712]
"QPService"=C:\Program Files\HP\QuickPlay\QPService.exe [2007-10-01 181544]
"QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2007-09-19 202032]
"OnScreenDisplay"=C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe [2007-09-04 554320]
"UCam_Menu"=C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [2007-08-17 218408]
"HP Health Check Scheduler"=c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-06-16 75008]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2007-09-13 480560]
"WAWifiMessage"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe [2007-01-09 311296]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-10-03 13826664]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2011-09-23 2048352]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
""= []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisor"=C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [2007-10-02 1783136]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-05-22 68856]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-05-26 15147400]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.l3codecp"=l3codecp.acm
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2011-09-28 11:35:12 ----RASHD---- C:\Autorun.inf
2011-09-28 11:27:09 ----A---- C:\UsbFix.txt
2011-09-28 11:24:37 ----ASH---- C:\hiberfil.sys
2011-09-28 11:13:58 ----D---- C:\UsbFix
2011-09-26 22:20:17 ----A---- C:\TDSSKiller.2.6.1.0_26.09.2011_22.20.17_log.txt
2011-09-26 13:43:41 ----D---- C:\Windows\temp
2011-09-26 13:43:39 ----A---- C:\ComboFix.txt
2011-09-26 13:35:25 ----D---- C:\$RECYCLE.BIN
2011-09-26 13:22:38 ----D---- C:\zmije2.com
2011-09-26 13:05:44 ----D---- C:\Users\halo 1\AppData\Roaming\Malwarebytes
2011-09-26 13:05:17 ----D---- C:\ProgramData\Malwarebytes
2011-09-26 13:05:17 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2011-09-26 13:05:14 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-09-26 13:05:14 ----A---- C:\Windows\system32\drivers\mbam.sys
2011-09-26 10:13:06 ----A---- C:\Windows\system32\nvvsvc.exe
2011-09-26 09:54:36 ----A---- C:\Windows\system32\drivers\afd.sys
2011-09-26 09:52:22 ----D---- C:\zmije.com20474z
2011-09-26 09:51:20 ----A---- C:\Windows\zip.exe
2011-09-26 09:51:20 ----A---- C:\Windows\SWSC.exe
2011-09-26 09:51:20 ----A---- C:\Windows\SWREG.exe
2011-09-26 09:51:20 ----A---- C:\Windows\sed.exe
2011-09-26 09:51:20 ----A---- C:\Windows\PEV.exe
2011-09-26 09:51:20 ----A---- C:\Windows\NIRCMD.exe
2011-09-26 09:51:20 ----A---- C:\Windows\MBR.exe
2011-09-26 09:51:20 ----A---- C:\Windows\grep.exe
2011-09-26 09:51:10 ----D---- C:\zmije.com
2011-09-26 09:51:10 ----D---- C:\Windows\ERDNT
2011-09-26 09:50:08 ----D---- C:\Qoobox
2011-09-24 12:36:32 ----A---- C:\Windows\ntbtlog.txt
2011-09-24 12:16:44 ----D---- C:\Program Files\trend micro
2011-09-24 12:16:43 ----D---- C:\rsit
2011-09-24 00:27:06 ----D---- C:\Program Files\Microsoft Security Client
2011-09-23 20:53:03 ----D---- C:\$AVG8.VAULT$
2011-09-23 19:44:26 ----A---- C:\Windows\system32\drivers\avgtdix.sys
2011-09-23 19:44:26 ----A---- C:\Windows\system32\avgrsstx.dll
2011-09-23 19:43:44 ----A---- C:\Windows\system32\drivers\avgldx86.sys
2011-09-23 19:43:42 ----A---- C:\Windows\system32\drivers\avgmfx86.sys
2011-09-23 19:43:41 ----D---- C:\Windows\system32\drivers\Avg
2011-09-23 19:43:32 ----D---- C:\ProgramData\avg8
2011-09-23 16:55:58 ----HD---- C:\ProgramData\Common Files
======List of files/folders modified in the last 1 month======
2011-09-28 11:32:12 ----D---- C:\Windows\System32
2011-09-28 11:32:12 ----D---- C:\Windows\inf
2011-09-28 11:32:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-09-28 11:31:33 ----SHD---- C:\System Volume Information
2011-09-28 11:26:23 ----D---- C:\Users\halo 1\AppData\Roaming\Skype
2011-09-26 22:20:17 ----D---- C:\Windows\system32\drivers
2011-09-26 13:43:41 ----D---- C:\Windows
2011-09-26 13:37:28 ----A---- C:\Windows\system.ini
2011-09-26 13:36:08 ----D---- C:\Windows\Prefetch
2011-09-26 13:35:21 ----D---- C:\Windows\system32\drivers\etc
2011-09-26 13:33:29 ----D---- C:\Windows\system32\config
2011-09-26 13:29:53 ----D---- C:\Windows\AppPatch
2011-09-26 13:29:51 ----D---- C:\Program Files\Common Files
2011-09-26 13:05:17 ----D---- C:\ProgramData
2011-09-26 13:05:14 ----RD---- C:\Program Files
2011-09-26 11:03:41 ----D---- C:\Windows\Minidump
2011-09-26 09:54:24 ----SHDC---- C:\Windows\$NtUninstallKB3255$
2011-09-26 09:41:01 ----D---- C:\Windows\system32\catroot2
2011-09-25 08:50:09 ----D---- C:\Windows\Tasks
2011-09-24 11:56:18 ----SD---- C:\Users\halo 1\AppData\Roaming\Microsoft
2011-09-24 10:59:35 ----D---- C:\Windows\system32\Tasks
2011-09-24 10:42:04 ----SHD---- C:\Windows\Installer
2011-09-24 10:41:54 ----D---- C:\Program Files\Windows Sidebar
2011-09-24 00:27:51 ----D---- C:\Windows\system32\catroot
2011-09-24 00:27:45 ----SD---- C:\ProgramData\Microsoft
2011-09-24 00:26:55 ----D---- C:\Windows\winsxs
2011-09-24 00:03:09 ----D---- C:\ProgramData\MFAData
2011-09-23 19:04:53 ----HD---- C:\Windows\system32\GroupPolicy
2011-09-23 17:08:39 ----D---- C:\Program Files\AVG
2011-09-23 14:14:21 ----D---- C:\ProgramData\Google Updater
2011-09-21 19:26:37 ----D---- C:\Windows\LiveKernelReports
2011-09-15 03:05:27 ----D---- C:\ProgramData\Microsoft Help
2011-09-15 03:03:16 ----A---- C:\Windows\system32\mrt.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2008-04-15 312344]
R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\Windows\System32\Drivers\avgldx86.sys [2011-09-23 335240]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\Windows\System32\Drivers\avgmfx86.sys [2011-09-23 27784]
R1 AvgTdiX;AVG Free8 Network Redirector; C:\Windows\System32\Drivers\avgtdix.sys [2011-09-23 108552]
R2 {22D78859-9CE9-4B77-BF18-AC83E81A9263};{22D78859-9CE9-4B77-BF18-AC83E81A9263}; \??\C:\Program Files\HP\QuickPlay\000.fcl [2007-10-01 39408]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-24 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-03-22 37376]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
R3 HpqRemHid;HP Remote Control HID Device; C:\Windows\system32\DRIVERS\HpqRemHid.sys [2007-07-11 7168]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-03-12 1747936]
R3 NETw4v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-06-28 2222080]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-10-03 9905096]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-09-18 98816]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-19 88576]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2007-01-17 983936]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-09-15 191408]
R3 usbvideo;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S3 BCM43XV;Broadcom Extensible 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2006-11-02 464384]
S3 catchme;catchme; \??\C:\zmije2.com\catchme.sys []
S3 dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-19 131584]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-19 16384]
S3 Dot4Scan;Scan Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Scan.sys [2008-01-19 10752]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-19 36864]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 E100B;Intel(R) PRO Adapter Driver; C:\Windows\system32\DRIVERS\e100b325.sys [2006-11-02 163328]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2008-03-13 57536]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2008-03-13 72000]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2006-11-02 987648]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2006-10-19 1380864]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 winachsf;winachsf; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2006-11-02 654336]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-19 39936]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
S2 avg8emc;AVG Free8 E-mail Scanner; C:\PROGRA~1\AVG\AVG8\avgemc.exe [2011-09-23 908056]
S2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-10-03 219752]
S3 Com4Qlb;Com4Qlb; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe [2007-03-05 110592]
S3 GameConsoleService;GameConsoleService; C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe [2007-07-24 181800]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
-----------------EOF-----------------
AutoIT error
line 10073 (file "C:\usbfix\usbfix.exe"
error: variable must be of tzpe "subject"
takze jsem najel do normalniho modu a tam se to povedlo.... prikladam i log z Rsitu
USBFIX LOG -----------------------------------------------------------------------------
############################## | UsbFix 7.014 | [Deletion]
User: halo 1 (Administrator) # HALO1-PC [Hewlett-Packard HP Pavilion dv6700 Notebook PC]
Updated 24/06/10 by El Desaparecido / C_XX
Started at 11:27:10 | 28/09/2011
Website: http://pagesperso-orange.fr/NosTools/index.html
Contact: FindyKill.Contact@gmail.com
CPU: Intel(R) Core(TM)2 Duo CPU T5450 @ 1.66GHz
CPU 2: Intel(R) Core(TM)2 Duo CPU T5450 @ 1.66GHz
Microsoft® Windows Vista™ Home Premium (6.0.6001 32-Bit) # Service Pack 1
Internet Explorer 8.0.6001.19088
Windows Firewall: Enabled
RAM -> 2046 Mb
C:\ (%systemdrive%) -> Fixed drive # 137 Gb (84 Mb free - 61%) [] # NTFS
D:\ -> Fixed drive # 12 Gb (2 Mb free - 17%) [HP_RECOVERY] # NTFS
E:\ -> CD-ROM
F:\ -> Removable drive # 2 Gb (2 Mb free - 87%) [] # FAT32
H:\ -> Removable drive # 2 Gb (2 Mb free - 99%) [] # FAT32
################## | Files # Infected Folders |
################## | Registry |
Deleted ! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableRegistryTools
Deleted ! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives
Deleted ! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives
################## | Mountpoints2 |
################## | Listing |
[29/12/2010 - 09:27:04 | D ] C:\$AVG
[23/09/2011 - 21:19:59 | D ] C:\$AVG8.VAULT$
[28/09/2011 - 11:35:08 | D ] C:\$RECYCLE.BIN
[26/11/2007 - 16:50:49 | A | 74] C:\autoexec.bat
[18/11/2008 - 19:33:08 | D ] C:\boot
[19/01/2008 - 08:45:45 | RASH | 333203] C:\bootmgr
[26/09/2011 - 13:43:39 | A | 8025] C:\ComboFix.txt
[18/09/2006 - 22:43:37 | A | 10] C:\config.sys
[26/11/2007 - 17:19:31 | D ] C:\CVS
[02/11/2006 - 14:02:03 | SHD ] C:\Documents and Settings
[05/02/2009 - 17:22:25 | D ] C:\Halopps_work
[28/09/2011 - 11:24:37 | ASH | 2145837056] C:\hiberfil.sys
[27/01/2008 - 17:16:03 | D ] C:\HP
[27/11/2008 - 16:18:48 | D ] C:\Intel
[26/11/2007 - 16:26:16 | AH | 360] C:\IPH.PH
[26/11/2007 - 17:00:16 | RD ] C:\MSOCache
[01/12/2008 - 21:17:45 | D ] C:\old
[28/09/2011 - 11:24:34 | ASH | 2459627520] C:\pagefile.sys
[18/11/2008 - 19:19:58 | D ] C:\PerfLogs
[26/09/2011 - 13:05:14 | RD ] C:\Program Files
[26/09/2011 - 13:05:17 | D ] C:\ProgramData
[26/09/2011 - 13:43:42 | D ] C:\Qoobox
[17/08/2008 - 21:09:15 | A | 471] C:\RHDSetup.log
[26/09/2011 - 09:36:54 | A | 370] C:\rkill.log
[26/09/2011 - 10:57:25 | D ] C:\rsit
[27/11/2008 - 16:18:24 | D ] C:\SWSETUP
[28/09/2011 - 11:31:33 | SHD ] C:\System Volume Information
[27/11/2008 - 15:49:18 | D ] C:\System.sav
[26/09/2011 - 22:20:55 | A | 73396] C:\TDSSKiller.2.6.1.0_26.09.2011_22.20.17_log.txt
[24/04/2009 - 20:08:38 | A | 989] C:\updatedatfix.log
[28/09/2011 - 11:35:08 | D ] C:\UsbFix
[28/09/2011 - 11:27:19 | A | 2795] C:\UsbFix.txt
[19/04/2008 - 14:12:40 | RD ] C:\Users
[26/09/2011 - 13:43:41 | D ] C:\Windows
[26/09/2011 - 09:52:03 | D ] C:\zmije.com
[26/09/2011 - 09:55:35 | D ] C:\zmije.com20474z
[26/09/2011 - 13:43:42 | D ] C:\zmije2.com
[28/09/2011 - 11:35:08 | D ] D:\$RECYCLE.BIN
[11/09/2005 - 16:18:54 | SH | 340] D:\AUTOMODE
[19/04/2008 - 14:13:23 | SH | 13] D:\BLOCK.RIN
[27/01/2008 - 18:38:18 | D ] D:\boot
[04/10/2006 - 00:02:44 | SH | 438328] D:\bootmgr
[06/09/2008 - 12:19:22 | SH | 891] D:\Desktop.ini
[10/09/2002 - 17:14:28 | SH | 8134] D:\Folder.htt
[27/01/2008 - 18:38:18 | D ] D:\HP
[19/04/2008 - 14:31:50 | ASH | 734] D:\MASTER.LOG
[27/01/2008 - 18:38:18 | D ] D:\preload
[16/09/2002 - 15:37:48 | SH | 181898] D:\protect.chinese hong kong
[16/09/2002 - 15:37:40 | SH | 181916] D:\protect.chinese simplified
[16/09/2002 - 15:37:48 | SH | 181898] D:\protect.chinese traditional
[27/04/2006 - 17:19:40 | SH | 181865] D:\protect.czech
[03/11/2005 - 16:21:26 | SH | 181726] D:\protect.danish
[10/09/2002 - 14:56:12 | SH | 181605] D:\protect.dutch
[10/09/2002 - 14:50:18 | SH | 181651] D:\protect.ed
[22/11/2004 - 16:28:30 | SH | 181648] D:\protect.english
[03/11/2005 - 16:20:20 | SH | 181673] D:\protect.finnish
[03/11/2005 - 16:19:52 | SH | 181736] D:\protect.french
[03/11/2005 - 16:18:10 | SH | 181669] D:\protect.german
[23/11/2005 - 16:56:46 | SH | 182689] D:\protect.greek
[23/01/2006 - 10:18:00 | SH | 182605] D:\protect.hebrew
[28/08/2007 - 15:58:08 | SH | 181696] D:\protect.hungarian
[03/11/2005 - 16:17:00 | SH | 181554] D:\protect.italian
[10/04/2006 - 10:46:30 | SH | 182566] D:\protect.japanese
[24/11/2005 - 12:24:44 | SH | 218295] D:\protect.korean
[03/11/2005 - 16:15:12 | SH | 181578] D:\protect.norwegian
[25/04/2006 - 15:44:10 | SH | 181789] D:\protect.polish
[03/11/2005 - 16:13:12 | SH | 181624] D:\protect.portuguese
[27/10/2005 - 20:24:10 | SH | 181882] D:\protect.portuguese brazilian
[28/06/2004 - 09:52:46 | SH | 211936] D:\protect.russian
[03/11/2005 - 16:11:46 | SH | 181586] D:\protect.spanish
[10/09/2002 - 15:15:06 | SH | 181602] D:\protect.swedish
[12/08/2003 - 11:37:30 | SH | 181783] D:\protect.turkish
[27/01/2008 - 18:38:20 | RD ] D:\RECOVERY
[27/01/2008 - 18:38:19 | D ] D:\SOURCES
[27/01/2008 - 18:38:19 | SHD ] D:\System Volume Information
[27/01/2008 - 18:38:21 | D ] D:\Tools
[27/01/2008 - 17:23:45 | SH | 0] D:\USER
[27/01/2008 - 18:38:20 | D ] D:\WINDOWS
################## | Vaccin |
C:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
D:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
################## | E.O.F |
RSIT LOG -------------------------------------------------------------------------------------
Logfile of random's system information tool 1.09 (written by random/random)
Run by halo 1 at 2011-09-28 11:37:48
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 86 GB (61%) free of 141 GB
Total RAM: 2046 MB (49% free)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2009-12-18 61888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2011-09-23 1111320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2011-02-16 325408]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2011-09-23 1968920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-16 305328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-04-15 1164680]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll [2011-08-16 1007160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-16 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-16 305328]
{A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2011-09-23 1968920]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPStart"=C:\Program Files\Synaptics\SynTP\SynTPStart.exe [2007-09-15 102400]
"SMSERIAL"=C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2007-01-17 634880]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-03-09 4390912]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-15 178712]
"QPService"=C:\Program Files\HP\QuickPlay\QPService.exe [2007-10-01 181544]
"QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2007-09-19 202032]
"OnScreenDisplay"=C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe [2007-09-04 554320]
"UCam_Menu"=C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [2007-08-17 218408]
"HP Health Check Scheduler"=c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-06-16 75008]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2007-09-13 480560]
"WAWifiMessage"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe [2007-01-09 311296]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-10-03 13826664]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2011-09-23 2048352]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
""= []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisor"=C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [2007-10-02 1783136]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-05-22 68856]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-05-26 15147400]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.l3codecp"=l3codecp.acm
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2011-09-28 11:35:12 ----RASHD---- C:\Autorun.inf
2011-09-28 11:27:09 ----A---- C:\UsbFix.txt
2011-09-28 11:24:37 ----ASH---- C:\hiberfil.sys
2011-09-28 11:13:58 ----D---- C:\UsbFix
2011-09-26 22:20:17 ----A---- C:\TDSSKiller.2.6.1.0_26.09.2011_22.20.17_log.txt
2011-09-26 13:43:41 ----D---- C:\Windows\temp
2011-09-26 13:43:39 ----A---- C:\ComboFix.txt
2011-09-26 13:35:25 ----D---- C:\$RECYCLE.BIN
2011-09-26 13:22:38 ----D---- C:\zmije2.com
2011-09-26 13:05:44 ----D---- C:\Users\halo 1\AppData\Roaming\Malwarebytes
2011-09-26 13:05:17 ----D---- C:\ProgramData\Malwarebytes
2011-09-26 13:05:17 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2011-09-26 13:05:14 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-09-26 13:05:14 ----A---- C:\Windows\system32\drivers\mbam.sys
2011-09-26 10:13:06 ----A---- C:\Windows\system32\nvvsvc.exe
2011-09-26 09:54:36 ----A---- C:\Windows\system32\drivers\afd.sys
2011-09-26 09:52:22 ----D---- C:\zmije.com20474z
2011-09-26 09:51:20 ----A---- C:\Windows\zip.exe
2011-09-26 09:51:20 ----A---- C:\Windows\SWSC.exe
2011-09-26 09:51:20 ----A---- C:\Windows\SWREG.exe
2011-09-26 09:51:20 ----A---- C:\Windows\sed.exe
2011-09-26 09:51:20 ----A---- C:\Windows\PEV.exe
2011-09-26 09:51:20 ----A---- C:\Windows\NIRCMD.exe
2011-09-26 09:51:20 ----A---- C:\Windows\MBR.exe
2011-09-26 09:51:20 ----A---- C:\Windows\grep.exe
2011-09-26 09:51:10 ----D---- C:\zmije.com
2011-09-26 09:51:10 ----D---- C:\Windows\ERDNT
2011-09-26 09:50:08 ----D---- C:\Qoobox
2011-09-24 12:36:32 ----A---- C:\Windows\ntbtlog.txt
2011-09-24 12:16:44 ----D---- C:\Program Files\trend micro
2011-09-24 12:16:43 ----D---- C:\rsit
2011-09-24 00:27:06 ----D---- C:\Program Files\Microsoft Security Client
2011-09-23 20:53:03 ----D---- C:\$AVG8.VAULT$
2011-09-23 19:44:26 ----A---- C:\Windows\system32\drivers\avgtdix.sys
2011-09-23 19:44:26 ----A---- C:\Windows\system32\avgrsstx.dll
2011-09-23 19:43:44 ----A---- C:\Windows\system32\drivers\avgldx86.sys
2011-09-23 19:43:42 ----A---- C:\Windows\system32\drivers\avgmfx86.sys
2011-09-23 19:43:41 ----D---- C:\Windows\system32\drivers\Avg
2011-09-23 19:43:32 ----D---- C:\ProgramData\avg8
2011-09-23 16:55:58 ----HD---- C:\ProgramData\Common Files
======List of files/folders modified in the last 1 month======
2011-09-28 11:32:12 ----D---- C:\Windows\System32
2011-09-28 11:32:12 ----D---- C:\Windows\inf
2011-09-28 11:32:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-09-28 11:31:33 ----SHD---- C:\System Volume Information
2011-09-28 11:26:23 ----D---- C:\Users\halo 1\AppData\Roaming\Skype
2011-09-26 22:20:17 ----D---- C:\Windows\system32\drivers
2011-09-26 13:43:41 ----D---- C:\Windows
2011-09-26 13:37:28 ----A---- C:\Windows\system.ini
2011-09-26 13:36:08 ----D---- C:\Windows\Prefetch
2011-09-26 13:35:21 ----D---- C:\Windows\system32\drivers\etc
2011-09-26 13:33:29 ----D---- C:\Windows\system32\config
2011-09-26 13:29:53 ----D---- C:\Windows\AppPatch
2011-09-26 13:29:51 ----D---- C:\Program Files\Common Files
2011-09-26 13:05:17 ----D---- C:\ProgramData
2011-09-26 13:05:14 ----RD---- C:\Program Files
2011-09-26 11:03:41 ----D---- C:\Windows\Minidump
2011-09-26 09:54:24 ----SHDC---- C:\Windows\$NtUninstallKB3255$
2011-09-26 09:41:01 ----D---- C:\Windows\system32\catroot2
2011-09-25 08:50:09 ----D---- C:\Windows\Tasks
2011-09-24 11:56:18 ----SD---- C:\Users\halo 1\AppData\Roaming\Microsoft
2011-09-24 10:59:35 ----D---- C:\Windows\system32\Tasks
2011-09-24 10:42:04 ----SHD---- C:\Windows\Installer
2011-09-24 10:41:54 ----D---- C:\Program Files\Windows Sidebar
2011-09-24 00:27:51 ----D---- C:\Windows\system32\catroot
2011-09-24 00:27:45 ----SD---- C:\ProgramData\Microsoft
2011-09-24 00:26:55 ----D---- C:\Windows\winsxs
2011-09-24 00:03:09 ----D---- C:\ProgramData\MFAData
2011-09-23 19:04:53 ----HD---- C:\Windows\system32\GroupPolicy
2011-09-23 17:08:39 ----D---- C:\Program Files\AVG
2011-09-23 14:14:21 ----D---- C:\ProgramData\Google Updater
2011-09-21 19:26:37 ----D---- C:\Windows\LiveKernelReports
2011-09-15 03:05:27 ----D---- C:\ProgramData\Microsoft Help
2011-09-15 03:03:16 ----A---- C:\Windows\system32\mrt.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2008-04-15 312344]
R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\Windows\System32\Drivers\avgldx86.sys [2011-09-23 335240]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\Windows\System32\Drivers\avgmfx86.sys [2011-09-23 27784]
R1 AvgTdiX;AVG Free8 Network Redirector; C:\Windows\System32\Drivers\avgtdix.sys [2011-09-23 108552]
R2 {22D78859-9CE9-4B77-BF18-AC83E81A9263};{22D78859-9CE9-4B77-BF18-AC83E81A9263}; \??\C:\Program Files\HP\QuickPlay\000.fcl [2007-10-01 39408]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-24 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-03-22 37376]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
R3 HpqRemHid;HP Remote Control HID Device; C:\Windows\system32\DRIVERS\HpqRemHid.sys [2007-07-11 7168]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-03-12 1747936]
R3 NETw4v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-06-28 2222080]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-10-03 9905096]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-09-18 98816]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-19 88576]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2007-01-17 983936]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-09-15 191408]
R3 usbvideo;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S3 BCM43XV;Broadcom Extensible 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2006-11-02 464384]
S3 catchme;catchme; \??\C:\zmije2.com\catchme.sys []
S3 dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-19 131584]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-19 16384]
S3 Dot4Scan;Scan Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Scan.sys [2008-01-19 10752]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-19 36864]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 E100B;Intel(R) PRO Adapter Driver; C:\Windows\system32\DRIVERS\e100b325.sys [2006-11-02 163328]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2008-03-13 57536]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2008-03-13 72000]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2006-11-02 987648]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2006-10-19 1380864]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 winachsf;winachsf; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2006-11-02 654336]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-19 39936]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
S2 avg8emc;AVG Free8 E-mail Scanner; C:\PROGRA~1\AVG\AVG8\avgemc.exe [2011-09-23 908056]
S2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-10-03 219752]
S3 Com4Qlb;Com4Qlb; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe [2007-03-05 110592]
S3 GameConsoleService;GameConsoleService; C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe [2007-07-24 181800]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
-----------------EOF-----------------
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: ochromeny pc
některé tvoje informace jsou lehce matoucíOTM bezelo z externiho hadru, protoze instalace programu na desktop byla napadena virem
vyberu si tedy, že se jedná o notebook HPpo skonceni combofixu mi notas nechtel najet
----------------------------------------------
USB Fix
C:\ (%systemdrive%) -> Fixed drive # 137 Gb (84 Mb free - 61%) [] # NTFS
D:\ -> Fixed drive # 12 Gb (2 Mb free - 17%) [HP_RECOVERY] # NTFS
E:\ -> CD-ROM
F:\ -> Removable drive # 2 Gb (2 Mb free - 87%) [] # FAT32
H:\ -> Removable drive # 2 Gb (2 Mb free - 99%) [] # FAT32
co z toho je "externí hadr"
---------------------------------------------
Problémy přetrvávají?
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
Re: ochromeny pc
sorry ,to je tak kdyz tu misto me reaguje nekdo jinej. Nejsem totiz neustale doma, takze nektere ty posty patri sestre. Externim hadrem mela nejspis namysli usb klic nebo disk D.Co se tyce druhe citace tak jse moravak jak poleno a obcas mi nejakej ten slangovy vyraz ujede. Notas= notebook
co se tyce problemu tak pri spousteni nekterych aplikaci mi to haze hlasku ze pro spusteni dane aplikace potrebuji povoleni admina, i kdyz jsem prihlasen jako admin, a i presto ze programy spoustim jako admin.
Nejde mi odinstalovat avg, pri odinstalu to vypisuje chybu odinstalace.
Soubor truesight.sys byl samovolne vytvoren a umisten na plochu bez meho vedomi, scan souboru na virustotal.com ale nic nenasel.
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: ochromeny pc
výrazu noťas jsem rozuměl - jen tam byla předtím zmínka (asi sestra) o desktopu
došlo u mě ke zmatení pojmů - v tvém případě je desktop plocha a ne stolní PC jak jsem zprvu pochopil
odinstalaci AVG zkus
http://www.slunecnice.cz/sw/avg-remover/
------------------------------------------------------------------------------
Podle logů máš čisto - tak uklidíme a pak prověříme HW.
Podle návodu AVPTool odinstaluj
Spusť USB Fix - dej "Uninstall"
ComboFix odinstalujeme
jdi Start -> Spustit... a zkopíruj ComboFix /Uninstall (pozor, za x je mezera) -> OK
Stáhni TempFolderCleaner http://oldtimer.geekstogo.com/TFC.exe
Zavři všechny programy a spusť. Po ukončení akce bude PC restartován.
Pokud ne, restartuj sám.
(čistí Temp složky , nečistí URL, historii, prefetch ani cookies)
stáhni program OTC tady: http://oldtimer.geekstogo.com/OTC.exe - spusť ho -> "CleanUp" (smaže dříve použité čističe)
Vypni Obnovení systému -> restartuj -> zapni Obnovení systému http://www.viry.cz/forum/viewtopic.php?t=47040
Mohu doporučit kontrolu a vyčištění Ccleanerem
Po vyčištění by se hodila defragmentace
doporučuji http://www.slunecnice.cz/sw/defraggler/ + čeština
Kdyby něco z návodu nefungovalo, pokračuj dalším krokem.
Doinstaluj SP2
došlo u mě ke zmatení pojmů - v tvém případě je desktop plocha a ne stolní PC jak jsem zprvu pochopil
odinstalaci AVG zkus
http://www.slunecnice.cz/sw/avg-remover/
------------------------------------------------------------------------------
Podle logů máš čisto - tak uklidíme a pak prověříme HW.
Podle návodu AVPTool odinstaluj Spusť USB Fix - dej "Uninstall" ComboFix odinstalujemejdi Start -> Spustit... a zkopíruj ComboFix /Uninstall (pozor, za x je mezera) -> OK
Stáhni a spusť T-cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe - uklidí po použitých čističích.
Po spuštění ignoruj případné varování antiviru - je to v pořádku
Po provedení akce T-cleaner smažeš
Stáhni TempFolderCleaner http://oldtimer.geekstogo.com/TFC.exeZavři všechny programy a spusť. Po ukončení akce bude PC restartován.
Pokud ne, restartuj sám.
(čistí Temp složky , nečistí URL, historii, prefetch ani cookies)
stáhni program OTC tady: http://oldtimer.geekstogo.com/OTC.exe - spusť ho -> "CleanUp" (smaže dříve použité čističe) Vypni Obnovení systému -> restartuj -> zapni Obnovení systému http://www.viry.cz/forum/viewtopic.php?t=47040 Mohu doporučit kontrolu a vyčištění Ccleanerem
Ten si můžeš nechat i na budoucí občasné čištění.Stáhni Ccleaner - http://www.slunecnice.cz/sw/ccleaner/
Při instalaci vyhodit fajfku u "Instalovat Yahoo! Toolbar"
zavřít Internetový prohlížeč a
spustit "Čistič" > "Spustit Ccleaner" - odstraní nepotřebné
spustit "Registry" > "Hledej problémy" > "Opravit vybrané problémy"
souhlas se zálohou registrů - opakovat dokud nebudou registry čisté.
Návod:http://jnp.zive.cz/Clanky/Prirucka-do-k ... fault.aspx
Po vyčištění by se hodila defragmentacedoporučuji http://www.slunecnice.cz/sw/defraggler/ + čeština
Kdyby něco z návodu nefungovalo, pokračuj dalším krokem.
Doinstaluj SP2Ještě se podíváme jak je na tom HDD
Sáhni http://sourceforge.jp/projects/crystald ... _10_0.zip/
rozbal do nové složky a spusť DiskInfo.exe
pak Ctrl+C a do své odpovědi zde Ctrl+V
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
Re: ochromeny pc
uff
takze cim zacit....asi nejlip od zacatku
avg uspesne odinstalovano
AVPTool jsem nemohl najit jedinej program co mel co spolecneho s kasperskym je TDSkiller a ten mi tu zustal
USB Fix odinstalovan
Combofix windowsem nenalezen i presto ze jsem presne nakopiroval ComboFix /Uninstall do prikazoveho radku
T-cleaner done
TempFolderCleaner taktez hotov
OTCeckem procisteno
vypnuta obnova systemu a po restartu znova zapnuta
ccleaner taktez hotov
defragmentace - done
doinstalovano SP2
crystal disk info prikladam nakonci...
laptop vypada stabilneji, zadne zbytecne hlasky to nehaze a dokonce i internet se opet rozjel... vypada to ze se blizime do finale
----------------------------------------------------------------------------
CrystalDiskInfo 3.10.0 (C) 2008-2010 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows Vista Home Premium Edition SP2 [6.0 Build 6002] (x86)
Date : 2011/09/29 12:20:13
-- Controller Map ----------------------------------------------------------
- Ricoh SD/MMC Host Controller [ATA]
- Ricoh Memory Stick Controller [ATA]
- Ricoh xD-Picture Card Controller [ATA]
+ Intel(R) ICH8M Ultra ATA Storage Controllers - 2850 [ATA]
+ IDE Channel (0)
- TOSHIBA DVDW/HD SD-L802B ATA Device
- IDE Channel (1)
+ Intel(R) ICH8M-E/M SATA AHCI Controller [ATA]
- ST9160821AS
- Microsoft iSCSI Initiator [SCSI]
-- Disk List ---------------------------------------------------------------
(1) ST9160821AS : 160.0 GB [0-0-0, pd1]
----------------------------------------------------------------------------
(1) ST9160821AS
----------------------------------------------------------------------------
Model : ST9160821AS
Firmware : 3.BHE
Serial Number : 5MA9QAL7
Disk Size : 160.0 GB (8.4/137.4/160.0)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 312581808
Rotation Rate : Unknown
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ----
Transfer Mode : SATA/150
Power On Hours : 3236 hours
Power On Count : 1560 count
Temparature : 52 C (125 F)
Health Status : Good
Features : S.M.A.R.T., APM, 48bit LBA
APM Level : 8080h [ON]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 253 __6 000000000000 Read Error Rate
03 _99 _99 __0 000000000000 Spin-Up Time
04 _98 _98 _20 000000000B6C Start/Stop Count
05 100 100 _36 000000000000 Reallocated Sectors Count
07 _65 _60 _30 002F0708B6EF Seek Error Rate
09 _97 _97 __0 000000000CA4 Power-On Hours
0A 100 100 _34 000000000000 Spin Retry Count
0C _99 _99 _20 000000000618 Power Cycle Count
B8 100 253 __0 000000000000 End-to-End Error
BB _95 _95 __0 000000000005 Reported Uncorrectable Errors
BC 100 100 _45 000000000000 Command Timeout
BD _72 _72 __0 00000000001C High Fly Writes
BE _48 _39 __0 000035330034 Airflow Temperature
C0 100 100 __0 0000000000F3 Power-off Retract Count
C1 _53 _53 __0 000000016FDF Load/Unload Cycle Count
C2 _52 _61 __0 000600000034 Temperature
C3 _75 _64 __0 000006EF3D95 Hardware ECC recovered
C5 100 100 __0 000000000000 Current Pending Sector Count
C6 100 100 __0 000000000000 Uncorrectable Sector Count
C7 200 200 __0 000000000000 UltraDMA CRC Error Count
C8 100 253 __0 000000000000 Write Error Rate
CA 100 253 __0 000000000000 Data Address Mark Error
-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0C 5A 3F FF C8 37 00 10 00 00 00 00 00 3F 00 00
010: 00 00 00 00 35 4D 41 39 51 41 4C 37 20 20 20 20
020: 20 20 20 20 20 20 20 20 00 00 40 00 00 04 33 2E
030: 42 48 45 20 20 20 53 54 39 31 36 30 38 32 31 41
040: 53 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10
060: 00 00 2F 00 40 00 02 00 02 00 00 07 3F FF 00 10
070: 00 3F FC 10 00 FB 01 10 FF FF 0F FF 00 00 00 07
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 1F 04 02 00 00 00 48 00 48
0A0: 00 FE 00 00 30 6B 7C 09 60 03 30 69 BC 09 60 03
0B0: 20 3F 00 2C 00 2C 80 80 FF FE 00 00 FE 00 00 00
0C0: 00 00 00 00 00 00 00 00 9E B0 12 A1 00 00 00 00
0D0: 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 29 9E B0 12 A1 9E B0 12 A1 20 20 00 02 8A B6
110: 00 02 00 00 3C 06 3C 06 FF FF 07 C6 01 00 00 00
120: 10 0F 18 00 00 02 00 80 00 00 00 00 60 A0 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 0A 00 00 0B
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 01 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 61 A5
takze cim zacit....asi nejlip od zacatku
avg uspesne odinstalovano AVPTool jsem nemohl najit jedinej program co mel co spolecneho s kasperskym je TDSkiller a ten mi tu zustal USB Fix odinstalovan Combofix windowsem nenalezen i presto ze jsem presne nakopiroval ComboFix /Uninstall do prikazoveho radku T-cleaner done TempFolderCleaner taktez hotov OTCeckem procisteno vypnuta obnova systemu a po restartu znova zapnuta ccleaner taktez hotov defragmentace - done doinstalovano SP2 crystal disk info prikladam nakonci...laptop vypada stabilneji, zadne zbytecne hlasky to nehaze a dokonce i internet se opet rozjel... vypada to ze se blizime do finale
----------------------------------------------------------------------------
CrystalDiskInfo 3.10.0 (C) 2008-2010 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows Vista Home Premium Edition SP2 [6.0 Build 6002] (x86)
Date : 2011/09/29 12:20:13
-- Controller Map ----------------------------------------------------------
- Ricoh SD/MMC Host Controller [ATA]
- Ricoh Memory Stick Controller [ATA]
- Ricoh xD-Picture Card Controller [ATA]
+ Intel(R) ICH8M Ultra ATA Storage Controllers - 2850 [ATA]
+ IDE Channel (0)
- TOSHIBA DVDW/HD SD-L802B ATA Device
- IDE Channel (1)
+ Intel(R) ICH8M-E/M SATA AHCI Controller [ATA]
- ST9160821AS
- Microsoft iSCSI Initiator [SCSI]
-- Disk List ---------------------------------------------------------------
(1) ST9160821AS : 160.0 GB [0-0-0, pd1]
----------------------------------------------------------------------------
(1) ST9160821AS
----------------------------------------------------------------------------
Model : ST9160821AS
Firmware : 3.BHE
Serial Number : 5MA9QAL7
Disk Size : 160.0 GB (8.4/137.4/160.0)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 312581808
Rotation Rate : Unknown
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ----
Transfer Mode : SATA/150
Power On Hours : 3236 hours
Power On Count : 1560 count
Temparature : 52 C (125 F)
Health Status : Good
Features : S.M.A.R.T., APM, 48bit LBA
APM Level : 8080h [ON]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 253 __6 000000000000 Read Error Rate
03 _99 _99 __0 000000000000 Spin-Up Time
04 _98 _98 _20 000000000B6C Start/Stop Count
05 100 100 _36 000000000000 Reallocated Sectors Count
07 _65 _60 _30 002F0708B6EF Seek Error Rate
09 _97 _97 __0 000000000CA4 Power-On Hours
0A 100 100 _34 000000000000 Spin Retry Count
0C _99 _99 _20 000000000618 Power Cycle Count
B8 100 253 __0 000000000000 End-to-End Error
BB _95 _95 __0 000000000005 Reported Uncorrectable Errors
BC 100 100 _45 000000000000 Command Timeout
BD _72 _72 __0 00000000001C High Fly Writes
BE _48 _39 __0 000035330034 Airflow Temperature
C0 100 100 __0 0000000000F3 Power-off Retract Count
C1 _53 _53 __0 000000016FDF Load/Unload Cycle Count
C2 _52 _61 __0 000600000034 Temperature
C3 _75 _64 __0 000006EF3D95 Hardware ECC recovered
C5 100 100 __0 000000000000 Current Pending Sector Count
C6 100 100 __0 000000000000 Uncorrectable Sector Count
C7 200 200 __0 000000000000 UltraDMA CRC Error Count
C8 100 253 __0 000000000000 Write Error Rate
CA 100 253 __0 000000000000 Data Address Mark Error
-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0C 5A 3F FF C8 37 00 10 00 00 00 00 00 3F 00 00
010: 00 00 00 00 35 4D 41 39 51 41 4C 37 20 20 20 20
020: 20 20 20 20 20 20 20 20 00 00 40 00 00 04 33 2E
030: 42 48 45 20 20 20 53 54 39 31 36 30 38 32 31 41
040: 53 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10
060: 00 00 2F 00 40 00 02 00 02 00 00 07 3F FF 00 10
070: 00 3F FC 10 00 FB 01 10 FF FF 0F FF 00 00 00 07
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 1F 04 02 00 00 00 48 00 48
0A0: 00 FE 00 00 30 6B 7C 09 60 03 30 69 BC 09 60 03
0B0: 20 3F 00 2C 00 2C 80 80 FF FE 00 00 FE 00 00 00
0C0: 00 00 00 00 00 00 00 00 9E B0 12 A1 00 00 00 00
0D0: 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 29 9E B0 12 A1 9E B0 12 A1 20 20 00 02 8A B6
110: 00 02 00 00 3C 06 3C 06 FF FF 07 C6 01 00 00 00
120: 10 0F 18 00 00 02 00 80 00 00 00 00 60 A0 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 0A 00 00 0B
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 01 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 61 A5
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: ochromeny pc
Jak je to s právy při spouštění programů?http://windows.microsoft.com/cs-CZ/wind ... or-folders
dej mi závěrečný RSITDoporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
Re: ochromeny pc
prava pri spousteni programu jsou bezproblemu ... akorat pri spusteni rsitu mi to nahodilo hlasku:
windows cannot access the specified device,patch or file. you may not have the appropriate permissions to access the item.
ale log to stejne udelalo:
Logfile of random's system information tool 1.09 (written by random/random)
Run by halo 1 at 2011-09-29 14:16:16
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 102 GB (72%) free of 141 GB
Total RAM: 2046 MB (49% free)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2009-12-18 61888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2011-02-16 325408]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-16 305328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-04-15 1164680]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll [2011-08-16 1007160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-16 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-16 305328]
{A057A204-BACC-4D26-9990-79A187E2698E}
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPStart"=C:\Program Files\Synaptics\SynTP\SynTPStart.exe [2007-09-15 102400]
"SMSERIAL"=C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2007-01-17 634880]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-03-09 4390912]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-15 178712]
"QPService"=C:\Program Files\HP\QuickPlay\QPService.exe [2007-10-01 181544]
"QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2007-09-19 202032]
"OnScreenDisplay"=C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe [2007-09-04 554320]
"UCam_Menu"=C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [2007-08-17 218408]
"HP Health Check Scheduler"=c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-06-16 75008]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2007-09-13 480560]
"WAWifiMessage"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe [2007-01-09 311296]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-09-06 3722416]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisor"=C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [2007-10-02 1783136]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-05-22 68856]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=0
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=0
"NoDrives"=0
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.l3codecp"=l3codecp.acm
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2011-09-29 14:14:01 ----D---- C:\rsit
2011-09-29 13:03:19 ----A---- C:\TDSSKiller.2.6.1.0_29.09.2011_13.03.19_log.txt
2011-09-29 12:57:12 ----A---- C:\TDSSKiller.2.6.1.0_29.09.2011_12.57.12_log.txt
2011-09-29 12:54:27 ----A---- C:\TDSSKiller.2.6.1.0_29.09.2011_12.54.27_log.txt
2011-09-29 12:22:37 ----A---- C:\Windows\system32\drivers\aswSP.sys
2011-09-29 12:22:37 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2011-09-29 12:22:34 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2011-09-29 12:22:34 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2011-09-29 12:22:34 ----A---- C:\Windows\system32\drivers\aswRdr.sys
2011-09-29 12:22:33 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2011-09-29 12:22:03 ----A---- C:\Windows\system32\aswBoot.exe
2011-09-29 12:22:03 ----A---- C:\Windows\avastSS.scr
2011-09-29 12:21:43 ----D---- C:\ProgramData\AVAST Software
2011-09-29 12:21:43 ----D---- C:\Program Files\AVAST Software
2011-09-29 11:57:29 ----D---- C:\Windows\system32\vi-VN
2011-09-29 11:57:29 ----D---- C:\Windows\system32\eu-ES
2011-09-29 11:57:29 ----D---- C:\Windows\system32\ca-ES
2011-09-29 11:53:20 ----D---- C:\Windows\system32\SPReview
2011-09-29 11:41:44 ----A---- C:\Windows\system32\scavenge.dll
2011-09-29 11:41:37 ----A---- C:\Windows\system32\compcln.exe
2011-09-29 11:40:53 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2011-09-29 11:40:53 ----A---- C:\Windows\system32\secproc_ssp.dll
2011-09-29 11:40:53 ----A---- C:\Windows\system32\secproc_isv.dll
2011-09-29 11:40:53 ----A---- C:\Windows\system32\secproc.dll
2011-09-29 11:40:52 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2011-09-29 11:40:52 ----A---- C:\Windows\system32\SearchIndexer.exe
2011-09-29 11:40:52 ----A---- C:\Windows\system32\SearchFilterHost.exe
2011-09-29 11:40:52 ----A---- C:\Windows\system32\sdohlp.dll
2011-09-29 11:40:52 ----A---- C:\Windows\system32\scrrun.dll
2011-09-29 11:40:52 ----A---- C:\Windows\system32\samlib.dll
2011-09-29 11:40:52 ----A---- C:\Windows\system32\rtffilt.dll
2011-09-29 11:40:52 ----A---- C:\Windows\system32\rsaenh.dll
2011-09-29 11:40:52 ----A---- C:\Windows\system32\rpcss.dll
2011-09-29 11:40:52 ----A---- C:\Windows\system32\rpchttp.dll
2011-09-29 11:40:52 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2011-09-29 11:40:52 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2011-09-29 11:40:52 ----A---- C:\Windows\system32\RMActivate_isv.exe
2011-09-29 11:40:52 ----A---- C:\Windows\system32\RMActivate.exe
2011-09-29 11:40:52 ----A---- C:\Windows\system32\riched20.dll
2011-09-29 11:40:52 ----A---- C:\Windows\system32\drivers\sdbus.sys
2011-09-29 11:40:52 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2011-09-29 11:40:52 ----A---- C:\Windows\system32\drivers\rmcast.sys
2011-09-29 11:40:51 ----A---- C:\Windows\system32\SCardSvr.dll
2011-09-29 11:40:51 ----A---- C:\Windows\system32\scansetting.dll
2011-09-29 11:40:51 ----A---- C:\Windows\system32\samsrv.dll
2011-09-29 11:40:50 ----A---- C:\Windows\system32\scrobj.dll
2011-09-29 11:40:50 ----A---- C:\Windows\system32\scksp.dll
2011-09-29 11:40:50 ----A---- C:\Windows\system32\scesrv.dll
2011-09-29 11:40:50 ----A---- C:\Windows\system32\scecli.dll
2011-09-29 11:40:48 ----A---- C:\Windows\system32\pdh.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\powercpl.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PNPXAssoc.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PnPutil.exe
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PnPUnattend.exe
2011-09-29 11:40:47 ----A---- C:\Windows\system32\pnpui.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\pnpsetup.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\pnidui.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PkgMgr.exe
2011-09-29 11:40:47 ----A---- C:\Windows\system32\pidgenx.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\photowiz.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PhotoScreensaver.scr
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\perfdisk.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\pcaui.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\p2psvc.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\P2PGraph.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\drivers\portcls.sys
2011-09-29 11:40:47 ----A---- C:\Windows\system32\drivers\pciidex.sys
2011-09-29 11:40:47 ----A---- C:\Windows\system32\drivers\pci.sys
2011-09-29 11:40:47 ----A---- C:\Windows\system32\drivers\partmgr.sys
2011-09-29 11:40:47 ----A---- C:\Windows\system32\drivers\pacer.sys
2011-09-29 11:40:46 ----A---- C:\Windows\system32\nslookup.exe
2011-09-29 11:40:46 ----A---- C:\Windows\system32\drivers\ntfs.sys
2011-09-29 11:40:46 ----A---- C:\Windows\system32\drivers\npfs.sys
2011-09-29 11:40:44 ----A---- C:\Windows\system32\osk.exe
2011-09-29 11:40:44 ----A---- C:\Windows\system32\onex.dll
2011-09-29 11:40:44 ----A---- C:\Windows\system32\offfilt.dll
2011-09-29 11:40:44 ----A---- C:\Windows\system32\odbccp32.dll
2011-09-29 11:40:44 ----A---- C:\Windows\system32\odbcconf.dll
2011-09-29 11:40:44 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2011-09-29 11:40:44 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2011-09-29 11:40:44 ----A---- C:\Windows\system32\nlhtml.dll
2011-09-29 11:40:44 ----A---- C:\Windows\system32\drivers\ohci1394.sys
2011-09-29 11:40:43 ----A---- C:\Windows\system32\oobefldr.dll
2011-09-29 11:40:43 ----A---- C:\Windows\system32\olepro32.dll
2011-09-29 11:40:43 ----A---- C:\Windows\system32\oleprn.dll
2011-09-29 11:40:43 ----A---- C:\Windows\system32\ocsetup.exe
2011-09-29 11:40:43 ----A---- C:\Windows\system32\ntprint.dll
2011-09-29 11:40:43 ----A---- C:\Windows\system32\ntmarta.dll
2011-09-29 11:40:43 ----A---- C:\Windows\system32\drivers\nwifi.sys
2011-09-29 11:40:42 ----A---- C:\Windows\system32\RelMon.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rekeywiz.exe
2011-09-29 11:40:42 ----A---- C:\Windows\system32\regsvc.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\reg.exe
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rdpencom.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rastapi.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rasppp.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rasplap.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rasmontr.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rasmans.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rasgcw.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rasdlg.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rasdial.exe
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rasdiag.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\raschap.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rasapi32.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\RacEngn.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\Query.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\qmgr.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\qedit.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\drivers\rdbss.sys
2011-09-29 11:40:42 ----A---- C:\Windows\system32\drivers\rassstp.sys
2011-09-29 11:40:42 ----A---- C:\Windows\system32\drivers\raspppoe.sys
2011-09-29 11:40:41 ----A---- C:\Windows\system32\regapi.dll
2011-09-29 11:40:41 ----A---- C:\Windows\system32\rdpwsx.dll
2011-09-29 11:40:41 ----A---- C:\Windows\system32\prnntfy.dll
2011-09-29 11:40:41 ----A---- C:\Windows\system32\printui.dll
2011-09-29 11:40:41 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2011-09-29 11:40:41 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2011-09-29 11:40:41 ----A---- C:\Windows\system32\PresentationSettings.exe
2011-09-29 11:40:41 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2011-09-29 11:40:41 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2011-09-29 11:40:41 ----A---- C:\Windows\system32\powrprof.dll
2011-09-29 11:40:41 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2011-09-29 11:40:40 ----A---- C:\Windows\system32\qdvd.dll
2011-09-29 11:40:40 ----A---- C:\Windows\system32\QAGENTRT.DLL
2011-09-29 11:40:40 ----A---- C:\Windows\system32\puiapi.dll
2011-09-29 11:40:40 ----A---- C:\Windows\system32\psisdecd.dll
2011-09-29 11:40:40 ----A---- C:\Windows\system32\PSHED.DLL
2011-09-29 11:40:40 ----A---- C:\Windows\system32\propsys.dll
2011-09-29 11:40:40 ----A---- C:\Windows\system32\propdefs.dll
2011-09-29 11:40:40 ----A---- C:\Windows\system32\profsvc.dll
2011-09-29 11:40:37 ----A---- C:\Windows\system32\sendmail.dll
2011-09-29 11:40:36 ----A---- C:\Windows\system32\shdocvw.dll
2011-09-29 11:40:36 ----A---- C:\Windows\system32\setupapi.dll
2011-09-29 11:40:36 ----A---- C:\Windows\system32\sethc.exe
2011-09-29 11:40:36 ----A---- C:\Windows\system32\services.exe
2011-09-29 11:40:29 ----A---- C:\Windows\system32\eapphost.dll
2011-09-29 11:40:29 ----A---- C:\Windows\system32\drivers\ecache.sys
2011-09-29 11:40:28 ----A---- C:\Windows\system32\EhStorAPI.dll
2011-09-29 11:40:28 ----A---- C:\Windows\system32\eappgnui.dll
2011-09-29 11:40:28 ----A---- C:\Windows\system32\eappcfg.dll
2011-09-29 11:40:28 ----A---- C:\Windows\system32\eapp3hst.dll
2011-09-29 11:40:27 ----A---- C:\Windows\system32\drivers\Dumpata.sys
2011-09-29 11:40:26 ----A---- C:\Windows\system32\f3ahvoas.dll
2011-09-29 11:40:26 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-09-29 11:40:26 ----A---- C:\Windows\system32\evr.dll
2011-09-29 11:40:26 ----A---- C:\Windows\system32\eudcedit.exe
2011-09-29 11:40:26 ----A---- C:\Windows\system32\esent.dll
2011-09-29 11:40:26 ----A---- C:\Windows\system32\emdmgmt.dll
2011-09-29 11:40:26 ----A---- C:\Windows\system32\EhStorPwdMgr.dll
2011-09-29 11:40:26 ----A---- C:\Windows\system32\EhStorAuthn.dll
2011-09-29 11:40:26 ----A---- C:\Windows\system32\dwm.exe
2011-09-29 11:40:26 ----A---- C:\Windows\system32\dsprop.dll
2011-09-29 11:40:26 ----A---- C:\Windows\system32\dsound.dll
2011-09-29 11:40:26 ----A---- C:\Windows\system32\drivers\exfat.sys
2011-09-29 11:40:26 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-09-29 11:40:26 ----A---- C:\Windows\system32\drivers\dxg.sys
2011-09-29 11:40:26 ----A---- C:\Windows\explorer.exe
2011-09-29 11:40:25 ----A---- C:\Windows\system32\es.dll
2011-09-29 11:40:25 ----A---- C:\Windows\system32\EhStorShell.dll
2011-09-29 11:40:25 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-09-29 11:40:25 ----A---- C:\Windows\system32\drivers\disk.sys
2011-09-29 11:40:25 ----A---- C:\Windows\system32\diskraid.exe
2011-09-29 11:40:25 ----A---- C:\Windows\system32\diskpart.exe
2011-09-29 11:40:25 ----A---- C:\Windows\system32\dimsroam.dll
2011-09-29 11:40:25 ----A---- C:\Windows\system32\diagperf.dll
2011-09-29 11:40:25 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2011-09-29 11:40:25 ----A---- C:\Windows\system32\dhcpcsvc.dll
2011-09-29 11:40:25 ----A---- C:\Windows\system32\devmgr.dll
2011-09-29 11:40:24 ----A---- C:\Windows\system32\hbaapi.dll
2011-09-29 11:40:24 ----A---- C:\Windows\system32\gpresult.exe
2011-09-29 11:40:24 ----A---- C:\Windows\system32\drvstore.dll
2011-09-29 11:40:24 ----A---- C:\Windows\system32\drvinst.exe
2011-09-29 11:40:24 ----A---- C:\Windows\system32\drmv2clt.dll
2011-09-29 11:40:24 ----A---- C:\Windows\system32\drmmgrtn.dll
2011-09-29 11:40:24 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2011-09-29 11:40:24 ----A---- C:\Windows\system32\dpapimig.exe
2011-09-29 11:40:24 ----A---- C:\Windows\system32\dot3svc.dll
2011-09-29 11:40:24 ----A---- C:\Windows\system32\dot3msm.dll
2011-09-29 11:40:24 ----A---- C:\Windows\system32\dot3cfg.dll
2011-09-29 11:40:24 ----A---- C:\Windows\system32\dmusic.dll
2011-09-29 11:40:24 ----A---- C:\Windows\system32\dmsynth.dll
2011-09-29 11:40:23 ----A---- C:\Windows\system32\iasnap.dll
2011-09-29 11:40:23 ----A---- C:\Windows\system32\IasMigReader.exe
2011-09-29 11:40:23 ----A---- C:\Windows\system32\IasMigPlugin.dll
2011-09-29 11:40:23 ----A---- C:\Windows\system32\iashlpr.dll
2011-09-29 11:40:23 ----A---- C:\Windows\system32\iasdatastore.dll
2011-09-29 11:40:23 ----A---- C:\Windows\system32\iasads.dll
2011-09-29 11:40:23 ----A---- C:\Windows\system32\iasacct.dll
2011-09-29 11:40:23 ----A---- C:\Windows\system32\hidserv.dll
2011-09-29 11:40:23 ----A---- C:\Windows\system32\hdwwiz.exe
2011-09-29 11:40:23 ----A---- C:\Windows\system32\gpupdate.exe
2011-09-29 11:40:23 ----A---- C:\Windows\system32\gpsvc.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\gpapi.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\gdi32.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\fontext.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\findstr.exe
2011-09-29 11:40:22 ----A---- C:\Windows\system32\feclient.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\fdWSD.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\fdWCN.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\fdSSDP.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\fdProxy.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\fdeploy.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\fdBthProxy.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\fdBth.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\fc.exe
2011-09-29 11:40:22 ----A---- C:\Windows\system32\Faultrep.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2011-09-29 11:40:22 ----A---- C:\Windows\system32\drivers\fastfat.sys
2011-09-29 11:40:21 ----A---- C:\Windows\system32\gpedit.dll
2011-09-29 11:40:21 ----A---- C:\Windows\system32\fundisc.dll
2011-09-29 11:40:21 ----A---- C:\Windows\system32\ftp.exe
2011-09-29 11:40:19 ----A---- C:\Windows\system32\gameux.dll
2011-09-29 11:40:19 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2011-09-29 11:40:19 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2011-09-29 11:40:19 ----A---- C:\Windows\system32\FunctionDiscoveryFolder.dll
2011-09-29 11:40:19 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2011-09-29 11:40:19 ----A---- C:\Windows\system32\drivers\ataport.sys
2011-09-29 11:40:19 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2011-09-29 11:40:19 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
2011-09-29 11:40:19 ----A---- C:\Windows\system32\autochk.exe
2011-09-29 11:40:19 ----A---- C:\Windows\system32\authz.dll
2011-09-29 11:40:19 ----A---- C:\Windows\system32\authui.dll
2011-09-29 11:40:19 ----A---- C:\Windows\system32\audiosrv.dll
2011-09-29 11:40:19 ----A---- C:\Windows\system32\AudioSes.dll
2011-09-29 11:40:19 ----A---- C:\Windows\system32\audiodg.exe
2011-09-29 11:40:18 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2011-09-29 11:40:18 ----A---- C:\Windows\system32\autoplay.dll
2011-09-29 11:40:18 ----A---- C:\Windows\system32\autofmt.exe
2011-09-29 11:40:18 ----A---- C:\Windows\system32\autoconv.exe
2011-09-29 11:40:17 ----A---- C:\Windows\system32\drivers\bridge.sys
2011-09-29 11:40:17 ----A---- C:\Windows\system32\drivers\atapi.sys
2011-09-29 11:40:17 ----A---- C:\Windows\system32\bthci.dll
2011-09-29 11:40:17 ----A---- C:\Windows\system32\browseui.dll
2011-09-29 11:40:17 ----A---- C:\Windows\system32\brcpl.dll
2011-09-29 11:40:17 ----A---- C:\Windows\system32\blackbox.dll
2011-09-29 11:40:17 ----A---- C:\Windows\system32\bitsigd.dll
2011-09-29 11:40:17 ----A---- C:\Windows\system32\basecsp.dll
2011-09-29 11:40:17 ----A---- C:\Windows\system32\azroles.dll
2011-09-29 11:40:16 ----A---- C:\Windows\system32\drivers\acpi.sys
2011-09-29 11:40:16 ----A---- C:\Windows\system32\BFE.DLL
2011-09-29 11:40:16 ----A---- C:\Windows\system32\bcrypt.dll
2011-09-29 11:40:16 ----A---- C:\Windows\system32\Apphlpdm.dll
2011-09-29 11:40:16 ----A---- C:\Windows\system32\apphelp.dll
2011-09-29 11:40:16 ----A---- C:\Windows\system32\accessibilitycpl.dll
2011-09-29 11:40:15 ----A---- C:\Windows\system32\conime.exe
2011-09-29 11:40:15 ----A---- C:\Windows\system32\comsvcs.dll
2011-09-29 11:40:15 ----A---- C:\Windows\system32\apds.dll
2011-09-29 11:40:15 ----A---- C:\Windows\system32\advapi32.dll
2011-09-29 11:40:15 ----A---- C:\Windows\system32\adtschema.dll
2011-09-29 11:40:15 ----A---- C:\Windows\system32\adsmsext.dll
2011-09-29 11:40:15 ----A---- C:\Windows\system32\adsldpc.dll
2011-09-29 11:40:14 ----A---- C:\Windows\system32\drivers\crashdmp.sys
2011-09-29 11:40:14 ----A---- C:\Windows\system32\crypt32.dll
2011-09-29 11:40:14 ----A---- C:\Windows\system32\credui.dll
2011-09-29 11:40:14 ----A---- C:\Windows\system32\connect.dll
2011-09-29 11:40:14 ----A---- C:\Windows\system32\comuid.dll
2011-09-29 11:40:14 ----A---- C:\Windows\system32\cmdial32.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\DevicePairingWizard.exe
2011-09-29 11:40:13 ----A---- C:\Windows\system32\DevicePairingProxy.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\DevicePairing.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\DeviceEject.exe
2011-09-29 11:40:13 ----A---- C:\Windows\system32\dbgeng.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\davclnt.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\dataclen.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\d3d9.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\csrstub.exe
2011-09-29 11:40:13 ----A---- C:\Windows\system32\cscript.exe
2011-09-29 11:40:13 ----A---- C:\Windows\system32\cscdll.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\cscapi.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\cryptui.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\cryptsvc.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\comdlg32.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\cmmon32.exe
2011-09-29 11:40:13 ----A---- C:\Windows\system32\cdd.dll
2011-09-29 11:40:12 ----A---- C:\Windows\system32\drivers\cdrom.sys
2011-09-29 11:40:12 ----A---- C:\Windows\system32\certmgr.dll
2011-09-29 11:40:12 ----A---- C:\Windows\system32\CertEnrollUI.dll
2011-09-29 11:40:12 ----A---- C:\Windows\system32\CertEnroll.dll
2011-09-29 11:40:12 ----A---- C:\Windows\system32\certcli.dll
2011-09-29 11:40:12 ----A---- C:\Windows\system32\bthudtask.exe
2011-09-29 11:40:12 ----A---- C:\Windows\system32\bthserv.dll
2011-09-29 11:40:10 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2011-09-29 11:40:10 ----A---- C:\Windows\system32\clfs.sys
2011-09-29 11:40:10 ----A---- C:\Windows\system32\cipher.exe
2011-09-29 11:40:10 ----A---- C:\Windows\system32\ci.dll
2011-09-29 11:40:10 ----A---- C:\Windows\system32\CHxReadingStringIME.dll
2011-09-29 11:40:10 ----A---- C:\Windows\system32\chtbrkr.dll
2011-09-29 11:40:10 ----A---- C:\Windows\system32\chsbrkr.dll
2011-09-29 11:40:10 ----A---- C:\Windows\system32\certreq.exe
2011-09-29 11:40:10 ----A---- C:\Windows\system32\certprop.dll
2011-09-29 11:40:10 ----A---- C:\Windows\system32\cbsra.exe
2011-09-29 11:40:09 ----A---- C:\Windows\system32\msihnd.dll
2011-09-29 11:40:09 ----A---- C:\Windows\system32\msiexec.exe
2011-09-29 11:40:09 ----A---- C:\Windows\system32\msftedit.dll
2011-09-29 11:40:09 ----A---- C:\Windows\system32\msexcl40.dll
2011-09-29 11:40:09 ----A---- C:\Windows\system32\msexch40.dll
2011-09-29 11:40:09 ----A---- C:\Windows\system32\msdtctm.dll
2011-09-29 11:40:09 ----A---- C:\Windows\system32\certutil.exe
2011-09-29 11:40:08 ----A---- C:\Windows\system32\msi.dll
2011-09-29 11:40:07 ----A---- C:\Windows\system32\msimsg.dll
2011-09-29 11:40:07 ----A---- C:\Windows\system32\msdtcprx.dll
2011-09-29 11:40:07 ----A---- C:\Windows\system32\msdrm.dll
2011-09-29 11:40:07 ----A---- C:\Windows\system32\msctfui.dll
2011-09-29 11:40:07 ----A---- C:\Windows\system32\msctfp.dll
2011-09-29 11:40:07 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2011-09-29 11:40:07 ----A---- C:\Windows\system32\msctf.dll
2011-09-29 11:40:06 ----A---- C:\Windows\system32\MPSSVC.dll
2011-09-29 11:40:06 ----A---- C:\Windows\system32\mprapi.dll
2011-09-29 11:40:06 ----A---- C:\Windows\system32\mpr.dll
2011-09-29 11:40:06 ----A---- C:\Windows\system32\modemui.dll
2011-09-29 11:40:06 ----A---- C:\Windows\system32\MMDevAPI.dll
2011-09-29 11:40:05 ----A---- C:\Windows\system32\mscories.dll
2011-09-29 11:40:05 ----A---- C:\Windows\system32\mscorier.dll
2011-09-29 11:40:05 ----A---- C:\Windows\system32\mscms.dll
2011-09-29 11:40:05 ----A---- C:\Windows\system32\mscandui.dll
2011-09-29 11:40:05 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2011-09-29 11:40:04 ----A---- C:\Windows\system32\NetProjW.dll
2011-09-29 11:40:04 ----A---- C:\Windows\system32\netplwiz.dll
2011-09-29 11:40:04 ----A---- C:\Windows\system32\netlogon.dll
2011-09-29 11:40:04 ----A---- C:\Windows\system32\netcenter.dll
2011-09-29 11:40:04 ----A---- C:\Windows\system32\netapi32.dll
2011-09-29 11:40:04 ----A---- C:\Windows\system32\ncryptui.dll
2011-09-29 11:40:04 ----A---- C:\Windows\system32\ncrypt.dll
2011-09-29 11:40:04 ----A---- C:\Windows\system32\mtxclu.dll
2011-09-29 11:40:04 ----A---- C:\Windows\system32\drivers\netbt.sys
2011-09-29 11:40:04 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2011-09-29 11:40:04 ----A---- C:\Windows\system32\drivers\ndis.sys
2011-09-29 11:40:04 ----A---- C:\Windows\system32\drivers\mup.sys
2011-09-29 11:40:02 ----A---- C:\Windows\system32\netshell.dll
2011-09-29 11:40:02 ----A---- C:\Windows\system32\NcdProp.dll
2011-09-29 11:40:02 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2011-09-29 11:40:01 ----A---- C:\Windows\system32\newdev.exe
2011-09-29 11:40:01 ----A---- C:\Windows\system32\newdev.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\networkmap.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\networkitemfactory.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\networkexplorer.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msvcp60.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msutb.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msscntrs.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msscb.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msrepl40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msrd3x40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msrd2x40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\mspbde40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msnetobj.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msltus40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msjtes40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msjter40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msjint40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msjetoledb40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msjet40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msisip.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msinfo32.exe
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msimtf.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\drivers\msrpc.sys
2011-09-29 11:40:00 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2011-09-29 11:39:59 ----A---- C:\Windows\system32\msxbde40.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\mswstr10.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\mswsock.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\mswdat10.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\MSVidCtl.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\msvcrt.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\mssrch.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\mssprxy.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\mssphtb.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\mssph.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\mssitlb.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\msshooks.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\msscp.dll
2011-09-29 11:39:58 ----A---- C:\Windows\system32\mstlsapi.dll
2011-09-29 11:39:58 ----A---- C:\Windows\system32\mstext40.dll
2011-09-29 11:39:58 ----A---- C:\Windows\system32\mssvp.dll
2011-09-29 11:39:58 ----A---- C:\Windows\system32\msstrc.dll
2011-09-29 11:39:58 ----A---- C:\Windows\system32\InkEd.dll
2011-09-29 11:39:58 ----A---- C:\Windows\system32\infocardapi.dll
2011-09-29 11:39:58 ----A---- C:\Windows\system32\inetppui.dll
2011-09-29 11:39:58 ----A---- C:\Windows\system32\inetpp.dll
2011-09-29 11:39:57 ----A---- C:\Windows\system32\iscsilog.dll
2011-09-29 11:39:57 ----A---- C:\Windows\system32\ipsmsnap.dll
2011-09-29 11:39:57 ----A---- C:\Windows\system32\IPSECSVC.DLL
2011-09-29 11:39:57 ----A---- C:\Windows\system32\imm32.dll
2011-09-29 11:39:56 ----A---- C:\Windows\system32\ipsecsnp.dll
2011-09-29 11:39:56 ----A---- C:\Windows\system32\iphlpsvc.dll
2011-09-29 11:39:56 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2011-09-29 11:39:56 ----A---- C:\Windows\system32\ipconfig.exe
2011-09-29 11:39:56 ----A---- C:\Windows\system32\input.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\IMJP10K.DLL
2011-09-29 11:39:55 ----A---- C:\Windows\system32\imapi2fs.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\imapi2.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\imapi.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\IKEEXT.DLL
2011-09-29 11:39:55 ----A---- C:\Windows\system32\ifmon.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\icardres.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\icardagt.exe
2011-09-29 11:39:55 ----A---- C:\Windows\system32\iassvcs.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\iassdo.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\iassam.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\iasrecst.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\iasrad.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\iaspolcy.dll
2011-09-29 11:39:53 ----A---- C:\Windows\system32\mfplat.dll
2011-09-29 11:39:50 ----A---- C:\Windows\system32\milcore.dll
2011-09-29 11:39:49 ----A---- C:\Windows\system32\mmcndmgr.dll
2011-09-29 11:39:49 ----A---- C:\Windows\system32\mmcico.dll
2011-09-29 11:39:49 ----A---- C:\Windows\system32\mmci.dll
2011-09-29 11:39:49 ----A---- C:\Windows\system32\mmc.exe
2011-09-29 11:39:49 ----A---- C:\Windows\system32\mimefilt.dll
2011-09-29 11:39:49 ----A---- C:\Windows\system32\midimap.dll
2011-09-29 11:39:49 ----A---- C:\Windows\system32\korwbrkr.dll
2011-09-29 11:39:49 ----A---- C:\Windows\system32\drivers\ks.sys
2011-09-29 11:39:48 ----A---- C:\Windows\system32\l2nacp.dll
2011-09-29 11:39:48 ----A---- C:\Windows\system32\kernel32.dll
2011-09-29 11:39:48 ----A---- C:\Windows\system32\kdusb.dll
2011-09-29 11:39:48 ----A---- C:\Windows\system32\kdcom.dll
2011-09-29 11:39:48 ----A---- C:\Windows\system32\kd1394.dll
2011-09-29 11:39:48 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2011-09-29 11:39:47 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2011-09-29 11:39:47 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2011-09-29 11:39:47 ----A---- C:\Windows\system32\mcmde.dll
2011-09-29 11:39:47 ----A---- C:\Windows\system32\mblctr.exe
2011-09-29 11:39:47 ----A---- C:\Windows\system32\logman.exe
2011-09-29 11:39:47 ----A---- C:\Windows\system32\logagent.exe
2011-09-29 11:39:46 ----A---- C:\Windows\system32\Magnify.exe
2011-09-29 11:39:45 ----A---- C:\Windows\system32\wercon.exe
2011-09-29 11:39:45 ----A---- C:\Windows\system32\wer.dll
2011-09-29 11:39:45 ----A---- C:\Windows\system32\WebClnt.dll
2011-09-29 11:39:45 ----A---- C:\Windows\system32\wdscore.dll
2011-09-29 11:39:45 ----A---- C:\Windows\system32\wdc.dll
2011-09-29 11:39:45 ----A---- C:\Windows\system32\shsetup.dll
2011-09-29 11:39:44 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2011-09-29 11:39:44 ----A---- C:\Windows\system32\WindowsCodecs.dll
2011-09-29 11:39:44 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2011-09-29 11:39:44 ----A---- C:\Windows\system32\wevtutil.exe
2011-09-29 11:39:43 ----A---- C:\Windows\system32\win32spl.dll
2011-09-29 11:39:43 ----A---- C:\Windows\system32\whealogr.dll
2011-09-29 11:39:43 ----A---- C:\Windows\system32\wevtsvc.dll
2011-09-29 11:39:43 ----A---- C:\Windows\system32\wevtapi.dll
2011-09-29 11:39:43 ----A---- C:\Windows\system32\wersvc.dll
2011-09-29 11:39:43 ----A---- C:\Windows\system32\WerFaultSecure.exe
2011-09-29 11:39:43 ----A---- C:\Windows\system32\WerFault.exe
2011-09-29 11:39:42 ----A---- C:\Windows\system32\wiaaut.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\wiaservc.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\version.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\vdsutil.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\vdsdyn.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\vds.exe
2011-09-29 11:39:41 ----A---- C:\Windows\system32\vdmdbg.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\uxsms.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\Utilman.exe
2011-09-29 11:39:41 ----A---- C:\Windows\system32\userenv.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\usercpl.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\user32.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2011-09-29 11:39:41 ----A---- C:\Windows\system32\drivers\usbport.sys
2011-09-29 11:39:37 ----A---- C:\Windows\system32\wcnwiz2.dll
2011-09-29 11:39:37 ----A---- C:\Windows\system32\WcnNetsh.dll
2011-09-29 11:39:37 ----A---- C:\Windows\system32\wcncsvc.dll
2011-09-29 11:39:37 ----A---- C:\Windows\system32\drivers\watchdog.sys
2011-09-29 11:39:36 ----A---- C:\Windows\system32\wcnwiz.dll
2011-09-29 11:39:36 ----A---- C:\Windows\system32\VSSVC.exe
2011-09-29 11:39:36 ----A---- C:\Windows\system32\drivers\volmgrx.sys
2011-09-29 11:39:35 ----A---- C:\Windows\system32\w32time.dll
2011-09-29 11:39:35 ----A---- C:\Windows\system32\vssapi.dll
2011-09-29 11:39:35 ----A---- C:\Windows\system32\drivers\volsnap.sys
2011-09-29 11:39:34 ----A---- C:\Windows\system32\wscisvif.dll
2011-09-29 11:39:34 ----A---- C:\Windows\system32\WscEapPr.dll
2011-09-29 11:39:34 ----A---- C:\Windows\system32\wscapi.dll
2011-09-29 11:39:32 ----A---- C:\Windows\system32\WSDMon.dll
2011-09-29 11:39:32 ----A---- C:\Windows\system32\wsdchngr.dll
2011-09-29 11:39:32 ----A---- C:\Windows\system32\wscsvc.dll
2011-09-29 11:39:32 ----A---- C:\Windows\system32\wscript.exe
2011-09-29 11:39:32 ----A---- C:\Windows\system32\wscntfy.dll
2011-09-29 11:39:32 ----A---- C:\Windows\system32\WMVSDECD.DLL
2011-09-29 11:39:31 ----A---- C:\Windows\system32\wow32.dll
2011-09-29 11:39:31 ----A---- C:\Windows\system32\WMVXENCD.DLL
2011-09-29 11:39:31 ----A---- C:\Windows\system32\WMVENCOD.DLL
2011-09-29 11:39:26 ----A---- C:\Windows\system32\wusa.exe
2011-09-29 11:39:26 ----A---- C:\Windows\system32\wpcsvc.dll
2011-09-29 11:39:26 ----A---- C:\Windows\system32\wpccpl.dll
2011-09-29 11:39:26 ----A---- C:\Windows\system32\wpcao.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\xmlfilter.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\wsnmp32.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\WsmSvc.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\wshext.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\wshbth.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\wsepno.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\wlgpclnt.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\Wldap32.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\wlanui.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\wlanpref.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\wlangpui.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\wisptis.exe
2011-09-29 11:39:25 ----A---- C:\Windows\system32\winrnr.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\winresume.exe
2011-09-29 11:39:24 ----A---- C:\Windows\system32\WMPhoto.dll
2011-09-29 11:39:24 ----A---- C:\Windows\system32\wmpeffects.dll
2011-09-29 11:39:24 ----A---- C:\Windows\system32\WMNetMgr.dll
2011-09-29 11:39:24 ----A---- C:\Windows\system32\WinSCard.dll
2011-09-29 11:39:24 ----A---- C:\Windows\system32\WinSAT.exe
2011-09-29 11:39:24 ----A---- C:\Windows\system32\winmm.dll
2011-09-29 11:39:24 ----A---- C:\Windows\system32\winlogon.exe
2011-09-29 11:39:24 ----A---- C:\Windows\system32\winload.exe
2011-09-29 11:39:23 ----A---- C:\Windows\system32\wmdrmsdk.dll
2011-09-29 11:39:23 ----A---- C:\Windows\system32\sud.dll
2011-09-29 11:39:23 ----A---- C:\Windows\system32\Storprop.dll
2011-09-29 11:39:23 ----A---- C:\Windows\system32\stobject.dll
2011-09-29 11:39:23 ----A---- C:\Windows\system32\drivers\stream.sys
2011-09-29 11:39:23 ----A---- C:\Windows\system32\drivers\Storport.sys
2011-09-29 11:39:22 ----A---- C:\Windows\system32\srcore.dll
2011-09-29 11:39:22 ----A---- C:\Windows\system32\srchadmin.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\sysmain.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\sysclass.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SyncCenter.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\swprv.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\spoolss.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\spinstall.exe
2011-09-29 11:39:18 ----A---- C:\Windows\system32\smss.exe
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SmiEngine.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SMBHelperClass.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\slwmi.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\slwga.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SLUINotify.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SLUI.exe
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SLsvc.exe
2011-09-29 11:39:18 ----A---- C:\Windows\system32\slmgr.vbs
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SLLUA.exe
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SLCommDlg.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\slcinst.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SLCExt.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\slcc.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SLC.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\shwebsvc.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\drivers\smb.sys
2011-09-29 11:39:17 ----A---- C:\Windows\system32\TsWpfWrp.exe
2011-09-29 11:39:17 ----A---- C:\Windows\system32\TSTheme.exe
2011-09-29 11:39:17 ----A---- C:\Windows\system32\sqlsrv32.dll
2011-09-29 11:39:17 ----A---- C:\Windows\system32\spwizui.dll
2011-09-29 11:39:17 ----A---- C:\Windows\system32\spwinsat.dll
2011-09-29 11:39:17 ----A---- C:\Windows\system32\spreview.exe
2011-09-29 11:39:17 ----A---- C:\Windows\system32\spp.dll
2011-09-29 11:39:17 ----A---- C:\Windows\system32\sperror.dll
2011-09-29 11:39:17 ----A---- C:\Windows\system32\spcmsg.dll
2011-09-29 11:39:17 ----A---- C:\Windows\system32\softkbd.dll
2011-09-29 11:39:17 ----A---- C:\Windows\system32\SnippingTool.exe
2011-09-29 11:39:17 ----A---- C:\Windows\system32\SndVol.exe
2011-09-29 11:39:17 ----A---- C:\Windows\system32\drivers\udfs.sys
2011-09-29 11:39:17 ----A---- C:\Windows\system32\drivers\spsys.sys
2011-09-29 11:39:16 ----A---- C:\Windows\system32\zipfldr.dll
2011-09-29 11:39:16 ----A---- C:\Windows\system32\untfs.dll
2011-09-29 11:39:16 ----A---- C:\Windows\system32\umpnpmgr.dll
2011-09-29 11:39:16 ----A---- C:\Windows\system32\ulib.dll
2011-09-29 11:39:16 ----A---- C:\Windows\system32\uDWM.dll
2011-09-29 11:39:16 ----A---- C:\Windows\system32\systemcpl.dll
2011-09-29 11:39:16 ----A---- C:\Windows\system32\drivers\usbhub.sys
2011-09-29 11:39:16 ----A---- C:\Windows\system32\drivers\usbehci.sys
2011-09-29 11:39:16 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2011-09-29 11:39:16 ----A---- C:\Windows\system32\drivers\USBCAMD.sys
2011-09-29 11:39:16 ----A---- C:\Windows\system32\drivers\usb8023.sys
2011-09-29 11:39:14 ----A---- C:\Windows\system32\tquery.dll
2011-09-29 11:39:14 ----A---- C:\Windows\system32\themeui.dll
2011-09-29 11:39:14 ----A---- C:\Windows\system32\themecpl.dll
2011-09-29 11:39:14 ----A---- C:\Windows\system32\thawbrkr.dll
2011-09-29 11:39:14 ----A---- C:\Windows\system32\termsrv.dll
2011-09-29 11:39:14 ----A---- C:\Windows\system32\tcpmon.dll
2011-09-29 11:39:14 ----A---- C:\Windows\system32\tcpipcfg.dll
2011-09-29 11:39:14 ----A---- C:\Windows\system32\tapisrv.dll
2011-09-29 11:39:14 ----A---- C:\Windows\system32\drivers\termdd.sys
2011-09-29 11:39:14 ----A---- C:\Windows\system32\drivers\tdx.sys
2011-09-29 03:32:16 ----D---- C:\Program Files\Defraggler
2011-09-29 03:24:02 ----D---- C:\Program Files\CCleaner
2011-09-29 03:09:18 ----A---- C:\TDSSKiller.2.6.1.0_29.09.2011_03.09.18_log.txt
2011-09-29 02:39:12 ----ASH---- C:\hiberfil.sys
2011-09-28 15:05:48 ----D---- C:\Windows\temp
2011-09-28 15:03:24 ----SHD---- C:\$RECYCLE.BIN
2011-09-28 14:53:40 ----D---- C:\zmije2.com30282z
2011-09-28 11:47:32 ----RAD---- C:\Autorun.inf
2011-09-26 13:22:38 ----D---- C:\zmije2.com
2011-09-26 13:05:44 ----D---- C:\Users\halo 1\AppData\Roaming\Malwarebytes
2011-09-26 13:05:17 ----D---- C:\ProgramData\Malwarebytes
2011-09-26 13:05:17 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2011-09-26 13:05:14 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-09-26 13:05:14 ----A---- C:\Windows\system32\drivers\mbam.sys
2011-09-26 10:13:06 ----A---- C:\Windows\system32\nvvsvc.exe
2011-09-26 09:52:22 ----D---- C:\zmije.com20474z
2011-09-26 09:51:10 ----D---- C:\zmije.com
2011-09-26 09:50:08 ----D---- C:\Qoobox
2011-09-24 12:16:44 ----D---- C:\Program Files\trend micro
2011-09-24 00:27:06 ----D---- C:\Program Files\Microsoft Security Client
2011-09-24 00:26:26 ----A---- C:\Windows\system32\drivers\netio.sys
2011-09-23 20:53:03 ----D---- C:\$AVG8.VAULT$
2011-09-23 16:55:58 ----HD---- C:\ProgramData\Common Files
======List of files/folders modified in the last 1 month======
2011-09-29 14:16:13 ----D---- C:\Windows\Prefetch
2011-09-29 14:15:15 ----D---- C:\Windows\System32
2011-09-29 14:15:15 ----D---- C:\Windows\inf
2011-09-29 14:15:15 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-09-29 14:00:38 ----D---- C:\Windows\winsxs
2011-09-29 14:00:37 ----D---- C:\Windows\system32\wbem
2011-09-29 14:00:04 ----D---- C:\Windows\system32\catroot2
2011-09-29 14:00:01 ----SHD---- C:\System Volume Information
2011-09-29 13:20:52 ----D---- C:\Windows\Microsoft.NET
2011-09-29 13:20:41 ----RSD---- C:\Windows\assembly
2011-09-29 13:03:22 ----D---- C:\Windows\system32\drivers
2011-09-29 12:22:22 ----SHD---- C:\Windows\Installer
2011-09-29 12:22:03 ----D---- C:\Windows
2011-09-29 12:21:43 ----RD---- C:\Program Files
2011-09-29 12:21:43 ----D---- C:\ProgramData
2011-09-29 12:18:29 ----D---- C:\Windows\rescache
2011-09-29 12:09:03 ----SHD---- C:\boot
2011-09-29 12:08:46 ----D---- C:\Windows\system32\catroot
2011-09-29 11:57:56 ----D---- C:\Program Files\Windows Mail
2011-09-29 11:57:56 ----D---- C:\Program Files\Windows Calendar
2011-09-29 11:57:56 ----D---- C:\Program Files\Movie Maker
2011-09-29 11:57:55 ----D---- C:\Program Files\Windows Sidebar
2011-09-29 11:57:55 ----D---- C:\Program Files\Windows Photo Gallery
2011-09-29 11:57:55 ----D---- C:\Program Files\Windows Media Player
2011-09-29 11:57:55 ----D---- C:\Program Files\Windows Journal
2011-09-29 11:57:55 ----D---- C:\Program Files\Internet Explorer
2011-09-29 11:57:54 ----D---- C:\Windows\servicing
2011-09-29 11:57:54 ----D---- C:\Windows\ehome
2011-09-29 11:57:54 ----D---- C:\Program Files\Windows Defender
2011-09-29 11:57:54 ----D---- C:\Program Files\Common Files\System
2011-09-29 11:57:51 ----D---- C:\Windows\system32\XPSViewer
2011-09-29 11:57:51 ----D---- C:\Windows\system32\sk-SK
2011-09-29 11:57:51 ----D---- C:\Windows\system32\lv-LV
2011-09-29 11:57:51 ----D---- C:\Windows\system32\ko-KR
2011-09-29 11:57:51 ----D---- C:\Windows\system32\hr-HR
2011-09-29 11:57:51 ----D---- C:\Windows\system32\et-EE
2011-09-29 11:57:51 ----D---- C:\Windows\system32\da-DK
2011-09-29 11:57:51 ----D---- C:\Windows\IME
2011-09-29 11:57:50 ----D---- C:\Windows\system32\en-US
2011-09-29 11:57:49 ----D---- C:\Windows\system32\oobe
2011-09-29 11:57:49 ----D---- C:\Windows\system32\migration
2011-09-29 11:57:49 ----D---- C:\Windows\system32\it-IT
2011-09-29 11:57:49 ----D---- C:\Windows\system32\el-GR
2011-09-29 11:57:49 ----D---- C:\Windows\system32\de-DE
2011-09-29 11:57:48 ----D---- C:\Windows\system32\zh-CN
2011-09-29 11:57:48 ----D---- C:\Windows\system32\sv-SE
2011-09-29 11:57:48 ----D---- C:\Windows\system32\SLUI
2011-09-29 11:57:48 ----D---- C:\Windows\system32\setup
2011-09-29 11:57:48 ----D---- C:\Windows\system32\ru-RU
2011-09-29 11:57:48 ----D---- C:\Windows\system32\pt-PT
2011-09-29 11:57:48 ----D---- C:\Windows\system32\hu-HU
2011-09-29 11:57:48 ----D---- C:\Windows\system32\he-IL
2011-09-29 11:57:48 ----D---- C:\Windows\system32\fr-FR
2011-09-29 11:57:48 ----D---- C:\Windows\system32\fi-FI
2011-09-29 11:57:48 ----D---- C:\Windows\system32\cs-CZ
2011-09-29 11:57:48 ----D---- C:\Windows\system32\AdvancedInstallers
2011-09-29 11:57:47 ----D---- C:\Windows\system32\zh-TW
2011-09-29 11:57:47 ----D---- C:\Windows\system32\uk-UA
2011-09-29 11:57:47 ----D---- C:\Windows\system32\tr-TR
2011-09-29 11:57:47 ----D---- C:\Windows\system32\th-TH
2011-09-29 11:57:47 ----D---- C:\Windows\system32\sr-Latn-CS
2011-09-29 11:57:47 ----D---- C:\Windows\system32\sl-SI
2011-09-29 11:57:47 ----D---- C:\Windows\system32\ro-RO
2011-09-29 11:57:47 ----D---- C:\Windows\system32\pl-PL
2011-09-29 11:57:47 ----D---- C:\Windows\system32\manifeststore
2011-09-29 11:57:47 ----D---- C:\Windows\system32\ja-JP
2011-09-29 11:57:47 ----D---- C:\Windows\system32\es-ES
2011-09-29 11:57:47 ----D---- C:\Windows\system32\en
2011-09-29 11:57:47 ----D---- C:\Windows\system32\drivers\en-US
2011-09-29 11:57:47 ----D---- C:\Windows\system32\bg-BG
2011-09-29 11:57:46 ----D---- C:\Windows\system32\pt-BR
2011-09-29 11:57:46 ----D---- C:\Windows\system32\nl-NL
2011-09-29 11:57:46 ----D---- C:\Windows\system32\nb-NO
2011-09-29 11:57:46 ----D---- C:\Windows\system32\migwiz
2011-09-29 11:57:46 ----D---- C:\Windows\system32\lt-LT
2011-09-29 11:57:46 ----D---- C:\Windows\system32\ar-SA
2011-09-29 11:57:35 ----RSD---- C:\Windows\Fonts
2011-09-29 11:57:35 ----D---- C:\Windows\AppPatch
2011-09-29 11:57:29 ----D---- C:\Windows\system32\Boot
2011-09-29 11:56:51 ----D---- C:\ProgramData\NVIDIA
2011-09-29 11:55:50 ----D---- C:\Windows\system32\drivers\UMDF
2011-09-29 11:55:41 ----D---- C:\Windows\system32\RTCOM
2011-09-29 11:51:33 ----A---- C:\Windows\fonts\GlobalUserInterface.CompositeFont
2011-09-29 11:11:12 ----D---- C:\Users\halo 1\AppData\Roaming\Skype
2011-09-29 03:28:25 ----D---- C:\Windows\panther
2011-09-29 03:28:23 ----D---- C:\Windows\Debug
2011-09-29 03:00:46 ----A---- C:\Windows\system32\mrt.exe
2011-09-29 02:36:52 ----D---- C:\Windows\Minidump
2011-09-28 15:02:16 ----A---- C:\Windows\system.ini
2011-09-28 14:58:37 ----D---- C:\Program Files\Common Files
2011-09-28 14:58:35 ----SD---- C:\Users\halo 1\AppData\Roaming\Microsoft
2011-09-26 13:35:21 ----D---- C:\Windows\system32\drivers\etc
2011-09-26 13:33:29 ----D---- C:\Windows\system32\config
2011-09-26 09:54:24 ----SHDC---- C:\Windows\$NtUninstallKB3255$
2011-09-25 08:50:09 ----D---- C:\Windows\Tasks
2011-09-24 10:59:35 ----D---- C:\Windows\system32\Tasks
2011-09-24 00:27:45 ----SD---- C:\ProgramData\Microsoft
2011-09-24 00:03:09 ----D---- C:\ProgramData\MFAData
2011-09-23 19:04:53 ----HD---- C:\Windows\system32\GroupPolicy
2011-09-23 17:08:39 ----D---- C:\Program Files\AVG
2011-09-23 14:14:21 ----D---- C:\ProgramData\Google Updater
2011-09-21 19:26:37 ----D---- C:\Windows\LiveKernelReports
2011-09-15 03:05:27 ----D---- C:\ProgramData\Microsoft Help
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2008-04-15 312344]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-09-06 34392]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-09-06 442200]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-09-06 320856]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-09-06 52568]
R2 {22D78859-9CE9-4B77-BF18-AC83E81A9263};{22D78859-9CE9-4B77-BF18-AC83E81A9263}; \??\C:\Program Files\HP\QuickPlay\000.fcl [2007-10-01 39408]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-09-06 20568]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-09-06 54616]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-24 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-03-22 37376]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
R3 HpqRemHid;HP Remote Control HID Device; C:\Windows\system32\DRIVERS\HpqRemHid.sys [2007-07-11 7168]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-03-12 1747936]
R3 NETw4v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-06-28 2222080]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-10-03 9905096]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-09-18 98816]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-10 89088]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2007-01-17 983936]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-09-15 191408]
R3 usbvideo;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S3 BCM43XV;Broadcom Extensible 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2006-11-02 464384]
S3 dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-19 131584]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-19 16384]
S3 Dot4Scan;Scan Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Scan.sys [2008-01-19 10752]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-19 36864]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 E100B;Intel(R) PRO Adapter Driver; C:\Windows\system32\DRIVERS\e100b325.sys [2006-11-02 163328]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2008-03-13 57536]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2008-03-13 72000]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2006-11-02 987648]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2006-10-19 1380864]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 winachsf;winachsf; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2006-11-02 654336]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-19 39936]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-09-06 44768]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-10-03 219752]
S3 Com4Qlb;Com4Qlb; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe [2007-03-05 110592]
S3 GameConsoleService;GameConsoleService; C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe [2007-07-24 181800]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
-----------------EOF-----------------
windows cannot access the specified device,patch or file. you may not have the appropriate permissions to access the item.
ale log to stejne udelalo:
Logfile of random's system information tool 1.09 (written by random/random)
Run by halo 1 at 2011-09-29 14:16:16
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 102 GB (72%) free of 141 GB
Total RAM: 2046 MB (49% free)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2009-12-18 61888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2011-02-16 325408]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-16 305328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-04-15 1164680]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll [2011-08-16 1007160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-16 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-16 305328]
{A057A204-BACC-4D26-9990-79A187E2698E}
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPStart"=C:\Program Files\Synaptics\SynTP\SynTPStart.exe [2007-09-15 102400]
"SMSERIAL"=C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2007-01-17 634880]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-03-09 4390912]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-15 178712]
"QPService"=C:\Program Files\HP\QuickPlay\QPService.exe [2007-10-01 181544]
"QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2007-09-19 202032]
"OnScreenDisplay"=C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe [2007-09-04 554320]
"UCam_Menu"=C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [2007-08-17 218408]
"HP Health Check Scheduler"=c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-06-16 75008]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2007-09-13 480560]
"WAWifiMessage"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe [2007-01-09 311296]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-09-06 3722416]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisor"=C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [2007-10-02 1783136]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-05-22 68856]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=0
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=0
"NoDrives"=0
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.l3codecp"=l3codecp.acm
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2011-09-29 14:14:01 ----D---- C:\rsit
2011-09-29 13:03:19 ----A---- C:\TDSSKiller.2.6.1.0_29.09.2011_13.03.19_log.txt
2011-09-29 12:57:12 ----A---- C:\TDSSKiller.2.6.1.0_29.09.2011_12.57.12_log.txt
2011-09-29 12:54:27 ----A---- C:\TDSSKiller.2.6.1.0_29.09.2011_12.54.27_log.txt
2011-09-29 12:22:37 ----A---- C:\Windows\system32\drivers\aswSP.sys
2011-09-29 12:22:37 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2011-09-29 12:22:34 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2011-09-29 12:22:34 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2011-09-29 12:22:34 ----A---- C:\Windows\system32\drivers\aswRdr.sys
2011-09-29 12:22:33 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2011-09-29 12:22:03 ----A---- C:\Windows\system32\aswBoot.exe
2011-09-29 12:22:03 ----A---- C:\Windows\avastSS.scr
2011-09-29 12:21:43 ----D---- C:\ProgramData\AVAST Software
2011-09-29 12:21:43 ----D---- C:\Program Files\AVAST Software
2011-09-29 11:57:29 ----D---- C:\Windows\system32\vi-VN
2011-09-29 11:57:29 ----D---- C:\Windows\system32\eu-ES
2011-09-29 11:57:29 ----D---- C:\Windows\system32\ca-ES
2011-09-29 11:53:20 ----D---- C:\Windows\system32\SPReview
2011-09-29 11:41:44 ----A---- C:\Windows\system32\scavenge.dll
2011-09-29 11:41:37 ----A---- C:\Windows\system32\compcln.exe
2011-09-29 11:40:53 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2011-09-29 11:40:53 ----A---- C:\Windows\system32\secproc_ssp.dll
2011-09-29 11:40:53 ----A---- C:\Windows\system32\secproc_isv.dll
2011-09-29 11:40:53 ----A---- C:\Windows\system32\secproc.dll
2011-09-29 11:40:52 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2011-09-29 11:40:52 ----A---- C:\Windows\system32\SearchIndexer.exe
2011-09-29 11:40:52 ----A---- C:\Windows\system32\SearchFilterHost.exe
2011-09-29 11:40:52 ----A---- C:\Windows\system32\sdohlp.dll
2011-09-29 11:40:52 ----A---- C:\Windows\system32\scrrun.dll
2011-09-29 11:40:52 ----A---- C:\Windows\system32\samlib.dll
2011-09-29 11:40:52 ----A---- C:\Windows\system32\rtffilt.dll
2011-09-29 11:40:52 ----A---- C:\Windows\system32\rsaenh.dll
2011-09-29 11:40:52 ----A---- C:\Windows\system32\rpcss.dll
2011-09-29 11:40:52 ----A---- C:\Windows\system32\rpchttp.dll
2011-09-29 11:40:52 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2011-09-29 11:40:52 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2011-09-29 11:40:52 ----A---- C:\Windows\system32\RMActivate_isv.exe
2011-09-29 11:40:52 ----A---- C:\Windows\system32\RMActivate.exe
2011-09-29 11:40:52 ----A---- C:\Windows\system32\riched20.dll
2011-09-29 11:40:52 ----A---- C:\Windows\system32\drivers\sdbus.sys
2011-09-29 11:40:52 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2011-09-29 11:40:52 ----A---- C:\Windows\system32\drivers\rmcast.sys
2011-09-29 11:40:51 ----A---- C:\Windows\system32\SCardSvr.dll
2011-09-29 11:40:51 ----A---- C:\Windows\system32\scansetting.dll
2011-09-29 11:40:51 ----A---- C:\Windows\system32\samsrv.dll
2011-09-29 11:40:50 ----A---- C:\Windows\system32\scrobj.dll
2011-09-29 11:40:50 ----A---- C:\Windows\system32\scksp.dll
2011-09-29 11:40:50 ----A---- C:\Windows\system32\scesrv.dll
2011-09-29 11:40:50 ----A---- C:\Windows\system32\scecli.dll
2011-09-29 11:40:48 ----A---- C:\Windows\system32\pdh.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\powercpl.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PNPXAssoc.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PnPutil.exe
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PnPUnattend.exe
2011-09-29 11:40:47 ----A---- C:\Windows\system32\pnpui.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\pnpsetup.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\pnidui.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PkgMgr.exe
2011-09-29 11:40:47 ----A---- C:\Windows\system32\pidgenx.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\photowiz.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PhotoScreensaver.scr
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\perfdisk.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\pcaui.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\p2psvc.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\P2PGraph.dll
2011-09-29 11:40:47 ----A---- C:\Windows\system32\drivers\portcls.sys
2011-09-29 11:40:47 ----A---- C:\Windows\system32\drivers\pciidex.sys
2011-09-29 11:40:47 ----A---- C:\Windows\system32\drivers\pci.sys
2011-09-29 11:40:47 ----A---- C:\Windows\system32\drivers\partmgr.sys
2011-09-29 11:40:47 ----A---- C:\Windows\system32\drivers\pacer.sys
2011-09-29 11:40:46 ----A---- C:\Windows\system32\nslookup.exe
2011-09-29 11:40:46 ----A---- C:\Windows\system32\drivers\ntfs.sys
2011-09-29 11:40:46 ----A---- C:\Windows\system32\drivers\npfs.sys
2011-09-29 11:40:44 ----A---- C:\Windows\system32\osk.exe
2011-09-29 11:40:44 ----A---- C:\Windows\system32\onex.dll
2011-09-29 11:40:44 ----A---- C:\Windows\system32\offfilt.dll
2011-09-29 11:40:44 ----A---- C:\Windows\system32\odbccp32.dll
2011-09-29 11:40:44 ----A---- C:\Windows\system32\odbcconf.dll
2011-09-29 11:40:44 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2011-09-29 11:40:44 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2011-09-29 11:40:44 ----A---- C:\Windows\system32\nlhtml.dll
2011-09-29 11:40:44 ----A---- C:\Windows\system32\drivers\ohci1394.sys
2011-09-29 11:40:43 ----A---- C:\Windows\system32\oobefldr.dll
2011-09-29 11:40:43 ----A---- C:\Windows\system32\olepro32.dll
2011-09-29 11:40:43 ----A---- C:\Windows\system32\oleprn.dll
2011-09-29 11:40:43 ----A---- C:\Windows\system32\ocsetup.exe
2011-09-29 11:40:43 ----A---- C:\Windows\system32\ntprint.dll
2011-09-29 11:40:43 ----A---- C:\Windows\system32\ntmarta.dll
2011-09-29 11:40:43 ----A---- C:\Windows\system32\drivers\nwifi.sys
2011-09-29 11:40:42 ----A---- C:\Windows\system32\RelMon.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rekeywiz.exe
2011-09-29 11:40:42 ----A---- C:\Windows\system32\regsvc.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\reg.exe
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rdpencom.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rastapi.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rasppp.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rasplap.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rasmontr.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rasmans.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rasgcw.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rasdlg.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rasdial.exe
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rasdiag.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\raschap.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\rasapi32.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\RacEngn.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\Query.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\qmgr.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\qedit.dll
2011-09-29 11:40:42 ----A---- C:\Windows\system32\drivers\rdbss.sys
2011-09-29 11:40:42 ----A---- C:\Windows\system32\drivers\rassstp.sys
2011-09-29 11:40:42 ----A---- C:\Windows\system32\drivers\raspppoe.sys
2011-09-29 11:40:41 ----A---- C:\Windows\system32\regapi.dll
2011-09-29 11:40:41 ----A---- C:\Windows\system32\rdpwsx.dll
2011-09-29 11:40:41 ----A---- C:\Windows\system32\prnntfy.dll
2011-09-29 11:40:41 ----A---- C:\Windows\system32\printui.dll
2011-09-29 11:40:41 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2011-09-29 11:40:41 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2011-09-29 11:40:41 ----A---- C:\Windows\system32\PresentationSettings.exe
2011-09-29 11:40:41 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2011-09-29 11:40:41 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2011-09-29 11:40:41 ----A---- C:\Windows\system32\powrprof.dll
2011-09-29 11:40:41 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2011-09-29 11:40:40 ----A---- C:\Windows\system32\qdvd.dll
2011-09-29 11:40:40 ----A---- C:\Windows\system32\QAGENTRT.DLL
2011-09-29 11:40:40 ----A---- C:\Windows\system32\puiapi.dll
2011-09-29 11:40:40 ----A---- C:\Windows\system32\psisdecd.dll
2011-09-29 11:40:40 ----A---- C:\Windows\system32\PSHED.DLL
2011-09-29 11:40:40 ----A---- C:\Windows\system32\propsys.dll
2011-09-29 11:40:40 ----A---- C:\Windows\system32\propdefs.dll
2011-09-29 11:40:40 ----A---- C:\Windows\system32\profsvc.dll
2011-09-29 11:40:37 ----A---- C:\Windows\system32\sendmail.dll
2011-09-29 11:40:36 ----A---- C:\Windows\system32\shdocvw.dll
2011-09-29 11:40:36 ----A---- C:\Windows\system32\setupapi.dll
2011-09-29 11:40:36 ----A---- C:\Windows\system32\sethc.exe
2011-09-29 11:40:36 ----A---- C:\Windows\system32\services.exe
2011-09-29 11:40:29 ----A---- C:\Windows\system32\eapphost.dll
2011-09-29 11:40:29 ----A---- C:\Windows\system32\drivers\ecache.sys
2011-09-29 11:40:28 ----A---- C:\Windows\system32\EhStorAPI.dll
2011-09-29 11:40:28 ----A---- C:\Windows\system32\eappgnui.dll
2011-09-29 11:40:28 ----A---- C:\Windows\system32\eappcfg.dll
2011-09-29 11:40:28 ----A---- C:\Windows\system32\eapp3hst.dll
2011-09-29 11:40:27 ----A---- C:\Windows\system32\drivers\Dumpata.sys
2011-09-29 11:40:26 ----A---- C:\Windows\system32\f3ahvoas.dll
2011-09-29 11:40:26 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-09-29 11:40:26 ----A---- C:\Windows\system32\evr.dll
2011-09-29 11:40:26 ----A---- C:\Windows\system32\eudcedit.exe
2011-09-29 11:40:26 ----A---- C:\Windows\system32\esent.dll
2011-09-29 11:40:26 ----A---- C:\Windows\system32\emdmgmt.dll
2011-09-29 11:40:26 ----A---- C:\Windows\system32\EhStorPwdMgr.dll
2011-09-29 11:40:26 ----A---- C:\Windows\system32\EhStorAuthn.dll
2011-09-29 11:40:26 ----A---- C:\Windows\system32\dwm.exe
2011-09-29 11:40:26 ----A---- C:\Windows\system32\dsprop.dll
2011-09-29 11:40:26 ----A---- C:\Windows\system32\dsound.dll
2011-09-29 11:40:26 ----A---- C:\Windows\system32\drivers\exfat.sys
2011-09-29 11:40:26 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-09-29 11:40:26 ----A---- C:\Windows\system32\drivers\dxg.sys
2011-09-29 11:40:26 ----A---- C:\Windows\explorer.exe
2011-09-29 11:40:25 ----A---- C:\Windows\system32\es.dll
2011-09-29 11:40:25 ----A---- C:\Windows\system32\EhStorShell.dll
2011-09-29 11:40:25 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-09-29 11:40:25 ----A---- C:\Windows\system32\drivers\disk.sys
2011-09-29 11:40:25 ----A---- C:\Windows\system32\diskraid.exe
2011-09-29 11:40:25 ----A---- C:\Windows\system32\diskpart.exe
2011-09-29 11:40:25 ----A---- C:\Windows\system32\dimsroam.dll
2011-09-29 11:40:25 ----A---- C:\Windows\system32\diagperf.dll
2011-09-29 11:40:25 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2011-09-29 11:40:25 ----A---- C:\Windows\system32\dhcpcsvc.dll
2011-09-29 11:40:25 ----A---- C:\Windows\system32\devmgr.dll
2011-09-29 11:40:24 ----A---- C:\Windows\system32\hbaapi.dll
2011-09-29 11:40:24 ----A---- C:\Windows\system32\gpresult.exe
2011-09-29 11:40:24 ----A---- C:\Windows\system32\drvstore.dll
2011-09-29 11:40:24 ----A---- C:\Windows\system32\drvinst.exe
2011-09-29 11:40:24 ----A---- C:\Windows\system32\drmv2clt.dll
2011-09-29 11:40:24 ----A---- C:\Windows\system32\drmmgrtn.dll
2011-09-29 11:40:24 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2011-09-29 11:40:24 ----A---- C:\Windows\system32\dpapimig.exe
2011-09-29 11:40:24 ----A---- C:\Windows\system32\dot3svc.dll
2011-09-29 11:40:24 ----A---- C:\Windows\system32\dot3msm.dll
2011-09-29 11:40:24 ----A---- C:\Windows\system32\dot3cfg.dll
2011-09-29 11:40:24 ----A---- C:\Windows\system32\dmusic.dll
2011-09-29 11:40:24 ----A---- C:\Windows\system32\dmsynth.dll
2011-09-29 11:40:23 ----A---- C:\Windows\system32\iasnap.dll
2011-09-29 11:40:23 ----A---- C:\Windows\system32\IasMigReader.exe
2011-09-29 11:40:23 ----A---- C:\Windows\system32\IasMigPlugin.dll
2011-09-29 11:40:23 ----A---- C:\Windows\system32\iashlpr.dll
2011-09-29 11:40:23 ----A---- C:\Windows\system32\iasdatastore.dll
2011-09-29 11:40:23 ----A---- C:\Windows\system32\iasads.dll
2011-09-29 11:40:23 ----A---- C:\Windows\system32\iasacct.dll
2011-09-29 11:40:23 ----A---- C:\Windows\system32\hidserv.dll
2011-09-29 11:40:23 ----A---- C:\Windows\system32\hdwwiz.exe
2011-09-29 11:40:23 ----A---- C:\Windows\system32\gpupdate.exe
2011-09-29 11:40:23 ----A---- C:\Windows\system32\gpsvc.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\gpapi.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\gdi32.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\fontext.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\findstr.exe
2011-09-29 11:40:22 ----A---- C:\Windows\system32\feclient.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\fdWSD.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\fdWCN.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\fdSSDP.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\fdProxy.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\fdeploy.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\fdBthProxy.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\fdBth.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\fc.exe
2011-09-29 11:40:22 ----A---- C:\Windows\system32\Faultrep.dll
2011-09-29 11:40:22 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2011-09-29 11:40:22 ----A---- C:\Windows\system32\drivers\fastfat.sys
2011-09-29 11:40:21 ----A---- C:\Windows\system32\gpedit.dll
2011-09-29 11:40:21 ----A---- C:\Windows\system32\fundisc.dll
2011-09-29 11:40:21 ----A---- C:\Windows\system32\ftp.exe
2011-09-29 11:40:19 ----A---- C:\Windows\system32\gameux.dll
2011-09-29 11:40:19 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2011-09-29 11:40:19 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2011-09-29 11:40:19 ----A---- C:\Windows\system32\FunctionDiscoveryFolder.dll
2011-09-29 11:40:19 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2011-09-29 11:40:19 ----A---- C:\Windows\system32\drivers\ataport.sys
2011-09-29 11:40:19 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2011-09-29 11:40:19 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
2011-09-29 11:40:19 ----A---- C:\Windows\system32\autochk.exe
2011-09-29 11:40:19 ----A---- C:\Windows\system32\authz.dll
2011-09-29 11:40:19 ----A---- C:\Windows\system32\authui.dll
2011-09-29 11:40:19 ----A---- C:\Windows\system32\audiosrv.dll
2011-09-29 11:40:19 ----A---- C:\Windows\system32\AudioSes.dll
2011-09-29 11:40:19 ----A---- C:\Windows\system32\audiodg.exe
2011-09-29 11:40:18 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2011-09-29 11:40:18 ----A---- C:\Windows\system32\autoplay.dll
2011-09-29 11:40:18 ----A---- C:\Windows\system32\autofmt.exe
2011-09-29 11:40:18 ----A---- C:\Windows\system32\autoconv.exe
2011-09-29 11:40:17 ----A---- C:\Windows\system32\drivers\bridge.sys
2011-09-29 11:40:17 ----A---- C:\Windows\system32\drivers\atapi.sys
2011-09-29 11:40:17 ----A---- C:\Windows\system32\bthci.dll
2011-09-29 11:40:17 ----A---- C:\Windows\system32\browseui.dll
2011-09-29 11:40:17 ----A---- C:\Windows\system32\brcpl.dll
2011-09-29 11:40:17 ----A---- C:\Windows\system32\blackbox.dll
2011-09-29 11:40:17 ----A---- C:\Windows\system32\bitsigd.dll
2011-09-29 11:40:17 ----A---- C:\Windows\system32\basecsp.dll
2011-09-29 11:40:17 ----A---- C:\Windows\system32\azroles.dll
2011-09-29 11:40:16 ----A---- C:\Windows\system32\drivers\acpi.sys
2011-09-29 11:40:16 ----A---- C:\Windows\system32\BFE.DLL
2011-09-29 11:40:16 ----A---- C:\Windows\system32\bcrypt.dll
2011-09-29 11:40:16 ----A---- C:\Windows\system32\Apphlpdm.dll
2011-09-29 11:40:16 ----A---- C:\Windows\system32\apphelp.dll
2011-09-29 11:40:16 ----A---- C:\Windows\system32\accessibilitycpl.dll
2011-09-29 11:40:15 ----A---- C:\Windows\system32\conime.exe
2011-09-29 11:40:15 ----A---- C:\Windows\system32\comsvcs.dll
2011-09-29 11:40:15 ----A---- C:\Windows\system32\apds.dll
2011-09-29 11:40:15 ----A---- C:\Windows\system32\advapi32.dll
2011-09-29 11:40:15 ----A---- C:\Windows\system32\adtschema.dll
2011-09-29 11:40:15 ----A---- C:\Windows\system32\adsmsext.dll
2011-09-29 11:40:15 ----A---- C:\Windows\system32\adsldpc.dll
2011-09-29 11:40:14 ----A---- C:\Windows\system32\drivers\crashdmp.sys
2011-09-29 11:40:14 ----A---- C:\Windows\system32\crypt32.dll
2011-09-29 11:40:14 ----A---- C:\Windows\system32\credui.dll
2011-09-29 11:40:14 ----A---- C:\Windows\system32\connect.dll
2011-09-29 11:40:14 ----A---- C:\Windows\system32\comuid.dll
2011-09-29 11:40:14 ----A---- C:\Windows\system32\cmdial32.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\DevicePairingWizard.exe
2011-09-29 11:40:13 ----A---- C:\Windows\system32\DevicePairingProxy.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\DevicePairing.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\DeviceEject.exe
2011-09-29 11:40:13 ----A---- C:\Windows\system32\dbgeng.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\davclnt.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\dataclen.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\d3d9.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\csrstub.exe
2011-09-29 11:40:13 ----A---- C:\Windows\system32\cscript.exe
2011-09-29 11:40:13 ----A---- C:\Windows\system32\cscdll.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\cscapi.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\cryptui.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\cryptsvc.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\comdlg32.dll
2011-09-29 11:40:13 ----A---- C:\Windows\system32\cmmon32.exe
2011-09-29 11:40:13 ----A---- C:\Windows\system32\cdd.dll
2011-09-29 11:40:12 ----A---- C:\Windows\system32\drivers\cdrom.sys
2011-09-29 11:40:12 ----A---- C:\Windows\system32\certmgr.dll
2011-09-29 11:40:12 ----A---- C:\Windows\system32\CertEnrollUI.dll
2011-09-29 11:40:12 ----A---- C:\Windows\system32\CertEnroll.dll
2011-09-29 11:40:12 ----A---- C:\Windows\system32\certcli.dll
2011-09-29 11:40:12 ----A---- C:\Windows\system32\bthudtask.exe
2011-09-29 11:40:12 ----A---- C:\Windows\system32\bthserv.dll
2011-09-29 11:40:10 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2011-09-29 11:40:10 ----A---- C:\Windows\system32\clfs.sys
2011-09-29 11:40:10 ----A---- C:\Windows\system32\cipher.exe
2011-09-29 11:40:10 ----A---- C:\Windows\system32\ci.dll
2011-09-29 11:40:10 ----A---- C:\Windows\system32\CHxReadingStringIME.dll
2011-09-29 11:40:10 ----A---- C:\Windows\system32\chtbrkr.dll
2011-09-29 11:40:10 ----A---- C:\Windows\system32\chsbrkr.dll
2011-09-29 11:40:10 ----A---- C:\Windows\system32\certreq.exe
2011-09-29 11:40:10 ----A---- C:\Windows\system32\certprop.dll
2011-09-29 11:40:10 ----A---- C:\Windows\system32\cbsra.exe
2011-09-29 11:40:09 ----A---- C:\Windows\system32\msihnd.dll
2011-09-29 11:40:09 ----A---- C:\Windows\system32\msiexec.exe
2011-09-29 11:40:09 ----A---- C:\Windows\system32\msftedit.dll
2011-09-29 11:40:09 ----A---- C:\Windows\system32\msexcl40.dll
2011-09-29 11:40:09 ----A---- C:\Windows\system32\msexch40.dll
2011-09-29 11:40:09 ----A---- C:\Windows\system32\msdtctm.dll
2011-09-29 11:40:09 ----A---- C:\Windows\system32\certutil.exe
2011-09-29 11:40:08 ----A---- C:\Windows\system32\msi.dll
2011-09-29 11:40:07 ----A---- C:\Windows\system32\msimsg.dll
2011-09-29 11:40:07 ----A---- C:\Windows\system32\msdtcprx.dll
2011-09-29 11:40:07 ----A---- C:\Windows\system32\msdrm.dll
2011-09-29 11:40:07 ----A---- C:\Windows\system32\msctfui.dll
2011-09-29 11:40:07 ----A---- C:\Windows\system32\msctfp.dll
2011-09-29 11:40:07 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2011-09-29 11:40:07 ----A---- C:\Windows\system32\msctf.dll
2011-09-29 11:40:06 ----A---- C:\Windows\system32\MPSSVC.dll
2011-09-29 11:40:06 ----A---- C:\Windows\system32\mprapi.dll
2011-09-29 11:40:06 ----A---- C:\Windows\system32\mpr.dll
2011-09-29 11:40:06 ----A---- C:\Windows\system32\modemui.dll
2011-09-29 11:40:06 ----A---- C:\Windows\system32\MMDevAPI.dll
2011-09-29 11:40:05 ----A---- C:\Windows\system32\mscories.dll
2011-09-29 11:40:05 ----A---- C:\Windows\system32\mscorier.dll
2011-09-29 11:40:05 ----A---- C:\Windows\system32\mscms.dll
2011-09-29 11:40:05 ----A---- C:\Windows\system32\mscandui.dll
2011-09-29 11:40:05 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2011-09-29 11:40:04 ----A---- C:\Windows\system32\NetProjW.dll
2011-09-29 11:40:04 ----A---- C:\Windows\system32\netplwiz.dll
2011-09-29 11:40:04 ----A---- C:\Windows\system32\netlogon.dll
2011-09-29 11:40:04 ----A---- C:\Windows\system32\netcenter.dll
2011-09-29 11:40:04 ----A---- C:\Windows\system32\netapi32.dll
2011-09-29 11:40:04 ----A---- C:\Windows\system32\ncryptui.dll
2011-09-29 11:40:04 ----A---- C:\Windows\system32\ncrypt.dll
2011-09-29 11:40:04 ----A---- C:\Windows\system32\mtxclu.dll
2011-09-29 11:40:04 ----A---- C:\Windows\system32\drivers\netbt.sys
2011-09-29 11:40:04 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2011-09-29 11:40:04 ----A---- C:\Windows\system32\drivers\ndis.sys
2011-09-29 11:40:04 ----A---- C:\Windows\system32\drivers\mup.sys
2011-09-29 11:40:02 ----A---- C:\Windows\system32\netshell.dll
2011-09-29 11:40:02 ----A---- C:\Windows\system32\NcdProp.dll
2011-09-29 11:40:02 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2011-09-29 11:40:01 ----A---- C:\Windows\system32\newdev.exe
2011-09-29 11:40:01 ----A---- C:\Windows\system32\newdev.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\networkmap.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\networkitemfactory.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\networkexplorer.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msvcp60.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msutb.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msscntrs.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msscb.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msrepl40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msrd3x40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msrd2x40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\mspbde40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msnetobj.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msltus40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msjtes40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msjter40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msjint40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msjetoledb40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msjet40.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msisip.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msinfo32.exe
2011-09-29 11:40:00 ----A---- C:\Windows\system32\msimtf.dll
2011-09-29 11:40:00 ----A---- C:\Windows\system32\drivers\msrpc.sys
2011-09-29 11:40:00 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2011-09-29 11:39:59 ----A---- C:\Windows\system32\msxbde40.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\mswstr10.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\mswsock.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\mswdat10.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\MSVidCtl.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\msvcrt.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\mssrch.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\mssprxy.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\mssphtb.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\mssph.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\mssitlb.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\msshooks.dll
2011-09-29 11:39:59 ----A---- C:\Windows\system32\msscp.dll
2011-09-29 11:39:58 ----A---- C:\Windows\system32\mstlsapi.dll
2011-09-29 11:39:58 ----A---- C:\Windows\system32\mstext40.dll
2011-09-29 11:39:58 ----A---- C:\Windows\system32\mssvp.dll
2011-09-29 11:39:58 ----A---- C:\Windows\system32\msstrc.dll
2011-09-29 11:39:58 ----A---- C:\Windows\system32\InkEd.dll
2011-09-29 11:39:58 ----A---- C:\Windows\system32\infocardapi.dll
2011-09-29 11:39:58 ----A---- C:\Windows\system32\inetppui.dll
2011-09-29 11:39:58 ----A---- C:\Windows\system32\inetpp.dll
2011-09-29 11:39:57 ----A---- C:\Windows\system32\iscsilog.dll
2011-09-29 11:39:57 ----A---- C:\Windows\system32\ipsmsnap.dll
2011-09-29 11:39:57 ----A---- C:\Windows\system32\IPSECSVC.DLL
2011-09-29 11:39:57 ----A---- C:\Windows\system32\imm32.dll
2011-09-29 11:39:56 ----A---- C:\Windows\system32\ipsecsnp.dll
2011-09-29 11:39:56 ----A---- C:\Windows\system32\iphlpsvc.dll
2011-09-29 11:39:56 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2011-09-29 11:39:56 ----A---- C:\Windows\system32\ipconfig.exe
2011-09-29 11:39:56 ----A---- C:\Windows\system32\input.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\IMJP10K.DLL
2011-09-29 11:39:55 ----A---- C:\Windows\system32\imapi2fs.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\imapi2.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\imapi.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\IKEEXT.DLL
2011-09-29 11:39:55 ----A---- C:\Windows\system32\ifmon.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\icardres.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\icardagt.exe
2011-09-29 11:39:55 ----A---- C:\Windows\system32\iassvcs.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\iassdo.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\iassam.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\iasrecst.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\iasrad.dll
2011-09-29 11:39:55 ----A---- C:\Windows\system32\iaspolcy.dll
2011-09-29 11:39:53 ----A---- C:\Windows\system32\mfplat.dll
2011-09-29 11:39:50 ----A---- C:\Windows\system32\milcore.dll
2011-09-29 11:39:49 ----A---- C:\Windows\system32\mmcndmgr.dll
2011-09-29 11:39:49 ----A---- C:\Windows\system32\mmcico.dll
2011-09-29 11:39:49 ----A---- C:\Windows\system32\mmci.dll
2011-09-29 11:39:49 ----A---- C:\Windows\system32\mmc.exe
2011-09-29 11:39:49 ----A---- C:\Windows\system32\mimefilt.dll
2011-09-29 11:39:49 ----A---- C:\Windows\system32\midimap.dll
2011-09-29 11:39:49 ----A---- C:\Windows\system32\korwbrkr.dll
2011-09-29 11:39:49 ----A---- C:\Windows\system32\drivers\ks.sys
2011-09-29 11:39:48 ----A---- C:\Windows\system32\l2nacp.dll
2011-09-29 11:39:48 ----A---- C:\Windows\system32\kernel32.dll
2011-09-29 11:39:48 ----A---- C:\Windows\system32\kdusb.dll
2011-09-29 11:39:48 ----A---- C:\Windows\system32\kdcom.dll
2011-09-29 11:39:48 ----A---- C:\Windows\system32\kd1394.dll
2011-09-29 11:39:48 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2011-09-29 11:39:47 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2011-09-29 11:39:47 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2011-09-29 11:39:47 ----A---- C:\Windows\system32\mcmde.dll
2011-09-29 11:39:47 ----A---- C:\Windows\system32\mblctr.exe
2011-09-29 11:39:47 ----A---- C:\Windows\system32\logman.exe
2011-09-29 11:39:47 ----A---- C:\Windows\system32\logagent.exe
2011-09-29 11:39:46 ----A---- C:\Windows\system32\Magnify.exe
2011-09-29 11:39:45 ----A---- C:\Windows\system32\wercon.exe
2011-09-29 11:39:45 ----A---- C:\Windows\system32\wer.dll
2011-09-29 11:39:45 ----A---- C:\Windows\system32\WebClnt.dll
2011-09-29 11:39:45 ----A---- C:\Windows\system32\wdscore.dll
2011-09-29 11:39:45 ----A---- C:\Windows\system32\wdc.dll
2011-09-29 11:39:45 ----A---- C:\Windows\system32\shsetup.dll
2011-09-29 11:39:44 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2011-09-29 11:39:44 ----A---- C:\Windows\system32\WindowsCodecs.dll
2011-09-29 11:39:44 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2011-09-29 11:39:44 ----A---- C:\Windows\system32\wevtutil.exe
2011-09-29 11:39:43 ----A---- C:\Windows\system32\win32spl.dll
2011-09-29 11:39:43 ----A---- C:\Windows\system32\whealogr.dll
2011-09-29 11:39:43 ----A---- C:\Windows\system32\wevtsvc.dll
2011-09-29 11:39:43 ----A---- C:\Windows\system32\wevtapi.dll
2011-09-29 11:39:43 ----A---- C:\Windows\system32\wersvc.dll
2011-09-29 11:39:43 ----A---- C:\Windows\system32\WerFaultSecure.exe
2011-09-29 11:39:43 ----A---- C:\Windows\system32\WerFault.exe
2011-09-29 11:39:42 ----A---- C:\Windows\system32\wiaaut.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\wiaservc.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\version.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\vdsutil.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\vdsdyn.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\vds.exe
2011-09-29 11:39:41 ----A---- C:\Windows\system32\vdmdbg.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\uxsms.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\Utilman.exe
2011-09-29 11:39:41 ----A---- C:\Windows\system32\userenv.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\usercpl.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\user32.dll
2011-09-29 11:39:41 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2011-09-29 11:39:41 ----A---- C:\Windows\system32\drivers\usbport.sys
2011-09-29 11:39:37 ----A---- C:\Windows\system32\wcnwiz2.dll
2011-09-29 11:39:37 ----A---- C:\Windows\system32\WcnNetsh.dll
2011-09-29 11:39:37 ----A---- C:\Windows\system32\wcncsvc.dll
2011-09-29 11:39:37 ----A---- C:\Windows\system32\drivers\watchdog.sys
2011-09-29 11:39:36 ----A---- C:\Windows\system32\wcnwiz.dll
2011-09-29 11:39:36 ----A---- C:\Windows\system32\VSSVC.exe
2011-09-29 11:39:36 ----A---- C:\Windows\system32\drivers\volmgrx.sys
2011-09-29 11:39:35 ----A---- C:\Windows\system32\w32time.dll
2011-09-29 11:39:35 ----A---- C:\Windows\system32\vssapi.dll
2011-09-29 11:39:35 ----A---- C:\Windows\system32\drivers\volsnap.sys
2011-09-29 11:39:34 ----A---- C:\Windows\system32\wscisvif.dll
2011-09-29 11:39:34 ----A---- C:\Windows\system32\WscEapPr.dll
2011-09-29 11:39:34 ----A---- C:\Windows\system32\wscapi.dll
2011-09-29 11:39:32 ----A---- C:\Windows\system32\WSDMon.dll
2011-09-29 11:39:32 ----A---- C:\Windows\system32\wsdchngr.dll
2011-09-29 11:39:32 ----A---- C:\Windows\system32\wscsvc.dll
2011-09-29 11:39:32 ----A---- C:\Windows\system32\wscript.exe
2011-09-29 11:39:32 ----A---- C:\Windows\system32\wscntfy.dll
2011-09-29 11:39:32 ----A---- C:\Windows\system32\WMVSDECD.DLL
2011-09-29 11:39:31 ----A---- C:\Windows\system32\wow32.dll
2011-09-29 11:39:31 ----A---- C:\Windows\system32\WMVXENCD.DLL
2011-09-29 11:39:31 ----A---- C:\Windows\system32\WMVENCOD.DLL
2011-09-29 11:39:26 ----A---- C:\Windows\system32\wusa.exe
2011-09-29 11:39:26 ----A---- C:\Windows\system32\wpcsvc.dll
2011-09-29 11:39:26 ----A---- C:\Windows\system32\wpccpl.dll
2011-09-29 11:39:26 ----A---- C:\Windows\system32\wpcao.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\xmlfilter.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\wsnmp32.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\WsmSvc.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\wshext.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\wshbth.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\wsepno.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\wlgpclnt.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\Wldap32.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\wlanui.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\wlanpref.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\wlangpui.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\wisptis.exe
2011-09-29 11:39:25 ----A---- C:\Windows\system32\winrnr.dll
2011-09-29 11:39:25 ----A---- C:\Windows\system32\winresume.exe
2011-09-29 11:39:24 ----A---- C:\Windows\system32\WMPhoto.dll
2011-09-29 11:39:24 ----A---- C:\Windows\system32\wmpeffects.dll
2011-09-29 11:39:24 ----A---- C:\Windows\system32\WMNetMgr.dll
2011-09-29 11:39:24 ----A---- C:\Windows\system32\WinSCard.dll
2011-09-29 11:39:24 ----A---- C:\Windows\system32\WinSAT.exe
2011-09-29 11:39:24 ----A---- C:\Windows\system32\winmm.dll
2011-09-29 11:39:24 ----A---- C:\Windows\system32\winlogon.exe
2011-09-29 11:39:24 ----A---- C:\Windows\system32\winload.exe
2011-09-29 11:39:23 ----A---- C:\Windows\system32\wmdrmsdk.dll
2011-09-29 11:39:23 ----A---- C:\Windows\system32\sud.dll
2011-09-29 11:39:23 ----A---- C:\Windows\system32\Storprop.dll
2011-09-29 11:39:23 ----A---- C:\Windows\system32\stobject.dll
2011-09-29 11:39:23 ----A---- C:\Windows\system32\drivers\stream.sys
2011-09-29 11:39:23 ----A---- C:\Windows\system32\drivers\Storport.sys
2011-09-29 11:39:22 ----A---- C:\Windows\system32\srcore.dll
2011-09-29 11:39:22 ----A---- C:\Windows\system32\srchadmin.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\sysmain.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\sysclass.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SyncCenter.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\swprv.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\spoolss.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\spinstall.exe
2011-09-29 11:39:18 ----A---- C:\Windows\system32\smss.exe
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SmiEngine.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SMBHelperClass.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\slwmi.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\slwga.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SLUINotify.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SLUI.exe
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SLsvc.exe
2011-09-29 11:39:18 ----A---- C:\Windows\system32\slmgr.vbs
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SLLUA.exe
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SLCommDlg.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\slcinst.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SLCExt.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\slcc.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\SLC.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\shwebsvc.dll
2011-09-29 11:39:18 ----A---- C:\Windows\system32\drivers\smb.sys
2011-09-29 11:39:17 ----A---- C:\Windows\system32\TsWpfWrp.exe
2011-09-29 11:39:17 ----A---- C:\Windows\system32\TSTheme.exe
2011-09-29 11:39:17 ----A---- C:\Windows\system32\sqlsrv32.dll
2011-09-29 11:39:17 ----A---- C:\Windows\system32\spwizui.dll
2011-09-29 11:39:17 ----A---- C:\Windows\system32\spwinsat.dll
2011-09-29 11:39:17 ----A---- C:\Windows\system32\spreview.exe
2011-09-29 11:39:17 ----A---- C:\Windows\system32\spp.dll
2011-09-29 11:39:17 ----A---- C:\Windows\system32\sperror.dll
2011-09-29 11:39:17 ----A---- C:\Windows\system32\spcmsg.dll
2011-09-29 11:39:17 ----A---- C:\Windows\system32\softkbd.dll
2011-09-29 11:39:17 ----A---- C:\Windows\system32\SnippingTool.exe
2011-09-29 11:39:17 ----A---- C:\Windows\system32\SndVol.exe
2011-09-29 11:39:17 ----A---- C:\Windows\system32\drivers\udfs.sys
2011-09-29 11:39:17 ----A---- C:\Windows\system32\drivers\spsys.sys
2011-09-29 11:39:16 ----A---- C:\Windows\system32\zipfldr.dll
2011-09-29 11:39:16 ----A---- C:\Windows\system32\untfs.dll
2011-09-29 11:39:16 ----A---- C:\Windows\system32\umpnpmgr.dll
2011-09-29 11:39:16 ----A---- C:\Windows\system32\ulib.dll
2011-09-29 11:39:16 ----A---- C:\Windows\system32\uDWM.dll
2011-09-29 11:39:16 ----A---- C:\Windows\system32\systemcpl.dll
2011-09-29 11:39:16 ----A---- C:\Windows\system32\drivers\usbhub.sys
2011-09-29 11:39:16 ----A---- C:\Windows\system32\drivers\usbehci.sys
2011-09-29 11:39:16 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2011-09-29 11:39:16 ----A---- C:\Windows\system32\drivers\USBCAMD.sys
2011-09-29 11:39:16 ----A---- C:\Windows\system32\drivers\usb8023.sys
2011-09-29 11:39:14 ----A---- C:\Windows\system32\tquery.dll
2011-09-29 11:39:14 ----A---- C:\Windows\system32\themeui.dll
2011-09-29 11:39:14 ----A---- C:\Windows\system32\themecpl.dll
2011-09-29 11:39:14 ----A---- C:\Windows\system32\thawbrkr.dll
2011-09-29 11:39:14 ----A---- C:\Windows\system32\termsrv.dll
2011-09-29 11:39:14 ----A---- C:\Windows\system32\tcpmon.dll
2011-09-29 11:39:14 ----A---- C:\Windows\system32\tcpipcfg.dll
2011-09-29 11:39:14 ----A---- C:\Windows\system32\tapisrv.dll
2011-09-29 11:39:14 ----A---- C:\Windows\system32\drivers\termdd.sys
2011-09-29 11:39:14 ----A---- C:\Windows\system32\drivers\tdx.sys
2011-09-29 03:32:16 ----D---- C:\Program Files\Defraggler
2011-09-29 03:24:02 ----D---- C:\Program Files\CCleaner
2011-09-29 03:09:18 ----A---- C:\TDSSKiller.2.6.1.0_29.09.2011_03.09.18_log.txt
2011-09-29 02:39:12 ----ASH---- C:\hiberfil.sys
2011-09-28 15:05:48 ----D---- C:\Windows\temp
2011-09-28 15:03:24 ----SHD---- C:\$RECYCLE.BIN
2011-09-28 14:53:40 ----D---- C:\zmije2.com30282z
2011-09-28 11:47:32 ----RAD---- C:\Autorun.inf
2011-09-26 13:22:38 ----D---- C:\zmije2.com
2011-09-26 13:05:44 ----D---- C:\Users\halo 1\AppData\Roaming\Malwarebytes
2011-09-26 13:05:17 ----D---- C:\ProgramData\Malwarebytes
2011-09-26 13:05:17 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2011-09-26 13:05:14 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-09-26 13:05:14 ----A---- C:\Windows\system32\drivers\mbam.sys
2011-09-26 10:13:06 ----A---- C:\Windows\system32\nvvsvc.exe
2011-09-26 09:52:22 ----D---- C:\zmije.com20474z
2011-09-26 09:51:10 ----D---- C:\zmije.com
2011-09-26 09:50:08 ----D---- C:\Qoobox
2011-09-24 12:16:44 ----D---- C:\Program Files\trend micro
2011-09-24 00:27:06 ----D---- C:\Program Files\Microsoft Security Client
2011-09-24 00:26:26 ----A---- C:\Windows\system32\drivers\netio.sys
2011-09-23 20:53:03 ----D---- C:\$AVG8.VAULT$
2011-09-23 16:55:58 ----HD---- C:\ProgramData\Common Files
======List of files/folders modified in the last 1 month======
2011-09-29 14:16:13 ----D---- C:\Windows\Prefetch
2011-09-29 14:15:15 ----D---- C:\Windows\System32
2011-09-29 14:15:15 ----D---- C:\Windows\inf
2011-09-29 14:15:15 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-09-29 14:00:38 ----D---- C:\Windows\winsxs
2011-09-29 14:00:37 ----D---- C:\Windows\system32\wbem
2011-09-29 14:00:04 ----D---- C:\Windows\system32\catroot2
2011-09-29 14:00:01 ----SHD---- C:\System Volume Information
2011-09-29 13:20:52 ----D---- C:\Windows\Microsoft.NET
2011-09-29 13:20:41 ----RSD---- C:\Windows\assembly
2011-09-29 13:03:22 ----D---- C:\Windows\system32\drivers
2011-09-29 12:22:22 ----SHD---- C:\Windows\Installer
2011-09-29 12:22:03 ----D---- C:\Windows
2011-09-29 12:21:43 ----RD---- C:\Program Files
2011-09-29 12:21:43 ----D---- C:\ProgramData
2011-09-29 12:18:29 ----D---- C:\Windows\rescache
2011-09-29 12:09:03 ----SHD---- C:\boot
2011-09-29 12:08:46 ----D---- C:\Windows\system32\catroot
2011-09-29 11:57:56 ----D---- C:\Program Files\Windows Mail
2011-09-29 11:57:56 ----D---- C:\Program Files\Windows Calendar
2011-09-29 11:57:56 ----D---- C:\Program Files\Movie Maker
2011-09-29 11:57:55 ----D---- C:\Program Files\Windows Sidebar
2011-09-29 11:57:55 ----D---- C:\Program Files\Windows Photo Gallery
2011-09-29 11:57:55 ----D---- C:\Program Files\Windows Media Player
2011-09-29 11:57:55 ----D---- C:\Program Files\Windows Journal
2011-09-29 11:57:55 ----D---- C:\Program Files\Internet Explorer
2011-09-29 11:57:54 ----D---- C:\Windows\servicing
2011-09-29 11:57:54 ----D---- C:\Windows\ehome
2011-09-29 11:57:54 ----D---- C:\Program Files\Windows Defender
2011-09-29 11:57:54 ----D---- C:\Program Files\Common Files\System
2011-09-29 11:57:51 ----D---- C:\Windows\system32\XPSViewer
2011-09-29 11:57:51 ----D---- C:\Windows\system32\sk-SK
2011-09-29 11:57:51 ----D---- C:\Windows\system32\lv-LV
2011-09-29 11:57:51 ----D---- C:\Windows\system32\ko-KR
2011-09-29 11:57:51 ----D---- C:\Windows\system32\hr-HR
2011-09-29 11:57:51 ----D---- C:\Windows\system32\et-EE
2011-09-29 11:57:51 ----D---- C:\Windows\system32\da-DK
2011-09-29 11:57:51 ----D---- C:\Windows\IME
2011-09-29 11:57:50 ----D---- C:\Windows\system32\en-US
2011-09-29 11:57:49 ----D---- C:\Windows\system32\oobe
2011-09-29 11:57:49 ----D---- C:\Windows\system32\migration
2011-09-29 11:57:49 ----D---- C:\Windows\system32\it-IT
2011-09-29 11:57:49 ----D---- C:\Windows\system32\el-GR
2011-09-29 11:57:49 ----D---- C:\Windows\system32\de-DE
2011-09-29 11:57:48 ----D---- C:\Windows\system32\zh-CN
2011-09-29 11:57:48 ----D---- C:\Windows\system32\sv-SE
2011-09-29 11:57:48 ----D---- C:\Windows\system32\SLUI
2011-09-29 11:57:48 ----D---- C:\Windows\system32\setup
2011-09-29 11:57:48 ----D---- C:\Windows\system32\ru-RU
2011-09-29 11:57:48 ----D---- C:\Windows\system32\pt-PT
2011-09-29 11:57:48 ----D---- C:\Windows\system32\hu-HU
2011-09-29 11:57:48 ----D---- C:\Windows\system32\he-IL
2011-09-29 11:57:48 ----D---- C:\Windows\system32\fr-FR
2011-09-29 11:57:48 ----D---- C:\Windows\system32\fi-FI
2011-09-29 11:57:48 ----D---- C:\Windows\system32\cs-CZ
2011-09-29 11:57:48 ----D---- C:\Windows\system32\AdvancedInstallers
2011-09-29 11:57:47 ----D---- C:\Windows\system32\zh-TW
2011-09-29 11:57:47 ----D---- C:\Windows\system32\uk-UA
2011-09-29 11:57:47 ----D---- C:\Windows\system32\tr-TR
2011-09-29 11:57:47 ----D---- C:\Windows\system32\th-TH
2011-09-29 11:57:47 ----D---- C:\Windows\system32\sr-Latn-CS
2011-09-29 11:57:47 ----D---- C:\Windows\system32\sl-SI
2011-09-29 11:57:47 ----D---- C:\Windows\system32\ro-RO
2011-09-29 11:57:47 ----D---- C:\Windows\system32\pl-PL
2011-09-29 11:57:47 ----D---- C:\Windows\system32\manifeststore
2011-09-29 11:57:47 ----D---- C:\Windows\system32\ja-JP
2011-09-29 11:57:47 ----D---- C:\Windows\system32\es-ES
2011-09-29 11:57:47 ----D---- C:\Windows\system32\en
2011-09-29 11:57:47 ----D---- C:\Windows\system32\drivers\en-US
2011-09-29 11:57:47 ----D---- C:\Windows\system32\bg-BG
2011-09-29 11:57:46 ----D---- C:\Windows\system32\pt-BR
2011-09-29 11:57:46 ----D---- C:\Windows\system32\nl-NL
2011-09-29 11:57:46 ----D---- C:\Windows\system32\nb-NO
2011-09-29 11:57:46 ----D---- C:\Windows\system32\migwiz
2011-09-29 11:57:46 ----D---- C:\Windows\system32\lt-LT
2011-09-29 11:57:46 ----D---- C:\Windows\system32\ar-SA
2011-09-29 11:57:35 ----RSD---- C:\Windows\Fonts
2011-09-29 11:57:35 ----D---- C:\Windows\AppPatch
2011-09-29 11:57:29 ----D---- C:\Windows\system32\Boot
2011-09-29 11:56:51 ----D---- C:\ProgramData\NVIDIA
2011-09-29 11:55:50 ----D---- C:\Windows\system32\drivers\UMDF
2011-09-29 11:55:41 ----D---- C:\Windows\system32\RTCOM
2011-09-29 11:51:33 ----A---- C:\Windows\fonts\GlobalUserInterface.CompositeFont
2011-09-29 11:11:12 ----D---- C:\Users\halo 1\AppData\Roaming\Skype
2011-09-29 03:28:25 ----D---- C:\Windows\panther
2011-09-29 03:28:23 ----D---- C:\Windows\Debug
2011-09-29 03:00:46 ----A---- C:\Windows\system32\mrt.exe
2011-09-29 02:36:52 ----D---- C:\Windows\Minidump
2011-09-28 15:02:16 ----A---- C:\Windows\system.ini
2011-09-28 14:58:37 ----D---- C:\Program Files\Common Files
2011-09-28 14:58:35 ----SD---- C:\Users\halo 1\AppData\Roaming\Microsoft
2011-09-26 13:35:21 ----D---- C:\Windows\system32\drivers\etc
2011-09-26 13:33:29 ----D---- C:\Windows\system32\config
2011-09-26 09:54:24 ----SHDC---- C:\Windows\$NtUninstallKB3255$
2011-09-25 08:50:09 ----D---- C:\Windows\Tasks
2011-09-24 10:59:35 ----D---- C:\Windows\system32\Tasks
2011-09-24 00:27:45 ----SD---- C:\ProgramData\Microsoft
2011-09-24 00:03:09 ----D---- C:\ProgramData\MFAData
2011-09-23 19:04:53 ----HD---- C:\Windows\system32\GroupPolicy
2011-09-23 17:08:39 ----D---- C:\Program Files\AVG
2011-09-23 14:14:21 ----D---- C:\ProgramData\Google Updater
2011-09-21 19:26:37 ----D---- C:\Windows\LiveKernelReports
2011-09-15 03:05:27 ----D---- C:\ProgramData\Microsoft Help
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2008-04-15 312344]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-09-06 34392]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-09-06 442200]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-09-06 320856]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-09-06 52568]
R2 {22D78859-9CE9-4B77-BF18-AC83E81A9263};{22D78859-9CE9-4B77-BF18-AC83E81A9263}; \??\C:\Program Files\HP\QuickPlay\000.fcl [2007-10-01 39408]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-09-06 20568]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-09-06 54616]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-24 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-03-22 37376]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
R3 HpqRemHid;HP Remote Control HID Device; C:\Windows\system32\DRIVERS\HpqRemHid.sys [2007-07-11 7168]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-03-12 1747936]
R3 NETw4v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-06-28 2222080]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-10-03 9905096]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-09-18 98816]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-10 89088]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2007-01-17 983936]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-09-15 191408]
R3 usbvideo;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S3 BCM43XV;Broadcom Extensible 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2006-11-02 464384]
S3 dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-19 131584]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-19 16384]
S3 Dot4Scan;Scan Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Scan.sys [2008-01-19 10752]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-19 36864]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 E100B;Intel(R) PRO Adapter Driver; C:\Windows\system32\DRIVERS\e100b325.sys [2006-11-02 163328]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2008-03-13 57536]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2008-03-13 72000]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2006-11-02 987648]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2006-10-19 1380864]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 winachsf;winachsf; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2006-11-02 654336]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-19 39936]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-09-06 44768]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-10-03 219752]
S3 Com4Qlb;Com4Qlb; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe [2007-03-05 110592]
S3 GameConsoleService;GameConsoleService; C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe [2007-07-24 181800]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
-----------------EOF-----------------
Přispějete na provoz fóra?