Zdravim. NOD32 Antivirus 5 mi vyhodi nasledujici Operační paměť - varianta infiltrace Win32/Spy.Zbot.ZR trojský kůň - nelze léčit. Muzete mi poradit co s tim ? Je mozne jej smazat primo ? Nevim jelikoz nabidka mazani napadenich souboru neikde neni jen leceni. Diky moc za pdpoved.
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:27:08, on 20.10.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Real\RealPlayer\update\realsched.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\PROGRA~1\MICROS~4\rapimgr.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\QIP\qip.exe
C:\Documents and Settings\XPC\Dokumenty\Stažené soubory\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = my.daemon-search.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: (no name) - - (no file)
O1 - Hosts: ::1 localhost
O1 - Hosts: 64.27.9.109 www.bing.com.
O1 - Hosts: 64.27.9.109 search.yahoo.com.
O1 - Hosts: 64.27.9.109 www.search.yahoo.com.
O1 - Hosts: 64.27.9.109 uk.search.yahoo.com.
O1 - Hosts: 64.27.9.109 ca.search.yahoo.com.
O1 - Hosts: 64.27.9.109 de.search.yahoo.com.
O1 - Hosts: 64.27.9.109 fr.search.yahoo.com.
O1 - Hosts: 64.27.9.109 au.search.yahoo.com.
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Real\RealPlayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKCU\..\Run: [RGSC] D:\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [{ACC978DA-7762-2A15-8278-F4FE41480C64}] "C:\Documents and Settings\XPC\Data aplikací\Uxymdy\daan.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra 'Tools' menuitem: Vytvořit mobilní oblíbenou položku… - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{0BF1738B-09E1-4578-AC20-F28F2406F9A1}: NameServer = 193.179.148.42
O17 - HKLM\System\CS1\Services\Tcpip\..\{0BF1738B-09E1-4578-AC20-F28F2406F9A1}: NameServer = 193.179.148.42
O17 - HKLM\System\CS3\Services\Tcpip\..\{0BF1738B-09E1-4578-AC20-F28F2406F9A1}: NameServer = 193.179.148.42
O18 - Protocol: bw+0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Aktivátor Správce výběru OS Acronis (Správce výběru OS) - Unknown owner - C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe
--
End of file - 21305 bytes
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Win32/Spy.Zbot.ZR
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Win32/Spy.Zbot.ZR
Naposledy upravil(a) camello dne 20 říj 2011 20:29, celkem upraveno 1 x.
Re: Win32/Spy.Zbot.ZR
Zdravim, pekny vecer preji a vitam Vas u nas na foru 
Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe
Dejte log z RSIT http://www.viry.cz/forum/viewtopic.php?f=13&t=105895 - a poprosim o oba logy z nej (log.txt i info.txt) - otevrou se a pripadne budou ulozeny v c:\rsit
Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe
- Utilitu spustte a prikazte ji, at skenuje - klik na Start Scan
- Pokud utilita najde infikekci, bude ji chtit lecit (Cure), povolte leceni kliknutim na Continue
- Pokud utilita najde podezrely soubor (suspicious), bude jej chtit preskocit (Skip), povolte preskoceni kliknutim na Continue
- Po dokonceni skenu bude mozna nutny restart PC, povolte jej kliknutim na Reboot now
- Po restartu na Vas vyskoci log, pokud se tak nestane, najdete jej primo na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt - jeho obsah sem vlozte
- Pokud restart nebude vyzadovan, kliknete na Close a nasledne na Report - vytvori se log - jeho obsah sem vlozte
Dejte log z RSIT http://www.viry.cz/forum/viewtopic.php?f=13&t=105895 - a poprosim o oba logy z nej (log.txt i info.txt) - otevrou se a pripadne budou ulozeny v c:\rsit"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Win32/Spy.Zbot.ZR
21:41:22.0656 2516 TDSS rootkit removing tool 2.6.11.0 Oct 19 2011 13:50:27
21:41:22.0765 2516 ============================================================
21:41:22.0765 2516 Current date / time: 2011/10/20 21:41:22.0765
21:41:22.0765 2516 SystemInfo:
21:41:22.0765 2516
21:41:22.0765 2516 OS Version: 5.1.2600 ServicePack: 3.0
21:41:22.0765 2516 Product type: Workstation
21:41:22.0765 2516 ComputerName: ZDENY
21:41:22.0765 2516 UserName: XPC
21:41:22.0765 2516 Windows directory: C:\WINDOWS
21:41:22.0765 2516 System windows directory: C:\WINDOWS
21:41:22.0765 2516 Processor architecture: Intel x86
21:41:22.0765 2516 Number of processors: 2
21:41:22.0765 2516 Page size: 0x1000
21:41:22.0765 2516 Boot type: Normal boot
21:41:22.0765 2516 ============================================================
21:41:24.0593 2516 Initialize success
21:41:36.0078 4016 ============================================================
21:41:36.0078 4016 Scan started
21:41:36.0078 4016 Mode: Manual;
21:41:36.0078 4016 ============================================================
21:41:36.0968 4016 Abiosdsk - ok
21:41:36.0984 4016 abp480n5 - ok
21:41:37.0000 4016 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:41:37.0015 4016 ACPI - ok
21:41:37.0031 4016 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
21:41:37.0031 4016 ACPIEC - ok
21:41:37.0046 4016 ADIHdAudAddService (f277c43c2e0672eed28cca0d13ce175f) C:\WINDOWS\system32\drivers\ADIHdAud.sys
21:41:37.0046 4016 ADIHdAudAddService - ok
21:41:37.0062 4016 adpu160m - ok
21:41:37.0078 4016 AEAudio (fff87a9b1ab36ee4b7bec98a4cb01b79) C:\WINDOWS\system32\drivers\AEAudio.sys
21:41:37.0078 4016 AEAudio - ok
21:41:37.0093 4016 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:41:37.0093 4016 aec - ok
21:41:37.0109 4016 AFD (322d0e36693d6e24a2398bee62a268cd) C:\WINDOWS\System32\drivers\afd.sys
21:41:37.0109 4016 AFD - ok
21:41:37.0109 4016 Aha154x - ok
21:41:37.0125 4016 aic78u2 - ok
21:41:37.0125 4016 aic78xx - ok
21:41:37.0140 4016 AliIde - ok
21:41:37.0140 4016 amsint - ok
21:41:37.0156 4016 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:41:37.0156 4016 Arp1394 - ok
21:41:37.0171 4016 asc - ok
21:41:37.0171 4016 asc3350p - ok
21:41:37.0171 4016 asc3550 - ok
21:41:37.0187 4016 AsIO (2b4e66fac6503494a2c6f32bb6ab3826) C:\WINDOWS\system32\drivers\AsIO.sys
21:41:37.0187 4016 AsIO - ok
21:41:37.0203 4016 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:41:37.0203 4016 AsyncMac - ok
21:41:37.0203 4016 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:41:37.0203 4016 atapi - ok
21:41:37.0218 4016 Atdisk - ok
21:41:37.0359 4016 ati2mtag (0a8b257db810be78ac9fd1860b4ba22b) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:41:37.0406 4016 ati2mtag - ok
21:41:37.0437 4016 AtiHdmiService (41c8f0eda10da14378d304c20ba6e558) C:\WINDOWS\system32\drivers\AtiHdmi.sys
21:41:37.0437 4016 AtiHdmiService - ok
21:41:37.0453 4016 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:41:37.0453 4016 Atmarpc - ok
21:41:37.0484 4016 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:41:37.0484 4016 audstub - ok
21:41:37.0484 4016 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:41:37.0484 4016 Beep - ok
21:41:37.0500 4016 Bulk1528 (ed1d7546e84a3ebd7f6e900de73cf390) C:\WINDOWS\system32\Drivers\Bulk1528.sys
21:41:37.0500 4016 Bulk1528 - ok
21:41:37.0531 4016 Ca1528av (94bf1cd4cdf4b02be835d78ca5104734) C:\WINDOWS\system32\Drivers\Ca1528av.sys
21:41:37.0531 4016 Ca1528av - ok
21:41:37.0562 4016 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:41:37.0562 4016 cbidf2k - ok
21:41:37.0593 4016 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:41:37.0593 4016 CCDECODE - ok
21:41:37.0609 4016 cd20xrnt - ok
21:41:37.0625 4016 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:41:37.0625 4016 Cdaudio - ok
21:41:37.0625 4016 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:41:37.0625 4016 Cdfs - ok
21:41:37.0640 4016 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:41:37.0640 4016 Cdrom - ok
21:41:37.0656 4016 Changer - ok
21:41:37.0656 4016 CmdIde - ok
21:41:37.0671 4016 Cpqarray - ok
21:41:37.0734 4016 CrystalSysInfo (f054744f67576a01139885173392502b) C:\Program Files\MediaCoder\SysInfo.sys
21:41:37.0734 4016 CrystalSysInfo - ok
21:41:37.0734 4016 dac2w2k - ok
21:41:37.0734 4016 dac960nt - ok
21:41:37.0750 4016 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:41:37.0750 4016 Disk - ok
21:41:37.0781 4016 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
21:41:37.0781 4016 dmboot - ok
21:41:37.0796 4016 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
21:41:37.0796 4016 dmio - ok
21:41:37.0796 4016 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:41:37.0796 4016 dmload - ok
21:41:37.0812 4016 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:41:37.0812 4016 DMusic - ok
21:41:37.0828 4016 dpti2o - ok
21:41:37.0843 4016 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:41:37.0843 4016 drmkaud - ok
21:41:37.0875 4016 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
21:41:37.0875 4016 dtsoftbus01 - ok
21:41:37.0890 4016 eamon (9309c5c9831203436e64cf2ae605c5d7) C:\WINDOWS\system32\DRIVERS\eamon.sys
21:41:37.0906 4016 eamon - ok
21:41:37.0906 4016 ehdrv (deff87f04ab5f6dd5edf2b80853bbe10) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
21:41:37.0906 4016 ehdrv - ok
21:41:37.0937 4016 ENTECH (16ebd8bf1d5090923694cc972c7ce1b4) C:\WINDOWS\system32\DRIVERS\ENTECH.SYS
21:41:37.0937 4016 ENTECH - ok
21:41:37.0953 4016 epfwtdir (06c65ac0a703cf8eea4f284d901a1550) C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
21:41:37.0953 4016 epfwtdir - ok
21:41:37.0953 4016 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:41:37.0968 4016 Fastfat - ok
21:41:37.0968 4016 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
21:41:37.0968 4016 Fdc - ok
21:41:37.0984 4016 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
21:41:37.0984 4016 Fips - ok
21:41:38.0000 4016 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:41:38.0000 4016 Flpydisk - ok
21:41:38.0015 4016 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:41:38.0015 4016 FltMgr - ok
21:41:38.0015 4016 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:41:38.0015 4016 Fs_Rec - ok
21:41:38.0031 4016 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:41:38.0031 4016 Ftdisk - ok
21:41:38.0046 4016 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:41:38.0046 4016 Gpc - ok
21:41:38.0062 4016 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:41:38.0062 4016 HDAudBus - ok
21:41:38.0078 4016 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:41:38.0078 4016 hidusb - ok
21:41:38.0078 4016 hpn - ok
21:41:38.0093 4016 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
21:41:38.0093 4016 HTTP - ok
21:41:38.0109 4016 i2omgmt - ok
21:41:38.0109 4016 i2omp - ok
21:41:38.0125 4016 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:41:38.0125 4016 i8042prt - ok
21:41:38.0140 4016 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:41:38.0140 4016 Imapi - ok
21:41:38.0156 4016 ini910u - ok
21:41:38.0156 4016 IntelIde - ok
21:41:38.0156 4016 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:41:38.0156 4016 intelppm - ok
21:41:38.0187 4016 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:41:38.0187 4016 Ip6Fw - ok
21:41:38.0218 4016 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:41:38.0218 4016 IpFilterDriver - ok
21:41:38.0234 4016 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:41:38.0234 4016 IpInIp - ok
21:41:38.0250 4016 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:41:38.0250 4016 IpNat - ok
21:41:38.0250 4016 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:41:38.0250 4016 IPSec - ok
21:41:38.0265 4016 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:41:38.0265 4016 IRENUM - ok
21:41:38.0265 4016 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:41:38.0265 4016 isapnp - ok
21:41:38.0296 4016 k750bus (fe8300320281d658a7854d5cfc02a63f) C:\WINDOWS\system32\DRIVERS\k750bus.sys
21:41:38.0296 4016 k750bus - ok
21:41:38.0328 4016 k750mgmt (9d5f5a70ca0b7c428efcd73db50e6ac7) C:\WINDOWS\system32\DRIVERS\k750mgmt.sys
21:41:38.0328 4016 k750mgmt - ok
21:41:38.0343 4016 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:41:38.0343 4016 Kbdclass - ok
21:41:38.0343 4016 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:41:38.0343 4016 kbdhid - ok
21:41:38.0375 4016 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:41:38.0375 4016 kmixer - ok
21:41:38.0375 4016 KSecDD (1705745d900dabf2d89f90ebaddc7517) C:\WINDOWS\system32\drivers\KSecDD.sys
21:41:38.0375 4016 KSecDD - ok
21:41:38.0375 4016 L8042Kbd (ad1541d5ff5b3f903da34737b6ba9a53) C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys
21:41:38.0375 4016 L8042Kbd - ok
21:41:38.0390 4016 lbrtfdc - ok
21:41:38.0406 4016 LHidFilt (24e0ddb99aeccf86bb37702611761459) C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
21:41:38.0406 4016 LHidFilt - ok
21:41:38.0406 4016 LHidKe (e47f94327e369ed6916049febf5f85e5) C:\WINDOWS\system32\DRIVERS\LHidKE.Sys
21:41:38.0406 4016 LHidKe - ok
21:41:38.0421 4016 LHidUsbK (a54c75e7481272eaaa6245683c89ecaa) C:\WINDOWS\system32\Drivers\LHidUsbK.Sys
21:41:38.0421 4016 LHidUsbK - ok
21:41:38.0421 4016 LMouFilt (d58b330d318361a66a9fe60d7c9b4951) C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
21:41:38.0421 4016 LMouFilt - ok
21:41:38.0437 4016 LMouKE (0e34232fca6f20172b1d8b6e8a9a26d1) C:\WINDOWS\system32\DRIVERS\LMouKE.Sys
21:41:38.0437 4016 LMouKE - ok
21:41:38.0453 4016 LUsbFilt (144011d14bd35f4e36136ae057b1aadd) C:\WINDOWS\system32\Drivers\LUsbFilt.Sys
21:41:38.0453 4016 LUsbFilt - ok
21:41:38.0468 4016 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:41:38.0468 4016 mnmdd - ok
21:41:38.0484 4016 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
21:41:38.0484 4016 Modem - ok
21:41:38.0484 4016 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:41:38.0484 4016 Mouclass - ok
21:41:38.0484 4016 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:41:38.0484 4016 mouhid - ok
21:41:38.0500 4016 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:41:38.0500 4016 MountMgr - ok
21:41:38.0500 4016 mraid35x - ok
21:41:38.0500 4016 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:41:38.0500 4016 MRxDAV - ok
21:41:38.0515 4016 MRxSmb (68755f0ff16070178b54674fe5b847b0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:41:38.0531 4016 MRxSmb - ok
21:41:38.0531 4016 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:41:38.0531 4016 Msfs - ok
21:41:38.0546 4016 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:41:38.0546 4016 MSKSSRV - ok
21:41:38.0546 4016 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:41:38.0546 4016 MSPCLOCK - ok
21:41:38.0562 4016 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:41:38.0562 4016 MSPQM - ok
21:41:38.0578 4016 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:41:38.0578 4016 mssmbios - ok
21:41:38.0609 4016 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
21:41:38.0609 4016 MSTEE - ok
21:41:38.0609 4016 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
21:41:38.0609 4016 MTsensor - ok
21:41:38.0625 4016 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
21:41:38.0625 4016 Mup - ok
21:41:38.0640 4016 mv61xx (e6f48050af7548e4bf775f0d83873794) C:\WINDOWS\system32\DRIVERS\mv61xx.sys
21:41:38.0640 4016 mv61xx - ok
21:41:38.0671 4016 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:41:38.0671 4016 NABTSFEC - ok
21:41:38.0687 4016 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:41:38.0687 4016 NDIS - ok
21:41:38.0703 4016 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:41:38.0703 4016 NdisIP - ok
21:41:38.0703 4016 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:41:38.0703 4016 NdisTapi - ok
21:41:38.0734 4016 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:41:38.0734 4016 Ndisuio - ok
21:41:38.0750 4016 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:41:38.0750 4016 NdisWan - ok
21:41:38.0750 4016 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
21:41:38.0750 4016 NDProxy - ok
21:41:38.0750 4016 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:41:38.0750 4016 NetBIOS - ok
21:41:38.0765 4016 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:41:38.0765 4016 NetBT - ok
21:41:38.0781 4016 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:41:38.0781 4016 NIC1394 - ok
21:41:38.0796 4016 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:41:38.0796 4016 Npfs - ok
21:41:38.0812 4016 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:41:38.0828 4016 Ntfs - ok
21:41:38.0828 4016 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:41:38.0828 4016 Null - ok
21:41:38.0859 4016 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:41:38.0859 4016 NwlnkFlt - ok
21:41:38.0875 4016 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:41:38.0875 4016 NwlnkFwd - ok
21:41:38.0890 4016 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:41:38.0890 4016 ohci1394 - ok
21:41:38.0890 4016 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\drivers\Parport.sys
21:41:38.0890 4016 Parport - ok
21:41:38.0906 4016 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:41:38.0906 4016 PartMgr - ok
21:41:38.0921 4016 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
21:41:38.0921 4016 ParVdm - ok
21:41:38.0937 4016 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
21:41:38.0937 4016 PCI - ok
21:41:38.0937 4016 PCIDump - ok
21:41:38.0953 4016 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
21:41:38.0953 4016 PCIIde - ok
21:41:38.0968 4016 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
21:41:38.0968 4016 Pcmcia - ok
21:41:38.0984 4016 pcouffin (02aaafb7ba137ce5ddabcdf8090954d9) C:\WINDOWS\system32\Drivers\pcouffin.sys
21:41:38.0984 4016 pcouffin - ok
21:41:38.0984 4016 PDCOMP - ok
21:41:38.0984 4016 PDFRAME - ok
21:41:39.0000 4016 PDRELI - ok
21:41:39.0000 4016 PDRFRAME - ok
21:41:39.0000 4016 perc2 - ok
21:41:39.0000 4016 perc2hib - ok
21:41:39.0015 4016 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:41:39.0015 4016 PptpMiniport - ok
21:41:39.0031 4016 PQNTDrv (4228630829c0e521c43d882a00533374) C:\WINDOWS\system32\drivers\PQNTDrv.sys
21:41:39.0031 4016 PQNTDrv - ok
21:41:39.0046 4016 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:41:39.0046 4016 PSched - ok
21:41:39.0062 4016 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:41:39.0062 4016 Ptilink - ok
21:41:39.0062 4016 ql1080 - ok
21:41:39.0062 4016 Ql10wnt - ok
21:41:39.0078 4016 ql12160 - ok
21:41:39.0078 4016 ql1240 - ok
21:41:39.0078 4016 ql1280 - ok
21:41:39.0093 4016 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:41:39.0093 4016 RasAcd - ok
21:41:39.0093 4016 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:41:39.0093 4016 Rasl2tp - ok
21:41:39.0093 4016 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:41:39.0093 4016 RasPppoe - ok
21:41:39.0109 4016 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:41:39.0109 4016 Raspti - ok
21:41:39.0125 4016 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:41:39.0125 4016 Rdbss - ok
21:41:39.0125 4016 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:41:39.0125 4016 RDPCDD - ok
21:41:39.0140 4016 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:41:39.0140 4016 rdpdr - ok
21:41:39.0156 4016 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
21:41:39.0156 4016 RDPWD - ok
21:41:39.0171 4016 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:41:39.0171 4016 redbook - ok
21:41:39.0218 4016 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:41:39.0218 4016 Secdrv - ok
21:41:39.0234 4016 SenFiltService (b6a6b409fda9d9ebd3aadb838d3d7173) C:\WINDOWS\system32\drivers\Senfilt.sys
21:41:39.0234 4016 SenFiltService - ok
21:41:39.0250 4016 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:41:39.0250 4016 Serenum - ok
21:41:39.0265 4016 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
21:41:39.0265 4016 Serial - ok
21:41:39.0265 4016 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:41:39.0265 4016 Sfloppy - ok
21:41:39.0265 4016 Simbad - ok
21:41:39.0312 4016 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:41:39.0312 4016 SLIP - ok
21:41:39.0328 4016 snapman (c6dafc9af23d54ca0e222b215d5e8378) C:\WINDOWS\system32\DRIVERS\snapman.sys
21:41:39.0328 4016 snapman - ok
21:41:39.0328 4016 Sparrow - ok
21:41:39.0343 4016 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:41:39.0343 4016 splitter - ok
21:41:39.0359 4016 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
21:41:39.0468 4016 \Device\Harddisk0\DR0 - ok
21:41:39.0468 4016 MBR (0x1B8) (62a8db0e0a9d2e7a833e53eeddf7c950) \Device\Harddisk1\DR1
21:41:39.0531 4016 \Device\Harddisk1\DR1 - ok
21:41:39.0531 4016 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk4\DR12
21:41:39.0531 4016 \Device\Harddisk4\DR12 - ok
21:41:39.0531 4016 Boot (0x1200) (96339b3156771f4fbb834e67d38ce391) \Device\Harddisk0\DR0\Partition0
21:41:39.0531 4016 \Device\Harddisk0\DR0\Partition0 - ok
21:41:39.0562 4016 Boot (0x1200) (e30358493caf3ceef3536735ebaa5167) \Device\Harddisk0\DR0\Partition1
21:41:39.0562 4016 \Device\Harddisk0\DR0\Partition1 - ok
21:41:39.0562 4016 Boot (0x1200) (3d03c5c4131a98569ba2c3a90314ed7f) \Device\Harddisk0\DR0\Partition2
21:41:39.0562 4016 \Device\Harddisk0\DR0\Partition2 - ok
21:41:39.0578 4016 Boot (0x1200) (8d73050bc55160857f666e088c3aec14) \Device\Harddisk0\DR0\Partition3
21:41:39.0578 4016 \Device\Harddisk0\DR0\Partition3 - ok
21:41:39.0593 4016 Boot (0x1200) (2d144068ed09947b6108218934c2b421) \Device\Harddisk0\DR0\Partition4
21:41:39.0593 4016 \Device\Harddisk0\DR0\Partition4 - ok
21:41:39.0593 4016 Boot (0x1200) (99e87eef4d74b8637be81cfc61e0ad86) \Device\Harddisk1\DR1\Partition0
21:41:39.0609 4016 \Device\Harddisk1\DR1\Partition0 - ok
21:41:39.0609 4016 Boot (0x1200) (c5ab862be8181bb9cf6f3f4e84845c69) \Device\Harddisk1\DR1\Partition1
21:41:39.0609 4016 \Device\Harddisk1\DR1\Partition1 - ok
21:41:39.0609 4016 Boot (0x1200) (db5a29e2f1fccfa9a80c0df7105f74fb) \Device\Harddisk1\DR1\Partition2
21:41:39.0609 4016 \Device\Harddisk1\DR1\Partition2 - ok
21:41:39.0609 4016 Boot (0x1200) (fb8b554e4105a0a918407686c2e37cf3) \Device\Harddisk4\DR12\Partition0
21:41:39.0609 4016 \Device\Harddisk4\DR12\Partition0 - ok
21:41:39.0609 4016 ============================================================
21:41:39.0609 4016 Scan finished
21:41:39.0609 4016 ============================================================
21:41:39.0609 2100 Detected object count: 0
21:41:39.0609 2100 Actual detected object count: 0
21:42:16.0062 1564 ============================================================
21:42:16.0062 1564 Scan started
21:42:16.0062 1564 Mode: Manual;
21:42:16.0062 1564 ============================================================
21:42:16.0828 1564 Abiosdsk - ok
21:42:16.0828 1564 abp480n5 - ok
21:42:16.0843 1564 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:42:16.0843 1564 ACPI - ok
21:42:16.0859 1564 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
21:42:16.0859 1564 ACPIEC - ok
21:42:16.0890 1564 ADIHdAudAddService (f277c43c2e0672eed28cca0d13ce175f) C:\WINDOWS\system32\drivers\ADIHdAud.sys
21:42:16.0890 1564 ADIHdAudAddService - ok
21:42:16.0890 1564 adpu160m - ok
21:42:16.0906 1564 AEAudio (fff87a9b1ab36ee4b7bec98a4cb01b79) C:\WINDOWS\system32\drivers\AEAudio.sys
21:42:16.0906 1564 AEAudio - ok
21:42:16.0921 1564 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:42:16.0921 1564 aec - ok
21:42:16.0937 1564 AFD (322d0e36693d6e24a2398bee62a268cd) C:\WINDOWS\System32\drivers\afd.sys
21:42:16.0937 1564 AFD - ok
21:42:16.0937 1564 Aha154x - ok
21:42:16.0937 1564 aic78u2 - ok
21:42:16.0953 1564 aic78xx - ok
21:42:16.0953 1564 AliIde - ok
21:42:16.0953 1564 amsint - ok
21:42:16.0968 1564 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:42:16.0968 1564 Arp1394 - ok
21:42:16.0968 1564 asc - ok
21:42:16.0984 1564 asc3350p - ok
21:42:16.0984 1564 asc3550 - ok
21:42:17.0000 1564 AsIO (2b4e66fac6503494a2c6f32bb6ab3826) C:\WINDOWS\system32\drivers\AsIO.sys
21:42:17.0000 1564 AsIO - ok
21:42:17.0015 1564 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:42:17.0015 1564 AsyncMac - ok
21:42:17.0015 1564 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:42:17.0015 1564 atapi - ok
21:42:17.0015 1564 Atdisk - ok
21:42:17.0156 1564 ati2mtag (0a8b257db810be78ac9fd1860b4ba22b) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:42:17.0171 1564 ati2mtag - ok
21:42:17.0203 1564 AtiHdmiService (41c8f0eda10da14378d304c20ba6e558) C:\WINDOWS\system32\drivers\AtiHdmi.sys
21:42:17.0203 1564 AtiHdmiService - ok
21:42:17.0218 1564 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:42:17.0218 1564 Atmarpc - ok
21:42:17.0234 1564 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:42:17.0234 1564 audstub - ok
21:42:17.0250 1564 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:42:17.0250 1564 Beep - ok
21:42:17.0265 1564 Bulk1528 (ed1d7546e84a3ebd7f6e900de73cf390) C:\WINDOWS\system32\Drivers\Bulk1528.sys
21:42:17.0265 1564 Bulk1528 - ok
21:42:17.0296 1564 Ca1528av (94bf1cd4cdf4b02be835d78ca5104734) C:\WINDOWS\system32\Drivers\Ca1528av.sys
21:42:17.0296 1564 Ca1528av - ok
21:42:17.0312 1564 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:42:17.0312 1564 cbidf2k - ok
21:42:17.0343 1564 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:42:17.0343 1564 CCDECODE - ok
21:42:17.0343 1564 cd20xrnt - ok
21:42:17.0359 1564 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:42:17.0359 1564 Cdaudio - ok
21:42:17.0390 1564 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:42:17.0390 1564 Cdfs - ok
21:42:17.0406 1564 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:42:17.0406 1564 Cdrom - ok
21:42:17.0406 1564 Changer - ok
21:42:17.0421 1564 CmdIde - ok
21:42:17.0421 1564 Cpqarray - ok
21:42:17.0484 1564 CrystalSysInfo (f054744f67576a01139885173392502b) C:\Program Files\MediaCoder\SysInfo.sys
21:42:17.0484 1564 CrystalSysInfo - ok
21:42:17.0500 1564 dac2w2k - ok
21:42:17.0500 1564 dac960nt - ok
21:42:17.0500 1564 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:42:17.0500 1564 Disk - ok
21:42:17.0531 1564 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
21:42:17.0531 1564 dmboot - ok
21:42:17.0546 1564 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
21:42:17.0546 1564 dmio - ok
21:42:17.0546 1564 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:42:17.0546 1564 dmload - ok
21:42:17.0562 1564 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:42:17.0562 1564 DMusic - ok
21:42:17.0562 1564 dpti2o - ok
21:42:17.0578 1564 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:42:17.0578 1564 drmkaud - ok
21:42:17.0609 1564 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
21:42:17.0609 1564 dtsoftbus01 - ok
21:42:17.0640 1564 eamon (9309c5c9831203436e64cf2ae605c5d7) C:\WINDOWS\system32\DRIVERS\eamon.sys
21:42:17.0640 1564 eamon - ok
21:42:17.0640 1564 ehdrv (deff87f04ab5f6dd5edf2b80853bbe10) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
21:42:17.0640 1564 ehdrv - ok
21:42:17.0671 1564 ENTECH (16ebd8bf1d5090923694cc972c7ce1b4) C:\WINDOWS\system32\DRIVERS\ENTECH.SYS
21:42:17.0671 1564 ENTECH - ok
21:42:17.0687 1564 epfwtdir (06c65ac0a703cf8eea4f284d901a1550) C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
21:42:17.0687 1564 epfwtdir - ok
21:42:17.0687 1564 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:42:17.0687 1564 Fastfat - ok
21:42:17.0703 1564 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
21:42:17.0703 1564 Fdc - ok
21:42:17.0718 1564 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
21:42:17.0718 1564 Fips - ok
21:42:17.0734 1564 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:42:17.0734 1564 Flpydisk - ok
21:42:17.0750 1564 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:42:17.0750 1564 FltMgr - ok
21:42:17.0750 1564 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:42:17.0750 1564 Fs_Rec - ok
21:42:17.0765 1564 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:42:17.0765 1564 Ftdisk - ok
21:42:17.0781 1564 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:42:17.0781 1564 Gpc - ok
21:42:17.0796 1564 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:42:17.0796 1564 HDAudBus - ok
21:42:17.0812 1564 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:42:17.0812 1564 hidusb - ok
21:42:17.0812 1564 hpn - ok
21:42:17.0828 1564 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
21:42:17.0828 1564 HTTP - ok
21:42:17.0843 1564 i2omgmt - ok
21:42:17.0843 1564 i2omp - ok
21:42:17.0859 1564 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:42:17.0859 1564 i8042prt - ok
21:42:17.0875 1564 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:42:17.0875 1564 Imapi - ok
21:42:17.0890 1564 ini910u - ok
21:42:17.0890 1564 IntelIde - ok
21:42:17.0890 1564 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:42:17.0890 1564 intelppm - ok
21:42:17.0921 1564 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:42:17.0921 1564 Ip6Fw - ok
21:42:17.0953 1564 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:42:17.0953 1564 IpFilterDriver - ok
21:42:17.0968 1564 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:42:17.0968 1564 IpInIp - ok
21:42:17.0984 1564 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:42:17.0984 1564 IpNat - ok
21:42:17.0984 1564 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:42:17.0984 1564 IPSec - ok
21:42:18.0000 1564 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:42:18.0000 1564 IRENUM - ok
21:42:18.0000 1564 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:42:18.0000 1564 isapnp - ok
21:42:18.0031 1564 k750bus (fe8300320281d658a7854d5cfc02a63f) C:\WINDOWS\system32\DRIVERS\k750bus.sys
21:42:18.0031 1564 k750bus - ok
21:42:18.0062 1564 k750mgmt (9d5f5a70ca0b7c428efcd73db50e6ac7) C:\WINDOWS\system32\DRIVERS\k750mgmt.sys
21:42:18.0062 1564 k750mgmt - ok
21:42:18.0078 1564 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:42:18.0078 1564 Kbdclass - ok
21:42:18.0078 1564 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:42:18.0078 1564 kbdhid - ok
21:42:18.0109 1564 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:42:18.0109 1564 kmixer - ok
21:42:18.0109 1564 KSecDD (1705745d900dabf2d89f90ebaddc7517) C:\WINDOWS\system32\drivers\KSecDD.sys
21:42:18.0109 1564 KSecDD - ok
21:42:18.0125 1564 L8042Kbd (ad1541d5ff5b3f903da34737b6ba9a53) C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys
21:42:18.0125 1564 L8042Kbd - ok
21:42:18.0125 1564 lbrtfdc - ok
21:42:18.0156 1564 LHidFilt (24e0ddb99aeccf86bb37702611761459) C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
21:42:18.0156 1564 LHidFilt - ok
21:42:18.0156 1564 LHidKe (e47f94327e369ed6916049febf5f85e5) C:\WINDOWS\system32\DRIVERS\LHidKE.Sys
21:42:18.0156 1564 LHidKe - ok
21:42:18.0156 1564 LHidUsbK (a54c75e7481272eaaa6245683c89ecaa) C:\WINDOWS\system32\Drivers\LHidUsbK.Sys
21:42:18.0156 1564 LHidUsbK - ok
21:42:18.0171 1564 LMouFilt (d58b330d318361a66a9fe60d7c9b4951) C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
21:42:18.0171 1564 LMouFilt - ok
21:42:18.0187 1564 LMouKE (0e34232fca6f20172b1d8b6e8a9a26d1) C:\WINDOWS\system32\DRIVERS\LMouKE.Sys
21:42:18.0187 1564 LMouKE - ok
21:42:18.0187 1564 LUsbFilt (144011d14bd35f4e36136ae057b1aadd) C:\WINDOWS\system32\Drivers\LUsbFilt.Sys
21:42:18.0187 1564 LUsbFilt - ok
21:42:18.0203 1564 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:42:18.0203 1564 mnmdd - ok
21:42:18.0218 1564 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
21:42:18.0218 1564 Modem - ok
21:42:18.0234 1564 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:42:18.0234 1564 Mouclass - ok
21:42:18.0234 1564 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:42:18.0234 1564 mouhid - ok
21:42:18.0234 1564 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:42:18.0234 1564 MountMgr - ok
21:42:18.0234 1564 mraid35x - ok
21:42:18.0250 1564 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:42:18.0250 1564 MRxDAV - ok
21:42:18.0265 1564 MRxSmb (68755f0ff16070178b54674fe5b847b0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:42:18.0265 1564 MRxSmb - ok
21:42:18.0265 1564 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:42:18.0265 1564 Msfs - ok
21:42:18.0281 1564 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:42:18.0281 1564 MSKSSRV - ok
21:42:18.0296 1564 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:42:18.0296 1564 MSPCLOCK - ok
21:42:18.0312 1564 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:42:18.0312 1564 MSPQM - ok
21:42:18.0328 1564 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:42:18.0328 1564 mssmbios - ok
21:42:18.0343 1564 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
21:42:18.0343 1564 MSTEE - ok
21:42:18.0359 1564 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
21:42:18.0359 1564 MTsensor - ok
21:42:18.0359 1564 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
21:42:18.0359 1564 Mup - ok
21:42:18.0375 1564 mv61xx (e6f48050af7548e4bf775f0d83873794) C:\WINDOWS\system32\DRIVERS\mv61xx.sys
21:42:18.0375 1564 mv61xx - ok
21:42:18.0406 1564 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:42:18.0406 1564 NABTSFEC - ok
21:42:18.0437 1564 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:42:18.0437 1564 NDIS - ok
21:42:18.0453 1564 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:42:18.0453 1564 NdisIP - ok
21:42:18.0453 1564 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:42:18.0453 1564 NdisTapi - ok
21:42:18.0468 1564 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:42:18.0468 1564 Ndisuio - ok
21:42:18.0484 1564 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:42:18.0484 1564 NdisWan - ok
21:42:18.0500 1564 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
21:42:18.0500 1564 NDProxy - ok
21:42:18.0500 1564 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:42:18.0500 1564 NetBIOS - ok
21:42:18.0515 1564 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:42:18.0515 1564 NetBT - ok
21:42:18.0531 1564 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:42:18.0531 1564 NIC1394 - ok
21:42:18.0531 1564 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:42:18.0531 1564 Npfs - ok
21:42:18.0562 1564 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:42:18.0562 1564 Ntfs - ok
21:42:18.0562 1564 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:42:18.0562 1564 Null - ok
21:42:18.0593 1564 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:42:18.0593 1564 NwlnkFlt - ok
21:42:18.0609 1564 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:42:18.0609 1564 NwlnkFwd - ok
21:42:18.0609 1564 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:42:18.0609 1564 ohci1394 - ok
21:42:18.0625 1564 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\drivers\Parport.sys
21:42:18.0625 1564 Parport - ok
21:42:18.0625 1564 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:42:18.0625 1564 PartMgr - ok
21:42:18.0640 1564 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
21:42:18.0640 1564 ParVdm - ok
21:42:18.0656 1564 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
21:42:18.0656 1564 PCI - ok
21:42:18.0656 1564 PCIDump - ok
21:42:18.0656 1564 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
21:42:18.0656 1564 PCIIde - ok
21:42:18.0671 1564 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
21:42:18.0671 1564 Pcmcia - ok
21:42:18.0687 1564 pcouffin (02aaafb7ba137ce5ddabcdf8090954d9) C:\WINDOWS\system32\Drivers\pcouffin.sys
21:42:18.0687 1564 pcouffin - ok
21:42:18.0687 1564 PDCOMP - ok
21:42:18.0703 1564 PDFRAME - ok
21:42:18.0703 1564 PDRELI - ok
21:42:18.0703 1564 PDRFRAME - ok
21:42:18.0718 1564 perc2 - ok
21:42:18.0718 1564 perc2hib - ok
21:42:18.0734 1564 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:42:18.0734 1564 PptpMiniport - ok
21:42:18.0750 1564 PQNTDrv (4228630829c0e521c43d882a00533374) C:\WINDOWS\system32\drivers\PQNTDrv.sys
21:42:18.0750 1564 PQNTDrv - ok
21:42:18.0750 1564 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:42:18.0750 1564 PSched - ok
21:42:18.0765 1564 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:42:18.0765 1564 Ptilink - ok
21:42:18.0781 1564 ql1080 - ok
21:42:18.0781 1564 Ql10wnt - ok
21:42:18.0781 1564 ql12160 - ok
21:42:18.0781 1564 ql1240 - ok
21:42:18.0796 1564 ql1280 - ok
21:42:18.0796 1564 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:42:18.0796 1564 RasAcd - ok
21:42:18.0796 1564 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:42:18.0796 1564 Rasl2tp - ok
21:42:18.0812 1564 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:42:18.0812 1564 RasPppoe - ok
21:42:18.0812 1564 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:42:18.0812 1564 Raspti - ok
21:42:18.0843 1564 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:42:18.0843 1564 Rdbss - ok
21:42:18.0843 1564 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:42:18.0843 1564 RDPCDD - ok
21:42:18.0859 1564 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:42:18.0859 1564 rdpdr - ok
21:42:18.0875 1564 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
21:42:18.0875 1564 RDPWD - ok
21:42:18.0890 1564 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:42:18.0890 1564 redbook - ok
21:42:18.0906 1564 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:42:18.0906 1564 Secdrv - ok
21:42:18.0921 1564 SenFiltService (b6a6b409fda9d9ebd3aadb838d3d7173) C:\WINDOWS\system32\drivers\Senfilt.sys
21:42:18.0937 1564 SenFiltService - ok
21:42:18.0953 1564 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:42:18.0953 1564 Serenum - ok
21:42:18.0953 1564 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
21:42:18.0953 1564 Serial - ok
21:42:18.0953 1564 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:42:18.0953 1564 Sfloppy - ok
21:42:18.0968 1564 Simbad - ok
21:42:19.0000 1564 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:42:19.0000 1564 SLIP - ok
21:42:19.0015 1564 snapman (c6dafc9af23d54ca0e222b215d5e8378) C:\WINDOWS\system32\DRIVERS\snapman.sys
21:42:19.0015 1564 snapman - ok
21:42:19.0031 1564 Sparrow - ok
21:42:19.0046 1564 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:42:19.0046 1564 splitter - ok
21:42:19.0046 1564 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
21:42:19.0156 1564 \Device\Harddisk0\DR0 - ok
21:42:19.0171 1564 MBR (0x1B8) (62a8db0e0a9d2e7a833e53eeddf7c950) \Device\Harddisk1\DR1
21:42:19.0218 1564 \Device\Harddisk1\DR1 - ok
21:42:19.0218 1564 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk4\DR12
21:42:19.0234 1564 \Device\Harddisk4\DR12 - ok
21:42:19.0234 1564 Boot (0x1200) (96339b3156771f4fbb834e67d38ce391) \Device\Harddisk0\DR0\Partition0
21:42:19.0234 1564 \Device\Harddisk0\DR0\Partition0 - ok
21:42:19.0234 1564 Boot (0x1200) (e30358493caf3ceef3536735ebaa5167) \Device\Harddisk0\DR0\Partition1
21:42:19.0234 1564 \Device\Harddisk0\DR0\Partition1 - ok
21:42:19.0250 1564 Boot (0x1200) (3d03c5c4131a98569ba2c3a90314ed7f) \Device\Harddisk0\DR0\Partition2
21:42:19.0250 1564 \Device\Harddisk0\DR0\Partition2 - ok
21:42:19.0265 1564 Boot (0x1200) (8d73050bc55160857f666e088c3aec14) \Device\Harddisk0\DR0\Partition3
21:42:19.0265 1564 \Device\Harddisk0\DR0\Partition3 - ok
21:42:19.0281 1564 Boot (0x1200) (2d144068ed09947b6108218934c2b421) \Device\Harddisk0\DR0\Partition4
21:42:19.0281 1564 \Device\Harddisk0\DR0\Partition4 - ok
21:42:19.0281 1564 Boot (0x1200) (99e87eef4d74b8637be81cfc61e0ad86) \Device\Harddisk1\DR1\Partition0
21:42:19.0281 1564 \Device\Harddisk1\DR1\Partition0 - ok
21:42:19.0281 1564 Boot (0x1200) (c5ab862be8181bb9cf6f3f4e84845c69) \Device\Harddisk1\DR1\Partition1
21:42:19.0281 1564 \Device\Harddisk1\DR1\Partition1 - ok
21:42:19.0296 1564 Boot (0x1200) (db5a29e2f1fccfa9a80c0df7105f74fb) \Device\Harddisk1\DR1\Partition2
21:42:19.0296 1564 \Device\Harddisk1\DR1\Partition2 - ok
21:42:19.0296 1564 Boot (0x1200) (fb8b554e4105a0a918407686c2e37cf3) \Device\Harddisk4\DR12\Partition0
21:42:19.0296 1564 \Device\Harddisk4\DR12\Partition0 - ok
21:42:19.0296 1564 ============================================================
21:42:19.0296 1564 Scan finished
21:42:19.0296 1564 ============================================================
21:42:19.0296 1732 Detected object count: 0
21:42:19.0296 1732 Actual detected object count: 0
21:44:15.0343 3952 Deinitialize success
21:41:22.0765 2516 ============================================================
21:41:22.0765 2516 Current date / time: 2011/10/20 21:41:22.0765
21:41:22.0765 2516 SystemInfo:
21:41:22.0765 2516
21:41:22.0765 2516 OS Version: 5.1.2600 ServicePack: 3.0
21:41:22.0765 2516 Product type: Workstation
21:41:22.0765 2516 ComputerName: ZDENY
21:41:22.0765 2516 UserName: XPC
21:41:22.0765 2516 Windows directory: C:\WINDOWS
21:41:22.0765 2516 System windows directory: C:\WINDOWS
21:41:22.0765 2516 Processor architecture: Intel x86
21:41:22.0765 2516 Number of processors: 2
21:41:22.0765 2516 Page size: 0x1000
21:41:22.0765 2516 Boot type: Normal boot
21:41:22.0765 2516 ============================================================
21:41:24.0593 2516 Initialize success
21:41:36.0078 4016 ============================================================
21:41:36.0078 4016 Scan started
21:41:36.0078 4016 Mode: Manual;
21:41:36.0078 4016 ============================================================
21:41:36.0968 4016 Abiosdsk - ok
21:41:36.0984 4016 abp480n5 - ok
21:41:37.0000 4016 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:41:37.0015 4016 ACPI - ok
21:41:37.0031 4016 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
21:41:37.0031 4016 ACPIEC - ok
21:41:37.0046 4016 ADIHdAudAddService (f277c43c2e0672eed28cca0d13ce175f) C:\WINDOWS\system32\drivers\ADIHdAud.sys
21:41:37.0046 4016 ADIHdAudAddService - ok
21:41:37.0062 4016 adpu160m - ok
21:41:37.0078 4016 AEAudio (fff87a9b1ab36ee4b7bec98a4cb01b79) C:\WINDOWS\system32\drivers\AEAudio.sys
21:41:37.0078 4016 AEAudio - ok
21:41:37.0093 4016 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:41:37.0093 4016 aec - ok
21:41:37.0109 4016 AFD (322d0e36693d6e24a2398bee62a268cd) C:\WINDOWS\System32\drivers\afd.sys
21:41:37.0109 4016 AFD - ok
21:41:37.0109 4016 Aha154x - ok
21:41:37.0125 4016 aic78u2 - ok
21:41:37.0125 4016 aic78xx - ok
21:41:37.0140 4016 AliIde - ok
21:41:37.0140 4016 amsint - ok
21:41:37.0156 4016 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:41:37.0156 4016 Arp1394 - ok
21:41:37.0171 4016 asc - ok
21:41:37.0171 4016 asc3350p - ok
21:41:37.0171 4016 asc3550 - ok
21:41:37.0187 4016 AsIO (2b4e66fac6503494a2c6f32bb6ab3826) C:\WINDOWS\system32\drivers\AsIO.sys
21:41:37.0187 4016 AsIO - ok
21:41:37.0203 4016 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:41:37.0203 4016 AsyncMac - ok
21:41:37.0203 4016 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:41:37.0203 4016 atapi - ok
21:41:37.0218 4016 Atdisk - ok
21:41:37.0359 4016 ati2mtag (0a8b257db810be78ac9fd1860b4ba22b) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:41:37.0406 4016 ati2mtag - ok
21:41:37.0437 4016 AtiHdmiService (41c8f0eda10da14378d304c20ba6e558) C:\WINDOWS\system32\drivers\AtiHdmi.sys
21:41:37.0437 4016 AtiHdmiService - ok
21:41:37.0453 4016 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:41:37.0453 4016 Atmarpc - ok
21:41:37.0484 4016 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:41:37.0484 4016 audstub - ok
21:41:37.0484 4016 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:41:37.0484 4016 Beep - ok
21:41:37.0500 4016 Bulk1528 (ed1d7546e84a3ebd7f6e900de73cf390) C:\WINDOWS\system32\Drivers\Bulk1528.sys
21:41:37.0500 4016 Bulk1528 - ok
21:41:37.0531 4016 Ca1528av (94bf1cd4cdf4b02be835d78ca5104734) C:\WINDOWS\system32\Drivers\Ca1528av.sys
21:41:37.0531 4016 Ca1528av - ok
21:41:37.0562 4016 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:41:37.0562 4016 cbidf2k - ok
21:41:37.0593 4016 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:41:37.0593 4016 CCDECODE - ok
21:41:37.0609 4016 cd20xrnt - ok
21:41:37.0625 4016 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:41:37.0625 4016 Cdaudio - ok
21:41:37.0625 4016 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:41:37.0625 4016 Cdfs - ok
21:41:37.0640 4016 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:41:37.0640 4016 Cdrom - ok
21:41:37.0656 4016 Changer - ok
21:41:37.0656 4016 CmdIde - ok
21:41:37.0671 4016 Cpqarray - ok
21:41:37.0734 4016 CrystalSysInfo (f054744f67576a01139885173392502b) C:\Program Files\MediaCoder\SysInfo.sys
21:41:37.0734 4016 CrystalSysInfo - ok
21:41:37.0734 4016 dac2w2k - ok
21:41:37.0734 4016 dac960nt - ok
21:41:37.0750 4016 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:41:37.0750 4016 Disk - ok
21:41:37.0781 4016 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
21:41:37.0781 4016 dmboot - ok
21:41:37.0796 4016 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
21:41:37.0796 4016 dmio - ok
21:41:37.0796 4016 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:41:37.0796 4016 dmload - ok
21:41:37.0812 4016 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:41:37.0812 4016 DMusic - ok
21:41:37.0828 4016 dpti2o - ok
21:41:37.0843 4016 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:41:37.0843 4016 drmkaud - ok
21:41:37.0875 4016 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
21:41:37.0875 4016 dtsoftbus01 - ok
21:41:37.0890 4016 eamon (9309c5c9831203436e64cf2ae605c5d7) C:\WINDOWS\system32\DRIVERS\eamon.sys
21:41:37.0906 4016 eamon - ok
21:41:37.0906 4016 ehdrv (deff87f04ab5f6dd5edf2b80853bbe10) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
21:41:37.0906 4016 ehdrv - ok
21:41:37.0937 4016 ENTECH (16ebd8bf1d5090923694cc972c7ce1b4) C:\WINDOWS\system32\DRIVERS\ENTECH.SYS
21:41:37.0937 4016 ENTECH - ok
21:41:37.0953 4016 epfwtdir (06c65ac0a703cf8eea4f284d901a1550) C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
21:41:37.0953 4016 epfwtdir - ok
21:41:37.0953 4016 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:41:37.0968 4016 Fastfat - ok
21:41:37.0968 4016 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
21:41:37.0968 4016 Fdc - ok
21:41:37.0984 4016 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
21:41:37.0984 4016 Fips - ok
21:41:38.0000 4016 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:41:38.0000 4016 Flpydisk - ok
21:41:38.0015 4016 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:41:38.0015 4016 FltMgr - ok
21:41:38.0015 4016 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:41:38.0015 4016 Fs_Rec - ok
21:41:38.0031 4016 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:41:38.0031 4016 Ftdisk - ok
21:41:38.0046 4016 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:41:38.0046 4016 Gpc - ok
21:41:38.0062 4016 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:41:38.0062 4016 HDAudBus - ok
21:41:38.0078 4016 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:41:38.0078 4016 hidusb - ok
21:41:38.0078 4016 hpn - ok
21:41:38.0093 4016 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
21:41:38.0093 4016 HTTP - ok
21:41:38.0109 4016 i2omgmt - ok
21:41:38.0109 4016 i2omp - ok
21:41:38.0125 4016 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:41:38.0125 4016 i8042prt - ok
21:41:38.0140 4016 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:41:38.0140 4016 Imapi - ok
21:41:38.0156 4016 ini910u - ok
21:41:38.0156 4016 IntelIde - ok
21:41:38.0156 4016 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:41:38.0156 4016 intelppm - ok
21:41:38.0187 4016 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:41:38.0187 4016 Ip6Fw - ok
21:41:38.0218 4016 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:41:38.0218 4016 IpFilterDriver - ok
21:41:38.0234 4016 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:41:38.0234 4016 IpInIp - ok
21:41:38.0250 4016 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:41:38.0250 4016 IpNat - ok
21:41:38.0250 4016 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:41:38.0250 4016 IPSec - ok
21:41:38.0265 4016 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:41:38.0265 4016 IRENUM - ok
21:41:38.0265 4016 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:41:38.0265 4016 isapnp - ok
21:41:38.0296 4016 k750bus (fe8300320281d658a7854d5cfc02a63f) C:\WINDOWS\system32\DRIVERS\k750bus.sys
21:41:38.0296 4016 k750bus - ok
21:41:38.0328 4016 k750mgmt (9d5f5a70ca0b7c428efcd73db50e6ac7) C:\WINDOWS\system32\DRIVERS\k750mgmt.sys
21:41:38.0328 4016 k750mgmt - ok
21:41:38.0343 4016 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:41:38.0343 4016 Kbdclass - ok
21:41:38.0343 4016 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:41:38.0343 4016 kbdhid - ok
21:41:38.0375 4016 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:41:38.0375 4016 kmixer - ok
21:41:38.0375 4016 KSecDD (1705745d900dabf2d89f90ebaddc7517) C:\WINDOWS\system32\drivers\KSecDD.sys
21:41:38.0375 4016 KSecDD - ok
21:41:38.0375 4016 L8042Kbd (ad1541d5ff5b3f903da34737b6ba9a53) C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys
21:41:38.0375 4016 L8042Kbd - ok
21:41:38.0390 4016 lbrtfdc - ok
21:41:38.0406 4016 LHidFilt (24e0ddb99aeccf86bb37702611761459) C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
21:41:38.0406 4016 LHidFilt - ok
21:41:38.0406 4016 LHidKe (e47f94327e369ed6916049febf5f85e5) C:\WINDOWS\system32\DRIVERS\LHidKE.Sys
21:41:38.0406 4016 LHidKe - ok
21:41:38.0421 4016 LHidUsbK (a54c75e7481272eaaa6245683c89ecaa) C:\WINDOWS\system32\Drivers\LHidUsbK.Sys
21:41:38.0421 4016 LHidUsbK - ok
21:41:38.0421 4016 LMouFilt (d58b330d318361a66a9fe60d7c9b4951) C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
21:41:38.0421 4016 LMouFilt - ok
21:41:38.0437 4016 LMouKE (0e34232fca6f20172b1d8b6e8a9a26d1) C:\WINDOWS\system32\DRIVERS\LMouKE.Sys
21:41:38.0437 4016 LMouKE - ok
21:41:38.0453 4016 LUsbFilt (144011d14bd35f4e36136ae057b1aadd) C:\WINDOWS\system32\Drivers\LUsbFilt.Sys
21:41:38.0453 4016 LUsbFilt - ok
21:41:38.0468 4016 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:41:38.0468 4016 mnmdd - ok
21:41:38.0484 4016 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
21:41:38.0484 4016 Modem - ok
21:41:38.0484 4016 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:41:38.0484 4016 Mouclass - ok
21:41:38.0484 4016 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:41:38.0484 4016 mouhid - ok
21:41:38.0500 4016 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:41:38.0500 4016 MountMgr - ok
21:41:38.0500 4016 mraid35x - ok
21:41:38.0500 4016 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:41:38.0500 4016 MRxDAV - ok
21:41:38.0515 4016 MRxSmb (68755f0ff16070178b54674fe5b847b0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:41:38.0531 4016 MRxSmb - ok
21:41:38.0531 4016 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:41:38.0531 4016 Msfs - ok
21:41:38.0546 4016 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:41:38.0546 4016 MSKSSRV - ok
21:41:38.0546 4016 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:41:38.0546 4016 MSPCLOCK - ok
21:41:38.0562 4016 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:41:38.0562 4016 MSPQM - ok
21:41:38.0578 4016 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:41:38.0578 4016 mssmbios - ok
21:41:38.0609 4016 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
21:41:38.0609 4016 MSTEE - ok
21:41:38.0609 4016 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
21:41:38.0609 4016 MTsensor - ok
21:41:38.0625 4016 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
21:41:38.0625 4016 Mup - ok
21:41:38.0640 4016 mv61xx (e6f48050af7548e4bf775f0d83873794) C:\WINDOWS\system32\DRIVERS\mv61xx.sys
21:41:38.0640 4016 mv61xx - ok
21:41:38.0671 4016 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:41:38.0671 4016 NABTSFEC - ok
21:41:38.0687 4016 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:41:38.0687 4016 NDIS - ok
21:41:38.0703 4016 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:41:38.0703 4016 NdisIP - ok
21:41:38.0703 4016 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:41:38.0703 4016 NdisTapi - ok
21:41:38.0734 4016 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:41:38.0734 4016 Ndisuio - ok
21:41:38.0750 4016 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:41:38.0750 4016 NdisWan - ok
21:41:38.0750 4016 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
21:41:38.0750 4016 NDProxy - ok
21:41:38.0750 4016 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:41:38.0750 4016 NetBIOS - ok
21:41:38.0765 4016 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:41:38.0765 4016 NetBT - ok
21:41:38.0781 4016 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:41:38.0781 4016 NIC1394 - ok
21:41:38.0796 4016 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:41:38.0796 4016 Npfs - ok
21:41:38.0812 4016 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:41:38.0828 4016 Ntfs - ok
21:41:38.0828 4016 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:41:38.0828 4016 Null - ok
21:41:38.0859 4016 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:41:38.0859 4016 NwlnkFlt - ok
21:41:38.0875 4016 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:41:38.0875 4016 NwlnkFwd - ok
21:41:38.0890 4016 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:41:38.0890 4016 ohci1394 - ok
21:41:38.0890 4016 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\drivers\Parport.sys
21:41:38.0890 4016 Parport - ok
21:41:38.0906 4016 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:41:38.0906 4016 PartMgr - ok
21:41:38.0921 4016 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
21:41:38.0921 4016 ParVdm - ok
21:41:38.0937 4016 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
21:41:38.0937 4016 PCI - ok
21:41:38.0937 4016 PCIDump - ok
21:41:38.0953 4016 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
21:41:38.0953 4016 PCIIde - ok
21:41:38.0968 4016 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
21:41:38.0968 4016 Pcmcia - ok
21:41:38.0984 4016 pcouffin (02aaafb7ba137ce5ddabcdf8090954d9) C:\WINDOWS\system32\Drivers\pcouffin.sys
21:41:38.0984 4016 pcouffin - ok
21:41:38.0984 4016 PDCOMP - ok
21:41:38.0984 4016 PDFRAME - ok
21:41:39.0000 4016 PDRELI - ok
21:41:39.0000 4016 PDRFRAME - ok
21:41:39.0000 4016 perc2 - ok
21:41:39.0000 4016 perc2hib - ok
21:41:39.0015 4016 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:41:39.0015 4016 PptpMiniport - ok
21:41:39.0031 4016 PQNTDrv (4228630829c0e521c43d882a00533374) C:\WINDOWS\system32\drivers\PQNTDrv.sys
21:41:39.0031 4016 PQNTDrv - ok
21:41:39.0046 4016 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:41:39.0046 4016 PSched - ok
21:41:39.0062 4016 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:41:39.0062 4016 Ptilink - ok
21:41:39.0062 4016 ql1080 - ok
21:41:39.0062 4016 Ql10wnt - ok
21:41:39.0078 4016 ql12160 - ok
21:41:39.0078 4016 ql1240 - ok
21:41:39.0078 4016 ql1280 - ok
21:41:39.0093 4016 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:41:39.0093 4016 RasAcd - ok
21:41:39.0093 4016 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:41:39.0093 4016 Rasl2tp - ok
21:41:39.0093 4016 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:41:39.0093 4016 RasPppoe - ok
21:41:39.0109 4016 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:41:39.0109 4016 Raspti - ok
21:41:39.0125 4016 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:41:39.0125 4016 Rdbss - ok
21:41:39.0125 4016 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:41:39.0125 4016 RDPCDD - ok
21:41:39.0140 4016 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:41:39.0140 4016 rdpdr - ok
21:41:39.0156 4016 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
21:41:39.0156 4016 RDPWD - ok
21:41:39.0171 4016 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:41:39.0171 4016 redbook - ok
21:41:39.0218 4016 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:41:39.0218 4016 Secdrv - ok
21:41:39.0234 4016 SenFiltService (b6a6b409fda9d9ebd3aadb838d3d7173) C:\WINDOWS\system32\drivers\Senfilt.sys
21:41:39.0234 4016 SenFiltService - ok
21:41:39.0250 4016 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:41:39.0250 4016 Serenum - ok
21:41:39.0265 4016 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
21:41:39.0265 4016 Serial - ok
21:41:39.0265 4016 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:41:39.0265 4016 Sfloppy - ok
21:41:39.0265 4016 Simbad - ok
21:41:39.0312 4016 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:41:39.0312 4016 SLIP - ok
21:41:39.0328 4016 snapman (c6dafc9af23d54ca0e222b215d5e8378) C:\WINDOWS\system32\DRIVERS\snapman.sys
21:41:39.0328 4016 snapman - ok
21:41:39.0328 4016 Sparrow - ok
21:41:39.0343 4016 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:41:39.0343 4016 splitter - ok
21:41:39.0359 4016 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
21:41:39.0468 4016 \Device\Harddisk0\DR0 - ok
21:41:39.0468 4016 MBR (0x1B8) (62a8db0e0a9d2e7a833e53eeddf7c950) \Device\Harddisk1\DR1
21:41:39.0531 4016 \Device\Harddisk1\DR1 - ok
21:41:39.0531 4016 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk4\DR12
21:41:39.0531 4016 \Device\Harddisk4\DR12 - ok
21:41:39.0531 4016 Boot (0x1200) (96339b3156771f4fbb834e67d38ce391) \Device\Harddisk0\DR0\Partition0
21:41:39.0531 4016 \Device\Harddisk0\DR0\Partition0 - ok
21:41:39.0562 4016 Boot (0x1200) (e30358493caf3ceef3536735ebaa5167) \Device\Harddisk0\DR0\Partition1
21:41:39.0562 4016 \Device\Harddisk0\DR0\Partition1 - ok
21:41:39.0562 4016 Boot (0x1200) (3d03c5c4131a98569ba2c3a90314ed7f) \Device\Harddisk0\DR0\Partition2
21:41:39.0562 4016 \Device\Harddisk0\DR0\Partition2 - ok
21:41:39.0578 4016 Boot (0x1200) (8d73050bc55160857f666e088c3aec14) \Device\Harddisk0\DR0\Partition3
21:41:39.0578 4016 \Device\Harddisk0\DR0\Partition3 - ok
21:41:39.0593 4016 Boot (0x1200) (2d144068ed09947b6108218934c2b421) \Device\Harddisk0\DR0\Partition4
21:41:39.0593 4016 \Device\Harddisk0\DR0\Partition4 - ok
21:41:39.0593 4016 Boot (0x1200) (99e87eef4d74b8637be81cfc61e0ad86) \Device\Harddisk1\DR1\Partition0
21:41:39.0609 4016 \Device\Harddisk1\DR1\Partition0 - ok
21:41:39.0609 4016 Boot (0x1200) (c5ab862be8181bb9cf6f3f4e84845c69) \Device\Harddisk1\DR1\Partition1
21:41:39.0609 4016 \Device\Harddisk1\DR1\Partition1 - ok
21:41:39.0609 4016 Boot (0x1200) (db5a29e2f1fccfa9a80c0df7105f74fb) \Device\Harddisk1\DR1\Partition2
21:41:39.0609 4016 \Device\Harddisk1\DR1\Partition2 - ok
21:41:39.0609 4016 Boot (0x1200) (fb8b554e4105a0a918407686c2e37cf3) \Device\Harddisk4\DR12\Partition0
21:41:39.0609 4016 \Device\Harddisk4\DR12\Partition0 - ok
21:41:39.0609 4016 ============================================================
21:41:39.0609 4016 Scan finished
21:41:39.0609 4016 ============================================================
21:41:39.0609 2100 Detected object count: 0
21:41:39.0609 2100 Actual detected object count: 0
21:42:16.0062 1564 ============================================================
21:42:16.0062 1564 Scan started
21:42:16.0062 1564 Mode: Manual;
21:42:16.0062 1564 ============================================================
21:42:16.0828 1564 Abiosdsk - ok
21:42:16.0828 1564 abp480n5 - ok
21:42:16.0843 1564 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:42:16.0843 1564 ACPI - ok
21:42:16.0859 1564 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
21:42:16.0859 1564 ACPIEC - ok
21:42:16.0890 1564 ADIHdAudAddService (f277c43c2e0672eed28cca0d13ce175f) C:\WINDOWS\system32\drivers\ADIHdAud.sys
21:42:16.0890 1564 ADIHdAudAddService - ok
21:42:16.0890 1564 adpu160m - ok
21:42:16.0906 1564 AEAudio (fff87a9b1ab36ee4b7bec98a4cb01b79) C:\WINDOWS\system32\drivers\AEAudio.sys
21:42:16.0906 1564 AEAudio - ok
21:42:16.0921 1564 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:42:16.0921 1564 aec - ok
21:42:16.0937 1564 AFD (322d0e36693d6e24a2398bee62a268cd) C:\WINDOWS\System32\drivers\afd.sys
21:42:16.0937 1564 AFD - ok
21:42:16.0937 1564 Aha154x - ok
21:42:16.0937 1564 aic78u2 - ok
21:42:16.0953 1564 aic78xx - ok
21:42:16.0953 1564 AliIde - ok
21:42:16.0953 1564 amsint - ok
21:42:16.0968 1564 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:42:16.0968 1564 Arp1394 - ok
21:42:16.0968 1564 asc - ok
21:42:16.0984 1564 asc3350p - ok
21:42:16.0984 1564 asc3550 - ok
21:42:17.0000 1564 AsIO (2b4e66fac6503494a2c6f32bb6ab3826) C:\WINDOWS\system32\drivers\AsIO.sys
21:42:17.0000 1564 AsIO - ok
21:42:17.0015 1564 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:42:17.0015 1564 AsyncMac - ok
21:42:17.0015 1564 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:42:17.0015 1564 atapi - ok
21:42:17.0015 1564 Atdisk - ok
21:42:17.0156 1564 ati2mtag (0a8b257db810be78ac9fd1860b4ba22b) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:42:17.0171 1564 ati2mtag - ok
21:42:17.0203 1564 AtiHdmiService (41c8f0eda10da14378d304c20ba6e558) C:\WINDOWS\system32\drivers\AtiHdmi.sys
21:42:17.0203 1564 AtiHdmiService - ok
21:42:17.0218 1564 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:42:17.0218 1564 Atmarpc - ok
21:42:17.0234 1564 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:42:17.0234 1564 audstub - ok
21:42:17.0250 1564 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:42:17.0250 1564 Beep - ok
21:42:17.0265 1564 Bulk1528 (ed1d7546e84a3ebd7f6e900de73cf390) C:\WINDOWS\system32\Drivers\Bulk1528.sys
21:42:17.0265 1564 Bulk1528 - ok
21:42:17.0296 1564 Ca1528av (94bf1cd4cdf4b02be835d78ca5104734) C:\WINDOWS\system32\Drivers\Ca1528av.sys
21:42:17.0296 1564 Ca1528av - ok
21:42:17.0312 1564 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:42:17.0312 1564 cbidf2k - ok
21:42:17.0343 1564 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:42:17.0343 1564 CCDECODE - ok
21:42:17.0343 1564 cd20xrnt - ok
21:42:17.0359 1564 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:42:17.0359 1564 Cdaudio - ok
21:42:17.0390 1564 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:42:17.0390 1564 Cdfs - ok
21:42:17.0406 1564 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:42:17.0406 1564 Cdrom - ok
21:42:17.0406 1564 Changer - ok
21:42:17.0421 1564 CmdIde - ok
21:42:17.0421 1564 Cpqarray - ok
21:42:17.0484 1564 CrystalSysInfo (f054744f67576a01139885173392502b) C:\Program Files\MediaCoder\SysInfo.sys
21:42:17.0484 1564 CrystalSysInfo - ok
21:42:17.0500 1564 dac2w2k - ok
21:42:17.0500 1564 dac960nt - ok
21:42:17.0500 1564 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:42:17.0500 1564 Disk - ok
21:42:17.0531 1564 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
21:42:17.0531 1564 dmboot - ok
21:42:17.0546 1564 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
21:42:17.0546 1564 dmio - ok
21:42:17.0546 1564 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:42:17.0546 1564 dmload - ok
21:42:17.0562 1564 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:42:17.0562 1564 DMusic - ok
21:42:17.0562 1564 dpti2o - ok
21:42:17.0578 1564 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:42:17.0578 1564 drmkaud - ok
21:42:17.0609 1564 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
21:42:17.0609 1564 dtsoftbus01 - ok
21:42:17.0640 1564 eamon (9309c5c9831203436e64cf2ae605c5d7) C:\WINDOWS\system32\DRIVERS\eamon.sys
21:42:17.0640 1564 eamon - ok
21:42:17.0640 1564 ehdrv (deff87f04ab5f6dd5edf2b80853bbe10) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
21:42:17.0640 1564 ehdrv - ok
21:42:17.0671 1564 ENTECH (16ebd8bf1d5090923694cc972c7ce1b4) C:\WINDOWS\system32\DRIVERS\ENTECH.SYS
21:42:17.0671 1564 ENTECH - ok
21:42:17.0687 1564 epfwtdir (06c65ac0a703cf8eea4f284d901a1550) C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
21:42:17.0687 1564 epfwtdir - ok
21:42:17.0687 1564 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:42:17.0687 1564 Fastfat - ok
21:42:17.0703 1564 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
21:42:17.0703 1564 Fdc - ok
21:42:17.0718 1564 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
21:42:17.0718 1564 Fips - ok
21:42:17.0734 1564 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:42:17.0734 1564 Flpydisk - ok
21:42:17.0750 1564 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:42:17.0750 1564 FltMgr - ok
21:42:17.0750 1564 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:42:17.0750 1564 Fs_Rec - ok
21:42:17.0765 1564 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:42:17.0765 1564 Ftdisk - ok
21:42:17.0781 1564 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:42:17.0781 1564 Gpc - ok
21:42:17.0796 1564 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:42:17.0796 1564 HDAudBus - ok
21:42:17.0812 1564 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:42:17.0812 1564 hidusb - ok
21:42:17.0812 1564 hpn - ok
21:42:17.0828 1564 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
21:42:17.0828 1564 HTTP - ok
21:42:17.0843 1564 i2omgmt - ok
21:42:17.0843 1564 i2omp - ok
21:42:17.0859 1564 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:42:17.0859 1564 i8042prt - ok
21:42:17.0875 1564 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:42:17.0875 1564 Imapi - ok
21:42:17.0890 1564 ini910u - ok
21:42:17.0890 1564 IntelIde - ok
21:42:17.0890 1564 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:42:17.0890 1564 intelppm - ok
21:42:17.0921 1564 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:42:17.0921 1564 Ip6Fw - ok
21:42:17.0953 1564 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:42:17.0953 1564 IpFilterDriver - ok
21:42:17.0968 1564 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:42:17.0968 1564 IpInIp - ok
21:42:17.0984 1564 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:42:17.0984 1564 IpNat - ok
21:42:17.0984 1564 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:42:17.0984 1564 IPSec - ok
21:42:18.0000 1564 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:42:18.0000 1564 IRENUM - ok
21:42:18.0000 1564 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:42:18.0000 1564 isapnp - ok
21:42:18.0031 1564 k750bus (fe8300320281d658a7854d5cfc02a63f) C:\WINDOWS\system32\DRIVERS\k750bus.sys
21:42:18.0031 1564 k750bus - ok
21:42:18.0062 1564 k750mgmt (9d5f5a70ca0b7c428efcd73db50e6ac7) C:\WINDOWS\system32\DRIVERS\k750mgmt.sys
21:42:18.0062 1564 k750mgmt - ok
21:42:18.0078 1564 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:42:18.0078 1564 Kbdclass - ok
21:42:18.0078 1564 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:42:18.0078 1564 kbdhid - ok
21:42:18.0109 1564 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:42:18.0109 1564 kmixer - ok
21:42:18.0109 1564 KSecDD (1705745d900dabf2d89f90ebaddc7517) C:\WINDOWS\system32\drivers\KSecDD.sys
21:42:18.0109 1564 KSecDD - ok
21:42:18.0125 1564 L8042Kbd (ad1541d5ff5b3f903da34737b6ba9a53) C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys
21:42:18.0125 1564 L8042Kbd - ok
21:42:18.0125 1564 lbrtfdc - ok
21:42:18.0156 1564 LHidFilt (24e0ddb99aeccf86bb37702611761459) C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
21:42:18.0156 1564 LHidFilt - ok
21:42:18.0156 1564 LHidKe (e47f94327e369ed6916049febf5f85e5) C:\WINDOWS\system32\DRIVERS\LHidKE.Sys
21:42:18.0156 1564 LHidKe - ok
21:42:18.0156 1564 LHidUsbK (a54c75e7481272eaaa6245683c89ecaa) C:\WINDOWS\system32\Drivers\LHidUsbK.Sys
21:42:18.0156 1564 LHidUsbK - ok
21:42:18.0171 1564 LMouFilt (d58b330d318361a66a9fe60d7c9b4951) C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
21:42:18.0171 1564 LMouFilt - ok
21:42:18.0187 1564 LMouKE (0e34232fca6f20172b1d8b6e8a9a26d1) C:\WINDOWS\system32\DRIVERS\LMouKE.Sys
21:42:18.0187 1564 LMouKE - ok
21:42:18.0187 1564 LUsbFilt (144011d14bd35f4e36136ae057b1aadd) C:\WINDOWS\system32\Drivers\LUsbFilt.Sys
21:42:18.0187 1564 LUsbFilt - ok
21:42:18.0203 1564 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:42:18.0203 1564 mnmdd - ok
21:42:18.0218 1564 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
21:42:18.0218 1564 Modem - ok
21:42:18.0234 1564 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:42:18.0234 1564 Mouclass - ok
21:42:18.0234 1564 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:42:18.0234 1564 mouhid - ok
21:42:18.0234 1564 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:42:18.0234 1564 MountMgr - ok
21:42:18.0234 1564 mraid35x - ok
21:42:18.0250 1564 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:42:18.0250 1564 MRxDAV - ok
21:42:18.0265 1564 MRxSmb (68755f0ff16070178b54674fe5b847b0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:42:18.0265 1564 MRxSmb - ok
21:42:18.0265 1564 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:42:18.0265 1564 Msfs - ok
21:42:18.0281 1564 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:42:18.0281 1564 MSKSSRV - ok
21:42:18.0296 1564 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:42:18.0296 1564 MSPCLOCK - ok
21:42:18.0312 1564 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:42:18.0312 1564 MSPQM - ok
21:42:18.0328 1564 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:42:18.0328 1564 mssmbios - ok
21:42:18.0343 1564 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
21:42:18.0343 1564 MSTEE - ok
21:42:18.0359 1564 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
21:42:18.0359 1564 MTsensor - ok
21:42:18.0359 1564 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
21:42:18.0359 1564 Mup - ok
21:42:18.0375 1564 mv61xx (e6f48050af7548e4bf775f0d83873794) C:\WINDOWS\system32\DRIVERS\mv61xx.sys
21:42:18.0375 1564 mv61xx - ok
21:42:18.0406 1564 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:42:18.0406 1564 NABTSFEC - ok
21:42:18.0437 1564 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:42:18.0437 1564 NDIS - ok
21:42:18.0453 1564 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:42:18.0453 1564 NdisIP - ok
21:42:18.0453 1564 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:42:18.0453 1564 NdisTapi - ok
21:42:18.0468 1564 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:42:18.0468 1564 Ndisuio - ok
21:42:18.0484 1564 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:42:18.0484 1564 NdisWan - ok
21:42:18.0500 1564 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
21:42:18.0500 1564 NDProxy - ok
21:42:18.0500 1564 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:42:18.0500 1564 NetBIOS - ok
21:42:18.0515 1564 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:42:18.0515 1564 NetBT - ok
21:42:18.0531 1564 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:42:18.0531 1564 NIC1394 - ok
21:42:18.0531 1564 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:42:18.0531 1564 Npfs - ok
21:42:18.0562 1564 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:42:18.0562 1564 Ntfs - ok
21:42:18.0562 1564 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:42:18.0562 1564 Null - ok
21:42:18.0593 1564 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:42:18.0593 1564 NwlnkFlt - ok
21:42:18.0609 1564 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:42:18.0609 1564 NwlnkFwd - ok
21:42:18.0609 1564 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:42:18.0609 1564 ohci1394 - ok
21:42:18.0625 1564 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\drivers\Parport.sys
21:42:18.0625 1564 Parport - ok
21:42:18.0625 1564 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:42:18.0625 1564 PartMgr - ok
21:42:18.0640 1564 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
21:42:18.0640 1564 ParVdm - ok
21:42:18.0656 1564 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
21:42:18.0656 1564 PCI - ok
21:42:18.0656 1564 PCIDump - ok
21:42:18.0656 1564 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
21:42:18.0656 1564 PCIIde - ok
21:42:18.0671 1564 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
21:42:18.0671 1564 Pcmcia - ok
21:42:18.0687 1564 pcouffin (02aaafb7ba137ce5ddabcdf8090954d9) C:\WINDOWS\system32\Drivers\pcouffin.sys
21:42:18.0687 1564 pcouffin - ok
21:42:18.0687 1564 PDCOMP - ok
21:42:18.0703 1564 PDFRAME - ok
21:42:18.0703 1564 PDRELI - ok
21:42:18.0703 1564 PDRFRAME - ok
21:42:18.0718 1564 perc2 - ok
21:42:18.0718 1564 perc2hib - ok
21:42:18.0734 1564 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:42:18.0734 1564 PptpMiniport - ok
21:42:18.0750 1564 PQNTDrv (4228630829c0e521c43d882a00533374) C:\WINDOWS\system32\drivers\PQNTDrv.sys
21:42:18.0750 1564 PQNTDrv - ok
21:42:18.0750 1564 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:42:18.0750 1564 PSched - ok
21:42:18.0765 1564 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:42:18.0765 1564 Ptilink - ok
21:42:18.0781 1564 ql1080 - ok
21:42:18.0781 1564 Ql10wnt - ok
21:42:18.0781 1564 ql12160 - ok
21:42:18.0781 1564 ql1240 - ok
21:42:18.0796 1564 ql1280 - ok
21:42:18.0796 1564 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:42:18.0796 1564 RasAcd - ok
21:42:18.0796 1564 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:42:18.0796 1564 Rasl2tp - ok
21:42:18.0812 1564 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:42:18.0812 1564 RasPppoe - ok
21:42:18.0812 1564 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:42:18.0812 1564 Raspti - ok
21:42:18.0843 1564 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:42:18.0843 1564 Rdbss - ok
21:42:18.0843 1564 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:42:18.0843 1564 RDPCDD - ok
21:42:18.0859 1564 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:42:18.0859 1564 rdpdr - ok
21:42:18.0875 1564 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
21:42:18.0875 1564 RDPWD - ok
21:42:18.0890 1564 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:42:18.0890 1564 redbook - ok
21:42:18.0906 1564 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:42:18.0906 1564 Secdrv - ok
21:42:18.0921 1564 SenFiltService (b6a6b409fda9d9ebd3aadb838d3d7173) C:\WINDOWS\system32\drivers\Senfilt.sys
21:42:18.0937 1564 SenFiltService - ok
21:42:18.0953 1564 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:42:18.0953 1564 Serenum - ok
21:42:18.0953 1564 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
21:42:18.0953 1564 Serial - ok
21:42:18.0953 1564 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:42:18.0953 1564 Sfloppy - ok
21:42:18.0968 1564 Simbad - ok
21:42:19.0000 1564 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:42:19.0000 1564 SLIP - ok
21:42:19.0015 1564 snapman (c6dafc9af23d54ca0e222b215d5e8378) C:\WINDOWS\system32\DRIVERS\snapman.sys
21:42:19.0015 1564 snapman - ok
21:42:19.0031 1564 Sparrow - ok
21:42:19.0046 1564 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:42:19.0046 1564 splitter - ok
21:42:19.0046 1564 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
21:42:19.0156 1564 \Device\Harddisk0\DR0 - ok
21:42:19.0171 1564 MBR (0x1B8) (62a8db0e0a9d2e7a833e53eeddf7c950) \Device\Harddisk1\DR1
21:42:19.0218 1564 \Device\Harddisk1\DR1 - ok
21:42:19.0218 1564 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk4\DR12
21:42:19.0234 1564 \Device\Harddisk4\DR12 - ok
21:42:19.0234 1564 Boot (0x1200) (96339b3156771f4fbb834e67d38ce391) \Device\Harddisk0\DR0\Partition0
21:42:19.0234 1564 \Device\Harddisk0\DR0\Partition0 - ok
21:42:19.0234 1564 Boot (0x1200) (e30358493caf3ceef3536735ebaa5167) \Device\Harddisk0\DR0\Partition1
21:42:19.0234 1564 \Device\Harddisk0\DR0\Partition1 - ok
21:42:19.0250 1564 Boot (0x1200) (3d03c5c4131a98569ba2c3a90314ed7f) \Device\Harddisk0\DR0\Partition2
21:42:19.0250 1564 \Device\Harddisk0\DR0\Partition2 - ok
21:42:19.0265 1564 Boot (0x1200) (8d73050bc55160857f666e088c3aec14) \Device\Harddisk0\DR0\Partition3
21:42:19.0265 1564 \Device\Harddisk0\DR0\Partition3 - ok
21:42:19.0281 1564 Boot (0x1200) (2d144068ed09947b6108218934c2b421) \Device\Harddisk0\DR0\Partition4
21:42:19.0281 1564 \Device\Harddisk0\DR0\Partition4 - ok
21:42:19.0281 1564 Boot (0x1200) (99e87eef4d74b8637be81cfc61e0ad86) \Device\Harddisk1\DR1\Partition0
21:42:19.0281 1564 \Device\Harddisk1\DR1\Partition0 - ok
21:42:19.0281 1564 Boot (0x1200) (c5ab862be8181bb9cf6f3f4e84845c69) \Device\Harddisk1\DR1\Partition1
21:42:19.0281 1564 \Device\Harddisk1\DR1\Partition1 - ok
21:42:19.0296 1564 Boot (0x1200) (db5a29e2f1fccfa9a80c0df7105f74fb) \Device\Harddisk1\DR1\Partition2
21:42:19.0296 1564 \Device\Harddisk1\DR1\Partition2 - ok
21:42:19.0296 1564 Boot (0x1200) (fb8b554e4105a0a918407686c2e37cf3) \Device\Harddisk4\DR12\Partition0
21:42:19.0296 1564 \Device\Harddisk4\DR12\Partition0 - ok
21:42:19.0296 1564 ============================================================
21:42:19.0296 1564 Scan finished
21:42:19.0296 1564 ============================================================
21:42:19.0296 1732 Detected object count: 0
21:42:19.0296 1732 Actual detected object count: 0
21:44:15.0343 3952 Deinitialize success
Re: Win32/Spy.Zbot.ZR
21:41:22.0656 2516 TDSS rootkit removing tool 2.6.11.0 Oct 19 2011 13:50:27
21:41:22.0765 2516 ============================================================
21:41:22.0765 2516 Current date / time: 2011/10/20 21:41:22.0765
21:41:22.0765 2516 SystemInfo:
21:41:22.0765 2516
21:41:22.0765 2516 OS Version: 5.1.2600 ServicePack: 3.0
21:41:22.0765 2516 Product type: Workstation
21:41:22.0765 2516 ComputerName: ZDENY
21:41:22.0765 2516 UserName: XPC
21:41:22.0765 2516 Windows directory: C:\WINDOWS
21:41:22.0765 2516 System windows directory: C:\WINDOWS
21:41:22.0765 2516 Processor architecture: Intel x86
21:41:22.0765 2516 Number of processors: 2
21:41:22.0765 2516 Page size: 0x1000
21:41:22.0765 2516 Boot type: Normal boot
21:41:22.0765 2516 ============================================================
21:41:24.0593 2516 Initialize success
21:41:36.0078 4016 ============================================================
21:41:36.0078 4016 Scan started
21:41:36.0078 4016 Mode: Manual;
21:41:36.0078 4016 ============================================================
21:41:36.0968 4016 Abiosdsk - ok
21:41:36.0984 4016 abp480n5 - ok
21:41:37.0000 4016 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:41:37.0015 4016 ACPI - ok
21:41:37.0031 4016 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
21:41:37.0031 4016 ACPIEC - ok
21:41:37.0046 4016 ADIHdAudAddService (f277c43c2e0672eed28cca0d13ce175f) C:\WINDOWS\system32\drivers\ADIHdAud.sys
21:41:37.0046 4016 ADIHdAudAddService - ok
21:41:37.0062 4016 adpu160m - ok
21:41:37.0078 4016 AEAudio (fff87a9b1ab36ee4b7bec98a4cb01b79) C:\WINDOWS\system32\drivers\AEAudio.sys
21:41:37.0078 4016 AEAudio - ok
21:41:37.0093 4016 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:41:37.0093 4016 aec - ok
21:41:37.0109 4016 AFD (322d0e36693d6e24a2398bee62a268cd) C:\WINDOWS\System32\drivers\afd.sys
21:41:37.0109 4016 AFD - ok
21:41:37.0109 4016 Aha154x - ok
21:41:37.0125 4016 aic78u2 - ok
21:41:37.0125 4016 aic78xx - ok
21:41:37.0140 4016 AliIde - ok
21:41:37.0140 4016 amsint - ok
21:41:37.0156 4016 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:41:37.0156 4016 Arp1394 - ok
21:41:37.0171 4016 asc - ok
21:41:37.0171 4016 asc3350p - ok
21:41:37.0171 4016 asc3550 - ok
21:41:37.0187 4016 AsIO (2b4e66fac6503494a2c6f32bb6ab3826) C:\WINDOWS\system32\drivers\AsIO.sys
21:41:37.0187 4016 AsIO - ok
21:41:37.0203 4016 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:41:37.0203 4016 AsyncMac - ok
21:41:37.0203 4016 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:41:37.0203 4016 atapi - ok
21:41:37.0218 4016 Atdisk - ok
21:41:37.0359 4016 ati2mtag (0a8b257db810be78ac9fd1860b4ba22b) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:41:37.0406 4016 ati2mtag - ok
21:41:37.0437 4016 AtiHdmiService (41c8f0eda10da14378d304c20ba6e558) C:\WINDOWS\system32\drivers\AtiHdmi.sys
21:41:37.0437 4016 AtiHdmiService - ok
21:41:37.0453 4016 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:41:37.0453 4016 Atmarpc - ok
21:41:37.0484 4016 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:41:37.0484 4016 audstub - ok
21:41:37.0484 4016 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:41:37.0484 4016 Beep - ok
21:41:37.0500 4016 Bulk1528 (ed1d7546e84a3ebd7f6e900de73cf390) C:\WINDOWS\system32\Drivers\Bulk1528.sys
21:41:37.0500 4016 Bulk1528 - ok
21:41:37.0531 4016 Ca1528av (94bf1cd4cdf4b02be835d78ca5104734) C:\WINDOWS\system32\Drivers\Ca1528av.sys
21:41:37.0531 4016 Ca1528av - ok
21:41:37.0562 4016 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:41:37.0562 4016 cbidf2k - ok
21:41:37.0593 4016 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:41:37.0593 4016 CCDECODE - ok
21:41:37.0609 4016 cd20xrnt - ok
21:41:37.0625 4016 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:41:37.0625 4016 Cdaudio - ok
21:41:37.0625 4016 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:41:37.0625 4016 Cdfs - ok
21:41:37.0640 4016 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:41:37.0640 4016 Cdrom - ok
21:41:37.0656 4016 Changer - ok
21:41:37.0656 4016 CmdIde - ok
21:41:37.0671 4016 Cpqarray - ok
21:41:37.0734 4016 CrystalSysInfo (f054744f67576a01139885173392502b) C:\Program Files\MediaCoder\SysInfo.sys
21:41:37.0734 4016 CrystalSysInfo - ok
21:41:37.0734 4016 dac2w2k - ok
21:41:37.0734 4016 dac960nt - ok
21:41:37.0750 4016 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:41:37.0750 4016 Disk - ok
21:41:37.0781 4016 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
21:41:37.0781 4016 dmboot - ok
21:41:37.0796 4016 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
21:41:37.0796 4016 dmio - ok
21:41:37.0796 4016 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:41:37.0796 4016 dmload - ok
21:41:37.0812 4016 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:41:37.0812 4016 DMusic - ok
21:41:37.0828 4016 dpti2o - ok
21:41:37.0843 4016 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:41:37.0843 4016 drmkaud - ok
21:41:37.0875 4016 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
21:41:37.0875 4016 dtsoftbus01 - ok
21:41:37.0890 4016 eamon (9309c5c9831203436e64cf2ae605c5d7) C:\WINDOWS\system32\DRIVERS\eamon.sys
21:41:37.0906 4016 eamon - ok
21:41:37.0906 4016 ehdrv (deff87f04ab5f6dd5edf2b80853bbe10) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
21:41:37.0906 4016 ehdrv - ok
21:41:37.0937 4016 ENTECH (16ebd8bf1d5090923694cc972c7ce1b4) C:\WINDOWS\system32\DRIVERS\ENTECH.SYS
21:41:37.0937 4016 ENTECH - ok
21:41:37.0953 4016 epfwtdir (06c65ac0a703cf8eea4f284d901a1550) C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
21:41:37.0953 4016 epfwtdir - ok
21:41:37.0953 4016 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:41:37.0968 4016 Fastfat - ok
21:41:37.0968 4016 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
21:41:37.0968 4016 Fdc - ok
21:41:37.0984 4016 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
21:41:37.0984 4016 Fips - ok
21:41:38.0000 4016 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:41:38.0000 4016 Flpydisk - ok
21:41:38.0015 4016 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:41:38.0015 4016 FltMgr - ok
21:41:38.0015 4016 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:41:38.0015 4016 Fs_Rec - ok
21:41:38.0031 4016 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:41:38.0031 4016 Ftdisk - ok
21:41:38.0046 4016 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:41:38.0046 4016 Gpc - ok
21:41:38.0062 4016 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:41:38.0062 4016 HDAudBus - ok
21:41:38.0078 4016 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:41:38.0078 4016 hidusb - ok
21:41:38.0078 4016 hpn - ok
21:41:38.0093 4016 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
21:41:38.0093 4016 HTTP - ok
21:41:38.0109 4016 i2omgmt - ok
21:41:38.0109 4016 i2omp - ok
21:41:38.0125 4016 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:41:38.0125 4016 i8042prt - ok
21:41:38.0140 4016 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:41:38.0140 4016 Imapi - ok
21:41:38.0156 4016 ini910u - ok
21:41:38.0156 4016 IntelIde - ok
21:41:38.0156 4016 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:41:38.0156 4016 intelppm - ok
21:41:38.0187 4016 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:41:38.0187 4016 Ip6Fw - ok
21:41:38.0218 4016 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:41:38.0218 4016 IpFilterDriver - ok
21:41:38.0234 4016 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:41:38.0234 4016 IpInIp - ok
21:41:38.0250 4016 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:41:38.0250 4016 IpNat - ok
21:41:38.0250 4016 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:41:38.0250 4016 IPSec - ok
21:41:38.0265 4016 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:41:38.0265 4016 IRENUM - ok
21:41:38.0265 4016 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:41:38.0265 4016 isapnp - ok
21:41:38.0296 4016 k750bus (fe8300320281d658a7854d5cfc02a63f) C:\WINDOWS\system32\DRIVERS\k750bus.sys
21:41:38.0296 4016 k750bus - ok
21:41:38.0328 4016 k750mgmt (9d5f5a70ca0b7c428efcd73db50e6ac7) C:\WINDOWS\system32\DRIVERS\k750mgmt.sys
21:41:38.0328 4016 k750mgmt - ok
21:41:38.0343 4016 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:41:38.0343 4016 Kbdclass - ok
21:41:38.0343 4016 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:41:38.0343 4016 kbdhid - ok
21:41:38.0375 4016 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:41:38.0375 4016 kmixer - ok
21:41:38.0375 4016 KSecDD (1705745d900dabf2d89f90ebaddc7517) C:\WINDOWS\system32\drivers\KSecDD.sys
21:41:38.0375 4016 KSecDD - ok
21:41:38.0375 4016 L8042Kbd (ad1541d5ff5b3f903da34737b6ba9a53) C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys
21:41:38.0375 4016 L8042Kbd - ok
21:41:38.0390 4016 lbrtfdc - ok
21:41:38.0406 4016 LHidFilt (24e0ddb99aeccf86bb37702611761459) C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
21:41:38.0406 4016 LHidFilt - ok
21:41:38.0406 4016 LHidKe (e47f94327e369ed6916049febf5f85e5) C:\WINDOWS\system32\DRIVERS\LHidKE.Sys
21:41:38.0406 4016 LHidKe - ok
21:41:38.0421 4016 LHidUsbK (a54c75e7481272eaaa6245683c89ecaa) C:\WINDOWS\system32\Drivers\LHidUsbK.Sys
21:41:38.0421 4016 LHidUsbK - ok
21:41:38.0421 4016 LMouFilt (d58b330d318361a66a9fe60d7c9b4951) C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
21:41:38.0421 4016 LMouFilt - ok
21:41:38.0437 4016 LMouKE (0e34232fca6f20172b1d8b6e8a9a26d1) C:\WINDOWS\system32\DRIVERS\LMouKE.Sys
21:41:38.0437 4016 LMouKE - ok
21:41:38.0453 4016 LUsbFilt (144011d14bd35f4e36136ae057b1aadd) C:\WINDOWS\system32\Drivers\LUsbFilt.Sys
21:41:38.0453 4016 LUsbFilt - ok
21:41:38.0468 4016 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:41:38.0468 4016 mnmdd - ok
21:41:38.0484 4016 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
21:41:38.0484 4016 Modem - ok
21:41:38.0484 4016 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:41:38.0484 4016 Mouclass - ok
21:41:38.0484 4016 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:41:38.0484 4016 mouhid - ok
21:41:38.0500 4016 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:41:38.0500 4016 MountMgr - ok
21:41:38.0500 4016 mraid35x - ok
21:41:38.0500 4016 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:41:38.0500 4016 MRxDAV - ok
21:41:38.0515 4016 MRxSmb (68755f0ff16070178b54674fe5b847b0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:41:38.0531 4016 MRxSmb - ok
21:41:38.0531 4016 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:41:38.0531 4016 Msfs - ok
21:41:38.0546 4016 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:41:38.0546 4016 MSKSSRV - ok
21:41:38.0546 4016 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:41:38.0546 4016 MSPCLOCK - ok
21:41:38.0562 4016 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:41:38.0562 4016 MSPQM - ok
21:41:38.0578 4016 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:41:38.0578 4016 mssmbios - ok
21:41:38.0609 4016 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
21:41:38.0609 4016 MSTEE - ok
21:41:38.0609 4016 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
21:41:38.0609 4016 MTsensor - ok
21:41:38.0625 4016 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
21:41:38.0625 4016 Mup - ok
21:41:38.0640 4016 mv61xx (e6f48050af7548e4bf775f0d83873794) C:\WINDOWS\system32\DRIVERS\mv61xx.sys
21:41:38.0640 4016 mv61xx - ok
21:41:38.0671 4016 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:41:38.0671 4016 NABTSFEC - ok
21:41:38.0687 4016 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:41:38.0687 4016 NDIS - ok
21:41:38.0703 4016 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:41:38.0703 4016 NdisIP - ok
21:41:38.0703 4016 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:41:38.0703 4016 NdisTapi - ok
21:41:38.0734 4016 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:41:38.0734 4016 Ndisuio - ok
21:41:38.0750 4016 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:41:38.0750 4016 NdisWan - ok
21:41:38.0750 4016 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
21:41:38.0750 4016 NDProxy - ok
21:41:38.0750 4016 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:41:38.0750 4016 NetBIOS - ok
21:41:38.0765 4016 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:41:38.0765 4016 NetBT - ok
21:41:38.0781 4016 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:41:38.0781 4016 NIC1394 - ok
21:41:38.0796 4016 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:41:38.0796 4016 Npfs - ok
21:41:38.0812 4016 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:41:38.0828 4016 Ntfs - ok
21:41:38.0828 4016 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:41:38.0828 4016 Null - ok
21:41:38.0859 4016 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:41:38.0859 4016 NwlnkFlt - ok
21:41:38.0875 4016 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:41:38.0875 4016 NwlnkFwd - ok
21:41:38.0890 4016 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:41:38.0890 4016 ohci1394 - ok
21:41:38.0890 4016 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\drivers\Parport.sys
21:41:38.0890 4016 Parport - ok
21:41:38.0906 4016 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:41:38.0906 4016 PartMgr - ok
21:41:38.0921 4016 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
21:41:38.0921 4016 ParVdm - ok
21:41:38.0937 4016 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
21:41:38.0937 4016 PCI - ok
21:41:38.0937 4016 PCIDump - ok
21:41:38.0953 4016 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
21:41:38.0953 4016 PCIIde - ok
21:41:38.0968 4016 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
21:41:38.0968 4016 Pcmcia - ok
21:41:38.0984 4016 pcouffin (02aaafb7ba137ce5ddabcdf8090954d9) C:\WINDOWS\system32\Drivers\pcouffin.sys
21:41:38.0984 4016 pcouffin - ok
21:41:38.0984 4016 PDCOMP - ok
21:41:38.0984 4016 PDFRAME - ok
21:41:39.0000 4016 PDRELI - ok
21:41:39.0000 4016 PDRFRAME - ok
21:41:39.0000 4016 perc2 - ok
21:41:39.0000 4016 perc2hib - ok
21:41:39.0015 4016 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:41:39.0015 4016 PptpMiniport - ok
21:41:39.0031 4016 PQNTDrv (4228630829c0e521c43d882a00533374) C:\WINDOWS\system32\drivers\PQNTDrv.sys
21:41:39.0031 4016 PQNTDrv - ok
21:41:39.0046 4016 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:41:39.0046 4016 PSched - ok
21:41:39.0062 4016 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:41:39.0062 4016 Ptilink - ok
21:41:39.0062 4016 ql1080 - ok
21:41:39.0062 4016 Ql10wnt - ok
21:41:39.0078 4016 ql12160 - ok
21:41:39.0078 4016 ql1240 - ok
21:41:39.0078 4016 ql1280 - ok
21:41:39.0093 4016 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:41:39.0093 4016 RasAcd - ok
21:41:39.0093 4016 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:41:39.0093 4016 Rasl2tp - ok
21:41:39.0093 4016 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:41:39.0093 4016 RasPppoe - ok
21:41:39.0109 4016 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:41:39.0109 4016 Raspti - ok
21:41:39.0125 4016 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:41:39.0125 4016 Rdbss - ok
21:41:39.0125 4016 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:41:39.0125 4016 RDPCDD - ok
21:41:39.0140 4016 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:41:39.0140 4016 rdpdr - ok
21:41:39.0156 4016 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
21:41:39.0156 4016 RDPWD - ok
21:41:39.0171 4016 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:41:39.0171 4016 redbook - ok
21:41:39.0218 4016 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:41:39.0218 4016 Secdrv - ok
21:41:39.0234 4016 SenFiltService (b6a6b409fda9d9ebd3aadb838d3d7173) C:\WINDOWS\system32\drivers\Senfilt.sys
21:41:39.0234 4016 SenFiltService - ok
21:41:39.0250 4016 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:41:39.0250 4016 Serenum - ok
21:41:39.0265 4016 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
21:41:39.0265 4016 Serial - ok
21:41:39.0265 4016 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:41:39.0265 4016 Sfloppy - ok
21:41:39.0265 4016 Simbad - ok
21:41:39.0312 4016 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:41:39.0312 4016 SLIP - ok
21:41:39.0328 4016 snapman (c6dafc9af23d54ca0e222b215d5e8378) C:\WINDOWS\system32\DRIVERS\snapman.sys
21:41:39.0328 4016 snapman - ok
21:41:39.0328 4016 Sparrow - ok
21:41:39.0343 4016 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:41:39.0343 4016 splitter - ok
21:41:39.0359 4016 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
21:41:39.0468 4016 \Device\Harddisk0\DR0 - ok
21:41:39.0468 4016 MBR (0x1B8) (62a8db0e0a9d2e7a833e53eeddf7c950) \Device\Harddisk1\DR1
21:41:39.0531 4016 \Device\Harddisk1\DR1 - ok
21:41:39.0531 4016 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk4\DR12
21:41:39.0531 4016 \Device\Harddisk4\DR12 - ok
21:41:39.0531 4016 Boot (0x1200) (96339b3156771f4fbb834e67d38ce391) \Device\Harddisk0\DR0\Partition0
21:41:39.0531 4016 \Device\Harddisk0\DR0\Partition0 - ok
21:41:39.0562 4016 Boot (0x1200) (e30358493caf3ceef3536735ebaa5167) \Device\Harddisk0\DR0\Partition1
21:41:39.0562 4016 \Device\Harddisk0\DR0\Partition1 - ok
21:41:39.0562 4016 Boot (0x1200) (3d03c5c4131a98569ba2c3a90314ed7f) \Device\Harddisk0\DR0\Partition2
21:41:39.0562 4016 \Device\Harddisk0\DR0\Partition2 - ok
21:41:39.0578 4016 Boot (0x1200) (8d73050bc55160857f666e088c3aec14) \Device\Harddisk0\DR0\Partition3
21:41:39.0578 4016 \Device\Harddisk0\DR0\Partition3 - ok
21:41:39.0593 4016 Boot (0x1200) (2d144068ed09947b6108218934c2b421) \Device\Harddisk0\DR0\Partition4
21:41:39.0593 4016 \Device\Harddisk0\DR0\Partition4 - ok
21:41:39.0593 4016 Boot (0x1200) (99e87eef4d74b8637be81cfc61e0ad86) \Device\Harddisk1\DR1\Partition0
21:41:39.0609 4016 \Device\Harddisk1\DR1\Partition0 - ok
21:41:39.0609 4016 Boot (0x1200) (c5ab862be8181bb9cf6f3f4e84845c69) \Device\Harddisk1\DR1\Partition1
21:41:39.0609 4016 \Device\Harddisk1\DR1\Partition1 - ok
21:41:39.0609 4016 Boot (0x1200) (db5a29e2f1fccfa9a80c0df7105f74fb) \Device\Harddisk1\DR1\Partition2
21:41:39.0609 4016 \Device\Harddisk1\DR1\Partition2 - ok
21:41:39.0609 4016 Boot (0x1200) (fb8b554e4105a0a918407686c2e37cf3) \Device\Harddisk4\DR12\Partition0
21:41:39.0609 4016 \Device\Harddisk4\DR12\Partition0 - ok
21:41:39.0609 4016 ============================================================
21:41:39.0609 4016 Scan finished
21:41:39.0609 4016 ============================================================
21:41:39.0609 2100 Detected object count: 0
21:41:39.0609 2100 Actual detected object count: 0
21:42:16.0062 1564 ============================================================
21:42:16.0062 1564 Scan started
21:42:16.0062 1564 Mode: Manual;
21:42:16.0062 1564 ============================================================
21:42:16.0828 1564 Abiosdsk - ok
21:42:16.0828 1564 abp480n5 - ok
21:42:16.0843 1564 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:42:16.0843 1564 ACPI - ok
21:42:16.0859 1564 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
21:42:16.0859 1564 ACPIEC - ok
21:42:16.0890 1564 ADIHdAudAddService (f277c43c2e0672eed28cca0d13ce175f) C:\WINDOWS\system32\drivers\ADIHdAud.sys
21:42:16.0890 1564 ADIHdAudAddService - ok
21:42:16.0890 1564 adpu160m - ok
21:42:16.0906 1564 AEAudio (fff87a9b1ab36ee4b7bec98a4cb01b79) C:\WINDOWS\system32\drivers\AEAudio.sys
21:42:16.0906 1564 AEAudio - ok
21:42:16.0921 1564 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:42:16.0921 1564 aec - ok
21:42:16.0937 1564 AFD (322d0e36693d6e24a2398bee62a268cd) C:\WINDOWS\System32\drivers\afd.sys
21:42:16.0937 1564 AFD - ok
21:42:16.0937 1564 Aha154x - ok
21:42:16.0937 1564 aic78u2 - ok
21:42:16.0953 1564 aic78xx - ok
21:42:16.0953 1564 AliIde - ok
21:42:16.0953 1564 amsint - ok
21:42:16.0968 1564 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:42:16.0968 1564 Arp1394 - ok
21:42:16.0968 1564 asc - ok
21:42:16.0984 1564 asc3350p - ok
21:42:16.0984 1564 asc3550 - ok
21:42:17.0000 1564 AsIO (2b4e66fac6503494a2c6f32bb6ab3826) C:\WINDOWS\system32\drivers\AsIO.sys
21:42:17.0000 1564 AsIO - ok
21:42:17.0015 1564 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:42:17.0015 1564 AsyncMac - ok
21:42:17.0015 1564 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:42:17.0015 1564 atapi - ok
21:42:17.0015 1564 Atdisk - ok
21:42:17.0156 1564 ati2mtag (0a8b257db810be78ac9fd1860b4ba22b) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:42:17.0171 1564 ati2mtag - ok
21:42:17.0203 1564 AtiHdmiService (41c8f0eda10da14378d304c20ba6e558) C:\WINDOWS\system32\drivers\AtiHdmi.sys
21:42:17.0203 1564 AtiHdmiService - ok
21:42:17.0218 1564 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:42:17.0218 1564 Atmarpc - ok
21:42:17.0234 1564 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:42:17.0234 1564 audstub - ok
21:42:17.0250 1564 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:42:17.0250 1564 Beep - ok
21:42:17.0265 1564 Bulk1528 (ed1d7546e84a3ebd7f6e900de73cf390) C:\WINDOWS\system32\Drivers\Bulk1528.sys
21:42:17.0265 1564 Bulk1528 - ok
21:42:17.0296 1564 Ca1528av (94bf1cd4cdf4b02be835d78ca5104734) C:\WINDOWS\system32\Drivers\Ca1528av.sys
21:42:17.0296 1564 Ca1528av - ok
21:42:17.0312 1564 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:42:17.0312 1564 cbidf2k - ok
21:42:17.0343 1564 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:42:17.0343 1564 CCDECODE - ok
21:42:17.0343 1564 cd20xrnt - ok
21:42:17.0359 1564 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:42:17.0359 1564 Cdaudio - ok
21:42:17.0390 1564 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:42:17.0390 1564 Cdfs - ok
21:42:17.0406 1564 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:42:17.0406 1564 Cdrom - ok
21:42:17.0406 1564 Changer - ok
21:42:17.0421 1564 CmdIde - ok
21:42:17.0421 1564 Cpqarray - ok
21:42:17.0484 1564 CrystalSysInfo (f054744f67576a01139885173392502b) C:\Program Files\MediaCoder\SysInfo.sys
21:42:17.0484 1564 CrystalSysInfo - ok
21:42:17.0500 1564 dac2w2k - ok
21:42:17.0500 1564 dac960nt - ok
21:42:17.0500 1564 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:42:17.0500 1564 Disk - ok
21:42:17.0531 1564 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
21:42:17.0531 1564 dmboot - ok
21:42:17.0546 1564 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
21:42:17.0546 1564 dmio - ok
21:42:17.0546 1564 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:42:17.0546 1564 dmload - ok
21:42:17.0562 1564 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:42:17.0562 1564 DMusic - ok
21:42:17.0562 1564 dpti2o - ok
21:42:17.0578 1564 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:42:17.0578 1564 drmkaud - ok
21:42:17.0609 1564 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
21:42:17.0609 1564 dtsoftbus01 - ok
21:42:17.0640 1564 eamon (9309c5c9831203436e64cf2ae605c5d7) C:\WINDOWS\system32\DRIVERS\eamon.sys
21:42:17.0640 1564 eamon - ok
21:42:17.0640 1564 ehdrv (deff87f04ab5f6dd5edf2b80853bbe10) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
21:42:17.0640 1564 ehdrv - ok
21:42:17.0671 1564 ENTECH (16ebd8bf1d5090923694cc972c7ce1b4) C:\WINDOWS\system32\DRIVERS\ENTECH.SYS
21:42:17.0671 1564 ENTECH - ok
21:42:17.0687 1564 epfwtdir (06c65ac0a703cf8eea4f284d901a1550) C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
21:42:17.0687 1564 epfwtdir - ok
21:42:17.0687 1564 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:42:17.0687 1564 Fastfat - ok
21:42:17.0703 1564 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
21:42:17.0703 1564 Fdc - ok
21:42:17.0718 1564 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
21:42:17.0718 1564 Fips - ok
21:42:17.0734 1564 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:42:17.0734 1564 Flpydisk - ok
21:42:17.0750 1564 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:42:17.0750 1564 FltMgr - ok
21:42:17.0750 1564 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:42:17.0750 1564 Fs_Rec - ok
21:42:17.0765 1564 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:42:17.0765 1564 Ftdisk - ok
21:42:17.0781 1564 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:42:17.0781 1564 Gpc - ok
21:42:17.0796 1564 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:42:17.0796 1564 HDAudBus - ok
21:42:17.0812 1564 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:42:17.0812 1564 hidusb - ok
21:42:17.0812 1564 hpn - ok
21:42:17.0828 1564 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
21:42:17.0828 1564 HTTP - ok
21:42:17.0843 1564 i2omgmt - ok
21:42:17.0843 1564 i2omp - ok
21:42:17.0859 1564 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:42:17.0859 1564 i8042prt - ok
21:42:17.0875 1564 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:42:17.0875 1564 Imapi - ok
21:42:17.0890 1564 ini910u - ok
21:42:17.0890 1564 IntelIde - ok
21:42:17.0890 1564 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:42:17.0890 1564 intelppm - ok
21:42:17.0921 1564 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:42:17.0921 1564 Ip6Fw - ok
21:42:17.0953 1564 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:42:17.0953 1564 IpFilterDriver - ok
21:42:17.0968 1564 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:42:17.0968 1564 IpInIp - ok
21:42:17.0984 1564 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:42:17.0984 1564 IpNat - ok
21:42:17.0984 1564 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:42:17.0984 1564 IPSec - ok
21:42:18.0000 1564 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:42:18.0000 1564 IRENUM - ok
21:42:18.0000 1564 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:42:18.0000 1564 isapnp - ok
21:42:18.0031 1564 k750bus (fe8300320281d658a7854d5cfc02a63f) C:\WINDOWS\system32\DRIVERS\k750bus.sys
21:42:18.0031 1564 k750bus - ok
21:42:18.0062 1564 k750mgmt (9d5f5a70ca0b7c428efcd73db50e6ac7) C:\WINDOWS\system32\DRIVERS\k750mgmt.sys
21:42:18.0062 1564 k750mgmt - ok
21:42:18.0078 1564 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:42:18.0078 1564 Kbdclass - ok
21:42:18.0078 1564 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:42:18.0078 1564 kbdhid - ok
21:42:18.0109 1564 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:42:18.0109 1564 kmixer - ok
21:42:18.0109 1564 KSecDD (1705745d900dabf2d89f90ebaddc7517) C:\WINDOWS\system32\drivers\KSecDD.sys
21:42:18.0109 1564 KSecDD - ok
21:42:18.0125 1564 L8042Kbd (ad1541d5ff5b3f903da34737b6ba9a53) C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys
21:42:18.0125 1564 L8042Kbd - ok
21:42:18.0125 1564 lbrtfdc - ok
21:42:18.0156 1564 LHidFilt (24e0ddb99aeccf86bb37702611761459) C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
21:42:18.0156 1564 LHidFilt - ok
21:42:18.0156 1564 LHidKe (e47f94327e369ed6916049febf5f85e5) C:\WINDOWS\system32\DRIVERS\LHidKE.Sys
21:42:18.0156 1564 LHidKe - ok
21:42:18.0156 1564 LHidUsbK (a54c75e7481272eaaa6245683c89ecaa) C:\WINDOWS\system32\Drivers\LHidUsbK.Sys
21:42:18.0156 1564 LHidUsbK - ok
21:42:18.0171 1564 LMouFilt (d58b330d318361a66a9fe60d7c9b4951) C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
21:42:18.0171 1564 LMouFilt - ok
21:42:18.0187 1564 LMouKE (0e34232fca6f20172b1d8b6e8a9a26d1) C:\WINDOWS\system32\DRIVERS\LMouKE.Sys
21:42:18.0187 1564 LMouKE - ok
21:42:18.0187 1564 LUsbFilt (144011d14bd35f4e36136ae057b1aadd) C:\WINDOWS\system32\Drivers\LUsbFilt.Sys
21:42:18.0187 1564 LUsbFilt - ok
21:42:18.0203 1564 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:42:18.0203 1564 mnmdd - ok
21:42:18.0218 1564 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
21:42:18.0218 1564 Modem - ok
21:42:18.0234 1564 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:42:18.0234 1564 Mouclass - ok
21:42:18.0234 1564 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:42:18.0234 1564 mouhid - ok
21:42:18.0234 1564 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:42:18.0234 1564 MountMgr - ok
21:42:18.0234 1564 mraid35x - ok
21:42:18.0250 1564 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:42:18.0250 1564 MRxDAV - ok
21:42:18.0265 1564 MRxSmb (68755f0ff16070178b54674fe5b847b0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:42:18.0265 1564 MRxSmb - ok
21:42:18.0265 1564 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:42:18.0265 1564 Msfs - ok
21:42:18.0281 1564 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:42:18.0281 1564 MSKSSRV - ok
21:42:18.0296 1564 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:42:18.0296 1564 MSPCLOCK - ok
21:42:18.0312 1564 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:42:18.0312 1564 MSPQM - ok
21:42:18.0328 1564 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:42:18.0328 1564 mssmbios - ok
21:42:18.0343 1564 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
21:42:18.0343 1564 MSTEE - ok
21:42:18.0359 1564 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
21:42:18.0359 1564 MTsensor - ok
21:42:18.0359 1564 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
21:42:18.0359 1564 Mup - ok
21:42:18.0375 1564 mv61xx (e6f48050af7548e4bf775f0d83873794) C:\WINDOWS\system32\DRIVERS\mv61xx.sys
21:42:18.0375 1564 mv61xx - ok
21:42:18.0406 1564 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:42:18.0406 1564 NABTSFEC - ok
21:42:18.0437 1564 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:42:18.0437 1564 NDIS - ok
21:42:18.0453 1564 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:42:18.0453 1564 NdisIP - ok
21:42:18.0453 1564 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:42:18.0453 1564 NdisTapi - ok
21:42:18.0468 1564 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:42:18.0468 1564 Ndisuio - ok
21:42:18.0484 1564 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:42:18.0484 1564 NdisWan - ok
21:42:18.0500 1564 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
21:42:18.0500 1564 NDProxy - ok
21:42:18.0500 1564 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:42:18.0500 1564 NetBIOS - ok
21:42:18.0515 1564 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:42:18.0515 1564 NetBT - ok
21:42:18.0531 1564 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:42:18.0531 1564 NIC1394 - ok
21:42:18.0531 1564 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:42:18.0531 1564 Npfs - ok
21:42:18.0562 1564 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:42:18.0562 1564 Ntfs - ok
21:42:18.0562 1564 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:42:18.0562 1564 Null - ok
21:42:18.0593 1564 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:42:18.0593 1564 NwlnkFlt - ok
21:42:18.0609 1564 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:42:18.0609 1564 NwlnkFwd - ok
21:42:18.0609 1564 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:42:18.0609 1564 ohci1394 - ok
21:42:18.0625 1564 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\drivers\Parport.sys
21:42:18.0625 1564 Parport - ok
21:42:18.0625 1564 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:42:18.0625 1564 PartMgr - ok
21:42:18.0640 1564 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
21:42:18.0640 1564 ParVdm - ok
21:42:18.0656 1564 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
21:42:18.0656 1564 PCI - ok
21:42:18.0656 1564 PCIDump - ok
21:42:18.0656 1564 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
21:42:18.0656 1564 PCIIde - ok
21:42:18.0671 1564 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
21:42:18.0671 1564 Pcmcia - ok
21:42:18.0687 1564 pcouffin (02aaafb7ba137ce5ddabcdf8090954d9) C:\WINDOWS\system32\Drivers\pcouffin.sys
21:42:18.0687 1564 pcouffin - ok
21:42:18.0687 1564 PDCOMP - ok
21:42:18.0703 1564 PDFRAME - ok
21:42:18.0703 1564 PDRELI - ok
21:42:18.0703 1564 PDRFRAME - ok
21:42:18.0718 1564 perc2 - ok
21:42:18.0718 1564 perc2hib - ok
21:42:18.0734 1564 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:42:18.0734 1564 PptpMiniport - ok
21:42:18.0750 1564 PQNTDrv (4228630829c0e521c43d882a00533374) C:\WINDOWS\system32\drivers\PQNTDrv.sys
21:42:18.0750 1564 PQNTDrv - ok
21:42:18.0750 1564 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:42:18.0750 1564 PSched - ok
21:42:18.0765 1564 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:42:18.0765 1564 Ptilink - ok
21:42:18.0781 1564 ql1080 - ok
21:42:18.0781 1564 Ql10wnt - ok
21:42:18.0781 1564 ql12160 - ok
21:42:18.0781 1564 ql1240 - ok
21:42:18.0796 1564 ql1280 - ok
21:42:18.0796 1564 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:42:18.0796 1564 RasAcd - ok
21:42:18.0796 1564 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:42:18.0796 1564 Rasl2tp - ok
21:42:18.0812 1564 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:42:18.0812 1564 RasPppoe - ok
21:42:18.0812 1564 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:42:18.0812 1564 Raspti - ok
21:42:18.0843 1564 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:42:18.0843 1564 Rdbss - ok
21:42:18.0843 1564 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:42:18.0843 1564 RDPCDD - ok
21:42:18.0859 1564 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:42:18.0859 1564 rdpdr - ok
21:42:18.0875 1564 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
21:42:18.0875 1564 RDPWD - ok
21:42:18.0890 1564 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:42:18.0890 1564 redbook - ok
21:42:18.0906 1564 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:42:18.0906 1564 Secdrv - ok
21:42:18.0921 1564 SenFiltService (b6a6b409fda9d9ebd3aadb838d3d7173) C:\WINDOWS\system32\drivers\Senfilt.sys
21:42:18.0937 1564 SenFiltService - ok
21:42:18.0953 1564 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:42:18.0953 1564 Serenum - ok
21:42:18.0953 1564 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
21:42:18.0953 1564 Serial - ok
21:42:18.0953 1564 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:42:18.0953 1564 Sfloppy - ok
21:42:18.0968 1564 Simbad - ok
21:42:19.0000 1564 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:42:19.0000 1564 SLIP - ok
21:42:19.0015 1564 snapman (c6dafc9af23d54ca0e222b215d5e8378) C:\WINDOWS\system32\DRIVERS\snapman.sys
21:42:19.0015 1564 snapman - ok
21:42:19.0031 1564 Sparrow - ok
21:42:19.0046 1564 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:42:19.0046 1564 splitter - ok
21:42:19.0046 1564 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
21:42:19.0156 1564 \Device\Harddisk0\DR0 - ok
21:42:19.0171 1564 MBR (0x1B8) (62a8db0e0a9d2e7a833e53eeddf7c950) \Device\Harddisk1\DR1
21:42:19.0218 1564 \Device\Harddisk1\DR1 - ok
21:42:19.0218 1564 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk4\DR12
21:42:19.0234 1564 \Device\Harddisk4\DR12 - ok
21:42:19.0234 1564 Boot (0x1200) (96339b3156771f4fbb834e67d38ce391) \Device\Harddisk0\DR0\Partition0
21:42:19.0234 1564 \Device\Harddisk0\DR0\Partition0 - ok
21:42:19.0234 1564 Boot (0x1200) (e30358493caf3ceef3536735ebaa5167) \Device\Harddisk0\DR0\Partition1
21:42:19.0234 1564 \Device\Harddisk0\DR0\Partition1 - ok
21:42:19.0250 1564 Boot (0x1200) (3d03c5c4131a98569ba2c3a90314ed7f) \Device\Harddisk0\DR0\Partition2
21:42:19.0250 1564 \Device\Harddisk0\DR0\Partition2 - ok
21:42:19.0265 1564 Boot (0x1200) (8d73050bc55160857f666e088c3aec14) \Device\Harddisk0\DR0\Partition3
21:42:19.0265 1564 \Device\Harddisk0\DR0\Partition3 - ok
21:42:19.0281 1564 Boot (0x1200) (2d144068ed09947b6108218934c2b421) \Device\Harddisk0\DR0\Partition4
21:42:19.0281 1564 \Device\Harddisk0\DR0\Partition4 - ok
21:42:19.0281 1564 Boot (0x1200) (99e87eef4d74b8637be81cfc61e0ad86) \Device\Harddisk1\DR1\Partition0
21:42:19.0281 1564 \Device\Harddisk1\DR1\Partition0 - ok
21:42:19.0281 1564 Boot (0x1200) (c5ab862be8181bb9cf6f3f4e84845c69) \Device\Harddisk1\DR1\Partition1
21:42:19.0281 1564 \Device\Harddisk1\DR1\Partition1 - ok
21:42:19.0296 1564 Boot (0x1200) (db5a29e2f1fccfa9a80c0df7105f74fb) \Device\Harddisk1\DR1\Partition2
21:42:19.0296 1564 \Device\Harddisk1\DR1\Partition2 - ok
21:42:19.0296 1564 Boot (0x1200) (fb8b554e4105a0a918407686c2e37cf3) \Device\Harddisk4\DR12\Partition0
21:42:19.0296 1564 \Device\Harddisk4\DR12\Partition0 - ok
21:42:19.0296 1564 ============================================================
21:42:19.0296 1564 Scan finished
21:42:19.0296 1564 ============================================================
21:42:19.0296 1732 Detected object count: 0
21:42:19.0296 1732 Actual detected object count: 0
21:44:15.0343 3952 Deinitialize success
21:41:22.0765 2516 ============================================================
21:41:22.0765 2516 Current date / time: 2011/10/20 21:41:22.0765
21:41:22.0765 2516 SystemInfo:
21:41:22.0765 2516
21:41:22.0765 2516 OS Version: 5.1.2600 ServicePack: 3.0
21:41:22.0765 2516 Product type: Workstation
21:41:22.0765 2516 ComputerName: ZDENY
21:41:22.0765 2516 UserName: XPC
21:41:22.0765 2516 Windows directory: C:\WINDOWS
21:41:22.0765 2516 System windows directory: C:\WINDOWS
21:41:22.0765 2516 Processor architecture: Intel x86
21:41:22.0765 2516 Number of processors: 2
21:41:22.0765 2516 Page size: 0x1000
21:41:22.0765 2516 Boot type: Normal boot
21:41:22.0765 2516 ============================================================
21:41:24.0593 2516 Initialize success
21:41:36.0078 4016 ============================================================
21:41:36.0078 4016 Scan started
21:41:36.0078 4016 Mode: Manual;
21:41:36.0078 4016 ============================================================
21:41:36.0968 4016 Abiosdsk - ok
21:41:36.0984 4016 abp480n5 - ok
21:41:37.0000 4016 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:41:37.0015 4016 ACPI - ok
21:41:37.0031 4016 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
21:41:37.0031 4016 ACPIEC - ok
21:41:37.0046 4016 ADIHdAudAddService (f277c43c2e0672eed28cca0d13ce175f) C:\WINDOWS\system32\drivers\ADIHdAud.sys
21:41:37.0046 4016 ADIHdAudAddService - ok
21:41:37.0062 4016 adpu160m - ok
21:41:37.0078 4016 AEAudio (fff87a9b1ab36ee4b7bec98a4cb01b79) C:\WINDOWS\system32\drivers\AEAudio.sys
21:41:37.0078 4016 AEAudio - ok
21:41:37.0093 4016 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:41:37.0093 4016 aec - ok
21:41:37.0109 4016 AFD (322d0e36693d6e24a2398bee62a268cd) C:\WINDOWS\System32\drivers\afd.sys
21:41:37.0109 4016 AFD - ok
21:41:37.0109 4016 Aha154x - ok
21:41:37.0125 4016 aic78u2 - ok
21:41:37.0125 4016 aic78xx - ok
21:41:37.0140 4016 AliIde - ok
21:41:37.0140 4016 amsint - ok
21:41:37.0156 4016 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:41:37.0156 4016 Arp1394 - ok
21:41:37.0171 4016 asc - ok
21:41:37.0171 4016 asc3350p - ok
21:41:37.0171 4016 asc3550 - ok
21:41:37.0187 4016 AsIO (2b4e66fac6503494a2c6f32bb6ab3826) C:\WINDOWS\system32\drivers\AsIO.sys
21:41:37.0187 4016 AsIO - ok
21:41:37.0203 4016 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:41:37.0203 4016 AsyncMac - ok
21:41:37.0203 4016 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:41:37.0203 4016 atapi - ok
21:41:37.0218 4016 Atdisk - ok
21:41:37.0359 4016 ati2mtag (0a8b257db810be78ac9fd1860b4ba22b) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:41:37.0406 4016 ati2mtag - ok
21:41:37.0437 4016 AtiHdmiService (41c8f0eda10da14378d304c20ba6e558) C:\WINDOWS\system32\drivers\AtiHdmi.sys
21:41:37.0437 4016 AtiHdmiService - ok
21:41:37.0453 4016 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:41:37.0453 4016 Atmarpc - ok
21:41:37.0484 4016 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:41:37.0484 4016 audstub - ok
21:41:37.0484 4016 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:41:37.0484 4016 Beep - ok
21:41:37.0500 4016 Bulk1528 (ed1d7546e84a3ebd7f6e900de73cf390) C:\WINDOWS\system32\Drivers\Bulk1528.sys
21:41:37.0500 4016 Bulk1528 - ok
21:41:37.0531 4016 Ca1528av (94bf1cd4cdf4b02be835d78ca5104734) C:\WINDOWS\system32\Drivers\Ca1528av.sys
21:41:37.0531 4016 Ca1528av - ok
21:41:37.0562 4016 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:41:37.0562 4016 cbidf2k - ok
21:41:37.0593 4016 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:41:37.0593 4016 CCDECODE - ok
21:41:37.0609 4016 cd20xrnt - ok
21:41:37.0625 4016 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:41:37.0625 4016 Cdaudio - ok
21:41:37.0625 4016 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:41:37.0625 4016 Cdfs - ok
21:41:37.0640 4016 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:41:37.0640 4016 Cdrom - ok
21:41:37.0656 4016 Changer - ok
21:41:37.0656 4016 CmdIde - ok
21:41:37.0671 4016 Cpqarray - ok
21:41:37.0734 4016 CrystalSysInfo (f054744f67576a01139885173392502b) C:\Program Files\MediaCoder\SysInfo.sys
21:41:37.0734 4016 CrystalSysInfo - ok
21:41:37.0734 4016 dac2w2k - ok
21:41:37.0734 4016 dac960nt - ok
21:41:37.0750 4016 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:41:37.0750 4016 Disk - ok
21:41:37.0781 4016 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
21:41:37.0781 4016 dmboot - ok
21:41:37.0796 4016 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
21:41:37.0796 4016 dmio - ok
21:41:37.0796 4016 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:41:37.0796 4016 dmload - ok
21:41:37.0812 4016 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:41:37.0812 4016 DMusic - ok
21:41:37.0828 4016 dpti2o - ok
21:41:37.0843 4016 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:41:37.0843 4016 drmkaud - ok
21:41:37.0875 4016 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
21:41:37.0875 4016 dtsoftbus01 - ok
21:41:37.0890 4016 eamon (9309c5c9831203436e64cf2ae605c5d7) C:\WINDOWS\system32\DRIVERS\eamon.sys
21:41:37.0906 4016 eamon - ok
21:41:37.0906 4016 ehdrv (deff87f04ab5f6dd5edf2b80853bbe10) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
21:41:37.0906 4016 ehdrv - ok
21:41:37.0937 4016 ENTECH (16ebd8bf1d5090923694cc972c7ce1b4) C:\WINDOWS\system32\DRIVERS\ENTECH.SYS
21:41:37.0937 4016 ENTECH - ok
21:41:37.0953 4016 epfwtdir (06c65ac0a703cf8eea4f284d901a1550) C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
21:41:37.0953 4016 epfwtdir - ok
21:41:37.0953 4016 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:41:37.0968 4016 Fastfat - ok
21:41:37.0968 4016 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
21:41:37.0968 4016 Fdc - ok
21:41:37.0984 4016 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
21:41:37.0984 4016 Fips - ok
21:41:38.0000 4016 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:41:38.0000 4016 Flpydisk - ok
21:41:38.0015 4016 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:41:38.0015 4016 FltMgr - ok
21:41:38.0015 4016 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:41:38.0015 4016 Fs_Rec - ok
21:41:38.0031 4016 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:41:38.0031 4016 Ftdisk - ok
21:41:38.0046 4016 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:41:38.0046 4016 Gpc - ok
21:41:38.0062 4016 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:41:38.0062 4016 HDAudBus - ok
21:41:38.0078 4016 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:41:38.0078 4016 hidusb - ok
21:41:38.0078 4016 hpn - ok
21:41:38.0093 4016 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
21:41:38.0093 4016 HTTP - ok
21:41:38.0109 4016 i2omgmt - ok
21:41:38.0109 4016 i2omp - ok
21:41:38.0125 4016 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:41:38.0125 4016 i8042prt - ok
21:41:38.0140 4016 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:41:38.0140 4016 Imapi - ok
21:41:38.0156 4016 ini910u - ok
21:41:38.0156 4016 IntelIde - ok
21:41:38.0156 4016 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:41:38.0156 4016 intelppm - ok
21:41:38.0187 4016 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:41:38.0187 4016 Ip6Fw - ok
21:41:38.0218 4016 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:41:38.0218 4016 IpFilterDriver - ok
21:41:38.0234 4016 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:41:38.0234 4016 IpInIp - ok
21:41:38.0250 4016 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:41:38.0250 4016 IpNat - ok
21:41:38.0250 4016 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:41:38.0250 4016 IPSec - ok
21:41:38.0265 4016 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:41:38.0265 4016 IRENUM - ok
21:41:38.0265 4016 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:41:38.0265 4016 isapnp - ok
21:41:38.0296 4016 k750bus (fe8300320281d658a7854d5cfc02a63f) C:\WINDOWS\system32\DRIVERS\k750bus.sys
21:41:38.0296 4016 k750bus - ok
21:41:38.0328 4016 k750mgmt (9d5f5a70ca0b7c428efcd73db50e6ac7) C:\WINDOWS\system32\DRIVERS\k750mgmt.sys
21:41:38.0328 4016 k750mgmt - ok
21:41:38.0343 4016 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:41:38.0343 4016 Kbdclass - ok
21:41:38.0343 4016 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:41:38.0343 4016 kbdhid - ok
21:41:38.0375 4016 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:41:38.0375 4016 kmixer - ok
21:41:38.0375 4016 KSecDD (1705745d900dabf2d89f90ebaddc7517) C:\WINDOWS\system32\drivers\KSecDD.sys
21:41:38.0375 4016 KSecDD - ok
21:41:38.0375 4016 L8042Kbd (ad1541d5ff5b3f903da34737b6ba9a53) C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys
21:41:38.0375 4016 L8042Kbd - ok
21:41:38.0390 4016 lbrtfdc - ok
21:41:38.0406 4016 LHidFilt (24e0ddb99aeccf86bb37702611761459) C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
21:41:38.0406 4016 LHidFilt - ok
21:41:38.0406 4016 LHidKe (e47f94327e369ed6916049febf5f85e5) C:\WINDOWS\system32\DRIVERS\LHidKE.Sys
21:41:38.0406 4016 LHidKe - ok
21:41:38.0421 4016 LHidUsbK (a54c75e7481272eaaa6245683c89ecaa) C:\WINDOWS\system32\Drivers\LHidUsbK.Sys
21:41:38.0421 4016 LHidUsbK - ok
21:41:38.0421 4016 LMouFilt (d58b330d318361a66a9fe60d7c9b4951) C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
21:41:38.0421 4016 LMouFilt - ok
21:41:38.0437 4016 LMouKE (0e34232fca6f20172b1d8b6e8a9a26d1) C:\WINDOWS\system32\DRIVERS\LMouKE.Sys
21:41:38.0437 4016 LMouKE - ok
21:41:38.0453 4016 LUsbFilt (144011d14bd35f4e36136ae057b1aadd) C:\WINDOWS\system32\Drivers\LUsbFilt.Sys
21:41:38.0453 4016 LUsbFilt - ok
21:41:38.0468 4016 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:41:38.0468 4016 mnmdd - ok
21:41:38.0484 4016 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
21:41:38.0484 4016 Modem - ok
21:41:38.0484 4016 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:41:38.0484 4016 Mouclass - ok
21:41:38.0484 4016 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:41:38.0484 4016 mouhid - ok
21:41:38.0500 4016 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:41:38.0500 4016 MountMgr - ok
21:41:38.0500 4016 mraid35x - ok
21:41:38.0500 4016 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:41:38.0500 4016 MRxDAV - ok
21:41:38.0515 4016 MRxSmb (68755f0ff16070178b54674fe5b847b0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:41:38.0531 4016 MRxSmb - ok
21:41:38.0531 4016 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:41:38.0531 4016 Msfs - ok
21:41:38.0546 4016 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:41:38.0546 4016 MSKSSRV - ok
21:41:38.0546 4016 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:41:38.0546 4016 MSPCLOCK - ok
21:41:38.0562 4016 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:41:38.0562 4016 MSPQM - ok
21:41:38.0578 4016 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:41:38.0578 4016 mssmbios - ok
21:41:38.0609 4016 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
21:41:38.0609 4016 MSTEE - ok
21:41:38.0609 4016 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
21:41:38.0609 4016 MTsensor - ok
21:41:38.0625 4016 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
21:41:38.0625 4016 Mup - ok
21:41:38.0640 4016 mv61xx (e6f48050af7548e4bf775f0d83873794) C:\WINDOWS\system32\DRIVERS\mv61xx.sys
21:41:38.0640 4016 mv61xx - ok
21:41:38.0671 4016 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:41:38.0671 4016 NABTSFEC - ok
21:41:38.0687 4016 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:41:38.0687 4016 NDIS - ok
21:41:38.0703 4016 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:41:38.0703 4016 NdisIP - ok
21:41:38.0703 4016 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:41:38.0703 4016 NdisTapi - ok
21:41:38.0734 4016 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:41:38.0734 4016 Ndisuio - ok
21:41:38.0750 4016 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:41:38.0750 4016 NdisWan - ok
21:41:38.0750 4016 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
21:41:38.0750 4016 NDProxy - ok
21:41:38.0750 4016 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:41:38.0750 4016 NetBIOS - ok
21:41:38.0765 4016 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:41:38.0765 4016 NetBT - ok
21:41:38.0781 4016 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:41:38.0781 4016 NIC1394 - ok
21:41:38.0796 4016 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:41:38.0796 4016 Npfs - ok
21:41:38.0812 4016 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:41:38.0828 4016 Ntfs - ok
21:41:38.0828 4016 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:41:38.0828 4016 Null - ok
21:41:38.0859 4016 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:41:38.0859 4016 NwlnkFlt - ok
21:41:38.0875 4016 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:41:38.0875 4016 NwlnkFwd - ok
21:41:38.0890 4016 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:41:38.0890 4016 ohci1394 - ok
21:41:38.0890 4016 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\drivers\Parport.sys
21:41:38.0890 4016 Parport - ok
21:41:38.0906 4016 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:41:38.0906 4016 PartMgr - ok
21:41:38.0921 4016 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
21:41:38.0921 4016 ParVdm - ok
21:41:38.0937 4016 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
21:41:38.0937 4016 PCI - ok
21:41:38.0937 4016 PCIDump - ok
21:41:38.0953 4016 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
21:41:38.0953 4016 PCIIde - ok
21:41:38.0968 4016 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
21:41:38.0968 4016 Pcmcia - ok
21:41:38.0984 4016 pcouffin (02aaafb7ba137ce5ddabcdf8090954d9) C:\WINDOWS\system32\Drivers\pcouffin.sys
21:41:38.0984 4016 pcouffin - ok
21:41:38.0984 4016 PDCOMP - ok
21:41:38.0984 4016 PDFRAME - ok
21:41:39.0000 4016 PDRELI - ok
21:41:39.0000 4016 PDRFRAME - ok
21:41:39.0000 4016 perc2 - ok
21:41:39.0000 4016 perc2hib - ok
21:41:39.0015 4016 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:41:39.0015 4016 PptpMiniport - ok
21:41:39.0031 4016 PQNTDrv (4228630829c0e521c43d882a00533374) C:\WINDOWS\system32\drivers\PQNTDrv.sys
21:41:39.0031 4016 PQNTDrv - ok
21:41:39.0046 4016 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:41:39.0046 4016 PSched - ok
21:41:39.0062 4016 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:41:39.0062 4016 Ptilink - ok
21:41:39.0062 4016 ql1080 - ok
21:41:39.0062 4016 Ql10wnt - ok
21:41:39.0078 4016 ql12160 - ok
21:41:39.0078 4016 ql1240 - ok
21:41:39.0078 4016 ql1280 - ok
21:41:39.0093 4016 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:41:39.0093 4016 RasAcd - ok
21:41:39.0093 4016 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:41:39.0093 4016 Rasl2tp - ok
21:41:39.0093 4016 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:41:39.0093 4016 RasPppoe - ok
21:41:39.0109 4016 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:41:39.0109 4016 Raspti - ok
21:41:39.0125 4016 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:41:39.0125 4016 Rdbss - ok
21:41:39.0125 4016 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:41:39.0125 4016 RDPCDD - ok
21:41:39.0140 4016 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:41:39.0140 4016 rdpdr - ok
21:41:39.0156 4016 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
21:41:39.0156 4016 RDPWD - ok
21:41:39.0171 4016 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:41:39.0171 4016 redbook - ok
21:41:39.0218 4016 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:41:39.0218 4016 Secdrv - ok
21:41:39.0234 4016 SenFiltService (b6a6b409fda9d9ebd3aadb838d3d7173) C:\WINDOWS\system32\drivers\Senfilt.sys
21:41:39.0234 4016 SenFiltService - ok
21:41:39.0250 4016 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:41:39.0250 4016 Serenum - ok
21:41:39.0265 4016 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
21:41:39.0265 4016 Serial - ok
21:41:39.0265 4016 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:41:39.0265 4016 Sfloppy - ok
21:41:39.0265 4016 Simbad - ok
21:41:39.0312 4016 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:41:39.0312 4016 SLIP - ok
21:41:39.0328 4016 snapman (c6dafc9af23d54ca0e222b215d5e8378) C:\WINDOWS\system32\DRIVERS\snapman.sys
21:41:39.0328 4016 snapman - ok
21:41:39.0328 4016 Sparrow - ok
21:41:39.0343 4016 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:41:39.0343 4016 splitter - ok
21:41:39.0359 4016 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
21:41:39.0468 4016 \Device\Harddisk0\DR0 - ok
21:41:39.0468 4016 MBR (0x1B8) (62a8db0e0a9d2e7a833e53eeddf7c950) \Device\Harddisk1\DR1
21:41:39.0531 4016 \Device\Harddisk1\DR1 - ok
21:41:39.0531 4016 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk4\DR12
21:41:39.0531 4016 \Device\Harddisk4\DR12 - ok
21:41:39.0531 4016 Boot (0x1200) (96339b3156771f4fbb834e67d38ce391) \Device\Harddisk0\DR0\Partition0
21:41:39.0531 4016 \Device\Harddisk0\DR0\Partition0 - ok
21:41:39.0562 4016 Boot (0x1200) (e30358493caf3ceef3536735ebaa5167) \Device\Harddisk0\DR0\Partition1
21:41:39.0562 4016 \Device\Harddisk0\DR0\Partition1 - ok
21:41:39.0562 4016 Boot (0x1200) (3d03c5c4131a98569ba2c3a90314ed7f) \Device\Harddisk0\DR0\Partition2
21:41:39.0562 4016 \Device\Harddisk0\DR0\Partition2 - ok
21:41:39.0578 4016 Boot (0x1200) (8d73050bc55160857f666e088c3aec14) \Device\Harddisk0\DR0\Partition3
21:41:39.0578 4016 \Device\Harddisk0\DR0\Partition3 - ok
21:41:39.0593 4016 Boot (0x1200) (2d144068ed09947b6108218934c2b421) \Device\Harddisk0\DR0\Partition4
21:41:39.0593 4016 \Device\Harddisk0\DR0\Partition4 - ok
21:41:39.0593 4016 Boot (0x1200) (99e87eef4d74b8637be81cfc61e0ad86) \Device\Harddisk1\DR1\Partition0
21:41:39.0609 4016 \Device\Harddisk1\DR1\Partition0 - ok
21:41:39.0609 4016 Boot (0x1200) (c5ab862be8181bb9cf6f3f4e84845c69) \Device\Harddisk1\DR1\Partition1
21:41:39.0609 4016 \Device\Harddisk1\DR1\Partition1 - ok
21:41:39.0609 4016 Boot (0x1200) (db5a29e2f1fccfa9a80c0df7105f74fb) \Device\Harddisk1\DR1\Partition2
21:41:39.0609 4016 \Device\Harddisk1\DR1\Partition2 - ok
21:41:39.0609 4016 Boot (0x1200) (fb8b554e4105a0a918407686c2e37cf3) \Device\Harddisk4\DR12\Partition0
21:41:39.0609 4016 \Device\Harddisk4\DR12\Partition0 - ok
21:41:39.0609 4016 ============================================================
21:41:39.0609 4016 Scan finished
21:41:39.0609 4016 ============================================================
21:41:39.0609 2100 Detected object count: 0
21:41:39.0609 2100 Actual detected object count: 0
21:42:16.0062 1564 ============================================================
21:42:16.0062 1564 Scan started
21:42:16.0062 1564 Mode: Manual;
21:42:16.0062 1564 ============================================================
21:42:16.0828 1564 Abiosdsk - ok
21:42:16.0828 1564 abp480n5 - ok
21:42:16.0843 1564 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:42:16.0843 1564 ACPI - ok
21:42:16.0859 1564 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
21:42:16.0859 1564 ACPIEC - ok
21:42:16.0890 1564 ADIHdAudAddService (f277c43c2e0672eed28cca0d13ce175f) C:\WINDOWS\system32\drivers\ADIHdAud.sys
21:42:16.0890 1564 ADIHdAudAddService - ok
21:42:16.0890 1564 adpu160m - ok
21:42:16.0906 1564 AEAudio (fff87a9b1ab36ee4b7bec98a4cb01b79) C:\WINDOWS\system32\drivers\AEAudio.sys
21:42:16.0906 1564 AEAudio - ok
21:42:16.0921 1564 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:42:16.0921 1564 aec - ok
21:42:16.0937 1564 AFD (322d0e36693d6e24a2398bee62a268cd) C:\WINDOWS\System32\drivers\afd.sys
21:42:16.0937 1564 AFD - ok
21:42:16.0937 1564 Aha154x - ok
21:42:16.0937 1564 aic78u2 - ok
21:42:16.0953 1564 aic78xx - ok
21:42:16.0953 1564 AliIde - ok
21:42:16.0953 1564 amsint - ok
21:42:16.0968 1564 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:42:16.0968 1564 Arp1394 - ok
21:42:16.0968 1564 asc - ok
21:42:16.0984 1564 asc3350p - ok
21:42:16.0984 1564 asc3550 - ok
21:42:17.0000 1564 AsIO (2b4e66fac6503494a2c6f32bb6ab3826) C:\WINDOWS\system32\drivers\AsIO.sys
21:42:17.0000 1564 AsIO - ok
21:42:17.0015 1564 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:42:17.0015 1564 AsyncMac - ok
21:42:17.0015 1564 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:42:17.0015 1564 atapi - ok
21:42:17.0015 1564 Atdisk - ok
21:42:17.0156 1564 ati2mtag (0a8b257db810be78ac9fd1860b4ba22b) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:42:17.0171 1564 ati2mtag - ok
21:42:17.0203 1564 AtiHdmiService (41c8f0eda10da14378d304c20ba6e558) C:\WINDOWS\system32\drivers\AtiHdmi.sys
21:42:17.0203 1564 AtiHdmiService - ok
21:42:17.0218 1564 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:42:17.0218 1564 Atmarpc - ok
21:42:17.0234 1564 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:42:17.0234 1564 audstub - ok
21:42:17.0250 1564 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:42:17.0250 1564 Beep - ok
21:42:17.0265 1564 Bulk1528 (ed1d7546e84a3ebd7f6e900de73cf390) C:\WINDOWS\system32\Drivers\Bulk1528.sys
21:42:17.0265 1564 Bulk1528 - ok
21:42:17.0296 1564 Ca1528av (94bf1cd4cdf4b02be835d78ca5104734) C:\WINDOWS\system32\Drivers\Ca1528av.sys
21:42:17.0296 1564 Ca1528av - ok
21:42:17.0312 1564 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:42:17.0312 1564 cbidf2k - ok
21:42:17.0343 1564 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:42:17.0343 1564 CCDECODE - ok
21:42:17.0343 1564 cd20xrnt - ok
21:42:17.0359 1564 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:42:17.0359 1564 Cdaudio - ok
21:42:17.0390 1564 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:42:17.0390 1564 Cdfs - ok
21:42:17.0406 1564 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:42:17.0406 1564 Cdrom - ok
21:42:17.0406 1564 Changer - ok
21:42:17.0421 1564 CmdIde - ok
21:42:17.0421 1564 Cpqarray - ok
21:42:17.0484 1564 CrystalSysInfo (f054744f67576a01139885173392502b) C:\Program Files\MediaCoder\SysInfo.sys
21:42:17.0484 1564 CrystalSysInfo - ok
21:42:17.0500 1564 dac2w2k - ok
21:42:17.0500 1564 dac960nt - ok
21:42:17.0500 1564 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:42:17.0500 1564 Disk - ok
21:42:17.0531 1564 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
21:42:17.0531 1564 dmboot - ok
21:42:17.0546 1564 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
21:42:17.0546 1564 dmio - ok
21:42:17.0546 1564 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:42:17.0546 1564 dmload - ok
21:42:17.0562 1564 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:42:17.0562 1564 DMusic - ok
21:42:17.0562 1564 dpti2o - ok
21:42:17.0578 1564 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:42:17.0578 1564 drmkaud - ok
21:42:17.0609 1564 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
21:42:17.0609 1564 dtsoftbus01 - ok
21:42:17.0640 1564 eamon (9309c5c9831203436e64cf2ae605c5d7) C:\WINDOWS\system32\DRIVERS\eamon.sys
21:42:17.0640 1564 eamon - ok
21:42:17.0640 1564 ehdrv (deff87f04ab5f6dd5edf2b80853bbe10) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
21:42:17.0640 1564 ehdrv - ok
21:42:17.0671 1564 ENTECH (16ebd8bf1d5090923694cc972c7ce1b4) C:\WINDOWS\system32\DRIVERS\ENTECH.SYS
21:42:17.0671 1564 ENTECH - ok
21:42:17.0687 1564 epfwtdir (06c65ac0a703cf8eea4f284d901a1550) C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
21:42:17.0687 1564 epfwtdir - ok
21:42:17.0687 1564 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:42:17.0687 1564 Fastfat - ok
21:42:17.0703 1564 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
21:42:17.0703 1564 Fdc - ok
21:42:17.0718 1564 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
21:42:17.0718 1564 Fips - ok
21:42:17.0734 1564 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:42:17.0734 1564 Flpydisk - ok
21:42:17.0750 1564 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:42:17.0750 1564 FltMgr - ok
21:42:17.0750 1564 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:42:17.0750 1564 Fs_Rec - ok
21:42:17.0765 1564 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:42:17.0765 1564 Ftdisk - ok
21:42:17.0781 1564 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:42:17.0781 1564 Gpc - ok
21:42:17.0796 1564 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:42:17.0796 1564 HDAudBus - ok
21:42:17.0812 1564 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:42:17.0812 1564 hidusb - ok
21:42:17.0812 1564 hpn - ok
21:42:17.0828 1564 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
21:42:17.0828 1564 HTTP - ok
21:42:17.0843 1564 i2omgmt - ok
21:42:17.0843 1564 i2omp - ok
21:42:17.0859 1564 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:42:17.0859 1564 i8042prt - ok
21:42:17.0875 1564 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:42:17.0875 1564 Imapi - ok
21:42:17.0890 1564 ini910u - ok
21:42:17.0890 1564 IntelIde - ok
21:42:17.0890 1564 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:42:17.0890 1564 intelppm - ok
21:42:17.0921 1564 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:42:17.0921 1564 Ip6Fw - ok
21:42:17.0953 1564 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:42:17.0953 1564 IpFilterDriver - ok
21:42:17.0968 1564 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:42:17.0968 1564 IpInIp - ok
21:42:17.0984 1564 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:42:17.0984 1564 IpNat - ok
21:42:17.0984 1564 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:42:17.0984 1564 IPSec - ok
21:42:18.0000 1564 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:42:18.0000 1564 IRENUM - ok
21:42:18.0000 1564 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:42:18.0000 1564 isapnp - ok
21:42:18.0031 1564 k750bus (fe8300320281d658a7854d5cfc02a63f) C:\WINDOWS\system32\DRIVERS\k750bus.sys
21:42:18.0031 1564 k750bus - ok
21:42:18.0062 1564 k750mgmt (9d5f5a70ca0b7c428efcd73db50e6ac7) C:\WINDOWS\system32\DRIVERS\k750mgmt.sys
21:42:18.0062 1564 k750mgmt - ok
21:42:18.0078 1564 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:42:18.0078 1564 Kbdclass - ok
21:42:18.0078 1564 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:42:18.0078 1564 kbdhid - ok
21:42:18.0109 1564 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:42:18.0109 1564 kmixer - ok
21:42:18.0109 1564 KSecDD (1705745d900dabf2d89f90ebaddc7517) C:\WINDOWS\system32\drivers\KSecDD.sys
21:42:18.0109 1564 KSecDD - ok
21:42:18.0125 1564 L8042Kbd (ad1541d5ff5b3f903da34737b6ba9a53) C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys
21:42:18.0125 1564 L8042Kbd - ok
21:42:18.0125 1564 lbrtfdc - ok
21:42:18.0156 1564 LHidFilt (24e0ddb99aeccf86bb37702611761459) C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
21:42:18.0156 1564 LHidFilt - ok
21:42:18.0156 1564 LHidKe (e47f94327e369ed6916049febf5f85e5) C:\WINDOWS\system32\DRIVERS\LHidKE.Sys
21:42:18.0156 1564 LHidKe - ok
21:42:18.0156 1564 LHidUsbK (a54c75e7481272eaaa6245683c89ecaa) C:\WINDOWS\system32\Drivers\LHidUsbK.Sys
21:42:18.0156 1564 LHidUsbK - ok
21:42:18.0171 1564 LMouFilt (d58b330d318361a66a9fe60d7c9b4951) C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
21:42:18.0171 1564 LMouFilt - ok
21:42:18.0187 1564 LMouKE (0e34232fca6f20172b1d8b6e8a9a26d1) C:\WINDOWS\system32\DRIVERS\LMouKE.Sys
21:42:18.0187 1564 LMouKE - ok
21:42:18.0187 1564 LUsbFilt (144011d14bd35f4e36136ae057b1aadd) C:\WINDOWS\system32\Drivers\LUsbFilt.Sys
21:42:18.0187 1564 LUsbFilt - ok
21:42:18.0203 1564 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:42:18.0203 1564 mnmdd - ok
21:42:18.0218 1564 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
21:42:18.0218 1564 Modem - ok
21:42:18.0234 1564 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:42:18.0234 1564 Mouclass - ok
21:42:18.0234 1564 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:42:18.0234 1564 mouhid - ok
21:42:18.0234 1564 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:42:18.0234 1564 MountMgr - ok
21:42:18.0234 1564 mraid35x - ok
21:42:18.0250 1564 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:42:18.0250 1564 MRxDAV - ok
21:42:18.0265 1564 MRxSmb (68755f0ff16070178b54674fe5b847b0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:42:18.0265 1564 MRxSmb - ok
21:42:18.0265 1564 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:42:18.0265 1564 Msfs - ok
21:42:18.0281 1564 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:42:18.0281 1564 MSKSSRV - ok
21:42:18.0296 1564 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:42:18.0296 1564 MSPCLOCK - ok
21:42:18.0312 1564 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:42:18.0312 1564 MSPQM - ok
21:42:18.0328 1564 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:42:18.0328 1564 mssmbios - ok
21:42:18.0343 1564 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
21:42:18.0343 1564 MSTEE - ok
21:42:18.0359 1564 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
21:42:18.0359 1564 MTsensor - ok
21:42:18.0359 1564 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
21:42:18.0359 1564 Mup - ok
21:42:18.0375 1564 mv61xx (e6f48050af7548e4bf775f0d83873794) C:\WINDOWS\system32\DRIVERS\mv61xx.sys
21:42:18.0375 1564 mv61xx - ok
21:42:18.0406 1564 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:42:18.0406 1564 NABTSFEC - ok
21:42:18.0437 1564 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:42:18.0437 1564 NDIS - ok
21:42:18.0453 1564 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:42:18.0453 1564 NdisIP - ok
21:42:18.0453 1564 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:42:18.0453 1564 NdisTapi - ok
21:42:18.0468 1564 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:42:18.0468 1564 Ndisuio - ok
21:42:18.0484 1564 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:42:18.0484 1564 NdisWan - ok
21:42:18.0500 1564 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
21:42:18.0500 1564 NDProxy - ok
21:42:18.0500 1564 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:42:18.0500 1564 NetBIOS - ok
21:42:18.0515 1564 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:42:18.0515 1564 NetBT - ok
21:42:18.0531 1564 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:42:18.0531 1564 NIC1394 - ok
21:42:18.0531 1564 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:42:18.0531 1564 Npfs - ok
21:42:18.0562 1564 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:42:18.0562 1564 Ntfs - ok
21:42:18.0562 1564 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:42:18.0562 1564 Null - ok
21:42:18.0593 1564 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:42:18.0593 1564 NwlnkFlt - ok
21:42:18.0609 1564 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:42:18.0609 1564 NwlnkFwd - ok
21:42:18.0609 1564 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:42:18.0609 1564 ohci1394 - ok
21:42:18.0625 1564 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\drivers\Parport.sys
21:42:18.0625 1564 Parport - ok
21:42:18.0625 1564 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:42:18.0625 1564 PartMgr - ok
21:42:18.0640 1564 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
21:42:18.0640 1564 ParVdm - ok
21:42:18.0656 1564 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
21:42:18.0656 1564 PCI - ok
21:42:18.0656 1564 PCIDump - ok
21:42:18.0656 1564 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
21:42:18.0656 1564 PCIIde - ok
21:42:18.0671 1564 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
21:42:18.0671 1564 Pcmcia - ok
21:42:18.0687 1564 pcouffin (02aaafb7ba137ce5ddabcdf8090954d9) C:\WINDOWS\system32\Drivers\pcouffin.sys
21:42:18.0687 1564 pcouffin - ok
21:42:18.0687 1564 PDCOMP - ok
21:42:18.0703 1564 PDFRAME - ok
21:42:18.0703 1564 PDRELI - ok
21:42:18.0703 1564 PDRFRAME - ok
21:42:18.0718 1564 perc2 - ok
21:42:18.0718 1564 perc2hib - ok
21:42:18.0734 1564 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:42:18.0734 1564 PptpMiniport - ok
21:42:18.0750 1564 PQNTDrv (4228630829c0e521c43d882a00533374) C:\WINDOWS\system32\drivers\PQNTDrv.sys
21:42:18.0750 1564 PQNTDrv - ok
21:42:18.0750 1564 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:42:18.0750 1564 PSched - ok
21:42:18.0765 1564 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:42:18.0765 1564 Ptilink - ok
21:42:18.0781 1564 ql1080 - ok
21:42:18.0781 1564 Ql10wnt - ok
21:42:18.0781 1564 ql12160 - ok
21:42:18.0781 1564 ql1240 - ok
21:42:18.0796 1564 ql1280 - ok
21:42:18.0796 1564 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:42:18.0796 1564 RasAcd - ok
21:42:18.0796 1564 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:42:18.0796 1564 Rasl2tp - ok
21:42:18.0812 1564 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:42:18.0812 1564 RasPppoe - ok
21:42:18.0812 1564 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:42:18.0812 1564 Raspti - ok
21:42:18.0843 1564 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:42:18.0843 1564 Rdbss - ok
21:42:18.0843 1564 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:42:18.0843 1564 RDPCDD - ok
21:42:18.0859 1564 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:42:18.0859 1564 rdpdr - ok
21:42:18.0875 1564 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
21:42:18.0875 1564 RDPWD - ok
21:42:18.0890 1564 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:42:18.0890 1564 redbook - ok
21:42:18.0906 1564 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:42:18.0906 1564 Secdrv - ok
21:42:18.0921 1564 SenFiltService (b6a6b409fda9d9ebd3aadb838d3d7173) C:\WINDOWS\system32\drivers\Senfilt.sys
21:42:18.0937 1564 SenFiltService - ok
21:42:18.0953 1564 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:42:18.0953 1564 Serenum - ok
21:42:18.0953 1564 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
21:42:18.0953 1564 Serial - ok
21:42:18.0953 1564 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:42:18.0953 1564 Sfloppy - ok
21:42:18.0968 1564 Simbad - ok
21:42:19.0000 1564 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:42:19.0000 1564 SLIP - ok
21:42:19.0015 1564 snapman (c6dafc9af23d54ca0e222b215d5e8378) C:\WINDOWS\system32\DRIVERS\snapman.sys
21:42:19.0015 1564 snapman - ok
21:42:19.0031 1564 Sparrow - ok
21:42:19.0046 1564 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:42:19.0046 1564 splitter - ok
21:42:19.0046 1564 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
21:42:19.0156 1564 \Device\Harddisk0\DR0 - ok
21:42:19.0171 1564 MBR (0x1B8) (62a8db0e0a9d2e7a833e53eeddf7c950) \Device\Harddisk1\DR1
21:42:19.0218 1564 \Device\Harddisk1\DR1 - ok
21:42:19.0218 1564 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk4\DR12
21:42:19.0234 1564 \Device\Harddisk4\DR12 - ok
21:42:19.0234 1564 Boot (0x1200) (96339b3156771f4fbb834e67d38ce391) \Device\Harddisk0\DR0\Partition0
21:42:19.0234 1564 \Device\Harddisk0\DR0\Partition0 - ok
21:42:19.0234 1564 Boot (0x1200) (e30358493caf3ceef3536735ebaa5167) \Device\Harddisk0\DR0\Partition1
21:42:19.0234 1564 \Device\Harddisk0\DR0\Partition1 - ok
21:42:19.0250 1564 Boot (0x1200) (3d03c5c4131a98569ba2c3a90314ed7f) \Device\Harddisk0\DR0\Partition2
21:42:19.0250 1564 \Device\Harddisk0\DR0\Partition2 - ok
21:42:19.0265 1564 Boot (0x1200) (8d73050bc55160857f666e088c3aec14) \Device\Harddisk0\DR0\Partition3
21:42:19.0265 1564 \Device\Harddisk0\DR0\Partition3 - ok
21:42:19.0281 1564 Boot (0x1200) (2d144068ed09947b6108218934c2b421) \Device\Harddisk0\DR0\Partition4
21:42:19.0281 1564 \Device\Harddisk0\DR0\Partition4 - ok
21:42:19.0281 1564 Boot (0x1200) (99e87eef4d74b8637be81cfc61e0ad86) \Device\Harddisk1\DR1\Partition0
21:42:19.0281 1564 \Device\Harddisk1\DR1\Partition0 - ok
21:42:19.0281 1564 Boot (0x1200) (c5ab862be8181bb9cf6f3f4e84845c69) \Device\Harddisk1\DR1\Partition1
21:42:19.0281 1564 \Device\Harddisk1\DR1\Partition1 - ok
21:42:19.0296 1564 Boot (0x1200) (db5a29e2f1fccfa9a80c0df7105f74fb) \Device\Harddisk1\DR1\Partition2
21:42:19.0296 1564 \Device\Harddisk1\DR1\Partition2 - ok
21:42:19.0296 1564 Boot (0x1200) (fb8b554e4105a0a918407686c2e37cf3) \Device\Harddisk4\DR12\Partition0
21:42:19.0296 1564 \Device\Harddisk4\DR12\Partition0 - ok
21:42:19.0296 1564 ============================================================
21:42:19.0296 1564 Scan finished
21:42:19.0296 1564 ============================================================
21:42:19.0296 1732 Detected object count: 0
21:42:19.0296 1732 Actual detected object count: 0
21:44:15.0343 3952 Deinitialize success
Naposledy upravil(a) camello dne 20 říj 2011 20:55, celkem upraveno 1 x.
Re: Win32/Spy.Zbot.ZR
Jeste poprosim o druhy log z RSIT s nazvem info.txt, je ulozen v c:\rsit Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
- Ukoncete vsechny programy
- Pokud pouzivate Win Vista ci W7, kliknete na RogueKiller pravym a dejte Run As Administrator ci Spustit jako spravce
- Zvolte moznost 2 a potvrte enterem
- Utilita provede svou cinnost a da log - ten sem vlozte
- Nyni znovu, ale zvolte moznost 3 a pote jeste 4 - logy opet vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Win32/Spy.Zbot.ZR
RogueKiller V6.1.3 [10/14/2011] by Tigzy
contact at http://www.sur-la-toile.com
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.sur-la-toile.com/discussion- ... ntees.html
Operating System: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User: XPC [Admin rights]
Mode: Remove -- Date : 10/20/2011 21:58:37
Bad processes: 3
[SUSP PATH] IadHide5.dll -- C:\DOCUME~1\XPC\LOCALS~1\Temp\IadHide5.dll -> UNLOADED
[RESIDUE] NMIndexStoreSvr.exe -- c:\program files\common files\nero\lib\nmindexstoresvr.exe -> KILLED [TermProc]
[RESIDUE] DTLite.exe -- c:\program files\daemon tools lite\dtlite.exe -> KILLED [TermProc]
Registry Entries: 7
[RANDOMNAME] HKCU\[...]\Run : IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} ("C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020) -> DELETED
[RANDOMNAME] HKCU\[...]\Run : RGSC (D:\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent) -> DELETED
[RANDOMNAME] HKCU\[...]\Run : DAEMON Tools Lite ("C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun) -> DELETED
[SUSP PATH] HKCU\[...]\Run : {ACC978DA-7762-2A15-8278-F4FE41480C64} ("C:\Documents and Settings\XPC\Data aplikací\Uxymdy\daan.exe") -> DELETED
[DNS] HKLM\[...]\ControlSet001\Parameters\Interfaces\{0BF1738B-09E1-4578-AC20-F28F2406F9A1} : NameServer (193.179.148.42) -> NOT REMOVED, USE DNSFIX
[DNS] HKLM\[...]\ControlSet003\Parameters\Interfaces\{0BF1738B-09E1-4578-AC20-F28F2406F9A1} : NameServer (193.179.148.42) -> NOT REMOVED, USE DNSFIX
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED ()
Particular Files / Folders:
Driver: [LOADED]
SSDT[277] : NtWriteVirtualMemory @ 0x805885C2 -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B545F0)
SSDT[258] : NtTerminateThread @ 0x805838EF -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54470)
SSDT[257] : NtTerminateProcess @ 0x8058E695 -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54370)
SSDT[255] : NtSystemDebugControl @ 0x80650D8D -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54830)
SSDT[254] : NtSuspendThread @ 0x806375EB -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54430)
SSDT[253] : NtSuspendProcess @ 0x806376CF -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B543B0)
SSDT[240] : NtSetSystemInformation @ 0x805AABC8 -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54870)
SSDT[237] : NtSetSecurityObject @ 0x805D9CAC -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54670)
SSDT[229] : NtSetInformationThread @ 0x80578FA7 -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B544F0)
SSDT[213] : NtSetContextThread @ 0x80635937 -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54530)
SSDT[180] : NtQueueApcThread @ 0x805E3B8D -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54630)
SSDT[137] : NtProtectVirtualMemory @ 0x80581891 -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54570)
SSDT[128] : NtOpenThread @ 0x805E1939 -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54410)
SSDT[122] : NtOpenProcess @ 0x8058170A -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54350)
SSDT[97] : NtLoadDriver @ 0x805A8F96 -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B548B0)
SSDT[68] : NtDuplicateObject @ 0x8058121E -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B545D0)
SSDT[57] : NtDebugActiveProcess @ 0x80662519 -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54AB0)
SSDT[19] : NtAssignProcessToJobObject @ 0x805E839E -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B544B0)
HOSTS File:
127.0.0.1 localhost
::1 localhost
64.27.9.109 www.bing.com.
64.27.9.109 search.yahoo.com.
64.27.9.109 www.search.yahoo.com.
64.27.9.109 uk.search.yahoo.com.
64.27.9.109 ca.search.yahoo.com.
64.27.9.109 de.search.yahoo.com.
64.27.9.109 fr.search.yahoo.com.
64.27.9.109 au.search.yahoo.com.
Finished : << RKreport[1].txt >>
RKreport[1].txt
contact at http://www.sur-la-toile.com
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.sur-la-toile.com/discussion- ... ntees.html
Operating System: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User: XPC [Admin rights]
Mode: Remove -- Date : 10/20/2011 21:58:37
Bad processes: 3
[SUSP PATH] IadHide5.dll -- C:\DOCUME~1\XPC\LOCALS~1\Temp\IadHide5.dll -> UNLOADED
[RESIDUE] NMIndexStoreSvr.exe -- c:\program files\common files\nero\lib\nmindexstoresvr.exe -> KILLED [TermProc]
[RESIDUE] DTLite.exe -- c:\program files\daemon tools lite\dtlite.exe -> KILLED [TermProc]
Registry Entries: 7
[RANDOMNAME] HKCU\[...]\Run : IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} ("C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020) -> DELETED
[RANDOMNAME] HKCU\[...]\Run : RGSC (D:\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent) -> DELETED
[RANDOMNAME] HKCU\[...]\Run : DAEMON Tools Lite ("C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun) -> DELETED
[SUSP PATH] HKCU\[...]\Run : {ACC978DA-7762-2A15-8278-F4FE41480C64} ("C:\Documents and Settings\XPC\Data aplikací\Uxymdy\daan.exe") -> DELETED
[DNS] HKLM\[...]\ControlSet001\Parameters\Interfaces\{0BF1738B-09E1-4578-AC20-F28F2406F9A1} : NameServer (193.179.148.42) -> NOT REMOVED, USE DNSFIX
[DNS] HKLM\[...]\ControlSet003\Parameters\Interfaces\{0BF1738B-09E1-4578-AC20-F28F2406F9A1} : NameServer (193.179.148.42) -> NOT REMOVED, USE DNSFIX
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED ()
Particular Files / Folders:
Driver: [LOADED]
SSDT[277] : NtWriteVirtualMemory @ 0x805885C2 -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B545F0)
SSDT[258] : NtTerminateThread @ 0x805838EF -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54470)
SSDT[257] : NtTerminateProcess @ 0x8058E695 -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54370)
SSDT[255] : NtSystemDebugControl @ 0x80650D8D -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54830)
SSDT[254] : NtSuspendThread @ 0x806375EB -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54430)
SSDT[253] : NtSuspendProcess @ 0x806376CF -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B543B0)
SSDT[240] : NtSetSystemInformation @ 0x805AABC8 -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54870)
SSDT[237] : NtSetSecurityObject @ 0x805D9CAC -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54670)
SSDT[229] : NtSetInformationThread @ 0x80578FA7 -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B544F0)
SSDT[213] : NtSetContextThread @ 0x80635937 -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54530)
SSDT[180] : NtQueueApcThread @ 0x805E3B8D -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54630)
SSDT[137] : NtProtectVirtualMemory @ 0x80581891 -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54570)
SSDT[128] : NtOpenThread @ 0x805E1939 -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54410)
SSDT[122] : NtOpenProcess @ 0x8058170A -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54350)
SSDT[97] : NtLoadDriver @ 0x805A8F96 -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B548B0)
SSDT[68] : NtDuplicateObject @ 0x8058121E -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B545D0)
SSDT[57] : NtDebugActiveProcess @ 0x80662519 -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B54AB0)
SSDT[19] : NtAssignProcessToJobObject @ 0x805E839E -> HOOKED (\SystemRoot\system32\DRIVERS\ehdrv.sys @ 0xA9B544B0)
HOSTS File:
127.0.0.1 localhost
::1 localhost
64.27.9.109 www.bing.com.
64.27.9.109 search.yahoo.com.
64.27.9.109 www.search.yahoo.com.
64.27.9.109 uk.search.yahoo.com.
64.27.9.109 ca.search.yahoo.com.
64.27.9.109 de.search.yahoo.com.
64.27.9.109 fr.search.yahoo.com.
64.27.9.109 au.search.yahoo.com.
Finished : << RKreport[1].txt >>
RKreport[1].txt
Re: Win32/Spy.Zbot.ZR
RogueKiller V6.1.3 [10/14/2011] by Tigzy
contact at http://www.sur-la-toile.com
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.sur-la-toile.com/discussion- ... ntees.html
Operating System: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User: XPC [Admin rights]
Mode: HOSTSFix -- Date : 10/20/2011 21:59:33
Bad processes: 0
Driver: [LOADED]
HOSTS File:
127.0.0.1 localhost
::1 localhost
64.27.9.109 www.bing.com.
64.27.9.109 search.yahoo.com.
64.27.9.109 www.search.yahoo.com.
64.27.9.109 uk.search.yahoo.com.
64.27.9.109 ca.search.yahoo.com.
64.27.9.109 de.search.yahoo.com.
64.27.9.109 fr.search.yahoo.com.
64.27.9.109 au.search.yahoo.com.
Resetted HOSTS:
127.0.0.1 localhost
Finished : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt
contact at http://www.sur-la-toile.com
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.sur-la-toile.com/discussion- ... ntees.html
Operating System: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User: XPC [Admin rights]
Mode: HOSTSFix -- Date : 10/20/2011 21:59:33
Bad processes: 0
Driver: [LOADED]
HOSTS File:
127.0.0.1 localhost
::1 localhost
64.27.9.109 www.bing.com.
64.27.9.109 search.yahoo.com.
64.27.9.109 www.search.yahoo.com.
64.27.9.109 uk.search.yahoo.com.
64.27.9.109 ca.search.yahoo.com.
64.27.9.109 de.search.yahoo.com.
64.27.9.109 fr.search.yahoo.com.
64.27.9.109 au.search.yahoo.com.
Resetted HOSTS:
127.0.0.1 localhost
Finished : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt
Re: Win32/Spy.Zbot.ZR
RogueKiller V6.1.3 [10/14/2011] by Tigzy
contact at http://www.sur-la-toile.com
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.sur-la-toile.com/discussion- ... ntees.html
Operating System: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User: XPC [Admin rights]
Mode: ProxyFix -- Date : 10/20/2011 22:00:00
Bad processes: 0
Driver: [LOADED]
Registry Entries: 0
Finished : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt
contact at http://www.sur-la-toile.com
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.sur-la-toile.com/discussion- ... ntees.html
Operating System: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User: XPC [Admin rights]
Mode: ProxyFix -- Date : 10/20/2011 22:00:00
Bad processes: 0
Driver: [LOADED]
Registry Entries: 0
Finished : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt
Re: Win32/Spy.Zbot.ZR
Poprosim o nove logy z RSIT (log.txt i info.txt)"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Win32/Spy.Zbot.ZR
Logfile of random's system information tool 1.09 (written by random/random)
Run by XPC at 2011-10-23 18:47:53
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 10 GB (24%) free of 40 GB
Total RAM: 3327 MB (79% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:47:56, on 23.10.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Real\RealPlayer\update\realsched.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\PROGRA~1\MICROS~4\rapimgr.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\XPC\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\XPC.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = my.daemon-search.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Real\RealPlayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [{ACC978DA-7762-2A15-8278-F4FE41480C64}] "C:\Documents and Settings\XPC\Data aplikací\Uxymdy\daan.exe"
O4 - HKCU\..\Run: [RGSC] D:\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra 'Tools' menuitem: Vytvořit mobilní oblíbenou položku… - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{0BF1738B-09E1-4578-AC20-F28F2406F9A1}: NameServer = 193.179.148.42
O17 - HKLM\System\CS1\Services\Tcpip\..\{0BF1738B-09E1-4578-AC20-F28F2406F9A1}: NameServer = 193.179.148.42
O17 - HKLM\System\CS3\Services\Tcpip\..\{0BF1738B-09E1-4578-AC20-F28F2406F9A1}: NameServer = 193.179.148.42
O18 - Protocol: bw+0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Aktivátor Správce výběru OS Acronis (Správce výběru OS) - Unknown owner - C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe
--
End of file - 20538 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-823518204-790525478-839522115-1003.job
C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-823518204-790525478-839522115-1003.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\XPC\Data aplikací\Mozilla\Firefox\Profiles\66qd2m8w.default
prefs.js - "browser.startup.homepage" - "http://www.mydtzone.com/startpage|resou ... properties"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15, jqs@sun.com:1.0, {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.1, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.23"
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"{ABDE892B-13A8-4d1b-88E6-365A6E755758}"=C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=12.0.1.609]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=12.0.1.609]
"Description"=RealJukebox Netscape Plugin
"Path"=C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.609]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.609]
"Description"=12.0.1.609
"Path"=C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1]
"Description"=Yahoo! activeX Plug-in Bridge
"Path"=C:\Program Files\Yahoo!\Common\npyaxmpb.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
components.list
compreg.dat
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nppl3260.xpt
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsINIProcessor.js
nsjsrealplayerplugin.xpt
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js
xpti.dat
C:\Program Files\Mozilla Firefox\plugins\
npdeploytk.dll
npnul32.dll
NPOFFICE.DLL
nppdf32.dll
nppl3260.dll
nprjplug.dll
nprpjplug.dll
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Documents and Settings\XPC\Data aplikací\Mozilla\Firefox\Profiles\66qd2m8w.default\searchplugins\
daemon-search.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-01-09 382720]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-09-11 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-09-11 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2008-03-24 884736]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-03-16 1040384]
"NeroFilterCheck"=C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [2008-11-06 570664]
"NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2008-12-02 2221352]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-09-08 37296]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-30 937920]
"TkBellExe"=C:\Program Files\Real\RealPlayer\update\realsched.exe [2011-01-09 274608]
"Logitech Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2004-12-10 49152]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-09-08 3076144]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-09-08 98304]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"H/PC Connection Agent"=C:\Program Files\Microsoft ActiveSync\wcescomm.exe [2006-11-13 1289000]
"LDM"=C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2011-07-22 32768]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
"{ACC978DA-7762-2A15-8278-F4FE41480C64}"=C:\Documents and Settings\XPC\Data aplikací\Uxymdy\daan.exe []
"RGSC"=D:\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe [2008-11-14 305064]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\daemon.exe -autorun []
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
InterVideo WinCinema Manager.lnk - C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2011-09-08 188416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=181
"NoAutoUpdate"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\Program Files\Ubisoft\Far Cry 2\bin\FarCry2.exe"="C:\Program Files\Ubisoft\Far Cry 2\bin\FarCry2.exe:*:Enabled:Far Cry 2"
"C:\Program Files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe"="C:\Program Files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe:*:Enabled:Far Cry 2 Updater"
"C:\Program Files\Ubisoft\Far Cry 2\bin\FC2Editor.exe"="C:\Program Files\Ubisoft\Far Cry 2\bin\FC2Editor.exe:*:Enabled:Editor"
"C:\Program Files\ICQ6\ICQ.exe"="C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\InterVideo\DVD5\WinDVD.exe"="C:\Program Files\InterVideo\DVD5\WinDVD.exe:*:Enabled:WinDVD"
"C:\Program Files\Activision Value\Soldier of Fortune Payback\sof3.exe"="C:\Program Files\Activision Value\Soldier of Fortune Payback\sof3.exe:*:Enabled:sof3"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"F:\Battlefield Vietnam\bfvietnam.exe"="F:\Battlefield Vietnam\bfvietnam.exe:*:Enabled:bfvietnam"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"D:\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe"="D:\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club"
"D:\Rockstar Games\EFLC\EFLC.exe"="D:\Rockstar Games\EFLC\EFLC.exe:*:Enabled:Grand Theft Auto : Episodes from Liberty City"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Disabled:Logitech Desktop Messenger"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.FPS1"=frapsvid.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.SP54"=SP5X_32.DLL
"VIDC.SP55"=SP5X_32.DLL
"VIDC.SP56"=SP5X_32.DLL
"VIDC.SP57"=SP5X_32.DLL
"VIDC.SP58"=SP5X_32.DLL
"MSVideo8"=VfWWDM32.dll
======List of files/folders created in the last 1 month======
2011-10-23 18:47:53 ----D---- C:\rsit
2011-10-20 21:57:54 ----A---- C:\WINDOWS\system32\drivers\TrueSight.sys
2011-10-20 21:46:49 ----D---- C:\Program Files\trend micro
2011-10-20 19:50:08 ----D---- C:\Program Files\Spybot - Search & Destroy
2011-10-20 18:58:39 ----D---- C:\Documents and Settings\XPC\Data aplikací\Ycys
2011-10-03 15:01:11 ----D---- C:\Documents and Settings\All Users\Data aplikací\ATI
2011-10-03 14:57:01 ----D---- C:\Program Files\AMD APP
2011-10-03 14:33:33 ----D---- C:\Program Files\ATI Technologies
2011-10-03 14:17:54 ----D---- C:\Program Files\Uninstall Tool
2011-10-01 12:55:09 ----D---- C:\Program Files\ESET
2011-10-01 12:55:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2011-10-01 11:51:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2011-10-01 11:08:42 ----D---- C:\Documents and Settings\XPC\Data aplikací\Malwarebytes
2011-10-01 11:08:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2011-10-01 11:08:34 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-10-01 11:08:34 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2011-10-01 10:50:24 ----SHD---- C:\WINDOWS\CSC
2011-09-30 16:28:14 ----D---- C:\Documents and Settings\All Users\Data aplikací\oK15002JpKoO15002
======List of files/folders modified in the last 1 month======
2011-10-23 18:33:38 ----D---- C:\WINDOWS\system32
2011-10-23 18:33:37 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-10-23 18:29:57 ----D---- C:\WINDOWS\Temp
2011-10-23 18:29:56 ----SD---- C:\WINDOWS\Tasks
2011-10-23 18:06:25 ----D---- C:\WINDOWS\system32\CatRoot2
2011-10-23 15:49:34 ----D---- C:\WINDOWS\Prefetch
2011-10-23 14:15:07 ----D---- C:\WINDOWS\system32\config
2011-10-23 00:32:51 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-10-22 21:09:01 ----D---- C:\Documents and Settings\XPC\Data aplikací\Skype
2011-10-22 17:30:46 ----A---- C:\WINDOWS\WINCMD.INI
2011-10-21 20:19:21 ----A---- C:\WINDOWS\NeroDigital.ini
2011-10-21 19:13:00 ----D---- C:\Program Files\JDownloader
2011-10-20 23:03:01 ----D---- C:\WINDOWS
2011-10-20 23:02:11 ----D---- C:\WINDOWS\Minidump
2011-10-20 21:57:54 ----D---- C:\WINDOWS\system32\drivers
2011-10-20 21:46:49 ----RD---- C:\Program Files
2011-10-20 19:47:28 ----D---- C:\WINDOWS\nview
2011-10-20 18:57:55 ----D---- C:\Program Files\Mozilla Firefox
2011-10-20 00:09:29 ----SHD---- C:\WINDOWS\Installer
2011-10-20 00:09:29 ----HD---- C:\Program Files\InstallShield Installation Information
2011-10-20 00:09:29 ----D---- C:\Documents and Settings\All Users\Data aplikací\IMSIDesign
2011-10-20 00:05:58 ----D---- C:\Program Files\CCleaner
2011-10-19 23:54:47 ----HD---- C:\WINDOWS\inf
2011-10-04 16:31:05 ----D---- C:\Program Files\XTB-Trader
2011-10-03 14:56:27 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-10-03 14:56:13 ----DC---- C:\WINDOWS\system32\DRVSTORE
2011-10-03 13:56:39 ----D---- C:\Program Files\ATI
2011-10-01 12:07:02 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
2011-10-01 11:36:12 ----D---- C:\WINDOWS\security
2011-10-01 11:22:31 ----D---- C:\Program Files\DAEMON Tools Toolbar
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 mv61xx;mv61xx; C:\WINDOWS\system32\DRIVERS\mv61xx.sys [2008-05-19 150568]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2011-01-04 170080]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-11-30 691696]
R1 AsIO;AsIO; C:\WINDOWS\system32\drivers\AsIO.sys [2007-12-17 12400]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2011-03-24 218688]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2011-08-04 118104]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2011-08-04 103112]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2011-08-09 154136]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2008-03-24 331264]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2007-07-13 94976]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2011-09-08 7180800]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2004-12-10 13056]
R3 LHidKe;Logitech SetPoint HID Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidKE.Sys [2004-12-10 24704]
R3 LHidUsbK;Logitech SetPoint USB Receiver device driver; C:\WINDOWS\System32\Drivers\LHidUsbK.Sys [2004-12-10 36480]
R3 LMouKE;Logitech SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys [2004-12-10 68992]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2011-01-05 47360]
R3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2006-03-17 392960]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2007-08-15 265856]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S2 Ca1528av;SPCA1528 Video Camera Service; C:\WINDOWS\System32\Drivers\Ca1528av.sys [2008-12-16 516480]
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
S3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2008-05-21 93696]
S3 Bulk1528;SPCA1528 Still Camera Service; C:\WINDOWS\System32\Drivers\Bulk1528.sys [2008-06-27 11648]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files\MediaCoder\SysInfo.sys []
S3 ENTECH;ENTECH; \??\C:\WINDOWS\system32\DRIVERS\ENTECH.SYS []
S3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:\WINDOWS\system32\DRIVERS\k750bus.sys [2005-07-07 55216]
S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; C:\WINDOWS\system32\DRIVERS\k750mgmt.sys [2005-07-07 81728]
S3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2008-02-29 35344]
S3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2008-02-29 36880]
S3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2008-02-29 28944]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 TrueSight;TrueSight; \??\c:\windows\system32\drivers\TrueSight.sys []
S3 usb_rndisx;Adaptér USB RNDIS; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2008-04-14 12800]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2011-09-08 643072]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2011-09-08 974944]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-09-11 153376]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2008-12-02 877864]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\WINDOWS\system32\IoctlSvc.exe [2006-12-19 81920]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2008-11-06 66872]
R2 Správce výběru OS;Aktivátor Správce výběru OS Acronis; C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe [2010-07-07 2156952]
R3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-01-09 136176]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-01-09 136176]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-12-12 537896]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Run by XPC at 2011-10-23 18:47:53
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 10 GB (24%) free of 40 GB
Total RAM: 3327 MB (79% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:47:56, on 23.10.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Real\RealPlayer\update\realsched.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\PROGRA~1\MICROS~4\rapimgr.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\XPC\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\XPC.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = my.daemon-search.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Real\RealPlayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [{ACC978DA-7762-2A15-8278-F4FE41480C64}] "C:\Documents and Settings\XPC\Data aplikací\Uxymdy\daan.exe"
O4 - HKCU\..\Run: [RGSC] D:\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra 'Tools' menuitem: Vytvořit mobilní oblíbenou položku… - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{0BF1738B-09E1-4578-AC20-F28F2406F9A1}: NameServer = 193.179.148.42
O17 - HKLM\System\CS1\Services\Tcpip\..\{0BF1738B-09E1-4578-AC20-F28F2406F9A1}: NameServer = 193.179.148.42
O17 - HKLM\System\CS3\Services\Tcpip\..\{0BF1738B-09E1-4578-AC20-F28F2406F9A1}: NameServer = 193.179.148.42
O18 - Protocol: bw+0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {285E85DD-DFD4-4BD5-97B5-CCB09A98DDAE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Aktivátor Správce výběru OS Acronis (Správce výběru OS) - Unknown owner - C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe
--
End of file - 20538 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-823518204-790525478-839522115-1003.job
C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-823518204-790525478-839522115-1003.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\XPC\Data aplikací\Mozilla\Firefox\Profiles\66qd2m8w.default
prefs.js - "browser.startup.homepage" - "http://www.mydtzone.com/startpage|resou ... properties"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15, jqs@sun.com:1.0, {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.1, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.23"
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"{ABDE892B-13A8-4d1b-88E6-365A6E755758}"=C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=12.0.1.609]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=12.0.1.609]
"Description"=RealJukebox Netscape Plugin
"Path"=C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.609]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.609]
"Description"=12.0.1.609
"Path"=C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1]
"Description"=Yahoo! activeX Plug-in Bridge
"Path"=C:\Program Files\Yahoo!\Common\npyaxmpb.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
components.list
compreg.dat
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nppl3260.xpt
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsINIProcessor.js
nsjsrealplayerplugin.xpt
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js
xpti.dat
C:\Program Files\Mozilla Firefox\plugins\
npdeploytk.dll
npnul32.dll
NPOFFICE.DLL
nppdf32.dll
nppl3260.dll
nprjplug.dll
nprpjplug.dll
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Documents and Settings\XPC\Data aplikací\Mozilla\Firefox\Profiles\66qd2m8w.default\searchplugins\
daemon-search.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-01-09 382720]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-09-11 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-09-11 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2008-03-24 884736]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-03-16 1040384]
"NeroFilterCheck"=C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [2008-11-06 570664]
"NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2008-12-02 2221352]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-09-08 37296]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-30 937920]
"TkBellExe"=C:\Program Files\Real\RealPlayer\update\realsched.exe [2011-01-09 274608]
"Logitech Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2004-12-10 49152]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-09-08 3076144]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-09-08 98304]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"H/PC Connection Agent"=C:\Program Files\Microsoft ActiveSync\wcescomm.exe [2006-11-13 1289000]
"LDM"=C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2011-07-22 32768]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
"{ACC978DA-7762-2A15-8278-F4FE41480C64}"=C:\Documents and Settings\XPC\Data aplikací\Uxymdy\daan.exe []
"RGSC"=D:\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe [2008-11-14 305064]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\daemon.exe -autorun []
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
InterVideo WinCinema Manager.lnk - C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2011-09-08 188416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=181
"NoAutoUpdate"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\Program Files\Ubisoft\Far Cry 2\bin\FarCry2.exe"="C:\Program Files\Ubisoft\Far Cry 2\bin\FarCry2.exe:*:Enabled:Far Cry 2"
"C:\Program Files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe"="C:\Program Files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe:*:Enabled:Far Cry 2 Updater"
"C:\Program Files\Ubisoft\Far Cry 2\bin\FC2Editor.exe"="C:\Program Files\Ubisoft\Far Cry 2\bin\FC2Editor.exe:*:Enabled:Editor"
"C:\Program Files\ICQ6\ICQ.exe"="C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\InterVideo\DVD5\WinDVD.exe"="C:\Program Files\InterVideo\DVD5\WinDVD.exe:*:Enabled:WinDVD"
"C:\Program Files\Activision Value\Soldier of Fortune Payback\sof3.exe"="C:\Program Files\Activision Value\Soldier of Fortune Payback\sof3.exe:*:Enabled:sof3"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"F:\Battlefield Vietnam\bfvietnam.exe"="F:\Battlefield Vietnam\bfvietnam.exe:*:Enabled:bfvietnam"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"D:\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe"="D:\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club"
"D:\Rockstar Games\EFLC\EFLC.exe"="D:\Rockstar Games\EFLC\EFLC.exe:*:Enabled:Grand Theft Auto : Episodes from Liberty City"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Disabled:Logitech Desktop Messenger"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.FPS1"=frapsvid.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.SP54"=SP5X_32.DLL
"VIDC.SP55"=SP5X_32.DLL
"VIDC.SP56"=SP5X_32.DLL
"VIDC.SP57"=SP5X_32.DLL
"VIDC.SP58"=SP5X_32.DLL
"MSVideo8"=VfWWDM32.dll
======List of files/folders created in the last 1 month======
2011-10-23 18:47:53 ----D---- C:\rsit
2011-10-20 21:57:54 ----A---- C:\WINDOWS\system32\drivers\TrueSight.sys
2011-10-20 21:46:49 ----D---- C:\Program Files\trend micro
2011-10-20 19:50:08 ----D---- C:\Program Files\Spybot - Search & Destroy
2011-10-20 18:58:39 ----D---- C:\Documents and Settings\XPC\Data aplikací\Ycys
2011-10-03 15:01:11 ----D---- C:\Documents and Settings\All Users\Data aplikací\ATI
2011-10-03 14:57:01 ----D---- C:\Program Files\AMD APP
2011-10-03 14:33:33 ----D---- C:\Program Files\ATI Technologies
2011-10-03 14:17:54 ----D---- C:\Program Files\Uninstall Tool
2011-10-01 12:55:09 ----D---- C:\Program Files\ESET
2011-10-01 12:55:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2011-10-01 11:51:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2011-10-01 11:08:42 ----D---- C:\Documents and Settings\XPC\Data aplikací\Malwarebytes
2011-10-01 11:08:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2011-10-01 11:08:34 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-10-01 11:08:34 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2011-10-01 10:50:24 ----SHD---- C:\WINDOWS\CSC
2011-09-30 16:28:14 ----D---- C:\Documents and Settings\All Users\Data aplikací\oK15002JpKoO15002
======List of files/folders modified in the last 1 month======
2011-10-23 18:33:38 ----D---- C:\WINDOWS\system32
2011-10-23 18:33:37 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-10-23 18:29:57 ----D---- C:\WINDOWS\Temp
2011-10-23 18:29:56 ----SD---- C:\WINDOWS\Tasks
2011-10-23 18:06:25 ----D---- C:\WINDOWS\system32\CatRoot2
2011-10-23 15:49:34 ----D---- C:\WINDOWS\Prefetch
2011-10-23 14:15:07 ----D---- C:\WINDOWS\system32\config
2011-10-23 00:32:51 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-10-22 21:09:01 ----D---- C:\Documents and Settings\XPC\Data aplikací\Skype
2011-10-22 17:30:46 ----A---- C:\WINDOWS\WINCMD.INI
2011-10-21 20:19:21 ----A---- C:\WINDOWS\NeroDigital.ini
2011-10-21 19:13:00 ----D---- C:\Program Files\JDownloader
2011-10-20 23:03:01 ----D---- C:\WINDOWS
2011-10-20 23:02:11 ----D---- C:\WINDOWS\Minidump
2011-10-20 21:57:54 ----D---- C:\WINDOWS\system32\drivers
2011-10-20 21:46:49 ----RD---- C:\Program Files
2011-10-20 19:47:28 ----D---- C:\WINDOWS\nview
2011-10-20 18:57:55 ----D---- C:\Program Files\Mozilla Firefox
2011-10-20 00:09:29 ----SHD---- C:\WINDOWS\Installer
2011-10-20 00:09:29 ----HD---- C:\Program Files\InstallShield Installation Information
2011-10-20 00:09:29 ----D---- C:\Documents and Settings\All Users\Data aplikací\IMSIDesign
2011-10-20 00:05:58 ----D---- C:\Program Files\CCleaner
2011-10-19 23:54:47 ----HD---- C:\WINDOWS\inf
2011-10-04 16:31:05 ----D---- C:\Program Files\XTB-Trader
2011-10-03 14:56:27 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-10-03 14:56:13 ----DC---- C:\WINDOWS\system32\DRVSTORE
2011-10-03 13:56:39 ----D---- C:\Program Files\ATI
2011-10-01 12:07:02 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
2011-10-01 11:36:12 ----D---- C:\WINDOWS\security
2011-10-01 11:22:31 ----D---- C:\Program Files\DAEMON Tools Toolbar
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 mv61xx;mv61xx; C:\WINDOWS\system32\DRIVERS\mv61xx.sys [2008-05-19 150568]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2011-01-04 170080]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-11-30 691696]
R1 AsIO;AsIO; C:\WINDOWS\system32\drivers\AsIO.sys [2007-12-17 12400]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2011-03-24 218688]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2011-08-04 118104]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2011-08-04 103112]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2011-08-09 154136]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2008-03-24 331264]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2007-07-13 94976]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2011-09-08 7180800]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2004-12-10 13056]
R3 LHidKe;Logitech SetPoint HID Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidKE.Sys [2004-12-10 24704]
R3 LHidUsbK;Logitech SetPoint USB Receiver device driver; C:\WINDOWS\System32\Drivers\LHidUsbK.Sys [2004-12-10 36480]
R3 LMouKE;Logitech SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys [2004-12-10 68992]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2011-01-05 47360]
R3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2006-03-17 392960]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2007-08-15 265856]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S2 Ca1528av;SPCA1528 Video Camera Service; C:\WINDOWS\System32\Drivers\Ca1528av.sys [2008-12-16 516480]
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
S3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2008-05-21 93696]
S3 Bulk1528;SPCA1528 Still Camera Service; C:\WINDOWS\System32\Drivers\Bulk1528.sys [2008-06-27 11648]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files\MediaCoder\SysInfo.sys []
S3 ENTECH;ENTECH; \??\C:\WINDOWS\system32\DRIVERS\ENTECH.SYS []
S3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:\WINDOWS\system32\DRIVERS\k750bus.sys [2005-07-07 55216]
S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; C:\WINDOWS\system32\DRIVERS\k750mgmt.sys [2005-07-07 81728]
S3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2008-02-29 35344]
S3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2008-02-29 36880]
S3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2008-02-29 28944]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 TrueSight;TrueSight; \??\c:\windows\system32\drivers\TrueSight.sys []
S3 usb_rndisx;Adaptér USB RNDIS; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2008-04-14 12800]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2011-09-08 643072]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2011-09-08 974944]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-09-11 153376]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2008-12-02 877864]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\WINDOWS\system32\IoctlSvc.exe [2006-12-19 81920]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2008-11-06 66872]
R2 Správce výběru OS;Aktivátor Správce výběru OS Acronis; C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe [2010-07-07 2156952]
R3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-01-09 136176]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-01-09 136176]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-12-12 537896]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Re: Win32/Spy.Zbot.ZR
info.txt logfile of random's system information tool 1.09 2011-10-23 18:47:57
======Uninstall list======
-->C:\Program Files\Nero\Nero8\\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
-->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
-->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL
-->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
-->C:\WINDOWS\UNRecode.exe /UNINSTALL
-->MsiExec /X{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
7-Zip 9.20-->"C:\Program Files\7-Zip\Uninstall.exe"
ACDSee 32-->C:\PROGRA~1\ACDSee32\UNWISE.EXE C:\PROGRA~1\ACDSee32\INSTALL.LOG
Acronis Disk Director Home-->MsiExec.exe /X{9CCC78EF-027E-40E0-9B61-39932C65E3FE}
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10i_Plugin.exe -maintain plugin
Adobe Flash Player 9 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\UninstFl.exe -q
Adobe Reader 9.4.6 - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-A94000000001}
Advanced X Video Converter-->"C:\Program Files\XVideoConverter\UI.exe"
AMD APP SDK Runtime-->MsiExec.exe /I{A25FF1C0-80B6-4B8B-A551-DC525697A408}
Boilsoft Video Splitter 6.33-->"C:\Program Files\Boilsoft\Boilsoft Video Splitter\unins000.exe"
BSPlayer-->"C:\Program Files\Webteh\BSplayerPro\uninstall.exe"
Catalyst Control Center - Branding-->MsiExec.exe /I{19A492A0-888F-44A0-9B21-D91700763F62}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Company of Heroes-->MsiExec.exe /X{BA801B94-C28D-46EE-B806-E1E021A3D519}
Creative DVD Audio Plugin for Audigy Series-->"C:\Program Files\Creative\CTDPlugin\CTUIDVD.exe " -u
CrystalDiskInfo 4.0.1-->"C:\Program Files\CrystalDiskInfo\unins000.exe"
DAEMON Tools Lite-->C:\Program Files\DAEMON Tools Lite\uninst.exe
Driver Sweeper 1.5.5-->"C:\Program Files\Driver Sweeper\unins000.exe"
EVEREST Ultimate Edition v5.00-->"C:\Program Files\Lavalys\EVEREST Ultimate Edition\unins000.exe"
Far Cry 2-->"C:\Program Files\InstallShield Installation Information\{F2835483-37F2-4123-B4FE-0E77D58447F2}\setup.exe" -runfromtemp -l0x0009 -removeonly
Fraps-->"C:\Fraps\uninstall.exe"
Google Chrome-->"C:\Program Files\Google\Chrome\Application\14.0.835.202\Installer\setup.exe" --uninstall --system-level
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Grand Theft Auto IV-->MsiExec.exe /I{5454083B-1308-4485-BF17-1110000D8301}
Grand Theft Auto IV-->MsiExec.exe /I{5454083B-1308-4485-BF17-1110000D8302}
Grand Theft Auto: Episodes From Liberty City-->"C:\Program Files\InstallShield Installation Information\{61B8B2F9-D8DA-4B24-89A9-DB09F38A4899}\setup.exe" -runfromtemp -l0x0009 -removeonly
Grand Theft Auto: Episodes from Liberty City-->MsiExec.exe /I{5454083B-1308-4485-BF17-111000028701}
Half-Life 2-->C:\Program Files\Half-Life 2\uninstall.exe
HD Tune 2.55-->"C:\Program Files\HD Tune\unins000.exe"
High Definition Audio Driver Package - KB888111-->C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
ICQ6-->"C:\Program Files\InstallShield Installation Information\{60DE4033-9503-48D1-A483-7846BD217CA9}\setup.exe" -runfromtemp -l0x0009 -removeonly
InterActual Player-->C:\Program Files\InterActual\InterActual Player\inuninst.exe
InterVideo WinDVD 5-->"C:\Program Files\InstallShield Installation Information\{1B399A41-C1D0-40A2-9E4F-095868EFAF01}\setup.exe" REMOVEALL
Java(TM) 6 Update 15-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216015FF}
JDownloader-->C:\Program Files\JDownloader\uninstall.exe
K-Lite Codec Pack 4.3.4 (Corporate)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Logitech Desktop Messenger-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\SETUP.exe" -l0x9 UNINSTALL -removeonly
Logitech SetPoint-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}\setup.exe" -l0x9 -removeonly
Mafia II-->"D:\2K Games\Mafia II\unins000.exe"
Malwarebytes' Anti-Malware verze 1.51.2.1300-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Marvell Miniport Driver-->C:\Program Files\Marvell\Miniport Driver\Uninst.exe
MediaCoder 0.7.5.4797-->C:\Program Files\MediaCoder\uninst.exe
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft ActiveSync-->MsiExec.exe /I{99052DB7-9592-4522-A558-5417BBAD48EE}
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}
Microsoft Games for Windows - LIVE-->MsiExec.exe /X{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe"
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{90110405-6000-11D3-8CFE-0150048383C9}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Mozilla Firefox (3.6.23)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 6.0 Parser (KB925673)-->MsiExec.exe /I{FE9126DB-5F84-495A-BB46-3C724F1C2D08}
Nero 8-->MsiExec.exe /X{1CA7ACD6-B21B-4240-AA05-4FC55F6E1029}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
NHL® 09-->MsiExec.exe /X{F2B5A2A7-2DF9-4361-8BD5-362714528B51}
NVIDIA PhysX-->MsiExec.exe /X{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}
PowerQuest PartitionMagic 8.0 Demo-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}
Příručka k zařízení Windows Mobile®-->C:\Program Files\Windows Mobile Device Handbook\Windows Mobile Device Handbook\Bin\DHUninstall.exe
PunkBuster Services-->C:\WINDOWS\system32\pbsvc.exe -u
QIP 2005 8090-->"C:\Program Files\QIP\unins000.exe"
RealNetworks - Microsoft Visual C++ 2008 Runtime-->MsiExec.exe /X{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}
RealPlayer-->C:\Program Files\Real\RealPlayer\Update\r1puninst.exe RealNetworks|RealPlayer|12.0
RealUpgrade 1.1-->MsiExec.exe /I{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}
Rockstar Games Social Club-->"C:\Program Files\InstallShield Installation Information\{08B3869E-D282-424C-9AFC-870E04A4BA14}\setup.exe" -runfromtemp -l0x0009 -removeonly
Skype™ 5.3-->MsiExec.exe /X{F1CECE09-7CBE-4E98-B435-DA87CDA86167}
SoundMAX-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\setup.exe" -l0x5 -removeonly
SPCA1528 PC Driver-->"C:\Program Files\InstallShield Installation Information\{570C2A84-A145-4DF0-AE9D-012584DF09DC}\setup.exe" -runfromtemp -l0x0804 -removeonly
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
SUPER © Version 2009.bld.36 (June 10, 2009)-->C:\PROGRA~1\ERIGHT~1\SUPER\Setup.exe /remove /q0
The KMPlayer (remove only)-->"C:\Program Files\The KMPlayer\uninstall.exe"
The Lord of the Rings FREE Trial -->MsiExec.exe /X{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}
Thermal Analysis Tool-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6B2C675E-8040-431B-99C4-137DF4FBF75A}\setup.exe" -l0x9 -removeonly
Uninstall Tool-->"C:\Program Files\Uninstall Tool\unins000.exe"
Video Convert Master 8.0.8.24-->"C:\Program Files\Video Convert Master\unins000.exe"
Virtua Tennis(TM) 2009-->"C:\Program Files\InstallShield Installation Information\{9B63540D-D942-4C38-B42E-A48AE0145970}\setup.exe" -runfromtemp -l0x0009 -removeonly
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
WinRAR-->C:\Program Files\WinRAR\uninstall.exe
XTB-Option Trader-->"C:\Program Files\XTB-Option Trader 2\unins000.exe"
XTB-Trader 4.00-->"C:\Program Files\XTB-Trader\Uninstall.exe" "C:\Program Files\XTB-Trader\install.log"
Yahoo! Install Manager-->C:\WINDOWS\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL
======Hosts File======
127.0.0.1 localhost
======Security center information======
AV: ESET NOD32 Antivirus 5.0
======System event log======
Computer Name: ZDENY
Event Code: 59
Message: Generate Activation Context pro C:\Program Files\Real\RealPlayer\plugins\rmxrend.dll se nezdařila.
Referenční chybová zpráva: Operace byla dokončena úspěšně.
.
Record Number: 87778
Source Name: SideBySide
Time Written: 20111002235130.000000+120
Event Type: Chyba
User:
Computer Name: ZDENY
Event Code: 59
Message: Resolve Partial Assembly pro Microsoft.VC90.DebugCRT se nezdařila.
Referenční chybová zpráva: Sestavení určené odkazem není v systému nainstalováno.
.
Record Number: 87777
Source Name: SideBySide
Time Written: 20111002235130.000000+120
Event Type: Chyba
User:
Computer Name: ZDENY
Event Code: 32
Message: Závislá symbolická adresa Microsoft.VC90.DebugCRT nebyla nalezena a poslední chyba byla Sestavení určené odkazem není v systému nainstalováno.
.
Record Number: 87776
Source Name: SideBySide
Time Written: 20111002235130.000000+120
Event Type: Chyba
User:
Computer Name: ZDENY
Event Code: 59
Message: Generate Activation Context pro C:\Program Files\Real\RealPlayer\plugins\rmxrend.dll se nezdařila.
Referenční chybová zpráva: Operace byla dokončena úspěšně.
.
Record Number: 87775
Source Name: SideBySide
Time Written: 20111002235121.000000+120
Event Type: Chyba
User:
Computer Name: ZDENY
Event Code: 59
Message: Resolve Partial Assembly pro Microsoft.VC90.DebugCRT se nezdařila.
Referenční chybová zpráva: Sestavení určené odkazem není v systému nainstalováno.
.
Record Number: 87774
Source Name: SideBySide
Time Written: 20111002235121.000000+120
Event Type: Chyba
User:
=====Application event log=====
Computer Name: ZDENY
Event Code: 0
Message:
Record Number: 5
Source Name: NMIndexingService
Time Written: 20110905142610.000000+120
Event Type: Informace
User:
Computer Name: ZDENY
Event Code: 1800
Message: Služba Centrum zabezpečení systému Windows byla spuštěna.
Record Number: 4
Source Name: SecurityCenter
Time Written: 20110905142609.000000+120
Event Type: Informace
User:
Computer Name: ZDENY
Event Code: 105
Message: The service was started.
Record Number: 3
Source Name: PLFlash DeviceIoControl Service
Time Written: 20110905142608.000000+120
Event Type: Informace
User:
Computer Name: ZDENY
Event Code: 0
Message:
Record Number: 2
Source Name: Nero BackItUp Scheduler 3
Time Written: 20110905142608.000000+120
Event Type: Informace
User:
Computer Name: ZDENY
Event Code: 0
Message:
Record Number: 1
Source Name: gupdate
Time Written: 20110905142605.000000+120
Event Type: Informace
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=C:\Program Files\AMD APP\bin\x86;C:\Program Files\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Common Files\Acronis\SnapAPI\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 6, GenuineIntel
"PROCESSOR_REVISION"=1706
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"RGSCLauncher"=D:\Rockstar Games\Rockstar Games Social Club
"RGSC"=D:\Rockstar Games\Rockstar Games Social Club\1_0_0_0
"AMDAPPSDKROOT"=C:\Program Files\AMD APP\
-----------------EOF-----------------
======Uninstall list======
-->C:\Program Files\Nero\Nero8\\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
-->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
-->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL
-->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
-->C:\WINDOWS\UNRecode.exe /UNINSTALL
-->MsiExec /X{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
7-Zip 9.20-->"C:\Program Files\7-Zip\Uninstall.exe"
ACDSee 32-->C:\PROGRA~1\ACDSee32\UNWISE.EXE C:\PROGRA~1\ACDSee32\INSTALL.LOG
Acronis Disk Director Home-->MsiExec.exe /X{9CCC78EF-027E-40E0-9B61-39932C65E3FE}
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10i_Plugin.exe -maintain plugin
Adobe Flash Player 9 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\UninstFl.exe -q
Adobe Reader 9.4.6 - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-A94000000001}
Advanced X Video Converter-->"C:\Program Files\XVideoConverter\UI.exe"
AMD APP SDK Runtime-->MsiExec.exe /I{A25FF1C0-80B6-4B8B-A551-DC525697A408}
Boilsoft Video Splitter 6.33-->"C:\Program Files\Boilsoft\Boilsoft Video Splitter\unins000.exe"
BSPlayer-->"C:\Program Files\Webteh\BSplayerPro\uninstall.exe"
Catalyst Control Center - Branding-->MsiExec.exe /I{19A492A0-888F-44A0-9B21-D91700763F62}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Company of Heroes-->MsiExec.exe /X{BA801B94-C28D-46EE-B806-E1E021A3D519}
Creative DVD Audio Plugin for Audigy Series-->"C:\Program Files\Creative\CTDPlugin\CTUIDVD.exe " -u
CrystalDiskInfo 4.0.1-->"C:\Program Files\CrystalDiskInfo\unins000.exe"
DAEMON Tools Lite-->C:\Program Files\DAEMON Tools Lite\uninst.exe
Driver Sweeper 1.5.5-->"C:\Program Files\Driver Sweeper\unins000.exe"
EVEREST Ultimate Edition v5.00-->"C:\Program Files\Lavalys\EVEREST Ultimate Edition\unins000.exe"
Far Cry 2-->"C:\Program Files\InstallShield Installation Information\{F2835483-37F2-4123-B4FE-0E77D58447F2}\setup.exe" -runfromtemp -l0x0009 -removeonly
Fraps-->"C:\Fraps\uninstall.exe"
Google Chrome-->"C:\Program Files\Google\Chrome\Application\14.0.835.202\Installer\setup.exe" --uninstall --system-level
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Grand Theft Auto IV-->MsiExec.exe /I{5454083B-1308-4485-BF17-1110000D8301}
Grand Theft Auto IV-->MsiExec.exe /I{5454083B-1308-4485-BF17-1110000D8302}
Grand Theft Auto: Episodes From Liberty City-->"C:\Program Files\InstallShield Installation Information\{61B8B2F9-D8DA-4B24-89A9-DB09F38A4899}\setup.exe" -runfromtemp -l0x0009 -removeonly
Grand Theft Auto: Episodes from Liberty City-->MsiExec.exe /I{5454083B-1308-4485-BF17-111000028701}
Half-Life 2-->C:\Program Files\Half-Life 2\uninstall.exe
HD Tune 2.55-->"C:\Program Files\HD Tune\unins000.exe"
High Definition Audio Driver Package - KB888111-->C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
ICQ6-->"C:\Program Files\InstallShield Installation Information\{60DE4033-9503-48D1-A483-7846BD217CA9}\setup.exe" -runfromtemp -l0x0009 -removeonly
InterActual Player-->C:\Program Files\InterActual\InterActual Player\inuninst.exe
InterVideo WinDVD 5-->"C:\Program Files\InstallShield Installation Information\{1B399A41-C1D0-40A2-9E4F-095868EFAF01}\setup.exe" REMOVEALL
Java(TM) 6 Update 15-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216015FF}
JDownloader-->C:\Program Files\JDownloader\uninstall.exe
K-Lite Codec Pack 4.3.4 (Corporate)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Logitech Desktop Messenger-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\SETUP.exe" -l0x9 UNINSTALL -removeonly
Logitech SetPoint-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}\setup.exe" -l0x9 -removeonly
Mafia II-->"D:\2K Games\Mafia II\unins000.exe"
Malwarebytes' Anti-Malware verze 1.51.2.1300-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Marvell Miniport Driver-->C:\Program Files\Marvell\Miniport Driver\Uninst.exe
MediaCoder 0.7.5.4797-->C:\Program Files\MediaCoder\uninst.exe
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft ActiveSync-->MsiExec.exe /I{99052DB7-9592-4522-A558-5417BBAD48EE}
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}
Microsoft Games for Windows - LIVE-->MsiExec.exe /X{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe"
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{90110405-6000-11D3-8CFE-0150048383C9}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Mozilla Firefox (3.6.23)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 6.0 Parser (KB925673)-->MsiExec.exe /I{FE9126DB-5F84-495A-BB46-3C724F1C2D08}
Nero 8-->MsiExec.exe /X{1CA7ACD6-B21B-4240-AA05-4FC55F6E1029}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
NHL® 09-->MsiExec.exe /X{F2B5A2A7-2DF9-4361-8BD5-362714528B51}
NVIDIA PhysX-->MsiExec.exe /X{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}
PowerQuest PartitionMagic 8.0 Demo-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}
Příručka k zařízení Windows Mobile®-->C:\Program Files\Windows Mobile Device Handbook\Windows Mobile Device Handbook\Bin\DHUninstall.exe
PunkBuster Services-->C:\WINDOWS\system32\pbsvc.exe -u
QIP 2005 8090-->"C:\Program Files\QIP\unins000.exe"
RealNetworks - Microsoft Visual C++ 2008 Runtime-->MsiExec.exe /X{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}
RealPlayer-->C:\Program Files\Real\RealPlayer\Update\r1puninst.exe RealNetworks|RealPlayer|12.0
RealUpgrade 1.1-->MsiExec.exe /I{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}
Rockstar Games Social Club-->"C:\Program Files\InstallShield Installation Information\{08B3869E-D282-424C-9AFC-870E04A4BA14}\setup.exe" -runfromtemp -l0x0009 -removeonly
Skype™ 5.3-->MsiExec.exe /X{F1CECE09-7CBE-4E98-B435-DA87CDA86167}
SoundMAX-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\setup.exe" -l0x5 -removeonly
SPCA1528 PC Driver-->"C:\Program Files\InstallShield Installation Information\{570C2A84-A145-4DF0-AE9D-012584DF09DC}\setup.exe" -runfromtemp -l0x0804 -removeonly
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
SUPER © Version 2009.bld.36 (June 10, 2009)-->C:\PROGRA~1\ERIGHT~1\SUPER\Setup.exe /remove /q0
The KMPlayer (remove only)-->"C:\Program Files\The KMPlayer\uninstall.exe"
The Lord of the Rings FREE Trial -->MsiExec.exe /X{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}
Thermal Analysis Tool-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6B2C675E-8040-431B-99C4-137DF4FBF75A}\setup.exe" -l0x9 -removeonly
Uninstall Tool-->"C:\Program Files\Uninstall Tool\unins000.exe"
Video Convert Master 8.0.8.24-->"C:\Program Files\Video Convert Master\unins000.exe"
Virtua Tennis(TM) 2009-->"C:\Program Files\InstallShield Installation Information\{9B63540D-D942-4C38-B42E-A48AE0145970}\setup.exe" -runfromtemp -l0x0009 -removeonly
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
WinRAR-->C:\Program Files\WinRAR\uninstall.exe
XTB-Option Trader-->"C:\Program Files\XTB-Option Trader 2\unins000.exe"
XTB-Trader 4.00-->"C:\Program Files\XTB-Trader\Uninstall.exe" "C:\Program Files\XTB-Trader\install.log"
Yahoo! Install Manager-->C:\WINDOWS\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL
======Hosts File======
127.0.0.1 localhost
======Security center information======
AV: ESET NOD32 Antivirus 5.0
======System event log======
Computer Name: ZDENY
Event Code: 59
Message: Generate Activation Context pro C:\Program Files\Real\RealPlayer\plugins\rmxrend.dll se nezdařila.
Referenční chybová zpráva: Operace byla dokončena úspěšně.
.
Record Number: 87778
Source Name: SideBySide
Time Written: 20111002235130.000000+120
Event Type: Chyba
User:
Computer Name: ZDENY
Event Code: 59
Message: Resolve Partial Assembly pro Microsoft.VC90.DebugCRT se nezdařila.
Referenční chybová zpráva: Sestavení určené odkazem není v systému nainstalováno.
.
Record Number: 87777
Source Name: SideBySide
Time Written: 20111002235130.000000+120
Event Type: Chyba
User:
Computer Name: ZDENY
Event Code: 32
Message: Závislá symbolická adresa Microsoft.VC90.DebugCRT nebyla nalezena a poslední chyba byla Sestavení určené odkazem není v systému nainstalováno.
.
Record Number: 87776
Source Name: SideBySide
Time Written: 20111002235130.000000+120
Event Type: Chyba
User:
Computer Name: ZDENY
Event Code: 59
Message: Generate Activation Context pro C:\Program Files\Real\RealPlayer\plugins\rmxrend.dll se nezdařila.
Referenční chybová zpráva: Operace byla dokončena úspěšně.
.
Record Number: 87775
Source Name: SideBySide
Time Written: 20111002235121.000000+120
Event Type: Chyba
User:
Computer Name: ZDENY
Event Code: 59
Message: Resolve Partial Assembly pro Microsoft.VC90.DebugCRT se nezdařila.
Referenční chybová zpráva: Sestavení určené odkazem není v systému nainstalováno.
.
Record Number: 87774
Source Name: SideBySide
Time Written: 20111002235121.000000+120
Event Type: Chyba
User:
=====Application event log=====
Computer Name: ZDENY
Event Code: 0
Message:
Record Number: 5
Source Name: NMIndexingService
Time Written: 20110905142610.000000+120
Event Type: Informace
User:
Computer Name: ZDENY
Event Code: 1800
Message: Služba Centrum zabezpečení systému Windows byla spuštěna.
Record Number: 4
Source Name: SecurityCenter
Time Written: 20110905142609.000000+120
Event Type: Informace
User:
Computer Name: ZDENY
Event Code: 105
Message: The service was started.
Record Number: 3
Source Name: PLFlash DeviceIoControl Service
Time Written: 20110905142608.000000+120
Event Type: Informace
User:
Computer Name: ZDENY
Event Code: 0
Message:
Record Number: 2
Source Name: Nero BackItUp Scheduler 3
Time Written: 20110905142608.000000+120
Event Type: Informace
User:
Computer Name: ZDENY
Event Code: 0
Message:
Record Number: 1
Source Name: gupdate
Time Written: 20110905142605.000000+120
Event Type: Informace
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=C:\Program Files\AMD APP\bin\x86;C:\Program Files\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Common Files\Acronis\SnapAPI\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 6, GenuineIntel
"PROCESSOR_REVISION"=1706
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"RGSCLauncher"=D:\Rockstar Games\Rockstar Games Social Club
"RGSC"=D:\Rockstar Games\Rockstar Games Social Club\1_0_0_0
"AMDAPPSDKROOT"=C:\Program Files\AMD APP\
-----------------EOF-----------------
Re: Win32/Spy.Zbot.ZR
Odinstalujte Spybot - Search & Destroy - program ma uz nejlepsi leta davno za sebou a posledni cca 3 roky neni schopen celit aktualnim hrozbam - po ukonceni leceni dame lepsi nahraduPROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK
Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe
- Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
- Pokud mate Win XP spustte pod uctem Spravce\Administratora
- Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
- Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
- Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
- Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
- Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
- Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
- Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Win32/Spy.Zbot.ZR
ComboFix 11-10-29.03 - XPC 29.10.2011 18:28:28.1.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.3327.2538 [GMT 2:00]
Spuštěný z: c:\documents and settings\XPC\Plocha\ComboFix.exe
AV: ESET NOD32 Antivirus 5.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\ehome\medctrro.exe
c:\windows\help\tours\htmltour\unlock_playing.htm
c:\windows\iun6002.exe
c:\windows\system32\d3d9caps.dat
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-09-28 do 2011-10-29 )))))))))))))))))))))))))))))))
.
.
2011-10-23 16:47 . 2011-10-23 16:47 -------- d-----w- C:\rsit
2011-10-20 19:57 . 2011-10-20 19:59 111872 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2011-10-20 19:46 . 2011-10-23 16:47 -------- d-----w- c:\program files\trend micro
2011-10-20 17:50 . 2011-10-29 16:23 -------- d-----w- c:\program files\Spybot - Search & Destroy
2011-10-20 16:58 . 2011-10-20 20:48 -------- d-----w- c:\documents and settings\XPC\Data aplikací\Ycys
2011-10-03 13:01 . 2011-10-03 13:01 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ATI
2011-10-03 12:57 . 2011-10-03 12:57 -------- d-----w- c:\program files\AMD APP
2011-10-03 12:33 . 2011-10-03 12:56 -------- d-----w- c:\program files\ATI Technologies
2011-10-03 12:17 . 2011-10-03 12:21 -------- d-----w- c:\program files\Uninstall Tool
2011-10-01 16:32 . 2011-10-01 16:32 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\ESET
2011-10-01 10:55 . 2011-10-01 10:55 -------- d-----w- c:\program files\ESET
2011-10-01 10:55 . 2011-10-01 10:55 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ESET
2011-10-01 09:51 . 2011-10-29 16:23 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Spybot - Search & Destroy
2011-10-01 09:08 . 2011-10-01 09:08 -------- d-----w- c:\documents and settings\XPC\Data aplikací\Malwarebytes
2011-10-01 09:08 . 2011-10-01 09:08 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2011-10-01 09:08 . 2011-10-01 09:34 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-10-01 09:08 . 2011-08-31 15:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-09-30 14:28 . 2011-10-01 09:35 -------- d-----w- c:\documents and settings\All Users\Data aplikací\oK15002JpKoO15002
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-14 09:47 . 2011-09-14 09:47 53760 ----a-w- c:\windows\system32\OVDecode.dll
2011-09-14 09:46 . 2011-09-14 09:46 13625856 ----a-w- c:\windows\system32\amdocl.dll
2011-09-14 09:38 . 2011-09-14 09:38 37376 ----a-w- c:\windows\system32\amdoclcl.dll
2011-09-08 18:24 . 2008-12-01 22:13 7180800 ----a-w- c:\windows\system32\drivers\ati2mtag.sys
2011-09-08 18:17 . 2010-12-28 11:55 311296 ----a-w- c:\windows\system32\atiiiexx.dll
2011-09-08 17:50 . 2010-12-28 11:55 57344 ----a-w- c:\windows\system32\aticalrt.dll
2011-09-08 17:50 . 2010-12-28 11:55 53248 ----a-w- c:\windows\system32\aticalcl.dll
2011-09-08 17:46 . 2010-12-28 11:55 5701632 ----a-w- c:\windows\system32\aticaldd.dll
2011-09-08 17:41 . 2010-12-28 11:55 18571264 ----a-w- c:\windows\system32\atioglxx.dll
2011-09-08 17:26 . 2010-12-28 11:55 466944 ----a-w- c:\windows\system32\ATIDEMGX.dll
2011-09-08 17:25 . 2008-12-01 20:27 3953280 ----a-w- c:\windows\system32\ati3duag.dll
2011-09-08 17:25 . 2008-12-01 20:51 303104 ----a-w- c:\windows\system32\ati2dvag.dll
2011-09-08 17:19 . 2011-01-26 21:47 956160 ----a-w- c:\windows\system32\ativvamv.dll
2011-09-08 17:09 . 2008-12-01 20:11 3174656 ----a-w- c:\windows\system32\ativvaxx.dll
2011-09-08 17:09 . 2010-12-28 11:55 212992 ----a-w- c:\windows\system32\atipdlxx.dll
2011-09-08 17:09 . 2010-12-28 11:55 155648 ----a-w- c:\windows\system32\Oemdspif.dll
2011-09-08 17:09 . 2010-12-28 11:55 26112 ----a-w- c:\windows\system32\Ati2mdxx.exe
2011-09-08 17:08 . 2010-12-28 11:55 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2011-09-08 17:08 . 2010-12-28 11:55 188416 ----a-w- c:\windows\system32\ati2evxx.dll
2011-09-08 17:07 . 2010-12-28 11:55 643072 ----a-w- c:\windows\system32\ati2evxx.exe
2011-09-08 17:06 . 2010-12-28 11:55 53248 ----a-w- c:\windows\system32\ATIDDC.DLL
2011-09-08 17:05 . 2010-12-28 11:55 151552 ----a-w- c:\windows\system32\atiapfxx.exe
2011-09-08 17:01 . 2010-12-28 11:55 704512 ----a-w- c:\windows\system32\atikvmag.dll
2011-09-08 17:00 . 2010-12-28 11:55 528384 ----a-w- c:\windows\system32\atiok3x2.dll
2011-09-08 16:58 . 2010-12-28 11:55 208896 ----a-w- c:\windows\system32\atiadlxx.dll
2011-09-08 16:58 . 2010-12-28 11:55 17408 ----a-w- c:\windows\system32\atitvo32.dll
2011-09-08 16:52 . 2008-12-01 19:45 876544 ----a-w- c:\windows\system32\ati2cqag.dll
2011-09-08 16:52 . 2010-12-28 11:55 65024 ----a-w- c:\windows\system32\atimpc32.dll
2011-09-08 16:52 . 2010-12-28 11:55 65024 ----a-w- c:\windows\system32\amdpcom32.dll
2011-09-08 16:52 . 2010-12-28 11:55 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2011-08-09 11:57 . 2011-08-09 11:57 154136 ----a-w- c:\windows\system32\drivers\eamon.sys
2011-08-04 07:20 . 2011-08-04 07:20 103112 ----a-w- c:\windows\system32\drivers\epfwtdir.sys
2011-08-04 07:20 . 2011-08-04 07:20 118104 ----a-w- c:\windows\system32\drivers\ehdrv.sys
2006-05-03 09:06 163328 --sh--r- c:\windows\system32\flvDX.dll
2007-02-21 10:47 31232 --sh--r- c:\windows\system32\msfDX.dll
2008-03-16 12:30 216064 --sh--r- c:\windows\system32\nbDX.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"H/PC Connection Agent"="c:\program files\Microsoft ActiveSync\wcescomm.exe" [2006-11-13 1289000]
"RGSC"="d:\rockstar games\Rockstar Games Social Club\RGSCLauncher.exe" [2008-11-14 305064]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2008-03-16 1040384]
"NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2008-11-06 570664]
"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-12-02 2221352]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-09-07 37296]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
"TkBellExe"="c:\program files\Real\RealPlayer\update\realsched.exe" [2011-01-09 274608]
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2004-12-10 49152]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-09-08 3076144]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-09-08 98304]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
InterVideo WinCinema Manager.lnk - c:\program files\InterVideo\Common\Bin\WinCinemaMgr.exe [2008-11-13 184320]
Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2011-7-22 434176]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoAutoUpdate"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\policies\microsoft\windows\windowsupdate\au]
"NoAutoUpdate"= 1 (0x1)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\Ubisoft\\Far Cry 2\\bin\\FarCry2.exe"=
"c:\\Program Files\\Ubisoft\\Far Cry 2\\bin\\FC2Launcher.exe"=
"c:\\Program Files\\Ubisoft\\Far Cry 2\\bin\\FC2Editor.exe"=
"c:\\Program Files\\ICQ6\\ICQ.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\InterVideo\\DVD5\\WinDVD.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"d:\\Rockstar Games\\Rockstar Games Social Club\\RGSCLauncher.exe"=
"d:\\Rockstar Games\\EFLC\\EFLC.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\program files\Microsoft ActiveSync\rapimgr.exe"= c:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"c:\program files\Microsoft ActiveSync\wcescomm.exe"= c:\program files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager
"c:\program files\Microsoft ActiveSync\WCESMgr.exe"= c:\program files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
.
R0 mv61xx;mv61xx;c:\windows\system32\drivers\mv61xx.sys [16.10.2008 21:48 150568]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [31.10.2008 18:12 691696]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [24.3.2011 14:36 218688]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [4.8.2011 9:20 118104]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [4.8.2011 9:20 103112]
R2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [8.9.2011 7:34 974944]
R2 Správce výběru OS;Aktivátor Správce výběru OS Acronis;c:\program files\Acronis\DiskDirector\OSS\reinstall_svc.exe [7.7.2010 17:17 2156952]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [5.1.2011 23:06 47360]
S2 Ca1528av;SPCA1528 Video Camera Service;c:\windows\system32\drivers\Ca1528av.sys [25.1.2011 21:55 516480]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [9.1.2011 16:18 136176]
S3 Bulk1528;SPCA1528 Still Camera Service;c:\windows\system32\drivers\Bulk1528.sys [25.1.2011 21:55 11648]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [9.1.2011 16:18 136176]
S3 TrueSight;TrueSight;c:\windows\system32\drivers\TrueSight.sys [20.10.2011 21:57 111872]
.
Obsah adresáře 'Naplánované úlohy'
.
2011-10-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-01-09 14:18]
.
2011-10-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-01-09 14:18]
.
2011-10-29 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-823518204-790525478-839522115-1003.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-11-05 10:33]
.
2011-10-29 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-823518204-790525478-839522115-1003.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-11-05 10:33]
.
.
------- Doplňkový sken -------
.
uStart Page = my.daemon-search.com
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
TCP: Interfaces\{0BF1738B-09E1-4578-AC20-F28F2406F9A1}: NameServer = 193.179.148.42
FF - ProfilePath - c:\documents and settings\XPC\Data aplikací\Mozilla\Firefox\Profiles\66qd2m8w.default\
FF - prefs.js: browser.search.selectedEngine - DAEMON Search
FF - prefs.js: browser.startup.homepage - hxxp://www.mydtzone.com/startpage|resource:/br ... properties
FF - prefs.js: network.proxy.type - 0
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
MSConfigStartUp-DAEMON Tools Lite - c:\program files\DAEMON Tools Lite\daemon.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-10-29 18:31
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-823518204-790525478-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{E3D7B9BA-746A-15F6-4CE3-ED3F32C397F1}*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
"jadplfpkiihjidbgnple"=hex:62,61,70,61,00,00
"jadplfpkiihjidbgnppe"=hex:62,61,64,62,00,00
"iadmokaplhcmifmahk"=hex:6b,61,6d,61,70,65,68,62,68,70,64,68,62,61,66,69,6d,6e,
64,66,6a,66,00,00
"hajmfekjklelfkmo"=hex:6b,61,6d,61,70,65,68,62,66,70,6a,68,69,63,65,67,6d,66,
6c,69,61,66,00,00
.
[HKEY_USERS\S-1-5-21-823518204-790525478-839522115-1003\Software\SecuROM\License information*]
"datasecu"=hex:d3,81,75,8a,dd,95,af,81,33,53,18,9c,a0,66,d2,6b,6f,10,36,e2,e4,
ec,12,44,a8,27,8a,ef,9d,ae,51,02,e8,e8,a3,6b,99,4e,6f,ee,1b,f1,7d,5c,e5,3a,\
"rkeysecu"=hex:08,bf,79,1a,7c,76,59,ac,6e,e4,82,1d,9a,25,ac,13
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(904)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
Celkový čas: 2011-10-29 18:32:19
ComboFix-quarantined-files.txt 2011-10-29 16:32
.
Před spuštěním: 7 072 522 240
Po spuštění: 7 067 648 000
.
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - 2B6B021A2ED163098644FD0E1197FE31
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.3327.2538 [GMT 2:00]
Spuštěný z: c:\documents and settings\XPC\Plocha\ComboFix.exe
AV: ESET NOD32 Antivirus 5.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\ehome\medctrro.exe
c:\windows\help\tours\htmltour\unlock_playing.htm
c:\windows\iun6002.exe
c:\windows\system32\d3d9caps.dat
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-09-28 do 2011-10-29 )))))))))))))))))))))))))))))))
.
.
2011-10-23 16:47 . 2011-10-23 16:47 -------- d-----w- C:\rsit
2011-10-20 19:57 . 2011-10-20 19:59 111872 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2011-10-20 19:46 . 2011-10-23 16:47 -------- d-----w- c:\program files\trend micro
2011-10-20 17:50 . 2011-10-29 16:23 -------- d-----w- c:\program files\Spybot - Search & Destroy
2011-10-20 16:58 . 2011-10-20 20:48 -------- d-----w- c:\documents and settings\XPC\Data aplikací\Ycys
2011-10-03 13:01 . 2011-10-03 13:01 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ATI
2011-10-03 12:57 . 2011-10-03 12:57 -------- d-----w- c:\program files\AMD APP
2011-10-03 12:33 . 2011-10-03 12:56 -------- d-----w- c:\program files\ATI Technologies
2011-10-03 12:17 . 2011-10-03 12:21 -------- d-----w- c:\program files\Uninstall Tool
2011-10-01 16:32 . 2011-10-01 16:32 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\ESET
2011-10-01 10:55 . 2011-10-01 10:55 -------- d-----w- c:\program files\ESET
2011-10-01 10:55 . 2011-10-01 10:55 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ESET
2011-10-01 09:51 . 2011-10-29 16:23 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Spybot - Search & Destroy
2011-10-01 09:08 . 2011-10-01 09:08 -------- d-----w- c:\documents and settings\XPC\Data aplikací\Malwarebytes
2011-10-01 09:08 . 2011-10-01 09:08 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2011-10-01 09:08 . 2011-10-01 09:34 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-10-01 09:08 . 2011-08-31 15:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-09-30 14:28 . 2011-10-01 09:35 -------- d-----w- c:\documents and settings\All Users\Data aplikací\oK15002JpKoO15002
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-14 09:47 . 2011-09-14 09:47 53760 ----a-w- c:\windows\system32\OVDecode.dll
2011-09-14 09:46 . 2011-09-14 09:46 13625856 ----a-w- c:\windows\system32\amdocl.dll
2011-09-14 09:38 . 2011-09-14 09:38 37376 ----a-w- c:\windows\system32\amdoclcl.dll
2011-09-08 18:24 . 2008-12-01 22:13 7180800 ----a-w- c:\windows\system32\drivers\ati2mtag.sys
2011-09-08 18:17 . 2010-12-28 11:55 311296 ----a-w- c:\windows\system32\atiiiexx.dll
2011-09-08 17:50 . 2010-12-28 11:55 57344 ----a-w- c:\windows\system32\aticalrt.dll
2011-09-08 17:50 . 2010-12-28 11:55 53248 ----a-w- c:\windows\system32\aticalcl.dll
2011-09-08 17:46 . 2010-12-28 11:55 5701632 ----a-w- c:\windows\system32\aticaldd.dll
2011-09-08 17:41 . 2010-12-28 11:55 18571264 ----a-w- c:\windows\system32\atioglxx.dll
2011-09-08 17:26 . 2010-12-28 11:55 466944 ----a-w- c:\windows\system32\ATIDEMGX.dll
2011-09-08 17:25 . 2008-12-01 20:27 3953280 ----a-w- c:\windows\system32\ati3duag.dll
2011-09-08 17:25 . 2008-12-01 20:51 303104 ----a-w- c:\windows\system32\ati2dvag.dll
2011-09-08 17:19 . 2011-01-26 21:47 956160 ----a-w- c:\windows\system32\ativvamv.dll
2011-09-08 17:09 . 2008-12-01 20:11 3174656 ----a-w- c:\windows\system32\ativvaxx.dll
2011-09-08 17:09 . 2010-12-28 11:55 212992 ----a-w- c:\windows\system32\atipdlxx.dll
2011-09-08 17:09 . 2010-12-28 11:55 155648 ----a-w- c:\windows\system32\Oemdspif.dll
2011-09-08 17:09 . 2010-12-28 11:55 26112 ----a-w- c:\windows\system32\Ati2mdxx.exe
2011-09-08 17:08 . 2010-12-28 11:55 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2011-09-08 17:08 . 2010-12-28 11:55 188416 ----a-w- c:\windows\system32\ati2evxx.dll
2011-09-08 17:07 . 2010-12-28 11:55 643072 ----a-w- c:\windows\system32\ati2evxx.exe
2011-09-08 17:06 . 2010-12-28 11:55 53248 ----a-w- c:\windows\system32\ATIDDC.DLL
2011-09-08 17:05 . 2010-12-28 11:55 151552 ----a-w- c:\windows\system32\atiapfxx.exe
2011-09-08 17:01 . 2010-12-28 11:55 704512 ----a-w- c:\windows\system32\atikvmag.dll
2011-09-08 17:00 . 2010-12-28 11:55 528384 ----a-w- c:\windows\system32\atiok3x2.dll
2011-09-08 16:58 . 2010-12-28 11:55 208896 ----a-w- c:\windows\system32\atiadlxx.dll
2011-09-08 16:58 . 2010-12-28 11:55 17408 ----a-w- c:\windows\system32\atitvo32.dll
2011-09-08 16:52 . 2008-12-01 19:45 876544 ----a-w- c:\windows\system32\ati2cqag.dll
2011-09-08 16:52 . 2010-12-28 11:55 65024 ----a-w- c:\windows\system32\atimpc32.dll
2011-09-08 16:52 . 2010-12-28 11:55 65024 ----a-w- c:\windows\system32\amdpcom32.dll
2011-09-08 16:52 . 2010-12-28 11:55 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2011-08-09 11:57 . 2011-08-09 11:57 154136 ----a-w- c:\windows\system32\drivers\eamon.sys
2011-08-04 07:20 . 2011-08-04 07:20 103112 ----a-w- c:\windows\system32\drivers\epfwtdir.sys
2011-08-04 07:20 . 2011-08-04 07:20 118104 ----a-w- c:\windows\system32\drivers\ehdrv.sys
2006-05-03 09:06 163328 --sh--r- c:\windows\system32\flvDX.dll
2007-02-21 10:47 31232 --sh--r- c:\windows\system32\msfDX.dll
2008-03-16 12:30 216064 --sh--r- c:\windows\system32\nbDX.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"H/PC Connection Agent"="c:\program files\Microsoft ActiveSync\wcescomm.exe" [2006-11-13 1289000]
"RGSC"="d:\rockstar games\Rockstar Games Social Club\RGSCLauncher.exe" [2008-11-14 305064]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2008-03-16 1040384]
"NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2008-11-06 570664]
"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-12-02 2221352]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-09-07 37296]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
"TkBellExe"="c:\program files\Real\RealPlayer\update\realsched.exe" [2011-01-09 274608]
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2004-12-10 49152]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-09-08 3076144]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-09-08 98304]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
InterVideo WinCinema Manager.lnk - c:\program files\InterVideo\Common\Bin\WinCinemaMgr.exe [2008-11-13 184320]
Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2011-7-22 434176]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoAutoUpdate"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\policies\microsoft\windows\windowsupdate\au]
"NoAutoUpdate"= 1 (0x1)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\Ubisoft\\Far Cry 2\\bin\\FarCry2.exe"=
"c:\\Program Files\\Ubisoft\\Far Cry 2\\bin\\FC2Launcher.exe"=
"c:\\Program Files\\Ubisoft\\Far Cry 2\\bin\\FC2Editor.exe"=
"c:\\Program Files\\ICQ6\\ICQ.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\InterVideo\\DVD5\\WinDVD.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"d:\\Rockstar Games\\Rockstar Games Social Club\\RGSCLauncher.exe"=
"d:\\Rockstar Games\\EFLC\\EFLC.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\program files\Microsoft ActiveSync\rapimgr.exe"= c:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"c:\program files\Microsoft ActiveSync\wcescomm.exe"= c:\program files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager
"c:\program files\Microsoft ActiveSync\WCESMgr.exe"= c:\program files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
.
R0 mv61xx;mv61xx;c:\windows\system32\drivers\mv61xx.sys [16.10.2008 21:48 150568]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [31.10.2008 18:12 691696]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [24.3.2011 14:36 218688]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [4.8.2011 9:20 118104]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [4.8.2011 9:20 103112]
R2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [8.9.2011 7:34 974944]
R2 Správce výběru OS;Aktivátor Správce výběru OS Acronis;c:\program files\Acronis\DiskDirector\OSS\reinstall_svc.exe [7.7.2010 17:17 2156952]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [5.1.2011 23:06 47360]
S2 Ca1528av;SPCA1528 Video Camera Service;c:\windows\system32\drivers\Ca1528av.sys [25.1.2011 21:55 516480]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [9.1.2011 16:18 136176]
S3 Bulk1528;SPCA1528 Still Camera Service;c:\windows\system32\drivers\Bulk1528.sys [25.1.2011 21:55 11648]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [9.1.2011 16:18 136176]
S3 TrueSight;TrueSight;c:\windows\system32\drivers\TrueSight.sys [20.10.2011 21:57 111872]
.
Obsah adresáře 'Naplánované úlohy'
.
2011-10-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-01-09 14:18]
.
2011-10-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-01-09 14:18]
.
2011-10-29 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-823518204-790525478-839522115-1003.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-11-05 10:33]
.
2011-10-29 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-823518204-790525478-839522115-1003.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-11-05 10:33]
.
.
------- Doplňkový sken -------
.
uStart Page = my.daemon-search.com
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
TCP: Interfaces\{0BF1738B-09E1-4578-AC20-F28F2406F9A1}: NameServer = 193.179.148.42
FF - ProfilePath - c:\documents and settings\XPC\Data aplikací\Mozilla\Firefox\Profiles\66qd2m8w.default\
FF - prefs.js: browser.search.selectedEngine - DAEMON Search
FF - prefs.js: browser.startup.homepage - hxxp://www.mydtzone.com/startpage|resource:/br ... properties
FF - prefs.js: network.proxy.type - 0
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
MSConfigStartUp-DAEMON Tools Lite - c:\program files\DAEMON Tools Lite\daemon.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-10-29 18:31
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-823518204-790525478-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{E3D7B9BA-746A-15F6-4CE3-ED3F32C397F1}*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
"jadplfpkiihjidbgnple"=hex:62,61,70,61,00,00
"jadplfpkiihjidbgnppe"=hex:62,61,64,62,00,00
"iadmokaplhcmifmahk"=hex:6b,61,6d,61,70,65,68,62,68,70,64,68,62,61,66,69,6d,6e,
64,66,6a,66,00,00
"hajmfekjklelfkmo"=hex:6b,61,6d,61,70,65,68,62,66,70,6a,68,69,63,65,67,6d,66,
6c,69,61,66,00,00
.
[HKEY_USERS\S-1-5-21-823518204-790525478-839522115-1003\Software\SecuROM\License information*]
"datasecu"=hex:d3,81,75,8a,dd,95,af,81,33,53,18,9c,a0,66,d2,6b,6f,10,36,e2,e4,
ec,12,44,a8,27,8a,ef,9d,ae,51,02,e8,e8,a3,6b,99,4e,6f,ee,1b,f1,7d,5c,e5,3a,\
"rkeysecu"=hex:08,bf,79,1a,7c,76,59,ac,6e,e4,82,1d,9a,25,ac,13
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(904)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
Celkový čas: 2011-10-29 18:32:19
ComboFix-quarantined-files.txt 2011-10-29 16:32
.
Před spuštěním: 7 072 522 240
Po spuštění: 7 067 648 000
.
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - 2B6B021A2ED163098644FD0E1197FE31
Re: Win32/Spy.Zbot.ZR
Pokud nemate, tak presunte Combofix na plochu
- Spustte poznamkovy blok (Start-spustit-notepad)
- Zkopirujte skript nize
Kód: Vybrat vše
KillAll:: Folder:: c:\program files\Spybot - Search & Destroy c:\documents and settings\All Users\Data aplikací\oK15002JpKoO15002 c:\documents and settings\All Users\Data aplikací\Spybot - Search & Destroy C:\Documents and Settings\XPC\Data aplikací\Uxymdy c:\documents and settings\XPC\Data aplikací\Ycys Registry:: [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RGSC"=- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NeroFilterCheck"=- "NBKeyScan"=- "Adobe Reader Speed Launcher"=- "Adobe ARM"=- "TkBellExe"=- [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "26675:TCP"=- [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite] Driver:: gupdate gupdatem File:: C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-823518204-790525478-839522115-1003.job C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-823518204-790525478-839522115-1003.job DDS:: uStart Page = my.daemon-search.com Firefox:: FF - ProfilePath - c:\documents and settings\XPC\Data aplikací\Mozilla\Firefox\Profiles\66qd2m8w.default\ FF - prefs.js: browser.search.selectedEngine - DAEMON Search FF - prefs.js: browser.startup.homepage - hxxp://www.mydtzone.com/startpage|resou ... properties FF - user.js: network.cookie.cookieBehavior - 0 FF - user.js: privacy.clearOnShutdown.cookies - false FF - user.js: security.warn_viewing_mixed - false FF - user.js: security.warn_viewing_mixed.show_once - false FF - user.js: security.warn_submit_insecure - false FF - user.js: security.warn_submit_insecure.show_once - false RegNull:: [HKEY_USERS\S-1-5-21-823518204-790525478-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{E3D7B9BA-746A-15F6-4CE3-ED3F32C397F1}*] [HKEY_USERS\S-1-5-21-823518204-790525478-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{E3D7B9BA-746A-15F6-4CE3-ED3F32C397F1}*] Reboot::- Ulozte vytvoreny TXT jako CFScript.txt
- Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
- Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte
Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Win32/Spy.Zbot.ZR
ComboFix 11-11-03.01 - XPC 03.11.2011 16:25:35.3.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.3327.2711 [GMT 1:00]
Spuštěný z: c:\documents and settings\XPC\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\XPC\Plocha\CFScript.txt
AV: ESET NOD32 Antivirus 5.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.
FILE ::
"c:\windows\tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\tasks\RealUpgradeLogonTaskS-1-5-21-823518204-790525478-839522115-1003.job"
"c:\windows\tasks\RealUpgradeScheduledTaskS-1-5-21-823518204-790525478-839522115-1003.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\tasks\RealUpgradeLogonTaskS-1-5-21-823518204-790525478-839522115-1003.job
c:\windows\tasks\RealUpgradeScheduledTaskS-1-5-21-823518204-790525478-839522115-1003.job
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-03 do 2011-11-03 )))))))))))))))))))))))))))))))
.
.
2011-10-23 16:47 . 2011-10-23 16:47 -------- d-----w- C:\rsit
2011-10-20 19:57 . 2011-10-20 19:59 111872 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2011-10-20 19:46 . 2011-10-23 16:47 -------- d-----w- c:\program files\trend micro
2011-10-20 16:58 . 2011-10-20 20:48 -------- d-----w- c:\documents and settings\XPC\Data aplikací\Ycys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-14 09:47 . 2011-09-14 09:47 53760 ----a-w- c:\windows\system32\OVDecode.dll
2011-09-14 09:46 . 2011-09-14 09:46 13625856 ----a-w- c:\windows\system32\amdocl.dll
2011-09-14 09:38 . 2011-09-14 09:38 37376 ----a-w- c:\windows\system32\amdoclcl.dll
2011-09-08 18:24 . 2008-12-01 22:13 7180800 ----a-w- c:\windows\system32\drivers\ati2mtag.sys
2011-09-08 18:17 . 2010-12-28 11:55 311296 ----a-w- c:\windows\system32\atiiiexx.dll
2011-09-08 17:50 . 2010-12-28 11:55 57344 ----a-w- c:\windows\system32\aticalrt.dll
2011-09-08 17:50 . 2010-12-28 11:55 53248 ----a-w- c:\windows\system32\aticalcl.dll
2011-09-08 17:46 . 2010-12-28 11:55 5701632 ----a-w- c:\windows\system32\aticaldd.dll
2011-09-08 17:41 . 2010-12-28 11:55 18571264 ----a-w- c:\windows\system32\atioglxx.dll
2011-09-08 17:26 . 2010-12-28 11:55 466944 ----a-w- c:\windows\system32\ATIDEMGX.dll
2011-09-08 17:25 . 2008-12-01 20:27 3953280 ----a-w- c:\windows\system32\ati3duag.dll
2011-09-08 17:25 . 2008-12-01 20:51 303104 ----a-w- c:\windows\system32\ati2dvag.dll
2011-09-08 17:19 . 2011-01-26 21:47 956160 ----a-w- c:\windows\system32\ativvamv.dll
2011-09-08 17:09 . 2008-12-01 20:11 3174656 ----a-w- c:\windows\system32\ativvaxx.dll
2011-09-08 17:09 . 2010-12-28 11:55 212992 ----a-w- c:\windows\system32\atipdlxx.dll
2011-09-08 17:09 . 2010-12-28 11:55 155648 ----a-w- c:\windows\system32\Oemdspif.dll
2011-09-08 17:09 . 2010-12-28 11:55 26112 ----a-w- c:\windows\system32\Ati2mdxx.exe
2011-09-08 17:08 . 2010-12-28 11:55 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2011-09-08 17:08 . 2010-12-28 11:55 188416 ----a-w- c:\windows\system32\ati2evxx.dll
2011-09-08 17:07 . 2010-12-28 11:55 643072 ----a-w- c:\windows\system32\ati2evxx.exe
2011-09-08 17:06 . 2010-12-28 11:55 53248 ----a-w- c:\windows\system32\ATIDDC.DLL
2011-09-08 17:05 . 2010-12-28 11:55 151552 ----a-w- c:\windows\system32\atiapfxx.exe
2011-09-08 17:01 . 2010-12-28 11:55 704512 ----a-w- c:\windows\system32\atikvmag.dll
2011-09-08 17:00 . 2010-12-28 11:55 528384 ----a-w- c:\windows\system32\atiok3x2.dll
2011-09-08 16:58 . 2010-12-28 11:55 208896 ----a-w- c:\windows\system32\atiadlxx.dll
2011-09-08 16:58 . 2010-12-28 11:55 17408 ----a-w- c:\windows\system32\atitvo32.dll
2011-09-08 16:52 . 2008-12-01 19:45 876544 ----a-w- c:\windows\system32\ati2cqag.dll
2011-09-08 16:52 . 2010-12-28 11:55 65024 ----a-w- c:\windows\system32\atimpc32.dll
2011-09-08 16:52 . 2010-12-28 11:55 65024 ----a-w- c:\windows\system32\amdpcom32.dll
2011-09-08 16:52 . 2010-12-28 11:55 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2011-08-31 15:00 . 2011-10-01 09:08 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-08-09 11:57 . 2011-08-09 11:57 154136 ----a-w- c:\windows\system32\drivers\eamon.sys
2006-05-03 09:06 163328 --sh--r- c:\windows\system32\flvDX.dll
2007-02-21 10:47 31232 --sh--r- c:\windows\system32\msfDX.dll
2008-03-16 12:30 216064 --sh--r- c:\windows\system32\nbDX.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-10-29_16.31.32 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-11-03 15:30 . 2011-11-03 15:30 16384 c:\windows\temp\Perflib_Perfdata_74c.dat
- 2001-10-25 14:00 . 2011-10-29 16:11 71002 c:\windows\system32\perfc009.dat
+ 2001-10-25 14:00 . 2011-11-03 15:23 71002 c:\windows\system32\perfc009.dat
- 2001-10-25 14:00 . 2011-10-29 16:11 82462 c:\windows\system32\perfc005.dat
+ 2001-10-25 14:00 . 2011-11-03 15:23 82462 c:\windows\system32\perfc005.dat
+ 2001-10-25 14:00 . 2011-11-03 15:23 440684 c:\windows\system32\perfh009.dat
- 2001-10-25 14:00 . 2011-10-29 16:11 440684 c:\windows\system32\perfh009.dat
- 2001-10-25 14:00 . 2011-10-29 16:11 437062 c:\windows\system32\perfh005.dat
+ 2001-10-25 14:00 . 2011-11-03 15:23 437062 c:\windows\system32\perfh005.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"H/PC Connection Agent"="c:\program files\Microsoft ActiveSync\wcescomm.exe" [2006-11-13 1289000]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2008-03-16 1040384]
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2004-12-10 49152]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-09-08 3076144]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-09-08 98304]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
InterVideo WinCinema Manager.lnk - c:\program files\InterVideo\Common\Bin\WinCinemaMgr.exe [2008-11-13 184320]
Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2011-7-22 434176]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoAutoUpdate"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\policies\microsoft\windows\windowsupdate\au]
"NoAutoUpdate"= 1 (0x1)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\Ubisoft\\Far Cry 2\\bin\\FarCry2.exe"=
"c:\\Program Files\\Ubisoft\\Far Cry 2\\bin\\FC2Launcher.exe"=
"c:\\Program Files\\Ubisoft\\Far Cry 2\\bin\\FC2Editor.exe"=
"c:\\Program Files\\ICQ6\\ICQ.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\InterVideo\\DVD5\\WinDVD.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"d:\\Rockstar Games\\Rockstar Games Social Club\\RGSCLauncher.exe"=
"d:\\Rockstar Games\\EFLC\\EFLC.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\program files\Microsoft ActiveSync\rapimgr.exe"= c:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"c:\program files\Microsoft ActiveSync\wcescomm.exe"= c:\program files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager
"c:\program files\Microsoft ActiveSync\WCESMgr.exe"= c:\program files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
.
R0 mv61xx;mv61xx;c:\windows\system32\drivers\mv61xx.sys [16.10.2008 20:48 150568]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [31.10.2008 17:12 691696]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [24.3.2011 13:36 218688]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [4.8.2011 8:20 118104]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [4.8.2011 8:20 103112]
R2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [8.9.2011 6:34 974944]
R2 Správce výběru OS;Aktivátor Správce výběru OS Acronis;c:\program files\Acronis\DiskDirector\OSS\reinstall_svc.exe [7.7.2010 16:17 2156952]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [5.1.2011 22:06 47360]
S2 Ca1528av;SPCA1528 Video Camera Service;c:\windows\system32\drivers\Ca1528av.sys [25.1.2011 20:55 516480]
S3 Bulk1528;SPCA1528 Still Camera Service;c:\windows\system32\drivers\Bulk1528.sys [25.1.2011 20:55 11648]
S3 TrueSight;TrueSight;c:\windows\system32\drivers\TrueSight.sys [20.10.2011 20:57 111872]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
TCP: Interfaces\{0BF1738B-09E1-4578-AC20-F28F2406F9A1}: NameServer = 193.179.148.42
FF - ProfilePath - c:\documents and settings\XPC\Data aplikací\Mozilla\Firefox\Profiles\66qd2m8w.default\
FF - prefs.js: network.proxy.type - 0
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-03 16:30
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-823518204-790525478-839522115-1003\Software\SecuROM\License information*]
"datasecu"=hex:d3,81,75,8a,dd,95,af,81,33,53,18,9c,a0,66,d2,6b,6f,10,36,e2,e4,
ec,12,44,a8,27,8a,ef,9d,ae,51,02,e8,e8,a3,6b,99,4e,6f,ee,1b,f1,7d,5c,e5,3a,\
"rkeysecu"=hex:08,bf,79,1a,7c,76,59,ac,6e,e4,82,1d,9a,25,ac,13
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(908)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
- - - - - - - > 'explorer.exe'(1528)
c:\program files\Logitech\SetPoint\GameHook.dll
c:\program files\Logitech\SetPoint\lgscroll.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Nero\Nero8\Nero BackItUp\NBService.exe
c:\windows\system32\IoctlSvc.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\system32\wscntfy.exe
c:\progra~1\MICROS~4\rapimgr.exe
c:\program files\Common Files\Logitech\KHAL\KHALMNPR.EXE
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
.
**************************************************************************
.
Celkový čas: 2011-11-03 16:32:17 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-11-03 15:32
ComboFix2.txt 2011-11-03 15:22
ComboFix3.txt 2011-10-29 16:32
.
Před spuštěním: 4 478 263 296
Po spuštění: 4 458 905 600
.
- - End Of File - - 3EB58D220C4DF27F66918325F29B7115
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.3327.2711 [GMT 1:00]
Spuštěný z: c:\documents and settings\XPC\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\XPC\Plocha\CFScript.txt
AV: ESET NOD32 Antivirus 5.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.
FILE ::
"c:\windows\tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\tasks\RealUpgradeLogonTaskS-1-5-21-823518204-790525478-839522115-1003.job"
"c:\windows\tasks\RealUpgradeScheduledTaskS-1-5-21-823518204-790525478-839522115-1003.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\tasks\RealUpgradeLogonTaskS-1-5-21-823518204-790525478-839522115-1003.job
c:\windows\tasks\RealUpgradeScheduledTaskS-1-5-21-823518204-790525478-839522115-1003.job
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-03 do 2011-11-03 )))))))))))))))))))))))))))))))
.
.
2011-10-23 16:47 . 2011-10-23 16:47 -------- d-----w- C:\rsit
2011-10-20 19:57 . 2011-10-20 19:59 111872 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2011-10-20 19:46 . 2011-10-23 16:47 -------- d-----w- c:\program files\trend micro
2011-10-20 16:58 . 2011-10-20 20:48 -------- d-----w- c:\documents and settings\XPC\Data aplikací\Ycys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-14 09:47 . 2011-09-14 09:47 53760 ----a-w- c:\windows\system32\OVDecode.dll
2011-09-14 09:46 . 2011-09-14 09:46 13625856 ----a-w- c:\windows\system32\amdocl.dll
2011-09-14 09:38 . 2011-09-14 09:38 37376 ----a-w- c:\windows\system32\amdoclcl.dll
2011-09-08 18:24 . 2008-12-01 22:13 7180800 ----a-w- c:\windows\system32\drivers\ati2mtag.sys
2011-09-08 18:17 . 2010-12-28 11:55 311296 ----a-w- c:\windows\system32\atiiiexx.dll
2011-09-08 17:50 . 2010-12-28 11:55 57344 ----a-w- c:\windows\system32\aticalrt.dll
2011-09-08 17:50 . 2010-12-28 11:55 53248 ----a-w- c:\windows\system32\aticalcl.dll
2011-09-08 17:46 . 2010-12-28 11:55 5701632 ----a-w- c:\windows\system32\aticaldd.dll
2011-09-08 17:41 . 2010-12-28 11:55 18571264 ----a-w- c:\windows\system32\atioglxx.dll
2011-09-08 17:26 . 2010-12-28 11:55 466944 ----a-w- c:\windows\system32\ATIDEMGX.dll
2011-09-08 17:25 . 2008-12-01 20:27 3953280 ----a-w- c:\windows\system32\ati3duag.dll
2011-09-08 17:25 . 2008-12-01 20:51 303104 ----a-w- c:\windows\system32\ati2dvag.dll
2011-09-08 17:19 . 2011-01-26 21:47 956160 ----a-w- c:\windows\system32\ativvamv.dll
2011-09-08 17:09 . 2008-12-01 20:11 3174656 ----a-w- c:\windows\system32\ativvaxx.dll
2011-09-08 17:09 . 2010-12-28 11:55 212992 ----a-w- c:\windows\system32\atipdlxx.dll
2011-09-08 17:09 . 2010-12-28 11:55 155648 ----a-w- c:\windows\system32\Oemdspif.dll
2011-09-08 17:09 . 2010-12-28 11:55 26112 ----a-w- c:\windows\system32\Ati2mdxx.exe
2011-09-08 17:08 . 2010-12-28 11:55 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2011-09-08 17:08 . 2010-12-28 11:55 188416 ----a-w- c:\windows\system32\ati2evxx.dll
2011-09-08 17:07 . 2010-12-28 11:55 643072 ----a-w- c:\windows\system32\ati2evxx.exe
2011-09-08 17:06 . 2010-12-28 11:55 53248 ----a-w- c:\windows\system32\ATIDDC.DLL
2011-09-08 17:05 . 2010-12-28 11:55 151552 ----a-w- c:\windows\system32\atiapfxx.exe
2011-09-08 17:01 . 2010-12-28 11:55 704512 ----a-w- c:\windows\system32\atikvmag.dll
2011-09-08 17:00 . 2010-12-28 11:55 528384 ----a-w- c:\windows\system32\atiok3x2.dll
2011-09-08 16:58 . 2010-12-28 11:55 208896 ----a-w- c:\windows\system32\atiadlxx.dll
2011-09-08 16:58 . 2010-12-28 11:55 17408 ----a-w- c:\windows\system32\atitvo32.dll
2011-09-08 16:52 . 2008-12-01 19:45 876544 ----a-w- c:\windows\system32\ati2cqag.dll
2011-09-08 16:52 . 2010-12-28 11:55 65024 ----a-w- c:\windows\system32\atimpc32.dll
2011-09-08 16:52 . 2010-12-28 11:55 65024 ----a-w- c:\windows\system32\amdpcom32.dll
2011-09-08 16:52 . 2010-12-28 11:55 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2011-08-31 15:00 . 2011-10-01 09:08 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-08-09 11:57 . 2011-08-09 11:57 154136 ----a-w- c:\windows\system32\drivers\eamon.sys
2006-05-03 09:06 163328 --sh--r- c:\windows\system32\flvDX.dll
2007-02-21 10:47 31232 --sh--r- c:\windows\system32\msfDX.dll
2008-03-16 12:30 216064 --sh--r- c:\windows\system32\nbDX.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-10-29_16.31.32 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-11-03 15:30 . 2011-11-03 15:30 16384 c:\windows\temp\Perflib_Perfdata_74c.dat
- 2001-10-25 14:00 . 2011-10-29 16:11 71002 c:\windows\system32\perfc009.dat
+ 2001-10-25 14:00 . 2011-11-03 15:23 71002 c:\windows\system32\perfc009.dat
- 2001-10-25 14:00 . 2011-10-29 16:11 82462 c:\windows\system32\perfc005.dat
+ 2001-10-25 14:00 . 2011-11-03 15:23 82462 c:\windows\system32\perfc005.dat
+ 2001-10-25 14:00 . 2011-11-03 15:23 440684 c:\windows\system32\perfh009.dat
- 2001-10-25 14:00 . 2011-10-29 16:11 440684 c:\windows\system32\perfh009.dat
- 2001-10-25 14:00 . 2011-10-29 16:11 437062 c:\windows\system32\perfh005.dat
+ 2001-10-25 14:00 . 2011-11-03 15:23 437062 c:\windows\system32\perfh005.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"H/PC Connection Agent"="c:\program files\Microsoft ActiveSync\wcescomm.exe" [2006-11-13 1289000]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2008-03-16 1040384]
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2004-12-10 49152]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-09-08 3076144]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-09-08 98304]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
InterVideo WinCinema Manager.lnk - c:\program files\InterVideo\Common\Bin\WinCinemaMgr.exe [2008-11-13 184320]
Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2011-7-22 434176]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoAutoUpdate"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\policies\microsoft\windows\windowsupdate\au]
"NoAutoUpdate"= 1 (0x1)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\Ubisoft\\Far Cry 2\\bin\\FarCry2.exe"=
"c:\\Program Files\\Ubisoft\\Far Cry 2\\bin\\FC2Launcher.exe"=
"c:\\Program Files\\Ubisoft\\Far Cry 2\\bin\\FC2Editor.exe"=
"c:\\Program Files\\ICQ6\\ICQ.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\InterVideo\\DVD5\\WinDVD.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"d:\\Rockstar Games\\Rockstar Games Social Club\\RGSCLauncher.exe"=
"d:\\Rockstar Games\\EFLC\\EFLC.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\program files\Microsoft ActiveSync\rapimgr.exe"= c:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"c:\program files\Microsoft ActiveSync\wcescomm.exe"= c:\program files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager
"c:\program files\Microsoft ActiveSync\WCESMgr.exe"= c:\program files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
.
R0 mv61xx;mv61xx;c:\windows\system32\drivers\mv61xx.sys [16.10.2008 20:48 150568]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [31.10.2008 17:12 691696]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [24.3.2011 13:36 218688]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [4.8.2011 8:20 118104]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [4.8.2011 8:20 103112]
R2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [8.9.2011 6:34 974944]
R2 Správce výběru OS;Aktivátor Správce výběru OS Acronis;c:\program files\Acronis\DiskDirector\OSS\reinstall_svc.exe [7.7.2010 16:17 2156952]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [5.1.2011 22:06 47360]
S2 Ca1528av;SPCA1528 Video Camera Service;c:\windows\system32\drivers\Ca1528av.sys [25.1.2011 20:55 516480]
S3 Bulk1528;SPCA1528 Still Camera Service;c:\windows\system32\drivers\Bulk1528.sys [25.1.2011 20:55 11648]
S3 TrueSight;TrueSight;c:\windows\system32\drivers\TrueSight.sys [20.10.2011 20:57 111872]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
TCP: Interfaces\{0BF1738B-09E1-4578-AC20-F28F2406F9A1}: NameServer = 193.179.148.42
FF - ProfilePath - c:\documents and settings\XPC\Data aplikací\Mozilla\Firefox\Profiles\66qd2m8w.default\
FF - prefs.js: network.proxy.type - 0
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-03 16:30
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-823518204-790525478-839522115-1003\Software\SecuROM\License information*]
"datasecu"=hex:d3,81,75,8a,dd,95,af,81,33,53,18,9c,a0,66,d2,6b,6f,10,36,e2,e4,
ec,12,44,a8,27,8a,ef,9d,ae,51,02,e8,e8,a3,6b,99,4e,6f,ee,1b,f1,7d,5c,e5,3a,\
"rkeysecu"=hex:08,bf,79,1a,7c,76,59,ac,6e,e4,82,1d,9a,25,ac,13
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(908)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
- - - - - - - > 'explorer.exe'(1528)
c:\program files\Logitech\SetPoint\GameHook.dll
c:\program files\Logitech\SetPoint\lgscroll.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Nero\Nero8\Nero BackItUp\NBService.exe
c:\windows\system32\IoctlSvc.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\system32\wscntfy.exe
c:\progra~1\MICROS~4\rapimgr.exe
c:\program files\Common Files\Logitech\KHAL\KHALMNPR.EXE
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
.
**************************************************************************
.
Celkový čas: 2011-11-03 16:32:17 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-11-03 15:32
ComboFix2.txt 2011-11-03 15:22
ComboFix3.txt 2011-10-29 16:32
.
Před spuštěním: 4 478 263 296
Po spuštění: 4 458 905 600
.
- - End Of File - - 3EB58D220C4DF27F66918325F29B7115
Přispějete na provoz fóra?