Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o pomoc, vir Rootkit.Agent.NUS Trojský kůň
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o pomoc, vir Rootkit.Agent.NUS Trojský kůň
nahrazeno... zkusit znovu asi zapnout že???
Re: Prosím o pomoc, vir Rootkit.Agent.NUS Trojský kůň
Pořád to hlásí, že systém nemůže najít uvedený soubor...
Re: Prosím o pomoc, vir Rootkit.Agent.NUS Trojský kůň
Ahoji 
jak bylo podle té první metody: Nástroje pro správu v Ovládacích panelech - služby - šifrování (automaticky), tak já tam to šifrování vůbec nemám... a to jsem se dívala na jiný pc se stejným operačním systémem a tam to šifrování bylo... tak jestli to nemá nějakou sovislost?
a ty ostatní dvě jsem zkoušela... a nepomohlo to...
jak bylo podle té první metody: Nástroje pro správu v Ovládacích panelech - služby - šifrování (automaticky), tak já tam to šifrování vůbec nemám... a to jsem se dívala na jiný pc se stejným operačním systémem a tam to šifrování bylo... tak jestli to nemá nějakou sovislost?
a ty ostatní dvě jsem zkoušela... a nepomohlo to...
Re: Prosím o pomoc, vir Rootkit.Agent.NUS Trojský kůň
Tak ten soubor jsem tam našla... mám ho tam i tak naimportovat???
Re: Prosím o pomoc, vir Rootkit.Agent.NUS Trojský kůň
Naimportováno...
Re: Prosím o pomoc, vir Rootkit.Agent.NUS Trojský kůň
Tak pořád to nejde spustit... háže to ty samé hlášky...
ale ta služba šifrování už tam je...
ale ta služba šifrování už tam je...
Re: Prosím o pomoc, vir Rootkit.Agent.NUS Trojský kůň
ComboFix 11-11-28.02 - OEM 28.11.2011 16:56:36.11.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1014.484 [GMT 1:00]
Spuštěný z: c:\documents and settings\OEM\Plocha\ComboFix.exe
AV: ESET NOD32 Antivirus 5.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-28 do 2011-11-28 )))))))))))))))))))))))))))))))
.
.
2011-11-28 13:49 . 2011-11-28 15:55 -------- d-----w- c:\windows\system32\CatRoot2
2011-11-27 16:33 . 2011-11-27 16:33 -------- d-----w- c:\documents and settings\OEM\Data aplikací\Process Hacker 2
2011-11-27 11:45 . 2011-11-27 11:45 -------- d-----w- c:\program files\Process Hacker 2
2011-11-26 17:46 . 2011-11-26 17:46 -------- d-----w- c:\documents and settings\OEM\Data aplikací\PCDr
2011-11-26 17:12 . 2008-05-07 06:38 90624 ----a-w- c:\windows\system32\nmwcdcls.dll
2011-11-26 17:12 . 2011-11-26 17:12 -------- d-----w- c:\program files\Nokia
2011-11-26 17:11 . 2008-08-26 09:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys
2011-11-26 17:11 . 2011-11-26 17:11 -------- d-----w- c:\program files\PC Connectivity Solution
2011-11-26 17:11 . 2011-11-26 17:11 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Installations
2011-11-26 15:22 . 2008-02-08 08:46 57408 ------w- c:\windows\system32\drivers\wsimd.sys
2011-11-26 15:22 . 2009-05-19 10:41 254022 ----a-w- c:\windows\system32\wsfwDS.dll
2011-11-26 15:22 . 2009-05-19 10:41 249924 ----a-w- c:\windows\system32\wsimd.dll
2011-11-26 15:22 . 2009-05-19 10:23 82017 ----a-r- c:\windows\system32\dsaNac.dll
2011-11-26 15:22 . 2009-05-19 10:23 1269854 ----a-r- c:\windows\system32\dsa.dll
2011-11-26 15:22 . 2009-04-03 10:18 1347168 ----a-w- c:\windows\system32\athw.sys
2011-11-26 15:22 . 2008-02-08 08:46 57408 ----a-w- c:\windows\system32\wsimd.sys
2011-11-26 15:22 . 2006-08-07 13:17 118784 ----a-w- c:\windows\system32\ATHCFG10.DLL
2011-11-26 14:23 . 2011-11-26 14:23 -------- d-----w- c:\program files\Common Files\Intel
2011-11-26 14:23 . 2011-11-26 14:23 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Intel
2011-11-25 23:25 . 2011-11-26 14:13 376832 ----a-w- c:\windows\system32\AegisI5Installer.exe
2011-11-25 11:16 . 2011-11-25 11:16 -------- d-----w- c:\documents and settings\NetworkService\Data aplikací\Intel
2011-11-25 11:16 . 2011-11-25 11:16 -------- d-----w- c:\documents and settings\LocalService\Data aplikací\Intel
2011-11-25 11:15 . 2011-11-25 11:15 -------- d-----w- c:\documents and settings\OEM\Data aplikací\Intel
2011-11-24 22:45 . 2011-11-24 22:45 -------- d-----w- C:\rsit
2011-11-24 22:13 . 2007-02-27 10:09 36400 ----a-w- c:\windows\system32\ibmpmsvc.exe
2011-11-24 22:13 . 2007-01-24 09:27 67960 ----a-w- c:\windows\system32\drivers\btwusb.sys
2011-11-24 12:19 . 2007-01-30 03:05 108080 ----a-w- c:\windows\system32\IPSSVC.EXE
2011-11-24 07:57 . 2008-04-14 07:51 155136 ------w- c:\windows\system32\mssha.dll
2011-11-24 07:53 . 2011-11-24 07:58 -------- d-----w- c:\windows\ServicePackFiles
2011-11-24 07:45 . 2006-12-28 23:31 19569 ----a-w- c:\windows\002734_.tmp
2011-11-23 21:58 . 2011-11-23 21:58 -------- d-----w- c:\documents and settings\OEM\Data aplikací\Malwarebytes
2011-11-23 21:58 . 2011-11-23 21:58 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2011-11-20 23:49 . 2008-04-14 07:52 78848 ----a-w- c:\windows\system32\msiexec.exe
2011-11-20 23:49 . 2008-06-20 11:40 138496 ----a-w- c:\windows\system32\drivers\afd.sys
2011-11-20 10:31 . 2011-11-20 10:31 35712 ----a-w- c:\windows\system32\drivers\BlackBox.sys
2011-11-19 13:37 . 2011-11-19 13:37 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ESET
2011-11-18 11:22 . 2011-11-17 22:57 133208 ----a-w- c:\windows\system32\drivers\10418741.sys
2011-11-17 20:38 . 2011-11-17 22:57 133208 ----a-w- c:\windows\system32\drivers\44042542.sys
2011-11-17 16:38 . 2011-11-27 08:38 -------- d-----w- c:\program files\trend micro
2011-11-17 14:59 . 2011-11-18 08:19 -------- d-----w- c:\documents and settings\OEM\Data aplikací\AVI ReComp
2011-11-17 14:58 . 2011-11-17 14:58 -------- d-----w- c:\program files\Gabest
2011-11-17 14:58 . 2011-11-17 14:58 -------- d-----w- c:\program files\Xvid
2011-11-17 14:57 . 2011-11-17 14:57 -------- d-----w- c:\program files\AviSynth 2.5
2011-11-17 14:54 . 2011-11-17 14:58 -------- d-----w- c:\program files\AVI ReComp
2011-11-17 14:45 . 2011-11-17 14:45 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\ESET
2011-11-17 11:55 . 2011-11-17 11:55 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\ESET
2011-11-17 11:48 . 2011-11-17 11:48 -------- d-----w- c:\program files\ESET
2011-11-17 09:09 . 2011-11-17 11:38 -------- d-----w- c:\documents and settings\All Users\Data aplikací\MFAData
2011-11-16 18:37 . 2011-11-17 12:35 -------- d-sh--w- c:\documents and settings\OEM\Local Settings\Data aplikací\632ff156
2011-11-08 08:54 . 2011-11-08 09:58 -------- d-----w- c:\program files\WAS
2011-10-30 18:14 . 2011-10-30 18:14 -------- d-----w- c:\documents and settings\OEM\Data aplikací\Search Settings
2011-10-30 18:13 . 2011-11-17 12:47 -------- d-----w- c:\program files\Application Updater
2011-10-30 18:13 . 2011-10-30 18:13 -------- d-----w- c:\program files\IObit Toolbar
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-26 14:31 . 2007-11-20 21:23 33536 ----a-w- c:\windows\system32\drivers\tvtfilter.sys
2011-11-26 14:29 . 2007-11-20 21:23 129784 ------w- c:\windows\system32\pxafs.dll
2011-11-26 14:29 . 2007-11-20 21:23 118520 ------w- c:\windows\system32\pxinsi64.exe
2011-11-26 14:29 . 2007-11-20 21:23 116472 ------w- c:\windows\system32\pxcpyi64.exe
2011-11-26 14:29 . 2006-09-27 21:53 43528 ------w- c:\windows\system32\drivers\pxhelp20.sys
2011-10-24 18:31 . 2011-10-24 18:31 89680 ----a-w- c:\documents and settings\OEM\MSSSerif120.fon
2011-10-24 18:31 . 2011-10-24 18:31 64544 ----a-w- c:\documents and settings\OEM\MSSSerif96.fon
2011-11-11 22:07 . 2011-04-30 04:16 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-11-24_22.07.16 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-06-22 17:29 . 2011-06-22 17:29 16896 c:\windows\system32\S24NCfg.dll
+ 2007-11-20 21:23 . 2011-11-26 14:29 64760 c:\windows\system32\pxinsa64.exe
- 2007-11-20 21:23 . 2007-11-20 21:23 64760 c:\windows\system32\pxinsa64.exe
+ 2007-11-20 21:21 . 2011-11-26 14:29 72440 c:\windows\system32\pxhpinst.exe
- 2007-11-20 21:21 . 2007-11-20 21:23 72440 c:\windows\system32\pxhpinst.exe
+ 2007-11-20 21:23 . 2011-11-26 14:29 64760 c:\windows\system32\pxcpya64.exe
+ 2011-11-26 17:11 . 2008-08-26 09:26 18816 c:\windows\system32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.sys
+ 2011-11-26 17:12 . 2008-05-07 06:38 20864 c:\windows\system32\DRVSTORE\ccdcmbo_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\ccdcmbo.sys
+ 2011-11-26 17:12 . 2008-05-07 06:38 90624 c:\windows\system32\DRVSTORE\ccdcmb_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\nmwcdcls.dll
+ 2011-11-26 17:12 . 2008-05-07 06:38 17536 c:\windows\system32\DRVSTORE\ccdcmb_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\ccdcmb.sys
+ 2010-05-19 21:15 . 2010-05-19 21:15 13952 c:\windows\system32\drivers\s24trans.sys
+ 2010-09-22 13:18 . 2010-09-22 13:18 29984 c:\windows\system32\BtXpShell.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 99616 c:\windows\system32\btrezxp.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 83232 c:\windows\system32\btprn2k.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 54560 c:\windows\system32\BTNCopy.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 99688 c:\windows\system32\BtMmHook.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 54624 c:\windows\system32\btdev.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 91504 c:\windows\system32\BtAudioHelper.dll
+ 2011-11-26 15:23 . 2006-07-17 15:26 77824 c:\windows\system32\athcfg11res.dll
- 2007-11-20 21:23 . 2007-11-20 21:23 53248 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\RRShortcut.21662843_F2BE_4BBB_AE57_E9FF3AE4F2C2.exe
+ 2007-11-20 21:23 . 2011-11-26 14:38 53248 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\RRShortcut.21662843_F2BE_4BBB_AE57_E9FF3AE4F2C2.exe
- 2007-11-20 21:23 . 2007-11-20 21:23 45056 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\rrmediashortcut.17CFF8A8_DF81_4628_B574_CEDE1139BCC2.exe
+ 2007-11-20 21:23 . 2011-11-26 14:38 45056 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\rrmediashortcut.17CFF8A8_DF81_4628_B574_CEDE1139BCC2.exe
- 2007-11-20 21:23 . 2007-11-20 21:23 49152 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\NewShortcut3.17CFF8A8_DF81_4628_B574_CEDE1139BCC2.exe
+ 2007-11-20 21:23 . 2011-11-26 14:38 49152 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\NewShortcut3.17CFF8A8_DF81_4628_B574_CEDE1139BCC2.exe
+ 2007-11-20 21:23 . 2011-11-26 14:38 49152 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\NewShortcut1.21662843_F2BE_4BBB_AE57_E9FF3AE4F2C2.exe
- 2007-11-20 21:23 . 2007-11-20 21:23 49152 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\NewShortcut1.21662843_F2BE_4BBB_AE57_E9FF3AE4F2C2.exe
- 2007-11-20 21:12 . 2007-11-20 21:12 49152 c:\windows\Installer\{8675339C-128C-44DD-83BF-0A5D6ABD8297}\tvsu.exe3_8675339C128C44DD83BF0A5D6ABD8297.exe
+ 2007-11-20 21:12 . 2011-11-26 14:48 49152 c:\windows\Installer\{8675339C-128C-44DD-83BF-0A5D6ABD8297}\tvsu.exe3_8675339C128C44DD83BF0A5D6ABD8297.exe
+ 2011-11-26 14:48 . 2011-11-26 14:48 53248 c:\windows\Installer\{8675339C-128C-44DD-83BF-0A5D6ABD8297}\tvsu.exe2_8675339C128C44DD83BF0A5D6ABD8297.exe
- 2007-11-20 21:12 . 2007-11-20 21:12 53248 c:\windows\Installer\{8675339C-128C-44DD-83BF-0A5D6ABD8297}\tvsu.exe2_8675339C128C44DD83BF0A5D6ABD8297.exe
+ 2011-11-26 14:48 . 2011-11-26 14:48 53248 c:\windows\Installer\{8675339C-128C-44DD-83BF-0A5D6ABD8297}\ARPPRODUCTICON.exe
- 2007-11-20 21:12 . 2007-11-20 21:12 53248 c:\windows\Installer\{8675339C-128C-44DD-83BF-0A5D6ABD8297}\ARPPRODUCTICON.exe
+ 2011-11-26 14:02 . 2011-11-26 14:02 33982 c:\windows\Installer\{84814E6B-2581-46EC-926A-823BD1C670F6}\ARPPRODUCTICON.exe
+ 2011-11-26 17:18 . 2011-11-26 17:18 10134 c:\windows\Installer\{83258E90-1F76-4E13-9F60-A0F8ED41E76F}\ARPPRODUCTICON.exe
+ 2011-11-26 14:25 . 2011-11-26 14:25 49152 c:\windows\Installer\{3FE3D6A5-2F5E-4870-A3AC-D1D88E0B2797}\NewShortcut1_EC2A9EA7A46E48B9A0FD04BC5EF9F6A5.exe
+ 2010-09-22 13:18 . 2010-09-22 13:18 30040 c:\windows\BtwIEProxy.exe
+ 2011-11-26 17:12 . 2008-06-06 08:24 8064 c:\windows\system32\DRVSTORE\ccdcmbm_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\usbser_lowerflt.sys
+ 2011-11-26 17:12 . 2008-05-07 06:38 8064 c:\windows\system32\DRVSTORE\ccdcmbcj_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\usbser_lowerfltj.sys
+ 2007-11-20 21:23 . 2011-11-26 14:38 9158 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\ARPPRODUCTICONLENOVO.exe
- 2007-11-20 21:23 . 2007-11-20 21:23 9158 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\ARPPRODUCTICONLENOVO.exe
+ 2011-11-26 17:12 . 2011-11-26 17:12 3262 c:\windows\Installer\{C3F19A5F-35A8-4FDB-A6ED-0F4CE398DA48}\ARPPRODUCTICON.exe
+ 2011-11-26 14:25 . 2011-11-26 14:25 9110 c:\windows\Installer\{3FE3D6A5-2F5E-4870-A3AC-D1D88E0B2797}\ARPPRODUCTICON.exe
+ 2010-09-22 13:18 . 2010-09-22 13:18 582944 c:\windows\system32\WidcommSdk.dll
+ 2011-11-26 15:23 . 2009-09-24 14:00 401498 c:\windows\system32\wgapi.dll
+ 2011-11-26 15:23 . 2009-09-24 14:00 352347 c:\windows\system32\wcapiU.dll
+ 2011-11-26 15:23 . 2009-09-24 13:56 426052 c:\windows\system32\wcapi.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 521568 c:\windows\system32\wbtapi.dll
+ 2011-11-26 15:23 . 2006-08-07 13:17 147456 c:\windows\system32\ssleay32.dll
+ 2006-05-12 13:26 . 2011-11-26 14:29 379640 c:\windows\system32\PxWave.dll
- 2006-05-12 13:26 . 2007-11-20 21:23 379640 c:\windows\system32\PxWave.dll
+ 2006-05-12 13:26 . 2011-11-26 14:29 187128 c:\windows\system32\PxMas.dll
+ 2006-11-01 00:02 . 2011-11-26 14:29 510712 c:\windows\system32\pxdrv.dll
+ 2006-05-12 13:25 . 2011-11-26 14:29 547576 c:\windows\system32\Px.dll
+ 2011-11-26 15:23 . 2006-08-07 13:17 651264 c:\windows\system32\libeay32.dll
+ 2011-11-26 15:23 . 2009-05-19 10:25 262216 c:\windows\system32\IPTests.dll
+ 2011-11-25 22:46 . 2007-02-12 11:40 557056 c:\windows\system32\DRVSTORE\w29n51_02092897E25039DF89C96EBB4841ACF0590117AE\Netw2c32.dll
+ 2011-11-26 17:11 . 2008-05-20 09:32 831048 c:\windows\system32\DRVSTORE\pccswpddri_66268C3E0C6968D7F539EAEAD801C68E0DB54FE9\WudfUpdate_01005.dll
+ 2011-11-26 17:11 . 2008-05-20 09:37 525824 c:\windows\system32\DRVSTORE\pccswpddri_66268C3E0C6968D7F539EAEAD801C68E0DB54FE9\PCCSWpdDriver.dll
+ 2011-11-25 11:15 . 2010-05-19 22:14 684032 c:\windows\system32\DRVSTORE\netwnx32_996D2EADED773B28D811AD2C67AE7435A86102EE\NETwNc32.dll
+ 2011-11-25 09:59 . 2010-05-18 21:29 684032 c:\windows\system32\DRVSTORE\netwnx32_5FF92BC28A46A6879973B2E4D95DED1E9DEC95BE\NETwNc32.dll
+ 2011-11-26 14:24 . 2010-02-24 16:39 675840 c:\windows\system32\DRVSTORE\netwlx32_2BE482C52CE0CF8A56BFD3ACF4CED8D99910A62A\NETwLc32.dll
+ 2011-11-25 21:39 . 2007-02-15 04:31 730112 c:\windows\system32\DRVSTORE\netw4x64_785EBDADC1651DEA5A2129C8454ECFADF7C81710\NETw4c64.dll
+ 2011-11-25 22:46 . 2007-06-01 09:33 684032 c:\windows\system32\DRVSTORE\netw4x32_E0FE06D1ECA9E65F55CA9E5396616665E1612479\NETw4c32.dll
+ 2011-11-25 22:46 . 2007-06-01 09:33 684032 c:\windows\system32\DRVSTORE\netw4k32_EB4BD78BC68C739D52433B4AE5118A1E9BA411EE\NETw4c32.dll
+ 2011-11-26 17:12 . 2008-05-07 06:38 659968 c:\windows\system32\DRVSTORE\ccdcmb_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\nmwcdcocls.dll
+ 2007-11-20 21:44 . 2008-04-14 04:50 361344 c:\windows\system32\drivers\tcpip.sys
+ 2010-09-22 13:18 . 2010-09-22 13:18 111904 c:\windows\system32\BTXPPanel.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 165200 c:\windows\system32\btwpimif.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 181616 c:\windows\system32\BtWiaExt.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 238880 c:\windows\system32\btwhidcs.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 165208 c:\windows\system32\btsendto_wab.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 279896 c:\windows\system32\btsendto_office.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 144728 c:\windows\system32\btsendto_notes.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 173400 c:\windows\system32\btsendto_ie.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 333136 c:\windows\system32\btsendto.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 218464 c:\windows\system32\btsec.dll
+ 2010-09-22 13:18 . 2010-09-22 12:55 995328 c:\windows\system32\btrez.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 152864 c:\windows\system32\btosif_olx.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 329040 c:\windows\system32\btosif_ol.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 320856 c:\windows\system32\btosif_notes.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 218448 c:\windows\system32\btosif.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 996720 c:\windows\system32\BTNeighborhood.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 554336 c:\windows\system32\btins.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 726352 c:\windows\system32\BTChooser.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 128288 c:\windows\system32\bthcrpui.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 111904 c:\windows\system32\bthcrp.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 435552 c:\windows\system32\btcss.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 288080 c:\windows\system32\btbip.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 128288 c:\windows\system32\btbigbmp.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 128360 c:\windows\system32\bt2k_ins.dll
+ 2011-11-26 15:23 . 2009-09-24 14:03 307294 c:\windows\system32\athcfg20U.dll
+ 2011-11-26 15:23 . 2009-09-24 14:03 127079 c:\windows\system32\athcfg20resU.dll
+ 2011-11-26 15:23 . 2009-09-24 13:55 127053 c:\windows\system32\athcfg20res.dll
+ 2011-11-26 15:23 . 2009-09-24 13:55 299079 c:\windows\system32\athcfg20.dll
+ 2011-11-26 15:23 . 2006-07-17 15:26 372736 c:\windows\system32\athcfg11.dll
+ 2011-11-26 15:23 . 2009-09-24 14:03 475220 c:\windows\system32\acs.exe
- 2007-11-20 21:03 . 2007-02-21 03:19 151552 c:\windows\Installer\iProInst.dll
+ 2007-11-20 21:03 . 2007-11-19 10:30 151552 c:\windows\Installer\iProInst.dll
+ 2011-11-26 17:12 . 2011-11-26 17:12 335360 c:\windows\Installer\430d9.msi
+ 2011-11-26 17:11 . 2011-11-26 17:11 464896 c:\windows\Installer\430d4.msi
+ 2006-05-12 13:26 . 2011-11-26 14:29 1628920 c:\windows\system32\PxSFS.DLL
+ 2001-11-14 12:56 . 2001-11-14 12:56 1802240 c:\windows\system32\lcppn21.dll
+ 2011-11-25 22:46 . 2007-04-04 12:46 2210048 c:\windows\system32\DRVSTORE\w29n51_02092897E25039DF89C96EBB4841ACF0590117AE\w29n51.sys
+ 2011-11-25 22:46 . 2007-04-04 12:48 2206464 c:\windows\system32\DRVSTORE\w29n51_02092897E25039DF89C96EBB4841ACF0590117AE\w29n50.sys
+ 2011-11-25 22:46 . 2007-02-12 11:41 2732032 c:\windows\system32\DRVSTORE\w29n51_02092897E25039DF89C96EBB4841ACF0590117AE\Netw2r32.dll
+ 2011-11-25 11:15 . 2010-10-18 01:14 6913920 c:\windows\system32\DRVSTORE\netwnx32_996D2EADED773B28D811AD2C67AE7435A86102EE\NETwNx32.sys
+ 2011-11-25 11:15 . 2010-05-19 21:12 2760704 c:\windows\system32\DRVSTORE\netwnx32_996D2EADED773B28D811AD2C67AE7435A86102EE\NETwNr32.dll
+ 2011-11-25 09:59 . 2011-08-03 16:15 7473152 c:\windows\system32\DRVSTORE\netwnx32_5FF92BC28A46A6879973B2E4D95DED1E9DEC95BE\NETwNx32.sys
+ 2011-11-25 09:59 . 2010-05-18 21:31 2760704 c:\windows\system32\DRVSTORE\netwnx32_5FF92BC28A46A6879973B2E4D95DED1E9DEC95BE\NETwNr32.dll
+ 2011-11-26 14:24 . 2010-10-07 04:11 6609920 c:\windows\system32\DRVSTORE\netwlx32_2BE482C52CE0CF8A56BFD3ACF4CED8D99910A62A\NETwLx32.sys
+ 2011-11-26 14:24 . 2010-02-24 16:37 2756608 c:\windows\system32\DRVSTORE\netwlx32_2BE482C52CE0CF8A56BFD3ACF4CED8D99910A62A\NETwLr32.dll
+ 2011-11-25 21:39 . 2007-03-27 20:27 3091456 c:\windows\system32\DRVSTORE\netw4x64_785EBDADC1651DEA5A2129C8454ECFADF7C81710\NETw4x64.sys
+ 2011-11-25 21:39 . 2007-02-15 04:31 2655744 c:\windows\system32\DRVSTORE\netw4x64_785EBDADC1651DEA5A2129C8454ECFADF7C81710\NETw4r64.dll
+ 2011-11-25 22:46 . 2007-06-21 03:43 2208512 c:\windows\system32\DRVSTORE\netw4x32_E0FE06D1ECA9E65F55CA9E5396616665E1612479\NETw4x32.sys
+ 2011-11-25 22:46 . 2007-06-01 09:33 2772992 c:\windows\system32\DRVSTORE\netw4x32_E0FE06D1ECA9E65F55CA9E5396616665E1612479\NETw4r32.dll
+ 2011-11-25 22:46 . 2007-06-01 09:33 2772992 c:\windows\system32\DRVSTORE\netw4k32_EB4BD78BC68C739D52433B4AE5118A1E9BA411EE\NETw4r32.dll
+ 2011-11-25 22:46 . 2007-06-21 03:41 2203520 c:\windows\system32\DRVSTORE\netw4k32_EB4BD78BC68C739D52433B4AE5118A1E9BA411EE\NETw4k32.sys
+ 2011-11-26 17:12 . 2008-05-07 06:39 1419232 c:\windows\system32\DRVSTORE\ccdcmb_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\wdfcoinstaller01005.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 1795432 c:\windows\system32\BtWizard.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 2860384 c:\windows\system32\btwicons.dll
+ 2011-11-26 14:25 . 2011-11-26 14:25 7163392 c:\windows\Installer\68ac1.msi
+ 2011-11-26 14:02 . 2011-11-26 14:02 2694656 c:\windows\Installer\67b32.msi
+ 2011-11-26 14:48 . 2011-11-26 14:48 8033280 c:\windows\Installer\5d1e9.msi
+ 2011-11-26 14:37 . 2011-11-26 14:37 28469248 c:\windows\Installer\68b7c.msi
+ 2011-11-26 14:11 . 2011-08-13 05:02 40685056 c:\windows\Installer\_{3FE3D6A5-2F5E-4870-A3AC-D1D88E0B2797}\Intel PROSet Wireless.msi
+ 2011-11-26 14:29 . 2011-11-26 14:28 102683648 c:\windows\Downloaded Installations\{042525AF-47D2-4998-A80C-6DB95248344F}\Rescue and Recovery.msi
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{1C4AB6A5-595F-4e86-B15F-F93CCE2BBD48}"= "c:\program files\Family Toolbar\tbhelper.dll" [2009-05-07 355840]
.
[HKEY_CLASSES_ROOT\clsid\{1c4ab6a5-595f-4e86-b15f-f93cce2bbd48}]
[HKEY_CLASSES_ROOT\URLSearchHook.MHURLSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{1EA6B471-CAD2-419a-9539-0586EEFE2D09}]
[HKEY_CLASSES_ROOT\URLSearchHook.MHURLSearchHook]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0C37B053-FD68-456a-82E1-D788EE342E6F}]
2009-05-07 21:46 2642432 ----a-w- c:\program files\Family Toolbar\tbcore3.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}"= "c:\program files\Family Toolbar\tbcore3.dll" [2009-05-07 2642432]
.
[HKEY_CLASSES_ROOT\clsid\{fd2fd708-1f6f-4b68-b141-c5778f0c19bb}]
[HKEY_CLASSES_ROOT\MHToolbar.MHToolbar.3]
[HKEY_CLASSES_ROOT\TypeLib\{EC4085F2-8DB3-45a6-AD0B-CA289F3C5D7E}]
[HKEY_CLASSES_ROOT\MHToolbar.MHToolbar]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}"= "c:\program files\Family Toolbar\tbcore3.dll" [2009-05-07 2642432]
.
[HKEY_CLASSES_ROOT\clsid\{fd2fd708-1f6f-4b68-b141-c5778f0c19bb}]
[HKEY_CLASSES_ROOT\MHToolbar.MHToolbar.3]
[HKEY_CLASSES_ROOT\TypeLib\{EC4085F2-8DB3-45a6-AD0B-CA289F3C5D7E}]
[HKEY_CLASSES_ROOT\MHToolbar.MHToolbar]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2006-12-23 143360]
"Advanced SystemCare 4"="c:\program files\IObit\Advanced SystemCare 4\ASCTray.exe" [2011-08-09 417112]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PWRMGRTR"="c:\progra~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL" [2007-04-12 196608]
"BLOG"="c:\progra~1\ThinkPad\UTILIT~1\BatLogEx.DLL" [2007-04-12 208896]
"TPFNF7"="c:\program files\Lenovo\NPDIRECT\TPFNF7SP.exe" [2007-04-09 58416]
"TPHOTKEY"="c:\program files\Lenovo\HOTKEY\TPOSDSVC.exe" [2007-03-09 66176]
"Apoint"="c:\program files\Apoint2K\Apoint.exe" [2007-03-05 172032]
"TpShocks"="TpShocks.exe" [2007-03-29 181808]
"EZEJMNAP"="c:\progra~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe" [2007-03-28 243248]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-02-26 131072]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-02-26 155648]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-02-26 131072]
"TVT Scheduler Proxy"="c:\program files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe" [2010-12-09 1093632]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]
"ISUSPM Startup"="c:\program files\Common Files\Installshield\UpdateService\isuspm.exe" [2005-08-11 249856]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2005-08-11 81920]
"AwaySch"="c:\program files\Lenovo\AwayTask\AwaySch.EXE" [2006-11-07 91688]
"LPManager"="c:\progra~1\THINKV~1\PrdCtr\LPMGR.exe" [2007-03-22 120368]
"AMSG"="c:\program files\ThinkVantage\AMSG\Amsg.exe" [2007-02-01 419376]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-09-23 35760]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-09-08 3076144]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"="start http://www.avg.com/ww.special-uninstall ... er=9.0.894" [?]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\OEM\Nabídka Start\Programy\Po spuštění\
AccuWeather.lnk - c:\documents and settings\OEM\Dokumenty\AccuWeather.com Stratus\AccuWeather.com Stratus.exe [2011-8-18 142848]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Bluetooth.lnk - c:\program files\ThinkPad\Bluetooth Software\BTTray.exe [2010-9-22 607584]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\psfus]
2007-03-14 21:17 89600 ------w- c:\windows\system32\psqlpwd.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\tpfnf2]
2006-09-06 07:37 34344 ------w- c:\program files\Lenovo\HOTKEY\notifyf2.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\tphotkey]
2006-12-14 02:06 28672 ------w- c:\program files\Lenovo\HOTKEY\tphklock.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli psqlpwd
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^HP Digital Imaging Monitor.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk
backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2010-09-20 21:07 932288 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Family Tree Builder Update]
2009-01-14 13:49 113680 ----a-w- c:\program files\MyHeritage\Bin\FTBCheckUpdates.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDFPrint]
2011-04-28 07:59 220552 ----a-w- c:\program files\PDF24\pdf24.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
.
R0 BtHidBus;Bluetooth HID Bus Service;c:\windows\system32\drivers\BtHidBus.sys [7.1.2009 23:39 20744]
R0 TPDIGIMN;TPDIGIMN;c:\windows\system32\drivers\ApsHM86.sys [2.3.2007 17:47 19760]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [4.8.2011 9:20 118104]
R2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [8.9.2011 7:34 974944]
R2 smihlp;SMI Helper Driver (smihlp);c:\program files\Common Files\ThinkVantage Fingerprint Software\Drivers\smihlp.sys [14.3.2007 22:10 11152]
R2 TVT Backup Protection Service;TVT Backup Protection Service;c:\program files\Lenovo\Rescue and Recovery\rrpservice.exe [10.12.2010 0:27 1118208]
R3 btnetBUs;Bluetooth PAN Bus Service;c:\windows\system32\drivers\btnetBus.sys [7.12.2008 12:44 30088]
R3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\drivers\IvtBtBus.sys [2.7.2008 14:58 26248]
R3 TVTI2C;Lenovo SM bus driver;c:\windows\system32\drivers\tvti2c.sys [13.9.2006 12:42 35264]
R4 KProcessHacker2;KProcessHacker2;c:\program files\Process Hacker 2\kprocesshacker.sys [27.11.2011 12:45 33352]
S1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [4.8.2011 9:20 103112]
S2 Application Updater;Application Updater;"c:\program files\Application Updater\ApplicationUpdater.exe" --> c:\program files\Application Updater\ApplicationUpdater.exe [?]
S2 BsMobileCS;BsMobileCS;c:\program files\IVT Corporation\BlueSoleil\BsMobileCS.exe --> c:\program files\IVT Corporation\BlueSoleil\BsMobileCS.exe [?]
S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?]
S4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys --> c:\windows\system32\Drivers\sptd.sys [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPService REG_MULTI_SZ HPSLPSVC
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Obsah adresáře 'Naplánované úlohy'
.
2011-11-28 c:\windows\Tasks\ASC4_PerformanceMonitor.job
- c:\program files\IObit\Advanced SystemCare 4\PMonitor.exe [2011-08-10 14:40]
.
2011-11-28 c:\windows\Tasks\PMTask.job
- c:\progra~1\ThinkPad\UTILIT~1\PWMIDTSK.EXE [2007-11-20 16:15]
.
2007-11-20 c:\windows\Tasks\Připomenutí registrace 1.job
- c:\windows\system32\OOBE\oobebaln.exe [2007-11-20 07:52]
.
2007-11-20 c:\windows\Tasks\Připomenutí registrace 2.job
- c:\windows\system32\OOBE\oobebaln.exe [2007-11-20 07:52]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
mStart Page = hxxp://search.myheritage.com
uInternet Settings,ProxyOverride = *.local
IE: Add to AMV Converter... - c:\program files\MP3 Player Utilities 4.09\AMVConverter\grab.html
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: MediaManager tool grab multimedia file - c:\program files\MP3 Player Utilities 4.09\MediaManager\grab.html
IE: Odeslat do zařízení &Bluetooth... - c:\program files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat do zařízení Bluetooth - c:\program files\ThinkPad\Bluetooth Software\btsendto_ie.htm
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
TCP: DhcpNameServer = 212.80.66.7
FF - ProfilePath - c:\documents and settings\OEM\Data aplikací\Mozilla\Firefox\Profiles\6jts2rqn.default\
FF - prefs.js: browser.search.selectedEngine - Ask.com
FF - prefs.js: browser.startup.homepage - www.seznam.cz
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=UTF-8 ... &gfns=1&q=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
MSConfigStartUp-BtTray - c:\program files\IVT Corporation\BlueSoleil\BtTray.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-28 17:03
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(592)
c:\windows\system32\psqlpwd.dll
c:\program files\ThinkVantage Fingerprint Software\homefus2.dll
c:\program files\ThinkVantage Fingerprint Software\infra.dll
c:\program files\ThinkVantage Fingerprint Software\homepass.dll
c:\program files\ThinkVantage Fingerprint Software\bio.dll
c:\program files\ThinkVantage Fingerprint Software\ps2css.dll
c:\program files\ThinkVantage Fingerprint Software\remote.dll
c:\program files\Lenovo\HOTKEY\tphklock.dll
c:\program files\ThinkVantage Fingerprint Software\pscssint.dll
.
- - - - - - - > 'lsass.exe'(648)
c:\windows\system32\psqlpwd.dll
c:\program files\ThinkVantage Fingerprint Software\homefus2.dll
c:\program files\ThinkVantage Fingerprint Software\infra.dll
.
- - - - - - - > 'explorer.exe'(1296)
c:\windows\system32\btmmhook.dll
.
Celkový čas: 2011-11-28 17:06:19
ComboFix-quarantined-files.txt 2011-11-28 16:06
ComboFix2.txt 2011-11-25 22:28
ComboFix3.txt 2011-11-24 22:28
ComboFix4.txt 2011-11-24 22:09
.
Před spuštěním: Volných bajtů: 16 386 908 160
Po spuštění: Volných bajtů: 19 623 153 664
.
- - End Of File - - EF4A0B653A882AB2071DF39EAD8477CD
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1014.484 [GMT 1:00]
Spuštěný z: c:\documents and settings\OEM\Plocha\ComboFix.exe
AV: ESET NOD32 Antivirus 5.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-28 do 2011-11-28 )))))))))))))))))))))))))))))))
.
.
2011-11-28 13:49 . 2011-11-28 15:55 -------- d-----w- c:\windows\system32\CatRoot2
2011-11-27 16:33 . 2011-11-27 16:33 -------- d-----w- c:\documents and settings\OEM\Data aplikací\Process Hacker 2
2011-11-27 11:45 . 2011-11-27 11:45 -------- d-----w- c:\program files\Process Hacker 2
2011-11-26 17:46 . 2011-11-26 17:46 -------- d-----w- c:\documents and settings\OEM\Data aplikací\PCDr
2011-11-26 17:12 . 2008-05-07 06:38 90624 ----a-w- c:\windows\system32\nmwcdcls.dll
2011-11-26 17:12 . 2011-11-26 17:12 -------- d-----w- c:\program files\Nokia
2011-11-26 17:11 . 2008-08-26 09:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys
2011-11-26 17:11 . 2011-11-26 17:11 -------- d-----w- c:\program files\PC Connectivity Solution
2011-11-26 17:11 . 2011-11-26 17:11 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Installations
2011-11-26 15:22 . 2008-02-08 08:46 57408 ------w- c:\windows\system32\drivers\wsimd.sys
2011-11-26 15:22 . 2009-05-19 10:41 254022 ----a-w- c:\windows\system32\wsfwDS.dll
2011-11-26 15:22 . 2009-05-19 10:41 249924 ----a-w- c:\windows\system32\wsimd.dll
2011-11-26 15:22 . 2009-05-19 10:23 82017 ----a-r- c:\windows\system32\dsaNac.dll
2011-11-26 15:22 . 2009-05-19 10:23 1269854 ----a-r- c:\windows\system32\dsa.dll
2011-11-26 15:22 . 2009-04-03 10:18 1347168 ----a-w- c:\windows\system32\athw.sys
2011-11-26 15:22 . 2008-02-08 08:46 57408 ----a-w- c:\windows\system32\wsimd.sys
2011-11-26 15:22 . 2006-08-07 13:17 118784 ----a-w- c:\windows\system32\ATHCFG10.DLL
2011-11-26 14:23 . 2011-11-26 14:23 -------- d-----w- c:\program files\Common Files\Intel
2011-11-26 14:23 . 2011-11-26 14:23 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Intel
2011-11-25 23:25 . 2011-11-26 14:13 376832 ----a-w- c:\windows\system32\AegisI5Installer.exe
2011-11-25 11:16 . 2011-11-25 11:16 -------- d-----w- c:\documents and settings\NetworkService\Data aplikací\Intel
2011-11-25 11:16 . 2011-11-25 11:16 -------- d-----w- c:\documents and settings\LocalService\Data aplikací\Intel
2011-11-25 11:15 . 2011-11-25 11:15 -------- d-----w- c:\documents and settings\OEM\Data aplikací\Intel
2011-11-24 22:45 . 2011-11-24 22:45 -------- d-----w- C:\rsit
2011-11-24 22:13 . 2007-02-27 10:09 36400 ----a-w- c:\windows\system32\ibmpmsvc.exe
2011-11-24 22:13 . 2007-01-24 09:27 67960 ----a-w- c:\windows\system32\drivers\btwusb.sys
2011-11-24 12:19 . 2007-01-30 03:05 108080 ----a-w- c:\windows\system32\IPSSVC.EXE
2011-11-24 07:57 . 2008-04-14 07:51 155136 ------w- c:\windows\system32\mssha.dll
2011-11-24 07:53 . 2011-11-24 07:58 -------- d-----w- c:\windows\ServicePackFiles
2011-11-24 07:45 . 2006-12-28 23:31 19569 ----a-w- c:\windows\002734_.tmp
2011-11-23 21:58 . 2011-11-23 21:58 -------- d-----w- c:\documents and settings\OEM\Data aplikací\Malwarebytes
2011-11-23 21:58 . 2011-11-23 21:58 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2011-11-20 23:49 . 2008-04-14 07:52 78848 ----a-w- c:\windows\system32\msiexec.exe
2011-11-20 23:49 . 2008-06-20 11:40 138496 ----a-w- c:\windows\system32\drivers\afd.sys
2011-11-20 10:31 . 2011-11-20 10:31 35712 ----a-w- c:\windows\system32\drivers\BlackBox.sys
2011-11-19 13:37 . 2011-11-19 13:37 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ESET
2011-11-18 11:22 . 2011-11-17 22:57 133208 ----a-w- c:\windows\system32\drivers\10418741.sys
2011-11-17 20:38 . 2011-11-17 22:57 133208 ----a-w- c:\windows\system32\drivers\44042542.sys
2011-11-17 16:38 . 2011-11-27 08:38 -------- d-----w- c:\program files\trend micro
2011-11-17 14:59 . 2011-11-18 08:19 -------- d-----w- c:\documents and settings\OEM\Data aplikací\AVI ReComp
2011-11-17 14:58 . 2011-11-17 14:58 -------- d-----w- c:\program files\Gabest
2011-11-17 14:58 . 2011-11-17 14:58 -------- d-----w- c:\program files\Xvid
2011-11-17 14:57 . 2011-11-17 14:57 -------- d-----w- c:\program files\AviSynth 2.5
2011-11-17 14:54 . 2011-11-17 14:58 -------- d-----w- c:\program files\AVI ReComp
2011-11-17 14:45 . 2011-11-17 14:45 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\ESET
2011-11-17 11:55 . 2011-11-17 11:55 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\ESET
2011-11-17 11:48 . 2011-11-17 11:48 -------- d-----w- c:\program files\ESET
2011-11-17 09:09 . 2011-11-17 11:38 -------- d-----w- c:\documents and settings\All Users\Data aplikací\MFAData
2011-11-16 18:37 . 2011-11-17 12:35 -------- d-sh--w- c:\documents and settings\OEM\Local Settings\Data aplikací\632ff156
2011-11-08 08:54 . 2011-11-08 09:58 -------- d-----w- c:\program files\WAS
2011-10-30 18:14 . 2011-10-30 18:14 -------- d-----w- c:\documents and settings\OEM\Data aplikací\Search Settings
2011-10-30 18:13 . 2011-11-17 12:47 -------- d-----w- c:\program files\Application Updater
2011-10-30 18:13 . 2011-10-30 18:13 -------- d-----w- c:\program files\IObit Toolbar
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-26 14:31 . 2007-11-20 21:23 33536 ----a-w- c:\windows\system32\drivers\tvtfilter.sys
2011-11-26 14:29 . 2007-11-20 21:23 129784 ------w- c:\windows\system32\pxafs.dll
2011-11-26 14:29 . 2007-11-20 21:23 118520 ------w- c:\windows\system32\pxinsi64.exe
2011-11-26 14:29 . 2007-11-20 21:23 116472 ------w- c:\windows\system32\pxcpyi64.exe
2011-11-26 14:29 . 2006-09-27 21:53 43528 ------w- c:\windows\system32\drivers\pxhelp20.sys
2011-10-24 18:31 . 2011-10-24 18:31 89680 ----a-w- c:\documents and settings\OEM\MSSSerif120.fon
2011-10-24 18:31 . 2011-10-24 18:31 64544 ----a-w- c:\documents and settings\OEM\MSSSerif96.fon
2011-11-11 22:07 . 2011-04-30 04:16 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-11-24_22.07.16 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-06-22 17:29 . 2011-06-22 17:29 16896 c:\windows\system32\S24NCfg.dll
+ 2007-11-20 21:23 . 2011-11-26 14:29 64760 c:\windows\system32\pxinsa64.exe
- 2007-11-20 21:23 . 2007-11-20 21:23 64760 c:\windows\system32\pxinsa64.exe
+ 2007-11-20 21:21 . 2011-11-26 14:29 72440 c:\windows\system32\pxhpinst.exe
- 2007-11-20 21:21 . 2007-11-20 21:23 72440 c:\windows\system32\pxhpinst.exe
+ 2007-11-20 21:23 . 2011-11-26 14:29 64760 c:\windows\system32\pxcpya64.exe
+ 2011-11-26 17:11 . 2008-08-26 09:26 18816 c:\windows\system32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.sys
+ 2011-11-26 17:12 . 2008-05-07 06:38 20864 c:\windows\system32\DRVSTORE\ccdcmbo_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\ccdcmbo.sys
+ 2011-11-26 17:12 . 2008-05-07 06:38 90624 c:\windows\system32\DRVSTORE\ccdcmb_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\nmwcdcls.dll
+ 2011-11-26 17:12 . 2008-05-07 06:38 17536 c:\windows\system32\DRVSTORE\ccdcmb_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\ccdcmb.sys
+ 2010-05-19 21:15 . 2010-05-19 21:15 13952 c:\windows\system32\drivers\s24trans.sys
+ 2010-09-22 13:18 . 2010-09-22 13:18 29984 c:\windows\system32\BtXpShell.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 99616 c:\windows\system32\btrezxp.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 83232 c:\windows\system32\btprn2k.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 54560 c:\windows\system32\BTNCopy.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 99688 c:\windows\system32\BtMmHook.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 54624 c:\windows\system32\btdev.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 91504 c:\windows\system32\BtAudioHelper.dll
+ 2011-11-26 15:23 . 2006-07-17 15:26 77824 c:\windows\system32\athcfg11res.dll
- 2007-11-20 21:23 . 2007-11-20 21:23 53248 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\RRShortcut.21662843_F2BE_4BBB_AE57_E9FF3AE4F2C2.exe
+ 2007-11-20 21:23 . 2011-11-26 14:38 53248 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\RRShortcut.21662843_F2BE_4BBB_AE57_E9FF3AE4F2C2.exe
- 2007-11-20 21:23 . 2007-11-20 21:23 45056 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\rrmediashortcut.17CFF8A8_DF81_4628_B574_CEDE1139BCC2.exe
+ 2007-11-20 21:23 . 2011-11-26 14:38 45056 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\rrmediashortcut.17CFF8A8_DF81_4628_B574_CEDE1139BCC2.exe
- 2007-11-20 21:23 . 2007-11-20 21:23 49152 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\NewShortcut3.17CFF8A8_DF81_4628_B574_CEDE1139BCC2.exe
+ 2007-11-20 21:23 . 2011-11-26 14:38 49152 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\NewShortcut3.17CFF8A8_DF81_4628_B574_CEDE1139BCC2.exe
+ 2007-11-20 21:23 . 2011-11-26 14:38 49152 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\NewShortcut1.21662843_F2BE_4BBB_AE57_E9FF3AE4F2C2.exe
- 2007-11-20 21:23 . 2007-11-20 21:23 49152 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\NewShortcut1.21662843_F2BE_4BBB_AE57_E9FF3AE4F2C2.exe
- 2007-11-20 21:12 . 2007-11-20 21:12 49152 c:\windows\Installer\{8675339C-128C-44DD-83BF-0A5D6ABD8297}\tvsu.exe3_8675339C128C44DD83BF0A5D6ABD8297.exe
+ 2007-11-20 21:12 . 2011-11-26 14:48 49152 c:\windows\Installer\{8675339C-128C-44DD-83BF-0A5D6ABD8297}\tvsu.exe3_8675339C128C44DD83BF0A5D6ABD8297.exe
+ 2011-11-26 14:48 . 2011-11-26 14:48 53248 c:\windows\Installer\{8675339C-128C-44DD-83BF-0A5D6ABD8297}\tvsu.exe2_8675339C128C44DD83BF0A5D6ABD8297.exe
- 2007-11-20 21:12 . 2007-11-20 21:12 53248 c:\windows\Installer\{8675339C-128C-44DD-83BF-0A5D6ABD8297}\tvsu.exe2_8675339C128C44DD83BF0A5D6ABD8297.exe
+ 2011-11-26 14:48 . 2011-11-26 14:48 53248 c:\windows\Installer\{8675339C-128C-44DD-83BF-0A5D6ABD8297}\ARPPRODUCTICON.exe
- 2007-11-20 21:12 . 2007-11-20 21:12 53248 c:\windows\Installer\{8675339C-128C-44DD-83BF-0A5D6ABD8297}\ARPPRODUCTICON.exe
+ 2011-11-26 14:02 . 2011-11-26 14:02 33982 c:\windows\Installer\{84814E6B-2581-46EC-926A-823BD1C670F6}\ARPPRODUCTICON.exe
+ 2011-11-26 17:18 . 2011-11-26 17:18 10134 c:\windows\Installer\{83258E90-1F76-4E13-9F60-A0F8ED41E76F}\ARPPRODUCTICON.exe
+ 2011-11-26 14:25 . 2011-11-26 14:25 49152 c:\windows\Installer\{3FE3D6A5-2F5E-4870-A3AC-D1D88E0B2797}\NewShortcut1_EC2A9EA7A46E48B9A0FD04BC5EF9F6A5.exe
+ 2010-09-22 13:18 . 2010-09-22 13:18 30040 c:\windows\BtwIEProxy.exe
+ 2011-11-26 17:12 . 2008-06-06 08:24 8064 c:\windows\system32\DRVSTORE\ccdcmbm_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\usbser_lowerflt.sys
+ 2011-11-26 17:12 . 2008-05-07 06:38 8064 c:\windows\system32\DRVSTORE\ccdcmbcj_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\usbser_lowerfltj.sys
+ 2007-11-20 21:23 . 2011-11-26 14:38 9158 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\ARPPRODUCTICONLENOVO.exe
- 2007-11-20 21:23 . 2007-11-20 21:23 9158 c:\windows\Installer\{F151F2B3-0C32-44D3-90E2-E639B8024622}\ARPPRODUCTICONLENOVO.exe
+ 2011-11-26 17:12 . 2011-11-26 17:12 3262 c:\windows\Installer\{C3F19A5F-35A8-4FDB-A6ED-0F4CE398DA48}\ARPPRODUCTICON.exe
+ 2011-11-26 14:25 . 2011-11-26 14:25 9110 c:\windows\Installer\{3FE3D6A5-2F5E-4870-A3AC-D1D88E0B2797}\ARPPRODUCTICON.exe
+ 2010-09-22 13:18 . 2010-09-22 13:18 582944 c:\windows\system32\WidcommSdk.dll
+ 2011-11-26 15:23 . 2009-09-24 14:00 401498 c:\windows\system32\wgapi.dll
+ 2011-11-26 15:23 . 2009-09-24 14:00 352347 c:\windows\system32\wcapiU.dll
+ 2011-11-26 15:23 . 2009-09-24 13:56 426052 c:\windows\system32\wcapi.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 521568 c:\windows\system32\wbtapi.dll
+ 2011-11-26 15:23 . 2006-08-07 13:17 147456 c:\windows\system32\ssleay32.dll
+ 2006-05-12 13:26 . 2011-11-26 14:29 379640 c:\windows\system32\PxWave.dll
- 2006-05-12 13:26 . 2007-11-20 21:23 379640 c:\windows\system32\PxWave.dll
+ 2006-05-12 13:26 . 2011-11-26 14:29 187128 c:\windows\system32\PxMas.dll
+ 2006-11-01 00:02 . 2011-11-26 14:29 510712 c:\windows\system32\pxdrv.dll
+ 2006-05-12 13:25 . 2011-11-26 14:29 547576 c:\windows\system32\Px.dll
+ 2011-11-26 15:23 . 2006-08-07 13:17 651264 c:\windows\system32\libeay32.dll
+ 2011-11-26 15:23 . 2009-05-19 10:25 262216 c:\windows\system32\IPTests.dll
+ 2011-11-25 22:46 . 2007-02-12 11:40 557056 c:\windows\system32\DRVSTORE\w29n51_02092897E25039DF89C96EBB4841ACF0590117AE\Netw2c32.dll
+ 2011-11-26 17:11 . 2008-05-20 09:32 831048 c:\windows\system32\DRVSTORE\pccswpddri_66268C3E0C6968D7F539EAEAD801C68E0DB54FE9\WudfUpdate_01005.dll
+ 2011-11-26 17:11 . 2008-05-20 09:37 525824 c:\windows\system32\DRVSTORE\pccswpddri_66268C3E0C6968D7F539EAEAD801C68E0DB54FE9\PCCSWpdDriver.dll
+ 2011-11-25 11:15 . 2010-05-19 22:14 684032 c:\windows\system32\DRVSTORE\netwnx32_996D2EADED773B28D811AD2C67AE7435A86102EE\NETwNc32.dll
+ 2011-11-25 09:59 . 2010-05-18 21:29 684032 c:\windows\system32\DRVSTORE\netwnx32_5FF92BC28A46A6879973B2E4D95DED1E9DEC95BE\NETwNc32.dll
+ 2011-11-26 14:24 . 2010-02-24 16:39 675840 c:\windows\system32\DRVSTORE\netwlx32_2BE482C52CE0CF8A56BFD3ACF4CED8D99910A62A\NETwLc32.dll
+ 2011-11-25 21:39 . 2007-02-15 04:31 730112 c:\windows\system32\DRVSTORE\netw4x64_785EBDADC1651DEA5A2129C8454ECFADF7C81710\NETw4c64.dll
+ 2011-11-25 22:46 . 2007-06-01 09:33 684032 c:\windows\system32\DRVSTORE\netw4x32_E0FE06D1ECA9E65F55CA9E5396616665E1612479\NETw4c32.dll
+ 2011-11-25 22:46 . 2007-06-01 09:33 684032 c:\windows\system32\DRVSTORE\netw4k32_EB4BD78BC68C739D52433B4AE5118A1E9BA411EE\NETw4c32.dll
+ 2011-11-26 17:12 . 2008-05-07 06:38 659968 c:\windows\system32\DRVSTORE\ccdcmb_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\nmwcdcocls.dll
+ 2007-11-20 21:44 . 2008-04-14 04:50 361344 c:\windows\system32\drivers\tcpip.sys
+ 2010-09-22 13:18 . 2010-09-22 13:18 111904 c:\windows\system32\BTXPPanel.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 165200 c:\windows\system32\btwpimif.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 181616 c:\windows\system32\BtWiaExt.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 238880 c:\windows\system32\btwhidcs.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 165208 c:\windows\system32\btsendto_wab.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 279896 c:\windows\system32\btsendto_office.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 144728 c:\windows\system32\btsendto_notes.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 173400 c:\windows\system32\btsendto_ie.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 333136 c:\windows\system32\btsendto.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 218464 c:\windows\system32\btsec.dll
+ 2010-09-22 13:18 . 2010-09-22 12:55 995328 c:\windows\system32\btrez.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 152864 c:\windows\system32\btosif_olx.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 329040 c:\windows\system32\btosif_ol.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 320856 c:\windows\system32\btosif_notes.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 218448 c:\windows\system32\btosif.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 996720 c:\windows\system32\BTNeighborhood.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 554336 c:\windows\system32\btins.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 726352 c:\windows\system32\BTChooser.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 128288 c:\windows\system32\bthcrpui.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 111904 c:\windows\system32\bthcrp.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 435552 c:\windows\system32\btcss.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 288080 c:\windows\system32\btbip.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 128288 c:\windows\system32\btbigbmp.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 128360 c:\windows\system32\bt2k_ins.dll
+ 2011-11-26 15:23 . 2009-09-24 14:03 307294 c:\windows\system32\athcfg20U.dll
+ 2011-11-26 15:23 . 2009-09-24 14:03 127079 c:\windows\system32\athcfg20resU.dll
+ 2011-11-26 15:23 . 2009-09-24 13:55 127053 c:\windows\system32\athcfg20res.dll
+ 2011-11-26 15:23 . 2009-09-24 13:55 299079 c:\windows\system32\athcfg20.dll
+ 2011-11-26 15:23 . 2006-07-17 15:26 372736 c:\windows\system32\athcfg11.dll
+ 2011-11-26 15:23 . 2009-09-24 14:03 475220 c:\windows\system32\acs.exe
- 2007-11-20 21:03 . 2007-02-21 03:19 151552 c:\windows\Installer\iProInst.dll
+ 2007-11-20 21:03 . 2007-11-19 10:30 151552 c:\windows\Installer\iProInst.dll
+ 2011-11-26 17:12 . 2011-11-26 17:12 335360 c:\windows\Installer\430d9.msi
+ 2011-11-26 17:11 . 2011-11-26 17:11 464896 c:\windows\Installer\430d4.msi
+ 2006-05-12 13:26 . 2011-11-26 14:29 1628920 c:\windows\system32\PxSFS.DLL
+ 2001-11-14 12:56 . 2001-11-14 12:56 1802240 c:\windows\system32\lcppn21.dll
+ 2011-11-25 22:46 . 2007-04-04 12:46 2210048 c:\windows\system32\DRVSTORE\w29n51_02092897E25039DF89C96EBB4841ACF0590117AE\w29n51.sys
+ 2011-11-25 22:46 . 2007-04-04 12:48 2206464 c:\windows\system32\DRVSTORE\w29n51_02092897E25039DF89C96EBB4841ACF0590117AE\w29n50.sys
+ 2011-11-25 22:46 . 2007-02-12 11:41 2732032 c:\windows\system32\DRVSTORE\w29n51_02092897E25039DF89C96EBB4841ACF0590117AE\Netw2r32.dll
+ 2011-11-25 11:15 . 2010-10-18 01:14 6913920 c:\windows\system32\DRVSTORE\netwnx32_996D2EADED773B28D811AD2C67AE7435A86102EE\NETwNx32.sys
+ 2011-11-25 11:15 . 2010-05-19 21:12 2760704 c:\windows\system32\DRVSTORE\netwnx32_996D2EADED773B28D811AD2C67AE7435A86102EE\NETwNr32.dll
+ 2011-11-25 09:59 . 2011-08-03 16:15 7473152 c:\windows\system32\DRVSTORE\netwnx32_5FF92BC28A46A6879973B2E4D95DED1E9DEC95BE\NETwNx32.sys
+ 2011-11-25 09:59 . 2010-05-18 21:31 2760704 c:\windows\system32\DRVSTORE\netwnx32_5FF92BC28A46A6879973B2E4D95DED1E9DEC95BE\NETwNr32.dll
+ 2011-11-26 14:24 . 2010-10-07 04:11 6609920 c:\windows\system32\DRVSTORE\netwlx32_2BE482C52CE0CF8A56BFD3ACF4CED8D99910A62A\NETwLx32.sys
+ 2011-11-26 14:24 . 2010-02-24 16:37 2756608 c:\windows\system32\DRVSTORE\netwlx32_2BE482C52CE0CF8A56BFD3ACF4CED8D99910A62A\NETwLr32.dll
+ 2011-11-25 21:39 . 2007-03-27 20:27 3091456 c:\windows\system32\DRVSTORE\netw4x64_785EBDADC1651DEA5A2129C8454ECFADF7C81710\NETw4x64.sys
+ 2011-11-25 21:39 . 2007-02-15 04:31 2655744 c:\windows\system32\DRVSTORE\netw4x64_785EBDADC1651DEA5A2129C8454ECFADF7C81710\NETw4r64.dll
+ 2011-11-25 22:46 . 2007-06-21 03:43 2208512 c:\windows\system32\DRVSTORE\netw4x32_E0FE06D1ECA9E65F55CA9E5396616665E1612479\NETw4x32.sys
+ 2011-11-25 22:46 . 2007-06-01 09:33 2772992 c:\windows\system32\DRVSTORE\netw4x32_E0FE06D1ECA9E65F55CA9E5396616665E1612479\NETw4r32.dll
+ 2011-11-25 22:46 . 2007-06-01 09:33 2772992 c:\windows\system32\DRVSTORE\netw4k32_EB4BD78BC68C739D52433B4AE5118A1E9BA411EE\NETw4r32.dll
+ 2011-11-25 22:46 . 2007-06-21 03:41 2203520 c:\windows\system32\DRVSTORE\netw4k32_EB4BD78BC68C739D52433B4AE5118A1E9BA411EE\NETw4k32.sys
+ 2011-11-26 17:12 . 2008-05-07 06:39 1419232 c:\windows\system32\DRVSTORE\ccdcmb_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\wdfcoinstaller01005.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 1795432 c:\windows\system32\BtWizard.dll
+ 2010-09-22 13:18 . 2010-09-22 13:18 2860384 c:\windows\system32\btwicons.dll
+ 2011-11-26 14:25 . 2011-11-26 14:25 7163392 c:\windows\Installer\68ac1.msi
+ 2011-11-26 14:02 . 2011-11-26 14:02 2694656 c:\windows\Installer\67b32.msi
+ 2011-11-26 14:48 . 2011-11-26 14:48 8033280 c:\windows\Installer\5d1e9.msi
+ 2011-11-26 14:37 . 2011-11-26 14:37 28469248 c:\windows\Installer\68b7c.msi
+ 2011-11-26 14:11 . 2011-08-13 05:02 40685056 c:\windows\Installer\_{3FE3D6A5-2F5E-4870-A3AC-D1D88E0B2797}\Intel PROSet Wireless.msi
+ 2011-11-26 14:29 . 2011-11-26 14:28 102683648 c:\windows\Downloaded Installations\{042525AF-47D2-4998-A80C-6DB95248344F}\Rescue and Recovery.msi
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{1C4AB6A5-595F-4e86-B15F-F93CCE2BBD48}"= "c:\program files\Family Toolbar\tbhelper.dll" [2009-05-07 355840]
.
[HKEY_CLASSES_ROOT\clsid\{1c4ab6a5-595f-4e86-b15f-f93cce2bbd48}]
[HKEY_CLASSES_ROOT\URLSearchHook.MHURLSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{1EA6B471-CAD2-419a-9539-0586EEFE2D09}]
[HKEY_CLASSES_ROOT\URLSearchHook.MHURLSearchHook]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0C37B053-FD68-456a-82E1-D788EE342E6F}]
2009-05-07 21:46 2642432 ----a-w- c:\program files\Family Toolbar\tbcore3.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}"= "c:\program files\Family Toolbar\tbcore3.dll" [2009-05-07 2642432]
.
[HKEY_CLASSES_ROOT\clsid\{fd2fd708-1f6f-4b68-b141-c5778f0c19bb}]
[HKEY_CLASSES_ROOT\MHToolbar.MHToolbar.3]
[HKEY_CLASSES_ROOT\TypeLib\{EC4085F2-8DB3-45a6-AD0B-CA289F3C5D7E}]
[HKEY_CLASSES_ROOT\MHToolbar.MHToolbar]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}"= "c:\program files\Family Toolbar\tbcore3.dll" [2009-05-07 2642432]
.
[HKEY_CLASSES_ROOT\clsid\{fd2fd708-1f6f-4b68-b141-c5778f0c19bb}]
[HKEY_CLASSES_ROOT\MHToolbar.MHToolbar.3]
[HKEY_CLASSES_ROOT\TypeLib\{EC4085F2-8DB3-45a6-AD0B-CA289F3C5D7E}]
[HKEY_CLASSES_ROOT\MHToolbar.MHToolbar]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2006-12-23 143360]
"Advanced SystemCare 4"="c:\program files\IObit\Advanced SystemCare 4\ASCTray.exe" [2011-08-09 417112]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PWRMGRTR"="c:\progra~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL" [2007-04-12 196608]
"BLOG"="c:\progra~1\ThinkPad\UTILIT~1\BatLogEx.DLL" [2007-04-12 208896]
"TPFNF7"="c:\program files\Lenovo\NPDIRECT\TPFNF7SP.exe" [2007-04-09 58416]
"TPHOTKEY"="c:\program files\Lenovo\HOTKEY\TPOSDSVC.exe" [2007-03-09 66176]
"Apoint"="c:\program files\Apoint2K\Apoint.exe" [2007-03-05 172032]
"TpShocks"="TpShocks.exe" [2007-03-29 181808]
"EZEJMNAP"="c:\progra~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe" [2007-03-28 243248]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-02-26 131072]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-02-26 155648]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-02-26 131072]
"TVT Scheduler Proxy"="c:\program files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe" [2010-12-09 1093632]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]
"ISUSPM Startup"="c:\program files\Common Files\Installshield\UpdateService\isuspm.exe" [2005-08-11 249856]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2005-08-11 81920]
"AwaySch"="c:\program files\Lenovo\AwayTask\AwaySch.EXE" [2006-11-07 91688]
"LPManager"="c:\progra~1\THINKV~1\PrdCtr\LPMGR.exe" [2007-03-22 120368]
"AMSG"="c:\program files\ThinkVantage\AMSG\Amsg.exe" [2007-02-01 419376]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-09-23 35760]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-09-08 3076144]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"="start http://www.avg.com/ww.special-uninstall ... er=9.0.894" [?]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\OEM\Nabídka Start\Programy\Po spuštění\
AccuWeather.lnk - c:\documents and settings\OEM\Dokumenty\AccuWeather.com Stratus\AccuWeather.com Stratus.exe [2011-8-18 142848]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Bluetooth.lnk - c:\program files\ThinkPad\Bluetooth Software\BTTray.exe [2010-9-22 607584]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\psfus]
2007-03-14 21:17 89600 ------w- c:\windows\system32\psqlpwd.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\tpfnf2]
2006-09-06 07:37 34344 ------w- c:\program files\Lenovo\HOTKEY\notifyf2.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\tphotkey]
2006-12-14 02:06 28672 ------w- c:\program files\Lenovo\HOTKEY\tphklock.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli psqlpwd
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^HP Digital Imaging Monitor.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk
backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2010-09-20 21:07 932288 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Family Tree Builder Update]
2009-01-14 13:49 113680 ----a-w- c:\program files\MyHeritage\Bin\FTBCheckUpdates.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDFPrint]
2011-04-28 07:59 220552 ----a-w- c:\program files\PDF24\pdf24.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
.
R0 BtHidBus;Bluetooth HID Bus Service;c:\windows\system32\drivers\BtHidBus.sys [7.1.2009 23:39 20744]
R0 TPDIGIMN;TPDIGIMN;c:\windows\system32\drivers\ApsHM86.sys [2.3.2007 17:47 19760]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [4.8.2011 9:20 118104]
R2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [8.9.2011 7:34 974944]
R2 smihlp;SMI Helper Driver (smihlp);c:\program files\Common Files\ThinkVantage Fingerprint Software\Drivers\smihlp.sys [14.3.2007 22:10 11152]
R2 TVT Backup Protection Service;TVT Backup Protection Service;c:\program files\Lenovo\Rescue and Recovery\rrpservice.exe [10.12.2010 0:27 1118208]
R3 btnetBUs;Bluetooth PAN Bus Service;c:\windows\system32\drivers\btnetBus.sys [7.12.2008 12:44 30088]
R3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\drivers\IvtBtBus.sys [2.7.2008 14:58 26248]
R3 TVTI2C;Lenovo SM bus driver;c:\windows\system32\drivers\tvti2c.sys [13.9.2006 12:42 35264]
R4 KProcessHacker2;KProcessHacker2;c:\program files\Process Hacker 2\kprocesshacker.sys [27.11.2011 12:45 33352]
S1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [4.8.2011 9:20 103112]
S2 Application Updater;Application Updater;"c:\program files\Application Updater\ApplicationUpdater.exe" --> c:\program files\Application Updater\ApplicationUpdater.exe [?]
S2 BsMobileCS;BsMobileCS;c:\program files\IVT Corporation\BlueSoleil\BsMobileCS.exe --> c:\program files\IVT Corporation\BlueSoleil\BsMobileCS.exe [?]
S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?]
S4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys --> c:\windows\system32\Drivers\sptd.sys [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPService REG_MULTI_SZ HPSLPSVC
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Obsah adresáře 'Naplánované úlohy'
.
2011-11-28 c:\windows\Tasks\ASC4_PerformanceMonitor.job
- c:\program files\IObit\Advanced SystemCare 4\PMonitor.exe [2011-08-10 14:40]
.
2011-11-28 c:\windows\Tasks\PMTask.job
- c:\progra~1\ThinkPad\UTILIT~1\PWMIDTSK.EXE [2007-11-20 16:15]
.
2007-11-20 c:\windows\Tasks\Připomenutí registrace 1.job
- c:\windows\system32\OOBE\oobebaln.exe [2007-11-20 07:52]
.
2007-11-20 c:\windows\Tasks\Připomenutí registrace 2.job
- c:\windows\system32\OOBE\oobebaln.exe [2007-11-20 07:52]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
mStart Page = hxxp://search.myheritage.com
uInternet Settings,ProxyOverride = *.local
IE: Add to AMV Converter... - c:\program files\MP3 Player Utilities 4.09\AMVConverter\grab.html
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: MediaManager tool grab multimedia file - c:\program files\MP3 Player Utilities 4.09\MediaManager\grab.html
IE: Odeslat do zařízení &Bluetooth... - c:\program files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat do zařízení Bluetooth - c:\program files\ThinkPad\Bluetooth Software\btsendto_ie.htm
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
TCP: DhcpNameServer = 212.80.66.7
FF - ProfilePath - c:\documents and settings\OEM\Data aplikací\Mozilla\Firefox\Profiles\6jts2rqn.default\
FF - prefs.js: browser.search.selectedEngine - Ask.com
FF - prefs.js: browser.startup.homepage - www.seznam.cz
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=UTF-8 ... &gfns=1&q=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
MSConfigStartUp-BtTray - c:\program files\IVT Corporation\BlueSoleil\BtTray.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-28 17:03
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(592)
c:\windows\system32\psqlpwd.dll
c:\program files\ThinkVantage Fingerprint Software\homefus2.dll
c:\program files\ThinkVantage Fingerprint Software\infra.dll
c:\program files\ThinkVantage Fingerprint Software\homepass.dll
c:\program files\ThinkVantage Fingerprint Software\bio.dll
c:\program files\ThinkVantage Fingerprint Software\ps2css.dll
c:\program files\ThinkVantage Fingerprint Software\remote.dll
c:\program files\Lenovo\HOTKEY\tphklock.dll
c:\program files\ThinkVantage Fingerprint Software\pscssint.dll
.
- - - - - - - > 'lsass.exe'(648)
c:\windows\system32\psqlpwd.dll
c:\program files\ThinkVantage Fingerprint Software\homefus2.dll
c:\program files\ThinkVantage Fingerprint Software\infra.dll
.
- - - - - - - > 'explorer.exe'(1296)
c:\windows\system32\btmmhook.dll
.
Celkový čas: 2011-11-28 17:06:19
ComboFix-quarantined-files.txt 2011-11-28 16:06
ComboFix2.txt 2011-11-25 22:28
ComboFix3.txt 2011-11-24 22:28
ComboFix4.txt 2011-11-24 22:09
.
Před spuštěním: Volných bajtů: 16 386 908 160
Po spuštění: Volných bajtů: 19 623 153 664
.
- - End Of File - - EF4A0B653A882AB2071DF39EAD8477CD
Re: Prosím o pomoc, vir Rootkit.Agent.NUS Trojský kůň
17:18:17.0156 1816 TDSS rootkit removing tool 2.6.21.0 Nov 24 2011 12:32:44
17:18:17.0250 1816 ============================================================
17:18:17.0250 1816 Current date / time: 2011/11/28 17:18:17.0250
17:18:17.0250 1816 SystemInfo:
17:18:17.0250 1816
17:18:17.0250 1816 OS Version: 5.1.2600 ServicePack: 3.0
17:18:17.0250 1816 Product type: Workstation
17:18:17.0250 1816 ComputerName: LENOVO-551F1D3E
17:18:17.0265 1816 UserName: OEM
17:18:17.0265 1816 Windows directory: C:\WINDOWS
17:18:17.0265 1816 System windows directory: C:\WINDOWS
17:18:17.0265 1816 Processor architecture: Intel x86
17:18:17.0265 1816 Number of processors: 2
17:18:17.0265 1816 Page size: 0x1000
17:18:17.0265 1816 Boot type: Normal boot
17:18:17.0265 1816 ============================================================
17:18:19.0609 1816 Initialize success
17:18:52.0906 3408 ============================================================
17:18:52.0906 3408 Scan started
17:18:52.0906 3408 Mode: Manual;
17:18:52.0906 3408 ============================================================
17:18:54.0046 3408 Abiosdsk - ok
17:18:54.0343 3408 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
17:18:54.0343 3408 abp480n5 - ok
17:18:54.0671 3408 ac97intc (0f2d66d5f08ebe2f77bb904288dcf6f0) C:\WINDOWS\system32\drivers\ac97intc.sys
17:18:54.0671 3408 ac97intc - ok
17:18:55.0109 3408 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:18:55.0109 3408 ACPI - ok
17:18:55.0421 3408 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
17:18:55.0421 3408 ACPIEC - ok
17:18:55.0703 3408 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
17:18:55.0703 3408 adpu160m - ok
17:18:56.0109 3408 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
17:18:56.0109 3408 aec - ok
17:18:56.0437 3408 AFD (e3049b90fe06f3f740b7cfda44995e2c) C:\WINDOWS\System32\drivers\afd.sys
17:18:56.0437 3408 AFD - ok
17:18:56.0750 3408 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
17:18:56.0750 3408 agp440 - ok
17:18:57.0046 3408 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
17:18:57.0046 3408 agpCPQ - ok
17:18:57.0421 3408 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
17:18:57.0421 3408 Aha154x - ok
17:18:57.0781 3408 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
17:18:57.0781 3408 aic78u2 - ok
17:18:58.0546 3408 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
17:18:58.0546 3408 aic78xx - ok
17:18:58.0843 3408 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
17:18:58.0843 3408 AliIde - ok
17:18:59.0156 3408 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
17:18:59.0156 3408 alim1541 - ok
17:18:59.0453 3408 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
17:18:59.0453 3408 amdagp - ok
17:18:59.0750 3408 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
17:18:59.0750 3408 amsint - ok
17:19:00.0046 3408 ApfiltrService (348055c4afff8e60c01aa6bdc8c58ca7) C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
17:19:00.0046 3408 ApfiltrService - ok
17:19:00.0390 3408 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
17:19:00.0390 3408 Arp1394 - ok
17:19:00.0671 3408 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
17:19:00.0671 3408 asc - ok
17:19:00.0968 3408 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
17:19:00.0968 3408 asc3350p - ok
17:19:01.0250 3408 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
17:19:01.0250 3408 asc3550 - ok
17:19:01.0640 3408 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:19:01.0640 3408 AsyncMac - ok
17:19:01.0953 3408 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
17:19:01.0968 3408 atapi - ok
17:19:02.0234 3408 Atdisk - ok
17:19:02.0546 3408 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:19:02.0546 3408 Atmarpc - ok
17:19:02.0843 3408 atmeltpm (dbf0d7e2df33b469eb55406fea759350) C:\WINDOWS\system32\DRIVERS\atmeltpm.sys
17:19:02.0859 3408 atmeltpm - ok
17:19:03.0140 3408 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
17:19:03.0156 3408 audstub - ok
17:19:03.0468 3408 b57w2k (bb1a2a73f993b623f99e03ed2f9e014c) C:\WINDOWS\system32\DRIVERS\b57xp32.sys
17:19:03.0468 3408 b57w2k - ok
17:19:03.0828 3408 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
17:19:03.0828 3408 Beep - ok
17:19:04.0093 3408 BT - ok
17:19:04.0359 3408 Btcsrusb - ok
17:19:04.0718 3408 BthEnum (b279426e3c0c344893ed78a613a73bde) C:\WINDOWS\system32\DRIVERS\BthEnum.sys
17:19:04.0718 3408 BthEnum - ok
17:19:05.0015 3408 BtHidBus (ce441ccd98c5ecb10cb12fcaf97322ec) C:\WINDOWS\system32\Drivers\BtHidBus.sys
17:19:05.0015 3408 BtHidBus - ok
17:19:05.0328 3408 BthPan (80602b8746d3738f5886ce3d67ef06b6) C:\WINDOWS\system32\DRIVERS\bthpan.sys
17:19:05.0328 3408 BthPan - ok
17:19:05.0703 3408 BTHPORT (f338662a6c1fc11dd9508f6dff2c06a2) C:\WINDOWS\system32\Drivers\BTHport.sys
17:19:05.0718 3408 BTHPORT - ok
17:19:06.0000 3408 BTHUSB (61364cd71ef63b0f038b7e9df00f1efa) C:\WINDOWS\system32\Drivers\BTHUSB.sys
17:19:06.0015 3408 BTHUSB - ok
17:19:06.0312 3408 btnetBUs (d3c277a51ef9e2ec972d6221f99c0b6d) C:\WINDOWS\system32\Drivers\btnetBus.sys
17:19:06.0312 3408 btnetBUs - ok
17:19:06.0609 3408 BTWUSB (57e91e9925976bbc98984eebaaf1d84c) C:\WINDOWS\system32\Drivers\btwusb.sys
17:19:06.0609 3408 BTWUSB - ok
17:19:06.0718 3408 catchme - ok
17:19:07.0000 3408 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
17:19:07.0015 3408 cbidf - ok
17:19:07.0312 3408 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
17:19:07.0312 3408 cbidf2k - ok
17:19:07.0640 3408 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
17:19:07.0640 3408 cd20xrnt - ok
17:19:07.0937 3408 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
17:19:07.0937 3408 Cdaudio - ok
17:19:08.0265 3408 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
17:19:08.0265 3408 Cdfs - ok
17:19:08.0671 3408 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:19:08.0671 3408 Cdrom - ok
17:19:08.0937 3408 Changer - ok
17:19:09.0281 3408 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
17:19:09.0281 3408 CmBatt - ok
17:19:09.0562 3408 CmdIde (964d0f042aca51d5644779eb9d9ee40f) C:\WINDOWS\system32\DRIVERS\cmdide.sys
17:19:09.0562 3408 CmdIde - ok
17:19:09.0921 3408 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
17:19:09.0921 3408 Compbatt - ok
17:19:10.0218 3408 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
17:19:10.0218 3408 Cpqarray - ok
17:19:10.0515 3408 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
17:19:10.0531 3408 dac2w2k - ok
17:19:10.0812 3408 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
17:19:10.0812 3408 dac960nt - ok
17:19:11.0109 3408 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
17:19:11.0109 3408 Disk - ok
17:19:11.0484 3408 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
17:19:11.0500 3408 dmboot - ok
17:19:11.0843 3408 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
17:19:11.0843 3408 dmio - ok
17:19:12.0171 3408 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
17:19:12.0171 3408 dmload - ok
17:19:12.0484 3408 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
17:19:12.0500 3408 DMusic - ok
17:19:12.0781 3408 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
17:19:12.0781 3408 dpti2o - ok
17:19:13.0062 3408 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
17:19:13.0062 3408 drmkaud - ok
17:19:13.0390 3408 dtscsi - ok
17:19:13.0703 3408 E100B (866b8ee30e4504c11ae0d29ed6f8824b) C:\WINDOWS\system32\DRIVERS\e100b325.sys
17:19:13.0703 3408 E100B - ok
17:19:13.0984 3408 eamon (9309c5c9831203436e64cf2ae605c5d7) C:\WINDOWS\system32\DRIVERS\eamon.sys
17:19:13.0984 3408 eamon - ok
17:19:14.0296 3408 ehdrv (deff87f04ab5f6dd5edf2b80853bbe10) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
17:19:14.0296 3408 ehdrv - ok
17:19:14.0609 3408 epfwtdir (06c65ac0a703cf8eea4f284d901a1550) C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
17:19:14.0609 3408 epfwtdir - ok
17:19:14.0953 3408 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
17:19:14.0968 3408 Fastfat - ok
17:19:15.0281 3408 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
17:19:15.0281 3408 Fdc - ok
17:19:15.0593 3408 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
17:19:15.0593 3408 Fips - ok
17:19:15.0953 3408 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
17:19:15.0953 3408 Flpydisk - ok
17:19:16.0250 3408 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
17:19:16.0250 3408 FltMgr - ok
17:19:16.0578 3408 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:19:16.0578 3408 Fs_Rec - ok
17:19:16.0890 3408 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:19:16.0890 3408 Ftdisk - ok
17:19:17.0187 3408 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:19:17.0203 3408 Gpc - ok
17:19:17.0531 3408 HdAudAddService (8dc8b34992131eb4b4c71b1a47fdd21c) C:\WINDOWS\system32\drivers\CHDAudN.sys
17:19:17.0578 3408 HdAudAddService - ok
17:19:18.0140 3408 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
17:19:18.0203 3408 HDAudBus - ok
17:19:19.0046 3408 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:19:19.0046 3408 hidusb - ok
17:19:19.0515 3408 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
17:19:19.0515 3408 hpn - ok
17:19:19.0812 3408 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
17:19:19.0812 3408 HPZid412 - ok
17:19:20.0109 3408 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
17:19:20.0109 3408 HPZipr12 - ok
17:19:20.0406 3408 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
17:19:20.0406 3408 HPZius12 - ok
17:19:20.0734 3408 HSFHWAZL (26d99cb5d30f79e4459d855af690decd) C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
17:19:20.0734 3408 HSFHWAZL - ok
17:19:21.0062 3408 HSF_DPV (491b8f394e56ff31d6740f7a34540716) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
17:19:21.0109 3408 HSF_DPV - ok
17:19:21.0437 3408 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
17:19:21.0453 3408 HTTP - ok
17:19:21.0781 3408 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
17:19:21.0781 3408 i2omgmt - ok
17:19:22.0062 3408 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
17:19:22.0062 3408 i2omp - ok
17:19:22.0390 3408 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:19:22.0390 3408 i8042prt - ok
17:19:22.0875 3408 ialm (c1c2d6940d6ec2f247b0f3c11e0a18e0) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
17:19:23.0062 3408 ialm - ok
17:19:23.0375 3408 iaStor (fd7f9d74c2b35dbda400804a3f5ed5d8) C:\WINDOWS\system32\DRIVERS\iaStor.sys
17:19:23.0375 3408 iaStor - ok
17:19:23.0671 3408 IBMPMDRV (326edb99d2b509f6c48bf723c1817292) C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys
17:19:23.0671 3408 IBMPMDRV - ok
17:19:24.0046 3408 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
17:19:24.0062 3408 Imapi - ok
17:19:24.0343 3408 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
17:19:24.0343 3408 ini910u - ok
17:19:24.0640 3408 IntelIde (57d928e548b38502abba7a77a6eb7312) C:\WINDOWS\system32\DRIVERS\intelide.sys
17:19:24.0640 3408 IntelIde - ok
17:19:24.0937 3408 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
17:19:24.0937 3408 intelppm - ok
17:19:25.0218 3408 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
17:19:25.0218 3408 Ip6Fw - ok
17:19:25.0515 3408 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:19:25.0515 3408 IpFilterDriver - ok
17:19:25.0812 3408 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:19:25.0812 3408 IpInIp - ok
17:19:26.0156 3408 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:19:26.0156 3408 IpNat - ok
17:19:26.0468 3408 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:19:26.0468 3408 IPSec - ok
17:19:26.0765 3408 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
17:19:26.0765 3408 IRENUM - ok
17:19:27.0078 3408 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:19:27.0078 3408 isapnp - ok
17:19:27.0375 3408 IvtBtBUs (71e1fc547cc488d5cd7bf0860c96f5af) C:\WINDOWS\system32\Drivers\IvtBtBus.sys
17:19:27.0375 3408 IvtBtBUs - ok
17:19:27.0687 3408 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:19:27.0687 3408 Kbdclass - ok
17:19:28.0031 3408 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
17:19:28.0031 3408 kbdhid - ok
17:19:28.0375 3408 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
17:19:28.0375 3408 kmixer - ok
17:19:28.0453 3408 KProcessHacker2 (42868dcfd4ad0b089a65ff51bc2a6578) C:\Program Files\Process Hacker 2\kprocesshacker.sys
17:19:28.0453 3408 KProcessHacker2 - ok
17:19:28.0734 3408 KSecDD (1705745d900dabf2d89f90ebaddc7517) C:\WINDOWS\system32\drivers\KSecDD.sys
17:19:28.0734 3408 KSecDD - ok
17:19:29.0031 3408 lbrtfdc - ok
17:19:29.0312 3408 MBAMSwissArmy - ok
17:19:29.0625 3408 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
17:19:29.0625 3408 mdmxsdk - ok
17:19:29.0937 3408 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
17:19:29.0937 3408 mnmdd - ok
17:19:30.0250 3408 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
17:19:30.0250 3408 Modem - ok
17:19:30.0546 3408 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:19:30.0546 3408 Mouclass - ok
17:19:30.0859 3408 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:19:30.0859 3408 mouhid - ok
17:19:31.0171 3408 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
17:19:31.0187 3408 MountMgr - ok
17:19:31.0468 3408 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
17:19:31.0468 3408 mraid35x - ok
17:19:31.0765 3408 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:19:31.0781 3408 MRxDAV - ok
17:19:32.0109 3408 MRxSmb (60ae98742484e7ab80c3c1450e708148) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:19:32.0140 3408 MRxSmb - ok
17:19:32.0453 3408 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
17:19:32.0453 3408 Msfs - ok
17:19:32.0781 3408 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:19:32.0796 3408 MSKSSRV - ok
17:19:33.0093 3408 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:19:33.0093 3408 MSPCLOCK - ok
17:19:33.0406 3408 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
17:19:33.0421 3408 MSPQM - ok
17:19:33.0703 3408 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:19:33.0703 3408 mssmbios - ok
17:19:34.0046 3408 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
17:19:34.0046 3408 Mup - ok
17:19:34.0421 3408 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
17:19:34.0437 3408 NDIS - ok
17:19:34.0734 3408 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:19:34.0734 3408 NdisTapi - ok
17:19:35.0031 3408 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:19:35.0031 3408 Ndisuio - ok
17:19:35.0359 3408 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:19:35.0359 3408 NdisWan - ok
17:19:35.0671 3408 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
17:19:35.0671 3408 NDProxy - ok
17:19:35.0984 3408 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
17:19:35.0984 3408 NetBIOS - ok
17:19:36.0312 3408 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
17:19:36.0328 3408 NetBT - ok
17:19:36.0765 3408 NETw4x32 (9b18806954cb7f33b538cbf090562db2) C:\WINDOWS\system32\DRIVERS\NETw4x32.sys
17:19:36.0843 3408 NETw4x32 - ok
17:19:37.0156 3408 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
17:19:37.0171 3408 NIC1394 - ok
17:19:37.0468 3408 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
17:19:37.0484 3408 Npfs - ok
17:19:37.0890 3408 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
17:19:37.0906 3408 Ntfs - ok
17:19:38.0671 3408 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
17:19:38.0671 3408 Null - ok
17:19:39.0421 3408 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
17:19:39.0484 3408 nv - ok
17:19:39.0765 3408 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:19:39.0781 3408 NwlnkFlt - ok
17:19:40.0046 3408 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:19:40.0062 3408 NwlnkFwd - ok
17:19:40.0359 3408 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
17:19:40.0375 3408 ohci1394 - ok
17:19:40.0703 3408 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\DRIVERS\parport.sys
17:19:40.0703 3408 Parport - ok
17:19:41.0000 3408 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
17:19:41.0000 3408 PartMgr - ok
17:19:41.0296 3408 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
17:19:41.0296 3408 ParVdm - ok
17:19:41.0609 3408 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
17:19:41.0609 3408 pccsmcfd - ok
17:19:42.0000 3408 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
17:19:42.0000 3408 PCI - ok
17:19:42.0281 3408 PCIDump - ok
17:19:42.0593 3408 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
17:19:42.0593 3408 PCIIde - ok
17:19:42.0921 3408 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
17:19:42.0937 3408 Pcmcia - ok
17:19:43.0203 3408 PDCOMP - ok
17:19:43.0484 3408 PDFRAME - ok
17:19:43.0734 3408 PDRELI - ok
17:19:44.0078 3408 PDRFRAME - ok
17:19:44.0359 3408 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
17:19:44.0375 3408 perc2 - ok
17:19:44.0640 3408 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
17:19:44.0640 3408 perc2hib - ok
17:19:44.0968 3408 pmem (dedef40e1d05842639491365cb2c069e) C:\WINDOWS\System32\drivers\pmemnt.sys
17:19:44.0968 3408 pmem - ok
17:19:45.0265 3408 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:19:45.0265 3408 PptpMiniport - ok
17:19:45.0562 3408 PROCDD (1d80309fed4babf8ea9e7b84a394348b) C:\WINDOWS\system32\DRIVERS\PROCDD.SYS
17:19:45.0562 3408 PROCDD - ok
17:19:45.0859 3408 Processor (7eb15dce4ec3a0220bd796a15c18186e) C:\WINDOWS\system32\DRIVERS\processr.sys
17:19:45.0859 3408 Processor - ok
17:19:46.0171 3408 psadd (ce5114c9d3ab67e6f6f8017c5f975292) C:\WINDOWS\system32\DRIVERS\psadd.sys
17:19:46.0171 3408 psadd - ok
17:19:46.0484 3408 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
17:19:46.0500 3408 PSched - ok
17:19:46.0796 3408 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:19:46.0796 3408 Ptilink - ok
17:19:47.0093 3408 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
17:19:47.0093 3408 PxHelp20 - ok
17:19:47.0421 3408 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
17:19:47.0437 3408 ql1080 - ok
17:19:47.0703 3408 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
17:19:47.0703 3408 Ql10wnt - ok
17:19:48.0000 3408 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
17:19:48.0000 3408 ql12160 - ok
17:19:48.0296 3408 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
17:19:48.0296 3408 ql1240 - ok
17:19:48.0593 3408 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
17:19:48.0609 3408 ql1280 - ok
17:19:48.0906 3408 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:19:48.0906 3408 RasAcd - ok
17:19:49.0203 3408 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:19:49.0218 3408 Rasl2tp - ok
17:19:49.0515 3408 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:19:49.0515 3408 RasPppoe - ok
17:19:49.0812 3408 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
17:19:49.0812 3408 Raspti - ok
17:19:50.0140 3408 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:19:50.0140 3408 Rdbss - ok
17:19:50.0437 3408 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:19:50.0437 3408 RDPCDD - ok
17:19:50.0781 3408 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
17:19:50.0796 3408 rdpdr - ok
17:19:51.0140 3408 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
17:19:51.0140 3408 RDPWD - ok
17:19:51.0468 3408 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
17:19:51.0468 3408 redbook - ok
17:19:51.0796 3408 RFCOMM (851c30df2807fcfa21e4c681a7d6440e) C:\WINDOWS\system32\DRIVERS\rfcomm.sys
17:19:51.0796 3408 RFCOMM - ok
17:19:52.0140 3408 rimmptsk (d85e3fa9f5b1f29bb4ed185c450d1470) C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
17:19:52.0140 3408 rimmptsk - ok
17:19:52.0437 3408 rimsptsk (db8eb01c58c9fada00c70b1775278ae0) C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
17:19:52.0437 3408 rimsptsk - ok
17:19:52.0734 3408 risdptsk (ace2ce73d7b04eac48fb80482e05e770) C:\WINDOWS\system32\DRIVERS\risdptsk.sys
17:19:52.0750 3408 risdptsk - ok
17:19:53.0046 3408 rismxdp (6c1f93c0760c9f79a1869d07233df39d) C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
17:19:53.0046 3408 rismxdp - ok
17:19:53.0343 3408 s24trans (27fc71da659305e260acbda15a318399) C:\WINDOWS\system32\DRIVERS\s24trans.sys
17:19:53.0343 3408 s24trans - ok
17:19:53.0671 3408 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:19:53.0671 3408 Secdrv - ok
17:19:53.0953 3408 Ser2pl (6ce397c482bede91a38e56a8c4a0dc6d) C:\WINDOWS\system32\DRIVERS\ser2pl.sys
17:19:53.0953 3408 Ser2pl - ok
17:19:54.0250 3408 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
17:19:54.0250 3408 serenum - ok
17:19:54.0578 3408 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
17:19:54.0578 3408 Serial - ok
17:19:54.0953 3408 sfdrv01 (4c0d673281178cb496011a2e28571fc8) C:\WINDOWS\system32\drivers\sfdrv01.sys
17:19:54.0953 3408 sfdrv01 - ok
17:19:55.0296 3408 sfhlp02 (15be2b5e4dc5b8623cf167720682abc9) C:\WINDOWS\system32\drivers\sfhlp02.sys
17:19:55.0296 3408 sfhlp02 - ok
17:19:55.0609 3408 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
17:19:55.0609 3408 Sfloppy - ok
17:19:55.0906 3408 sfvfs02 (d5a7e09d2c6a702809e49190d52adc9f) C:\WINDOWS\system32\drivers\sfvfs02.sys
17:19:55.0906 3408 sfvfs02 - ok
17:19:56.0203 3408 Shockprf (6873edc0d75e1e255208442ea3e018c1) C:\WINDOWS\system32\DRIVERS\Apsx86.sys
17:19:56.0203 3408 Shockprf - ok
17:19:56.0468 3408 Simbad - ok
17:19:56.0781 3408 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
17:19:56.0781 3408 sisagp - ok
17:19:56.0859 3408 smihlp (350483c5a139f8a39ed3191aff39bed0) C:\Program Files\Common Files\ThinkVantage Fingerprint Software\Drivers\smihlp.sys
17:19:56.0859 3408 smihlp - ok
17:19:57.0125 3408 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
17:19:57.0125 3408 Sparrow - ok
17:19:57.0437 3408 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
17:19:57.0453 3408 splitter - ok
17:19:57.0703 3408 sptd - ok
17:19:58.0515 3408 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
17:19:58.0515 3408 sr - ok
17:19:59.0406 3408 Srv (5252605079810904e31c332e241cd59b) C:\WINDOWS\system32\DRIVERS\srv.sys
17:19:59.0421 3408 Srv - ok
17:19:59.0734 3408 StillCam (06cda2a5a549bc455d004461e6bc5b33) C:\WINDOWS\system32\DRIVERS\serscan.sys
17:19:59.0734 3408 StillCam - ok
17:20:00.0031 3408 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
17:20:00.0031 3408 swenum - ok
17:20:00.0328 3408 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
17:20:00.0328 3408 swmidi - ok
17:20:00.0625 3408 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
17:20:00.0625 3408 symc810 - ok
17:20:00.0906 3408 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
17:20:00.0906 3408 symc8xx - ok
17:20:01.0203 3408 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
17:20:01.0203 3408 sym_hi - ok
17:20:01.0500 3408 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
17:20:01.0500 3408 sym_u3 - ok
17:20:01.0890 3408 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
17:20:01.0890 3408 sysaudio - ok
17:20:02.0187 3408 Tcpip (93ea8d04ec73a85db02eb8805988f733) C:\WINDOWS\system32\drivers\tcpip.sys
17:20:02.0203 3408 Tcpip - ok
17:20:02.0500 3408 TcUsb (109d1f5cd9cc370a87901db3ddd533f1) C:\WINDOWS\system32\Drivers\tcusb.sys
17:20:02.0515 3408 TcUsb - ok
17:20:02.0812 3408 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
17:20:02.0812 3408 TDPIPE - ok
17:20:03.0109 3408 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
17:20:03.0109 3408 TDTCP - ok
17:20:03.0421 3408 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
17:20:03.0421 3408 TermDD - ok
17:20:03.0718 3408 TosIde (fd4fd7d6fda5c019ed86025d7be1510f) C:\WINDOWS\system32\DRIVERS\toside.sys
17:20:03.0718 3408 TosIde - ok
17:20:04.0000 3408 TPDIGIMN (9c72fdd0fa2d3be3bd5cca211fb19916) C:\WINDOWS\system32\DRIVERS\ApsHM86.sys
17:20:04.0000 3408 TPDIGIMN - ok
17:20:04.0312 3408 TPHKDRV (542770c8925e13b29b1ba63f05898058) C:\WINDOWS\system32\DRIVERS\TPHKDRV.sys
17:20:04.0312 3408 TPHKDRV - ok
17:20:04.0625 3408 TPPWRIF (44672de6cea9569c21c4b7a8d2560750) C:\WINDOWS\system32\drivers\Tppwrif.sys
17:20:04.0625 3408 TPPWRIF - ok
17:20:04.0921 3408 TSMAPIP (ea856d91b3c088ce331e7740c72f43a3) C:\WINDOWS\system32\drivers\TSMAPIP.SYS
17:20:04.0937 3408 TSMAPIP - ok
17:20:05.0234 3408 tvtfilter (49258a02a1e8d304ed88b0f1c56b1738) C:\WINDOWS\system32\DRIVERS\tvtfilter.sys
17:20:05.0234 3408 tvtfilter - ok
17:20:05.0593 3408 TVTI2C (c254bff0a928ea7d5ccdc2522d56fd01) C:\WINDOWS\system32\DRIVERS\Tvti2c.sys
17:20:05.0593 3408 TVTI2C - ok
17:20:05.0875 3408 TVTPktFilter - ok
17:20:06.0265 3408 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
17:20:06.0265 3408 Udfs - ok
17:20:06.0562 3408 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
17:20:06.0562 3408 ultra - ok
17:20:06.0906 3408 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
17:20:06.0921 3408 Update - ok
17:20:07.0250 3408 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:20:07.0250 3408 usbccgp - ok
17:20:07.0546 3408 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:20:07.0546 3408 usbehci - ok
17:20:07.0843 3408 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:20:07.0859 3408 usbhub - ok
17:20:08.0140 3408 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
17:20:08.0140 3408 usbprint - ok
17:20:08.0421 3408 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
17:20:08.0421 3408 usbscan - ok
17:20:08.0718 3408 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:20:08.0718 3408 USBSTOR - ok
17:20:09.0000 3408 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:20:09.0000 3408 usbuhci - ok
17:20:09.0250 3408 VComm - ok
17:20:09.0515 3408 VcommMgr - ok
17:20:09.0796 3408 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
17:20:09.0796 3408 VgaSave - ok
17:20:10.0093 3408 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
17:20:10.0093 3408 viaagp - ok
17:20:10.0421 3408 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
17:20:10.0421 3408 ViaIde - ok
17:20:10.0718 3408 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
17:20:10.0718 3408 VolSnap - ok
17:20:11.0046 3408 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:20:11.0046 3408 Wanarp - ok
17:20:11.0359 3408 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
17:20:11.0375 3408 Wdf01000 - ok
17:20:11.0671 3408 WDICA - ok
17:20:12.0015 3408 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
17:20:12.0031 3408 wdmaud - ok
17:20:12.0343 3408 winachsf (458b2e703b210683194158d639770588) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
17:20:12.0375 3408 winachsf - ok
17:20:12.0703 3408 WSIMD (21ac4f228f3d36876a42277c76a766c0) C:\WINDOWS\system32\DRIVERS\wsimd.sys
17:20:12.0703 3408 WSIMD - ok
17:20:12.0750 3408 MBR (0x1B8) (1f77bed6c52f7d558ba51ced4aef7a21) \Device\Harddisk0\DR0
17:20:12.0765 3408 \Device\Harddisk0\DR0 - ok
17:20:12.0781 3408 Boot (0x1200) (84c34d5c5fcb8782a43088a7eb373592) \Device\Harddisk0\DR0\Partition0
17:20:12.0781 3408 \Device\Harddisk0\DR0\Partition0 - ok
17:20:12.0781 3408 ============================================================
17:20:12.0781 3408 Scan finished
17:20:12.0781 3408 ============================================================
17:20:12.0796 2608 Detected object count: 0
17:20:12.0796 2608 Actual detected object count: 0
17:18:17.0250 1816 ============================================================
17:18:17.0250 1816 Current date / time: 2011/11/28 17:18:17.0250
17:18:17.0250 1816 SystemInfo:
17:18:17.0250 1816
17:18:17.0250 1816 OS Version: 5.1.2600 ServicePack: 3.0
17:18:17.0250 1816 Product type: Workstation
17:18:17.0250 1816 ComputerName: LENOVO-551F1D3E
17:18:17.0265 1816 UserName: OEM
17:18:17.0265 1816 Windows directory: C:\WINDOWS
17:18:17.0265 1816 System windows directory: C:\WINDOWS
17:18:17.0265 1816 Processor architecture: Intel x86
17:18:17.0265 1816 Number of processors: 2
17:18:17.0265 1816 Page size: 0x1000
17:18:17.0265 1816 Boot type: Normal boot
17:18:17.0265 1816 ============================================================
17:18:19.0609 1816 Initialize success
17:18:52.0906 3408 ============================================================
17:18:52.0906 3408 Scan started
17:18:52.0906 3408 Mode: Manual;
17:18:52.0906 3408 ============================================================
17:18:54.0046 3408 Abiosdsk - ok
17:18:54.0343 3408 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
17:18:54.0343 3408 abp480n5 - ok
17:18:54.0671 3408 ac97intc (0f2d66d5f08ebe2f77bb904288dcf6f0) C:\WINDOWS\system32\drivers\ac97intc.sys
17:18:54.0671 3408 ac97intc - ok
17:18:55.0109 3408 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:18:55.0109 3408 ACPI - ok
17:18:55.0421 3408 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
17:18:55.0421 3408 ACPIEC - ok
17:18:55.0703 3408 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
17:18:55.0703 3408 adpu160m - ok
17:18:56.0109 3408 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
17:18:56.0109 3408 aec - ok
17:18:56.0437 3408 AFD (e3049b90fe06f3f740b7cfda44995e2c) C:\WINDOWS\System32\drivers\afd.sys
17:18:56.0437 3408 AFD - ok
17:18:56.0750 3408 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
17:18:56.0750 3408 agp440 - ok
17:18:57.0046 3408 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
17:18:57.0046 3408 agpCPQ - ok
17:18:57.0421 3408 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
17:18:57.0421 3408 Aha154x - ok
17:18:57.0781 3408 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
17:18:57.0781 3408 aic78u2 - ok
17:18:58.0546 3408 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
17:18:58.0546 3408 aic78xx - ok
17:18:58.0843 3408 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
17:18:58.0843 3408 AliIde - ok
17:18:59.0156 3408 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
17:18:59.0156 3408 alim1541 - ok
17:18:59.0453 3408 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
17:18:59.0453 3408 amdagp - ok
17:18:59.0750 3408 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
17:18:59.0750 3408 amsint - ok
17:19:00.0046 3408 ApfiltrService (348055c4afff8e60c01aa6bdc8c58ca7) C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
17:19:00.0046 3408 ApfiltrService - ok
17:19:00.0390 3408 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
17:19:00.0390 3408 Arp1394 - ok
17:19:00.0671 3408 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
17:19:00.0671 3408 asc - ok
17:19:00.0968 3408 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
17:19:00.0968 3408 asc3350p - ok
17:19:01.0250 3408 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
17:19:01.0250 3408 asc3550 - ok
17:19:01.0640 3408 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:19:01.0640 3408 AsyncMac - ok
17:19:01.0953 3408 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
17:19:01.0968 3408 atapi - ok
17:19:02.0234 3408 Atdisk - ok
17:19:02.0546 3408 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:19:02.0546 3408 Atmarpc - ok
17:19:02.0843 3408 atmeltpm (dbf0d7e2df33b469eb55406fea759350) C:\WINDOWS\system32\DRIVERS\atmeltpm.sys
17:19:02.0859 3408 atmeltpm - ok
17:19:03.0140 3408 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
17:19:03.0156 3408 audstub - ok
17:19:03.0468 3408 b57w2k (bb1a2a73f993b623f99e03ed2f9e014c) C:\WINDOWS\system32\DRIVERS\b57xp32.sys
17:19:03.0468 3408 b57w2k - ok
17:19:03.0828 3408 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
17:19:03.0828 3408 Beep - ok
17:19:04.0093 3408 BT - ok
17:19:04.0359 3408 Btcsrusb - ok
17:19:04.0718 3408 BthEnum (b279426e3c0c344893ed78a613a73bde) C:\WINDOWS\system32\DRIVERS\BthEnum.sys
17:19:04.0718 3408 BthEnum - ok
17:19:05.0015 3408 BtHidBus (ce441ccd98c5ecb10cb12fcaf97322ec) C:\WINDOWS\system32\Drivers\BtHidBus.sys
17:19:05.0015 3408 BtHidBus - ok
17:19:05.0328 3408 BthPan (80602b8746d3738f5886ce3d67ef06b6) C:\WINDOWS\system32\DRIVERS\bthpan.sys
17:19:05.0328 3408 BthPan - ok
17:19:05.0703 3408 BTHPORT (f338662a6c1fc11dd9508f6dff2c06a2) C:\WINDOWS\system32\Drivers\BTHport.sys
17:19:05.0718 3408 BTHPORT - ok
17:19:06.0000 3408 BTHUSB (61364cd71ef63b0f038b7e9df00f1efa) C:\WINDOWS\system32\Drivers\BTHUSB.sys
17:19:06.0015 3408 BTHUSB - ok
17:19:06.0312 3408 btnetBUs (d3c277a51ef9e2ec972d6221f99c0b6d) C:\WINDOWS\system32\Drivers\btnetBus.sys
17:19:06.0312 3408 btnetBUs - ok
17:19:06.0609 3408 BTWUSB (57e91e9925976bbc98984eebaaf1d84c) C:\WINDOWS\system32\Drivers\btwusb.sys
17:19:06.0609 3408 BTWUSB - ok
17:19:06.0718 3408 catchme - ok
17:19:07.0000 3408 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
17:19:07.0015 3408 cbidf - ok
17:19:07.0312 3408 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
17:19:07.0312 3408 cbidf2k - ok
17:19:07.0640 3408 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
17:19:07.0640 3408 cd20xrnt - ok
17:19:07.0937 3408 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
17:19:07.0937 3408 Cdaudio - ok
17:19:08.0265 3408 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
17:19:08.0265 3408 Cdfs - ok
17:19:08.0671 3408 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:19:08.0671 3408 Cdrom - ok
17:19:08.0937 3408 Changer - ok
17:19:09.0281 3408 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
17:19:09.0281 3408 CmBatt - ok
17:19:09.0562 3408 CmdIde (964d0f042aca51d5644779eb9d9ee40f) C:\WINDOWS\system32\DRIVERS\cmdide.sys
17:19:09.0562 3408 CmdIde - ok
17:19:09.0921 3408 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
17:19:09.0921 3408 Compbatt - ok
17:19:10.0218 3408 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
17:19:10.0218 3408 Cpqarray - ok
17:19:10.0515 3408 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
17:19:10.0531 3408 dac2w2k - ok
17:19:10.0812 3408 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
17:19:10.0812 3408 dac960nt - ok
17:19:11.0109 3408 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
17:19:11.0109 3408 Disk - ok
17:19:11.0484 3408 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
17:19:11.0500 3408 dmboot - ok
17:19:11.0843 3408 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
17:19:11.0843 3408 dmio - ok
17:19:12.0171 3408 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
17:19:12.0171 3408 dmload - ok
17:19:12.0484 3408 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
17:19:12.0500 3408 DMusic - ok
17:19:12.0781 3408 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
17:19:12.0781 3408 dpti2o - ok
17:19:13.0062 3408 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
17:19:13.0062 3408 drmkaud - ok
17:19:13.0390 3408 dtscsi - ok
17:19:13.0703 3408 E100B (866b8ee30e4504c11ae0d29ed6f8824b) C:\WINDOWS\system32\DRIVERS\e100b325.sys
17:19:13.0703 3408 E100B - ok
17:19:13.0984 3408 eamon (9309c5c9831203436e64cf2ae605c5d7) C:\WINDOWS\system32\DRIVERS\eamon.sys
17:19:13.0984 3408 eamon - ok
17:19:14.0296 3408 ehdrv (deff87f04ab5f6dd5edf2b80853bbe10) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
17:19:14.0296 3408 ehdrv - ok
17:19:14.0609 3408 epfwtdir (06c65ac0a703cf8eea4f284d901a1550) C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
17:19:14.0609 3408 epfwtdir - ok
17:19:14.0953 3408 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
17:19:14.0968 3408 Fastfat - ok
17:19:15.0281 3408 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
17:19:15.0281 3408 Fdc - ok
17:19:15.0593 3408 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
17:19:15.0593 3408 Fips - ok
17:19:15.0953 3408 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
17:19:15.0953 3408 Flpydisk - ok
17:19:16.0250 3408 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
17:19:16.0250 3408 FltMgr - ok
17:19:16.0578 3408 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:19:16.0578 3408 Fs_Rec - ok
17:19:16.0890 3408 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:19:16.0890 3408 Ftdisk - ok
17:19:17.0187 3408 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:19:17.0203 3408 Gpc - ok
17:19:17.0531 3408 HdAudAddService (8dc8b34992131eb4b4c71b1a47fdd21c) C:\WINDOWS\system32\drivers\CHDAudN.sys
17:19:17.0578 3408 HdAudAddService - ok
17:19:18.0140 3408 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
17:19:18.0203 3408 HDAudBus - ok
17:19:19.0046 3408 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:19:19.0046 3408 hidusb - ok
17:19:19.0515 3408 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
17:19:19.0515 3408 hpn - ok
17:19:19.0812 3408 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
17:19:19.0812 3408 HPZid412 - ok
17:19:20.0109 3408 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
17:19:20.0109 3408 HPZipr12 - ok
17:19:20.0406 3408 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
17:19:20.0406 3408 HPZius12 - ok
17:19:20.0734 3408 HSFHWAZL (26d99cb5d30f79e4459d855af690decd) C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
17:19:20.0734 3408 HSFHWAZL - ok
17:19:21.0062 3408 HSF_DPV (491b8f394e56ff31d6740f7a34540716) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
17:19:21.0109 3408 HSF_DPV - ok
17:19:21.0437 3408 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
17:19:21.0453 3408 HTTP - ok
17:19:21.0781 3408 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
17:19:21.0781 3408 i2omgmt - ok
17:19:22.0062 3408 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
17:19:22.0062 3408 i2omp - ok
17:19:22.0390 3408 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:19:22.0390 3408 i8042prt - ok
17:19:22.0875 3408 ialm (c1c2d6940d6ec2f247b0f3c11e0a18e0) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
17:19:23.0062 3408 ialm - ok
17:19:23.0375 3408 iaStor (fd7f9d74c2b35dbda400804a3f5ed5d8) C:\WINDOWS\system32\DRIVERS\iaStor.sys
17:19:23.0375 3408 iaStor - ok
17:19:23.0671 3408 IBMPMDRV (326edb99d2b509f6c48bf723c1817292) C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys
17:19:23.0671 3408 IBMPMDRV - ok
17:19:24.0046 3408 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
17:19:24.0062 3408 Imapi - ok
17:19:24.0343 3408 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
17:19:24.0343 3408 ini910u - ok
17:19:24.0640 3408 IntelIde (57d928e548b38502abba7a77a6eb7312) C:\WINDOWS\system32\DRIVERS\intelide.sys
17:19:24.0640 3408 IntelIde - ok
17:19:24.0937 3408 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
17:19:24.0937 3408 intelppm - ok
17:19:25.0218 3408 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
17:19:25.0218 3408 Ip6Fw - ok
17:19:25.0515 3408 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:19:25.0515 3408 IpFilterDriver - ok
17:19:25.0812 3408 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:19:25.0812 3408 IpInIp - ok
17:19:26.0156 3408 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:19:26.0156 3408 IpNat - ok
17:19:26.0468 3408 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:19:26.0468 3408 IPSec - ok
17:19:26.0765 3408 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
17:19:26.0765 3408 IRENUM - ok
17:19:27.0078 3408 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:19:27.0078 3408 isapnp - ok
17:19:27.0375 3408 IvtBtBUs (71e1fc547cc488d5cd7bf0860c96f5af) C:\WINDOWS\system32\Drivers\IvtBtBus.sys
17:19:27.0375 3408 IvtBtBUs - ok
17:19:27.0687 3408 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:19:27.0687 3408 Kbdclass - ok
17:19:28.0031 3408 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
17:19:28.0031 3408 kbdhid - ok
17:19:28.0375 3408 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
17:19:28.0375 3408 kmixer - ok
17:19:28.0453 3408 KProcessHacker2 (42868dcfd4ad0b089a65ff51bc2a6578) C:\Program Files\Process Hacker 2\kprocesshacker.sys
17:19:28.0453 3408 KProcessHacker2 - ok
17:19:28.0734 3408 KSecDD (1705745d900dabf2d89f90ebaddc7517) C:\WINDOWS\system32\drivers\KSecDD.sys
17:19:28.0734 3408 KSecDD - ok
17:19:29.0031 3408 lbrtfdc - ok
17:19:29.0312 3408 MBAMSwissArmy - ok
17:19:29.0625 3408 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
17:19:29.0625 3408 mdmxsdk - ok
17:19:29.0937 3408 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
17:19:29.0937 3408 mnmdd - ok
17:19:30.0250 3408 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
17:19:30.0250 3408 Modem - ok
17:19:30.0546 3408 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:19:30.0546 3408 Mouclass - ok
17:19:30.0859 3408 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:19:30.0859 3408 mouhid - ok
17:19:31.0171 3408 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
17:19:31.0187 3408 MountMgr - ok
17:19:31.0468 3408 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
17:19:31.0468 3408 mraid35x - ok
17:19:31.0765 3408 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:19:31.0781 3408 MRxDAV - ok
17:19:32.0109 3408 MRxSmb (60ae98742484e7ab80c3c1450e708148) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:19:32.0140 3408 MRxSmb - ok
17:19:32.0453 3408 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
17:19:32.0453 3408 Msfs - ok
17:19:32.0781 3408 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:19:32.0796 3408 MSKSSRV - ok
17:19:33.0093 3408 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:19:33.0093 3408 MSPCLOCK - ok
17:19:33.0406 3408 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
17:19:33.0421 3408 MSPQM - ok
17:19:33.0703 3408 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:19:33.0703 3408 mssmbios - ok
17:19:34.0046 3408 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
17:19:34.0046 3408 Mup - ok
17:19:34.0421 3408 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
17:19:34.0437 3408 NDIS - ok
17:19:34.0734 3408 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:19:34.0734 3408 NdisTapi - ok
17:19:35.0031 3408 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:19:35.0031 3408 Ndisuio - ok
17:19:35.0359 3408 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:19:35.0359 3408 NdisWan - ok
17:19:35.0671 3408 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
17:19:35.0671 3408 NDProxy - ok
17:19:35.0984 3408 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
17:19:35.0984 3408 NetBIOS - ok
17:19:36.0312 3408 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
17:19:36.0328 3408 NetBT - ok
17:19:36.0765 3408 NETw4x32 (9b18806954cb7f33b538cbf090562db2) C:\WINDOWS\system32\DRIVERS\NETw4x32.sys
17:19:36.0843 3408 NETw4x32 - ok
17:19:37.0156 3408 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
17:19:37.0171 3408 NIC1394 - ok
17:19:37.0468 3408 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
17:19:37.0484 3408 Npfs - ok
17:19:37.0890 3408 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
17:19:37.0906 3408 Ntfs - ok
17:19:38.0671 3408 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
17:19:38.0671 3408 Null - ok
17:19:39.0421 3408 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
17:19:39.0484 3408 nv - ok
17:19:39.0765 3408 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:19:39.0781 3408 NwlnkFlt - ok
17:19:40.0046 3408 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:19:40.0062 3408 NwlnkFwd - ok
17:19:40.0359 3408 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
17:19:40.0375 3408 ohci1394 - ok
17:19:40.0703 3408 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\DRIVERS\parport.sys
17:19:40.0703 3408 Parport - ok
17:19:41.0000 3408 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
17:19:41.0000 3408 PartMgr - ok
17:19:41.0296 3408 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
17:19:41.0296 3408 ParVdm - ok
17:19:41.0609 3408 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
17:19:41.0609 3408 pccsmcfd - ok
17:19:42.0000 3408 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
17:19:42.0000 3408 PCI - ok
17:19:42.0281 3408 PCIDump - ok
17:19:42.0593 3408 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
17:19:42.0593 3408 PCIIde - ok
17:19:42.0921 3408 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
17:19:42.0937 3408 Pcmcia - ok
17:19:43.0203 3408 PDCOMP - ok
17:19:43.0484 3408 PDFRAME - ok
17:19:43.0734 3408 PDRELI - ok
17:19:44.0078 3408 PDRFRAME - ok
17:19:44.0359 3408 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
17:19:44.0375 3408 perc2 - ok
17:19:44.0640 3408 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
17:19:44.0640 3408 perc2hib - ok
17:19:44.0968 3408 pmem (dedef40e1d05842639491365cb2c069e) C:\WINDOWS\System32\drivers\pmemnt.sys
17:19:44.0968 3408 pmem - ok
17:19:45.0265 3408 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:19:45.0265 3408 PptpMiniport - ok
17:19:45.0562 3408 PROCDD (1d80309fed4babf8ea9e7b84a394348b) C:\WINDOWS\system32\DRIVERS\PROCDD.SYS
17:19:45.0562 3408 PROCDD - ok
17:19:45.0859 3408 Processor (7eb15dce4ec3a0220bd796a15c18186e) C:\WINDOWS\system32\DRIVERS\processr.sys
17:19:45.0859 3408 Processor - ok
17:19:46.0171 3408 psadd (ce5114c9d3ab67e6f6f8017c5f975292) C:\WINDOWS\system32\DRIVERS\psadd.sys
17:19:46.0171 3408 psadd - ok
17:19:46.0484 3408 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
17:19:46.0500 3408 PSched - ok
17:19:46.0796 3408 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:19:46.0796 3408 Ptilink - ok
17:19:47.0093 3408 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
17:19:47.0093 3408 PxHelp20 - ok
17:19:47.0421 3408 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
17:19:47.0437 3408 ql1080 - ok
17:19:47.0703 3408 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
17:19:47.0703 3408 Ql10wnt - ok
17:19:48.0000 3408 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
17:19:48.0000 3408 ql12160 - ok
17:19:48.0296 3408 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
17:19:48.0296 3408 ql1240 - ok
17:19:48.0593 3408 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
17:19:48.0609 3408 ql1280 - ok
17:19:48.0906 3408 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:19:48.0906 3408 RasAcd - ok
17:19:49.0203 3408 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:19:49.0218 3408 Rasl2tp - ok
17:19:49.0515 3408 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:19:49.0515 3408 RasPppoe - ok
17:19:49.0812 3408 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
17:19:49.0812 3408 Raspti - ok
17:19:50.0140 3408 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:19:50.0140 3408 Rdbss - ok
17:19:50.0437 3408 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:19:50.0437 3408 RDPCDD - ok
17:19:50.0781 3408 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
17:19:50.0796 3408 rdpdr - ok
17:19:51.0140 3408 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
17:19:51.0140 3408 RDPWD - ok
17:19:51.0468 3408 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
17:19:51.0468 3408 redbook - ok
17:19:51.0796 3408 RFCOMM (851c30df2807fcfa21e4c681a7d6440e) C:\WINDOWS\system32\DRIVERS\rfcomm.sys
17:19:51.0796 3408 RFCOMM - ok
17:19:52.0140 3408 rimmptsk (d85e3fa9f5b1f29bb4ed185c450d1470) C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
17:19:52.0140 3408 rimmptsk - ok
17:19:52.0437 3408 rimsptsk (db8eb01c58c9fada00c70b1775278ae0) C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
17:19:52.0437 3408 rimsptsk - ok
17:19:52.0734 3408 risdptsk (ace2ce73d7b04eac48fb80482e05e770) C:\WINDOWS\system32\DRIVERS\risdptsk.sys
17:19:52.0750 3408 risdptsk - ok
17:19:53.0046 3408 rismxdp (6c1f93c0760c9f79a1869d07233df39d) C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
17:19:53.0046 3408 rismxdp - ok
17:19:53.0343 3408 s24trans (27fc71da659305e260acbda15a318399) C:\WINDOWS\system32\DRIVERS\s24trans.sys
17:19:53.0343 3408 s24trans - ok
17:19:53.0671 3408 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:19:53.0671 3408 Secdrv - ok
17:19:53.0953 3408 Ser2pl (6ce397c482bede91a38e56a8c4a0dc6d) C:\WINDOWS\system32\DRIVERS\ser2pl.sys
17:19:53.0953 3408 Ser2pl - ok
17:19:54.0250 3408 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
17:19:54.0250 3408 serenum - ok
17:19:54.0578 3408 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
17:19:54.0578 3408 Serial - ok
17:19:54.0953 3408 sfdrv01 (4c0d673281178cb496011a2e28571fc8) C:\WINDOWS\system32\drivers\sfdrv01.sys
17:19:54.0953 3408 sfdrv01 - ok
17:19:55.0296 3408 sfhlp02 (15be2b5e4dc5b8623cf167720682abc9) C:\WINDOWS\system32\drivers\sfhlp02.sys
17:19:55.0296 3408 sfhlp02 - ok
17:19:55.0609 3408 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
17:19:55.0609 3408 Sfloppy - ok
17:19:55.0906 3408 sfvfs02 (d5a7e09d2c6a702809e49190d52adc9f) C:\WINDOWS\system32\drivers\sfvfs02.sys
17:19:55.0906 3408 sfvfs02 - ok
17:19:56.0203 3408 Shockprf (6873edc0d75e1e255208442ea3e018c1) C:\WINDOWS\system32\DRIVERS\Apsx86.sys
17:19:56.0203 3408 Shockprf - ok
17:19:56.0468 3408 Simbad - ok
17:19:56.0781 3408 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
17:19:56.0781 3408 sisagp - ok
17:19:56.0859 3408 smihlp (350483c5a139f8a39ed3191aff39bed0) C:\Program Files\Common Files\ThinkVantage Fingerprint Software\Drivers\smihlp.sys
17:19:56.0859 3408 smihlp - ok
17:19:57.0125 3408 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
17:19:57.0125 3408 Sparrow - ok
17:19:57.0437 3408 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
17:19:57.0453 3408 splitter - ok
17:19:57.0703 3408 sptd - ok
17:19:58.0515 3408 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
17:19:58.0515 3408 sr - ok
17:19:59.0406 3408 Srv (5252605079810904e31c332e241cd59b) C:\WINDOWS\system32\DRIVERS\srv.sys
17:19:59.0421 3408 Srv - ok
17:19:59.0734 3408 StillCam (06cda2a5a549bc455d004461e6bc5b33) C:\WINDOWS\system32\DRIVERS\serscan.sys
17:19:59.0734 3408 StillCam - ok
17:20:00.0031 3408 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
17:20:00.0031 3408 swenum - ok
17:20:00.0328 3408 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
17:20:00.0328 3408 swmidi - ok
17:20:00.0625 3408 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
17:20:00.0625 3408 symc810 - ok
17:20:00.0906 3408 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
17:20:00.0906 3408 symc8xx - ok
17:20:01.0203 3408 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
17:20:01.0203 3408 sym_hi - ok
17:20:01.0500 3408 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
17:20:01.0500 3408 sym_u3 - ok
17:20:01.0890 3408 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
17:20:01.0890 3408 sysaudio - ok
17:20:02.0187 3408 Tcpip (93ea8d04ec73a85db02eb8805988f733) C:\WINDOWS\system32\drivers\tcpip.sys
17:20:02.0203 3408 Tcpip - ok
17:20:02.0500 3408 TcUsb (109d1f5cd9cc370a87901db3ddd533f1) C:\WINDOWS\system32\Drivers\tcusb.sys
17:20:02.0515 3408 TcUsb - ok
17:20:02.0812 3408 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
17:20:02.0812 3408 TDPIPE - ok
17:20:03.0109 3408 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
17:20:03.0109 3408 TDTCP - ok
17:20:03.0421 3408 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
17:20:03.0421 3408 TermDD - ok
17:20:03.0718 3408 TosIde (fd4fd7d6fda5c019ed86025d7be1510f) C:\WINDOWS\system32\DRIVERS\toside.sys
17:20:03.0718 3408 TosIde - ok
17:20:04.0000 3408 TPDIGIMN (9c72fdd0fa2d3be3bd5cca211fb19916) C:\WINDOWS\system32\DRIVERS\ApsHM86.sys
17:20:04.0000 3408 TPDIGIMN - ok
17:20:04.0312 3408 TPHKDRV (542770c8925e13b29b1ba63f05898058) C:\WINDOWS\system32\DRIVERS\TPHKDRV.sys
17:20:04.0312 3408 TPHKDRV - ok
17:20:04.0625 3408 TPPWRIF (44672de6cea9569c21c4b7a8d2560750) C:\WINDOWS\system32\drivers\Tppwrif.sys
17:20:04.0625 3408 TPPWRIF - ok
17:20:04.0921 3408 TSMAPIP (ea856d91b3c088ce331e7740c72f43a3) C:\WINDOWS\system32\drivers\TSMAPIP.SYS
17:20:04.0937 3408 TSMAPIP - ok
17:20:05.0234 3408 tvtfilter (49258a02a1e8d304ed88b0f1c56b1738) C:\WINDOWS\system32\DRIVERS\tvtfilter.sys
17:20:05.0234 3408 tvtfilter - ok
17:20:05.0593 3408 TVTI2C (c254bff0a928ea7d5ccdc2522d56fd01) C:\WINDOWS\system32\DRIVERS\Tvti2c.sys
17:20:05.0593 3408 TVTI2C - ok
17:20:05.0875 3408 TVTPktFilter - ok
17:20:06.0265 3408 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
17:20:06.0265 3408 Udfs - ok
17:20:06.0562 3408 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
17:20:06.0562 3408 ultra - ok
17:20:06.0906 3408 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
17:20:06.0921 3408 Update - ok
17:20:07.0250 3408 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:20:07.0250 3408 usbccgp - ok
17:20:07.0546 3408 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:20:07.0546 3408 usbehci - ok
17:20:07.0843 3408 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:20:07.0859 3408 usbhub - ok
17:20:08.0140 3408 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
17:20:08.0140 3408 usbprint - ok
17:20:08.0421 3408 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
17:20:08.0421 3408 usbscan - ok
17:20:08.0718 3408 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:20:08.0718 3408 USBSTOR - ok
17:20:09.0000 3408 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:20:09.0000 3408 usbuhci - ok
17:20:09.0250 3408 VComm - ok
17:20:09.0515 3408 VcommMgr - ok
17:20:09.0796 3408 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
17:20:09.0796 3408 VgaSave - ok
17:20:10.0093 3408 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
17:20:10.0093 3408 viaagp - ok
17:20:10.0421 3408 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
17:20:10.0421 3408 ViaIde - ok
17:20:10.0718 3408 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
17:20:10.0718 3408 VolSnap - ok
17:20:11.0046 3408 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:20:11.0046 3408 Wanarp - ok
17:20:11.0359 3408 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
17:20:11.0375 3408 Wdf01000 - ok
17:20:11.0671 3408 WDICA - ok
17:20:12.0015 3408 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
17:20:12.0031 3408 wdmaud - ok
17:20:12.0343 3408 winachsf (458b2e703b210683194158d639770588) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
17:20:12.0375 3408 winachsf - ok
17:20:12.0703 3408 WSIMD (21ac4f228f3d36876a42277c76a766c0) C:\WINDOWS\system32\DRIVERS\wsimd.sys
17:20:12.0703 3408 WSIMD - ok
17:20:12.0750 3408 MBR (0x1B8) (1f77bed6c52f7d558ba51ced4aef7a21) \Device\Harddisk0\DR0
17:20:12.0765 3408 \Device\Harddisk0\DR0 - ok
17:20:12.0781 3408 Boot (0x1200) (84c34d5c5fcb8782a43088a7eb373592) \Device\Harddisk0\DR0\Partition0
17:20:12.0781 3408 \Device\Harddisk0\DR0\Partition0 - ok
17:20:12.0781 3408 ============================================================
17:20:12.0781 3408 Scan finished
17:20:12.0781 3408 ============================================================
17:20:12.0796 2608 Detected object count: 0
17:20:12.0796 2608 Actual detected object count: 0
Re: Prosím o pomoc, vir Rootkit.Agent.NUS Trojský kůň
Za jiných okolností bych jásala ale kdyby mi to aspoň všechno jelo...
ale kdyby mi to aspoň všechno jelo...Re: Prosím o pomoc, vir Rootkit.Agent.NUS Trojský kůň
Nevěděla jsem přesně, kde to startnout...
Re: Prosím o pomoc, vir Rootkit.Agent.NUS Trojský kůň
Ahoji
njn, se mnou už je to marný... ale moc si vážím toho, jak se mi snažíš pomoct a děkuji
To jsem to měla přejmenovat přímo ve windowsu??? já si to zkopírovala a až pak to přejmenovala (hodila na flash disk)... a v tom PH jsem to tcpip měla nastavit jako to přejmenované??? teď se nějak ztrácím...
nějak jsem to zkoušela (sice nevím jestli dobře) v tom nabootovaném jsem se snažila ten tcpipbak.exe rozjet, ale toto mi to vyhodilo:
njn, se mnou už je to marný... ale moc si vážím toho, jak se mi snažíš pomoct
a děkuji To jsem to měla přejmenovat přímo ve windowsu??? já si to zkopírovala a až pak to přejmenovala (hodila na flash disk)... a v tom PH jsem to tcpip měla nastavit jako to přejmenované??? teď se nějak ztrácím...
nějak jsem to zkoušela (sice nevím jestli dobře) v tom nabootovaném jsem se snažila ten tcpipbak.exe rozjet, ale toto mi to vyhodilo:
Re: Prosím o pomoc, vir Rootkit.Agent.NUS Trojský kůň
A nemám zkusit třeba ten eset odinstalovat??? stejně tam mám jen zkušební verzi...
Re: Prosím o pomoc, vir Rootkit.Agent.NUS Trojský kůň
kludne ESET odinstaluj - horsie to uz nebude ,,,
neviem, ale ja by som skusil opravnu instalaciu Win -R a reinstall ovladacov sietovej karty
neviem, ale ja by som skusil opravnu instalaciu Win -R a reinstall ovladacov sietovej karty
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosím o pomoc, vir Rootkit.Agent.NUS Trojský kůň
Pěkný podvečer přeji
tak s notebookem jsem nepokročila... ale mám domluvené, že se mi na něj přes víkend podíve jeden známý... tak by se to třeba mohlo nějak podařit dořešit uvidíme no... budu doufat
určitě pak podám zprávu, jak to dopadlo
tak s notebookem jsem nepokročila... ale mám domluvené, že se mi na něj přes víkend podíve jeden známý... tak by se to třeba mohlo nějak podařit dořešit
uvidíme no... budu doufat určitě pak podám zprávu, jak to dopadlo
Přispějete na provoz fóra?