NOD32 zahlásil virus v root, nelze léčit.
Přikládám LOG soubor
Logfile of random's system information tool 1.09 (written by random/random)
Run by ferry at 2012-02-27 10:44:07
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 19 GB (13%) free of 150 GB
Total RAM: 3071 MB (68% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:44:13, on 27.2.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.21310)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\agrsmsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
c:\Program Files\Common Files\EFI\EFI ES-1000 Service\ES1000Service.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
c:\Program Files\Common Files\EFI\EFI ES-1000 Service\ES1000Server.exe
C:\WINDOWS\system32\hasplms.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ASUS\ATK Hotkey\MsgTranAgt.exe
C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
C:\Program Files\ASUS\ATK Hotkey\HControl.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\WINDOWS\system32\DrvMon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\Program Files\ASUS\ATK Hotkey\ATKOSD.exe
C:\Program Files\ASUS\ATK Hotkey\WDC.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files\Mozilla Firefox3\firefox.exe
C:\Program Files\Mozilla Firefox3\plugin-container.exe
C:\Corel90\Programs\coreldrw.exe
c:\install\RSIT.exe
T:\_TECHNO\hijack\ferry.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll,RegisterModule
O4 - HKLM\..\Run: [MsgTranAgt] C:\Program Files\ASUS\ATK Hotkey\MsgTranAgt.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [ATKHOTKEY] C:\Program Files\ASUS\ATK Hotkey\HControl.exe
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime Alternative\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKCU\..\Run: [DrvMon.exe] C:\WINDOWS\system32\DrvMon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: AutorunsDisabled
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send To Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = rekla.local
O17 - HKLM\Software\..\Telephony: DomainName = rekla.local
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = rekla.local
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O20 - Winlogon Notify: OneCard - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\WINDOWS\system32\agrsmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: EFI ES1000 - Electronics for Imaging, Inc. - c:\Program Files\Common Files\EFI\EFI ES-1000 Service\ES1000Service.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: HASP License Manager (hasplms) - Aladdin Knowledge Systems Ltd. - C:\WINDOWS\system32\hasplms.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O24 - Desktop Component AutorunsDisabled: (no name) - (no file)
--
End of file - 8023 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\ferry\Data aplikací\Mozilla\Firefox\Profiles\h0lhswis.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{20a82645-c095-46ed-80e3-08825760534b}:1.1, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.13"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox3\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox3\components\
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
components.list
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsINIProcessor.js
nsIQTScriptablePlugin.xpt
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js
C:\Program Files\Mozilla Firefox3\plugins\
npnul32.dll
C:\Program Files\Mozilla Firefox3\searchplugins\
google.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Documents and Settings\ferry\Data aplikací\Mozilla\Firefox\Profiles\h0lhswis.default\extensions\
{20a82645-c095-46ed-80e3-08825760534b}
{E2883E8F-472F-4fb0-9522-AC9BF37916A7}(2)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
ASUS Security Protect Manager - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll [2006-11-21 70928]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"CognizanceTS"=C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll [2003-12-22 17920]
"MsgTranAgt"=C:\Program Files\ASUS\ATK Hotkey\MsgTranAgt.exe [2008-08-18 117304]
"HControlUser"=C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe [2008-08-18 98304]
"ATKHOTKEY"=C:\Program Files\ASUS\ATK Hotkey\HControl.exe [2008-08-29 223800]
"HControl"=C:\WINDOWS\ATK0100\HControl.exe [2006-05-30 98304]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-12-30 18082304]
"IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\point32.exe [2004-06-03 204800]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-05-14 2029640]
"QuickTime Task"=C:\Program Files\QuickTime Alternative\qttask.exe [2010-11-29 421888]
"ISUSPM Startup"=C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe [2005-08-11 249856]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2005-08-11 81920]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DrvMon.exe"=C:\WINDOWS\system32\DrvMon.exe [2004-09-22 53248]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
AutorunsDisabled
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2008-12-01 143360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\OneCard]
C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll [2007-02-07 74240]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2008-09-05 267304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2007-12-03 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoSMConfigurePrograms"=1
"NoSharedDocuments"=1
"NoWelcomeScreen"=1
"NoDrives"=0
"NoDriveAutoRun"=67108863
"NoViewOnDrive"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoWelcomeScreen"=1
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\Program Files\Common Files\Nero\Nero Web\SetupX.exe"="C:\Program Files\Common Files\Nero\Nero Web\SetupX.exe:*:Enabled:Nero ControlCenter"
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
"C:\Program Files\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe"="C:\Program Files\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe:*:Enabled:Logitech Harmony Remote Software 7"
"C:\WINDOWS\system32\mstsc.exe"="C:\WINDOWS\system32\mstsc.exe:*:Enabled:Remote Desktop Connection"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour Service"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"D:\Portable\SkypePortable\App\Skype\Phone\Skype.exe"="D:\Portable\SkypePortable\App\Skype\Phone\Skype.exe:*:Enabled:Skype "
"C:\Program Files\Cutting Master 2 for CraftROBO 1.82\Program\App2.exe"="C:\Program Files\Cutting Master 2 for CraftROBO 1.82\Program\App2.exe:*:Enabled:Cutting Master 2 for CraftROBO 1.82"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\mstsc.exe"="C:\WINDOWS\system32\mstsc.exe:*:Disabled:Remote Desktop Connection"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Disabled:Internet Explorer"
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
"C:\Program Files\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe"="C:\Program Files\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe:*:Enabled:Logitech Harmony Remote Software 7"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Common Files\Nero\Nero Web\SetupX.exe"="C:\Program Files\Common Files\Nero\Nero Web\SetupX.exe:*:Enabled:Nero ControlCenter"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour Service"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"D:\Portable\SkypePortable\App\Skype\Phone\Skype.exe"="D:\Portable\SkypePortable\App\Skype\Phone\Skype.exe:*:Enabled:Skype "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave2"=serwvdrv.dll
"wave3"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave5"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"VIDC.DIVX"=divx.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======List of files/folders created in the last 1 month======
2012-02-15 23:52:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2660465$
2012-02-15 23:51:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2661637$
2012-02-15 12:28:46 ----N---- C:\WINDOWS\system32\iacenc.dll
2012-01-31 12:34:11 ----ASH---- C:\WINDOWS\system32\KGyGaAvL.sys
======List of files/folders modified in the last 1 month======
2012-02-27 10:44:14 ----D---- C:\WINDOWS\Prefetch
2012-02-27 10:44:09 ----D---- C:\Temp
2012-02-27 10:43:58 ----D---- C:\install
2012-02-27 10:43:22 ----AC---- C:\WINDOWS\wincmd.ini
2012-02-27 09:14:03 ----D---- C:\WINDOWS\system32\CatRoot2
2012-02-27 07:48:37 ----D---- C:\WINDOWS\security
2012-02-27 00:11:45 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-02-25 17:18:04 ----AC---- C:\WINDOWS\NeroDigital.ini
2012-02-24 15:11:11 ----AC---- C:\WINDOWS\wcx_ftp.ini
2012-02-24 14:45:19 ----AC---- C:\WINDOWS\win.ini
2012-02-23 18:34:42 ----AC---- C:\WINDOWS\winamp.ini
2012-02-16 12:18:28 ----D---- C:\WINDOWS\Microsoft.NET
2012-02-16 12:18:26 ----RSD---- C:\WINDOWS\assembly
2012-02-16 12:02:56 ----SHD---- C:\WINDOWS\Installer
2012-02-16 12:02:55 ----D---- C:\Config.Msi
2012-02-16 12:02:41 ----AD---- C:\WINDOWS\system32
2012-02-16 12:02:41 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-02-16 12:02:13 ----D---- C:\WINDOWS\WinSxS
2012-02-16 11:58:09 ----HD---- C:\WINDOWS\inf
2012-02-16 09:15:49 ----AD---- C:\WINDOWS
2012-02-15 23:53:00 ----D---- C:\WINDOWS\temp
2012-02-15 23:52:44 ----AC---- C:\WINDOWS\system32\MRT.exe
2012-02-15 23:52:37 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-02-15 23:52:33 ----HD---- C:\WINDOWS\$hf_mig$
2012-02-15 23:52:31 ----A---- C:\WINDOWS\imsins.BAK
2012-02-15 23:52:26 ----D---- C:\Program Files\Internet Explorer
2012-02-15 23:52:21 ----D---- C:\WINDOWS\system32\cs-cz
2012-02-09 09:13:41 ----D---- C:\Program Files\Mozilla Firefox3
2012-01-31 12:28:46 ----D---- C:\Util
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2006-09-24 5248]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2007-12-03 77568]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-05-14 107256]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-05-14 94360]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2007-08-02 14848]
R2 aksfridge;aksfridge; \??\C:\WINDOWS\system32\drivers\aksfridge.sys []
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-05-14 114472]
R2 Hardlock;Hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys []
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2008-03-21 1203776]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-12-01 3452928]
R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2008-10-31 93184]
R3 ATSWPDRV;AuthenTec TruePrint USB Driver (SwipeSensor); C:\WINDOWS\system32\DRIVERS\ATSwpDrv.sys [2007-06-16 146824]
R3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2008-04-15 534440]
R3 BTDriver;Ovladač virtuálních komunikací Bluetooth; C:\WINDOWS\system32\DRIVERS\btport.sys [2008-02-04 37160]
R3 BTKRNL;Enumenátor sběrnice Bluetooth; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2008-04-15 990632]
R3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2007-09-20 156392]
R3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2008-03-10 57384]
R3 btwmodem;Modem Bluetooth; C:\WINDOWS\system32\DRIVERS\btwmodem.sys [2008-02-04 37032]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2008-03-27 47272]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-01-06 4968448]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ATKACPI.sys [2005-02-17 5632]
R3 NETw5x32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw5x32.sys [2008-12-18 3634688]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 Point32;Microsoft IntelliPoint Filter Driver; C:\WINDOWS\system32\DRIVERS\point32.sys [2004-06-03 20352]
R3 rimmptsk;rimmptsk; C:\WINDOWS\system32\DRIVERS\rimmptsk.sys [2005-11-16 28928]
R3 rimsptsk;rimsptsk; C:\WINDOWS\system32\DRIVERS\rimsptsk.sys [2005-11-01 51584]
R3 rismxdp;Ricoh xD-Picture Card Driver; C:\WINDOWS\system32\DRIVERS\rixdptsk.sys [2005-11-01 308992]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2010-11-12 273512]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]
S2 Par1284;Par1284; \??\C:\Program Files\Cutting Master 2 for CraftROBO 1.82\Program\Par1284.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 itecir;ITECIR Infrared Receiver; C:\WINDOWS\system32\DRIVERS\itecir.sys [2007-01-08 46592]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 sffdisk;Ovladač třídy úložiště SFF; C:\WINDOWS\system32\DRIVERS\sffdisk.sys [2008-04-13 11904]
S3 sffp_sd;Ovladač protokolu úložiště SFF pro paměť sběrnici SDBus; C:\WINDOWS\system32\DRIVERS\sffp_sd.sys [2008-04-13 11008]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2011-02-18 41984]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2005-11-30 474184]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2007-12-03 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2007-12-03 82944]
S4 catchme;catchme; \??\C:\ComboFix\catchme.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\WINDOWS\system32\agrsmsvc.exe [2008-03-18 13312]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2011-02-18 37664]
R2 ASBroker;Logon Session Broker; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 ASChannel;Local Communication Channel; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2008-12-01 598016]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-04-06 349472]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2008-04-14 342624]
R2 EFI ES1000;EFI ES1000; c:\Program Files\Common Files\EFI\EFI ES-1000 Service\ES1000Service.exe [2007-04-25 9216]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-05-14 731840]
R2 hasplms;HASP License Manager; C:\WINDOWS\system32\hasplms.exe [2007-08-09 1757696]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2008-12-01 593920]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-05-14 20680]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2011-04-14 820520]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 gupdate1c9fb3c7e15feb0;Služba Google Update (gupdate1c9fb3c7e15feb0); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-02 133104]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-02 133104]
S4 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-11-20 73728]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2007-11-15 382248]
S4 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2006-09-29 266343]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
TSR boot virus
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
TSR boot virus
Naposledy upravil(a) cernohous13 dne 27 úno 2012 11:24, celkem upraveno 1 x.
Důvod: odstraněno z [Code]
Důvod: odstraněno z [Code]
Re: TSR boot virus
Zdravim a pekny den preji 
Stahnete MBRScan http://eric71.geekstogo.com/tools/MbrScan.exe
Stahnete MBRScan http://eric71.geekstogo.com/tools/MbrScan.exe
- Ulozte nejlepe na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na MBRScan pravym a dejte Run As Administrator ci Spustit jako spravce
- Kliknete na Report
- Po chvilce se objevi log do souboru MBRScan.txt, ten sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: TSR boot virus
Děkuji za reakci. Zde vkládáme LOG.
Kód: Vybrat vše
MBRScan v1.1.1
OS : Windows XP Home Service Pack 3 (32 bit)
PROCESSOR : x86 Family 6 Model 23 Stepping 6, GenuineIntel
BOOT : Normal Boot
DATE : 2012/02/27 (ISO 8601) at 11:35:23
________________________________________________________________________________
DISK : Device\Harddisk0\DR0 __WDC WD3200BEVT-22ZCT0 (11.01A11)
BUS_TYPE : (0x03) P-ATA
USE_PIO : YES
MAX_TRANSFER : 128 Kb
ALIGNMENT_MASK : word aligned
________________________________________________________________________________
DISK : Device\Harddisk1\DR1 __WDC WD3200BEVT-22ZCT0 (11.01A11)
BUS_TYPE : (0x03) P-ATA
USE_PIO : YES
MAX_TRANSFER : 128 Kb
ALIGNMENT_MASK : word aligned
________________________________________________________________________________
Device\Harddisk0\DR0 298.1 Go [Fixed] ==> XP MBR Code
MBR_MD5 : 13DACA8E5B1246C4E883A63E94E0E95E
MBR_SHA1 : 7E9D9395B80ACC992BD8D3CA51108F357F934F52
Device\Harddisk0\Partition1 146.5 Go 0x07 NTFS / HPFS __ BOOTABLE __
Device\Harddisk0\Partition2 151.6 Go 0x07 NTFS / HPFS
________________________________________________________________________________
Device\Harddisk1\DR1 298.1 Go [Fixed] ==> XP MBR Code
MBR_MD5 : 1DE3ED788A281C57DA1DC6E795066A00
MBR_SHA1 : 4048D21529562573F23B2FCC1430687503983908
Device\Harddisk1\Partition1 146.5 Go 0x07 NTFS / HPFS
Device\Harddisk1\Partition2 151.6 Go 0x07 NTFS / HPFS
________________________________________________________________________________
############################### Additional scan ################################
DRIVER : C:\WINDOWS\System32\Drivers\dump_atapi.sys => Invisible on the disk
ADDRESS : 0xA5AA0000
SIZE : 96.0 Ko
DRIVER : C:\WINDOWS\System32\Drivers\dump_WMILIB.SYS => Invisible on the disk
ADDRESS : 0xBA668000
SIZE : 8.0 Ko
SystemStartOptions : NOEXECUTE=OPTIN FASTDETECT
________________________________________________________________________________
_______MBR \Device\Harddisk0\DR0
0x00000000 33 C0 8E D0 BC 00 7C FB 50 07 50 1F FC BE 1B 7C 3À.м.|ûP.P.ü¾.|
0x00000010 BF 1B 06 50 57 B9 E5 01 F3 A4 CB BD BE 07 B1 04 ¿..PW¹å.ó¤Ë½¾.±.
0x00000020 38 6E 00 7C 09 75 13 83 C5 10 E2 F4 CD 18 8B F5 8n.|.u..Å.âôÍ..õ
0x00000030 83 C6 10 49 74 19 38 2C 74 F6 A0 B5 07 B4 07 8B .Æ.It.8,tö.µ.´..
0x00000040 F0 AC 3C 00 74 FC BB 07 00 B4 0E CD 10 EB F2 88 ð¬<.tü»..´.Í.ëò.
0x00000050 4E 10 E8 46 00 73 2A FE 46 10 80 7E 04 0B 74 0B N.èF.s*þF..~..t.
0x00000060 80 7E 04 0C 74 05 A0 B6 07 75 D2 80 46 02 06 83 .~..t..¶.uÒ.F...
0x00000070 46 08 06 83 56 0A 00 E8 21 00 73 05 A0 B6 07 EB F...V..è!.s..¶.ë
0x00000080 BC 81 3E FE 7D 55 AA 74 0B 80 7E 10 00 74 C8 A0 ¼.>þ}Uªt..~..tÈ.
0x00000090 B7 07 EB A9 8B FC 1E 57 8B F5 CB BF 05 00 8A 56 ·.ë©.ü.W.õË¿...V
0x000000A0 00 B4 08 CD 13 72 23 8A C1 24 3F 98 8A DE 8A FC .´.Í.r#.Á$?..Þ.ü
0x000000B0 43 F7 E3 8B D1 86 D6 B1 06 D2 EE 42 F7 E2 39 56 C÷ã.Ñ.Ö±.ÒîB÷â9V
0x000000C0 0A 77 23 72 05 39 46 08 73 1C B8 01 02 BB 00 7C .w#r.9F.s.¸..».|
0x000000D0 8B 4E 02 8B 56 00 CD 13 73 51 4F 74 4E 32 E4 8A .N..V.Í.sQOtN2ä.
0x000000E0 56 00 CD 13 EB E4 8A 56 00 60 BB AA 55 B4 41 CD V.Í.ëä.V.`»ªU´AÍ
0x000000F0 13 72 36 81 FB 55 AA 75 30 F6 C1 01 74 2B 61 60 .r6.ûUªu0öÁ.t+a`
0x00000100 6A 00 6A 00 FF 76 0A FF 76 08 6A 00 68 00 7C 6A j.j..v..v.j.h.|j
0x00000110 01 6A 10 B4 42 8B F4 CD 13 61 61 73 0E 4F 74 0B .j.´B.ôÍ.aas.Ot.
0x00000120 32 E4 8A 56 00 CD 13 EB D6 61 F9 C3 4E 65 70 6C 2ä.V.Í.ëÖaùÃNepl
0x00000130 61 74 6E A0 20 74 61 62 75 6C 6B 61 20 6F 64 64 atn. tabulka odd
0x00000140 A1 6C 85 00 43 68 79 62 61 20 70 FD 69 20 6E 61 ¡l..Chyba pýi na
0x00000150 9F A1 74 A0 6E A1 20 6F 70 65 72 61 9F 6E A1 68 .¡t.n¡ opera.n¡h
0x00000160 6F 20 73 79 73 74 82 6D 75 00 4F 70 65 72 61 9F o syst.mu.Opera.
0x00000170 6E A1 20 73 79 73 74 82 6D 20 6E 65 6E 61 6C 65 n¡ syst.m nenale
0x00000180 7A 65 6E 00 00 00 00 00 00 00 00 00 00 00 00 00 zen.............
0x00000190 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001B0 00 00 00 00 00 2C 44 6A B3 F1 DF F8 00 00 80 01 .....,Dj³ñßø....
0x000001C0 01 00 07 0F FF FF 3F 00 00 00 21 80 4F 12 00 0F ......?...!.O...
0x000001D0 FF FF 0F 0F FF FF 60 80 4F 12 60 66 F3 12 00 00 ......`.O.`fó...
0x000001E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA ..............Uª
_______MBR \Device\Harddisk1\DR1
0x00000000 33 C0 8E D0 BC 00 7C FB 50 07 50 1F FC BE 1B 7C 3À.м.|ûP.P.ü¾.|
0x00000010 BF 1B 06 50 57 B9 E5 01 F3 A4 CB BD BE 07 B1 04 ¿..PW¹å.ó¤Ë½¾.±.
0x00000020 38 6E 00 7C 09 75 13 83 C5 10 E2 F4 CD 18 8B F5 8n.|.u..Å.âôÍ..õ
0x00000030 83 C6 10 49 74 19 38 2C 74 F6 A0 B5 07 B4 07 8B .Æ.It.8,tö.µ.´..
0x00000040 F0 AC 3C 00 74 FC BB 07 00 B4 0E CD 10 EB F2 88 ð¬<.tü»..´.Í.ëò.
0x00000050 4E 10 E8 46 00 73 2A FE 46 10 80 7E 04 0B 74 0B N.èF.s*þF..~..t.
0x00000060 80 7E 04 0C 74 05 A0 B6 07 75 D2 80 46 02 06 83 .~..t..¶.uÒ.F...
0x00000070 46 08 06 83 56 0A 00 E8 21 00 73 05 A0 B6 07 EB F...V..è!.s..¶.ë
0x00000080 BC 81 3E FE 7D 55 AA 74 0B 80 7E 10 00 74 C8 A0 ¼.>þ}Uªt..~..tÈ.
0x00000090 B7 07 EB A9 8B FC 1E 57 8B F5 CB BF 05 00 8A 56 ·.ë©.ü.W.õË¿...V
0x000000A0 00 B4 08 CD 13 72 23 8A C1 24 3F 98 8A DE 8A FC .´.Í.r#.Á$?..Þ.ü
0x000000B0 43 F7 E3 8B D1 86 D6 B1 06 D2 EE 42 F7 E2 39 56 C÷ã.Ñ.Ö±.ÒîB÷â9V
0x000000C0 0A 77 23 72 05 39 46 08 73 1C B8 01 02 BB 00 7C .w#r.9F.s.¸..».|
0x000000D0 8B 4E 02 8B 56 00 CD 13 73 51 4F 74 4E 32 E4 8A .N..V.Í.sQOtN2ä.
0x000000E0 56 00 CD 13 EB E4 8A 56 00 60 BB AA 55 B4 41 CD V.Í.ëä.V.`»ªU´AÍ
0x000000F0 13 72 36 81 FB 55 AA 75 30 F6 C1 01 74 2B 61 60 .r6.ûUªu0öÁ.t+a`
0x00000100 6A 00 6A 00 FF 76 0A FF 76 08 6A 00 68 00 7C 6A j.j..v..v.j.h.|j
0x00000110 01 6A 10 B4 42 8B F4 CD 13 61 61 73 0E 4F 74 0B .j.´B.ôÍ.aas.Ot.
0x00000120 32 E4 8A 56 00 CD 13 EB D6 61 F9 C3 4E 65 70 6C 2ä.V.Í.ëÖaùÃNepl
0x00000130 61 74 6E A0 20 74 61 62 75 6C 6B 61 20 6F 64 64 atn. tabulka odd
0x00000140 A1 6C 85 00 43 68 79 62 61 20 70 FD 69 20 6E 61 ¡l..Chyba pýi na
0x00000150 9F A1 74 A0 6E A1 20 6F 70 65 72 61 9F 6E A1 68 .¡t.n¡ opera.n¡h
0x00000160 6F 20 73 79 73 74 82 6D 75 00 4F 70 65 72 61 9F o syst.mu.Opera.
0x00000170 6E A1 20 73 79 73 74 82 6D 20 6E 65 6E 61 6C 65 n¡ syst.m nenale
0x00000180 7A 65 6E 00 00 00 00 00 00 00 00 00 00 00 00 00 zen.............
0x00000190 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001B0 00 00 00 00 00 2C 44 6A 00 C9 8C C7 93 0E 00 01 .....,Dj.É.Ç....
0x000001C0 01 00 07 FE FF FF 3F 00 00 00 F3 6B 4F 12 00 FE ...þ..?...ókO..þ
0x000001D0 FF FF 0F FE FF FF 32 6C 4F 12 CE 2B F3 12 00 00 ...þ..2lO.Î+ó...
0x000001E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA ..............Uª
Re: TSR boot virus
Tohle vypada ciste a uprimne, verim mu vice jak ESETu 
Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe
- Kliknete na volbu Change parametrs
- V obou oknech (Objects to scan i Additional Option) zakliknete vsechny moznosti - ve vsech ctvereccich musi mit fajecka
- Kliknete na OK
- Utilite prikazte, at skenuje - klik na Start Scan
- Po dokonceni skenu se objevi okno, zkontrolujte, zda-li je vsude moznost Skip
- Pokud moznost Skip nebude primarne nastavena, prekliknete ji na Skip
- Pokud mate vsude Skip, kliknete na Continue
- Na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt bude log - jeho obsah sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: TSR boot virus
Anglicka pobocka Eset-u potvrdila, ze databaza virusovych definicii 6918 obsahuje vzorku, ktora sposobuje tento falosny poplach. Z tohoto dovodu bola distribucia spominanej databazy pozastavena a coskoro bude uvolnena nova, opravena verzia.
Re: TSR boot virus
Dekuji za vstup a informaci, pokud date zdroj, budu jeste stastnejsiDaddo píše:Anglicka pobocka Eset-u potvrdila, ze databaza virusovych definicii 6918 obsahuje vzorku, ktora sposobuje tento falosny poplach. Z tohoto dovodu bola distribucia spominanej databazy pozastavena a coskoro bude uvolnena nova, opravena verzia.
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: TSR boot virus
Zde je.
11:41:06.0886 3268 TDSS rootkit removing tool 2.7.14.0 Feb 22 2012 16:54:49
11:41:08.0885 3268 ============================================================
11:41:08.0885 3268 Current date / time: 2012/02/27 11:41:08.0885
11:41:08.0885 3268 SystemInfo:
11:41:08.0885 3268
11:41:08.0885 3268 OS Version: 5.1.2600 ServicePack: 3.0
11:41:08.0885 3268 Product type: Workstation
11:41:08.0885 3268 ComputerName: FERRYNB
11:41:08.0885 3268 UserName: ferry
11:41:08.0885 3268 Windows directory: C:\WINDOWS
11:41:08.0885 3268 System windows directory: C:\WINDOWS
11:41:08.0885 3268 Processor architecture: Intel x86
11:41:08.0885 3268 Number of processors: 2
11:41:08.0885 3268 Page size: 0x1000
11:41:08.0885 3268 Boot type: Normal boot
11:41:08.0885 3268 ============================================================
11:41:10.0885 3268 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x97695, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x10, Type 'K0', Flags 0x00000054
11:41:10.0885 3268 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
11:41:10.0885 3268 \Device\Harddisk0\DR0:
11:41:10.0885 3268 MBR used
11:41:10.0885 3268 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x124F8021
11:41:10.0901 3268 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x124F809F, BlocksNum 0x12F36621
11:41:10.0901 3268 \Device\Harddisk1\DR1:
11:41:10.0901 3268 MBR used
11:41:10.0901 3268 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x124F6BF3
11:41:11.0244 3268 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x124F6C71, BlocksNum 0x12F32B8F
11:41:11.0963 3268 Initialize success
11:41:11.0963 3268 ============================================================
11:41:36.0022 3624 ============================================================
11:41:36.0022 3624 Scan started
11:41:36.0022 3624 Mode: Manual; SigCheck; TDLFS;
11:41:36.0022 3624 ============================================================
11:41:36.0835 3624 Abiosdsk - ok
11:41:36.0835 3624 abp480n5 - ok
11:41:36.0897 3624 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
11:41:37.0460 3624 ACPI - ok
11:41:37.0507 3624 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
11:41:37.0616 3624 ACPIEC - ok
11:41:37.0616 3624 adpu160m - ok
11:41:37.0678 3624 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
11:41:37.0772 3624 aec - ok
11:41:37.0819 3624 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
11:41:37.0881 3624 AFD - ok
11:41:37.0960 3624 AgereSoftModem (1cfeba39fc613e45b49d3eddfbcda289) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
11:41:38.0085 3624 AgereSoftModem - ok
11:41:38.0100 3624 Aha154x - ok
11:41:38.0116 3624 aic78u2 - ok
11:41:38.0131 3624 aic78xx - ok
11:41:38.0178 3624 aksfridge (a6003e95e9561147cee4d3170a01b8cf) C:\WINDOWS\system32\drivers\aksfridge.sys
11:41:38.0225 3624 aksfridge - ok
11:41:38.0241 3624 AliIde - ok
11:41:38.0256 3624 amsint - ok
11:41:38.0319 3624 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
11:41:38.0444 3624 Arp1394 - ok
11:41:38.0460 3624 asc - ok
11:41:38.0491 3624 asc3350p - ok
11:41:38.0522 3624 asc3550 - ok
11:41:38.0600 3624 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
11:41:38.0694 3624 AsyncMac - ok
11:41:38.0710 3624 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
11:41:38.0803 3624 atapi - ok
11:41:38.0803 3624 Atdisk - ok
11:41:38.0975 3624 ati2mtag (15b2fe76e2eceb98c49ed52311a6f26f) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
11:41:39.0116 3624 ati2mtag ( UnsignedFile.Multi.Generic ) - warning
11:41:39.0116 3624 ati2mtag - detected UnsignedFile.Multi.Generic (1)
11:41:39.0147 3624 AtiHdmiService (d9bc8892b9440a2551b8148c57aa039e) C:\WINDOWS\system32\drivers\AtiHdmi.sys
11:41:39.0194 3624 AtiHdmiService - ok
11:41:39.0256 3624 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
11:41:39.0350 3624 Atmarpc - ok
11:41:39.0397 3624 ATSWPDRV (f70d2392158cb68e775f8c4cd3d12fbb) C:\WINDOWS\system32\DRIVERS\ATSwpDrv.sys
11:41:40.0022 3624 ATSWPDRV - ok
11:41:40.0084 3624 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
11:41:40.0209 3624 audstub - ok
11:41:40.0256 3624 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
11:41:40.0459 3624 Beep - ok
11:41:40.0537 3624 btaudio (faba1418646a2b433c0bded6ff92d2fa) C:\WINDOWS\system32\drivers\btaudio.sys
11:41:40.0569 3624 btaudio - ok
11:41:40.0615 3624 BTDriver (2f9f111d31aa3fbbe5781d829a4524e6) C:\WINDOWS\system32\DRIVERS\btport.sys
11:41:40.0615 3624 BTDriver - ok
11:41:40.0647 3624 BTKRNL (aef038061bc1cafb4865d43a85beb1a1) C:\WINDOWS\system32\DRIVERS\btkrnl.sys
11:41:40.0678 3624 BTKRNL - ok
11:41:40.0709 3624 BTWDNDIS (80f61de965c116051614ac2f04222ff7) C:\WINDOWS\system32\DRIVERS\btwdndis.sys
11:41:40.0725 3624 BTWDNDIS - ok
11:41:40.0772 3624 btwhid (949eca9c56f657c06d3166d51f3226c7) C:\WINDOWS\system32\DRIVERS\btwhid.sys
11:41:40.0772 3624 btwhid - ok
11:41:40.0803 3624 btwmodem (5922bae0cd84924b9cd7e6bb515ee070) C:\WINDOWS\system32\DRIVERS\btwmodem.sys
11:41:40.0803 3624 btwmodem - ok
11:41:40.0928 3624 BTWUSB (179a37c86fd2b9cc28eb93d093d394c7) C:\WINDOWS\system32\Drivers\btwusb.sys
11:41:40.0928 3624 BTWUSB - ok
11:41:40.0944 3624 catchme - ok
11:41:40.0990 3624 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
11:41:41.0115 3624 cbidf2k - ok
11:41:41.0162 3624 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
11:41:41.0256 3624 CCDECODE - ok
11:41:41.0256 3624 cd20xrnt - ok
11:41:41.0303 3624 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
11:41:41.0412 3624 Cdaudio - ok
11:41:41.0428 3624 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
11:41:41.0522 3624 Cdfs - ok
11:41:41.0553 3624 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
11:41:41.0647 3624 Cdrom - ok
11:41:41.0647 3624 Changer - ok
11:41:41.0693 3624 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
11:41:41.0772 3624 CmBatt - ok
11:41:41.0787 3624 CmdIde - ok
11:41:41.0803 3624 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
11:41:41.0881 3624 Compbatt - ok
11:41:41.0897 3624 Cpqarray - ok
11:41:41.0928 3624 dac2w2k - ok
11:41:41.0928 3624 dac960nt - ok
11:41:41.0959 3624 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
11:41:42.0068 3624 Disk - ok
11:41:42.0100 3624 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
11:41:42.0240 3624 dmboot - ok
11:41:42.0240 3624 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
11:41:42.0334 3624 dmio - ok
11:41:42.0350 3624 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
11:41:42.0443 3624 dmload - ok
11:41:42.0459 3624 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
11:41:42.0553 3624 DMusic - ok
11:41:42.0584 3624 dpti2o - ok
11:41:42.0646 3624 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
11:41:42.0725 3624 drmkaud - ok
11:41:42.0740 3624 eamon (e31464ce787e3a0ffea55baa591897f0) C:\WINDOWS\system32\DRIVERS\eamon.sys
11:41:42.0740 3624 eamon - ok
11:41:42.0787 3624 ehdrv (2c95a7a87e4272c1fff9baf579677db3) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
11:41:42.0787 3624 ehdrv - ok
11:41:42.0818 3624 epfwtdir (4699a50183b792d994be657c68f18e9e) C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
11:41:42.0818 3624 epfwtdir - ok
11:41:42.0850 3624 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
11:41:42.0943 3624 Fastfat - ok
11:41:42.0959 3624 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
11:41:43.0068 3624 Fdc - ok
11:41:43.0084 3624 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
11:41:43.0178 3624 Fips - ok
11:41:43.0193 3624 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
11:41:43.0287 3624 Flpydisk - ok
11:41:43.0303 3624 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
11:41:43.0412 3624 FltMgr - ok
11:41:43.0443 3624 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
11:41:43.0553 3624 Fs_Rec - ok
11:41:43.0568 3624 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
11:41:43.0662 3624 Ftdisk - ok
11:41:43.0709 3624 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
11:41:43.0709 3624 GEARAspiWDM - ok
11:41:43.0740 3624 giveio (77ebf3e9386daa51551af429052d88d0) C:\WINDOWS\system32\giveio.sys
11:41:43.0756 3624 giveio ( UnsignedFile.Multi.Generic ) - warning
11:41:43.0756 3624 giveio - detected UnsignedFile.Multi.Generic (1)
11:41:43.0818 3624 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
11:41:43.0896 3624 Gpc - ok
11:41:43.0974 3624 Hardlock (63777f012fc92853ed1138bb7154dbbb) C:\WINDOWS\system32\drivers\hardlock.sys
11:41:44.0037 3624 Hardlock - ok
11:41:44.0084 3624 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
11:41:44.0178 3624 HDAudBus - ok
11:41:44.0224 3624 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
11:41:44.0302 3624 HidUsb - ok
11:41:44.0318 3624 hpn - ok
11:41:44.0349 3624 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
11:41:44.0412 3624 HTTP - ok
11:41:44.0412 3624 i2omgmt - ok
11:41:44.0427 3624 i2omp - ok
11:41:44.0474 3624 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
11:41:44.0552 3624 i8042prt - ok
11:41:44.0599 3624 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
11:41:44.0693 3624 Imapi - ok
11:41:44.0709 3624 ini910u - ok
11:41:44.0881 3624 IntcAzAudAddService (81b7003bf13ff3ac95d7b2d4c2e8f787) C:\WINDOWS\system32\drivers\RtkHDAud.sys
11:41:45.0084 3624 IntcAzAudAddService - ok
11:41:45.0099 3624 IntelIde - ok
11:41:45.0146 3624 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
11:41:45.0224 3624 intelppm - ok
11:41:45.0255 3624 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
11:41:45.0380 3624 Ip6Fw - ok
11:41:45.0412 3624 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
11:41:45.0537 3624 IpFilterDriver - ok
11:41:45.0584 3624 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
11:41:45.0709 3624 IpInIp - ok
11:41:45.0740 3624 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
11:41:45.0849 3624 IpNat - ok
11:41:45.0880 3624 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
11:41:45.0959 3624 IPSec - ok
11:41:45.0990 3624 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
11:41:46.0021 3624 IRENUM - ok
11:41:46.0052 3624 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
11:41:46.0130 3624 isapnp - ok
11:41:46.0177 3624 itecir (e4b04a0d8b237ecf026d849439f1bcce) C:\WINDOWS\system32\DRIVERS\itecir.sys
11:41:46.0208 3624 itecir ( UnsignedFile.Multi.Generic ) - warning
11:41:46.0208 3624 itecir - detected UnsignedFile.Multi.Generic (1)
11:41:46.0240 3624 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
11:41:46.0318 3624 Kbdclass - ok
11:41:46.0349 3624 kbdhid (065b5a83aa78c0c7047bf22e0ab5c821) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
11:41:46.0427 3624 kbdhid - ok
11:41:46.0443 3624 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
11:41:46.0521 3624 kmixer - ok
11:41:46.0552 3624 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
11:41:46.0646 3624 KSecDD - ok
11:41:46.0677 3624 lbrtfdc - ok
11:41:46.0724 3624 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
11:41:46.0833 3624 mnmdd - ok
11:41:46.0849 3624 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
11:41:46.0927 3624 Modem - ok
11:41:46.0958 3624 MODEMCSA (1992e0d143b09653ab0f9c5e04b0fd65) C:\WINDOWS\system32\drivers\MODEMCSA.sys
11:41:47.0037 3624 MODEMCSA - ok
11:41:47.0068 3624 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
11:41:47.0161 3624 Mouclass - ok
11:41:47.0208 3624 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
11:41:47.0302 3624 mouhid - ok
11:41:47.0318 3624 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
11:41:47.0427 3624 MountMgr - ok
11:41:47.0427 3624 mraid35x - ok
11:41:47.0474 3624 MRxDAV (e3f17e1ea5256709d4e97ef0da04b3c9) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
11:41:47.0521 3624 MRxDAV - ok
11:41:47.0583 3624 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
11:41:47.0677 3624 MRxSmb - ok
11:41:47.0708 3624 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
11:41:47.0833 3624 Msfs - ok
11:41:47.0865 3624 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
11:41:47.0958 3624 MSKSSRV - ok
11:41:47.0974 3624 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
11:41:48.0052 3624 MSPCLOCK - ok
11:41:48.0083 3624 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
11:41:48.0177 3624 MSPQM - ok
11:41:48.0224 3624 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
11:41:48.0302 3624 mssmbios - ok
11:41:48.0318 3624 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
11:41:48.0427 3624 MSTEE - ok
11:41:48.0474 3624 MTsensor (e333010a50bf603acc350f6019e9ce02) C:\WINDOWS\system32\DRIVERS\ATKACPI.sys
11:41:48.0521 3624 MTsensor - ok
11:41:48.0568 3624 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
11:41:48.0630 3624 Mup - ok
11:41:48.0646 3624 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
11:41:48.0755 3624 NABTSFEC - ok
11:41:48.0786 3624 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
11:41:48.0880 3624 NDIS - ok
11:41:48.0911 3624 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
11:41:49.0005 3624 NdisIP - ok
11:41:49.0052 3624 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
11:41:49.0130 3624 NdisTapi - ok
11:41:49.0146 3624 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
11:41:49.0224 3624 Ndisuio - ok
11:41:49.0255 3624 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
11:41:49.0349 3624 NdisWan - ok
11:41:49.0380 3624 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
11:41:49.0442 3624 NDProxy - ok
11:41:49.0474 3624 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
11:41:49.0552 3624 NetBIOS - ok
11:41:49.0583 3624 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
11:41:49.0661 3624 NetBT - ok
11:41:49.0895 3624 NETw5x32 (a3b69acd14051ae87ab9e1823a508b6d) C:\WINDOWS\system32\DRIVERS\NETw5x32.sys
11:41:50.0130 3624 NETw5x32 - ok
11:41:50.0161 3624 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
11:41:50.0255 3624 NIC1394 - ok
11:41:50.0302 3624 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
11:41:50.0427 3624 Npfs - ok
11:41:50.0458 3624 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
11:41:50.0661 3624 Ntfs - ok
11:41:50.0724 3624 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
11:41:50.0848 3624 Null - ok
11:41:50.0880 3624 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
11:41:51.0098 3624 NwlnkFlt - ok
11:41:51.0130 3624 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
11:41:51.0239 3624 NwlnkFwd - ok
11:41:51.0255 3624 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
11:41:51.0348 3624 ohci1394 - ok
11:41:51.0427 3624 Par1284 (8e55251d83763ccca60fe26a811cfb0c) C:\Program Files\Cutting Master 2 for CraftROBO 1.82\Program\Par1284.sys
11:41:51.0442 3624 Par1284 ( UnsignedFile.Multi.Generic ) - warning
11:41:51.0442 3624 Par1284 - detected UnsignedFile.Multi.Generic (1)
11:41:51.0458 3624 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\drivers\Parport.sys
11:41:51.0567 3624 Parport - ok
11:41:51.0583 3624 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
11:41:51.0677 3624 PartMgr - ok
11:41:51.0692 3624 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
11:41:51.0817 3624 ParVdm - ok
11:41:51.0817 3624 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
11:41:51.0911 3624 PCI - ok
11:41:51.0911 3624 PCIDump - ok
11:41:51.0958 3624 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
11:41:52.0051 3624 PCIIde - ok
11:41:52.0083 3624 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
11:41:52.0192 3624 Pcmcia - ok
11:41:52.0208 3624 PDCOMP - ok
11:41:52.0239 3624 PDFRAME - ok
11:41:52.0270 3624 PDRELI - ok
11:41:52.0286 3624 PDRFRAME - ok
11:41:52.0286 3624 perc2 - ok
11:41:52.0301 3624 perc2hib - ok
11:41:52.0364 3624 Point32 (3b6973d60bde757c53bb76842d31318e) C:\WINDOWS\system32\DRIVERS\point32.sys
11:41:52.0411 3624 Point32 - ok
11:41:52.0442 3624 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
11:41:52.0536 3624 PptpMiniport - ok
11:41:52.0567 3624 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
11:41:52.0645 3624 PSched - ok
11:41:52.0692 3624 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
11:41:52.0801 3624 Ptilink - ok
11:41:52.0801 3624 ql1080 - ok
11:41:52.0833 3624 Ql10wnt - ok
11:41:52.0864 3624 ql12160 - ok
11:41:52.0895 3624 ql1240 - ok
11:41:52.0926 3624 ql1280 - ok
11:41:52.0958 3624 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
11:41:53.0051 3624 RasAcd - ok
11:41:53.0067 3624 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
11:41:53.0145 3624 Rasl2tp - ok
11:41:53.0161 3624 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
11:41:53.0254 3624 RasPppoe - ok
11:41:53.0254 3624 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
11:41:53.0348 3624 Raspti - ok
11:41:53.0364 3624 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
11:41:53.0458 3624 Rdbss - ok
11:41:53.0458 3624 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
11:41:53.0536 3624 RDPCDD - ok
11:41:53.0583 3624 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
11:41:53.0676 3624 rdpdr - ok
11:41:53.0723 3624 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
11:41:53.0754 3624 RDPWD - ok
11:41:53.0786 3624 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
11:41:53.0864 3624 redbook - ok
11:41:53.0942 3624 rimmptsk (7a6648b61661b1421ffab762e391e33f) C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
11:41:53.0989 3624 rimmptsk - ok
11:41:54.0036 3624 rimsptsk (8f7012d1b6a71ee9c23ce93dcdbf9f4b) C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
11:41:54.0114 3624 rimsptsk - ok
11:41:54.0145 3624 rismxdp (3ac17802740c3a4764dc9750e92e6233) C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
11:41:54.0176 3624 rismxdp - ok
11:41:54.0254 3624 RTLE8023xp (e511d68f1ba6170a7178b7c4267c26cb) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
11:41:54.0286 3624 RTLE8023xp - ok
11:41:54.0364 3624 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
11:41:54.0457 3624 sdbus - ok
11:41:54.0489 3624 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
11:41:54.0567 3624 Secdrv - ok
11:41:54.0629 3624 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\drivers\Serial.sys
11:41:54.0785 3624 Serial - ok
11:41:54.0864 3624 sffdisk (0fa803c64df0914b41f807ea276bf2a6) C:\WINDOWS\system32\DRIVERS\sffdisk.sys
11:41:54.0942 3624 sffdisk - ok
11:41:54.0973 3624 sffp_sd (c17c331e435ed8737525c86a7557b3ac) C:\WINDOWS\system32\DRIVERS\sffp_sd.sys
11:41:55.0067 3624 sffp_sd - ok
11:41:55.0098 3624 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
11:41:55.0176 3624 Sfloppy - ok
11:41:55.0207 3624 Simbad - ok
11:41:55.0239 3624 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
11:41:55.0332 3624 SLIP - ok
11:41:55.0332 3624 Sparrow - ok
11:41:55.0364 3624 speedfan (5d6401db90ec81b71f8e2c5c8f0fef23) C:\WINDOWS\system32\speedfan.sys
11:41:55.0364 3624 speedfan ( UnsignedFile.Multi.Generic ) - warning
11:41:55.0364 3624 speedfan - detected UnsignedFile.Multi.Generic (1)
11:41:55.0395 3624 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
11:41:55.0488 3624 splitter - ok
11:41:55.0504 3624 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
11:41:55.0551 3624 sr - ok
11:41:55.0613 3624 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
11:41:55.0660 3624 Srv - ok
11:41:55.0723 3624 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
11:41:55.0817 3624 streamip - ok
11:41:55.0863 3624 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
11:41:55.0973 3624 swenum - ok
11:41:55.0973 3624 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
11:41:56.0067 3624 swmidi - ok
11:41:56.0098 3624 symc810 - ok
11:41:56.0113 3624 symc8xx - ok
11:41:56.0129 3624 sym_hi - ok
11:41:56.0145 3624 sym_u3 - ok
11:41:56.0176 3624 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
11:41:56.0270 3624 sysaudio - ok
11:41:56.0317 3624 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
11:41:56.0395 3624 Tcpip - ok
11:41:56.0426 3624 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
11:41:56.0566 3624 TDPIPE - ok
11:41:56.0613 3624 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
11:41:56.0691 3624 TDTCP - ok
11:41:56.0707 3624 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
11:41:56.0801 3624 TermDD - ok
11:41:56.0832 3624 TosIde - ok
11:41:56.0879 3624 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
11:41:57.0035 3624 Udfs - ok
11:41:57.0051 3624 ultra - ok
11:41:57.0098 3624 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
11:41:57.0207 3624 Update - ok
11:41:57.0238 3624 USBAAPL (d4fb6ecc60a428564ba8768b0e23c0fc) C:\WINDOWS\system32\Drivers\usbaapl.sys
11:41:57.0316 3624 USBAAPL - ok
11:41:57.0348 3624 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
11:41:57.0441 3624 usbccgp - ok
11:41:57.0457 3624 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
11:41:57.0535 3624 usbehci - ok
11:41:57.0551 3624 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
11:41:57.0644 3624 usbhub - ok
11:41:57.0691 3624 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
11:41:57.0785 3624 usbprint - ok
11:41:57.0816 3624 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
11:41:57.0910 3624 usbscan - ok
11:41:57.0926 3624 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
11:41:58.0035 3624 USBSTOR - ok
11:41:58.0035 3624 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
11:41:58.0113 3624 usbuhci - ok
11:41:58.0176 3624 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
11:41:58.0254 3624 usbvideo - ok
11:41:58.0269 3624 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
11:41:58.0363 3624 VgaSave - ok
11:41:58.0363 3624 ViaIde - ok
11:41:58.0379 3624 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
11:41:58.0488 3624 VolSnap - ok
11:41:58.0551 3624 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
11:41:58.0629 3624 Wanarp - ok
11:41:58.0676 3624 Wdf01000 (60d2787958b46595d62237ed15b91e94) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
11:41:58.0707 3624 Wdf01000 - ok
11:41:58.0707 3624 WDICA - ok
11:41:58.0754 3624 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
11:41:58.0832 3624 wdmaud - ok
11:41:58.0957 3624 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
11:41:59.0019 3624 WpdUsb - ok
11:41:59.0051 3624 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
11:41:59.0144 3624 WSTCODEC - ok
11:41:59.0160 3624 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
11:41:59.0207 3624 WudfPf - ok
11:41:59.0222 3624 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
11:41:59.0254 3624 WudfRd - ok
11:41:59.0316 3624 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
11:41:59.0629 3624 \Device\Harddisk0\DR0 - ok
11:41:59.0629 3624 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk1\DR1
11:42:00.0035 3624 \Device\Harddisk1\DR1 - ok
11:42:00.0035 3624 Boot (0x1200) (614144a5b181834d93fb4272c45cd226) \Device\Harddisk0\DR0\Partition0
11:42:00.0035 3624 \Device\Harddisk0\DR0\Partition0 - ok
11:42:00.0066 3624 Boot (0x1200) (a0313f0246af0b039587dceb1fd45726) \Device\Harddisk0\DR0\Partition1
11:42:00.0082 3624 \Device\Harddisk0\DR0\Partition1 - ok
11:42:00.0097 3624 Boot (0x1200) (00865cacca82b37e33c2a2c2a5984b80) \Device\Harddisk1\DR1\Partition0
11:42:00.0097 3624 \Device\Harddisk1\DR1\Partition0 - ok
11:42:00.0113 3624 Boot (0x1200) (b977b6bdedfd6948a2f1dc2ff3ac93a8) \Device\Harddisk1\DR1\Partition1
11:42:00.0113 3624 \Device\Harddisk1\DR1\Partition1 - ok
11:42:00.0128 3624 ============================================================
11:42:00.0128 3624 Scan finished
11:41:06.0886 3268 TDSS rootkit removing tool 2.7.14.0 Feb 22 2012 16:54:49
11:41:08.0885 3268 ============================================================
11:41:08.0885 3268 Current date / time: 2012/02/27 11:41:08.0885
11:41:08.0885 3268 SystemInfo:
11:41:08.0885 3268
11:41:08.0885 3268 OS Version: 5.1.2600 ServicePack: 3.0
11:41:08.0885 3268 Product type: Workstation
11:41:08.0885 3268 ComputerName: FERRYNB
11:41:08.0885 3268 UserName: ferry
11:41:08.0885 3268 Windows directory: C:\WINDOWS
11:41:08.0885 3268 System windows directory: C:\WINDOWS
11:41:08.0885 3268 Processor architecture: Intel x86
11:41:08.0885 3268 Number of processors: 2
11:41:08.0885 3268 Page size: 0x1000
11:41:08.0885 3268 Boot type: Normal boot
11:41:08.0885 3268 ============================================================
11:41:10.0885 3268 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x97695, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x10, Type 'K0', Flags 0x00000054
11:41:10.0885 3268 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
11:41:10.0885 3268 \Device\Harddisk0\DR0:
11:41:10.0885 3268 MBR used
11:41:10.0885 3268 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x124F8021
11:41:10.0901 3268 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x124F809F, BlocksNum 0x12F36621
11:41:10.0901 3268 \Device\Harddisk1\DR1:
11:41:10.0901 3268 MBR used
11:41:10.0901 3268 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x124F6BF3
11:41:11.0244 3268 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x124F6C71, BlocksNum 0x12F32B8F
11:41:11.0963 3268 Initialize success
11:41:11.0963 3268 ============================================================
11:41:36.0022 3624 ============================================================
11:41:36.0022 3624 Scan started
11:41:36.0022 3624 Mode: Manual; SigCheck; TDLFS;
11:41:36.0022 3624 ============================================================
11:41:36.0835 3624 Abiosdsk - ok
11:41:36.0835 3624 abp480n5 - ok
11:41:36.0897 3624 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
11:41:37.0460 3624 ACPI - ok
11:41:37.0507 3624 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
11:41:37.0616 3624 ACPIEC - ok
11:41:37.0616 3624 adpu160m - ok
11:41:37.0678 3624 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
11:41:37.0772 3624 aec - ok
11:41:37.0819 3624 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
11:41:37.0881 3624 AFD - ok
11:41:37.0960 3624 AgereSoftModem (1cfeba39fc613e45b49d3eddfbcda289) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
11:41:38.0085 3624 AgereSoftModem - ok
11:41:38.0100 3624 Aha154x - ok
11:41:38.0116 3624 aic78u2 - ok
11:41:38.0131 3624 aic78xx - ok
11:41:38.0178 3624 aksfridge (a6003e95e9561147cee4d3170a01b8cf) C:\WINDOWS\system32\drivers\aksfridge.sys
11:41:38.0225 3624 aksfridge - ok
11:41:38.0241 3624 AliIde - ok
11:41:38.0256 3624 amsint - ok
11:41:38.0319 3624 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
11:41:38.0444 3624 Arp1394 - ok
11:41:38.0460 3624 asc - ok
11:41:38.0491 3624 asc3350p - ok
11:41:38.0522 3624 asc3550 - ok
11:41:38.0600 3624 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
11:41:38.0694 3624 AsyncMac - ok
11:41:38.0710 3624 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
11:41:38.0803 3624 atapi - ok
11:41:38.0803 3624 Atdisk - ok
11:41:38.0975 3624 ati2mtag (15b2fe76e2eceb98c49ed52311a6f26f) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
11:41:39.0116 3624 ati2mtag ( UnsignedFile.Multi.Generic ) - warning
11:41:39.0116 3624 ati2mtag - detected UnsignedFile.Multi.Generic (1)
11:41:39.0147 3624 AtiHdmiService (d9bc8892b9440a2551b8148c57aa039e) C:\WINDOWS\system32\drivers\AtiHdmi.sys
11:41:39.0194 3624 AtiHdmiService - ok
11:41:39.0256 3624 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
11:41:39.0350 3624 Atmarpc - ok
11:41:39.0397 3624 ATSWPDRV (f70d2392158cb68e775f8c4cd3d12fbb) C:\WINDOWS\system32\DRIVERS\ATSwpDrv.sys
11:41:40.0022 3624 ATSWPDRV - ok
11:41:40.0084 3624 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
11:41:40.0209 3624 audstub - ok
11:41:40.0256 3624 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
11:41:40.0459 3624 Beep - ok
11:41:40.0537 3624 btaudio (faba1418646a2b433c0bded6ff92d2fa) C:\WINDOWS\system32\drivers\btaudio.sys
11:41:40.0569 3624 btaudio - ok
11:41:40.0615 3624 BTDriver (2f9f111d31aa3fbbe5781d829a4524e6) C:\WINDOWS\system32\DRIVERS\btport.sys
11:41:40.0615 3624 BTDriver - ok
11:41:40.0647 3624 BTKRNL (aef038061bc1cafb4865d43a85beb1a1) C:\WINDOWS\system32\DRIVERS\btkrnl.sys
11:41:40.0678 3624 BTKRNL - ok
11:41:40.0709 3624 BTWDNDIS (80f61de965c116051614ac2f04222ff7) C:\WINDOWS\system32\DRIVERS\btwdndis.sys
11:41:40.0725 3624 BTWDNDIS - ok
11:41:40.0772 3624 btwhid (949eca9c56f657c06d3166d51f3226c7) C:\WINDOWS\system32\DRIVERS\btwhid.sys
11:41:40.0772 3624 btwhid - ok
11:41:40.0803 3624 btwmodem (5922bae0cd84924b9cd7e6bb515ee070) C:\WINDOWS\system32\DRIVERS\btwmodem.sys
11:41:40.0803 3624 btwmodem - ok
11:41:40.0928 3624 BTWUSB (179a37c86fd2b9cc28eb93d093d394c7) C:\WINDOWS\system32\Drivers\btwusb.sys
11:41:40.0928 3624 BTWUSB - ok
11:41:40.0944 3624 catchme - ok
11:41:40.0990 3624 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
11:41:41.0115 3624 cbidf2k - ok
11:41:41.0162 3624 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
11:41:41.0256 3624 CCDECODE - ok
11:41:41.0256 3624 cd20xrnt - ok
11:41:41.0303 3624 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
11:41:41.0412 3624 Cdaudio - ok
11:41:41.0428 3624 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
11:41:41.0522 3624 Cdfs - ok
11:41:41.0553 3624 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
11:41:41.0647 3624 Cdrom - ok
11:41:41.0647 3624 Changer - ok
11:41:41.0693 3624 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
11:41:41.0772 3624 CmBatt - ok
11:41:41.0787 3624 CmdIde - ok
11:41:41.0803 3624 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
11:41:41.0881 3624 Compbatt - ok
11:41:41.0897 3624 Cpqarray - ok
11:41:41.0928 3624 dac2w2k - ok
11:41:41.0928 3624 dac960nt - ok
11:41:41.0959 3624 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
11:41:42.0068 3624 Disk - ok
11:41:42.0100 3624 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
11:41:42.0240 3624 dmboot - ok
11:41:42.0240 3624 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
11:41:42.0334 3624 dmio - ok
11:41:42.0350 3624 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
11:41:42.0443 3624 dmload - ok
11:41:42.0459 3624 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
11:41:42.0553 3624 DMusic - ok
11:41:42.0584 3624 dpti2o - ok
11:41:42.0646 3624 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
11:41:42.0725 3624 drmkaud - ok
11:41:42.0740 3624 eamon (e31464ce787e3a0ffea55baa591897f0) C:\WINDOWS\system32\DRIVERS\eamon.sys
11:41:42.0740 3624 eamon - ok
11:41:42.0787 3624 ehdrv (2c95a7a87e4272c1fff9baf579677db3) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
11:41:42.0787 3624 ehdrv - ok
11:41:42.0818 3624 epfwtdir (4699a50183b792d994be657c68f18e9e) C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
11:41:42.0818 3624 epfwtdir - ok
11:41:42.0850 3624 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
11:41:42.0943 3624 Fastfat - ok
11:41:42.0959 3624 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
11:41:43.0068 3624 Fdc - ok
11:41:43.0084 3624 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
11:41:43.0178 3624 Fips - ok
11:41:43.0193 3624 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
11:41:43.0287 3624 Flpydisk - ok
11:41:43.0303 3624 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
11:41:43.0412 3624 FltMgr - ok
11:41:43.0443 3624 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
11:41:43.0553 3624 Fs_Rec - ok
11:41:43.0568 3624 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
11:41:43.0662 3624 Ftdisk - ok
11:41:43.0709 3624 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
11:41:43.0709 3624 GEARAspiWDM - ok
11:41:43.0740 3624 giveio (77ebf3e9386daa51551af429052d88d0) C:\WINDOWS\system32\giveio.sys
11:41:43.0756 3624 giveio ( UnsignedFile.Multi.Generic ) - warning
11:41:43.0756 3624 giveio - detected UnsignedFile.Multi.Generic (1)
11:41:43.0818 3624 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
11:41:43.0896 3624 Gpc - ok
11:41:43.0974 3624 Hardlock (63777f012fc92853ed1138bb7154dbbb) C:\WINDOWS\system32\drivers\hardlock.sys
11:41:44.0037 3624 Hardlock - ok
11:41:44.0084 3624 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
11:41:44.0178 3624 HDAudBus - ok
11:41:44.0224 3624 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
11:41:44.0302 3624 HidUsb - ok
11:41:44.0318 3624 hpn - ok
11:41:44.0349 3624 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
11:41:44.0412 3624 HTTP - ok
11:41:44.0412 3624 i2omgmt - ok
11:41:44.0427 3624 i2omp - ok
11:41:44.0474 3624 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
11:41:44.0552 3624 i8042prt - ok
11:41:44.0599 3624 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
11:41:44.0693 3624 Imapi - ok
11:41:44.0709 3624 ini910u - ok
11:41:44.0881 3624 IntcAzAudAddService (81b7003bf13ff3ac95d7b2d4c2e8f787) C:\WINDOWS\system32\drivers\RtkHDAud.sys
11:41:45.0084 3624 IntcAzAudAddService - ok
11:41:45.0099 3624 IntelIde - ok
11:41:45.0146 3624 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
11:41:45.0224 3624 intelppm - ok
11:41:45.0255 3624 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
11:41:45.0380 3624 Ip6Fw - ok
11:41:45.0412 3624 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
11:41:45.0537 3624 IpFilterDriver - ok
11:41:45.0584 3624 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
11:41:45.0709 3624 IpInIp - ok
11:41:45.0740 3624 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
11:41:45.0849 3624 IpNat - ok
11:41:45.0880 3624 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
11:41:45.0959 3624 IPSec - ok
11:41:45.0990 3624 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
11:41:46.0021 3624 IRENUM - ok
11:41:46.0052 3624 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
11:41:46.0130 3624 isapnp - ok
11:41:46.0177 3624 itecir (e4b04a0d8b237ecf026d849439f1bcce) C:\WINDOWS\system32\DRIVERS\itecir.sys
11:41:46.0208 3624 itecir ( UnsignedFile.Multi.Generic ) - warning
11:41:46.0208 3624 itecir - detected UnsignedFile.Multi.Generic (1)
11:41:46.0240 3624 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
11:41:46.0318 3624 Kbdclass - ok
11:41:46.0349 3624 kbdhid (065b5a83aa78c0c7047bf22e0ab5c821) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
11:41:46.0427 3624 kbdhid - ok
11:41:46.0443 3624 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
11:41:46.0521 3624 kmixer - ok
11:41:46.0552 3624 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
11:41:46.0646 3624 KSecDD - ok
11:41:46.0677 3624 lbrtfdc - ok
11:41:46.0724 3624 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
11:41:46.0833 3624 mnmdd - ok
11:41:46.0849 3624 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
11:41:46.0927 3624 Modem - ok
11:41:46.0958 3624 MODEMCSA (1992e0d143b09653ab0f9c5e04b0fd65) C:\WINDOWS\system32\drivers\MODEMCSA.sys
11:41:47.0037 3624 MODEMCSA - ok
11:41:47.0068 3624 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
11:41:47.0161 3624 Mouclass - ok
11:41:47.0208 3624 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
11:41:47.0302 3624 mouhid - ok
11:41:47.0318 3624 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
11:41:47.0427 3624 MountMgr - ok
11:41:47.0427 3624 mraid35x - ok
11:41:47.0474 3624 MRxDAV (e3f17e1ea5256709d4e97ef0da04b3c9) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
11:41:47.0521 3624 MRxDAV - ok
11:41:47.0583 3624 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
11:41:47.0677 3624 MRxSmb - ok
11:41:47.0708 3624 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
11:41:47.0833 3624 Msfs - ok
11:41:47.0865 3624 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
11:41:47.0958 3624 MSKSSRV - ok
11:41:47.0974 3624 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
11:41:48.0052 3624 MSPCLOCK - ok
11:41:48.0083 3624 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
11:41:48.0177 3624 MSPQM - ok
11:41:48.0224 3624 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
11:41:48.0302 3624 mssmbios - ok
11:41:48.0318 3624 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
11:41:48.0427 3624 MSTEE - ok
11:41:48.0474 3624 MTsensor (e333010a50bf603acc350f6019e9ce02) C:\WINDOWS\system32\DRIVERS\ATKACPI.sys
11:41:48.0521 3624 MTsensor - ok
11:41:48.0568 3624 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
11:41:48.0630 3624 Mup - ok
11:41:48.0646 3624 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
11:41:48.0755 3624 NABTSFEC - ok
11:41:48.0786 3624 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
11:41:48.0880 3624 NDIS - ok
11:41:48.0911 3624 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
11:41:49.0005 3624 NdisIP - ok
11:41:49.0052 3624 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
11:41:49.0130 3624 NdisTapi - ok
11:41:49.0146 3624 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
11:41:49.0224 3624 Ndisuio - ok
11:41:49.0255 3624 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
11:41:49.0349 3624 NdisWan - ok
11:41:49.0380 3624 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
11:41:49.0442 3624 NDProxy - ok
11:41:49.0474 3624 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
11:41:49.0552 3624 NetBIOS - ok
11:41:49.0583 3624 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
11:41:49.0661 3624 NetBT - ok
11:41:49.0895 3624 NETw5x32 (a3b69acd14051ae87ab9e1823a508b6d) C:\WINDOWS\system32\DRIVERS\NETw5x32.sys
11:41:50.0130 3624 NETw5x32 - ok
11:41:50.0161 3624 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
11:41:50.0255 3624 NIC1394 - ok
11:41:50.0302 3624 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
11:41:50.0427 3624 Npfs - ok
11:41:50.0458 3624 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
11:41:50.0661 3624 Ntfs - ok
11:41:50.0724 3624 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
11:41:50.0848 3624 Null - ok
11:41:50.0880 3624 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
11:41:51.0098 3624 NwlnkFlt - ok
11:41:51.0130 3624 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
11:41:51.0239 3624 NwlnkFwd - ok
11:41:51.0255 3624 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
11:41:51.0348 3624 ohci1394 - ok
11:41:51.0427 3624 Par1284 (8e55251d83763ccca60fe26a811cfb0c) C:\Program Files\Cutting Master 2 for CraftROBO 1.82\Program\Par1284.sys
11:41:51.0442 3624 Par1284 ( UnsignedFile.Multi.Generic ) - warning
11:41:51.0442 3624 Par1284 - detected UnsignedFile.Multi.Generic (1)
11:41:51.0458 3624 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\drivers\Parport.sys
11:41:51.0567 3624 Parport - ok
11:41:51.0583 3624 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
11:41:51.0677 3624 PartMgr - ok
11:41:51.0692 3624 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
11:41:51.0817 3624 ParVdm - ok
11:41:51.0817 3624 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
11:41:51.0911 3624 PCI - ok
11:41:51.0911 3624 PCIDump - ok
11:41:51.0958 3624 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
11:41:52.0051 3624 PCIIde - ok
11:41:52.0083 3624 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
11:41:52.0192 3624 Pcmcia - ok
11:41:52.0208 3624 PDCOMP - ok
11:41:52.0239 3624 PDFRAME - ok
11:41:52.0270 3624 PDRELI - ok
11:41:52.0286 3624 PDRFRAME - ok
11:41:52.0286 3624 perc2 - ok
11:41:52.0301 3624 perc2hib - ok
11:41:52.0364 3624 Point32 (3b6973d60bde757c53bb76842d31318e) C:\WINDOWS\system32\DRIVERS\point32.sys
11:41:52.0411 3624 Point32 - ok
11:41:52.0442 3624 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
11:41:52.0536 3624 PptpMiniport - ok
11:41:52.0567 3624 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
11:41:52.0645 3624 PSched - ok
11:41:52.0692 3624 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
11:41:52.0801 3624 Ptilink - ok
11:41:52.0801 3624 ql1080 - ok
11:41:52.0833 3624 Ql10wnt - ok
11:41:52.0864 3624 ql12160 - ok
11:41:52.0895 3624 ql1240 - ok
11:41:52.0926 3624 ql1280 - ok
11:41:52.0958 3624 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
11:41:53.0051 3624 RasAcd - ok
11:41:53.0067 3624 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
11:41:53.0145 3624 Rasl2tp - ok
11:41:53.0161 3624 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
11:41:53.0254 3624 RasPppoe - ok
11:41:53.0254 3624 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
11:41:53.0348 3624 Raspti - ok
11:41:53.0364 3624 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
11:41:53.0458 3624 Rdbss - ok
11:41:53.0458 3624 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
11:41:53.0536 3624 RDPCDD - ok
11:41:53.0583 3624 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
11:41:53.0676 3624 rdpdr - ok
11:41:53.0723 3624 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
11:41:53.0754 3624 RDPWD - ok
11:41:53.0786 3624 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
11:41:53.0864 3624 redbook - ok
11:41:53.0942 3624 rimmptsk (7a6648b61661b1421ffab762e391e33f) C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
11:41:53.0989 3624 rimmptsk - ok
11:41:54.0036 3624 rimsptsk (8f7012d1b6a71ee9c23ce93dcdbf9f4b) C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
11:41:54.0114 3624 rimsptsk - ok
11:41:54.0145 3624 rismxdp (3ac17802740c3a4764dc9750e92e6233) C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
11:41:54.0176 3624 rismxdp - ok
11:41:54.0254 3624 RTLE8023xp (e511d68f1ba6170a7178b7c4267c26cb) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
11:41:54.0286 3624 RTLE8023xp - ok
11:41:54.0364 3624 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
11:41:54.0457 3624 sdbus - ok
11:41:54.0489 3624 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
11:41:54.0567 3624 Secdrv - ok
11:41:54.0629 3624 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\drivers\Serial.sys
11:41:54.0785 3624 Serial - ok
11:41:54.0864 3624 sffdisk (0fa803c64df0914b41f807ea276bf2a6) C:\WINDOWS\system32\DRIVERS\sffdisk.sys
11:41:54.0942 3624 sffdisk - ok
11:41:54.0973 3624 sffp_sd (c17c331e435ed8737525c86a7557b3ac) C:\WINDOWS\system32\DRIVERS\sffp_sd.sys
11:41:55.0067 3624 sffp_sd - ok
11:41:55.0098 3624 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
11:41:55.0176 3624 Sfloppy - ok
11:41:55.0207 3624 Simbad - ok
11:41:55.0239 3624 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
11:41:55.0332 3624 SLIP - ok
11:41:55.0332 3624 Sparrow - ok
11:41:55.0364 3624 speedfan (5d6401db90ec81b71f8e2c5c8f0fef23) C:\WINDOWS\system32\speedfan.sys
11:41:55.0364 3624 speedfan ( UnsignedFile.Multi.Generic ) - warning
11:41:55.0364 3624 speedfan - detected UnsignedFile.Multi.Generic (1)
11:41:55.0395 3624 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
11:41:55.0488 3624 splitter - ok
11:41:55.0504 3624 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
11:41:55.0551 3624 sr - ok
11:41:55.0613 3624 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
11:41:55.0660 3624 Srv - ok
11:41:55.0723 3624 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
11:41:55.0817 3624 streamip - ok
11:41:55.0863 3624 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
11:41:55.0973 3624 swenum - ok
11:41:55.0973 3624 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
11:41:56.0067 3624 swmidi - ok
11:41:56.0098 3624 symc810 - ok
11:41:56.0113 3624 symc8xx - ok
11:41:56.0129 3624 sym_hi - ok
11:41:56.0145 3624 sym_u3 - ok
11:41:56.0176 3624 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
11:41:56.0270 3624 sysaudio - ok
11:41:56.0317 3624 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
11:41:56.0395 3624 Tcpip - ok
11:41:56.0426 3624 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
11:41:56.0566 3624 TDPIPE - ok
11:41:56.0613 3624 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
11:41:56.0691 3624 TDTCP - ok
11:41:56.0707 3624 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
11:41:56.0801 3624 TermDD - ok
11:41:56.0832 3624 TosIde - ok
11:41:56.0879 3624 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
11:41:57.0035 3624 Udfs - ok
11:41:57.0051 3624 ultra - ok
11:41:57.0098 3624 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
11:41:57.0207 3624 Update - ok
11:41:57.0238 3624 USBAAPL (d4fb6ecc60a428564ba8768b0e23c0fc) C:\WINDOWS\system32\Drivers\usbaapl.sys
11:41:57.0316 3624 USBAAPL - ok
11:41:57.0348 3624 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
11:41:57.0441 3624 usbccgp - ok
11:41:57.0457 3624 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
11:41:57.0535 3624 usbehci - ok
11:41:57.0551 3624 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
11:41:57.0644 3624 usbhub - ok
11:41:57.0691 3624 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
11:41:57.0785 3624 usbprint - ok
11:41:57.0816 3624 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
11:41:57.0910 3624 usbscan - ok
11:41:57.0926 3624 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
11:41:58.0035 3624 USBSTOR - ok
11:41:58.0035 3624 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
11:41:58.0113 3624 usbuhci - ok
11:41:58.0176 3624 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
11:41:58.0254 3624 usbvideo - ok
11:41:58.0269 3624 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
11:41:58.0363 3624 VgaSave - ok
11:41:58.0363 3624 ViaIde - ok
11:41:58.0379 3624 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
11:41:58.0488 3624 VolSnap - ok
11:41:58.0551 3624 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
11:41:58.0629 3624 Wanarp - ok
11:41:58.0676 3624 Wdf01000 (60d2787958b46595d62237ed15b91e94) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
11:41:58.0707 3624 Wdf01000 - ok
11:41:58.0707 3624 WDICA - ok
11:41:58.0754 3624 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
11:41:58.0832 3624 wdmaud - ok
11:41:58.0957 3624 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
11:41:59.0019 3624 WpdUsb - ok
11:41:59.0051 3624 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
11:41:59.0144 3624 WSTCODEC - ok
11:41:59.0160 3624 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
11:41:59.0207 3624 WudfPf - ok
11:41:59.0222 3624 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
11:41:59.0254 3624 WudfRd - ok
11:41:59.0316 3624 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
11:41:59.0629 3624 \Device\Harddisk0\DR0 - ok
11:41:59.0629 3624 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk1\DR1
11:42:00.0035 3624 \Device\Harddisk1\DR1 - ok
11:42:00.0035 3624 Boot (0x1200) (614144a5b181834d93fb4272c45cd226) \Device\Harddisk0\DR0\Partition0
11:42:00.0035 3624 \Device\Harddisk0\DR0\Partition0 - ok
11:42:00.0066 3624 Boot (0x1200) (a0313f0246af0b039587dceb1fd45726) \Device\Harddisk0\DR0\Partition1
11:42:00.0082 3624 \Device\Harddisk0\DR0\Partition1 - ok
11:42:00.0097 3624 Boot (0x1200) (00865cacca82b37e33c2a2c2a5984b80) \Device\Harddisk1\DR1\Partition0
11:42:00.0097 3624 \Device\Harddisk1\DR1\Partition0 - ok
11:42:00.0113 3624 Boot (0x1200) (b977b6bdedfd6948a2f1dc2ff3ac93a8) \Device\Harddisk1\DR1\Partition1
11:42:00.0113 3624 \Device\Harddisk1\DR1\Partition1 - ok
11:42:00.0128 3624 ============================================================
11:42:00.0128 3624 Scan finished
Re: TSR boot virus
Tak mierna uprava: nejde o virus definition DB, ale aktualizovany modul, ktory scanuje boot sector:
Zdroj: http://www.wilderssecurity.com/showthread.php?p=2022059It is a false positive. Had a very quick reply from Eset.
Good Morning,
Unfortunately the most recent update that we have released was an update for the boot sector scanning module of our system. The result of this means that on some computers we are detecting a false positive by the name of “TSR.BOOT virus”. If you are receiving this message then it is likely that you are being affected by this false positive however you are in no way at risk. The issue has been submitted to our development team and should be resolved shortly.
Kind Regards,
Neil Street Customer Care Engineer - ESET UK
Re: TSR boot virus
Uf! To jsme si oddechli Jinak máme alespoň jistotu díky scanum, že máme tenhle comp v pořádku. Děkuji za rychlost reakce a přeji zdar Vaší práci.
Jinak máme alespoň jistotu díky scanum, že máme tenhle comp v pořádku. Děkuji za rychlost reakce a přeji zdar Vaší práci.Re: TSR boot virus
Dekuji za doplneni T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
- Stahnete a spustte
- Pro potvrzeni volby mackejte A, Enter
- Po pouziti utilitu smazte
- Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
OTC http://oldtimer.geekstogo.com/OTC.exe
- Stahnete a spustte
- Kliknete na CleanUp a potvrdte YES
- Program uklidi a restartuje PC
TFC http://oldtimer.geekstogo.com/TFC.exe
- Stahnete a spustte
- Kliknete na Start a potvrdte OK
- Program uklidi a restartuje pc
- Po pouziti utilitu smazte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: TSR boot virus
I přes planý poplach máme toto provést?
Re: TSR boot virus
Ano, jsou to uklidove nastroje po utilitach co jsme pouzili
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: TSR boot virus
Chcete ještě log (RSIT)?
Úklid proveden.
Úklid proveden.
Re: TSR boot virus
Neni treba, predchozi byl cisty a skeny do nej nezasahovaly
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?