RECYCLER/e621ca05.exe

[TheMagicLight]

Log USBFix

############################## | UsbFix V 7.100 | [Deletion]

User: Gamer (Administrator) # GAMEPC
Updated 11/11/2012 by El Desaparecido
Started at 20:17:41 | 12/11/2012

Website: http://sosvirus.org
Contact: contact@eldesaparecido.com

PC: MSI (MS-6590) (X86-based PC
CPU: AMD Athlon(tm) XP 2600+ (2010)
RAM -> [Total : 1279 | Free : 940]
BIOS: Version 07.00T
BOOT: Normal boot

OS: Systém Microsoft Windows XP Professional (5.1.2600 32-Bit) # Service Pack 3
WB: Windows Internet Explorer 7.0.5730.13

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Fixed drive # 112 Gb (34 Mb free - 30%) [] # NTFS
D:\ -> CD-ROM
E:\ -> CD-ROM
F:\ -> Removable drive # 976 Mb (933 Mb free - 96%) [FLASH DISK] # FAT
G:\ -> Removable drive # 4 Gb (1 Mb free - 33%) [BEZZUBKA] # FAT32
H:\ -> Removable drive # 7 Gb (155 Mb free - 2%) [KINGSTON] # FAT32
I:\ -> Removable drive # 4 Gb (499 Mb free - 13%) [MCDISC 4GB] # FAT32

################## | Active Processes |

C:\WINDOWS\System32\smss.exe (408)
C:\WINDOWS\system32\winlogon.exe (704)
C:\WINDOWS\system32\services.exe (748)
C:\WINDOWS\system32\lsass.exe (760)
C:\WINDOWS\system32\svchost.exe (912)
C:\WINDOWS\System32\svchost.exe (1032)
C:\WINDOWS\system32\svchost.exe (1064)
C:\WINDOWS\system32\spoolsv.exe (1444)
C:\Program Files\Java\jre7\bin\jqs.exe (1616)
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (1636)
C:\WINDOWS\system32\nvsvc32.exe (1716)
C:\Program Files\Promise Technology, Inc\Promise Array Management\MsgAgt.exe (1760)
C:\Program Files\Promise Technology, Inc\Promise Array Management\MsgSvr.exe (1832)
C:\WINDOWS\System32\snmp.exe (1872)
C:\WINDOWS\system32\svchost.exe (1904)
C:\Program Files\Vodafone\Via The Phone\VodafoneConnectorService.exe (1944)
C:\WINDOWS\system32\wscntfy.exe (328)
C:\WINDOWS\explorer.exe (2156)
C:\WINDOWS\system32\ctfmon.exe (2900)
C:\UsbFix\Go.exe (2360)

################## | Stopped processes |

Stopped! C:\WINDOWS\system32\spoolsv.exe (1444)
Stopped! C:\Program Files\Java\jre7\bin\jqs.exe (1616)
Stopped! C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (1636)
Stopped! C:\WINDOWS\system32\nvsvc32.exe (1716)
Stopped! C:\Program Files\Promise Technology, Inc\Promise Array Management\MsgAgt.exe (1760)
Stopped! C:\Program Files\Promise Technology, Inc\Promise Array Management\MsgSvr.exe (1832)
Stopped! C:\WINDOWS\System32\snmp.exe (1872)
Stopped! C:\Program Files\Vodafone\Via The Phone\VodafoneConnectorService.exe (1944)
Stopped! C:\WINDOWS\system32\wscntfy.exe (328)
Stopped! C:\WINDOWS\explorer.exe (2156)
Stopped! C:\WINDOWS\system32\ctfmon.exe (2900)

################## | Files # Infected Folders |

Deleted ! C:\Documents and Settings\Gamer\Data aplikací\Fngwgb.exe
Deleted ! F:\Autorun.inf.lnk
Deleted ! F:\EXTREME.lnk
Deleted ! G:\Prezentace.lnk
Deleted ! G:\Nová složka.lnk
Deleted ! H:\AJ.lnk
Deleted ! H:\tata.lnk
Deleted ! H:\__DT.lnk
Deleted ! H:\GCS.lnk
Deleted ! H:\RENDERS.lnk
Deleted ! H:\tanks-0.9.2.lnk
Deleted ! H:\TopWare.lnk
Deleted ! H:\2010-09-01 go_prima_2010.lnk
Deleted ! H:\FOUND.000.lnk
Deleted ! H:\McLaren Racing.lnk
Deleted ! H:\Space Oddity.lnk
Deleted ! H:\Kristián.lnk
Deleted ! H:\Ninja Fruit.lnk
Deleted ! H:\VYTISKNOUT.lnk
Deleted ! H:\WinRAR.lnk
Deleted ! H:\GCS_TML_info.lnk
Deleted ! H:\prezentace.lnk
Deleted ! H:\fotak.lnk
Deleted ! H:\Deepolis - Vyúčtování.lnk
Deleted ! H:\2009-02-13-1641-36.lnk
Deleted ! H:\Custom Production Presets 7.0.lnk
Deleted ! H:\bin.lnk
Deleted ! H:\TISK.lnk
Deleted ! H:\adobe.lnk
Deleted ! H:\minecraft.lnk
Deleted ! H:\videa.lnk
Deleted ! H:\World of many buildings.lnk
Deleted ! H:\INVedit.lnk
Deleted ! H:\.Trash-1001.lnk
Deleted ! H:\New World of moje.lnk
Deleted ! H:\Bandicam.lnk
Deleted ! H:\Glacier World by RedStoneCHRIS.lnk
Deleted ! H:\Camtasia Studio 7.lnk
Deleted ! H:\Fonty_old.lnk
Deleted ! H:\Farm Frenzy 2 CZ+crack.lnk
Deleted ! H:\GTA La Heist.lnk
Deleted ! H:\becherragdoll.lnk
Deleted ! H:\data.lnk
Deleted ! H:\FlatOut.lnk
Deleted ! H:\fotky holky.lnk
Deleted ! H:\deepolis.lnk
Deleted ! H:\Rocket in Danger.lnk
Deleted ! H:\swf.lnk
Deleted ! H:\mapy DP.lnk
Deleted ! H:\Mann-Filter Rallye.lnk
Deleted ! H:\Hippo Racer.lnk
Deleted ! H:\Brad and Roxy's Amazing Downhill.lnk
Deleted ! H:\Meteor Storm.lnk
Deleted ! H:\Nová složka (2).lnk
Deleted ! H:\qip cz.lnk
Deleted ! H:\AGF.lnk
Deleted ! I:\For Elii.lnk
Deleted ! I:\server.lnk
Deleted ! I:\atanua.lnk
Deleted ! I:\Charred Dirt.lnk
Deleted ! I:\skin3.lnk
Deleted ! I:\Nová složka.lnk
Deleted ! I:\UB's.lnk
Deleted ! I:\JCreator Pro 4.50.010.lnk
Deleted ! I:\Sony Vegas 11 PRO.lnk
Deleted ! I:\Minecraft Tekkit Pack.lnk
Deleted ! I:\TheMagicLight.lnk
Deleted ! I:\MCSkin3D.lnk
Deleted ! I:\Games.lnk
Deleted ! I:\!!!TISK!!!.lnk
Not deleted ! D:\Autorun.inf
Not deleted ! D:\autorun.exe
Not deleted ! E:\autorun.inf

(!) Temporary files deleted.

################## | Registry |

Deleted ! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableRegistryTools
Deleted ! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives
Deleted ! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives

################## | Mountpoints2 |


################## | Listing |

[13/08/2012 - 10:44:44 | D ] C:\$WINDOWS.~BT
[06/09/2012 - 18:35:05 | N | 2056] C:\.swtch
[17/06/2012 - 20:24:36 | N | 0] C:\AUTOEXEC.BAT
[11/11/2012 - 18:14:58 | RAD ] C:\Autorun.inf
[17/06/2012 - 20:57:44 | N | 211] C:\Boot.bak
[12/11/2012 - 19:57:33 | N | 327] C:\boot.ini
[25/10/2001 - 15:00:00 | N | 4952] C:\Bootfont.bin
[12/11/2012 - 19:57:33 | D ] C:\cmdcons
[03/08/2004 - 23:00:04 | N | 261312] C:\cmldr
[12/11/2012 - 20:10:56 | N | 13236] C:\ComboFix.txt
[17/06/2012 - 20:24:36 | N | 0] C:\CONFIG.SYS
[03/11/2012 - 10:34:11 | D ] C:\D900IXDGE2
[13/08/2012 - 09:56:48 | D ] C:\de4aebd0f29ae4aba6b6442e752eab
[17/06/2012 - 20:28:52 | D ] C:\Documents and Settings
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.1028.txt
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.1031.txt
[07/11/2007 - 07:00:40 | N | 10134] C:\eula.1033.txt
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.1036.txt
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.1040.txt
[07/11/2007 - 07:00:40 | N | 118] C:\eula.1041.txt
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.1042.txt
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.2052.txt
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.3082.txt
[07/11/2007 - 07:00:40 | N | 1110] C:\globdata.ini
[04/09/2012 - 17:57:50 | D ] C:\GTA San Andreas Music
[05/09/2012 - 12:36:42 | N | 40935] C:\haxxx.log
[12/11/2012 - 20:08:13 | ASH | 1341706240] C:\hiberfil.sys
[22/06/2012 - 15:53:02 | D ] C:\Inetpub
[07/11/2007 - 07:00:40 | N | 843] C:\install.ini
[07/11/2007 - 07:03:18 | N | 76304] C:\install.res.1028.dll
[07/11/2007 - 07:03:18 | N | 96272] C:\install.res.1031.dll
[07/11/2007 - 07:03:18 | N | 91152] C:\install.res.1033.dll
[07/11/2007 - 07:03:18 | N | 97296] C:\install.res.1036.dll
[07/11/2007 - 07:03:18 | N | 95248] C:\install.res.1040.dll
[07/11/2007 - 07:03:18 | N | 81424] C:\install.res.1041.dll
[07/11/2007 - 07:03:18 | N | 79888] C:\install.res.1042.dll
[07/11/2007 - 07:03:18 | N | 75792] C:\install.res.2052.dll
[07/11/2007 - 07:03:18 | N | 96272] C:\install.res.3082.dll
[17/06/2012 - 20:24:36 | N | 0] C:\IO.SYS
[17/06/2012 - 20:24:36 | N | 0] C:\MSDOS.SYS
[13/04/2008 - 23:13:04 | N | 47564] C:\NTDETECT.COM
[14/04/2008 - 01:01:48 | N | 250576] C:\ntldr
[08/11/2012 - 19:35:49 | D ] C:\NVIDIA
[12/11/2012 - 20:08:12 | ASH | 1610612736] C:\pagefile.sys
[12/11/2012 - 20:06:10 | D ] C:\Program Files
[12/11/2012 - 20:10:59 | D ] C:\Qoobox
[12/11/2012 - 20:20:19 | SHD ] C:\RECYCLER
[11/11/2012 - 20:05:58 | D ] C:\rsit
[30/08/2012 - 20:36:36 | N | 5694] C:\Sdicon32.ico
[12/11/2012 - 15:03:52 | SHD ] C:\System Volume Information
[31/07/2012 - 17:50:55 | N | 2097] C:\tv3d_debug.txt
[12/11/2012 - 20:20:19 | D ] C:\UsbFix
[12/11/2012 - 20:22:55 | A | 5351] C:\UsbFix.txt
[11/11/2012 - 18:15:00 | N | 1714698] C:\UsbFix_Upload_Me_GAMEPC.zip
[07/11/2007 - 07:00:40 | N | 5686] C:\vcredist.bmp
[07/11/2007 - 07:09:22 | N | 1442522] C:\VC_RED.cab
[07/11/2007 - 07:12:28 | N | 232960] C:\VC_RED.MSI
[05/09/2012 - 12:36:42 | N | 3509] C:\view_log.txt
[12/11/2012 - 20:08:49 | D ] C:\WINDOWS
[22/06/2012 - 20:32:35 | D ] C:\WinRAR
[14/05/2009 - 21:08:48 | R | 51] D:\Autorun.inf
[15/05/2009 - 10:22:18 | RD ] D:\Bonus
[15/05/2009 - 10:22:24 | RD ] D:\DirectX
[14/05/2009 - 15:05:37 | R | 3277744] D:\Manual.pdf
[14/05/2009 - 15:44:37 | R | 7446386] D:\Skullcandy.exe
[14/05/2009 - 15:05:16 | R | 4022625] D:\Theme.mp3
[14/05/2009 - 15:44:42 | R | 7261723] D:\Video.wmv
[14/05/2009 - 21:19:54 | R | 1805166] D:\autorun.exe
[15/05/2009 - 10:20:55 | RD ] D:\background
[14/05/2009 - 15:05:34 | R | 193496] D:\banner.bmp
[12/08/2002 - 21:00:00 | R | 1792] D:\click.wav
[14/05/2009 - 17:14:57 | R | 1071945728] D:\setup-1.bin
[14/05/2009 - 17:28:14 | R | 1073741824] D:\setup-2.bin
[14/05/2009 - 17:36:02 | R | 1073741824] D:\setup-3.bin
[14/05/2009 - 17:36:15 | R | 30610025] D:\setup-4.bin
[14/05/2009 - 17:36:16 | R | 1796003] D:\setup.exe
[11/03/2005 - 20:45:52 | R | 36864] E:\CdAutoRun.exe
[06/10/2008 - 14:37:46 | RD ] E:\Dx9.0c Redist
[12/05/2005 - 14:19:06 | R | 6022] E:\ReadMeTrackManiaSunriseCZ.txt
[09/08/2004 - 14:04:26 | R | 3262] E:\TmSunrise.ico
[06/10/2008 - 14:58:58 | R | 664740123] E:\TmSunriseSetup-1.bin
[06/10/2008 - 14:56:41 | R | 532578] E:\TmSunriseSetup.exe
[11/03/2005 - 21:33:46 | R | 49] E:\autorun.inf
[30/05/2005 - 10:40:00 | R | 7087245] E:\navodTMS.pdf
[11/11/2012 - 18:15:00 | D ] F:\Autorun.inf
[11/11/2012 - 17:56:00 | N | 61] F:\recycler.bat
[12/11/2012 - 15:03:18 | N | 1306] F:\BOOTEX.LOG
[05/10/2012 - 14:54:22 | D ] F:\EXTREME
[02/10/2012 - 16:25:08 | N | 113032] G:\03_Pikachu.png
[02/10/2012 - 16:23:36 | N | 22385] G:\krtek.jpg
[03/10/2012 - 10:24:34 | N | 597000192] G:\Office-2003 (1).iso
[02/10/2012 - 16:29:32 | N | 31673] G:\obrazek_894.jpg
[16/06/2012 - 11:56:28 | N | 265122] G:\OEM.html
[04/07/2012 - 18:14:10 | N | 1619234934] G:\1svprijimani.wmv
[03/10/2012 - 12:01:22 | N | 123290033] G:\Apache_OpenOffice_incubating_3.4.1_Win_x86_install_cs.exe
[03/10/2012 - 12:48:20 | N | 323792] G:\MS-Office-2003-crack.rar
[03/10/2012 - 11:55:22 | N | 14303520] G:\the-sims-3-crack-patch.rar
[04/10/2012 - 08:06:34 | N | 368075612] G:\Enjoy the Silence Episode 2 - Mixed by Pepi.mp3
[04/10/2012 - 21:02:30 | D ] G:\Prezentace
[11/11/2012 - 18:15:00 | D ] G:\Autorun.inf
[12/11/2012 - 15:03:36 | N | 1382] G:\BOOTEX.LOG
[08/11/2012 - 18:35:30 | D ] G:\Nová složka
[11/11/2012 - 17:56:00 | N | 61] G:\recycler.bat
[09/09/2012 - 17:29:04 | N | 1861487] G:\need-for-speed-underground-2-2004-crack-only.rar
[02/10/2012 - 15:56:00 | N | 9534] G:\sracky_o_hcl.txt
[02/10/2012 - 16:15:10 | N | 5710] G:\kyselina-chlorovodikova.jpg
[02/10/2012 - 16:15:20 | N | 69367] G:\zaludek.jpg
[02/10/2012 - 16:15:26 | N | 4081] G:\GSH05_korozivni_small.gif
[02/10/2012 - 16:25:48 | N | 33198] G:\Pikachu-want-Soda-pikachu-18237632-320-240.jpg
[02/10/2012 - 16:15:32 | N | 6174] G:\9a0907c3cb_24529873_o2.jpg
[02/10/2012 - 16:20:46 | N | 62038] G:\krtek.gif.jpg
[11/11/2011 - 12:45:32 | N | 2211261] H:\minecraft.jar
[24/06/2011 - 09:02:58 | D ] H:\AJ
[27/12/2010 - 15:04:34 | D ] H:\tanks-0.9.2
[24/06/2011 - 12:41:34 | D ] H:\tata
[25/02/2010 - 03:37:40 | D ] H:\__DT
[27/12/2010 - 15:05:00 | D ] H:\TopWare
[17/06/2012 - 19:12:28 | D ] H:\GCS
[15/09/2010 - 10:13:12 | D ] H:\2010-09-01 go_prima_2010
[13/05/2011 - 19:30:38 | N | 74655] H:\xperia mismas.jpg
[06/09/2011 - 13:28:18 | D ] H:\RENDERS
[20/06/2012 - 14:31:36 | D ] H:\FOUND.000
[27/12/2010 - 15:05:10 | D ] H:\McLaren Racing
[27/12/2010 - 15:05:24 | D ] H:\Space Oddity
[27/12/2010 - 15:06:48 | D ] H:\Kristián
[02/11/2010 - 20:15:08 | N | 611328] H:\Materíál.doc
[07/06/2011 - 12:06:44 | D ] H:\Ninja Fruit
[17/01/2011 - 07:21:20 | D ] H:\VYTISKNOUT
[17/06/2012 - 19:10:34 | D ] H:\WinRAR
[17/06/2012 - 19:12:50 | D ] H:\GCS_TML_info
[20/06/2012 - 14:32:46 | N | 1920] H:\BOOTEX.LOG
[22/11/2009 - 20:26:44 | N | 936] H:\leeme.txt
[09/05/2011 - 08:01:32 | D ] H:\prezentace
[15/09/2010 - 18:43:58 | D ] H:\fotak
[24/07/2011 - 13:58:44 | D ] H:\Deepolis - Vyúčtování
[17/09/2010 - 13:30:16 | D ] H:\2009-02-13-1641-36
[17/06/2012 - 19:12:26 | D ] H:\Custom Production Presets 7.0
[11/09/2011 - 20:59:08 | N | 9028] H:\!!!!!PRO ČÉPU!!!!.txt
[19/06/2012 - 13:27:26 | N | 64999424] H:\Dungeon-Siege-II-Broken-World.iso
[20/06/2012 - 07:57:12 | N | 20552] H:\gdx-e2kg.zip
[22/06/2012 - 21:39:42 | D ] H:\bin
[02/05/2011 - 14:07:22 | D ] H:\TISK
[20/02/2011 - 15:50:56 | D ] H:\adobe
[31/01/2011 - 15:25:38 | D ] H:\minecraft
[17/02/2011 - 16:34:08 | D ] H:\videa
[27/08/2011 - 17:50:14 | N | 135034277] H:\Railroad-Tycoon-3-čestina.rar
[27/08/2011 - 17:34:00 | N | 10801110] H:\Remix ála začátečník000.mp3
[25/12/2011 - 15:04:22 | D ] H:\World of many buildings
[12/11/2011 - 12:24:32 | D ] H:\INVedit
[28/08/2011 - 18:26:56 | N | 63073291] H:\virtual_dj_6_with_skins_samples_and_sound_effects.rar
[12/06/2012 - 22:13:32 | N | 11000] H:\GCS.camproj
[12/06/2012 - 22:12:24 | N | 14115] H:\ju.camproj
[13/06/2011 - 16:21:56 | N | 54272] H:\kupni-smlouva-na-osobni-automobil.doc
[24/10/2011 - 16:08:44 | N | 954821944] H:\Zaříkávač koní.avi
[08/06/2012 - 13:45:38 | D ] H:\.Trash-1001
[14/05/2011 - 17:59:16 | D ] H:\New World of moje
[26/03/2011 - 10:54:14 | N | 118969] H:\mapa_obchody.gif
[13/05/2011 - 19:32:00 | N | 142000] H:\minecraft-hack-invedit (2).rar
[17/06/2012 - 19:16:18 | D ] H:\Bandicam
[11/11/2011 - 08:07:40 | N | 47965882] H:\MINECRAFT-Beta-1.8.1.rar
[12/11/2011 - 12:24:48 | D ] H:\Glacier World by RedStoneCHRIS
[13/11/2011 - 11:28:06 | N | 150594801] H:\Minecraft-1.7.3-too-many-items.rar
[17/06/2012 - 19:16:54 | D ] H:\Camtasia Studio 7
[17/06/2012 - 19:34:06 | D ] H:\Fonty_old
[18/06/2012 - 08:57:22 | N | 9160914] H:\Deamon-tools-4.35.5-Lite-cz.rar
[18/06/2012 - 08:59:14 | N | 3031185] H:\cestiny_2198_TorchlightCZ.rar
[18/06/2012 - 11:54:10 | N | 28841000] H:\KMPlayer_EN_3.2.0.0.exe
[18/06/2012 - 11:54:42 | N | 22255541] H:\K-Lite_Codec_Pack_880_Mega.exe
[20/06/2012 - 07:57:34 | N | 4026] H:\rld-e60k.rar
[20/06/2012 - 08:05:24 | N | 319] H:\UseShaderVersion1.3.zip
[19/06/2012 - 11:47:56 | N | 9763427] H:\Earth2160v1.3NoCDFixedexeRegionFixAll.rar
[19/06/2012 - 11:49:58 | N | 8002167] H:\Earth2160_Update13-137_ENG.exe
[19/06/2012 - 11:51:36 | N | 9782013] H:\Earth2160v1.3.7RegionFixEng.rar
[19/06/2012 - 12:24:32 | N | 1850149] H:\MineColony rc19.zip
[20/06/2012 - 08:58:58 | N | 51131] H:\TooManyItems2012_04_13_1.2.5.zip
[02/06/2012 - 22:35:52 | N | 6967325] H:\morphvox-pro-v4-33-crack.rar
[22/06/2012 - 07:57:52 | N | 21272011] H:\WinCH2_setup.exe
[22/06/2012 - 07:57:54 | N | 5743410] H:\Cheaty.exe
[22/06/2012 - 07:58:04 | N | 13050046] H:\Navody.exe
[22/06/2012 - 08:57:20 | N | 51131] H:\TooManyItems2012_04_13_1.2.5 (1).zip
[11/11/2012 - 17:56:00 | N | 61] H:\recycler.bat
[21/06/2012 - 08:02:20 | N | 13191767] H:\Smokey.libzip
[18/02/2010 - 14:46:22 | D ] H:\Farm Frenzy 2 CZ+crack
[29/06/2012 - 08:02:42 | N | 38959] H:\WinDV-1.2.3.zip
[12/06/2012 - 13:41:46 | N | 169946589] H:\Camtasia-Studio-7.0.0-+-Serials-&-Keygen---DivXNL-team.zip
[27/12/2010 - 14:33:46 | D ] H:\GTA La Heist
[27/12/2010 - 14:34:00 | D ] H:\becherragdoll
[27/12/2010 - 14:34:42 | D ] H:\data
[27/12/2010 - 14:34:44 | D ] H:\FlatOut
[27/12/2010 - 14:34:50 | D ] H:\fotky holky
[27/12/2010 - 14:36:48 | D ] H:\deepolis
[27/12/2010 - 14:36:58 | D ] H:\Rocket in Danger
[21/06/2012 - 07:59:46 | N | 7330321] H:\Screenplay.libzip
[27/12/2010 - 14:43:04 | D ] H:\swf
[21/06/2012 - 08:04:22 | N | 68336662] H:\WidescreenAssets.libzip
[27/12/2010 - 14:58:36 | D ] H:\mapy DP
[27/12/2010 - 14:58:46 | D ] H:\Mann-Filter Rallye
[27/12/2010 - 14:59:00 | D ] H:\Hippo Racer
[27/12/2010 - 14:59:08 | D ] H:\Brad and Roxy's Amazing Downhill
[27/12/2010 - 14:59:38 | D ] H:\Meteor Storm
[27/12/2010 - 15:00:08 | D ] H:\Nová složka (2)
[11/11/2012 - 18:15:00 | D ] H:\Autorun.inf
[27/12/2010 - 15:02:36 | D ] H:\qip cz
[21/06/2012 - 08:00:24 | N | 1142393] H:\Dark_Hallway.libzip
[21/06/2012 - 08:04:34 | N | 62465526] H:\Colorscape.libzip
[21/06/2012 - 08:02:24 | N | 15726919] H:\Firefly.libzip
[21/06/2012 - 08:01:52 | N | 8136821] H:\Mystify.libzip
[27/12/2010 - 15:04:44 | D ] H:\AGF
[26/12/2009 - 14:34:22 | N | 765222400] H:\Happy Feet CZ.avi
[26/12/2010 - 13:55:06 | N | 16409960] H:\spybotsd162.exe
[14/11/2011 - 08:57:52 | N | 5536064] I:\MinecraftStructurePlanner.exe
[15/11/2011 - 14:29:12 | N | 20197256] I:\jre-7u1-windows-i586.exe
[29/06/2012 - 14:40:14 | D ] I:\For Elii
[06/11/2012 - 18:21:48 | N | 2056960000] I:\Battlefield 2.iso
[11/11/2012 - 18:15:00 | D ] I:\Autorun.inf
[17/11/2011 - 17:33:28 | N | 40417144] I:\D900IXDGE2.exe
[29/03/2012 - 16:08:24 | N | 694784] I:\MinecraftSP.exe
[25/05/2012 - 13:16:14 | D ] I:\server
[18/11/2011 - 14:08:58 | D ] I:\Charred Dirt
[17/11/2011 - 18:07:06 | N | 6000103] I:\OneNAND Downloader v1.6 For PNX5230(tfs4 v1.6).rar
[21/11/2011 - 11:09:48 | N | 11405371] I:\Chemie.jpg
[13/12/2011 - 08:00:32 | N | 21981] I:\Grass.jpg
[02/01/2012 - 10:48:52 | N | 733913088] I:\Vall-i-CZ-dab.avi
[06/01/2012 - 13:40:18 | N | 3152159] I:\Transformice-parody-song-~-I-could-get-used-to-this.mp3
[04/04/2012 - 09:56:40 | N | 8005848] I:\[HD]-LMFAO---One-Day.mp3
[10/04/2012 - 11:55:30 | N | 11101992] I:\craftbukkit.jar
[08/12/2011 - 10:03:14 | N | 531292] I:\I_Miss_You.sis
[08/12/2011 - 10:04:56 | N | 216000] I:\Ice_Age_3.sis
[08/12/2011 - 10:05:48 | N | 423548] I:\I_Miss_You (1).sis
[10/12/2011 - 12:08:16 | D ] I:\atanua
[21/04/2012 - 10:17:40 | D ] I:\Nová složka
[11/11/2012 - 17:56:00 | N | 61] I:\recycler.bat
[03/03/2012 - 10:22:20 | N | 23040] I:\MC.doc
[12/12/2011 - 07:12:56 | N | 221] I:\darky.txt
[13/12/2011 - 09:53:34 | N | 23892191] I:\terraria.rar
[04/04/2012 - 09:55:54 | N | 10184275] I:\12-jason_derulo_-_breathing.mp3
[16/01/2012 - 18:08:44 | N | 215354] I:\[1.1]ReiMinimap_v3.0_01.zip
[16/01/2012 - 17:00:18 | N | 47993] I:\TooManyItems2012_01_12.zip
[16/01/2012 - 15:37:36 | N | 89249] I:\ModLoader.zip
[07/03/2012 - 11:52:20 | N | 379906] I:\CS_1.6_CZ.exe
[15/12/2011 - 20:33:00 | D ] I:\UB's
[20/03/2012 - 13:33:36 | N | 5818934] I:\JCreator-Pro-4.50.010.rar
[16/01/2009 - 11:03:36 | D ] I:\JCreator Pro 4.50.010
[16/12/2011 - 08:03:54 | N | 119167] I:\Horovice,,Cintlovka-Horovice,,nam.B.Nemcove.pdf
[10/05/2012 - 06:38:12 | N | 4224049] I:\minecraft.jar
[29/06/2012 - 15:50:12 | N | 4245596] I:\For Elii.rar
[07/06/2012 - 09:00:22 | D ] I:\Sony Vegas 11 PRO
[07/06/2012 - 13:09:04 | D ] I:\Minecraft Tekkit Pack
[11/06/2012 - 12:50:12 | N | 881] I:\how to change xp sp.txt
[11/06/2012 - 22:28:54 | D ] I:\TheMagicLight
[16/06/2012 - 10:06:30 | D ] I:\skin3
[16/06/2012 - 10:07:00 | D ] I:\MCSkin3D
[16/06/2012 - 10:07:56 | D ] I:\Games
[16/06/2012 - 10:43:56 | D ] I:\!!!TISK!!!
[16/06/2012 - 15:14:30 | N | 523778] I:\6590v14.exe
[03/10/2010 - 13:50:20 | N | 10088256] I:\DAEMONToolsPro4360309-0160.exe
[12/11/2012 - 15:03:08 | N | 2782] I:\BOOTEX.LOG
[27/06/2012 - 08:05:28 | N | 5616256] I:\Aura-Dione---friends-ft.-Rock-Mafia.mp3
[27/06/2012 - 10:16:24 | N | 306447626] I:\Nero-10.rar
[27/06/2012 - 12:01:16 | N | 6905480] I:\Sonic Ethers Unbelievable Shaders v08 1.2.4 and 1.2.5 (Windows).zip

################## | Vaccin |

C:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
F:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
G:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
H:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
I:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)

################## | Upload |

Please send the file: C:\UsbFix_Upload_Me_GAMEPC.zip
http://sosvirus.org/viewtopic.php?f=208&t=250
Thank you for your contribution.

################## | E.O.F |

[stell]

Ok, takze vsetko je naspat.
Takze pokracujes takto:
1:Pouzijes TDSSKILLER.
http://www.viruskasino.com/2010/12/odst ... kitov.html
Log vloz sem

2:Pouzijes AVANGER
http://forum.viry.cz/viewtopic.php?f=11&t=19832

A tento script:

Kód: Vybrat vše

Files to delete:
c:\documents and settings\Gamer\Data aplikací\Fngwgb.exe

log vloz sem.

3:Pouzijes zasa USBFIX.
Log vloz sem.

4:Vloz sem novy log z RSIT.

[TheMagicLight]

TDSSKiller

16:05:38.0562 2956 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
16:05:39.0921 2956 ============================================================
16:05:39.0921 2956 Current date / time: 2012/11/13 16:05:39.0921
16:05:39.0921 2956 SystemInfo:
16:05:39.0921 2956
16:05:39.0921 2956 OS Version: 5.1.2600 ServicePack: 3.0
16:05:39.0921 2956 Product type: Workstation
16:05:39.0921 2956 ComputerName: GAMEPC
16:05:39.0921 2956 UserName: Gamer
16:05:39.0921 2956 Windows directory: C:\WINDOWS
16:05:39.0921 2956 System windows directory: C:\WINDOWS
16:05:39.0921 2956 Processor architecture: Intel x86
16:05:39.0921 2956 Number of processors: 1
16:05:39.0921 2956 Page size: 0x1000
16:05:39.0921 2956 Boot type: Normal boot
16:05:39.0921 2956 ============================================================
16:05:43.0515 2956 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
16:05:43.0546 2956 Drive \Device\Harddisk1\DR2 - Size: 0xF2800000 (3.79 Gb), SectorSize: 0x200, Cylinders: 0x1EE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:05:43.0546 2956 Drive \Device\Harddisk2\DR3 - Size: 0xF2800000 (3.79 Gb), SectorSize: 0x200, Cylinders: 0x1EE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:05:43.0546 2956 Drive \Device\Harddisk3\DR4 - Size: 0x3D000000 (0.95 Gb), SectorSize: 0x200, Cylinders: 0x7C, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:05:43.0546 2956 Drive \Device\Harddisk4\DR5 - Size: 0x1DE000000 (7.47 Gb), SectorSize: 0x200, Cylinders: 0x3CE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:05:43.0562 2956 ============================================================
16:05:43.0562 2956 \Device\Harddisk0\DR0:
16:05:43.0562 2956 MBR partitions:
16:05:43.0562 2956 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xDF93782
16:05:43.0562 2956 \Device\Harddisk1\DR2:
16:05:43.0562 2956 MBR partitions:
16:05:43.0562 2956 \Device\Harddisk1\DR2\Partition1: MBR, Type 0xB, StartLBA 0x350, BlocksNum 0x793CB0
16:05:43.0562 2956 \Device\Harddisk2\DR3:
16:05:43.0562 2956 MBR partitions:
16:05:43.0562 2956 \Device\Harddisk2\DR3\Partition1: MBR, Type 0xB, StartLBA 0x350, BlocksNum 0x793CB0
16:05:43.0562 2956 \Device\Harddisk3\DR4:
16:05:43.0562 2956 MBR partitions:
16:05:43.0562 2956 \Device\Harddisk4\DR5:
16:05:43.0562 2956 MBR partitions:
16:05:43.0562 2956 \Device\Harddisk4\DR5\Partition1: MBR, Type 0xC, StartLBA 0x890, BlocksNum 0xEEF770
16:05:43.0562 2956 ============================================================
16:05:43.0640 2956 C: <-> \Device\Harddisk0\DR0\Partition1
16:05:43.0640 2956 ============================================================
16:05:43.0640 2956 Initialize success
16:05:43.0640 2956 ============================================================
16:06:00.0421 2672 ============================================================
16:06:00.0421 2672 Scan started
16:06:00.0421 2672 Mode: Manual;
16:06:00.0421 2672 ============================================================
16:06:01.0093 2672 ================ Scan system memory ========================
16:06:01.0093 2672 System memory - ok
16:06:01.0125 2672 ================ Scan services =============================
16:06:01.0406 2672 [ 914A9709FC3BF419AD2F85547F2A4832 ] 61883 C:\WINDOWS\system32\DRIVERS\61883.sys
16:06:01.0421 2672 61883 - ok
16:06:01.0453 2672 Abiosdsk - ok
16:06:01.0484 2672 abp480n5 - ok
16:06:01.0593 2672 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:06:01.0640 2672 ACPI - ok
16:06:01.0718 2672 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
16:06:01.0734 2672 ACPIEC - ok
16:06:01.0750 2672 adpu160m - ok
16:06:01.0828 2672 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
16:06:01.0859 2672 aec - ok
16:06:01.0937 2672 [ 322D0E36693D6E24A2398BEE62A268CD ] AFD C:\WINDOWS\System32\drivers\afd.sys
16:06:01.0937 2672 AFD - ok
16:06:01.0968 2672 Aha154x - ok
16:06:02.0000 2672 aic78u2 - ok
16:06:02.0031 2672 aic78xx - ok
16:06:02.0093 2672 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
16:06:02.0093 2672 Alerter - ok
16:06:02.0140 2672 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
16:06:02.0140 2672 ALG - ok
16:06:02.0187 2672 AliIde - ok
16:06:02.0265 2672 [ 3980814F8027D27EA003E2E3D9D4F604 ] AmdK7 C:\WINDOWS\system32\DRIVERS\amdk7.sys
16:06:02.0296 2672 AmdK7 - ok
16:06:02.0343 2672 amsint - ok
16:06:02.0406 2672 [ 6B8E7A90E576D4FE308F97C69060A171 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
16:06:02.0406 2672 AppMgmt - ok
16:06:02.0453 2672 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
16:06:02.0484 2672 Arp1394 - ok
16:06:02.0500 2672 asc - ok
16:06:02.0562 2672 asc3350p - ok
16:06:02.0593 2672 asc3550 - ok
16:06:02.0750 2672 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
16:06:02.0750 2672 aspnet_state - ok
16:06:02.0796 2672 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:06:02.0812 2672 AsyncMac - ok
16:06:02.0890 2672 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
16:06:02.0890 2672 atapi - ok
16:06:02.0937 2672 Atdisk - ok
16:06:02.0984 2672 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
16:06:03.0015 2672 Atmarpc - ok
16:06:03.0093 2672 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
16:06:03.0093 2672 AudioSrv - ok
16:06:03.0187 2672 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
16:06:03.0218 2672 audstub - ok
16:06:03.0296 2672 [ F8E6956A614F15A0860474C5E2A7DE6B ] Avc C:\WINDOWS\system32\DRIVERS\avc.sys
16:06:03.0296 2672 Avc - ok
16:06:03.0406 2672 [ 625DF8F8F415B3153E7BAE44A2C29359 ] bcm4sbxp C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
16:06:03.0437 2672 bcm4sbxp - ok
16:06:03.0500 2672 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
16:06:03.0500 2672 Beep - ok
16:06:03.0609 2672 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
16:06:03.0640 2672 BITS - ok
16:06:03.0703 2672 [ 249276D3EF1E74B992299CB96099E4D7 ] Browser C:\WINDOWS\System32\browser.dll
16:06:03.0703 2672 Browser - ok
16:06:03.0750 2672 catchme - ok
16:06:03.0828 2672 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
16:06:03.0828 2672 cbidf2k - ok
16:06:03.0875 2672 [ FDC06E2ADA8C468EBB161624E03976CF ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
16:06:03.0906 2672 CCDECODE - ok
16:06:03.0937 2672 cd20xrnt - ok
16:06:03.0984 2672 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
16:06:03.0984 2672 Cdaudio - ok
16:06:04.0046 2672 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
16:06:04.0046 2672 Cdfs - ok
16:06:04.0078 2672 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
16:06:04.0109 2672 Cdrom - ok
16:06:04.0328 2672 CFcatchme - ok
16:06:04.0375 2672 Changer - ok
16:06:04.0437 2672 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
16:06:04.0453 2672 CiSvc - ok
16:06:04.0515 2672 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
16:06:04.0515 2672 ClipSrv - ok
16:06:04.0562 2672 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:06:04.0593 2672 clr_optimization_v2.0.50727_32 - ok
16:06:04.0625 2672 CmdIde - ok
16:06:04.0718 2672 [ 297CC8A257CBD3C46BBD675EC5E35CC2 ] cmuda C:\WINDOWS\system32\drivers\cmuda.sys
16:06:04.0843 2672 cmuda - ok
16:06:04.0875 2672 COMSysApp - ok
16:06:04.0937 2672 Cpqarray - ok
16:06:05.0046 2672 [ 3411FDF098AA20193EEE5FFA36BA43B2 ] cpuz135 C:\WINDOWS\system32\drivers\cpuz135_x32.sys
16:06:05.0046 2672 cpuz135 - ok
16:06:05.0078 2672 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
16:06:05.0078 2672 CryptSvc - ok
16:06:05.0109 2672 dac2w2k - ok
16:06:05.0140 2672 dac960nt - ok
16:06:05.0265 2672 [ C868F3AE15CF71A93F2AA3A32856D839 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
16:06:05.0265 2672 DcomLaunch - ok
16:06:05.0375 2672 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
16:06:05.0390 2672 Dhcp - ok
16:06:05.0406 2672 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
16:06:05.0437 2672 Disk - ok
16:06:05.0468 2672 dmadmin - ok
16:06:05.0546 2672 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
16:06:05.0640 2672 dmboot - ok
16:06:05.0703 2672 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\DRIVERS\dmio.sys
16:06:05.0734 2672 dmio - ok
16:06:05.0796 2672 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
16:06:05.0796 2672 dmload - ok
16:06:05.0859 2672 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
16:06:05.0859 2672 dmserver - ok
16:06:05.0921 2672 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
16:06:05.0921 2672 DMusic - ok
16:06:05.0953 2672 [ 0634B791684B84F4A331F3D3536FEEF8 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
16:06:05.0953 2672 Dnscache - ok
16:06:06.0031 2672 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
16:06:06.0031 2672 Dot3svc - ok
16:06:06.0062 2672 dpti2o - ok
16:06:06.0078 2672 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
16:06:06.0109 2672 drmkaud - ok
16:06:06.0171 2672 [ 687AF6BB383885FF6A64071B189A7F3E ] dtsoftbus01 C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
16:06:06.0218 2672 dtsoftbus01 - ok
16:06:06.0281 2672 [ 63A53BB2A85DD22A5E8D6C5CB6273043 ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
16:06:06.0312 2672 eamon - ok
16:06:06.0359 2672 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
16:06:06.0359 2672 EapHost - ok
16:06:06.0390 2672 [ 4F72DD48A2ED63A57C1210228A472020 ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
16:06:06.0468 2672 ehdrv - ok
16:06:06.0718 2672 [ 8C58315E956AF0B888C06746494AD81E ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
16:06:06.0734 2672 ekrn - ok
16:06:06.0812 2672 [ 1079517E33044BFA7FF3C1B9A86F05BF ] epfwtdir C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
16:06:06.0843 2672 epfwtdir - ok
16:06:06.0890 2672 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
16:06:06.0890 2672 ERSvc - ok
16:06:06.0968 2672 [ F0D2AE69035092BF22DAD6B50FAB85C2 ] Eventlog C:\WINDOWS\system32\services.exe
16:06:06.0968 2672 Eventlog - ok
16:06:07.0031 2672 [ 260C69FD67687B0DC062FC3D31655857 ] EventSystem C:\WINDOWS\system32\es.dll
16:06:07.0046 2672 EventSystem - ok
16:06:07.0125 2672 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
16:06:07.0125 2672 Fastfat - ok
16:06:07.0250 2672 [ B927443008910B412BEC72FC41C1BAD0 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
16:06:07.0265 2672 FastUserSwitchingCompatibility - ok
16:06:07.0312 2672 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
16:06:07.0343 2672 Fdc - ok
16:06:07.0390 2672 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
16:06:07.0406 2672 Fips - ok
16:06:07.0468 2672 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
16:06:07.0484 2672 Flpydisk - ok
16:06:07.0609 2672 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
16:06:07.0671 2672 FltMgr - ok
16:06:07.0828 2672 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
16:06:07.0843 2672 FontCache3.0.0.0 - ok
16:06:07.0875 2672 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:06:07.0890 2672 Fs_Rec - ok
16:06:07.0921 2672 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
16:06:07.0953 2672 Ftdisk - ok
16:06:08.0015 2672 [ 77EBF3E9386DAA51551AF429052D88D0 ] giveio C:\WINDOWS\system32\giveio.sys
16:06:08.0031 2672 giveio - ok
16:06:08.0078 2672 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
16:06:08.0109 2672 Gpc - ok
16:06:08.0203 2672 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
16:06:08.0203 2672 helpsvc - ok
16:06:08.0250 2672 HidServ - ok
16:06:08.0328 2672 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
16:06:08.0359 2672 HidUsb - ok
16:06:08.0421 2672 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
16:06:08.0421 2672 hkmsvc - ok
16:06:08.0453 2672 hpn - ok
16:06:08.0531 2672 [ F6AACF5BCE2893E0C1754AFEB672E5C9 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
16:06:08.0531 2672 HTTP - ok
16:06:08.0625 2672 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
16:06:08.0625 2672 HTTPFilter - ok
16:06:08.0640 2672 i2omgmt - ok
16:06:08.0671 2672 i2omp - ok
16:06:08.0734 2672 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
16:06:08.0765 2672 i8042prt - ok
16:06:08.0875 2672 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:06:08.0906 2672 idsvc - ok
16:06:08.0984 2672 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
16:06:09.0031 2672 Imapi - ok
16:06:09.0109 2672 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
16:06:09.0109 2672 ImapiService - ok
16:06:09.0156 2672 ini910u - ok
16:06:09.0203 2672 IntelIde - ok
16:06:09.0312 2672 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
16:06:09.0359 2672 Ip6Fw - ok
16:06:09.0390 2672 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:06:09.0468 2672 IpFilterDriver - ok
16:06:09.0515 2672 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
16:06:09.0562 2672 IpInIp - ok
16:06:09.0609 2672 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
16:06:09.0687 2672 IpNat - ok
16:06:09.0750 2672 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
16:06:09.0781 2672 IPSec - ok
16:06:09.0812 2672 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
16:06:09.0859 2672 IRENUM - ok
16:06:09.0921 2672 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
16:06:09.0953 2672 isapnp - ok
16:06:10.0093 2672 [ 92E16F5D034E7864DA308BA6309A98B7 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
16:06:10.0093 2672 JavaQuickStarterService - ok
16:06:10.0171 2672 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
16:06:10.0187 2672 Kbdclass - ok
16:06:10.0265 2672 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
16:06:10.0296 2672 kmixer - ok
16:06:10.0343 2672 [ 1705745D900DABF2D89F90EBADDC7517 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
16:06:10.0343 2672 KSecDD - ok
16:06:10.0375 2672 [ 21920AC69594AB021237054FA728FE46 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
16:06:10.0375 2672 lanmanserver - ok
16:06:10.0406 2672 [ 5190783F51A2D7A8495202C664D7C963 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
16:06:10.0421 2672 lanmanworkstation - ok
16:06:10.0468 2672 lbrtfdc - ok
16:06:10.0515 2672 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
16:06:10.0515 2672 LmHosts - ok
16:06:10.0609 2672 [ 0BEFA983F8B9511EADD6960DD13E9FBF ] LPDSVC C:\WINDOWS\system32\tcpsvcs.exe
16:06:10.0609 2672 LPDSVC - ok
16:06:10.0718 2672 [ 500D089CE760D83DA2B6CBA681AA9949 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
16:06:10.0718 2672 MBAMProtector - ok
16:06:10.0859 2672 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
16:06:10.0875 2672 MBAMScheduler - ok
16:06:10.0968 2672 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
16:06:10.0968 2672 MBAMService - ok
16:06:11.0031 2672 [ 290FB01F7F51EFF0960599404A09F8D6 ] mbmiodrvr C:\WINDOWS\system32\mbmiodrvr.sys
16:06:11.0031 2672 mbmiodrvr - ok
16:06:11.0109 2672 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
16:06:11.0109 2672 Messenger - ok
16:06:11.0171 2672 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
16:06:11.0171 2672 mnmdd - ok
16:06:11.0234 2672 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
16:06:11.0234 2672 mnmsrvc - ok
16:06:11.0312 2672 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
16:06:11.0328 2672 Modem - ok
16:06:11.0359 2672 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
16:06:11.0390 2672 Mouclass - ok
16:06:11.0437 2672 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
16:06:11.0468 2672 mouhid - ok
16:06:11.0546 2672 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
16:06:11.0546 2672 MountMgr - ok
16:06:11.0640 2672 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
16:06:11.0640 2672 MozillaMaintenance - ok
16:06:11.0703 2672 mraid35x - ok
16:06:11.0750 2672 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
16:06:11.0812 2672 MRxDAV - ok
16:06:11.0921 2672 [ 68755F0FF16070178B54674FE5B847B0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:06:11.0937 2672 MRxSmb - ok
16:06:12.0000 2672 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
16:06:12.0000 2672 MSDTC - ok
16:06:12.0078 2672 [ 8575D788395C4D6378D98D1ED7CDADB9 ] MSDV C:\WINDOWS\system32\DRIVERS\msdv.sys
16:06:12.0140 2672 MSDV - ok
16:06:12.0203 2672 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
16:06:12.0203 2672 Msfs - ok
16:06:12.0234 2672 MSIServer - ok
16:06:12.0328 2672 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
16:06:12.0375 2672 MSKSSRV - ok
16:06:12.0406 2672 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
16:06:12.0421 2672 MSPCLOCK - ok
16:06:12.0453 2672 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
16:06:12.0500 2672 MSPQM - ok
16:06:12.0546 2672 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
16:06:12.0578 2672 mssmbios - ok
16:06:12.0625 2672 [ D5059366B361F0E1124753447AF08AA2 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
16:06:12.0718 2672 MSTEE - ok
16:06:12.0796 2672 [ 2F625D11385B1A94360BFC70AAEFDEE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
16:06:12.0796 2672 Mup - ok
16:06:12.0859 2672 [ AC31B352CE5E92704056D409834BEB74 ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
16:06:12.0953 2672 NABTSFEC - ok
16:06:13.0078 2672 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
16:06:13.0078 2672 napagent - ok
16:06:13.0187 2672 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
16:06:13.0203 2672 NDIS - ok
16:06:13.0250 2672 [ ABD7629CF2796250F315C1DD0B6CF7A0 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
16:06:13.0328 2672 NdisIP - ok
16:06:13.0343 2672 [ 1AB3D00C991AB086E69DB84B6C0ED78F ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:06:13.0343 2672 NdisTapi - ok
16:06:13.0406 2672 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
16:06:13.0453 2672 Ndisuio - ok
16:06:13.0515 2672 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:06:13.0562 2672 NdisWan - ok
16:06:13.0640 2672 [ 6215023940CFD3702B46ABC304E1D45A ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
16:06:13.0640 2672 NDProxy - ok
16:06:13.0765 2672 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
16:06:13.0796 2672 NetBIOS - ok
16:06:13.0890 2672 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
16:06:13.0953 2672 NetBT - ok
16:06:14.0000 2672 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
16:06:14.0015 2672 NetDDE - ok
16:06:14.0031 2672 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
16:06:14.0031 2672 NetDDEdsdm - ok
16:06:14.0109 2672 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
16:06:14.0125 2672 Netlogon - ok
16:06:14.0234 2672 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
16:06:14.0250 2672 Netman - ok
16:06:14.0359 2672 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:06:14.0375 2672 NetTcpPortSharing - ok
16:06:14.0421 2672 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
16:06:14.0468 2672 NIC1394 - ok
16:06:14.0593 2672 [ AAC97DAB5F8A0573CF10E0EAC42A7724 ] Nla C:\WINDOWS\System32\mswsock.dll
16:06:14.0609 2672 Nla - ok
16:06:14.0671 2672 [ 28E36E677849174C910FAAEAD3E60E9E ] nmwcd C:\WINDOWS\system32\drivers\ccdcmb.sys
16:06:14.0734 2672 nmwcd - ok
16:06:14.0828 2672 [ 3823DEB17F9F6775DE0187A98FA0536D ] nmwcdc C:\WINDOWS\system32\drivers\ccdcmbo.sys
16:06:14.0843 2672 nmwcdc - ok
16:06:14.0921 2672 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
16:06:14.0937 2672 Npfs - ok
16:06:15.0109 2672 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
16:06:15.0546 2672 Ntfs - ok
16:06:15.0625 2672 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
16:06:15.0640 2672 NtLmSsp - ok
16:06:15.0859 2672 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
16:06:15.0875 2672 NtmsSvc - ok
16:06:15.0968 2672 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
16:06:15.0968 2672 Null - ok
16:06:17.0968 2672 [ 8E72E452B9CC1E455D19E3C9FA964D37 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
16:06:18.0390 2672 nv - ok
16:06:18.0468 2672 [ 934833B3CD462A6F8A96F64D024C8B20 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
16:06:18.0468 2672 NVSvc - ok
16:06:18.0531 2672 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
16:06:18.0562 2672 NwlnkFlt - ok
16:06:18.0609 2672 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
16:06:18.0656 2672 NwlnkFwd - ok
16:06:18.0718 2672 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
16:06:18.0875 2672 ohci1394 - ok
16:06:18.0937 2672 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
16:06:19.0000 2672 Parport - ok
16:06:19.0062 2672 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
16:06:19.0062 2672 PartMgr - ok
16:06:19.0140 2672 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
16:06:19.0140 2672 ParVdm - ok
16:06:19.0218 2672 [ FD2041E9BA03DB7764B2248F02475079 ] pccsmcfd C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
16:06:19.0234 2672 pccsmcfd - ok
16:06:19.0265 2672 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
16:06:19.0281 2672 PCI - ok
16:06:19.0312 2672 PCIDump - ok
16:06:19.0343 2672 PCIIde - ok
16:06:19.0421 2672 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
16:06:19.0437 2672 Pcmcia - ok
16:06:19.0468 2672 PDCOMP - ok
16:06:19.0500 2672 PDFRAME - ok
16:06:19.0515 2672 PDRELI - ok
16:06:19.0546 2672 PDRFRAME - ok
16:06:19.0578 2672 perc2 - ok
16:06:19.0640 2672 perc2hib - ok
16:06:19.0734 2672 [ F0D2AE69035092BF22DAD6B50FAB85C2 ] PlugPlay C:\WINDOWS\system32\services.exe
16:06:19.0734 2672 PlugPlay - ok
16:06:19.0859 2672 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
16:06:19.0859 2672 PolicyAgent - ok
16:06:19.0906 2672 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
16:06:19.0953 2672 PptpMiniport - ok
16:06:20.0015 2672 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
16:06:20.0015 2672 ProtectedStorage - ok
16:06:20.0078 2672 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
16:06:20.0109 2672 PSched - ok
16:06:20.0156 2672 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
16:06:20.0234 2672 Ptilink - ok
16:06:20.0265 2672 ql1080 - ok
16:06:20.0296 2672 Ql10wnt - ok
16:06:20.0328 2672 ql12160 - ok
16:06:20.0359 2672 ql1240 - ok
16:06:20.0406 2672 ql1280 - ok
16:06:20.0437 2672 RAIDmAgt - ok
16:06:20.0468 2672 RAIDmSvr - ok
16:06:20.0546 2672 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:06:20.0562 2672 RasAcd - ok
16:06:20.0640 2672 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
16:06:20.0640 2672 RasAuto - ok
16:06:20.0703 2672 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
16:06:20.0734 2672 Rasl2tp - ok
16:06:20.0812 2672 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
16:06:20.0812 2672 RasMan - ok
16:06:20.0859 2672 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
16:06:20.0890 2672 RasPppoe - ok
16:06:20.0921 2672 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
16:06:20.0937 2672 Raspti - ok
16:06:21.0015 2672 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:06:21.0125 2672 Rdbss - ok
16:06:21.0156 2672 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
16:06:21.0171 2672 RDPCDD - ok
16:06:21.0234 2672 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
16:06:21.0328 2672 rdpdr - ok
16:06:21.0406 2672 [ 6728E45B66F93C08F11DE2E316FC70DD ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
16:06:21.0421 2672 RDPWD - ok
16:06:21.0468 2672 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
16:06:21.0484 2672 RDSessMgr - ok
16:06:21.0546 2672 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
16:06:21.0578 2672 redbook - ok
16:06:21.0671 2672 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
16:06:21.0687 2672 RemoteAccess - ok
16:06:21.0734 2672 [ 8F31505484A190D5B22274708799F4EC ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
16:06:21.0734 2672 RemoteRegistry - ok
16:06:21.0796 2672 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
16:06:21.0796 2672 RpcLocator - ok
16:06:21.0906 2672 [ C868F3AE15CF71A93F2AA3A32856D839 ] RpcSs C:\WINDOWS\System32\rpcss.dll
16:06:21.0906 2672 RpcSs - ok
16:06:21.0984 2672 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
16:06:21.0984 2672 RSVP - ok
16:06:22.0109 2672 [ 581E74880AEB1DBA1CB5AC8E6E6C0A69 ] RT61 C:\WINDOWS\system32\DRIVERS\RT61.sys
16:06:22.0140 2672 RT61 - ok
16:06:22.0187 2672 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
16:06:22.0187 2672 SamSs - ok
16:06:22.0203 2672 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
16:06:22.0218 2672 SCardSvr - ok
16:06:22.0312 2672 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
16:06:22.0343 2672 Schedule - ok
16:06:22.0375 2672 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
16:06:22.0406 2672 Secdrv - ok
16:06:22.0468 2672 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
16:06:22.0484 2672 seclogon - ok
16:06:22.0515 2672 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
16:06:22.0515 2672 SENS - ok
16:06:22.0562 2672 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
16:06:22.0593 2672 serenum - ok
16:06:22.0609 2672 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
16:06:22.0687 2672 Serial - ok
16:06:22.0828 2672 [ 5BF59C6BC737BAAF541168E5CB2EC1D9 ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
16:06:22.0828 2672 ServiceLayer - ok
16:06:22.0968 2672 [ 4D0CE0FADCA29E7DA68CE597AC9010BD ] sfdrv01a C:\WINDOWS\system32\drivers\sfdrv01a.sys
16:06:23.0000 2672 sfdrv01a - ok
16:06:23.0015 2672 [ DAAD4C099EBF5094D32C373AC1AC0F3C ] sfhlp02 C:\WINDOWS\system32\drivers\sfhlp02.sys
16:06:23.0078 2672 sfhlp02 - ok
16:06:23.0109 2672 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
16:06:23.0125 2672 Sfloppy - ok
16:06:23.0187 2672 [ 6DC03269F4C71E4AB313C3597F42A340 ] sfsync02 C:\WINDOWS\system32\drivers\sfsync02.sys
16:06:23.0218 2672 sfsync02 - ok
16:06:23.0265 2672 [ 107B772690050D3B19CBC637AD8FD96E ] sfvfs02 C:\WINDOWS\system32\drivers\sfvfs02.sys
16:06:23.0296 2672 sfvfs02 - ok
16:06:23.0375 2672 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
16:06:23.0390 2672 SharedAccess - ok
16:06:23.0421 2672 [ B927443008910B412BEC72FC41C1BAD0 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
16:06:23.0421 2672 ShellHWDetection - ok
16:06:23.0468 2672 Simbad - ok
16:06:23.0531 2672 [ 1FFC44D6787EC1EA9A2B1440A90FA5C1 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
16:06:23.0562 2672 SLIP - ok
16:06:23.0703 2672 [ 07AD42303519A955560B5A19FE20B68F ] SMTPSVC C:\WINDOWS\system32\inetsrv\inetinfo.exe
16:06:23.0703 2672 SMTPSVC - ok
16:06:23.0734 2672 [ 442D891CF7CB138F185FB2A1161C8AF9 ] SNMP C:\WINDOWS\System32\snmp.exe
16:06:23.0734 2672 SNMP - ok
16:06:23.0781 2672 [ 4296E52A9D3CA6DCD1CF57E8BCA45AB7 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
16:06:23.0781 2672 SNMPTRAP - ok
16:06:23.0812 2672 Sparrow - ok
16:06:23.0890 2672 [ 3FA2E254BFBCE52B3C6F1BF23AAB6911 ] speedfan C:\WINDOWS\system32\speedfan.sys
16:06:23.0890 2672 speedfan - ok
16:06:23.0937 2672 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
16:06:23.0968 2672 splitter - ok
16:06:24.0062 2672 [ CB1090BCA0E7B40D0B5B4E4D66531809 ] Spooler C:\WINDOWS\system32\spoolsv.exe
16:06:24.0062 2672 Spooler - ok
16:06:24.0140 2672 [ 68103A2B441BBF3908EBB587F0704D6C ] sptd C:\WINDOWS\System32\Drivers\sptd.sys
16:06:24.0156 2672 sptd - ok
16:06:24.0203 2672 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
16:06:24.0234 2672 sr - ok
16:06:24.0312 2672 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
16:06:24.0312 2672 srservice - ok
16:06:24.0421 2672 [ 5252605079810904E31C332E241CD59B ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
16:06:24.0437 2672 Srv - ok
16:06:24.0500 2672 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
16:06:24.0515 2672 SSDPSRV - ok
16:06:24.0578 2672 [ 3F0164FBC0BD1ADBD02DF9759181451A ] ss_bbus C:\WINDOWS\system32\DRIVERS\ss_bbus.sys
16:06:24.0609 2672 ss_bbus - ok
16:06:24.0671 2672 [ B89D62206034E5FE573C80A24DD55675 ] ss_bmdfl C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys
16:06:24.0687 2672 ss_bmdfl - ok
16:06:24.0734 2672 [ 1ED0FCEA586FE2A416EE15196E5631DD ] ss_bmdm C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys
16:06:24.0750 2672 ss_bmdm - ok
16:06:24.0796 2672 [ 994D2E5378CC337EC7DD73C1E04FCAA4 ] ss_bserd C:\WINDOWS\system32\DRIVERS\ss_bserd.sys
16:06:24.0843 2672 ss_bserd - ok
16:06:24.0921 2672 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
16:06:24.0937 2672 stisvc - ok
16:06:25.0000 2672 [ A9F9FD0212E572B84EDB9EB661F6BC04 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
16:06:25.0015 2672 streamip - ok
16:06:25.0093 2672 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
16:06:25.0125 2672 swenum - ok
16:06:25.0156 2672 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
16:06:25.0203 2672 swmidi - ok
16:06:25.0234 2672 SwPrv - ok
16:06:25.0281 2672 symc810 - ok
16:06:25.0312 2672 symc8xx - ok
16:06:25.0359 2672 sym_hi - ok
16:06:25.0390 2672 sym_u3 - ok
16:06:25.0437 2672 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
16:06:25.0453 2672 sysaudio - ok
16:06:25.0515 2672 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
16:06:25.0546 2672 SysmonLog - ok
16:06:25.0578 2672 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
16:06:25.0593 2672 TapiSrv - ok
16:06:25.0656 2672 [ 93EA8D04EC73A85DB02EB8805988F733 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
16:06:25.0718 2672 Tcpip - ok
16:06:25.0750 2672 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
16:06:25.0765 2672 TDPIPE - ok
16:06:25.0796 2672 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
16:06:25.0796 2672 TDTCP - ok
16:06:25.0843 2672 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
16:06:25.0953 2672 TermDD - ok
16:06:26.0031 2672 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
16:06:26.0031 2672 TermService - ok
16:06:26.0093 2672 [ B927443008910B412BEC72FC41C1BAD0 ] Themes C:\WINDOWS\System32\shsvcs.dll
16:06:26.0093 2672 Themes - ok
16:06:26.0171 2672 [ CD0CC7B167D78043A41C98D4921EFB54 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
16:06:26.0171 2672 TlntSvr - ok
16:06:26.0187 2672 TosIde - ok
16:06:26.0265 2672 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
16:06:26.0265 2672 TrkWks - ok
16:06:26.0375 2672 [ D85938F272D1BCF3DB3A31FC0A048928 ] uagp35 C:\WINDOWS\system32\DRIVERS\uagp35.sys
16:06:26.0406 2672 uagp35 - ok
16:06:26.0453 2672 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
16:06:26.0453 2672 Udfs - ok
16:06:26.0500 2672 ultra - ok
16:06:26.0593 2672 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
16:06:26.0671 2672 Update - ok
16:06:26.0765 2672 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
16:06:26.0765 2672 upnphost - ok
16:06:26.0843 2672 [ B1B8BEE26227DAD9835019201552CB05 ] upperdev C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
16:06:26.0843 2672 upperdev - ok
16:06:26.0890 2672 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
16:06:26.0906 2672 UPS - ok
16:06:27.0000 2672 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
16:06:27.0015 2672 usbccgp - ok
16:06:27.0078 2672 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
16:06:27.0125 2672 usbehci - ok
16:06:27.0203 2672 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
16:06:27.0234 2672 usbhub - ok
16:06:27.0281 2672 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
16:06:27.0328 2672 usbscan - ok
16:06:27.0359 2672 [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser C:\WINDOWS\system32\drivers\usbser.sys
16:06:27.0390 2672 usbser - ok
16:06:27.0421 2672 [ 98E1FF1D732C6C7200B6C59D4FF8C1C3 ] UsbserFilt C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
16:06:27.0437 2672 UsbserFilt - ok
16:06:27.0515 2672 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
16:06:27.0546 2672 USBSTOR - ok
16:06:27.0562 2672 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
16:06:27.0609 2672 usbuhci - ok
16:06:27.0656 2672 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
16:06:27.0687 2672 VgaSave - ok
16:06:27.0734 2672 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
16:06:27.0781 2672 ViaIde - ok
16:06:27.0890 2672 [ BE880E635C59470FE2AF6163EAC0DCD1 ] VodafoneConnectorService C:\Program Files\Vodafone\Via The Phone\VodafoneConnectorService.exe
16:06:27.0890 2672 VodafoneConnectorService - ok
16:06:27.0953 2672 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
16:06:27.0953 2672 VolSnap - ok
16:06:28.0015 2672 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
16:06:28.0031 2672 VSS - ok
16:06:28.0109 2672 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
16:06:28.0125 2672 W32Time - ok
16:06:28.0156 2672 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:06:28.0187 2672 Wanarp - ok
16:06:28.0359 2672 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
16:06:28.0437 2672 Wdf01000 - ok
16:06:28.0453 2672 WDICA - ok
16:06:28.0500 2672 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
16:06:28.0578 2672 wdmaud - ok
16:06:28.0609 2672 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
16:06:28.0609 2672 WebClient - ok
16:06:28.0781 2672 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
16:06:28.0781 2672 winmgmt - ok
16:06:28.0890 2672 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
16:06:28.0890 2672 WmdmPmSN - ok
16:06:29.0000 2672 [ 6538D6BDE04B56737FE743C24D4CE83D ] Wmi C:\WINDOWS\System32\advapi32.dll
16:06:29.0015 2672 Wmi - ok
16:06:29.0093 2672 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
16:06:29.0093 2672 WmiApSrv - ok
16:06:29.0171 2672 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
16:06:29.0187 2672 WpdUsb - ok
16:06:29.0250 2672 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
16:06:29.0250 2672 WS2IFSL - ok
16:06:29.0312 2672 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
16:06:29.0312 2672 wscsvc - ok
16:06:29.0406 2672 [ 233CDD1C06942115802EB7CE6669E099 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
16:06:29.0421 2672 WSTCODEC - ok
16:06:29.0500 2672 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
16:06:29.0515 2672 wuauserv - ok
16:06:29.0593 2672 [ 6FF66513D372D479EF1810223C8D20CE ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
16:06:29.0625 2672 WudfPf - ok
16:06:29.0671 2672 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
16:06:29.0671 2672 WudfRd - ok
16:06:29.0750 2672 [ 575A4190D989F64732119E4114045A4F ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
16:06:29.0781 2672 WudfSvc - ok
16:06:29.0859 2672 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
16:06:29.0890 2672 WZCSVC - ok
16:06:29.0968 2672 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
16:06:29.0984 2672 xmlprov - ok
16:06:30.0062 2672 ================ Scan global ===============================
16:06:30.0109 2672 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
16:06:30.0203 2672 [ 77A41C497ADB0C96D1E8DF6F71D843C0 ] C:\WINDOWS\system32\winsrv.dll
16:06:30.0234 2672 [ 77A41C497ADB0C96D1E8DF6F71D843C0 ] C:\WINDOWS\system32\winsrv.dll
16:06:30.0265 2672 [ F0D2AE69035092BF22DAD6B50FAB85C2 ] C:\WINDOWS\system32\services.exe
16:06:30.0265 2672 [Global] - ok
16:06:30.0265 2672 ================ Scan MBR ==================================
16:06:30.0312 2672 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
16:06:30.0468 2672 \Device\Harddisk0\DR0 - ok
16:06:30.0500 2672 [ DDAE9D649DB12F6AFF24483F2C298989 ] \Device\Harddisk1\DR2
16:06:30.0515 2672 \Device\Harddisk1\DR2 - ok
16:06:30.0562 2672 [ DDAE9D649DB12F6AFF24483F2C298989 ] \Device\Harddisk2\DR3
16:06:30.0578 2672 \Device\Harddisk2\DR3 - ok
16:06:30.0609 2672 [ 4FE33C2A517F129283B12285009437A7 ] \Device\Harddisk3\DR4
16:06:32.0843 2672 \Device\Harddisk3\DR4 - ok
16:06:32.0859 2672 [ 66D0B28C8B44E531D0C19F436252ABAA ] \Device\Harddisk4\DR5
16:06:32.0875 2672 \Device\Harddisk4\DR5 - ok
16:06:32.0890 2672 ================ Scan VBR ==================================
16:06:32.0906 2672 [ 9F4C7D47AE655F48208A2495BCD35D68 ] \Device\Harddisk0\DR0\Partition1
16:06:32.0906 2672 \Device\Harddisk0\DR0\Partition1 - ok
16:06:32.0937 2672 [ EB16CD8E52FC440729F358A6E3718227 ] \Device\Harddisk1\DR2\Partition1
16:06:32.0937 2672 \Device\Harddisk1\DR2\Partition1 - ok
16:06:32.0968 2672 [ 7B4679075354091A5C757C6CCF4349FD ] \Device\Harddisk2\DR3\Partition1
16:06:32.0984 2672 \Device\Harddisk2\DR3\Partition1 - ok
16:06:33.0031 2672 [ A7CB5BDFC50984360AB2B3EE366B7785 ] \Device\Harddisk4\DR5\Partition1
16:06:33.0031 2672 \Device\Harddisk4\DR5\Partition1 - ok
16:06:33.0046 2672 ============================================================
16:06:33.0046 2672 Scan finished
16:06:33.0046 2672 ============================================================
16:06:33.0093 2292 Detected object count: 0
16:06:33.0093 2292 Actual detected object count: 0

[TheMagicLight]

Avenger

Logfile of The Avenger Version 2.0, (c) by Swandog46
http://swandog46.geekstogo.com

Platform: Windows XP

*******************

Script file opened successfully.
Script file read successfully.

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Rootkit scan active.
No rootkits found!


Error: file "c:\documents and settings\Gamer\Data aplikací\Fngwgb.exe" not found!
Deletion of file "c:\documents and settings\Gamer\Data aplikací\Fngwgb.exe" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Completed script processing.

*******************

Finished! Terminate.

[stell]

Este daj novy log z RSIT
http://forum.viry.cz/viewtopic.php?f=13&t=105895

Problem pretrvava??

[TheMagicLight]

Jeste USBFix

############################## | UsbFix V 7.100 | [Deletion]

User: Gamer (Administrator) # GAMEPC
Updated 11/11/2012 by El Desaparecido
Started at 16:44:25 | 13/11/2012

Website: http://sosvirus.org
Contact: contact@eldesaparecido.com

PC: MSI (MS-6590) (X86-based PC
CPU: AMD Athlon(tm) XP 2600+ (2010)
RAM -> [Total : 1279 | Free : 859]
BIOS: Version 07.00T
BOOT: Normal boot

OS: Systém Microsoft Windows XP Professional (5.1.2600 32-Bit) # Service Pack 3
WB: Windows Internet Explorer 7.0.5730.13

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Fixed drive # 112 Gb (33 Mb free - 29%) [] # NTFS
D:\ -> CD-ROM
E:\ -> CD-ROM
F:\ -> Removable drive # 976 Mb (933 Mb free - 96%) [FLASH DISK] # FAT
G:\ -> Removable drive # 4 Gb (1 Mb free - 33%) [BEZZUBKA] # FAT32
H:\ -> Removable drive # 7 Gb (155 Mb free - 2%) [KINGSTON] # FAT32
I:\ -> Removable drive # 4 Gb (499 Mb free - 13%) [MCDISC 4GB] # FAT32
X:\ -> CD-ROM
Y:\ -> CD-ROM

################## | Active Processes |

C:\WINDOWS\System32\smss.exe (436)
C:\WINDOWS\system32\winlogon.exe (752)
C:\WINDOWS\system32\services.exe (796)
C:\WINDOWS\system32\lsass.exe (808)
C:\WINDOWS\system32\svchost.exe (960)
C:\WINDOWS\System32\svchost.exe (1080)
C:\WINDOWS\system32\svchost.exe (1112)
C:\WINDOWS\system32\spoolsv.exe (1492)
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (1660)
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (1708)
C:\WINDOWS\system32\nvsvc32.exe (1788)
C:\WINDOWS\System32\snmp.exe (1860)
C:\WINDOWS\system32\svchost.exe (1908)
C:\Program Files\Vodafone\Via The Phone\VodafoneConnectorService.exe (1944)
C:\WINDOWS\system32\wuauclt.exe (192)
C:\WINDOWS\Explorer.EXE (1848)
C:\WINDOWS\system32\wscntfy.exe (1904)
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (3424)
C:\Program Files\DAEMON Tools Lite\DTLite.exe (3480)
C:\WINDOWS\system32\ctfmon.exe (3508)
C:\UsbFix\Go.exe (3272)

################## | Stopped processes |

Stopped! C:\WINDOWS\system32\spoolsv.exe (1492)
Stopped! C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (1660)
Stopped! C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (1708)
Stopped! C:\WINDOWS\system32\nvsvc32.exe (1788)
Stopped! C:\WINDOWS\System32\snmp.exe (1860)
Stopped! C:\Program Files\Vodafone\Via The Phone\VodafoneConnectorService.exe (1944)
Stopped! C:\WINDOWS\system32\wuauclt.exe (192)
Stopped! C:\WINDOWS\Explorer.EXE (1848)
Stopped! C:\WINDOWS\system32\wscntfy.exe (1904)
Stopped! C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (3424)
Stopped! C:\Program Files\DAEMON Tools Lite\DTLite.exe (3480)
Stopped! C:\WINDOWS\system32\ctfmon.exe (3508)

################## | Files # Infected Folders |

Deleted ! C:\Recycler\S-1-5-21-57989841-2111687655-725345543-1004
Not deleted ! D:\Autorun.inf
Not deleted ! D:\autorun.exe
Not deleted ! E:\autorun.inf
Not deleted ! X:\Autorun.inf
Not deleted ! X:\autorun.exe

(!) Temporary files deleted.

################## | Registry |


################## | Mountpoints2 |


################## | Listing |

[13/08/2012 - 10:44:44 | D ] C:\$WINDOWS.~BT
[06/09/2012 - 18:35:05 | N | 2056] C:\.swtch
[17/06/2012 - 20:24:36 | N | 0] C:\AUTOEXEC.BAT
[12/11/2012 - 20:22:58 | RASHD ] C:\Autorun.inf
[13/11/2012 - 16:15:16 | D ] C:\Avenger
[17/06/2012 - 20:57:44 | N | 211] C:\Boot.bak
[13/11/2012 - 16:23:47 | N | 327] C:\boot.ini
[25/10/2001 - 15:00:00 | N | 4952] C:\Bootfont.bin
[12/11/2012 - 19:57:33 | D ] C:\cmdcons
[03/08/2004 - 23:00:04 | N | 261312] C:\cmldr
[12/11/2012 - 20:10:56 | N | 13236] C:\ComboFix.txt
[17/06/2012 - 20:24:36 | N | 0] C:\CONFIG.SYS
[03/11/2012 - 10:34:11 | D ] C:\D900IXDGE2
[13/08/2012 - 09:56:48 | D ] C:\de4aebd0f29ae4aba6b6442e752eab
[17/06/2012 - 20:28:52 | D ] C:\Documents and Settings
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.1028.txt
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.1031.txt
[07/11/2007 - 07:00:40 | N | 10134] C:\eula.1033.txt
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.1036.txt
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.1040.txt
[07/11/2007 - 07:00:40 | N | 118] C:\eula.1041.txt
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.1042.txt
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.2052.txt
[07/11/2007 - 07:00:40 | N | 17734] C:\eula.3082.txt
[07/11/2007 - 07:00:40 | N | 1110] C:\globdata.ini
[04/09/2012 - 17:57:50 | D ] C:\GTA San Andreas Music
[05/09/2012 - 12:36:42 | N | 40935] C:\haxxx.log
[13/11/2012 - 16:40:52 | ASH | 1341706240] C:\hiberfil.sys
[22/06/2012 - 15:53:02 | D ] C:\Inetpub
[07/11/2007 - 07:00:40 | N | 843] C:\install.ini
[07/11/2007 - 07:03:18 | N | 76304] C:\install.res.1028.dll
[07/11/2007 - 07:03:18 | N | 96272] C:\install.res.1031.dll
[07/11/2007 - 07:03:18 | N | 91152] C:\install.res.1033.dll
[07/11/2007 - 07:03:18 | N | 97296] C:\install.res.1036.dll
[07/11/2007 - 07:03:18 | N | 95248] C:\install.res.1040.dll
[07/11/2007 - 07:03:18 | N | 81424] C:\install.res.1041.dll
[07/11/2007 - 07:03:18 | N | 79888] C:\install.res.1042.dll
[07/11/2007 - 07:03:18 | N | 75792] C:\install.res.2052.dll
[07/11/2007 - 07:03:18 | N | 96272] C:\install.res.3082.dll
[17/06/2012 - 20:24:36 | N | 0] C:\IO.SYS
[17/06/2012 - 20:24:36 | N | 0] C:\MSDOS.SYS
[13/04/2008 - 23:13:04 | N | 47564] C:\NTDETECT.COM
[14/04/2008 - 01:01:48 | N | 250576] C:\ntldr
[08/11/2012 - 19:35:49 | D ] C:\NVIDIA
[13/11/2012 - 16:40:52 | ASH | 1610612736] C:\pagefile.sys
[13/11/2012 - 15:50:09 | D ] C:\Program Files
[12/11/2012 - 20:10:59 | D ] C:\Qoobox
[13/11/2012 - 16:48:29 | SHD ] C:\RECYCLER
[11/11/2012 - 20:05:58 | D ] C:\rsit
[30/08/2012 - 20:36:36 | N | 5694] C:\Sdicon32.ico
[12/11/2012 - 15:03:52 | SHD ] C:\System Volume Information
[13/11/2012 - 16:11:01 | N | 89456] C:\TDSSKiller.2.8.15.0_13.11.2012_16.05.38_log.txt
[31/07/2012 - 17:50:55 | N | 2097] C:\tv3d_debug.txt
[13/11/2012 - 16:48:29 | D ] C:\UsbFix
[13/11/2012 - 16:48:30 | A | 3106] C:\UsbFix.txt
[12/11/2012 - 20:23:00 | N | 1822995] C:\UsbFix_Upload_Me_GAMEPC.zip
[07/11/2007 - 07:00:40 | N | 5686] C:\vcredist.bmp
[07/11/2007 - 07:09:22 | N | 1442522] C:\VC_RED.cab
[07/11/2007 - 07:12:28 | N | 232960] C:\VC_RED.MSI
[05/09/2012 - 12:36:42 | N | 3509] C:\view_log.txt
[13/11/2012 - 16:14:33 | D ] C:\WINDOWS
[22/06/2012 - 20:32:35 | D ] C:\WinRAR
[14/05/2009 - 21:08:48 | R | 51] D:\Autorun.inf
[15/05/2009 - 10:22:18 | RD ] D:\Bonus
[15/05/2009 - 10:22:24 | RD ] D:\DirectX
[14/05/2009 - 15:05:37 | R | 3277744] D:\Manual.pdf
[14/05/2009 - 15:44:37 | R | 7446386] D:\Skullcandy.exe
[14/05/2009 - 15:05:16 | R | 4022625] D:\Theme.mp3
[14/05/2009 - 15:44:42 | R | 7261723] D:\Video.wmv
[14/05/2009 - 21:19:54 | R | 1805166] D:\autorun.exe
[15/05/2009 - 10:20:55 | RD ] D:\background
[14/05/2009 - 15:05:34 | R | 193496] D:\banner.bmp
[12/08/2002 - 21:00:00 | R | 1792] D:\click.wav
[14/05/2009 - 17:14:57 | R | 1071945728] D:\setup-1.bin
[14/05/2009 - 17:28:14 | R | 1073741824] D:\setup-2.bin
[14/05/2009 - 17:36:02 | R | 1073741824] D:\setup-3.bin
[14/05/2009 - 17:36:15 | R | 30610025] D:\setup-4.bin
[14/05/2009 - 17:36:16 | R | 1796003] D:\setup.exe
[11/03/2005 - 20:45:52 | R | 36864] E:\CdAutoRun.exe
[06/10/2008 - 14:37:46 | RD ] E:\Dx9.0c Redist
[12/05/2005 - 14:19:06 | R | 6022] E:\ReadMeTrackManiaSunriseCZ.txt
[09/08/2004 - 14:04:26 | R | 3262] E:\TmSunrise.ico
[06/10/2008 - 14:58:58 | R | 664740123] E:\TmSunriseSetup-1.bin
[06/10/2008 - 14:56:41 | R | 532578] E:\TmSunriseSetup.exe
[11/03/2005 - 21:33:46 | R | 49] E:\autorun.inf
[30/05/2005 - 10:40:00 | R | 7087245] E:\navodTMS.pdf
[12/11/2012 - 20:23:00 | RASHD ] F:\Autorun.inf
[11/11/2012 - 17:56:00 | N | 61] F:\recycler.bat
[12/11/2012 - 15:03:18 | N | 1306] F:\BOOTEX.LOG
[05/10/2012 - 14:54:22 | D ] F:\EXTREME
[02/10/2012 - 16:25:08 | N | 113032] G:\03_Pikachu.png
[02/10/2012 - 16:23:36 | N | 22385] G:\krtek.jpg
[03/10/2012 - 10:24:34 | N | 597000192] G:\Office-2003 (1).iso
[02/10/2012 - 16:29:32 | N | 31673] G:\obrazek_894.jpg
[16/06/2012 - 11:56:28 | N | 265122] G:\OEM.html
[04/07/2012 - 18:14:10 | N | 1619234934] G:\1svprijimani.wmv
[03/10/2012 - 12:01:22 | N | 123290033] G:\Apache_OpenOffice_incubating_3.4.1_Win_x86_install_cs.exe
[03/10/2012 - 12:48:20 | N | 323792] G:\MS-Office-2003-crack.rar
[03/10/2012 - 11:55:22 | N | 14303520] G:\the-sims-3-crack-patch.rar
[04/10/2012 - 08:06:34 | N | 368075612] G:\Enjoy the Silence Episode 2 - Mixed by Pepi.mp3
[04/10/2012 - 21:02:30 | D ] G:\Prezentace
[12/11/2012 - 20:23:00 | RASHD ] G:\Autorun.inf
[12/11/2012 - 15:03:36 | N | 1382] G:\BOOTEX.LOG
[08/11/2012 - 18:35:30 | D ] G:\Nová složka
[11/11/2012 - 17:56:00 | N | 61] G:\recycler.bat
[09/09/2012 - 17:29:04 | N | 1861487] G:\need-for-speed-underground-2-2004-crack-only.rar
[02/10/2012 - 15:56:00 | N | 9534] G:\sracky_o_hcl.txt
[02/10/2012 - 16:15:10 | N | 5710] G:\kyselina-chlorovodikova.jpg
[02/10/2012 - 16:15:20 | N | 69367] G:\zaludek.jpg
[02/10/2012 - 16:15:26 | N | 4081] G:\GSH05_korozivni_small.gif
[02/10/2012 - 16:25:48 | N | 33198] G:\Pikachu-want-Soda-pikachu-18237632-320-240.jpg
[02/10/2012 - 16:15:32 | N | 6174] G:\9a0907c3cb_24529873_o2.jpg
[02/10/2012 - 16:20:46 | N | 62038] G:\krtek.gif.jpg
[11/11/2011 - 12:45:32 | N | 2211261] H:\minecraft.jar
[24/06/2011 - 09:02:58 | D ] H:\AJ
[27/12/2010 - 15:04:34 | D ] H:\tanks-0.9.2
[24/06/2011 - 12:41:34 | D ] H:\tata
[25/02/2010 - 03:37:40 | D ] H:\__DT
[27/12/2010 - 15:05:00 | D ] H:\TopWare
[17/06/2012 - 19:12:28 | D ] H:\GCS
[15/09/2010 - 10:13:12 | D ] H:\2010-09-01 go_prima_2010
[13/05/2011 - 19:30:38 | N | 74655] H:\xperia mismas.jpg
[06/09/2011 - 13:28:18 | D ] H:\RENDERS
[20/06/2012 - 14:31:36 | D ] H:\FOUND.000
[27/12/2010 - 15:05:10 | D ] H:\McLaren Racing
[27/12/2010 - 15:05:24 | D ] H:\Space Oddity
[27/12/2010 - 15:06:48 | D ] H:\Kristián
[02/11/2010 - 20:15:08 | N | 611328] H:\Materíál.doc
[07/06/2011 - 12:06:44 | D ] H:\Ninja Fruit
[17/01/2011 - 07:21:20 | D ] H:\VYTISKNOUT
[17/06/2012 - 19:10:34 | D ] H:\WinRAR
[17/06/2012 - 19:12:50 | D ] H:\GCS_TML_info
[20/06/2012 - 14:32:46 | N | 1920] H:\BOOTEX.LOG
[22/11/2009 - 20:26:44 | N | 936] H:\leeme.txt
[09/05/2011 - 08:01:32 | D ] H:\prezentace
[15/09/2010 - 18:43:58 | D ] H:\fotak
[24/07/2011 - 13:58:44 | D ] H:\Deepolis - Vyúčtování
[17/09/2010 - 13:30:16 | D ] H:\2009-02-13-1641-36
[17/06/2012 - 19:12:26 | D ] H:\Custom Production Presets 7.0
[11/09/2011 - 20:59:08 | N | 9028] H:\!!!!!PRO ČÉPU!!!!.txt
[19/06/2012 - 13:27:26 | N | 64999424] H:\Dungeon-Siege-II-Broken-World.iso
[20/06/2012 - 07:57:12 | N | 20552] H:\gdx-e2kg.zip
[22/06/2012 - 21:39:42 | D ] H:\bin
[02/05/2011 - 14:07:22 | D ] H:\TISK
[20/02/2011 - 15:50:56 | D ] H:\adobe
[31/01/2011 - 15:25:38 | D ] H:\minecraft
[17/02/2011 - 16:34:08 | D ] H:\videa
[27/08/2011 - 17:50:14 | N | 135034277] H:\Railroad-Tycoon-3-čestina.rar
[27/08/2011 - 17:34:00 | N | 10801110] H:\Remix ála začátečník000.mp3
[25/12/2011 - 15:04:22 | D ] H:\World of many buildings
[12/11/2011 - 12:24:32 | D ] H:\INVedit
[28/08/2011 - 18:26:56 | N | 63073291] H:\virtual_dj_6_with_skins_samples_and_sound_effects.rar
[12/06/2012 - 22:13:32 | N | 11000] H:\GCS.camproj
[12/06/2012 - 22:12:24 | N | 14115] H:\ju.camproj
[13/06/2011 - 16:21:56 | N | 54272] H:\kupni-smlouva-na-osobni-automobil.doc
[24/10/2011 - 16:08:44 | N | 954821944] H:\Zaříkávač koní.avi
[08/06/2012 - 13:45:38 | D ] H:\.Trash-1001
[14/05/2011 - 17:59:16 | D ] H:\New World of moje
[26/03/2011 - 10:54:14 | N | 118969] H:\mapa_obchody.gif
[13/05/2011 - 19:32:00 | N | 142000] H:\minecraft-hack-invedit (2).rar
[17/06/2012 - 19:16:18 | D ] H:\Bandicam
[11/11/2011 - 08:07:40 | N | 47965882] H:\MINECRAFT-Beta-1.8.1.rar
[12/11/2011 - 12:24:48 | D ] H:\Glacier World by RedStoneCHRIS
[13/11/2011 - 11:28:06 | N | 150594801] H:\Minecraft-1.7.3-too-many-items.rar
[17/06/2012 - 19:16:54 | D ] H:\Camtasia Studio 7
[17/06/2012 - 19:34:06 | D ] H:\Fonty_old
[18/06/2012 - 08:57:22 | N | 9160914] H:\Deamon-tools-4.35.5-Lite-cz.rar
[18/06/2012 - 08:59:14 | N | 3031185] H:\cestiny_2198_TorchlightCZ.rar
[18/06/2012 - 11:54:10 | N | 28841000] H:\KMPlayer_EN_3.2.0.0.exe
[18/06/2012 - 11:54:42 | N | 22255541] H:\K-Lite_Codec_Pack_880_Mega.exe
[20/06/2012 - 07:57:34 | N | 4026] H:\rld-e60k.rar
[20/06/2012 - 08:05:24 | N | 319] H:\UseShaderVersion1.3.zip
[19/06/2012 - 11:47:56 | N | 9763427] H:\Earth2160v1.3NoCDFixedexeRegionFixAll.rar
[19/06/2012 - 11:49:58 | N | 8002167] H:\Earth2160_Update13-137_ENG.exe
[19/06/2012 - 11:51:36 | N | 9782013] H:\Earth2160v1.3.7RegionFixEng.rar
[19/06/2012 - 12:24:32 | N | 1850149] H:\MineColony rc19.zip
[20/06/2012 - 08:58:58 | N | 51131] H:\TooManyItems2012_04_13_1.2.5.zip
[02/06/2012 - 22:35:52 | N | 6967325] H:\morphvox-pro-v4-33-crack.rar
[22/06/2012 - 07:57:52 | N | 21272011] H:\WinCH2_setup.exe
[22/06/2012 - 07:57:54 | N | 5743410] H:\Cheaty.exe
[22/06/2012 - 07:58:04 | N | 13050046] H:\Navody.exe
[22/06/2012 - 08:57:20 | N | 51131] H:\TooManyItems2012_04_13_1.2.5 (1).zip
[11/11/2012 - 17:56:00 | N | 61] H:\recycler.bat
[21/06/2012 - 08:02:20 | N | 13191767] H:\Smokey.libzip
[18/02/2010 - 14:46:22 | D ] H:\Farm Frenzy 2 CZ+crack
[29/06/2012 - 08:02:42 | N | 38959] H:\WinDV-1.2.3.zip
[12/06/2012 - 13:41:46 | N | 169946589] H:\Camtasia-Studio-7.0.0-+-Serials-&-Keygen---DivXNL-team.zip
[27/12/2010 - 14:33:46 | D ] H:\GTA La Heist
[27/12/2010 - 14:34:00 | D ] H:\becherragdoll
[27/12/2010 - 14:34:42 | D ] H:\data
[27/12/2010 - 14:34:44 | D ] H:\FlatOut
[27/12/2010 - 14:34:50 | D ] H:\fotky holky
[27/12/2010 - 14:36:48 | D ] H:\deepolis
[27/12/2010 - 14:36:58 | D ] H:\Rocket in Danger
[21/06/2012 - 07:59:46 | N | 7330321] H:\Screenplay.libzip
[27/12/2010 - 14:43:04 | D ] H:\swf
[21/06/2012 - 08:04:22 | N | 68336662] H:\WidescreenAssets.libzip
[27/12/2010 - 14:58:36 | D ] H:\mapy DP
[27/12/2010 - 14:58:46 | D ] H:\Mann-Filter Rallye
[27/12/2010 - 14:59:00 | D ] H:\Hippo Racer
[27/12/2010 - 14:59:08 | D ] H:\Brad and Roxy's Amazing Downhill
[27/12/2010 - 14:59:38 | D ] H:\Meteor Storm
[27/12/2010 - 15:00:08 | D ] H:\Nová složka (2)
[12/11/2012 - 20:23:00 | RASHD ] H:\Autorun.inf
[27/12/2010 - 15:02:36 | D ] H:\qip cz
[21/06/2012 - 08:00:24 | N | 1142393] H:\Dark_Hallway.libzip
[21/06/2012 - 08:04:34 | N | 62465526] H:\Colorscape.libzip
[21/06/2012 - 08:02:24 | N | 15726919] H:\Firefly.libzip
[21/06/2012 - 08:01:52 | N | 8136821] H:\Mystify.libzip
[27/12/2010 - 15:04:44 | D ] H:\AGF
[26/12/2009 - 14:34:22 | N | 765222400] H:\Happy Feet CZ.avi
[26/12/2010 - 13:55:06 | N | 16409960] H:\spybotsd162.exe
[14/11/2011 - 08:57:52 | N | 5536064] I:\MinecraftStructurePlanner.exe
[15/11/2011 - 14:29:12 | N | 20197256] I:\jre-7u1-windows-i586.exe
[29/06/2012 - 14:40:14 | D ] I:\For Elii
[06/11/2012 - 18:21:48 | N | 2056960000] I:\Battlefield 2.iso
[12/11/2012 - 20:23:00 | RASHD ] I:\Autorun.inf
[17/11/2011 - 17:33:28 | N | 40417144] I:\D900IXDGE2.exe
[29/03/2012 - 16:08:24 | N | 694784] I:\MinecraftSP.exe
[25/05/2012 - 13:16:14 | D ] I:\server
[18/11/2011 - 14:08:58 | D ] I:\Charred Dirt
[17/11/2011 - 18:07:06 | N | 6000103] I:\OneNAND Downloader v1.6 For PNX5230(tfs4 v1.6).rar
[21/11/2011 - 11:09:48 | N | 11405371] I:\Chemie.jpg
[13/12/2011 - 08:00:32 | N | 21981] I:\Grass.jpg
[02/01/2012 - 10:48:52 | N | 733913088] I:\Vall-i-CZ-dab.avi
[06/01/2012 - 13:40:18 | N | 3152159] I:\Transformice-parody-song-~-I-could-get-used-to-this.mp3
[04/04/2012 - 09:56:40 | N | 8005848] I:\[HD]-LMFAO---One-Day.mp3
[10/04/2012 - 11:55:30 | N | 11101992] I:\craftbukkit.jar
[08/12/2011 - 10:03:14 | N | 531292] I:\I_Miss_You.sis
[08/12/2011 - 10:04:56 | N | 216000] I:\Ice_Age_3.sis
[08/12/2011 - 10:05:48 | N | 423548] I:\I_Miss_You (1).sis
[10/12/2011 - 12:08:16 | D ] I:\atanua
[21/04/2012 - 10:17:40 | D ] I:\Nová složka
[11/11/2012 - 17:56:00 | N | 61] I:\recycler.bat
[03/03/2012 - 10:22:20 | N | 23040] I:\MC.doc
[12/12/2011 - 07:12:56 | N | 221] I:\darky.txt
[13/12/2011 - 09:53:34 | N | 23892191] I:\terraria.rar
[04/04/2012 - 09:55:54 | N | 10184275] I:\12-jason_derulo_-_breathing.mp3
[16/01/2012 - 18:08:44 | N | 215354] I:\[1.1]ReiMinimap_v3.0_01.zip
[16/01/2012 - 17:00:18 | N | 47993] I:\TooManyItems2012_01_12.zip
[16/01/2012 - 15:37:36 | N | 89249] I:\ModLoader.zip
[07/03/2012 - 11:52:20 | N | 379906] I:\CS_1.6_CZ.exe
[15/12/2011 - 20:33:00 | D ] I:\UB's
[20/03/2012 - 13:33:36 | N | 5818934] I:\JCreator-Pro-4.50.010.rar
[16/01/2009 - 11:03:36 | D ] I:\JCreator Pro 4.50.010
[16/12/2011 - 08:03:54 | N | 119167] I:\Horovice,,Cintlovka-Horovice,,nam.B.Nemcove.pdf
[10/05/2012 - 06:38:12 | N | 4224049] I:\minecraft.jar
[29/06/2012 - 15:50:12 | N | 4245596] I:\For Elii.rar
[07/06/2012 - 09:00:22 | D ] I:\Sony Vegas 11 PRO
[07/06/2012 - 13:09:04 | D ] I:\Minecraft Tekkit Pack
[11/06/2012 - 12:50:12 | N | 881] I:\how to change xp sp.txt
[11/06/2012 - 22:28:54 | D ] I:\TheMagicLight
[16/06/2012 - 10:06:30 | D ] I:\skin3
[16/06/2012 - 10:07:00 | D ] I:\MCSkin3D
[16/06/2012 - 10:07:56 | D ] I:\Games
[16/06/2012 - 10:43:56 | D ] I:\!!!TISK!!!
[16/06/2012 - 15:14:30 | N | 523778] I:\6590v14.exe
[03/10/2010 - 13:50:20 | N | 10088256] I:\DAEMONToolsPro4360309-0160.exe
[12/11/2012 - 15:03:08 | N | 2782] I:\BOOTEX.LOG
[27/06/2012 - 08:05:28 | N | 5616256] I:\Aura-Dione---friends-ft.-Rock-Mafia.mp3
[27/06/2012 - 10:16:24 | N | 306447626] I:\Nero-10.rar
[27/06/2012 - 12:01:16 | N | 6905480] I:\Sonic Ethers Unbelievable Shaders v08 1.2.4 and 1.2.5 (Windows).zip
[22/05/2005 - 23:51:52 | R | 2048] X:\00000001.TMP
[22/05/2005 - 23:51:52 | R | 317440] X:\00000002.TMP
[22/05/2005 - 23:51:52 | R | 1187840] X:\Autorun.exe
[22/05/2005 - 23:51:52 | R | 43] X:\Autorun.inf
[22/05/2005 - 23:51:52 | R | 4150] X:\BF2.ico
[22/05/2005 - 23:46:43 | RD ] X:\BFMC
[22/05/2005 - 23:46:46 | RD ] X:\Redist
[21/05/2005 - 13:45:52 | R | 1279256] X:\Setup.bmp
[22/05/2005 - 23:46:38 | RD ] X:\Support
[22/05/2005 - 23:44:58 | RD ] X:\autorun
[22/05/2005 - 23:45:17 | R | 11681274] X:\data1.cab
[22/05/2005 - 23:45:16 | R | 204923] X:\data1.hdr
[22/05/2005 - 23:47:28 | R | 542668800] X:\data2.cab
[22/05/2005 - 23:44:58 | RD ] X:\directx
[22/10/2004 - 04:16:58 | R | 470174] X:\engine32.cab
[22/05/2005 - 23:51:50 | R | 10111] X:\layout.bin
[22/05/2005 - 23:44:58 | RD ] X:\nvidia_driver
[22/10/2004 - 04:16:58 | R | 118736] X:\setup.exe
[22/05/2005 - 23:45:04 | R | 464834] X:\setup.ibt
[22/05/2005 - 23:44:54 | R | 621] X:\setup.ini
[22/05/2005 - 23:44:24 | R | 249796] X:\setup.inx

################## | Vaccin |

C:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
F:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
G:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
H:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
I:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)

################## | Upload |

Please send the file: C:\UsbFix_Upload_Me_GAMEPC.zip
http://sosvirus.org/viewtopic.php?f=208&t=250
Thank you for your contribution.

################## | E.O.F |

[TheMagicLight]

A nový RSIT

Logfile of random's system information tool 1.09 (written by random/random)
Run by Gamer at 2012-11-13 16:52:27
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 33 GB (29%) free of 114 GB
Total RAM: 1279 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:52:37, on 13.11.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Explorer.exe
C:\Documents and Settings\Gamer\Plocha\RSIT.exe
C:\Program Files\trend micro\Gamer.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Vodafone Connector Service (VodafoneConnectorService) - Vodafone Group - C:\Program Files\Vodafone\Via The Phone\VodafoneConnectorService.exe

--
End of file - 4163 bytes

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Gamer\Data aplikací\Mozilla\Firefox\Profiles\tg1u0wz9.default

prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}:6.0.14, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5"

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}"=C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.4.402.287 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-06-18 57224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-10-30 1019336]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-05-02 13529088]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2012-10-23 5074384]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
""= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Anti-Blaxx Manager]
C:\Program Files\Anti-Blaxx\Anti-Blaxx.exe [2005-05-18 208896]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MBM 5]
C:\Program Files\Motherboard Monitor 5\MBM5.EXE [2004-06-12 594944]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2]
C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2010-02-05 385856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2008-05-02 13529088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
C:\WINDOWS\system32\NvMcTray.dll [2008-05-02 86016]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /install []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-05-04 252136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"RAIDmSvr"=2
"RAIDmAgt"=2
"JavaQuickStarterService"=2

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2008-08-08 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0
"NoDriveAutoRun"=3

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=3
"NoDriveTypeAutoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Reality Pump\Earth 2160\Earth2160_NO_SSE.exe"="C:\Program Files\Reality Pump\Earth 2160\Earth2160_NO_SSE.exe:*:Enabled:Earth 2160"
"C:\Program Files\Reality Pump\Earth 2160\Earth2160_SSE.exe"="C:\Program Files\Reality Pump\Earth 2160\Earth2160_SSE.exe:*:Enabled:Earth 2160"
"C:\Program Files\Java\jre7\bin\java.exe"="C:\Program Files\Java\jre7\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe"="C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe:*:Enabled:Opera Internet Browser - Plugin wrapper"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\FlatOut2\FlatOut2.exe"="C:\Program Files\FlatOut2\FlatOut2.exe:*:Enabled:FlatOut2"
"C:\Program Files\EA GAMES\Need for Speed Underground 2\speed2.exe"="C:\Program Files\EA GAMES\Need for Speed Underground 2\speed2.exe:*:Enabled:speed2"
"C:\WINDOWS\system32\javaw.exe"="C:\WINDOWS\system32\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\TopCD\Zachranari\Emergency 4\Em4.exe"="C:\Program Files\TopCD\Zachranari\Emergency 4\Em4.exe:*:Enabled:Em4"
"C:\Program Files\TrackMania Sunrise\TmSunrise.exe"="C:\Program Files\TrackMania Sunrise\TmSunrise.exe:*:Enabled:TmSunrise"
"C:\Documents and Settings\Gamer\Plocha\My Files\SkypePortable\App\Skype\Phone\Skype.exe"="C:\Documents and Settings\Gamer\Plocha\My Files\SkypePortable\App\Skype\Phone\Skype.exe:*:Enabled:Skype "
"C:\Program Files\EA GAMES\Battlefield 2\BF2.exe"="C:\Program Files\EA GAMES\Battlefield 2\BF2.exe:*:Enabled:Battlefield 2"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=l3codecp.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"vidc.tscc"=tsccvid.dll
"vidc.mjpg"=bdmjpeg.dll
"vidc.mpeg"=bdmpegv.dll
"msacm.bdmpeg"=bdmpega.acm
"vidc.VP60"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.VP61"=C:\WINDOWS\system32\vp6vfw.dll
"MSVideo8"=VfWWDM32.dll

======List of files/folders created in the last 1 month======

2012-11-13 16:51:11 ----RASHD---- C:\Autorun.inf
2012-11-13 16:12:10 ----D---- C:\Avenger
2012-11-13 16:05:38 ----N---- C:\TDSSKiller.2.8.15.0_13.11.2012_16.05.38_log.txt
2012-11-13 15:50:09 ----D---- C:\Program Files\ESET
2012-11-13 15:50:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2012-11-12 21:41:55 ----D---- C:\Program Files\Anti-Blaxx
2012-11-12 20:35:01 ----A---- C:\WINDOWS\system32\drivers\dtsoftbus01.sys
2012-11-12 20:33:10 ----D---- C:\Program Files\DAEMON Tools Lite
2012-11-12 20:20:19 ----SHD---- C:\RECYCLER
2012-11-12 20:10:56 ----N---- C:\ComboFix.txt
2012-11-12 20:06:37 ----D---- C:\WINDOWS\temp
2012-11-12 19:57:27 ----D---- C:\cmdcons
2012-11-12 14:51:43 ----N---- C:\Boot.bak
2012-11-12 14:49:28 ----A---- C:\WINDOWS\zip.exe
2012-11-12 14:49:28 ----A---- C:\WINDOWS\SWXCACLS.exe
2012-11-12 14:49:28 ----A---- C:\WINDOWS\SWSC.exe
2012-11-12 14:49:28 ----A---- C:\WINDOWS\SWREG.exe
2012-11-12 14:49:28 ----A---- C:\WINDOWS\sed.exe
2012-11-12 14:49:28 ----A---- C:\WINDOWS\PEV.exe
2012-11-12 14:49:28 ----A---- C:\WINDOWS\NIRCMD.exe
2012-11-12 14:49:28 ----A---- C:\WINDOWS\MBR.exe
2012-11-12 14:49:28 ----A---- C:\WINDOWS\grep.exe
2012-11-12 14:48:59 ----D---- C:\Qoobox
2012-11-12 14:48:42 ----D---- C:\WINDOWS\erdnt
2012-11-11 21:39:49 ----D---- C:\Program Files\Microsoft.NET
2012-11-11 20:05:45 ----D---- C:\rsit
2012-11-11 20:05:45 ----D---- C:\Program Files\trend micro
2012-11-11 19:38:23 ----HD---- C:\WINDOWS\PIF
2012-11-11 19:28:01 ----D---- C:\Program Files\CCleaner
2012-11-11 18:27:59 ----D---- C:\Program Files\Vodafone
2012-11-11 18:24:06 ----D---- C:\Documents and Settings\Gamer\Data aplikací\Malwarebytes
2012-11-11 18:17:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2012-11-11 18:17:34 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2012-11-11 18:17:34 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2012-11-11 18:01:01 ----A---- C:\UsbFix.txt
2012-11-11 18:01:00 ----D---- C:\UsbFix
2012-11-08 21:00:56 ----D---- C:\WINDOWS\pss
2012-11-08 19:43:32 ----D---- C:\Program Files\Common Files\EasyInfo
2012-11-07 16:27:51 ----D---- C:\Documents and Settings\Gamer\Data aplikací\Skype
2012-11-07 16:27:49 ----D---- C:\Documents and Settings\Gamer\Data aplikací\SkypePM
2012-11-03 19:19:53 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2012-11-03 19:19:49 ----A---- C:\WINDOWS\system32\drivers\avc.sys
2012-11-03 19:19:44 ----A---- C:\WINDOWS\system32\drivers\61883.sys
2012-11-03 11:20:03 ----D---- C:\Documents and Settings\Gamer\Data aplikací\BANDISOFT
2012-11-03 11:14:54 ----D---- C:\Program Files\TrackMania Sunrise
2012-11-03 10:34:04 ----D---- C:\D900IXDGE2
2012-11-01 19:19:04 ----HDC---- C:\WINDOWS\$NtUninstallWudf01007$
2012-10-30 19:56:58 ----D---- C:\Program Files\TopCD
2012-10-30 19:56:17 ----D---- C:\Program Files\Mirage Interactive
2012-10-21 18:00:55 ----D---- C:\Program Files\Cenega Czech
2012-10-21 11:23:13 ----D---- C:\Documents and Settings\Gamer\Data aplikací\gtk-2.0
2012-10-21 10:43:19 ----D---- C:\Documents and Settings\Gamer\Data aplikací\.purple
2012-10-21 10:42:51 ----D---- C:\Program Files\Pidgin

======List of files/folders modified in the last 1 month======

2012-11-13 16:45:05 ----D---- C:\WINDOWS\system32
2012-11-13 16:45:05 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-11-13 16:32:09 ----A---- C:\WINDOWS\ModemLog_SAMSUNG USB Mobile Modem #3.txt
2012-11-13 16:23:59 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-11-13 16:23:47 ----N---- C:\boot.ini
2012-11-13 16:23:47 ----A---- C:\WINDOWS\win.ini
2012-11-13 16:23:47 ----A---- C:\WINDOWS\system.ini
2012-11-13 16:14:33 ----D---- C:\WINDOWS
2012-11-13 16:12:44 ----A---- C:\WINDOWS\MsgAgt.INI
2012-11-13 16:12:10 ----D---- C:\WINDOWS\system32\drivers
2012-11-13 15:53:48 ----SHD---- C:\WINDOWS\Installer
2012-11-13 15:53:01 ----HD---- C:\WINDOWS\inf
2012-11-13 15:52:56 ----D---- C:\WINDOWS\system32\CatRoot2
2012-11-13 15:50:09 ----D---- C:\Program Files
2012-11-12 20:49:31 ----D---- C:\WINDOWS\nview
2012-11-12 20:48:16 ----RSD---- C:\WINDOWS\assembly
2012-11-12 20:48:16 ----D---- C:\WINDOWS\system32\DirectX
2012-11-12 20:42:26 ----D---- C:\Program Files\EA GAMES
2012-11-12 20:42:25 ----HD---- C:\Program Files\InstallShield Installation Information
2012-11-12 20:40:11 ----D---- C:\WINDOWS\Help
2012-11-12 20:40:03 ----D---- C:\WINDOWS\system32\ReinstallBackups
2012-11-12 20:39:01 ----D---- C:\Documents and Settings\Gamer\Data aplikací\DAEMON Tools Lite
2012-11-12 20:36:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2012-11-12 20:30:39 ----D---- C:\Program Files\DAEMON Tools Toolbar
2012-11-12 20:30:05 ----D---- C:\WINDOWS\Prefetch
2012-11-12 20:10:32 ----SD---- C:\WINDOWS\Tasks
2012-11-12 20:08:35 ----D---- C:\WINDOWS\system32\drivers\etc
2012-11-12 20:03:17 ----D---- C:\WINDOWS\AppPatch
2012-11-12 20:03:15 ----D---- C:\Program Files\Common Files
2012-11-12 15:04:49 ----D---- C:\WINDOWS\SoftwareDistribution
2012-11-12 15:03:52 ----SHD---- C:\System Volume Information
2012-11-12 15:03:52 ----D---- C:\WINDOWS\system32\Restore
2012-11-12 15:01:16 ----D---- C:\WINDOWS\system32\config
2012-11-11 22:12:17 ----D---- C:\WINDOWS\Microsoft.NET
2012-11-11 20:00:20 ----D---- C:\Documents and Settings\Gamer\Data aplikací\Media Player Classic
2012-11-11 20:00:19 ----D---- C:\WINDOWS\Minidump
2012-11-11 20:00:19 ----D---- C:\WINDOWS\Logs
2012-11-11 20:00:19 ----D---- C:\WINDOWS\Debug
2012-11-11 19:25:44 ----RSD---- C:\WINDOWS\Fonts
2012-11-08 19:35:49 ----D---- C:\NVIDIA
2012-11-08 18:39:38 ----D---- C:\Program Files\The KMPlayer
2012-11-06 22:49:22 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-11-06 22:48:59 ----D---- C:\WINDOWS\Driver Cache
2012-11-05 16:17:20 ----D---- C:\Documents and Settings\Gamer\Data aplikací\.minecraft
2012-11-01 19:20:44 ----D---- C:\WINDOWS\system32\CatRoot
2012-11-01 19:19:07 ----D---- C:\WINDOWS\system32\Logfiles
2012-10-31 20:54:51 ----D---- C:\WINDOWS\system32\drivers\UMDF
2012-10-21 13:21:58 ----D---- C:\Program Files\PogoSticker

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 sfdrv01a;StarForce Protection Environment Driver (version 1.x.a); C:\WINDOWS\System32\drivers\sfdrv01a.sys [2006-07-05 63352]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2006-06-14 13680]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2006-07-10 27032]
R0 sfvfs02;StarForce Protection VFS Driver (version 2.x); C:\WINDOWS\System32\drivers\sfvfs02.sys [2007-01-12 82296]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2011-03-18 25240]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2012-11-12 466008]
R0 uagp35;Filtr Microsoft AGPv3.5; C:\WINDOWS\system32\DRIVERS\uagp35.sys [2008-04-13 44672]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-01-18 77696]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41600]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2012-11-12 242240]
R1 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2012-10-08 159832]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2012-10-08 121216]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2012-10-08 104736]
R1 mbmiodrvr;mbmiodrvr; \??\C:\WINDOWS\system32\mbmiodrvr.sys []
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 cpuz135;cpuz135; \??\C:\WINDOWS\system32\drivers\cpuz135_x32.sys []
R3 bcm4sbxp;MSI/Broadcom 440x 10/100 Integrated Controller XP Driver; C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys [2004-10-11 45056]
R3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys [2005-12-15 1368000]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-05-02 6554496]
R3 RT61;Hawking HWPG1 Wireless Driver; C:\WINDOWS\system32\DRIVERS\RT61.sys [2005-10-27 356096]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 61883;61883 Unit Device; C:\WINDOWS\system32\DRIVERS\61883.sys [2008-04-14 48128]
S3 a7ynlxxu;a7ynlxxu; C:\WINDOWS\system32\drivers\a7ynlxxu.sys []
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
S3 Avc;AVC Device; C:\WINDOWS\system32\DRIVERS\avc.sys [2008-04-14 38912]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-07-09 16384]
S3 CFcatchme;CFcatchme; \??\C:\DOCUME~1\Gamer\LOCALS~1\Temp\CFcatchme.sys []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2004-07-09 52096]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2002-12-11 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-07-09 83968]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-07-09 10112]
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2010-01-21 18048]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2009-12-30 22016]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-07-09 10880]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINDOWS\system32\DRIVERS\ss_bbus.sys [2009-09-19 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys [2009-09-19 123648]
S3 ss_bserd;SAMSUNG USB Mobile Logging Driver; C:\WINDOWS\system32\DRIVERS\ss_bserd.sys [2009-09-19 100224]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-07-09 14976]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2009-12-30 7936]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2009-12-30 7936]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2008-08-08 38528]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-07-09 18688]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-01-18 83328]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2012-10-23 1329304]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-29 676936]
S2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-29 399432]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-05-02 159812]
S2 SMTPSVC;Simple Mail Transport Protocol (SMTP); C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
S2 SNMP;SNMP; C:\WINDOWS\System32\snmp.exe [2008-04-14 32768]
S2 VodafoneConnectorService;Vodafone Connector Service; C:\Program Files\Vodafone\Via The Phone\VodafoneConnectorService.exe [2010-01-12 233472]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 LPDSVC;Tiskový server TCP/IP; C:\WINDOWS\system32\tcpsvcs.exe [2001-10-25 19456]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-06 114144]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-01-26 652800]
S3 SNMPTRAP;Zachytávání pro službu SNMP; C:\WINDOWS\System32\snmptrap.exe [2008-04-14 8704]
S4 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2012-06-18 161664]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 RAIDmAgt;Promise Array Message Agent; C:\Program Files\Promise Technology, Inc.\Promise Array Management\MsgAgt.exe [2003-06-20 679936]
S4 RAIDmSvr;Promise Array Message Server; C:\Program Files\Promise Technology, Inc.\Promise Array Management\MsgSvr.exe [2003-06-03 323584]

-----------------EOF-----------------

[TheMagicLight]

Flešky už v pohodě, jen NOD32 označil 2 soubory jako win32/Dorkbot.D (jeden byl v karanténě USBFixu a druhý něco jako system volume)

[stell]

Vypni obnovu systemu =system volume, restartni pocitac a obnovu systemu zapni spat,
1:Kliknite na tlačidlo Štart,kliknite pravým tlačidlom na položku Tento počítač a potom kliknite na položku Vlastnosti.
2:V okne Vlastnosti systému kliknite na kartu Obnovenie systému.
3:Vypnúť -Začiarknite políčko.Vypnúť Obnovovanie systému na všetkých jednotkách
4:Kliknite na tlačidlo OK.
5:Reštartovať počítač, a obnovu systému znova zapnúť.
6:Zapnúť -zrušte za čiarknutie políčka Vypnúť službu Obnovovanie systému na všetkých jednotkách.
7:Kliknite na tlačidlo OK.
2:Odinstaluj combofix, stiahni na plochu a spust tento program
http://download.bleepingcomputer.com/sUBs/CF_UNINST.EXE

3:Zmaz AVANGER
ak vsetko ok to je vsetko

[TheMagicLight]

Řekl bych, že vše v pohodě, děkuju za pomoc

[stell]

Nemas zaco,
Temu zatvaram.