Prosím o kontrolu Logu

Zpráva

Eduard Stejskal · #1 Příspěvek od **Eduard Stejskal** » 05 dub 2013 22:19

Počítač zpomalil, vyskakujou okna, na google vyskakují reklamní banery.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Eda at 2013-04-05 23:13:36
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 506 MB (5%) free of 10 GB
Total RAM: 511 MB (28% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:13:41, on 5.4.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\acs.exe
C:\WINDOWS\system32\Atievxx.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wbem\wmiapsrv.exe
D:\Program Files\TP-LINK\TL-WN310G_350G_351Gv5.0_TL-WN360Gv1.0\TWCU.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
D:\Dokumenty\Stažené soubory\HiJackThis.exe
C:\WINDOWS\system32\NOTEPAD.EXE
D:\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Eda.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: XTTBPos00 - {055FD26D-3A88-4e15-963D-DC8493744B1D} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: IEPlugin Class - {11222041-111B-46E3-BD29-EFB2449479B1} - D:\PROGRA~1\ArcSoft\MEDIAC~1\INTERN~1\ARCURL~1.DLL
O2 - BHO: (no name) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - (no file)
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: (no name) - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - (no file)
O2 - BHO: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - (no file)
O2 - BHO: (no name) - {BDF3E430-B101-42AD-A544-FADC6B084872} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: (no name) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - (no file)
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [TWCU] "D:\Program Files\TP-LINK\TL-WN310G_350G_351Gv5.0_TL-WN360Gv1.0\TWCU.exe" -nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Update.exe
O4 - Startup: OpenOffice.org 3.4.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} (Java Plug-in 1.5.0_06) -
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} (Java Plug-in 1.6.0_03) -
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} (Java Plug-in 1.6.0_05) -
O16 - DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} (Java Plug-in 1.6.0_11) -
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} (Java Plug-in 1.6.0_16) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{0CCF3A16-4AFE-48A5-8A86-CEE4DFFE1F32}: NameServer = 77.48.48.48,77.48.49.50
O17 - HKLM\System\CCS\Services\Tcpip\..\{6AAD3732-CA8A-41D0-9480-FD72A95CC181}: NameServer = 77.48.48.48,77.48.49.50
O17 - HKLM\System\CCS\Services\Tcpip\..\{8CABF056-3874-4345-85C7-CA68CAB459FB}: NameServer = 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{964531F2-8B32-41FC-9673-C2EB2798DA64}: NameServer = 192.168.1.1,77.48.49.50
O17 - HKLM\System\CCS\Services\Tcpip\..\{CE03D50B-FB55-4328-B8AB-2F1B624552E8}: NameServer = 77.48.48.48
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: TP-LINK Configuration Service (ACS) - Atheros - C:\WINDOWS\system32\acs.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: SpyHunter 4 Service - Unknown owner - C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE (file missing)

--
End of file - 7413 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Symantec NetDetect.job
C:\WINDOWS\tasks\SLOW-PCfighter-Eda-Startup.job
C:\WINDOWS\tasks\Sing Along Update.job
C:\WINDOWS\tasks\SLOW-PCfighter.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Eda\Data aplikací\Mozilla\Firefox\Profiles\6gn6egpz.default

prefs.js - "browser.startup.homepage" - "http://www.google.cz/"
prefs.js - "extensions.enabledItems" - "{B728AB94-9BC7-49b7-B76A-422BB31B2FD0}:2.0.0.8, {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11, {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13, {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15, bkmrksync@nokia.com:1.0.0.736, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.19"

"{B728AB94-9BC7-49b7-B76A-422BB31B2FD0}"=D:\Program Files\ArcSoft\Media Converter for Philips\Internet Video Downloader\Plugin_FireFox

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.2.202.235 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.17.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\WINDOWS\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.5]
"Description"=VLC Multimedia Plugin
"Path"=D:\Program Files\VideoLAN\VLC\npvlc.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{3112ca9c-de6d-4884-a869-9855de68056c}

C:\Program Files\Mozilla Firefox\components\
browsercomps.dll
binary.manifest

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
nppdf32.dll

C:\Program Files\Mozilla Firefox\searchplugins\
avg_igeared.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\Eda\Data aplikací\Mozilla\Firefox\Profiles\6gn6egpz.default\searchplugins\
askcom.xml
BrowserProtect.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{055FD26D-3A88-4e15-963D-DC8493744B1D}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll [2003-05-12 50376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11222041-111B-46E3-BD29-EFB2449479B1}]
IEPlugin Class - D:\PROGRA~1\ArcSoft\MEDIAC~1\INTERN~1\ARCURL~1.DLL [2008-12-24 145920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - D:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-03-07 461216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9ECB9560-04F9-4bbc-943D-298DDF1699E1}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDF3E430-B101-42AD-A544-FADC6B084872}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-03-07 170912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{A057A204-BACC-4D26-9990-79A187E2698E}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2003-06-24 4800512]
"nwiz"=nwiz.exe /installquiet []
"TWCU"=D:\Program Files\TP-LINK\TL-WN310G_350G_351Gv5.0_TL-WN360Gv1.0\TWCU.exe [2013-03-27 479412]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
""= []
"ArcSoft Connection Service"=C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2010-10-27 207424]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"NVIEW"=nview.dll,nViewLoadHook []

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE

C:\Documents and Settings\Eda\Nabídka Start\Programy\Po spuštění
Update.exe
OpenOffice.org 3.4.1.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\40383715.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\40383715.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=159

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Documents and Settings\Eda\Local Settings\Temp\WZS2.tmp\scol_install\scolsetup.exe"="C:\Documents and Settings\Eda\Local Settings\Temp\WZS2.tmp\scol_install\scolsetup.exe:*:Disabled:scolsetup"
"C:\Program Files\SCOL\scolsetup.exe"="C:\Program Files\SCOL\scolsetup.exe:*:Disabled:scolsetup"
"C:\Program Files\Microsoft Games\Age of Empires II Trial\EMPIRES2.EXE"="C:\Program Files\Microsoft Games\Age of Empires II Trial\EMPIRES2.EXE:*:Enabled:Age of Empires II"
"C:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe"="C:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe:*:Enabled:BF1942"
"C:\Program Files\Call of Duty\CoDMP.exe"="C:\Program Files\Call of Duty\CoDMP.exe:*:Enabled:CoDMP"
"C:\Program Files\Call of Duty\CoDUOMP.exe"="C:\Program Files\Call of Duty\CoDUOMP.exe:*:Enabled:CoDUOMP"
"C:\Program Files\Morpheus\Morpheus.exe"="C:\Program Files\Morpheus\Morpheus.exe:*:Enabled:M5Shell"
"C:\Program Files\VoipBuster.com\VoipBuster\VoipBuster.exe"="C:\Program Files\VoipBuster.com\VoipBuster\VoipBuster.exe:*:Enabled:VoipBuster"
"C:\WINDOWS\System32\PnkBstrA.exe"="C:\WINDOWS\System32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\System32\PnkBstrB.exe"="C:\WINDOWS\System32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\WINDOWS\System32\lxddcoms.exe"="C:\WINDOWS\System32\lxddcoms.exe:*:Enabled:Lexmark Communications System"
"C:\Program Files\Real\RealPlayer\realplay.exe"="C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealPlayer"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"D:\Program Files\Sony Ericsson\Update Service\Update Service.exe"="D:\Program Files\Sony Ericsson\Update Service\Update Service.exe:*:Enabled:Update Service"
"D:\Program Files\VideoLAN\VLC\vlc.exe"="D:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"vidc.VP60"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.VP61"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.tscc"=tsccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.scr - open - C:\WINDOWS\NOTEPAD.EXE "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2013-04-05 23:13:37 ----D---- C:\Program Files\trend micro
2013-04-05 23:13:36 ----D---- C:\rsit
2013-04-05 18:10:56 ----A---- C:\WINDOWS\system32\gdiplus.dll
2013-04-05 18:10:55 ----A---- C:\WINDOWS\system32\unicows.dll
2013-04-03 01:32:56 ----A---- C:\WINDOWS\system32\ptpusb.dll
2013-04-03 01:32:54 ----A---- C:\WINDOWS\system32\ptpusd.dll
2013-03-27 00:25:20 ----D---- C:\WINDOWS\4FC9DA9DF608454E8191D7EFFDCC5726.TMP
2013-03-27 00:23:33 ----ASH---- C:\WINDOWS\sy.exe
2013-03-25 22:50:57 ----D---- C:\WINDOWS\0AC0F1B261C74B6EACEF58FCC0B94835.TMP
2013-03-25 22:50:45 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2013-03-22 21:41:56 ----D---- C:\Program Files\CDA Converter Plus
2013-03-22 21:39:06 ----D---- C:\Program Files\SingAlong
2013-03-20 22:02:34 ----HD---- C:\WINDOWS\$NtUninstallKB2712808$
2013-03-20 21:52:22 ----HD---- C:\WINDOWS\$NtUninstallKB2659262$
2013-03-20 21:52:08 ----HD---- C:\WINDOWS\$NtUninstallKB2564958$
2013-03-20 21:52:01 ----HD---- C:\WINDOWS\$NtUninstallKB2758857$
2013-03-20 21:51:47 ----HD---- C:\WINDOWS\$NtUninstallKB2544893-v2$
2013-03-20 21:51:32 ----HD---- C:\WINDOWS\$NtUninstallKB2778344$
2013-03-20 21:51:22 ----HD---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2013-03-20 21:50:46 ----HD---- C:\WINDOWS\$NtUninstallKB2646524$
2013-03-20 21:50:32 ----HD---- C:\WINDOWS\$NtUninstallKB2585542$
2013-03-20 21:50:20 ----HD---- C:\WINDOWS\$NtUninstallKB2631813$
2013-03-20 21:49:47 ----HD---- C:\WINDOWS\$NtUninstallKB2799494$
2013-03-20 21:49:12 ----HD---- C:\WINDOWS\$NtUninstallKB2691442$
2013-03-20 21:48:55 ----HD---- C:\WINDOWS\$NtUninstallKB2779562$
2013-03-20 21:48:26 ----HD---- C:\WINDOWS\$NtUninstallKB2655992$
2013-03-20 21:48:15 ----HD---- C:\WINDOWS\$NtUninstallKB2802968$
2013-03-20 21:47:53 ----HD---- C:\WINDOWS\$NtUninstallKB2485663$
2013-03-20 21:47:41 ----HD---- C:\WINDOWS\$NtUninstallKB2598479$
2013-03-20 21:47:31 ----HD---- C:\WINDOWS\$NtUninstallKB2736233$
2013-03-20 21:47:22 ----HD---- C:\WINDOWS\$NtUninstallKB2686509$
2013-03-20 21:47:01 ----HD---- C:\WINDOWS\$NtUninstallKB2507938$
2013-03-20 21:46:50 ----HD---- C:\WINDOWS\$NtUninstallKB2780091$
2013-03-20 21:46:33 ----HD---- C:\WINDOWS\$NtUninstallKB2510581$
2013-03-20 21:46:21 ----HD---- C:\WINDOWS\$NtUninstallKB2624667$
2013-03-20 21:46:10 ----HD---- C:\WINDOWS\$NtUninstallKB2719985$
2013-03-20 21:45:53 ----HD---- C:\WINDOWS\$NtUninstallKB2592799$
2013-03-20 21:45:44 ----HD---- C:\WINDOWS\$NtUninstallKB2753842-v2$
2013-03-20 21:45:33 ----HD---- C:\WINDOWS\$NtUninstallKB2770660$
2013-03-20 21:44:12 ----HD---- C:\WINDOWS\$NtUninstallKB2535512$
2013-03-20 21:43:34 ----HD---- C:\WINDOWS\$NtUninstallKB2809289$
2013-03-20 21:43:08 ----HD---- C:\WINDOWS\$NtUninstallKB2807986$
2013-03-20 21:42:58 ----HD---- C:\WINDOWS\$NtUninstallKB2570947$
2013-03-20 21:42:32 ----HD---- C:\WINDOWS\$NtUninstallKB2603381$
2013-03-20 21:42:18 ----HD---- C:\WINDOWS\$NtUninstallKB2757638$
2013-03-20 21:38:43 ----HD---- C:\WINDOWS\$NtUninstallKB2508429$
2013-03-20 21:38:31 ----HD---- C:\WINDOWS\$NtUninstallKB2653956$
2013-03-20 21:38:16 ----HD---- C:\WINDOWS\$NtUninstallKB2749655$
2013-03-20 21:37:56 ----HD---- C:\WINDOWS\$NtUninstallKB971029$
2013-03-20 21:37:40 ----HD---- C:\WINDOWS\$NtUninstallKB2506212$
2013-03-20 21:37:08 ----HD---- C:\WINDOWS\$NtUninstallKB2698365$
2013-03-20 21:36:52 ----HD---- C:\WINDOWS\$NtUninstallKB2619339$
2013-03-20 21:36:33 ----HD---- C:\WINDOWS\$NtUninstallKB2705219-v2$
2013-03-20 21:36:19 ----HD---- C:\WINDOWS\$NtUninstallKB2727528$
2013-03-20 21:36:04 ----HD---- C:\WINDOWS\$NtUninstallKB2723135-v2$
2013-03-20 21:35:50 ----HD---- C:\WINDOWS\$NtUninstallKB2618451$
2013-03-20 21:35:35 ----HD---- C:\WINDOWS\$NtUninstallKB2661254-v2$
2013-03-20 21:35:10 ----HD---- C:\WINDOWS\$NtUninstallKB2509553$
2013-03-20 21:34:39 ----HD---- C:\WINDOWS\$NtUninstallKB2676562$
2013-03-20 21:34:23 ----HD---- C:\WINDOWS\$NtUninstallKB2797052$
2013-03-20 21:34:13 ----HD---- C:\WINDOWS\$NtUninstallKB2620712$
2013-03-20 21:33:59 ----HD---- C:\WINDOWS\$NtUninstallKB2566454$
2013-03-20 21:33:41 ----HD---- C:\WINDOWS\$NtUninstallKB2661637$
2013-03-20 21:33:22 ----HD---- C:\WINDOWS\$NtUninstallKB2584146$
2013-03-20 21:09:00 ----N---- C:\WINDOWS\system32\iacenc.dll
2013-03-14 17:51:43 ----A---- C:\WINDOWS\wTRTv5.ini
2013-03-14 17:35:36 ----D---- C:\Documents and Settings\Eda\Data aplikací\JLC's Software
2013-03-13 19:45:01 ----N---- C:\WINDOWS\system32\spmsg.dll
2013-03-13 19:45:00 ----HD---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2013-03-07 20:06:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\Ask
2013-03-07 20:06:10 ----D---- C:\Program Files\Common Files\Java
2013-03-07 20:05:26 ----A---- C:\WINDOWS\system32\javaws.exe
2013-03-07 20:04:45 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-03-07 20:04:44 ----A---- C:\WINDOWS\system32\javaw.exe
2013-03-07 20:04:43 ----A---- C:\WINDOWS\system32\java.exe

======List of files/folders modified in the last 1 month======

2013-04-05 01:53:46 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-03-27 00:32:44 ----A---- C:\WINDOWS\wincmd.ini
2013-03-27 00:23:34 ----A---- C:\WINDOWS\ldjs.txt
2013-03-07 20:04:10 ----A---- C:\WINDOWS\system32\npdeployJava1.dll
2013-03-07 20:04:10 ----A---- C:\WINDOWS\system32\deployJava1.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\System32\DRIVERS\agp440.sys [2008-04-14 42368]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\System32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 P3;Ovladač procesoru Intel PentiumIII; C:\WINDOWS\System32\DRIVERS\p3.sys [2008-04-14 46592]
R2 irda;Protokol IrDA; C:\WINDOWS\System32\DRIVERS\irda.sys [2008-04-14 88192]
R2 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2005-08-02 32512]
R3 AR5211;TP-LINK Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2007-02-06 544640]
R3 atimtai;atimtai; C:\WINDOWS\system32\DRIVERS\atimtai.sys [2001-10-24 281600]
R3 EL556ND5;3Com 10/100 MiniPCI Ethernet Adapter Driver; C:\WINDOWS\System32\DRIVERS\EL556ND5.sys [2001-08-17 55999]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 maestro;ESS Maestro 3 Audio Driver (WDM); C:\WINDOWS\system32\drivers\es198x.sys [2001-08-17 174464]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\System32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\WINDOWS\system32\DRIVERS\seehcri.sys [2008-01-09 27632]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 WDHAALBA;WDHAALBAMiniPCI Winmodem; C:\WINDOWS\System32\DRIVERS\WDHAALBA.sys [2001-08-17 701386]
R3 WSIMD;wsimd Service; C:\WINDOWS\system32\DRIVERS\wsimd.sys [2006-11-15 55840]
S1 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2008-04-14 31744]
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-14 60800]
S3 C-Dilla;C-Dilla; \??\C:\WINDOWS\system32\drivers\CDANT.SYS []
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys []
S3 EU3_USB;WLAN miniUSB Driver; C:\WINDOWS\system32\DRIVERS\EU3USB.sys [2003-01-08 608896]
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2009-09-05 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2009-09-05 25512]
S3 MSIRCOMM;Microsoft IR Communications Driver; C:\WINDOWS\system32\DRIVERS\MSIRCOMM.sys [2008-04-14 22016]
S3 NIC1394;1394 Net Driver; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-14 61824]
S3 nm;Ovladač programu Sledování sítě; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2010-07-30 18048]
S3 nmwcdc;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2010-07-30 23040]
S3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2004-08-03 1897408]
S3 nv4;nv4; C:\WINDOWS\System32\DRIVERS\nv4.sys [2001-08-17 731648]
S3 Packet;Packet Protocol Driver; \??\C:\WINDOWS\system32\packet.sys []
S3 pwdrvio;pwdrvio; \??\C:\WINDOWS\system32\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\WINDOWS\system32\pwdspio.sys []
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-25 5888]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM); C:\WINDOWS\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS); C:\WINDOWS\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM); C:\WINDOWS\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]
S3 SE2Ebus;Sony Ericsson Device 046 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\SE2Ebus.sys [2006-05-01 61600]
S3 SE2Emdfl;Sony Ericsson Device 046 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\SE2Emdfl.sys [2006-05-01 9360]
S3 SE2Emdm;Sony Ericsson Device 046 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\SE2Emdm.sys [2006-05-01 97184]
S3 SIS162u;SiS 162 usb Wireless LAN Adapter Driver; C:\WINDOWS\system32\DRIVERS\sis162u.sys [2007-03-22 155648]
S3 SMCIRDA;SMC IrCC Miniport Device Driver; C:\WINDOWS\System32\DRIVERS\smcirda.sys [2001-10-24 35913]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2010-07-30 8192]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\DRIVERS\usbser.sys [2008-04-14 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2010-07-30 8192]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
R2 ACS;TP-LINK Configuration Service; C:\WINDOWS\system32\acs.exe [2007-02-12 364629]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Atievxx.exe [2001-10-24 37376]
R2 C-DillaSrv;C-DillaSrv; C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE [2001-09-10 32256]
R2 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-03-07 170912]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2007-04-26 66872]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 SpyHunter 4 Service;SpyHunter 4 Service; C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE []
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2005-08-02 86016]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]

-----------------EOF-----------------

#2 Příspěvek od **vyosek** » 05 dub 2013 22:25

Zdravim

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

Ulozte nejlepe na plochu
Ukoncete vsechny programy
Kliknete na Prohledat
Probehne skenovani a pak se objevi log, pripadne bude ulozen na systemovem disku jako AdwCleaner[R?].txt, ten sem vlozte

Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe

Ukoncete vsechny programy
Pokud pouzivate Win Vista ci W7, kliknete na RogueKiller pravym a dejte Run As Administrator ci Spustit jako spravce
Pockejte na dokonceni PreScanu
Zvolte moznost Prohledat (scan)
Po dokonceni skenu kliknete na Zpráva (Report)- otevre se log, ten sem vlozte
Detailni postup vc. obrazku mate zde http://forum.viry.cz/viewtopic.php?f=24&t=120452

Eduard Stejskal · #3 Příspěvek od **Eduard Stejskal** » 05 dub 2013 22:53

# AdwCleaner v2.200 - Log vytvooen 05/04/2013 v 23:45:53
# Aktualizováno 02/04/2013 Xplode
# Operaení systém : Microsoft Windows XP Service Pack 3 (32 bits)
# Uživatel : Eda - DELL-NOTEBOOK
# Spuštin systém : Normální
# Spuštino z : C:\Documents and Settings\Eda\Plocha\adwcleaner.exe
# Volba [Prohledat]

***** [Služby] *****

***** [Soubory / Složky] *****

Složka Nalezeno : C:\Documents and Settings\All Users\Data aplikací\Ask
Složka Nalezeno : C:\Documents and Settings\Eda\Data aplikací\AD ON Multimedia
Složka Nalezeno : C:\Documents and Settings\Eda\Local Settings\Data aplikací\APN
Složka Nalezeno : C:\Documents and Settings\Eda\Local Settings\Data aplikací\AskToolbar
Soubor Nalezeno : C:\Documents and Settings\Eda\Data aplikací\Mozilla\Firefox\Profiles\6gn6egpz.default\searchplugins\Askcom.xml
Soubor Nalezeno : C:\Documents and Settings\Eda\Data aplikací\Mozilla\Firefox\Profiles\6gn6egpz.default\searchplugins\BrowserProtect.xml
Soubor Nalezeno : C:\Documents and Settings\Eda\Nabídka Start\eBay.lnk
Soubor Nalezeno : C:\Documents and Settings\Eda\Plocha\eBay.lnk

***** [Registry] *****

Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]
Hodnota Nalezeno : HKLM\SOFTWARE\Policies\Google\Chrome\ExtensionInstallForcelist [1]
Klíe Nalezeno : HKCU\Software\APN
Klíe Nalezeno : HKCU\Software\DataMngr
Klíe Nalezeno : HKCU\Software\fedb8fb16fe943
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BE9654C9-9D79-42EC-B55A-3CAEB12DBF58}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{055FD26D-3A88-4E15-963D-DC8493744B1D}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Klíe Nalezeno : HKLM\Software\APN
Klíe Nalezeno : HKLM\Software\AskToolbar
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Prod.cap
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Klíe Nalezeno : HKLM\Software\Conduit
Klíe Nalezeno : HKLM\Software\DataMngr
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Klíe Nalezeno : HKLM\Software\Iminent
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{055FD26D-3A88-4E15-963D-DC8493744B1D}
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B5BAE2ED018083A4C8DA86D6E3F4B024
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Klíe Nalezeno : HKU\S-1-5-21-299502267-152049171-854245398-1003\Software\Microsoft\Internet Explorer\SearchScopes\{BE9654C9-9D79-42EC-B55A-3CAEB12DBF58}

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v6.0.2900.5512

[HKCU\Software\Microsoft\Internet Explorer\Main - ICQ Search] = hxxp://www.icq.com/search/results.php?q={searc ... &ch_id=osd

-\\ Mozilla Firefox v12.0 (cs)

Soubor : C:\Documents and Settings\Eda\Data aplikací\Mozilla\Firefox\Profiles\6gn6egpz.default\prefs.js

Nalezeno : user_pref("avg.install.userHPSettings", "hxxp://www.delta-search.com/?affID=119520&babsrc=HP_ss&mntr[...]
Nalezeno : user_pref("avg.install.userSPSettings", "Delta Search");
Nalezeno : user_pref("browser.newtab.url", "hxxp://www.delta-search.com/?affID=119520&babs ... trId=D85F0[...]
Nalezeno : user_pref("browser.search.defaultengine", "Ask.com");
Nalezeno : user_pref("browser.search.defaultenginename", "Ask.com");
Nalezeno : user_pref("browser.search.order.1", "Delta Search");
Nalezeno : user_pref("extensions.asktb.ff-original-keyword-url", "");

*************************

AdwCleaner[R1].txt - [5746 octets] - [05/04/2013 23:45:53]

########## EOF - C:\AdwCleaner[R1].txt - [5806 octets] ##########

Eduard Stejskal · #4 Příspěvek od **Eduard Stejskal** » 05 dub 2013 22:55

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Eda [Práva správce]
Mód : Kontrola -- Datum : 04/05/2013 23:49:49
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 15 ¤¤¤
[RUN][BLACKLISTDLL] HKCU\[...]\Run : NVIEW (rundll32.exe nview.dll,nViewLoadHook) -> NALEZENO
[RUN][BLACKLISTDLL] HKUS\S-1-5-21-299502267-152049171-854245398-1003[...]\Run : NVIEW (rundll32.exe nview.dll,nViewLoadHook) -> NALEZENO
[DNS] HKLM\[...]\ControlSet001\Services\Tcpip\Interfaces\{0CCF3A16-4AFE-48A5-8A86-CEE4DFFE1F32} : NameServer (77.48.48.48,77.48.49.50) -> NALEZENO
[DNS] HKLM\[...]\ControlSet001\Services\Tcpip\Interfaces\{6AAD3732-CA8A-41D0-9480-FD72A95CC181} : NameServer (77.48.48.48,77.48.49.50) -> NALEZENO
[DNS] HKLM\[...]\ControlSet001\Services\Tcpip\Interfaces\{8CABF056-3874-4345-85C7-CA68CAB459FB} : NameServer (8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1) -> NALEZENO
[DNS] HKLM\[...]\ControlSet001\Services\Tcpip\Interfaces\{964531F2-8B32-41FC-9673-C2EB2798DA64} : NameServer (192.168.1.1,77.48.49.50) -> NALEZENO
[DNS] HKLM\[...]\ControlSet001\Services\Tcpip\Interfaces\{CE03D50B-FB55-4328-B8AB-2F1B624552E8} : NameServer (77.48.48.48) -> NALEZENO
[DNS] HKLM\[...]\ControlSet002\Services\Tcpip\Interfaces\{0CCF3A16-4AFE-48A5-8A86-CEE4DFFE1F32} : NameServer (77.48.48.48,77.48.49.50) -> NALEZENO
[DNS] HKLM\[...]\ControlSet002\Services\Tcpip\Interfaces\{6AAD3732-CA8A-41D0-9480-FD72A95CC181} : NameServer (77.48.48.48,77.48.49.50) -> NALEZENO
[DNS] HKLM\[...]\ControlSet002\Services\Tcpip\Interfaces\{8CABF056-3874-4345-85C7-CA68CAB459FB} : NameServer (8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1) -> NALEZENO
[DNS] HKLM\[...]\ControlSet002\Services\Tcpip\Interfaces\{964531F2-8B32-41FC-9673-C2EB2798DA64} : NameServer (192.168.1.1,77.48.49.50) -> NALEZENO
[DNS] HKLM\[...]\ControlSet002\Services\Tcpip\Interfaces\{CE03D50B-FB55-4328-B8AB-2F1B624552E8} : NameServer (77.48.48.48) -> NALEZENO
[HJ] HKLM\[...]\Security Center : AntiVirusDisableNotify (1) -> NALEZENO
[HJ] HKLM\[...]\Security Center : FirewallDisableNotify (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ Zvláštní soubory / Složky: ¤¤¤
[Faked.Drv][FILE] dmload.sys : C:\WINDOWS\system32\drivers\dmload.sys [-] --> NALEZENO
[Faked.Drv][FILE] atmarpc.sys : C:\WINDOWS\system32\drivers\atmarpc.sys [-] --> NALEZENO
[Faked.Drv][FILE] hdaudbus.sys : C:\WINDOWS\system32\drivers\hdaudbus.sys [-] --> NALEZENO
[Faked.Drv][FILE] ftdisk.sys : C:\WINDOWS\system32\drivers\ftdisk.sys [-] --> NALEZENO
[Faked.Drv][FILE] ptilink.sys : C:\WINDOWS\system32\drivers\ptilink.sys [-] --> NALEZENO
[Faked.Drv][FILE] intelide.sys : C:\WINDOWS\system32\drivers\intelide.sys [-] --> NALEZENO
[Faked.Drv][FILE] modem.sys : C:\WINDOWS\system32\drivers\modem.sys [-] --> NALEZENO
[Faked.Drv][FILE] kbdclass.sys : C:\WINDOWS\system32\drivers\kbdclass.sys [-] --> NALEZENO
[Faked.Drv][FILE] mrxdav.sys : C:\WINDOWS\system32\drivers\mrxdav.sys [-] --> NALEZENO
[Faked.Drv][FILE] nwlnkipx.sys : C:\WINDOWS\system32\drivers\nwlnkipx.sys [-] --> NALEZENO
[Faked.Drv][FILE] netbios.sys : C:\WINDOWS\system32\drivers\netbios.sys [-] --> NALEZENO
[Faked.Drv][FILE] tunmp.sys : C:\WINDOWS\system32\drivers\tunmp.sys [-] --> NALEZENO
[Faked.Drv][FILE] psched.sys : C:\WINDOWS\system32\drivers\psched.sys [-] --> NALEZENO
[Faked.Drv][FILE] drmkaud.sys : C:\WINDOWS\system32\drivers\drmkaud.sys [-] --> NALEZENO
[Faked.Drv][FILE] mssmbios.sys : C:\WINDOWS\system32\drivers\mssmbios.sys [-] --> NALEZENO
[Faked.Drv][FILE] raspppoe.sys : C:\WINDOWS\system32\drivers\raspppoe.sys [-] --> NALEZENO
[Faked.Drv][FILE] ntfs.sys : C:\WINDOWS\system32\drivers\ntfs.sys [-] --> NALEZENO
[Faked.Drv][FILE] volsnap.sys : C:\WINDOWS\system32\drivers\volsnap.sys [-] --> NALEZENO
[Faked.Drv][FILE] portcls.sys : C:\WINDOWS\system32\drivers\portcls.sys [-] --> NALEZENO
[Faked.Drv][FILE] rfcomm.sys : C:\WINDOWS\system32\drivers\rfcomm.sys [-] --> NALEZENO
[Faked.Drv][FILE] ipsec.sys : C:\WINDOWS\system32\drivers\ipsec.sys [-] --> NALEZENO
[Faked.Drv][FILE] ohci1394.sys : C:\WINDOWS\system32\drivers\ohci1394.sys [-] --> NALEZENO
[Faked.Drv][FILE] mqac.sys : C:\WINDOWS\system32\drivers\mqac.sys [-] --> NALEZENO
[Faked.Drv][FILE] dxg.sys : C:\WINDOWS\system32\drivers\dxg.sys [-] --> NALEZENO
[Faked.Drv][FILE] sdbus.sys : C:\WINDOWS\system32\drivers\sdbus.sys [-] --> NALEZENO
[Faked.Drv][FILE] videoprt.sys : C:\WINDOWS\system32\drivers\videoprt.sys [-] --> NALEZENO
[Faked.Drv][FILE] compbatt.sys : C:\WINDOWS\system32\drivers\compbatt.sys [-] --> NALEZENO
[Faked.Drv][FILE] msgpc.sys : C:\WINDOWS\system32\drivers\msgpc.sys [-] --> NALEZENO
[Faked.Drv][FILE] diskdump.sys : C:\WINDOWS\system32\drivers\diskdump.sys [-] --> NALEZENO
[Faked.Drv][FILE] mrxsmb.sys : C:\WINDOWS\system32\drivers\mrxsmb.sys [-] --> NALEZENO
[Faked.Drv][FILE] raspptp.sys : C:\WINDOWS\system32\drivers\raspptp.sys [-] --> NALEZENO
[Faked.Drv][FILE] 1394bus.sys : C:\WINDOWS\system32\drivers\1394bus.sys [-] --> NALEZENO
[Faked.Drv][FILE] afd.sys : C:\WINDOWS\system32\drivers\afd.sys [-] --> NALEZENO
[Faked.Drv][FILE] raspti.sys : C:\WINDOWS\system32\drivers\raspti.sys [-] --> NALEZENO
[Faked.Drv][FILE] cdaudio.sys : C:\WINDOWS\system32\drivers\cdaudio.sys [-] --> NALEZENO
[Faked.Drv][FILE] tape.sys : C:\WINDOWS\system32\drivers\tape.sys [-] --> NALEZENO
[Faked.Drv][FILE] flpydisk.sys : C:\WINDOWS\system32\drivers\flpydisk.sys [-] --> NALEZENO
[Faked.Drv][FILE] serial.sys : C:\WINDOWS\system32\drivers\serial.sys [-] --> NALEZENO
[Faked.Drv][FILE] serenum.sys : C:\WINDOWS\system32\drivers\serenum.sys [-] --> NALEZENO
[Faked.Drv][FILE] fs_rec.sys : C:\WINDOWS\system32\drivers\fs_rec.sys [-] --> NALEZENO
[Faked.Drv][FILE] null.sys : C:\WINDOWS\system32\drivers\null.sys [-] --> NALEZENO
[Faked.Drv][FILE] beep.sys : C:\WINDOWS\system32\drivers\beep.sys [-] --> NALEZENO
[Faked.Drv][FILE] rdpcdd.sys : C:\WINDOWS\system32\drivers\rdpcdd.sys [-] --> NALEZENO
[Faked.Drv][FILE] disk.sys : C:\WINDOWS\system32\drivers\disk.sys [-] --> NALEZENO
[Faked.Drv][FILE] rasacd.sys : C:\WINDOWS\system32\drivers\rasacd.sys [-] --> NALEZENO
[Faked.Drv][FILE] dxgthk.sys : C:\WINDOWS\system32\drivers\dxgthk.sys [-] --> NALEZENO
[Faked.Drv][FILE] wdmaud.sys : C:\WINDOWS\system32\drivers\wdmaud.sys [-] --> NALEZENO
[Faked.Drv][FILE] tcpip.sys : C:\WINDOWS\system32\drivers\tcpip.sys [-] --> NALEZENO
[Faked.Drv][FILE] npfs.sys : C:\WINDOWS\system32\drivers\npfs.sys [-] --> NALEZENO
[Faked.Drv][FILE] mouclass.sys : C:\WINDOWS\system32\drivers\mouclass.sys [-] --> NALEZENO
[Faked.Drv][FILE] fastfat.sys : C:\WINDOWS\system32\drivers\fastfat.sys [-] --> NALEZENO
[Faked.Drv][FILE] tcpip6.sys : C:\WINDOWS\system32\drivers\tcpip6.sys [-] --> NALEZENO
[Faked.Drv][FILE] rdpwd.sys : C:\WINDOWS\system32\drivers\rdpwd.sys [-] --> NALEZENO
[Faked.Drv][FILE] parvdm.sys : C:\WINDOWS\system32\drivers\parvdm.sys [-] --> NALEZENO
[Faked.Drv][FILE] netbt.sys : C:\WINDOWS\system32\drivers\netbt.sys [-] --> NALEZENO
[Faked.Drv][FILE] atmepvc.sys : C:\WINDOWS\system32\drivers\atmepvc.sys [-] --> NALEZENO
[Faked.Drv][FILE] ndistapi.sys : C:\WINDOWS\system32\drivers\ndistapi.sys [-] --> NALEZENO
[Faked.Drv][FILE] EU3USB.sys : C:\WINDOWS\system32\drivers\EU3USB.sys [-] --> NALEZENO
[Faked.Drv][FILE] classpnp.sys : C:\WINDOWS\system32\drivers\classpnp.sys [-] --> NALEZENO
[Faked.Drv][FILE] drmk.sys : C:\WINDOWS\system32\drivers\drmk.sys [-] --> NALEZENO
[Faked.Drv][FILE] ggflt.sys : C:\WINDOWS\system32\drivers\ggflt.sys [-] --> NALEZENO
[Faked.Drv][FILE] amdk7.sys : C:\WINDOWS\system32\drivers\amdk7.sys [-] --> NALEZENO
[Faked.Drv][FILE] asyncmac.sys : C:\WINDOWS\system32\drivers\asyncmac.sys [-] --> NALEZENO
[Faked.Drv][FILE] isapnp.sys : C:\WINDOWS\system32\drivers\isapnp.sys [-] --> NALEZENO
[Faked.Drv][FILE] atmuni.sys : C:\WINDOWS\system32\drivers\atmuni.sys [-] --> NALEZENO
[Faked.Drv][FILE] atmlane.sys : C:\WINDOWS\system32\drivers\atmlane.sys [-] --> NALEZENO
[Faked.Drv][FILE] cbidf2k.sys : C:\WINDOWS\system32\drivers\cbidf2k.sys [-] --> NALEZENO
[Faked.Drv][FILE] battc.sys : C:\WINDOWS\system32\drivers\battc.sys [-] --> NALEZENO
[Faked.Drv][FILE] bthenum.sys : C:\WINDOWS\system32\drivers\bthenum.sys [-] --> NALEZENO
[Faked.Drv][FILE] cpqdap01.sys : C:\WINDOWS\system32\drivers\cpqdap01.sys [-] --> NALEZENO
[Faked.Drv][FILE] dxapi.sys : C:\WINDOWS\system32\drivers\dxapi.sys [-] --> NALEZENO
[Faked.Drv][FILE] processr.sys : C:\WINDOWS\system32\drivers\processr.sys [-] --> NALEZENO
[Faked.Drv][FILE] mcd.sys : C:\WINDOWS\system32\drivers\mcd.sys [-] --> NALEZENO
[Faked.Drv][FILE] pciidex.sys : C:\WINDOWS\system32\drivers\pciidex.sys [-] --> NALEZENO
[Faked.Drv][FILE] ipnat.sys : C:\WINDOWS\system32\drivers\ipnat.sys [-] --> NALEZENO
[Faked.Drv][FILE] nikedrv.sys : C:\WINDOWS\system32\drivers\nikedrv.sys [-] --> NALEZENO
[Faked.Drv][FILE] mountmgr.sys : C:\WINDOWS\system32\drivers\mountmgr.sys [-] --> NALEZENO
[Faked.Drv][FILE] watv10nt.sys : C:\WINDOWS\system32\drivers\watv10nt.sys [-] --> NALEZENO
[Faked.Drv][FILE] wanarp.sys : C:\WINDOWS\system32\drivers\wanarp.sys [-] --> NALEZENO
[Faked.Drv][FILE] nwlnkflt.sys : C:\WINDOWS\system32\drivers\nwlnkflt.sys [-] --> NALEZENO
[Faked.Drv][FILE] nmnt.sys : C:\WINDOWS\system32\drivers\nmnt.sys [-] --> NALEZENO
[Faked.Drv][FILE] partmgr.sys : C:\WINDOWS\system32\drivers\partmgr.sys [-] --> NALEZENO
[Faked.Drv][FILE] nwlnkfwd.sys : C:\WINDOWS\system32\drivers\nwlnkfwd.sys [-] --> NALEZENO
[Faked.Drv][FILE] nwlnkspx.sys : C:\WINDOWS\system32\drivers\nwlnkspx.sys [-] --> NALEZENO
[Faked.Drv][FILE] rawwan.sys : C:\WINDOWS\system32\drivers\rawwan.sys [-] --> NALEZENO
[Faked.Drv][FILE] rio8drv.sys : C:\WINDOWS\system32\drivers\rio8drv.sys [-] --> NALEZENO
[Faked.Drv][FILE] riodrv.sys : C:\WINDOWS\system32\drivers\riodrv.sys [-] --> NALEZENO
[Faked.Drv][FILE] rootmdm.sys : C:\WINDOWS\system32\drivers\rootmdm.sys [-] --> NALEZENO
[Faked.Drv][FILE] imapi.sys : C:\WINDOWS\system32\drivers\imapi.sys [-] --> NALEZENO
[Faked.Drv][FILE] PnkBstrK.sys : C:\WINDOWS\system32\drivers\PnkBstrK.sys [-] --> NALEZENO
[Faked.Drv][FILE] wsimd.sys : C:\WINDOWS\system32\drivers\wsimd.sys [-] --> NALEZENO
[Faked.Drv][FILE] smclib.sys : C:\WINDOWS\system32\drivers\smclib.sys [-] --> NALEZENO
[Faked.Drv][FILE] scsiport.sys : C:\WINDOWS\system32\drivers\scsiport.sys [-] --> NALEZENO
[Faked.Drv][FILE] mskssrv.sys : C:\WINDOWS\system32\drivers\mskssrv.sys [-] --> NALEZENO
[Faked.Drv][FILE] tosdvd.sys : C:\WINDOWS\system32\drivers\tosdvd.sys [-] --> NALEZENO
[Faked.Drv][FILE] vga.sys : C:\WINDOWS\system32\drivers\vga.sys [-] --> NALEZENO
[Faked.Drv][FILE] smbali.sys : C:\WINDOWS\system32\drivers\smbali.sys [-] --> NALEZENO
[Faked.Drv][FILE] sis162u.sys : C:\WINDOWS\system32\drivers\sis162u.sys [-] --> NALEZENO
[Faked.Drv][FILE] tsbvcap.sys : C:\WINDOWS\system32\drivers\tsbvcap.sys [-] --> NALEZENO
[Faked.Drv][FILE] vdmindvd.sys : C:\WINDOWS\system32\drivers\vdmindvd.sys [-] --> NALEZENO
[Faked.Drv][FILE] splitter.sys : C:\WINDOWS\system32\drivers\splitter.sys [-] --> NALEZENO
[Faked.Drv][FILE] sffdisk.sys : C:\WINDOWS\system32\drivers\sffdisk.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbccgp.sys : C:\WINDOWS\system32\drivers\usbccgp.sys [-] --> NALEZENO
[Faked.Drv][FILE] ws2ifsl.sys : C:\WINDOWS\system32\drivers\ws2ifsl.sys [-] --> NALEZENO
[Faked.Drv][FILE] mouhid.sys : C:\WINDOWS\system32\drivers\mouhid.sys [-] --> NALEZENO
[Faked.Drv][FILE] mup.sys : C:\WINDOWS\system32\drivers\mup.sys [-] --> NALEZENO
[Faked.Drv][FILE] fsvga.sys : C:\WINDOWS\system32\drivers\fsvga.sys [-] --> NALEZENO
[Faked.Drv][FILE] atapi.sys : C:\WINDOWS\system32\drivers\atapi.sys [-] --> NALEZENO
[Faked.Drv][FILE] seehcri.sys : C:\WINDOWS\system32\drivers\seehcri.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbport.sys : C:\WINDOWS\system32\drivers\usbport.sys [-] --> NALEZENO
[Faked.Drv][FILE] nwrdr.sys : C:\WINDOWS\system32\drivers\nwrdr.sys [-] --> NALEZENO
[Faked.Drv][FILE] acpi.sys : C:\WINDOWS\system32\drivers\acpi.sys [-] --> NALEZENO
[Faked.Drv][FILE] amdk6.sys : C:\WINDOWS\system32\drivers\amdk6.sys [-] --> NALEZENO
[Faked.Drv][FILE] oprghdlr.sys : C:\WINDOWS\system32\drivers\oprghdlr.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbd.sys : C:\WINDOWS\system32\drivers\usbd.sys [-] --> NALEZENO
[Faked.Drv][FILE] cdrom.sys : C:\WINDOWS\system32\drivers\cdrom.sys [-] --> NALEZENO
[Faked.Drv][FILE] fips.sys : C:\WINDOWS\system32\drivers\fips.sys [-] --> NALEZENO
[Faked.Drv][FILE] sfloppy.sys : C:\WINDOWS\system32\drivers\sfloppy.sys [-] --> NALEZENO
[Faked.Drv][FILE] hidparse.sys : C:\WINDOWS\system32\drivers\hidparse.sys [-] --> NALEZENO
[Faked.Drv][FILE] acpiec.sys : C:\WINDOWS\system32\drivers\acpiec.sys [-] --> NALEZENO
[Faked.Drv][FILE] wceusbsh.sys : C:\WINDOWS\system32\drivers\wceusbsh.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbuhci.sys : C:\WINDOWS\system32\drivers\usbuhci.sys [-] --> NALEZENO
[Faked.Drv][FILE] i8042prt.sys : C:\WINDOWS\system32\drivers\i8042prt.sys [-] --> NALEZENO
[Faked.Drv][FILE] AGP440.SYS : C:\WINDOWS\system32\drivers\AGP440.SYS [-] --> NALEZENO
[Faked.Drv][FILE] sr.sys : C:\WINDOWS\system32\drivers\sr.sys [-] --> NALEZENO
[Faked.Drv][FILE] wmilib.sys : C:\WINDOWS\system32\drivers\wmilib.sys [-] --> NALEZENO
[Faked.Drv][FILE] tdtcp.sys : C:\WINDOWS\system32\drivers\tdtcp.sys [-] --> NALEZENO
[Faked.Drv][FILE] ndis.sys : C:\WINDOWS\system32\drivers\ndis.sys [-] --> NALEZENO
[Faked.Drv][FILE] bridge.sys : C:\WINDOWS\system32\drivers\bridge.sys [-] --> NALEZENO
[Faked.Drv][FILE] ksecdd.sys : C:\WINDOWS\system32\drivers\ksecdd.sys [-] --> NALEZENO
[Faked.Drv][FILE] CDANT.SYS : C:\WINDOWS\system32\drivers\CDANT.SYS [-] --> NALEZENO
[Faked.Drv][FILE] termdd.sys : C:\WINDOWS\system32\drivers\termdd.sys [-] --> NALEZENO
[Faked.Drv][FILE] crusoe.sys : C:\WINDOWS\system32\drivers\crusoe.sys [-] --> NALEZENO
[Faked.Drv][FILE] rdbss.sys : C:\WINDOWS\system32\drivers\rdbss.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbhub.sys : C:\WINDOWS\system32\drivers\usbhub.sys [-] --> NALEZENO
[Faked.Drv][FILE] tdi.sys : C:\WINDOWS\system32\drivers\tdi.sys [-] --> NALEZENO
[Faked.Drv][FILE] mspqm.sys : C:\WINDOWS\system32\drivers\mspqm.sys [-] --> NALEZENO
[Faked.Drv][FILE] mspclock.sys : C:\WINDOWS\system32\drivers\mspclock.sys [-] --> NALEZENO
[Faked.Drv][FILE] ndproxy.sys : C:\WINDOWS\system32\drivers\ndproxy.sys [-] --> NALEZENO
[Faked.Drv][FILE] swenum.sys : C:\WINDOWS\system32\drivers\swenum.sys [-] --> NALEZENO
[Faked.Drv][FILE] fdc.sys : C:\WINDOWS\system32\drivers\fdc.sys [-] --> NALEZENO
[Faked.Drv][FILE] es198x.sys : C:\WINDOWS\system32\drivers\es198x.sys [-] --> NALEZENO
[Faked.Drv][FILE] bthport.sys : C:\WINDOWS\system32\drivers\bthport.sys [-] --> NALEZENO
[Faked.Drv][FILE] WudfPf.sys : C:\WINDOWS\system32\drivers\WudfPf.sys [-] --> NALEZENO
[Faked.Drv][FILE] npf.sys : C:\WINDOWS\system32\drivers\npf.sys [-] --> NALEZENO
[Faked.Drv][FILE] ks.sys : C:\WINDOWS\system32\drivers\ks.sys [-] --> NALEZENO
[Faked.Drv][FILE] smcirda.sys : C:\WINDOWS\system32\drivers\smcirda.sys [-] --> NALEZENO
[Faked.Drv][FILE] DMusic.sys : C:\WINDOWS\system32\drivers\DMusic.sys [-] --> NALEZENO
[Faked.Drv][FILE] pci.sys : C:\WINDOWS\system32\drivers\pci.sys [-] --> NALEZENO
[Faked.Drv][FILE] watv06nt.sys : C:\WINDOWS\system32\drivers\watv06nt.sys [-] --> NALEZENO
[Faked.Drv][FILE] wadv11nt.sys : C:\WINDOWS\system32\drivers\wadv11nt.sys [-] --> NALEZENO
[Faked.Drv][FILE] mnmdd.sys : C:\WINDOWS\system32\drivers\mnmdd.sys [-] --> NALEZENO
[Faked.Drv][FILE] wadv09nt.sys : C:\WINDOWS\system32\drivers\wadv09nt.sys [-] --> NALEZENO
[Faked.Drv][FILE] wadv08nt.sys : C:\WINDOWS\system32\drivers\wadv08nt.sys [-] --> NALEZENO
[Faked.Drv][FILE] enum1394.sys : C:\WINDOWS\system32\drivers\enum1394.sys [-] --> NALEZENO
[Faked.Drv][FILE] wadv07nt.sys : C:\WINDOWS\system32\drivers\wadv07nt.sys [-] --> NALEZENO
[Faked.Drv][FILE] pccsmcfd.sys : C:\WINDOWS\system32\drivers\pccsmcfd.sys [-] --> NALEZENO
[Faked.Drv][FILE] WDHAALBA.sys : C:\WINDOWS\system32\drivers\WDHAALBA.sys [-] --> NALEZENO
[Faked.Drv][FILE] RMCast.sys : C:\WINDOWS\system32\drivers\RMCast.sys [-] --> NALEZENO
[Faked.Drv][FILE] EL556ND5.sys : C:\WINDOWS\system32\drivers\EL556ND5.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbohci.sys : C:\WINDOWS\system32\drivers\usbohci.sys [-] --> NALEZENO
[Faked.Drv][FILE] nv4.sys : C:\WINDOWS\system32\drivers\nv4.sys [-] --> NALEZENO
[Faked.Drv][FILE] ccdcmb.sys : C:\WINDOWS\system32\drivers\ccdcmb.sys [-] --> NALEZENO
[Faked.Drv][FILE] wdfldr.sys : C:\WINDOWS\system32\drivers\wdfldr.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbintel.sys : C:\WINDOWS\system32\drivers\usbintel.sys [-] --> NALEZENO
[Faked.Drv][FILE] slwdmsup.sys : C:\WINDOWS\system32\drivers\slwdmsup.sys [-] --> NALEZENO
[Faked.Drv][FILE] audstub.sys : C:\WINDOWS\system32\drivers\audstub.sys [-] --> NALEZENO
[Faked.Drv][FILE] slnthal.sys : C:\WINDOWS\system32\drivers\slnthal.sys [-] --> NALEZENO
[Faked.Drv][FILE] slntamr.sys : C:\WINDOWS\system32\drivers\slntamr.sys [-] --> NALEZENO
[Faked.Drv][FILE] slnt7554.sys : C:\WINDOWS\system32\drivers\slnt7554.sys [-] --> NALEZENO
[Faked.Drv][FILE] ccdcmbo.sys : C:\WINDOWS\system32\drivers\ccdcmbo.sys [-] --> NALEZENO
[Faked.Drv][FILE] sffp_mmc.sys : C:\WINDOWS\system32\drivers\sffp_mmc.sys [-] --> NALEZENO
[Faked.Drv][FILE] sffp_sd.sys : C:\WINDOWS\system32\drivers\sffp_sd.sys [-] --> NALEZENO
[Faked.Drv][FILE] secdrv.sys : C:\WINDOWS\system32\drivers\secdrv.sys [-] --> NALEZENO
[Faked.Drv][FILE] s3gnbm.sys : C:\WINDOWS\system32\drivers\s3gnbm.sys [-] --> NALEZENO
[Faked.Drv][FILE] hxxp.sys : C:\WINDOWS\system32\drivers\hxxp.sys [-] --> NALEZENO
[Faked.Drv][FILE] rndismp.sys : C:\WINDOWS\system32\drivers\rndismp.sys [-] --> NALEZENO
[Faked.Drv][FILE] recagent.sys : C:\WINDOWS\system32\drivers\recagent.sys [-] --> NALEZENO
[Faked.Drv][FILE] nv4_mini.sys : C:\WINDOWS\system32\drivers\nv4_mini.sys [-] --> NALEZENO
[Faked.Drv][FILE] ntmtlfax.sys : C:\WINDOWS\system32\drivers\ntmtlfax.sys [-] --> NALEZENO
[Faked.Drv][FILE] usb8023x.sys : C:\WINDOWS\system32\drivers\usb8023x.sys [-] --> NALEZENO
[Faked.Drv][FILE] mtxparhm.sys : C:\WINDOWS\system32\drivers\mtxparhm.sys [-] --> NALEZENO
[Faked.Drv][FILE] mtlstrm.sys : C:\WINDOWS\system32\drivers\mtlstrm.sys [-] --> NALEZENO
[Faked.Drv][FILE] mtlmnt5.sys : C:\WINDOWS\system32\drivers\mtlmnt5.sys [-] --> NALEZENO
[Faked.Drv][FILE] nic1394.sys : C:\WINDOWS\system32\drivers\nic1394.sys [-] --> NALEZENO
[Faked.Drv][FILE] mdmxsdk.sys : C:\WINDOWS\system32\drivers\mdmxsdk.sys [-] --> NALEZENO
[Faked.Drv][FILE] ipinip.sys : C:\WINDOWS\system32\drivers\ipinip.sys [-] --> NALEZENO
[Faked.Drv][FILE] ip6fw.sys : C:\WINDOWS\system32\drivers\ip6fw.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016bus.sys : C:\WINDOWS\system32\drivers\s0016bus.sys [-] --> NALEZENO
[Faked.Drv][FILE] hsfdpsp2.sys : C:\WINDOWS\system32\drivers\hsfdpsp2.sys [-] --> NALEZENO
[Faked.Drv][FILE] kmixer.sys : C:\WINDOWS\system32\drivers\kmixer.sys [-] --> NALEZENO
[Faked.Drv][FILE] hsfcxts2.sys : C:\WINDOWS\system32\drivers\hsfcxts2.sys [-] --> NALEZENO
[Faked.Drv][FILE] hsfbs2s2.sys : C:\WINDOWS\system32\drivers\hsfbs2s2.sys [-] --> NALEZENO
[Faked.Drv][FILE] wpdusb.sys : C:\WINDOWS\system32\drivers\wpdusb.sys [-] --> NALEZENO
[Faked.Drv][FILE] hidusb.sys : C:\WINDOWS\system32\drivers\hidusb.sys [-] --> NALEZENO
[Faked.Drv][FILE] srv.sys : C:\WINDOWS\system32\drivers\srv.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016wh.sys : C:\WINDOWS\system32\drivers\s0016wh.sys [-] --> NALEZENO
[Faked.Drv][FILE] usb8023.sys : C:\WINDOWS\system32\drivers\usb8023.sys [-] --> NALEZENO
[Faked.Drv][FILE] bthusb.sys : C:\WINDOWS\system32\drivers\bthusb.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016mdm.sys : C:\WINDOWS\system32\drivers\s0016mdm.sys [-] --> NALEZENO
[Faked.Drv][FILE] cdfs.sys : C:\WINDOWS\system32\drivers\cdfs.sys [-] --> NALEZENO
[Faked.Drv][FILE] bthmodem.sys : C:\WINDOWS\system32\drivers\bthmodem.sys [-] --> NALEZENO
[Faked.Drv][FILE] atinxsxx.sys : C:\WINDOWS\system32\drivers\atinxsxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] atinxbxx.sys : C:\WINDOWS\system32\drivers\atinxbxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] atintuxx.sys : C:\WINDOWS\system32\drivers\atintuxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] atinttxx.sys : C:\WINDOWS\system32\drivers\atinttxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] atinsnxx.sys : C:\WINDOWS\system32\drivers\atinsnxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] atinrvxx.sys : C:\WINDOWS\system32\drivers\atinrvxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] atinraxx.sys : C:\WINDOWS\system32\drivers\atinraxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016cm.sys : C:\WINDOWS\system32\drivers\s0016cm.sys [-] --> NALEZENO
[Faked.Drv][FILE] atinpdxx.sys : C:\WINDOWS\system32\drivers\atinpdxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] atinmdxx.sys : C:\WINDOWS\system32\drivers\atinmdxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] atinbtxx.sys : C:\WINDOWS\system32\drivers\atinbtxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016cr.sys : C:\WINDOWS\system32\drivers\s0016cr.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati2mtag.sys : C:\WINDOWS\system32\drivers\ati2mtag.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016nd5.sys : C:\WINDOWS\system32\drivers\s0016nd5.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati2mtaa.sys : C:\WINDOWS\system32\drivers\ati2mtaa.sys [-] --> NALEZENO
[Faked.Drv][FILE] ndisuio.sys : C:\WINDOWS\system32\drivers\ndisuio.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1xsxx.sys : C:\WINDOWS\system32\drivers\ati1xsxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] hidclass.sys : C:\WINDOWS\system32\drivers\hidclass.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1xbxx.sys : C:\WINDOWS\system32\drivers\ati1xbxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1tuxx.sys : C:\WINDOWS\system32\drivers\ati1tuxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1ttxx.sys : C:\WINDOWS\system32\drivers\ati1ttxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1snxx.sys : C:\WINDOWS\system32\drivers\ati1snxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] irenum.sys : C:\WINDOWS\system32\drivers\irenum.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1rvxx.sys : C:\WINDOWS\system32\drivers\ati1rvxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1raxx.sys : C:\WINDOWS\system32\drivers\ati1raxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] ar5211.sys : C:\WINDOWS\system32\drivers\ar5211.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1pdxx.sys : C:\WINDOWS\system32\drivers\ati1pdxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1mdxx.sys : C:\WINDOWS\system32\drivers\ati1mdxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1btxx.sys : C:\WINDOWS\system32\drivers\ati1btxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] ggsemc.sys : C:\WINDOWS\system32\drivers\ggsemc.sys [-] --> NALEZENO
[Faked.Drv][FILE] arp1394.sys : C:\WINDOWS\system32\drivers\arp1394.sys [-] --> NALEZENO
[Faked.Drv][FILE] TrueSight.sys : C:\WINDOWS\system32\drivers\TrueSight.sys [-] --> NALEZENO
[Faked.Drv][FILE] msfs.sys : C:\WINDOWS\system32\drivers\msfs.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbstor.sys : C:\WINDOWS\system32\drivers\usbstor.sys [-] --> NALEZENO
[Faked.Drv][FILE] sysaudio.sys : C:\WINDOWS\system32\drivers\sysaudio.sys [-] --> NALEZENO
[Faked.Drv][FILE] atimtai.sys : C:\WINDOWS\system32\drivers\atimtai.sys [-] --> NALEZENO
[Faked.Drv][FILE] swmidi.sys : C:\WINDOWS\system32\drivers\swmidi.sys [-] --> NALEZENO
[Faked.Drv][FILE] hidbth.sys : C:\WINDOWS\system32\drivers\hidbth.sys [-] --> NALEZENO
[Faked.Drv][FILE] intelppm.sys : C:\WINDOWS\system32\drivers\intelppm.sys [-] --> NALEZENO
[Faked.Drv][FILE] mf.sys : C:\WINDOWS\system32\drivers\mf.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbehci.sys : C:\WINDOWS\system32\drivers\usbehci.sys [-] --> NALEZENO
[Faked.Drv][FILE] WudfRd.sys : C:\WINDOWS\system32\drivers\WudfRd.sys [-] --> NALEZENO
[Faked.Drv][FILE] rasirda.sys : C:\WINDOWS\system32\drivers\rasirda.sys [-] --> NALEZENO
[Faked.Drv][FILE] rdpdr.sys : C:\WINDOWS\system32\drivers\rdpdr.sys [-] --> NALEZENO
[Faked.Drv][FILE] redbook.sys : C:\WINDOWS\system32\drivers\redbook.sys [-] --> NALEZENO
[Faked.Drv][FILE] SE2Ebus.sys : C:\WINDOWS\system32\drivers\SE2Ebus.sys [-] --> NALEZENO
[Faked.Drv][FILE] SE2Ewh.sys : C:\WINDOWS\system32\drivers\SE2Ewh.sys [-] --> NALEZENO
[Faked.Drv][FILE] SE2Ewhnt.sys : C:\WINDOWS\system32\drivers\SE2Ewhnt.sys [-] --> NALEZENO
[Faked.Drv][FILE] irda.sys : C:\WINDOWS\system32\drivers\irda.sys [-] --> NALEZENO
[Faked.Drv][FILE] tdpipe.sys : C:\WINDOWS\system32\drivers\tdpipe.sys [-] --> NALEZENO
[Faked.Drv][FILE] SE2Emdm.sys : C:\WINDOWS\system32\drivers\SE2Emdm.sys [-] --> NALEZENO
[Faked.Drv][FILE] SE2Ecm.sys : C:\WINDOWS\system32\drivers\SE2Ecm.sys [-] --> NALEZENO
[Faked.Drv][FILE] SE2Ecmnt.sys : C:\WINDOWS\system32\drivers\SE2Ecmnt.sys [-] --> NALEZENO
[Faked.Drv][FILE] SE2Emdfl.sys : C:\WINDOWS\system32\drivers\SE2Emdfl.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016whnt.sys : C:\WINDOWS\system32\drivers\s0016whnt.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016cmnt.sys : C:\WINDOWS\system32\drivers\s0016cmnt.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016mdfl.sys : C:\WINDOWS\system32\drivers\s0016mdfl.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016obex.sys : C:\WINDOWS\system32\drivers\s0016obex.sys [-] --> NALEZENO
[Faked.Drv][FILE] fltMgr.sys : C:\WINDOWS\system32\drivers\fltMgr.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016mgmt.sys : C:\WINDOWS\system32\drivers\s0016mgmt.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016unic.sys : C:\WINDOWS\system32\drivers\s0016unic.sys [-] --> NALEZENO
[Faked.Drv][FILE] agpcpq.sys : C:\WINDOWS\system32\drivers\agpcpq.sys [-] --> NALEZENO
[Faked.Drv][FILE] alim1541.sys : C:\WINDOWS\system32\drivers\alim1541.sys [-] --> NALEZENO
[Faked.Drv][FILE] amdagp.sys : C:\WINDOWS\system32\drivers\amdagp.sys [-] --> NALEZENO
[Faked.Drv][FILE] gagp30kx.sys : C:\WINDOWS\system32\drivers\gagp30kx.sys [-] --> NALEZENO
[Faked.Drv][FILE] hidir.sys : C:\WINDOWS\system32\drivers\hidir.sys [-] --> NALEZENO
[Faked.Drv][FILE] irbus.sys : C:\WINDOWS\system32\drivers\irbus.sys [-] --> NALEZENO
[Faked.Drv][FILE] msircomm.sys : C:\WINDOWS\system32\drivers\msircomm.sys [-] --> NALEZENO
[Faked.Drv][FILE] mutohpen.sys : C:\WINDOWS\system32\drivers\mutohpen.sys [-] --> NALEZENO
[Faked.Drv][FILE] rndismpx.sys : C:\WINDOWS\system32\drivers\rndismpx.sys [-] --> NALEZENO
[Faked.Drv][FILE] sisagp.sys : C:\WINDOWS\system32\drivers\sisagp.sys [-] --> NALEZENO
[Faked.Drv][FILE] uagp35.sys : C:\WINDOWS\system32\drivers\uagp35.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbprint.sys : C:\WINDOWS\system32\drivers\usbprint.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbscan.sys : C:\WINDOWS\system32\drivers\usbscan.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbvideo.sys : C:\WINDOWS\system32\drivers\usbvideo.sys [-] --> NALEZENO
[Faked.Drv][FILE] viaagp.sys : C:\WINDOWS\system32\drivers\viaagp.sys [-] --> NALEZENO
[Faked.Drv][FILE] wacompen.sys : C:\WINDOWS\system32\drivers\wacompen.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbser_lowerfltj.sys : C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbser_lowerflt.sys : C:\WINDOWS\system32\drivers\usbser_lowerflt.sys [-] --> NALEZENO

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: +++++
--- User ---
[MBR] 85c7f424fca4bf59cab1aba4c0414100
[BSP] f43ba991b74c008cc9300103e559ad12 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 63 | Size: 9546 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 19551105 | Size: 9530 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[1]_S_04052013_02d2349.txt >>
RKreport[1]_S_04052013_02d2349.txt

#5 Příspěvek od **vyosek** » 06 dub 2013 06:35

Spustte znovu RogueKiller

Pokud pouzivate Win Vista ci W7, kliknete na RogueKiller pravym a dejte Run As Administrator ci Spustit jako spravce
Zvolte moznost Prohledat a pote Smazat a nasledne Zprava - otevre se log, ten sem vlozte
Pak kliknete na Oprava Host a Zprava - otevre se log, ten sem vlozte

Eduard Stejskal · #6 Příspěvek od **Eduard Stejskal** » 06 dub 2013 20:09

Rídil jsem se postupem, ale log se vytvořil automaticky a log po "oprava host" se nevytvořil vůbec ani po tlačítku zpráva. Dále v záložce soubory se zobrazily nápisy nelze opravit.

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Eda [Práva správce]
Mód : Kontrola -- Datum : 04/06/2013 20:56:58
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 10 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Services\Tcpip\Interfaces\{0CCF3A16-4AFE-48A5-8A86-CEE4DFFE1F32} : NameServer (77.48.48.48,77.48.49.50) -> NALEZENO
[DNS] HKLM\[...]\ControlSet001\Services\Tcpip\Interfaces\{6AAD3732-CA8A-41D0-9480-FD72A95CC181} : NameServer (77.48.48.48,77.48.49.50) -> NALEZENO
[DNS] HKLM\[...]\ControlSet001\Services\Tcpip\Interfaces\{8CABF056-3874-4345-85C7-CA68CAB459FB} : NameServer (8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1) -> NALEZENO
[DNS] HKLM\[...]\ControlSet001\Services\Tcpip\Interfaces\{964531F2-8B32-41FC-9673-C2EB2798DA64} : NameServer (192.168.1.1,77.48.49.50) -> NALEZENO
[DNS] HKLM\[...]\ControlSet001\Services\Tcpip\Interfaces\{CE03D50B-FB55-4328-B8AB-2F1B624552E8} : NameServer (77.48.48.48) -> NALEZENO
[DNS] HKLM\[...]\ControlSet002\Services\Tcpip\Interfaces\{0CCF3A16-4AFE-48A5-8A86-CEE4DFFE1F32} : NameServer (77.48.48.48,77.48.49.50) -> NALEZENO
[DNS] HKLM\[...]\ControlSet002\Services\Tcpip\Interfaces\{6AAD3732-CA8A-41D0-9480-FD72A95CC181} : NameServer (77.48.48.48,77.48.49.50) -> NALEZENO
[DNS] HKLM\[...]\ControlSet002\Services\Tcpip\Interfaces\{8CABF056-3874-4345-85C7-CA68CAB459FB} : NameServer (8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1) -> NALEZENO
[DNS] HKLM\[...]\ControlSet002\Services\Tcpip\Interfaces\{964531F2-8B32-41FC-9673-C2EB2798DA64} : NameServer (192.168.1.1,77.48.49.50) -> NALEZENO
[DNS] HKLM\[...]\ControlSet002\Services\Tcpip\Interfaces\{CE03D50B-FB55-4328-B8AB-2F1B624552E8} : NameServer (77.48.48.48) -> NALEZENO

¤¤¤ Zvláštní soubory / Složky: ¤¤¤
[Faked.Drv][FILE] dmload.sys : C:\WINDOWS\system32\drivers\dmload.sys [-] --> NALEZENO
[Faked.Drv][FILE] atmarpc.sys : C:\WINDOWS\system32\drivers\atmarpc.sys [-] --> NALEZENO
[Faked.Drv][FILE] hdaudbus.sys : C:\WINDOWS\system32\drivers\hdaudbus.sys [-] --> NALEZENO
[Faked.Drv][FILE] ftdisk.sys : C:\WINDOWS\system32\drivers\ftdisk.sys [-] --> NALEZENO
[Faked.Drv][FILE] ptilink.sys : C:\WINDOWS\system32\drivers\ptilink.sys [-] --> NALEZENO
[Faked.Drv][FILE] intelide.sys : C:\WINDOWS\system32\drivers\intelide.sys [-] --> NALEZENO
[Faked.Drv][FILE] modem.sys : C:\WINDOWS\system32\drivers\modem.sys [-] --> NALEZENO
[Faked.Drv][FILE] kbdclass.sys : C:\WINDOWS\system32\drivers\kbdclass.sys [-] --> NALEZENO
[Faked.Drv][FILE] mrxdav.sys : C:\WINDOWS\system32\drivers\mrxdav.sys [-] --> NALEZENO
[Faked.Drv][FILE] nwlnkipx.sys : C:\WINDOWS\system32\drivers\nwlnkipx.sys [-] --> NALEZENO
[Faked.Drv][FILE] netbios.sys : C:\WINDOWS\system32\drivers\netbios.sys [-] --> NALEZENO
[Faked.Drv][FILE] tunmp.sys : C:\WINDOWS\system32\drivers\tunmp.sys [-] --> NALEZENO
[Faked.Drv][FILE] psched.sys : C:\WINDOWS\system32\drivers\psched.sys [-] --> NALEZENO
[Faked.Drv][FILE] drmkaud.sys : C:\WINDOWS\system32\drivers\drmkaud.sys [-] --> NALEZENO
[Faked.Drv][FILE] mssmbios.sys : C:\WINDOWS\system32\drivers\mssmbios.sys [-] --> NALEZENO
[Faked.Drv][FILE] raspppoe.sys : C:\WINDOWS\system32\drivers\raspppoe.sys [-] --> NALEZENO
[Faked.Drv][FILE] ntfs.sys : C:\WINDOWS\system32\drivers\ntfs.sys [-] --> NALEZENO
[Faked.Drv][FILE] volsnap.sys : C:\WINDOWS\system32\drivers\volsnap.sys [-] --> NALEZENO
[Faked.Drv][FILE] portcls.sys : C:\WINDOWS\system32\drivers\portcls.sys [-] --> NALEZENO
[Faked.Drv][FILE] rfcomm.sys : C:\WINDOWS\system32\drivers\rfcomm.sys [-] --> NALEZENO
[Faked.Drv][FILE] ipsec.sys : C:\WINDOWS\system32\drivers\ipsec.sys [-] --> NALEZENO
[Faked.Drv][FILE] ohci1394.sys : C:\WINDOWS\system32\drivers\ohci1394.sys [-] --> NALEZENO
[Faked.Drv][FILE] mqac.sys : C:\WINDOWS\system32\drivers\mqac.sys [-] --> NALEZENO
[Faked.Drv][FILE] dxg.sys : C:\WINDOWS\system32\drivers\dxg.sys [-] --> NALEZENO
[Faked.Drv][FILE] sdbus.sys : C:\WINDOWS\system32\drivers\sdbus.sys [-] --> NALEZENO
[Faked.Drv][FILE] videoprt.sys : C:\WINDOWS\system32\drivers\videoprt.sys [-] --> NALEZENO
[Faked.Drv][FILE] compbatt.sys : C:\WINDOWS\system32\drivers\compbatt.sys [-] --> NALEZENO
[Faked.Drv][FILE] msgpc.sys : C:\WINDOWS\system32\drivers\msgpc.sys [-] --> NALEZENO
[Faked.Drv][FILE] diskdump.sys : C:\WINDOWS\system32\drivers\diskdump.sys [-] --> NALEZENO
[Faked.Drv][FILE] mrxsmb.sys : C:\WINDOWS\system32\drivers\mrxsmb.sys [-] --> NALEZENO
[Faked.Drv][FILE] raspptp.sys : C:\WINDOWS\system32\drivers\raspptp.sys [-] --> NALEZENO
[Faked.Drv][FILE] 1394bus.sys : C:\WINDOWS\system32\drivers\1394bus.sys [-] --> NALEZENO
[Faked.Drv][FILE] afd.sys : C:\WINDOWS\system32\drivers\afd.sys [-] --> NALEZENO
[Faked.Drv][FILE] raspti.sys : C:\WINDOWS\system32\drivers\raspti.sys [-] --> NALEZENO
[Faked.Drv][FILE] cdaudio.sys : C:\WINDOWS\system32\drivers\cdaudio.sys [-] --> NALEZENO
[Faked.Drv][FILE] tape.sys : C:\WINDOWS\system32\drivers\tape.sys [-] --> NALEZENO
[Faked.Drv][FILE] flpydisk.sys : C:\WINDOWS\system32\drivers\flpydisk.sys [-] --> NALEZENO
[Faked.Drv][FILE] serial.sys : C:\WINDOWS\system32\drivers\serial.sys [-] --> NALEZENO
[Faked.Drv][FILE] serenum.sys : C:\WINDOWS\system32\drivers\serenum.sys [-] --> NALEZENO
[Faked.Drv][FILE] fs_rec.sys : C:\WINDOWS\system32\drivers\fs_rec.sys [-] --> NALEZENO
[Faked.Drv][FILE] null.sys : C:\WINDOWS\system32\drivers\null.sys [-] --> NALEZENO
[Faked.Drv][FILE] beep.sys : C:\WINDOWS\system32\drivers\beep.sys [-] --> NALEZENO
[Faked.Drv][FILE] rdpcdd.sys : C:\WINDOWS\system32\drivers\rdpcdd.sys [-] --> NALEZENO
[Faked.Drv][FILE] disk.sys : C:\WINDOWS\system32\drivers\disk.sys [-] --> NALEZENO
[Faked.Drv][FILE] rasacd.sys : C:\WINDOWS\system32\drivers\rasacd.sys [-] --> NALEZENO
[Faked.Drv][FILE] dxgthk.sys : C:\WINDOWS\system32\drivers\dxgthk.sys [-] --> NALEZENO
[Faked.Drv][FILE] wdmaud.sys : C:\WINDOWS\system32\drivers\wdmaud.sys [-] --> NALEZENO
[Faked.Drv][FILE] tcpip.sys : C:\WINDOWS\system32\drivers\tcpip.sys [-] --> NALEZENO
[Faked.Drv][FILE] npfs.sys : C:\WINDOWS\system32\drivers\npfs.sys [-] --> NALEZENO
[Faked.Drv][FILE] mouclass.sys : C:\WINDOWS\system32\drivers\mouclass.sys [-] --> NALEZENO
[Faked.Drv][FILE] fastfat.sys : C:\WINDOWS\system32\drivers\fastfat.sys [-] --> NALEZENO
[Faked.Drv][FILE] tcpip6.sys : C:\WINDOWS\system32\drivers\tcpip6.sys [-] --> NALEZENO
[Faked.Drv][FILE] rdpwd.sys : C:\WINDOWS\system32\drivers\rdpwd.sys [-] --> NALEZENO
[Faked.Drv][FILE] parvdm.sys : C:\WINDOWS\system32\drivers\parvdm.sys [-] --> NALEZENO
[Faked.Drv][FILE] netbt.sys : C:\WINDOWS\system32\drivers\netbt.sys [-] --> NALEZENO
[Faked.Drv][FILE] atmepvc.sys : C:\WINDOWS\system32\drivers\atmepvc.sys [-] --> NALEZENO
[Faked.Drv][FILE] ndistapi.sys : C:\WINDOWS\system32\drivers\ndistapi.sys [-] --> NALEZENO
[Faked.Drv][FILE] EU3USB.sys : C:\WINDOWS\system32\drivers\EU3USB.sys [-] --> NALEZENO
[Faked.Drv][FILE] classpnp.sys : C:\WINDOWS\system32\drivers\classpnp.sys [-] --> NALEZENO
[Faked.Drv][FILE] drmk.sys : C:\WINDOWS\system32\drivers\drmk.sys [-] --> NALEZENO
[Faked.Drv][FILE] ggflt.sys : C:\WINDOWS\system32\drivers\ggflt.sys [-] --> NALEZENO
[Faked.Drv][FILE] amdk7.sys : C:\WINDOWS\system32\drivers\amdk7.sys [-] --> NALEZENO
[Faked.Drv][FILE] asyncmac.sys : C:\WINDOWS\system32\drivers\asyncmac.sys [-] --> NALEZENO
[Faked.Drv][FILE] isapnp.sys : C:\WINDOWS\system32\drivers\isapnp.sys [-] --> NALEZENO
[Faked.Drv][FILE] atmuni.sys : C:\WINDOWS\system32\drivers\atmuni.sys [-] --> NALEZENO
[Faked.Drv][FILE] atmlane.sys : C:\WINDOWS\system32\drivers\atmlane.sys [-] --> NALEZENO
[Faked.Drv][FILE] cbidf2k.sys : C:\WINDOWS\system32\drivers\cbidf2k.sys [-] --> NALEZENO
[Faked.Drv][FILE] battc.sys : C:\WINDOWS\system32\drivers\battc.sys [-] --> NALEZENO
[Faked.Drv][FILE] bthenum.sys : C:\WINDOWS\system32\drivers\bthenum.sys [-] --> NALEZENO
[Faked.Drv][FILE] cpqdap01.sys : C:\WINDOWS\system32\drivers\cpqdap01.sys [-] --> NALEZENO
[Faked.Drv][FILE] dxapi.sys : C:\WINDOWS\system32\drivers\dxapi.sys [-] --> NALEZENO
[Faked.Drv][FILE] processr.sys : C:\WINDOWS\system32\drivers\processr.sys [-] --> NALEZENO
[Faked.Drv][FILE] mcd.sys : C:\WINDOWS\system32\drivers\mcd.sys [-] --> NALEZENO
[Faked.Drv][FILE] pciidex.sys : C:\WINDOWS\system32\drivers\pciidex.sys [-] --> NALEZENO
[Faked.Drv][FILE] ipnat.sys : C:\WINDOWS\system32\drivers\ipnat.sys [-] --> NALEZENO
[Faked.Drv][FILE] nikedrv.sys : C:\WINDOWS\system32\drivers\nikedrv.sys [-] --> NALEZENO
[Faked.Drv][FILE] mountmgr.sys : C:\WINDOWS\system32\drivers\mountmgr.sys [-] --> NALEZENO
[Faked.Drv][FILE] watv10nt.sys : C:\WINDOWS\system32\drivers\watv10nt.sys [-] --> NALEZENO
[Faked.Drv][FILE] wanarp.sys : C:\WINDOWS\system32\drivers\wanarp.sys [-] --> NALEZENO
[Faked.Drv][FILE] nwlnkflt.sys : C:\WINDOWS\system32\drivers\nwlnkflt.sys [-] --> NALEZENO
[Faked.Drv][FILE] nmnt.sys : C:\WINDOWS\system32\drivers\nmnt.sys [-] --> NALEZENO
[Faked.Drv][FILE] partmgr.sys : C:\WINDOWS\system32\drivers\partmgr.sys [-] --> NALEZENO
[Faked.Drv][FILE] nwlnkfwd.sys : C:\WINDOWS\system32\drivers\nwlnkfwd.sys [-] --> NALEZENO
[Faked.Drv][FILE] nwlnkspx.sys : C:\WINDOWS\system32\drivers\nwlnkspx.sys [-] --> NALEZENO
[Faked.Drv][FILE] rawwan.sys : C:\WINDOWS\system32\drivers\rawwan.sys [-] --> NALEZENO
[Faked.Drv][FILE] rio8drv.sys : C:\WINDOWS\system32\drivers\rio8drv.sys [-] --> NALEZENO
[Faked.Drv][FILE] riodrv.sys : C:\WINDOWS\system32\drivers\riodrv.sys [-] --> NALEZENO
[Faked.Drv][FILE] rootmdm.sys : C:\WINDOWS\system32\drivers\rootmdm.sys [-] --> NALEZENO
[Faked.Drv][FILE] imapi.sys : C:\WINDOWS\system32\drivers\imapi.sys [-] --> NALEZENO
[Faked.Drv][FILE] PnkBstrK.sys : C:\WINDOWS\system32\drivers\PnkBstrK.sys [-] --> NALEZENO
[Faked.Drv][FILE] wsimd.sys : C:\WINDOWS\system32\drivers\wsimd.sys [-] --> NALEZENO
[Faked.Drv][FILE] smclib.sys : C:\WINDOWS\system32\drivers\smclib.sys [-] --> NALEZENO
[Faked.Drv][FILE] scsiport.sys : C:\WINDOWS\system32\drivers\scsiport.sys [-] --> NALEZENO
[Faked.Drv][FILE] mskssrv.sys : C:\WINDOWS\system32\drivers\mskssrv.sys [-] --> NALEZENO
[Faked.Drv][FILE] tosdvd.sys : C:\WINDOWS\system32\drivers\tosdvd.sys [-] --> NALEZENO
[Faked.Drv][FILE] vga.sys : C:\WINDOWS\system32\drivers\vga.sys [-] --> NALEZENO
[Faked.Drv][FILE] smbali.sys : C:\WINDOWS\system32\drivers\smbali.sys [-] --> NALEZENO
[Faked.Drv][FILE] sis162u.sys : C:\WINDOWS\system32\drivers\sis162u.sys [-] --> NALEZENO
[Faked.Drv][FILE] tsbvcap.sys : C:\WINDOWS\system32\drivers\tsbvcap.sys [-] --> NALEZENO
[Faked.Drv][FILE] vdmindvd.sys : C:\WINDOWS\system32\drivers\vdmindvd.sys [-] --> NALEZENO
[Faked.Drv][FILE] splitter.sys : C:\WINDOWS\system32\drivers\splitter.sys [-] --> NALEZENO
[Faked.Drv][FILE] sffdisk.sys : C:\WINDOWS\system32\drivers\sffdisk.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbccgp.sys : C:\WINDOWS\system32\drivers\usbccgp.sys [-] --> NALEZENO
[Faked.Drv][FILE] ws2ifsl.sys : C:\WINDOWS\system32\drivers\ws2ifsl.sys [-] --> NALEZENO
[Faked.Drv][FILE] mouhid.sys : C:\WINDOWS\system32\drivers\mouhid.sys [-] --> NALEZENO
[Faked.Drv][FILE] mup.sys : C:\WINDOWS\system32\drivers\mup.sys [-] --> NALEZENO
[Faked.Drv][FILE] fsvga.sys : C:\WINDOWS\system32\drivers\fsvga.sys [-] --> NALEZENO
[Faked.Drv][FILE] atapi.sys : C:\WINDOWS\system32\drivers\atapi.sys [-] --> NALEZENO
[Faked.Drv][FILE] seehcri.sys : C:\WINDOWS\system32\drivers\seehcri.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbport.sys : C:\WINDOWS\system32\drivers\usbport.sys [-] --> NALEZENO
[Faked.Drv][FILE] nwrdr.sys : C:\WINDOWS\system32\drivers\nwrdr.sys [-] --> NALEZENO
[Faked.Drv][FILE] acpi.sys : C:\WINDOWS\system32\drivers\acpi.sys [-] --> NALEZENO
[Faked.Drv][FILE] amdk6.sys : C:\WINDOWS\system32\drivers\amdk6.sys [-] --> NALEZENO
[Faked.Drv][FILE] oprghdlr.sys : C:\WINDOWS\system32\drivers\oprghdlr.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbd.sys : C:\WINDOWS\system32\drivers\usbd.sys [-] --> NALEZENO
[Faked.Drv][FILE] cdrom.sys : C:\WINDOWS\system32\drivers\cdrom.sys [-] --> NALEZENO
[Faked.Drv][FILE] fips.sys : C:\WINDOWS\system32\drivers\fips.sys [-] --> NALEZENO
[Faked.Drv][FILE] sfloppy.sys : C:\WINDOWS\system32\drivers\sfloppy.sys [-] --> NALEZENO
[Faked.Drv][FILE] hidparse.sys : C:\WINDOWS\system32\drivers\hidparse.sys [-] --> NALEZENO
[Faked.Drv][FILE] acpiec.sys : C:\WINDOWS\system32\drivers\acpiec.sys [-] --> NALEZENO
[Faked.Drv][FILE] wceusbsh.sys : C:\WINDOWS\system32\drivers\wceusbsh.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbuhci.sys : C:\WINDOWS\system32\drivers\usbuhci.sys [-] --> NALEZENO
[Faked.Drv][FILE] i8042prt.sys : C:\WINDOWS\system32\drivers\i8042prt.sys [-] --> NALEZENO
[Faked.Drv][FILE] AGP440.SYS : C:\WINDOWS\system32\drivers\AGP440.SYS [-] --> NALEZENO
[Faked.Drv][FILE] sr.sys : C:\WINDOWS\system32\drivers\sr.sys [-] --> NALEZENO
[Faked.Drv][FILE] wmilib.sys : C:\WINDOWS\system32\drivers\wmilib.sys [-] --> NALEZENO
[Faked.Drv][FILE] tdtcp.sys : C:\WINDOWS\system32\drivers\tdtcp.sys [-] --> NALEZENO
[Faked.Drv][FILE] ndis.sys : C:\WINDOWS\system32\drivers\ndis.sys [-] --> NALEZENO
[Faked.Drv][FILE] bridge.sys : C:\WINDOWS\system32\drivers\bridge.sys [-] --> NALEZENO
[Faked.Drv][FILE] ksecdd.sys : C:\WINDOWS\system32\drivers\ksecdd.sys [-] --> NALEZENO
[Faked.Drv][FILE] CDANT.SYS : C:\WINDOWS\system32\drivers\CDANT.SYS [-] --> NALEZENO
[Faked.Drv][FILE] termdd.sys : C:\WINDOWS\system32\drivers\termdd.sys [-] --> NALEZENO
[Faked.Drv][FILE] crusoe.sys : C:\WINDOWS\system32\drivers\crusoe.sys [-] --> NALEZENO
[Faked.Drv][FILE] rdbss.sys : C:\WINDOWS\system32\drivers\rdbss.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbhub.sys : C:\WINDOWS\system32\drivers\usbhub.sys [-] --> NALEZENO
[Faked.Drv][FILE] tdi.sys : C:\WINDOWS\system32\drivers\tdi.sys [-] --> NALEZENO
[Faked.Drv][FILE] mspqm.sys : C:\WINDOWS\system32\drivers\mspqm.sys [-] --> NALEZENO
[Faked.Drv][FILE] mspclock.sys : C:\WINDOWS\system32\drivers\mspclock.sys [-] --> NALEZENO
[Faked.Drv][FILE] ndproxy.sys : C:\WINDOWS\system32\drivers\ndproxy.sys [-] --> NALEZENO
[Faked.Drv][FILE] swenum.sys : C:\WINDOWS\system32\drivers\swenum.sys [-] --> NALEZENO
[Faked.Drv][FILE] fdc.sys : C:\WINDOWS\system32\drivers\fdc.sys [-] --> NALEZENO
[Faked.Drv][FILE] es198x.sys : C:\WINDOWS\system32\drivers\es198x.sys [-] --> NALEZENO
[Faked.Drv][FILE] bthport.sys : C:\WINDOWS\system32\drivers\bthport.sys [-] --> NALEZENO
[Faked.Drv][FILE] WudfPf.sys : C:\WINDOWS\system32\drivers\WudfPf.sys [-] --> NALEZENO
[Faked.Drv][FILE] npf.sys : C:\WINDOWS\system32\drivers\npf.sys [-] --> NALEZENO
[Faked.Drv][FILE] ks.sys : C:\WINDOWS\system32\drivers\ks.sys [-] --> NALEZENO
[Faked.Drv][FILE] smcirda.sys : C:\WINDOWS\system32\drivers\smcirda.sys [-] --> NALEZENO
[Faked.Drv][FILE] DMusic.sys : C:\WINDOWS\system32\drivers\DMusic.sys [-] --> NALEZENO
[Faked.Drv][FILE] pci.sys : C:\WINDOWS\system32\drivers\pci.sys [-] --> NALEZENO
[Faked.Drv][FILE] watv06nt.sys : C:\WINDOWS\system32\drivers\watv06nt.sys [-] --> NALEZENO
[Faked.Drv][FILE] wadv11nt.sys : C:\WINDOWS\system32\drivers\wadv11nt.sys [-] --> NALEZENO
[Faked.Drv][FILE] mnmdd.sys : C:\WINDOWS\system32\drivers\mnmdd.sys [-] --> NALEZENO
[Faked.Drv][FILE] wadv09nt.sys : C:\WINDOWS\system32\drivers\wadv09nt.sys [-] --> NALEZENO
[Faked.Drv][FILE] wadv08nt.sys : C:\WINDOWS\system32\drivers\wadv08nt.sys [-] --> NALEZENO
[Faked.Drv][FILE] enum1394.sys : C:\WINDOWS\system32\drivers\enum1394.sys [-] --> NALEZENO
[Faked.Drv][FILE] wadv07nt.sys : C:\WINDOWS\system32\drivers\wadv07nt.sys [-] --> NALEZENO
[Faked.Drv][FILE] pccsmcfd.sys : C:\WINDOWS\system32\drivers\pccsmcfd.sys [-] --> NALEZENO
[Faked.Drv][FILE] WDHAALBA.sys : C:\WINDOWS\system32\drivers\WDHAALBA.sys [-] --> NALEZENO
[Faked.Drv][FILE] RMCast.sys : C:\WINDOWS\system32\drivers\RMCast.sys [-] --> NALEZENO
[Faked.Drv][FILE] EL556ND5.sys : C:\WINDOWS\system32\drivers\EL556ND5.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbohci.sys : C:\WINDOWS\system32\drivers\usbohci.sys [-] --> NALEZENO
[Faked.Drv][FILE] nv4.sys : C:\WINDOWS\system32\drivers\nv4.sys [-] --> NALEZENO
[Faked.Drv][FILE] ccdcmb.sys : C:\WINDOWS\system32\drivers\ccdcmb.sys [-] --> NALEZENO
[Faked.Drv][FILE] wdfldr.sys : C:\WINDOWS\system32\drivers\wdfldr.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbintel.sys : C:\WINDOWS\system32\drivers\usbintel.sys [-] --> NALEZENO
[Faked.Drv][FILE] slwdmsup.sys : C:\WINDOWS\system32\drivers\slwdmsup.sys [-] --> NALEZENO
[Faked.Drv][FILE] audstub.sys : C:\WINDOWS\system32\drivers\audstub.sys [-] --> NALEZENO
[Faked.Drv][FILE] slnthal.sys : C:\WINDOWS\system32\drivers\slnthal.sys [-] --> NALEZENO
[Faked.Drv][FILE] slntamr.sys : C:\WINDOWS\system32\drivers\slntamr.sys [-] --> NALEZENO
[Faked.Drv][FILE] slnt7554.sys : C:\WINDOWS\system32\drivers\slnt7554.sys [-] --> NALEZENO
[Faked.Drv][FILE] ccdcmbo.sys : C:\WINDOWS\system32\drivers\ccdcmbo.sys [-] --> NALEZENO
[Faked.Drv][FILE] sffp_mmc.sys : C:\WINDOWS\system32\drivers\sffp_mmc.sys [-] --> NALEZENO
[Faked.Drv][FILE] sffp_sd.sys : C:\WINDOWS\system32\drivers\sffp_sd.sys [-] --> NALEZENO
[Faked.Drv][FILE] secdrv.sys : C:\WINDOWS\system32\drivers\secdrv.sys [-] --> NALEZENO
[Faked.Drv][FILE] s3gnbm.sys : C:\WINDOWS\system32\drivers\s3gnbm.sys [-] --> NALEZENO
[Faked.Drv][FILE] hxxp.sys : C:\WINDOWS\system32\drivers\hxxp.sys [-] --> NALEZENO
[Faked.Drv][FILE] rndismp.sys : C:\WINDOWS\system32\drivers\rndismp.sys [-] --> NALEZENO
[Faked.Drv][FILE] recagent.sys : C:\WINDOWS\system32\drivers\recagent.sys [-] --> NALEZENO
[Faked.Drv][FILE] nv4_mini.sys : C:\WINDOWS\system32\drivers\nv4_mini.sys [-] --> NALEZENO
[Faked.Drv][FILE] ntmtlfax.sys : C:\WINDOWS\system32\drivers\ntmtlfax.sys [-] --> NALEZENO
[Faked.Drv][FILE] usb8023x.sys : C:\WINDOWS\system32\drivers\usb8023x.sys [-] --> NALEZENO
[Faked.Drv][FILE] mtxparhm.sys : C:\WINDOWS\system32\drivers\mtxparhm.sys [-] --> NALEZENO
[Faked.Drv][FILE] mtlstrm.sys : C:\WINDOWS\system32\drivers\mtlstrm.sys [-] --> NALEZENO
[Faked.Drv][FILE] mtlmnt5.sys : C:\WINDOWS\system32\drivers\mtlmnt5.sys [-] --> NALEZENO
[Faked.Drv][FILE] nic1394.sys : C:\WINDOWS\system32\drivers\nic1394.sys [-] --> NALEZENO
[Faked.Drv][FILE] mdmxsdk.sys : C:\WINDOWS\system32\drivers\mdmxsdk.sys [-] --> NALEZENO
[Faked.Drv][FILE] ipinip.sys : C:\WINDOWS\system32\drivers\ipinip.sys [-] --> NALEZENO
[Faked.Drv][FILE] ip6fw.sys : C:\WINDOWS\system32\drivers\ip6fw.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016bus.sys : C:\WINDOWS\system32\drivers\s0016bus.sys [-] --> NALEZENO
[Faked.Drv][FILE] hsfdpsp2.sys : C:\WINDOWS\system32\drivers\hsfdpsp2.sys [-] --> NALEZENO
[Faked.Drv][FILE] kmixer.sys : C:\WINDOWS\system32\drivers\kmixer.sys [-] --> NALEZENO
[Faked.Drv][FILE] hsfcxts2.sys : C:\WINDOWS\system32\drivers\hsfcxts2.sys [-] --> NALEZENO
[Faked.Drv][FILE] hsfbs2s2.sys : C:\WINDOWS\system32\drivers\hsfbs2s2.sys [-] --> NALEZENO
[Faked.Drv][FILE] wpdusb.sys : C:\WINDOWS\system32\drivers\wpdusb.sys [-] --> NALEZENO
[Faked.Drv][FILE] hidusb.sys : C:\WINDOWS\system32\drivers\hidusb.sys [-] --> NALEZENO
[Faked.Drv][FILE] srv.sys : C:\WINDOWS\system32\drivers\srv.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016wh.sys : C:\WINDOWS\system32\drivers\s0016wh.sys [-] --> NALEZENO
[Faked.Drv][FILE] usb8023.sys : C:\WINDOWS\system32\drivers\usb8023.sys [-] --> NALEZENO
[Faked.Drv][FILE] bthusb.sys : C:\WINDOWS\system32\drivers\bthusb.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016mdm.sys : C:\WINDOWS\system32\drivers\s0016mdm.sys [-] --> NALEZENO
[Faked.Drv][FILE] cdfs.sys : C:\WINDOWS\system32\drivers\cdfs.sys [-] --> NALEZENO
[Faked.Drv][FILE] bthmodem.sys : C:\WINDOWS\system32\drivers\bthmodem.sys [-] --> NALEZENO
[Faked.Drv][FILE] atinxsxx.sys : C:\WINDOWS\system32\drivers\atinxsxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] atinxbxx.sys : C:\WINDOWS\system32\drivers\atinxbxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] atintuxx.sys : C:\WINDOWS\system32\drivers\atintuxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] atinttxx.sys : C:\WINDOWS\system32\drivers\atinttxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] atinsnxx.sys : C:\WINDOWS\system32\drivers\atinsnxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] atinrvxx.sys : C:\WINDOWS\system32\drivers\atinrvxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] atinraxx.sys : C:\WINDOWS\system32\drivers\atinraxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016cm.sys : C:\WINDOWS\system32\drivers\s0016cm.sys [-] --> NALEZENO
[Faked.Drv][FILE] atinpdxx.sys : C:\WINDOWS\system32\drivers\atinpdxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] atinmdxx.sys : C:\WINDOWS\system32\drivers\atinmdxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] atinbtxx.sys : C:\WINDOWS\system32\drivers\atinbtxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016cr.sys : C:\WINDOWS\system32\drivers\s0016cr.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati2mtag.sys : C:\WINDOWS\system32\drivers\ati2mtag.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016nd5.sys : C:\WINDOWS\system32\drivers\s0016nd5.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati2mtaa.sys : C:\WINDOWS\system32\drivers\ati2mtaa.sys [-] --> NALEZENO
[Faked.Drv][FILE] ndisuio.sys : C:\WINDOWS\system32\drivers\ndisuio.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1xsxx.sys : C:\WINDOWS\system32\drivers\ati1xsxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] hidclass.sys : C:\WINDOWS\system32\drivers\hidclass.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1xbxx.sys : C:\WINDOWS\system32\drivers\ati1xbxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1tuxx.sys : C:\WINDOWS\system32\drivers\ati1tuxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1ttxx.sys : C:\WINDOWS\system32\drivers\ati1ttxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1snxx.sys : C:\WINDOWS\system32\drivers\ati1snxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] irenum.sys : C:\WINDOWS\system32\drivers\irenum.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1rvxx.sys : C:\WINDOWS\system32\drivers\ati1rvxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1raxx.sys : C:\WINDOWS\system32\drivers\ati1raxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] ar5211.sys : C:\WINDOWS\system32\drivers\ar5211.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1pdxx.sys : C:\WINDOWS\system32\drivers\ati1pdxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1mdxx.sys : C:\WINDOWS\system32\drivers\ati1mdxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] ati1btxx.sys : C:\WINDOWS\system32\drivers\ati1btxx.sys [-] --> NALEZENO
[Faked.Drv][FILE] ggsemc.sys : C:\WINDOWS\system32\drivers\ggsemc.sys [-] --> NALEZENO
[Faked.Drv][FILE] arp1394.sys : C:\WINDOWS\system32\drivers\arp1394.sys [-] --> NALEZENO
[Faked.Drv][FILE] msfs.sys : C:\WINDOWS\system32\drivers\msfs.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbstor.sys : C:\WINDOWS\system32\drivers\usbstor.sys [-] --> NALEZENO
[Faked.Drv][FILE] sysaudio.sys : C:\WINDOWS\system32\drivers\sysaudio.sys [-] --> NALEZENO
[Faked.Drv][FILE] atimtai.sys : C:\WINDOWS\system32\drivers\atimtai.sys [-] --> NALEZENO
[Faked.Drv][FILE] swmidi.sys : C:\WINDOWS\system32\drivers\swmidi.sys [-] --> NALEZENO
[Faked.Drv][FILE] hidbth.sys : C:\WINDOWS\system32\drivers\hidbth.sys [-] --> NALEZENO
[Faked.Drv][FILE] intelppm.sys : C:\WINDOWS\system32\drivers\intelppm.sys [-] --> NALEZENO
[Faked.Drv][FILE] mf.sys : C:\WINDOWS\system32\drivers\mf.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbehci.sys : C:\WINDOWS\system32\drivers\usbehci.sys [-] --> NALEZENO
[Faked.Drv][FILE] WudfRd.sys : C:\WINDOWS\system32\drivers\WudfRd.sys [-] --> NALEZENO
[Faked.Drv][FILE] rasirda.sys : C:\WINDOWS\system32\drivers\rasirda.sys [-] --> NALEZENO
[Faked.Drv][FILE] rdpdr.sys : C:\WINDOWS\system32\drivers\rdpdr.sys [-] --> NALEZENO
[Faked.Drv][FILE] redbook.sys : C:\WINDOWS\system32\drivers\redbook.sys [-] --> NALEZENO
[Faked.Drv][FILE] SE2Ebus.sys : C:\WINDOWS\system32\drivers\SE2Ebus.sys [-] --> NALEZENO
[Faked.Drv][FILE] SE2Ewh.sys : C:\WINDOWS\system32\drivers\SE2Ewh.sys [-] --> NALEZENO
[Faked.Drv][FILE] SE2Ewhnt.sys : C:\WINDOWS\system32\drivers\SE2Ewhnt.sys [-] --> NALEZENO
[Faked.Drv][FILE] irda.sys : C:\WINDOWS\system32\drivers\irda.sys [-] --> NALEZENO
[Faked.Drv][FILE] tdpipe.sys : C:\WINDOWS\system32\drivers\tdpipe.sys [-] --> NALEZENO
[Faked.Drv][FILE] SE2Emdm.sys : C:\WINDOWS\system32\drivers\SE2Emdm.sys [-] --> NALEZENO
[Faked.Drv][FILE] SE2Ecm.sys : C:\WINDOWS\system32\drivers\SE2Ecm.sys [-] --> NALEZENO
[Faked.Drv][FILE] SE2Ecmnt.sys : C:\WINDOWS\system32\drivers\SE2Ecmnt.sys [-] --> NALEZENO
[Faked.Drv][FILE] SE2Emdfl.sys : C:\WINDOWS\system32\drivers\SE2Emdfl.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016whnt.sys : C:\WINDOWS\system32\drivers\s0016whnt.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016cmnt.sys : C:\WINDOWS\system32\drivers\s0016cmnt.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016mdfl.sys : C:\WINDOWS\system32\drivers\s0016mdfl.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016obex.sys : C:\WINDOWS\system32\drivers\s0016obex.sys [-] --> NALEZENO
[Faked.Drv][FILE] fltMgr.sys : C:\WINDOWS\system32\drivers\fltMgr.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016mgmt.sys : C:\WINDOWS\system32\drivers\s0016mgmt.sys [-] --> NALEZENO
[Faked.Drv][FILE] s0016unic.sys : C:\WINDOWS\system32\drivers\s0016unic.sys [-] --> NALEZENO
[Faked.Drv][FILE] agpcpq.sys : C:\WINDOWS\system32\drivers\agpcpq.sys [-] --> NALEZENO
[Faked.Drv][FILE] alim1541.sys : C:\WINDOWS\system32\drivers\alim1541.sys [-] --> NALEZENO
[Faked.Drv][FILE] amdagp.sys : C:\WINDOWS\system32\drivers\amdagp.sys [-] --> NALEZENO
[Faked.Drv][FILE] gagp30kx.sys : C:\WINDOWS\system32\drivers\gagp30kx.sys [-] --> NALEZENO
[Faked.Drv][FILE] hidir.sys : C:\WINDOWS\system32\drivers\hidir.sys [-] --> NALEZENO
[Faked.Drv][FILE] irbus.sys : C:\WINDOWS\system32\drivers\irbus.sys [-] --> NALEZENO
[Faked.Drv][FILE] msircomm.sys : C:\WINDOWS\system32\drivers\msircomm.sys [-] --> NALEZENO
[Faked.Drv][FILE] mutohpen.sys : C:\WINDOWS\system32\drivers\mutohpen.sys [-] --> NALEZENO
[Faked.Drv][FILE] rndismpx.sys : C:\WINDOWS\system32\drivers\rndismpx.sys [-] --> NALEZENO
[Faked.Drv][FILE] sisagp.sys : C:\WINDOWS\system32\drivers\sisagp.sys [-] --> NALEZENO
[Faked.Drv][FILE] uagp35.sys : C:\WINDOWS\system32\drivers\uagp35.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbprint.sys : C:\WINDOWS\system32\drivers\usbprint.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbscan.sys : C:\WINDOWS\system32\drivers\usbscan.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbvideo.sys : C:\WINDOWS\system32\drivers\usbvideo.sys [-] --> NALEZENO
[Faked.Drv][FILE] viaagp.sys : C:\WINDOWS\system32\drivers\viaagp.sys [-] --> NALEZENO
[Faked.Drv][FILE] wacompen.sys : C:\WINDOWS\system32\drivers\wacompen.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbser_lowerfltj.sys : C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys [-] --> NALEZENO
[Faked.Drv][FILE] usbser_lowerflt.sys : C:\WINDOWS\system32\drivers\usbser_lowerflt.sys [-] --> NALEZENO
[Faked.Drv][FILE] TrueSight.sys : C:\WINDOWS\system32\drivers\TrueSight.sys [-] --> NALEZENO

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: +++++
--- User ---
[MBR] 85c7f424fca4bf59cab1aba4c0414100
[BSP] f43ba991b74c008cc9300103e559ad12 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 63 | Size: 9546 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 19551105 | Size: 9530 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[1]_S_04062013_02d2056.txt >>
RKreport[1]_S_04062013_02d2056.txt

#7 Příspěvek od **vyosek** » 06 dub 2013 21:51

Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe

Kliknete na volbu Change parametrs
V okne Additional Option zakliknete vsechny moznosti
Kliknete na OK
Utilite prikazte, at skenuje - klik na Start Scan
Po dokonceni skenu se objevi okno, zkontrolujte, zda-li je vsude moznost Skip
Pokud moznost Skip nebude primarne nastavena, prekliknete ji na Skip
Pokud mate vsude Skip, kliknete na Continue
Na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt bude log - jeho obsah sem vlozte

Eduard Stejskal · #8 Příspěvek od **Eduard Stejskal** » 06 dub 2013 22:10

23:00:18.0229 3652 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
23:00:18.0569 3652 ============================================================
23:00:18.0569 3652 Current date / time: 2013/04/06 23:00:18.0569
23:00:18.0569 3652 SystemInfo:
23:00:18.0569 3652
23:00:18.0569 3652 OS Version: 5.1.2600 ServicePack: 3.0
23:00:18.0569 3652 Product type: Workstation
23:00:18.0569 3652 ComputerName: DELL-NOTEBOOK
23:00:18.0569 3652 UserName: Eda
23:00:18.0569 3652 Windows directory: C:\WINDOWS
23:00:18.0569 3652 System windows directory: C:\WINDOWS
23:00:18.0569 3652 Processor architecture: Intel x86
23:00:18.0569 3652 Number of processors: 1
23:00:18.0569 3652 Page size: 0x1000
23:00:18.0579 3652 Boot type: Normal boot
23:00:18.0579 3652 ============================================================
23:00:21.0964 3652 Drive \Device\Harddisk0\DR0 - Size: 0x4A8530000 (18.63 Gb), SectorSize: 0x200, Cylinders: 0x980, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
23:00:21.0964 3652 ============================================================
23:00:21.0964 3652 \Device\Harddisk0\DR0:
23:00:21.0964 3652 MBR partitions:
23:00:21.0964 3652 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x12A5342
23:00:21.0994 3652 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x12A53C0, BlocksNum 0x129D5C0
23:00:21.0994 3652 ============================================================
23:00:22.0144 3652 D: <-> \Device\Harddisk0\DR0\Partition2
23:00:22.0164 3652 C: <-> \Device\Harddisk0\DR0\Partition1
23:00:22.0164 3652 ============================================================
23:00:22.0164 3652 Initialize success
23:00:22.0164 3652 ============================================================
23:01:55.0719 0776 ============================================================
23:01:55.0719 0776 Scan started
23:01:55.0719 0776 Mode: Manual; SigCheck; TDLFS;
23:01:55.0719 0776 ============================================================
23:01:56.0560 0776 ================ Scan system memory ========================
23:01:56.0560 0776 System memory - ok
23:01:56.0580 0776 ================ Scan services =============================
23:01:56.0781 0776 Abiosdsk - ok
23:01:56.0821 0776 abp480n5 - ok
23:01:57.0041 0776 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
23:01:57.0421 0776 ACDaemon - ok
23:01:57.0492 0776 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
23:01:59.0625 0776 ACPI - ok
23:01:59.0715 0776 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
23:02:00.0125 0776 ACPIEC - ok
23:02:00.0436 0776 [ D422DA79B86CF3B7FAFD4CE85052F2F6 ] ACS C:\WINDOWS\system32\acs.exe
23:02:00.0536 0776 ACS ( UnsignedFile.Multi.Generic ) - warning
23:02:00.0536 0776 ACS - detected UnsignedFile.Multi.Generic (1)
23:02:00.0566 0776 adpu160m - ok
23:02:00.0666 0776 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
23:02:01.0077 0776 aec - ok
23:02:01.0207 0776 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
23:02:01.0307 0776 AFD - ok
23:02:01.0347 0776 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
23:02:01.0788 0776 agp440 - ok
23:02:01.0828 0776 Aha154x - ok
23:02:01.0858 0776 aic78u2 - ok
23:02:01.0898 0776 aic78xx - ok
23:02:01.0978 0776 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
23:02:02.0389 0776 Alerter - ok
23:02:02.0429 0776 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
23:02:02.0599 0776 ALG - ok
23:02:02.0619 0776 AliIde - ok
23:02:02.0659 0776 amsint - ok
23:02:02.0739 0776 [ 6B8E7A90E576D4FE308F97C69060A171 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
23:02:02.0919 0776 AppMgmt - ok
23:02:03.0009 0776 [ 8950DAB3D15E583DA3CE7976B1CF8224 ] AR5211 C:\WINDOWS\system32\DRIVERS\ar5211.sys
23:02:03.0120 0776 AR5211 ( UnsignedFile.Multi.Generic ) - warning
23:02:03.0120 0776 AR5211 - detected UnsignedFile.Multi.Generic (1)
23:02:03.0170 0776 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
23:02:03.0510 0776 Arp1394 - ok
23:02:03.0550 0776 asc - ok
23:02:03.0590 0776 asc3350p - ok
23:02:03.0640 0776 asc3550 - ok
23:02:03.0670 0776 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
23:02:04.0111 0776 AsyncMac - ok
23:02:04.0181 0776 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
23:02:04.0612 0776 atapi - ok
23:02:04.0662 0776 Atdisk - ok
23:02:04.0782 0776 [ B2D42D7DF95B9BAB49D00F1F0DFB7834 ] Ati HotKey Poller C:\WINDOWS\system32\Atievxx.exe
23:02:05.0223 0776 Ati HotKey Poller - ok
23:02:05.0303 0776 [ 7A3F5E63253AA2485483795F7178F55F ] atimtai C:\WINDOWS\system32\DRIVERS\atimtai.sys
23:02:05.0773 0776 atimtai - ok
23:02:05.0814 0776 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
23:02:06.0314 0776 Atmarpc - ok
23:02:06.0384 0776 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
23:02:06.0825 0776 AudioSrv - ok
23:02:06.0895 0776 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
23:02:07.0356 0776 audstub - ok
23:02:07.0436 0776 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
23:02:07.0886 0776 Beep - ok
23:02:08.0027 0776 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
23:02:08.0527 0776 BITS - ok
23:02:08.0678 0776 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
23:02:08.0768 0776 Browser - ok
23:02:08.0828 0776 [ 4FF76600B4CA68376B80AF1683799C60 ] C-Dilla C:\WINDOWS\system32\drivers\CDANT.SYS
23:02:08.0858 0776 C-Dilla ( UnsignedFile.Multi.Generic ) - warning
23:02:08.0858 0776 C-Dilla - detected UnsignedFile.Multi.Generic (1)
23:02:08.0908 0776 [ F87106D9DE329012A40D13DA15FA7225 ] C-DillaSrv C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
23:02:08.0948 0776 C-DillaSrv ( UnsignedFile.Multi.Generic ) - warning
23:02:08.0948 0776 C-DillaSrv - detected UnsignedFile.Multi.Generic (1)
23:02:09.0028 0776 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
23:02:09.0509 0776 cbidf2k - ok
23:02:09.0549 0776 cd20xrnt - ok
23:02:09.0599 0776 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
23:02:10.0100 0776 Cdaudio - ok
23:02:10.0140 0776 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
23:02:10.0630 0776 Cdfs - ok
23:02:10.0711 0776 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
23:02:11.0191 0776 Cdrom - ok
23:02:11.0211 0776 Changer - ok
23:02:11.0301 0776 [ E390DC1D7C461D7D56EC53402F329928 ] cisvc C:\WINDOWS\system32\cisvc.exe
23:02:11.0752 0776 cisvc - ok
23:02:11.0792 0776 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
23:02:12.0283 0776 ClipSrv - ok
23:02:12.0373 0776 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
23:02:12.0834 0776 CmBatt - ok
23:02:12.0874 0776 CmdIde - ok
23:02:12.0924 0776 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
23:02:13.0384 0776 Compbatt - ok
23:02:13.0475 0776 COMSysApp - ok
23:02:13.0545 0776 Cpqarray - ok
23:02:13.0615 0776 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
23:02:14.0176 0776 CryptSvc - ok
23:02:14.0206 0776 dac2w2k - ok
23:02:14.0236 0776 dac960nt - ok
23:02:14.0386 0776 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
23:02:14.0526 0776 DcomLaunch - ok
23:02:14.0576 0776 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
23:02:15.0017 0776 Dhcp - ok
23:02:15.0117 0776 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
23:02:15.0588 0776 Disk - ok
23:02:15.0638 0776 dmadmin - ok
23:02:15.0798 0776 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
23:02:16.0379 0776 dmboot - ok
23:02:16.0469 0776 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
23:02:16.0960 0776 dmio - ok
23:02:16.0990 0776 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
23:02:17.0500 0776 dmload - ok
23:02:17.0570 0776 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
23:02:18.0081 0776 dmserver - ok
23:02:18.0161 0776 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
23:02:18.0662 0776 DMusic - ok
23:02:18.0782 0776 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
23:02:18.0872 0776 Dnscache - ok
23:02:18.0942 0776 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
23:02:19.0413 0776 Dot3svc - ok
23:02:19.0453 0776 dpti2o - ok
23:02:19.0513 0776 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
23:02:19.0964 0776 drmkaud - ok
23:02:20.0034 0776 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
23:02:20.0515 0776 EapHost - ok
23:02:20.0565 0776 [ 14304CB9FF0A9D2A79A7A54B28A5909A ] EL556ND5 C:\WINDOWS\system32\DRIVERS\EL556ND5.sys
23:02:21.0085 0776 EL556ND5 - ok
23:02:21.0146 0776 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
23:02:21.0636 0776 ERSvc - ok
23:02:21.0706 0776 esgiguard - ok
23:02:21.0827 0776 [ 9D38D8CF163C03335CEB28BC391B75E0 ] EU3_USB C:\WINDOWS\system32\DRIVERS\EU3USB.sys
23:02:21.0977 0776 EU3_USB ( UnsignedFile.Multi.Generic ) - warning
23:02:21.0977 0776 EU3_USB - detected UnsignedFile.Multi.Generic (1)
23:02:22.0097 0776 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
23:02:22.0187 0776 Eventlog - ok
23:02:22.0297 0776 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
23:02:22.0397 0776 EventSystem - ok
23:02:22.0457 0776 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
23:02:22.0968 0776 Fastfat - ok
23:02:23.0048 0776 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
23:02:23.0118 0776 FastUserSwitchingCompatibility - ok
23:02:23.0168 0776 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
23:02:23.0649 0776 Fdc - ok
23:02:23.0709 0776 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
23:02:24.0200 0776 Fips - ok
23:02:24.0250 0776 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
23:02:24.0691 0776 Flpydisk - ok
23:02:24.0771 0776 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
23:02:25.0251 0776 FltMgr - ok
23:02:25.0312 0776 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
23:02:25.0802 0776 Fs_Rec - ok
23:02:25.0872 0776 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
23:02:26.0363 0776 Ftdisk - ok
23:02:26.0403 0776 [ 007AEA2E06E7CEF7372E40C277163959 ] ggflt C:\WINDOWS\system32\DRIVERS\ggflt.sys
23:02:26.0433 0776 ggflt - ok
23:02:26.0473 0776 [ C73DE35960CA75C5AB4AE636B127C64E ] ggsemc C:\WINDOWS\system32\DRIVERS\ggsemc.sys
23:02:26.0513 0776 ggsemc - ok
23:02:26.0563 0776 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
23:02:27.0044 0776 Gpc - ok
23:02:27.0174 0776 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
23:02:27.0705 0776 helpsvc - ok
23:02:27.0825 0776 [ 00E25EE90166B3E1BE6E74AEBF858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
23:02:28.0296 0776 HidServ - ok
23:02:28.0366 0776 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
23:02:28.0857 0776 HidUsb - ok
23:02:28.0927 0776 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
23:02:29.0417 0776 hkmsvc - ok
23:02:29.0508 0776 hpn - ok
23:02:29.0538 0776 hpt3xx - ok
23:02:29.0638 0776 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
23:02:29.0718 0776 HTTP - ok
23:02:29.0778 0776 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
23:02:30.0259 0776 HTTPFilter - ok
23:02:30.0289 0776 i2omgmt - ok
23:02:30.0329 0776 i2omp - ok
23:02:30.0389 0776 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
23:02:30.0880 0776 i8042prt - ok
23:02:30.0940 0776 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
23:02:31.0390 0776 Imapi - ok
23:02:31.0470 0776 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
23:02:31.0911 0776 ImapiService - ok
23:02:31.0961 0776 ini910u - ok
23:02:32.0061 0776 [ 57D928E548B38502ABBA7A77A6EB7312 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
23:02:32.0472 0776 IntelIde - ok
23:02:32.0552 0776 [ 3BB22519A194418D5FEC05D800A19AD0 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
23:02:33.0013 0776 ip6fw - ok
23:02:33.0113 0776 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
23:02:33.0603 0776 IpFilterDriver - ok
23:02:33.0654 0776 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
23:02:34.0164 0776 IpInIp - ok
23:02:34.0214 0776 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
23:02:34.0695 0776 IpNat - ok
23:02:34.0755 0776 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
23:02:35.0246 0776 IPSec - ok
23:02:35.0316 0776 [ ACA5E7B54409F9CB5EED97ED0C81120E ] irda C:\WINDOWS\system32\DRIVERS\irda.sys
23:02:35.0466 0776 irda - ok
23:02:35.0516 0776 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
23:02:35.0686 0776 IRENUM - ok
23:02:35.0747 0776 [ 8024EA8C5B2D2A4D201F418B0AADB804 ] Irmon C:\WINDOWS\System32\irmon.dll
23:02:35.0927 0776 Irmon - ok
23:02:36.0037 0776 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
23:02:36.0468 0776 isapnp - ok
23:02:36.0638 0776 [ 999DB5F88C8E145CCA9D471E33227143 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
23:02:36.0688 0776 JavaQuickStarterService - ok
23:02:36.0718 0776 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
23:02:37.0209 0776 Kbdclass - ok
23:02:37.0289 0776 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
23:02:37.0749 0776 kmixer - ok
23:02:37.0860 0776 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
23:02:37.0950 0776 KSecDD - ok
23:02:38.0030 0776 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
23:02:38.0110 0776 lanmanserver - ok
23:02:38.0190 0776 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
23:02:38.0280 0776 lanmanworkstation - ok
23:02:38.0300 0776 lbrtfdc - ok
23:02:38.0390 0776 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
23:02:38.0861 0776 LmHosts - ok
23:02:38.0951 0776 [ BC129F409AF5FCF46E978C1C144E31BE ] maestro C:\WINDOWS\system32\drivers\es198x.sys
23:02:39.0402 0776 maestro - ok
23:02:39.0472 0776 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
23:02:40.0013 0776 Messenger - ok
23:02:40.0073 0776 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
23:02:40.0493 0776 mnmdd - ok
23:02:40.0594 0776 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
23:02:41.0144 0776 mnmsrvc - ok
23:02:41.0174 0776 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
23:02:41.0645 0776 Modem - ok
23:02:41.0675 0776 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
23:02:42.0126 0776 Mouclass - ok
23:02:42.0186 0776 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
23:02:42.0616 0776 mouhid - ok
23:02:42.0656 0776 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
23:02:43.0087 0776 MountMgr - ok
23:02:43.0137 0776 mraid35x - ok
23:02:43.0197 0776 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
23:02:43.0638 0776 MRxDAV - ok
23:02:43.0748 0776 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
23:02:43.0908 0776 MRxSmb - ok
23:02:43.0978 0776 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\System32\msdtc.exe
23:02:44.0429 0776 MSDTC - ok
23:02:44.0479 0776 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
23:02:44.0910 0776 Msfs - ok
23:02:44.0990 0776 [ 95C6432151CCFF8617352F8E616A1AA4 ] MSIRCOMM C:\WINDOWS\system32\DRIVERS\MSIRCOMM.sys
23:02:45.0160 0776 MSIRCOMM - ok
23:02:45.0200 0776 MSIServer - ok
23:02:45.0270 0776 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
23:02:45.0671 0776 MSKSSRV - ok
23:02:45.0711 0776 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
23:02:46.0192 0776 MSPCLOCK - ok
23:02:46.0222 0776 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
23:02:46.0692 0776 MSPQM - ok
23:02:46.0742 0776 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
23:02:47.0193 0776 mssmbios - ok
23:02:47.0283 0776 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
23:02:47.0373 0776 Mup - ok
23:02:47.0473 0776 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
23:02:47.0944 0776 napagent - ok
23:02:48.0024 0776 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
23:02:48.0475 0776 NDIS - ok
23:02:48.0555 0776 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
23:02:48.0615 0776 NdisTapi - ok
23:02:48.0675 0776 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
23:02:49.0186 0776 Ndisuio - ok
23:02:49.0236 0776 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
23:02:49.0637 0776 NdisWan - ok
23:02:49.0707 0776 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
23:02:49.0777 0776 NDProxy - ok
23:02:49.0817 0776 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
23:02:50.0287 0776 NetBIOS - ok
23:02:50.0358 0776 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
23:02:50.0778 0776 NetBT - ok
23:02:50.0868 0776 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
23:02:51.0349 0776 NetDDE - ok
23:02:51.0379 0776 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
23:02:51.0790 0776 NetDDEdsdm - ok
23:02:51.0880 0776 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
23:02:52.0310 0776 Netlogon - ok
23:02:52.0400 0776 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
23:02:52.0831 0776 Netman - ok
23:02:52.0901 0776 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
23:02:53.0322 0776 NIC1394 - ok
23:02:53.0432 0776 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
23:02:53.0512 0776 Nla - ok
23:02:53.0542 0776 [ 1E421A6BCF2203CC61B821ADA9DE878B ] nm C:\WINDOWS\system32\DRIVERS\NMnt.sys
23:02:54.0023 0776 nm - ok
23:02:54.0103 0776 [ 48FB907B069524F2DC7BA62A0762850C ] nmwcd C:\WINDOWS\system32\drivers\ccdcmb.sys
23:02:54.0544 0776 nmwcd - ok
23:02:54.0594 0776 [ 2914CEB789964141AC6E22C6BC980C42 ] nmwcdc C:\WINDOWS\system32\drivers\ccdcmbo.sys
23:02:54.0814 0776 nmwcdc - ok
23:02:54.0884 0776 [ D21FEE8DB254BA762656878168AC1DB6 ] NPF C:\WINDOWS\system32\drivers\npf.sys
23:02:54.0924 0776 NPF ( UnsignedFile.Multi.Generic ) - warning
23:02:54.0924 0776 NPF - detected UnsignedFile.Multi.Generic (1)
23:02:54.0954 0776 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
23:02:55.0405 0776 Npfs - ok
23:02:55.0505 0776 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
23:02:56.0046 0776 Ntfs - ok
23:02:56.0076 0776 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
23:02:56.0566 0776 NtLmSsp - ok
23:02:56.0667 0776 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
23:02:57.0177 0776 NtmsSvc - ok
23:02:57.0257 0776 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
23:02:57.0688 0776 Null - ok
23:02:57.0958 0776 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
23:02:58.0700 0776 nv - ok
23:02:58.0820 0776 [ 4D31783965B0B7CED7DB3F4EE14CF260 ] nv4 C:\WINDOWS\system32\DRIVERS\nv4.sys
23:02:59.0391 0776 nv4 - ok
23:02:59.0461 0776 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
23:02:59.0931 0776 NwlnkFlt - ok
23:02:59.0961 0776 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
23:03:00.0462 0776 NwlnkFwd - ok
23:03:00.0532 0776 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
23:03:00.0963 0776 ohci1394 - ok
23:03:01.0073 0776 [ 3FC38E7FBE91DB40C34731195F4116C2 ] P3 C:\WINDOWS\system32\DRIVERS\p3.sys
23:03:01.0564 0776 P3 - ok
23:03:01.0814 0776 [ EF5BF8E281445060ACB15AEFDFEBC0F2 ] Packet C:\WINDOWS\system32\packet.sys
23:03:01.0844 0776 Packet ( UnsignedFile.Multi.Generic ) - warning
23:03:01.0844 0776 Packet - detected UnsignedFile.Multi.Generic (1)
23:03:01.0914 0776 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
23:03:02.0375 0776 Parport - ok
23:03:02.0425 0776 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
23:03:02.0876 0776 PartMgr - ok
23:03:02.0936 0776 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
23:03:03.0376 0776 ParVdm - ok
23:03:03.0436 0776 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
23:03:03.0917 0776 PCI - ok
23:03:04.0037 0776 PCIDump - ok
23:03:04.0077 0776 PCIIde - ok
23:03:04.0157 0776 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
23:03:04.0568 0776 Pcmcia - ok
23:03:04.0588 0776 PDCOMP - ok
23:03:04.0628 0776 PDFRAME - ok
23:03:04.0648 0776 PDRELI - ok
23:03:04.0688 0776 PDRFRAME - ok
23:03:04.0718 0776 perc2 - ok
23:03:04.0758 0776 perc2hib - ok
23:03:04.0979 0776 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
23:03:05.0029 0776 PlugPlay - ok
23:03:05.0099 0776 [ 831883B107684301F48ACE752C963984 ] PnkBstrA C:\WINDOWS\system32\PnkBstrA.exe
23:03:05.0149 0776 PnkBstrA - ok
23:03:05.0229 0776 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
23:03:05.0690 0776 PolicyAgent - ok
23:03:05.0740 0776 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
23:03:06.0190 0776 PptpMiniport - ok
23:03:06.0250 0776 [ 7EB15DCE4EC3A0220BD796A15C18186E ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
23:03:06.0731 0776 Processor - ok
23:03:06.0761 0776 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
23:03:07.0192 0776 ProtectedStorage - ok
23:03:07.0242 0776 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
23:03:07.0682 0776 PSched - ok
23:03:07.0763 0776 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
23:03:08.0183 0776 Ptilink - ok
23:03:08.0273 0776 [ 297E2746DF41528A0950F3AF80CEDB2D ] pwdrvio C:\WINDOWS\system32\pwdrvio.sys
23:03:08.0323 0776 pwdrvio - ok
23:03:08.0363 0776 [ BC7D54CDBE3BBFE52F09CB7B20C3D365 ] pwdspio C:\WINDOWS\system32\pwdspio.sys
23:03:08.0393 0776 pwdspio - ok
23:03:08.0414 0776 ql1080 - ok
23:03:08.0454 0776 Ql10wnt - ok
23:03:08.0484 0776 ql12160 - ok
23:03:08.0524 0776 ql1240 - ok
23:03:08.0554 0776 ql1280 - ok
23:03:08.0574 0776 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
23:03:09.0034 0776 RasAcd - ok
23:03:09.0135 0776 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
23:03:09.0585 0776 RasAuto - ok
23:03:09.0665 0776 [ 0207D26DDF796A193CCD9F83047BB5FC ] Rasirda C:\WINDOWS\system32\DRIVERS\rasirda.sys
23:03:09.0836 0776 Rasirda - ok
23:03:09.0876 0776 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
23:03:10.0316 0776 Rasl2tp - ok
23:03:10.0426 0776 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
23:03:10.0837 0776 RasMan - ok
23:03:10.0877 0776 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
23:03:11.0378 0776 RasPppoe - ok
23:03:11.0498 0776 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
23:03:11.0889 0776 Raspti - ok
23:03:11.0959 0776 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
23:03:12.0439 0776 Rdbss - ok
23:03:12.0459 0776 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
23:03:12.0920 0776 RDPCDD - ok
23:03:13.0020 0776 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
23:03:13.0441 0776 rdpdr - ok
23:03:13.0541 0776 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
23:03:13.0601 0776 RDPWD - ok
23:03:13.0661 0776 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
23:03:14.0162 0776 RDSessMgr - ok
23:03:14.0212 0776 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
23:03:14.0663 0776 redbook - ok
23:03:14.0773 0776 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
23:03:15.0233 0776 RemoteAccess - ok
23:03:15.0303 0776 [ 8F31505484A190D5B22274708799F4EC ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
23:03:15.0764 0776 RemoteRegistry - ok
23:03:15.0804 0776 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
23:03:16.0235 0776 ROOTMODEM - ok
23:03:16.0395 0776 [ 67C607857CCD6EBFFE768DAD5B2CA239 ] rpcapd C:\Program Files\WinPcap\rpcapd.exe
23:03:16.0435 0776 rpcapd ( UnsignedFile.Multi.Generic ) - warning
23:03:16.0435 0776 rpcapd - detected UnsignedFile.Multi.Generic (1)
23:03:16.0515 0776 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
23:03:17.0006 0776 RpcLocator - ok
23:03:17.0136 0776 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\system32\rpcss.dll
23:03:17.0236 0776 RpcSs - ok
23:03:17.0316 0776 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
23:03:17.0727 0776 RSVP - ok
23:03:17.0777 0776 [ 59509AD6CBC28F2C73056268985B3E48 ] s0016bus C:\WINDOWS\system32\DRIVERS\s0016bus.sys
23:03:17.0817 0776 s0016bus - ok
23:03:17.0857 0776 [ B98C3A6F91F4FBA285AF9606A240C6B4 ] s0016mdfl C:\WINDOWS\system32\DRIVERS\s0016mdfl.sys
23:03:17.0887 0776 s0016mdfl - ok
23:03:17.0937 0776 [ 8A83426F4FB7B5212825D9DE76368B1A ] s0016mdm C:\WINDOWS\system32\DRIVERS\s0016mdm.sys
23:03:17.0977 0776 s0016mdm - ok
23:03:18.0037 0776 [ 7A78BBA97FEB5E6D24C49E93A3BF7287 ] s0016mgmt C:\WINDOWS\system32\DRIVERS\s0016mgmt.sys
23:03:18.0077 0776 s0016mgmt - ok
23:03:18.0117 0776 [ 34EF7B5F611957B73E7219DD5A222AD1 ] s0016nd5 C:\WINDOWS\system32\DRIVERS\s0016nd5.sys
23:03:18.0148 0776 s0016nd5 - ok
23:03:18.0228 0776 [ 36792935847143E4A3CDA0DC87248487 ] s0016obex C:\WINDOWS\system32\DRIVERS\s0016obex.sys
23:03:18.0278 0776 s0016obex - ok
23:03:18.0368 0776 [ 927208754FB27FC3E7A659E77500C5D1 ] s0016unic C:\WINDOWS\system32\DRIVERS\s0016unic.sys
23:03:18.0408 0776 s0016unic - ok
23:03:18.0478 0776 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
23:03:18.0959 0776 SamSs - ok
23:03:19.0039 0776 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
23:03:19.0489 0776 SCardSvr - ok
23:03:19.0590 0776 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
23:03:20.0040 0776 Schedule - ok
23:03:20.0120 0776 [ 97EC6C60112EBD40C07FE295A38AB1EA ] SE2Ebus C:\WINDOWS\system32\DRIVERS\SE2Ebus.sys
23:03:20.0150 0776 SE2Ebus ( UnsignedFile.Multi.Generic ) - warning
23:03:20.0150 0776 SE2Ebus - detected UnsignedFile.Multi.Generic (1)
23:03:20.0210 0776 [ ABFE402BA200E82568A5606719397AFA ] SE2Emdfl C:\WINDOWS\system32\DRIVERS\SE2Emdfl.sys
23:03:20.0210 0776 SE2Emdfl ( UnsignedFile.Multi.Generic ) - warning
23:03:20.0210 0776 SE2Emdfl - detected UnsignedFile.Multi.Generic (1)
23:03:20.0311 0776 [ 4ACFE8A2A3C1624964429E83BC7148A4 ] SE2Emdm C:\WINDOWS\system32\DRIVERS\SE2Emdm.sys
23:03:20.0351 0776 SE2Emdm ( UnsignedFile.Multi.Generic ) - warning
23:03:20.0351 0776 SE2Emdm - detected UnsignedFile.Multi.Generic (1)
23:03:20.0391 0776 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
23:03:20.0551 0776 Secdrv - ok
23:03:20.0741 0776 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
23:03:21.0192 0776 seclogon - ok
23:03:21.0262 0776 [ E5B56569A9F79B70314FEDE6C953641E ] seehcri C:\WINDOWS\system32\DRIVERS\seehcri.sys
23:03:21.0332 0776 seehcri - ok
23:03:21.0372 0776 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
23:03:21.0793 0776 SENS - ok
23:03:21.0853 0776 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
23:03:22.0334 0776 serenum - ok
23:03:22.0394 0776 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
23:03:22.0804 0776 Serial - ok
23:03:22.0864 0776 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
23:03:23.0315 0776 Sfloppy - ok
23:03:23.0415 0776 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
23:03:23.0886 0776 SharedAccess - ok
23:03:23.0976 0776 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
23:03:24.0026 0776 ShellHWDetection - ok
23:03:24.0106 0776 Simbad - ok
23:03:24.0166 0776 [ B9E8E8AEC1668DA3ACC331721C934401 ] SIS162u C:\WINDOWS\system32\DRIVERS\sis162u.sys
23:03:24.0256 0776 SIS162u - ok
23:03:24.0286 0776 [ 12224AC3A6FD3577036F038A0C03F2F5 ] SMCIRDA C:\WINDOWS\system32\DRIVERS\smcirda.sys
23:03:24.0467 0776 SMCIRDA - ok
23:03:24.0487 0776 Sparrow - ok
23:03:24.0547 0776 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
23:03:24.0957 0776 splitter - ok
23:03:25.0047 0776 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
23:03:25.0098 0776 Spooler - ok
23:03:25.0128 0776 SpyHunter 4 Service - ok
23:03:25.0188 0776 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
23:03:25.0368 0776 sr - ok
23:03:25.0428 0776 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
23:03:25.0598 0776 srservice - ok
23:03:25.0718 0776 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
23:03:25.0839 0776 Srv - ok
23:03:25.0929 0776 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
23:03:26.0109 0776 SSDPSRV - ok
23:03:26.0319 0776 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
23:03:26.0790 0776 stisvc - ok
23:03:26.0860 0776 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
23:03:27.0321 0776 swenum - ok
23:03:27.0381 0776 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
23:03:27.0791 0776 swmidi - ok
23:03:27.0912 0776 SwPrv - ok
23:03:27.0962 0776 symc810 - ok
23:03:28.0002 0776 symc8xx - ok
23:03:28.0042 0776 sym_hi - ok
23:03:28.0092 0776 sym_u3 - ok
23:03:28.0162 0776 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
23:03:28.0653 0776 sysaudio - ok
23:03:28.0753 0776 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
23:03:29.0213 0776 SysmonLog - ok
23:03:29.0324 0776 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
23:03:29.0774 0776 TapiSrv - ok
23:03:29.0864 0776 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
23:03:29.0975 0776 Tcpip - ok
23:03:30.0035 0776 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
23:03:30.0485 0776 TDPIPE - ok
23:03:30.0525 0776 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
23:03:30.0996 0776 TDTCP - ok
23:03:31.0046 0776 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
23:03:31.0477 0776 TermDD - ok
23:03:31.0577 0776 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
23:03:32.0007 0776 TermService - ok
23:03:32.0098 0776 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
23:03:32.0128 0776 Themes - ok
23:03:32.0188 0776 [ CD0CC7B167D78043A41C98D4921EFB54 ] TlntSvr C:\WINDOWS\System32\tlntsvr.exe
23:03:32.0368 0776 TlntSvr - ok
23:03:32.0398 0776 TosIde - ok
23:03:32.0478 0776 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
23:03:32.0899 0776 TrkWks - ok
23:03:32.0989 0776 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
23:03:33.0440 0776 Udfs - ok
23:03:33.0470 0776 ultra - ok
23:03:33.0780 0776 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
23:03:34.0451 0776 Update - ok
23:03:34.0591 0776 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
23:03:34.0791 0776 upnphost - ok
23:03:34.0882 0776 [ E526A166E6ACAFD0A9B3841D3941669E ] upperdev C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
23:03:35.0092 0776 upperdev - ok
23:03:35.0162 0776 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
23:03:35.0492 0776 UPS - ok
23:03:35.0553 0776 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
23:03:35.0943 0776 usbccgp - ok
23:03:36.0003 0776 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
23:03:36.0484 0776 usbehci - ok
23:03:36.0554 0776 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
23:03:36.0985 0776 usbhub - ok
23:03:37.0075 0776 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
23:03:37.0505 0776 usbohci - ok
23:03:37.0595 0776 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
23:03:38.0056 0776 usbprint - ok
23:03:38.0096 0776 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
23:03:38.0547 0776 usbscan - ok
23:03:38.0607 0776 [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser C:\WINDOWS\system32\DRIVERS\usbser.sys
23:03:39.0088 0776 usbser - ok
23:03:39.0168 0776 [ 6F3E3C6811B930D2414552A2E4A40F36 ] UsbserFilt C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
23:03:39.0378 0776 UsbserFilt - ok
23:03:39.0498 0776 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
23:03:39.0939 0776 USBSTOR - ok
23:03:39.0999 0776 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
23:03:40.0430 0776 usbuhci - ok
23:03:40.0480 0776 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
23:03:40.0900 0776 VgaSave - ok
23:03:40.0940 0776 ViaIde - ok
23:03:40.0990 0776 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
23:03:41.0421 0776 VolSnap - ok
23:03:41.0661 0776 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
23:03:41.0842 0776 VSS - ok
23:03:41.0992 0776 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
23:03:42.0462 0776 W32Time - ok
23:03:42.0533 0776 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
23:03:42.0993 0776 Wanarp - ok
23:03:43.0063 0776 [ A2A8CACB5B80AC45CC69692E60621864 ] wceusbsh C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
23:03:43.0524 0776 wceusbsh - ok
23:03:43.0664 0776 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
23:03:43.0784 0776 Wdf01000 - ok
23:03:43.0925 0776 [ 477ED2208E2E501987DD4A1304E92091 ] WDHAALBA C:\WINDOWS\system32\DRIVERS\WDHAALBA.sys
23:03:44.0445 0776 WDHAALBA - ok
23:03:44.0465 0776 WDICA - ok
23:03:44.0555 0776 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
23:03:45.0026 0776 wdmaud - ok
23:03:45.0076 0776 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
23:03:45.0577 0776 WebClient - ok
23:03:45.0667 0776 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
23:03:46.0128 0776 winmgmt - ok
23:03:46.0288 0776 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
23:03:46.0378 0776 WmdmPmSN - ok
23:03:46.0588 0776 [ 0171CFF34BBA8C5977F18C48D8AEF8C6 ] Wmi C:\WINDOWS\System32\advapi32.dll
23:03:46.0759 0776 Wmi - ok
23:03:46.0829 0776 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
23:03:47.0259 0776 WmiApSrv - ok
23:03:47.0510 0776 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
23:03:47.0690 0776 WMPNetworkSvc - ok
23:03:47.0750 0776 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
23:03:47.0820 0776 WpdUsb - ok
23:03:47.0920 0776 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
23:03:48.0351 0776 wscsvc - ok
23:03:48.0411 0776 [ E23437E5B715B999E280D00D9EEA64DA ] WSIMD C:\WINDOWS\system32\DRIVERS\wsimd.sys
23:03:48.0441 0776 WSIMD ( UnsignedFile.Multi.Generic ) - warning
23:03:48.0441 0776 WSIMD - detected UnsignedFile.Multi.Generic (1)
23:03:48.0491 0776 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
23:03:48.0952 0776 wuauserv - ok
23:03:49.0022 0776 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
23:03:49.0072 0776 WudfPf - ok
23:03:49.0172 0776 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
23:03:49.0202 0776 WudfRd - ok
23:03:49.0262 0776 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
23:03:49.0322 0776 WudfSvc - ok
23:03:49.0453 0776 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
23:03:49.0943 0776 WZCSVC - ok
23:03:50.0043 0776 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
23:03:50.0504 0776 xmlprov - ok
23:03:50.0614 0776 ================ Scan global ===============================
23:03:50.0835 0776 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
23:03:50.0955 0776 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
23:03:51.0045 0776 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
23:03:51.0235 0776 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
23:03:51.0245 0776 [Global] - ok
23:03:51.0265 0776 ================ Scan MBR ==================================
23:03:51.0295 0776 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
23:03:52.0377 0776 \Device\Harddisk0\DR0 - ok
23:03:52.0397 0776 ================ Scan VBR ==================================
23:03:52.0457 0776 [ 9397D2B923E5CBFC1329DA17DE76E1F8 ] \Device\Harddisk0\DR0\Partition1
23:03:52.0457 0776 \Device\Harddisk0\DR0\Partition1 - ok
23:03:52.0507 0776 [ BA6B7E8026A43C139E9ADBDE69E0EBD8 ] \Device\Harddisk0\DR0\Partition2
23:03:52.0507 0776 \Device\Harddisk0\DR0\Partition2 - ok
23:03:52.0507 0776 ============================================================
23:03:52.0507 0776 Scan finished
23:03:52.0507 0776 ============================================================
23:03:52.0717 0772 Detected object count: 12
23:03:52.0717 0772 Actual detected object count: 12
23:04:32.0464 0772 ACS ( UnsignedFile.Multi.Generic ) - skipped by user
23:04:32.0464 0772 ACS ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:04:32.0474 0772 AR5211 ( UnsignedFile.Multi.Generic ) - skipped by user
23:04:32.0474 0772 AR5211 ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:04:32.0474 0772 C-Dilla ( UnsignedFile.Multi.Generic ) - skipped by user
23:04:32.0474 0772 C-Dilla ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:04:32.0474 0772 C-DillaSrv ( UnsignedFile.Multi.Generic ) - skipped by user
23:04:32.0484 0772 C-DillaSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:04:32.0494 0772 EU3_USB ( UnsignedFile.Multi.Generic ) - skipped by user
23:04:32.0494 0772 EU3_USB ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:04:32.0494 0772 NPF ( UnsignedFile.Multi.Generic ) - skipped by user
23:04:32.0494 0772 NPF ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:04:32.0504 0772 Packet ( UnsignedFile.Multi.Generic ) - skipped by user
23:04:32.0504 0772 Packet ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:04:32.0504 0772 rpcapd ( UnsignedFile.Multi.Generic ) - skipped by user
23:04:32.0504 0772 rpcapd ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:04:32.0524 0772 SE2Ebus ( UnsignedFile.Multi.Generic ) - skipped by user
23:04:32.0524 0772 SE2Ebus ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:04:32.0524 0772 SE2Emdfl ( UnsignedFile.Multi.Generic ) - skipped by user
23:04:32.0524 0772 SE2Emdfl ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:04:32.0534 0772 SE2Emdm ( UnsignedFile.Multi.Generic ) - skipped by user
23:04:32.0534 0772 SE2Emdm ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:04:32.0534 0772 WSIMD ( UnsignedFile.Multi.Generic ) - skipped by user
23:04:32.0534 0772 WSIMD ( UnsignedFile.Multi.Generic ) - User select action: Skip

#9 Příspěvek od **vyosek** » 07 dub 2013 08:26

Stahnete Malwarebytes Anti-Rootkit http://www.bleepingcomputer.com/downloa ... i-rootkit/

Ulozte nejlepe na Plochu a rozbalte
Spustte kliknutim na mbanr
Nyni postupne kliknete na Next a Update
Po dokonceni update (aktualizace) databaze kliknete opet na Next
Nechte zaskrtnute vsechny tri moznosti a klinete na Scan cimz spustite prohledavani PC
Po dokonceni skenu (cca 5 minutek) zkontrolujte, zda-li je u vsech nalezu (samozrejme pokud budou) zatrzitko
Tez zkontrolujte, jetsli je zatrzitko u Create Restore point
Nyni kliknete na CleanUp cimz nalezenou infekci odstranime
PC bude restartovan
Slozka mbar by mela obsahovat log (a zrejme se i sam otevre) mbar-log-rok-mesic-den (hodina-minuta-sekunda).txt, ten mi sem dejte

Eduard Stejskal

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.01.0.1022

(c) Malwarebytes Corporation 2011-2012

OS version: 5.1.2600 Windows XP Service Pack 3 x86

Account is Administrative

Internet Explorer version: 6.0.2900.5512

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED
CPU speed: 1.002000 GHz
Memory total: 536244224, free: 116695040

------------ Kernel report ------------
04/07/2013 18:02:49
------------ Loaded modules -----------
\WINDOWS\system32\ntoskrnl.exe
\WINDOWS\system32\hal.dll
\WINDOWS\system32\KDCOM.DLL
\WINDOWS\system32\BOOTVID.dll
ACPI.sys
\WINDOWS\system32\DRIVERS\WMILIB.SYS
pci.sys
isapnp.sys
ohci1394.sys
\WINDOWS\System32\DRIVERS\1394BUS.SYS
compbatt.sys
\WINDOWS\System32\DRIVERS\BATTC.SYS
intelide.sys
\WINDOWS\system32\DRIVERS\PCIIDEX.SYS
pcmcia.sys
MountMgr.sys
ftdisk.sys
PartMgr.sys
VolSnap.sys
atapi.sys
disk.sys
\WINDOWS\System32\DRIVERS\CLASSPNP.SYS
fltmgr.sys
sr.sys
Fastfat.sys
KSecDD.sys
WudfPf.sys
NDIS.sys
Mup.sys
agp440.sys
\SystemRoot\System32\DRIVERS\p3.sys
\SystemRoot\System32\DRIVERS\CmBatt.sys
\SystemRoot\system32\DRIVERS\atimtai.sys
\SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
\SystemRoot\system32\DRIVERS\ar5211.sys
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbohci.sys
\SystemRoot\System32\DRIVERS\i8042prt.sys
\SystemRoot\System32\DRIVERS\mouclass.sys
\SystemRoot\System32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\fdc.sys
\SystemRoot\system32\DRIVERS\serial.sys
\SystemRoot\system32\DRIVERS\serenum.sys
\SystemRoot\System32\DRIVERS\parport.sys
\SystemRoot\system32\DRIVERS\imapi.sys
\SystemRoot\System32\DRIVERS\cdrom.sys
\SystemRoot\System32\DRIVERS\redbook.sys
\SystemRoot\System32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\usbuhci.sys
\SystemRoot\system32\drivers\es198x.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\System32\DRIVERS\EL556ND5.sys
\SystemRoot\System32\DRIVERS\WDHAALBA.sys
\SystemRoot\System32\Drivers\Modem.SYS
\SystemRoot\System32\DRIVERS\audstub.sys
\SystemRoot\System32\DRIVERS\rasirda.sys
\SystemRoot\System32\DRIVERS\TDI.SYS
\SystemRoot\System32\DRIVERS\rasl2tp.sys
\SystemRoot\System32\DRIVERS\ndistapi.sys
\SystemRoot\System32\DRIVERS\ndiswan.sys
\SystemRoot\System32\DRIVERS\raspppoe.sys
\SystemRoot\System32\DRIVERS\raspptp.sys
\SystemRoot\System32\DRIVERS\psched.sys
\SystemRoot\System32\DRIVERS\msgpc.sys
\SystemRoot\System32\DRIVERS\ptilink.sys
\SystemRoot\System32\DRIVERS\raspti.sys
\SystemRoot\System32\DRIVERS\rdpdr.sys
\SystemRoot\System32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\seehcri.sys
\SystemRoot\System32\DRIVERS\swenum.sys
\SystemRoot\System32\DRIVERS\update.sys
\SystemRoot\System32\DRIVERS\mssmbios.sys
\SystemRoot\system32\DRIVERS\wsimd.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\System32\Drivers\Fs_Rec.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\Drivers\mnmdd.SYS
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\System32\DRIVERS\rasacd.sys
\SystemRoot\System32\DRIVERS\ipsec.sys
\SystemRoot\System32\DRIVERS\tcpip.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\System32\drivers\afd.sys
\SystemRoot\System32\DRIVERS\netbios.sys
\SystemRoot\System32\DRIVERS\rdbss.sys
\SystemRoot\System32\DRIVERS\mrxsmb.sys
\SystemRoot\System32\Drivers\Fips.SYS
\SystemRoot\system32\DRIVERS\ipnat.sys
\SystemRoot\System32\DRIVERS\wanarp.sys
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\System32\DRIVERS\mouhid.sys
\SystemRoot\System32\Drivers\Ntfs.SYS
\SystemRoot\System32\Drivers\Udfs.SYS
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\System32\watchdog.sys
\SystemRoot\System32\drivers\dxg.sys
\SystemRoot\System32\drivers\dxgthk.sys
\SystemRoot\System32\atidvai.dll
\SystemRoot\System32\DRIVERS\irda.sys
\SystemRoot\System32\DRIVERS\ndisuio.sys
\SystemRoot\System32\DRIVERS\mrxdav.sys
\SystemRoot\System32\Drivers\ParVdm.SYS
\SystemRoot\system32\drivers\npf.sys
\SystemRoot\System32\DRIVERS\srv.sys
\SystemRoot\system32\drivers\wdmaud.sys
\SystemRoot\system32\drivers\sysaudio.sys
\SystemRoot\System32\Drivers\HTTP.sys
\??\C:\WINDOWS\system32\drivers\mbamchameleon.sys
\??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys
\WINDOWS\System32\ntdll.dll
----------- End -----------
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xffffffff82393ab8
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IdeDeviceP0T0L0-3\
Lower Device Object: 0xffffffff8234dd98
Lower Device Driver Name: \Driver\atapi\
Driver name found: atapi
Initialization returned 0x0
Load Function returned 0x0
Downloaded database version: v2013.04.07.05
Downloaded database version: v2013.03.25.01
Initializing...
Done!
<<<2>>>
Device number: 0, partition: 1
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffffffff82393ab8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff82394900, DeviceName: Unknown, DriverName: \Driver\PartMgr\
DevicePointer: 0xffffffff82393ab8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xffffffff8234dd98, DeviceName: \Device\Ide\IdeDeviceP0T0L0-3\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0xffffffffe237b4b0, 0xffffffff82393ab8, 0xffffffff8206b5f0
Lower DeviceData: 0xffffffffe1861530, 0xffffffff8234dd98, 0xffffffff81f72378
<<<3>>>
Volume: C:
File system type: FAT
SectorSize = 512, ClusterSize = 8192 bytes
Scanning directory: C:\WINDOWS\system32\drivers...
<<<2>>>
Device number: 0, partition: 1
<<<3>>>
Volume: C:
File system type: FAT
SectorSize = 512, ClusterSize = 8192 bytes
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 80

Partition information:

Partition 0 type is Other (0xc)
Partition is ACTIVE.
Partition starts at LBA: 63 Numsec = 19551042
Partition file system is FAT32
Partition is bootable

Partition 1 type is Extended with LBA (0xf)
Partition is NOT ACTIVE.
Partition starts at LBA: 19551105 Numsec = 19518975

Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Disk Size: 20003880960 bytes
Sector size: 512 bytes

Scanning physical sectors of unpartitioned space on drive 0 (1-62-39050080-39070080)...
Done!
Performing system, memory and registry scan...
<<<2>>>
Device number: 0, partition: 2
<<<3>>>
Volume: D:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Infected: c:\WINDOWS\sy.exe --> [Trojan.Downloader.FW]
Infected: c:\WINDOWS\system32\_id.dat --> [Malware.Trace]
Infected: HKLM\SOFTWARE\MICROSOFT\ShipTr --> [Trojan.ShipUp]
Done!
Scan finished
Creating System Restore point...
Scheduling clean up...
<<<2>>>
Device number: 0, partition: 1
<<<3>>>
Volume: C:
File system type: FAT
SectorSize = 512, ClusterSize = 8192 bytes
<<<2>>>
Device number: 0, partition: 2
<<<3>>>
Volume: D:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Removal scheduling successful. System shutdown needed.
System shutdown occurred
=======================================

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.01.0.1022

(c) Malwarebytes Corporation 2011-2012

OS version: 5.1.2600 Windows XP Service Pack 3 x86

Account is Administrative

Internet Explorer version: 6.0.2900.5512

File system is: FAT32
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED
CPU speed: 1.002000 GHz
Memory total: 536244224, free: 336850944

Removal queue found; removal started
Removing c:\WINDOWS\sy.exe...
Removing c:\WINDOWS\system32\_id.dat...
Removal finished
=======================================

#11 Příspěvek od **vyosek** » 08 dub 2013 16:42

Spustte znovu AdwCleaner

Pokud pouzivate Win Vista ci W7, kliknete na AdwCleaner pravym a dejte Run As Administrator ci Spustit jako spravce
Kliknete na Smazat
PC provede opravu, restartuje se a da Vam log (C:\AdwCleaner [S1].txt) , jeho obsah vlozte sem

VIRY.CZ

Prosím o kontrolu Logu

Prosím o kontrolu Logu

Re: Prosím o kontrolu Logu

Re: Prosím o kontrolu Logu

Re: Prosím o kontrolu Logu

Re: Prosím o kontrolu Logu

Re: Prosím o kontrolu Logu

Re: Prosím o kontrolu Logu

Re: Prosím o kontrolu Logu

Re: Prosím o kontrolu Logu

Re: Prosím o kontrolu Logu

Re: Prosím o kontrolu Logu