========== Files - Modified Within 30 Days ==========
[2011.02.02 18:18:33 | 000,013,440 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.02.02 18:18:33 | 000,013,440 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.02.02 18:16:08 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Users\Kokes\Desktop\OTL.exe
[2011.02.02 18:13:29 | 000,001,828 | ---- | M] () -- C:\Users\Public\Desktop\McAfee AntiVirus Plus.lnk
[2011.02.02 18:11:29 | 000,000,946 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.02.02 18:11:13 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.02.02 18:11:07 | 3220,037,632 | -HS- | M] () -- C:\hiberfil.sys
[2011.02.02 00:18:18 | 000,062,476 | ---- | M] () -- C:\Windows\SysNative\BMXStateBkp-{00000003-00000000-00000006-00001102-00000005-00311102}.rfx
[2011.02.02 00:18:18 | 000,062,476 | ---- | M] () -- C:\Windows\SysNative\BMXState-{00000003-00000000-00000006-00001102-00000005-00311102}.rfx
[2011.02.02 00:18:18 | 000,000,788 | ---- | M] () -- C:\Windows\SysNative\DVCState-{00000003-00000000-00000006-00001102-00000005-00311102}.rfx
[2011.02.01 23:41:00 | 000,000,950 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.02.01 23:35:18 | 000,007,610 | ---- | M] () -- C:\Users\Kokes\AppData\Local\resmon.resmoncfg
[2011.02.01 21:22:28 | 000,003,288 | ---- | M] () -- C:\bootsqm.dat
[2011.02.01 20:51:41 | 000,000,258 | ---- | M] () -- C:\Users\Kokes\Documents\cc_20110201_205127.reg
[2011.02.01 20:40:12 | 000,001,908 | ---- | M] () -- C:\Windows\diagwrn.xml
[2011.02.01 20:40:12 | 000,001,908 | ---- | M] () -- C:\Windows\diagerr.xml
[2011.02.01 20:20:06 | 000,000,159 | RH-- | M] () -- C:\Windows\ctfile.rfc
[2011.01.30 22:30:47 | 000,270,744 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011.01.30 22:30:36 | 451,904,735 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2011.01.30 21:23:33 | 000,001,980 | ---- | M] () -- C:\Users\Kokes\Desktop\CrystalDiskInfo.lnk
[2011.01.30 00:49:03 | 000,000,512 | ---- | M] () -- C:\Users\Kokes\Documents\cc_20110130_004854.reg
[2011.01.29 00:40:39 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.01.28 23:18:49 | 000,004,364 | ---- | M] () -- C:\Users\Kokes\Documents\cc_20110128_231845.reg
[2011.01.28 23:18:32 | 000,082,640 | ---- | M] () -- C:\Users\Kokes\Documents\cc_20110128_231810.reg
[2011.01.28 23:15:43 | 000,001,007 | ---- | M] () -- C:\Users\Kokes\Desktop\CCleaner.lnk
[2011.01.28 19:38:33 | 000,001,724 | ---- | M] () -- C:\Users\Public\Desktop\Defraggler.lnk
[2011.01.28 19:38:29 | 000,002,255 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011.01.28 19:38:29 | 000,002,239 | ---- | M] () -- C:\Users\Kokes\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011.01.25 19:24:38 | 000,001,770 | ---- | M] () -- C:\Users\Kokes\AppData\Roaming\Profile0.dat
[2011.01.19 20:36:19 | 000,215,128 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2011.01.19 20:36:19 | 000,215,128 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2011.01.17 20:51:03 | 000,215,128 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2011.01.05 17:52:35 | 000,006,523 | ---- | M] () -- C:\Users\Public\Documents\stalke~1.ltx
========== Files Created - No Company Name ==========
[2011.02.01 21:22:28 | 000,003,288 | ---- | C] () -- C:\bootsqm.dat
[2011.02.01 21:19:05 | 000,062,476 | ---- | C] () -- C:\Windows\SysNative\BMXStateBkp-{00000003-00000000-00000006-00001102-00000005-00311102}.rfx
[2011.02.01 21:19:05 | 000,062,476 | ---- | C] () -- C:\Windows\SysNative\BMXState-{00000003-00000000-00000006-00001102-00000005-00311102}.rfx
[2011.02.01 21:19:05 | 000,000,788 | ---- | C] () -- C:\Windows\SysNative\DVCState-{00000003-00000000-00000006-00001102-00000005-00311102}.rfx
[2011.02.01 20:51:28 | 000,000,258 | ---- | C] () -- C:\Users\Kokes\Documents\cc_20110201_205127.reg
[2011.02.01 20:39:59 | 000,001,908 | ---- | C] () -- C:\Windows\diagwrn.xml
[2011.02.01 20:39:59 | 000,001,908 | ---- | C] () -- C:\Windows\diagerr.xml
[2011.01.30 22:30:36 | 451,904,735 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2011.01.30 21:23:33 | 000,001,980 | ---- | C] () -- C:\Users\Kokes\Desktop\CrystalDiskInfo.lnk
[2011.01.30 00:48:57 | 000,000,512 | ---- | C] () -- C:\Users\Kokes\Documents\cc_20110130_004854.reg
[2011.01.29 00:40:39 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.01.28 23:18:47 | 000,004,364 | ---- | C] () -- C:\Users\Kokes\Documents\cc_20110128_231845.reg
[2011.01.28 23:18:17 | 000,082,640 | ---- | C] () -- C:\Users\Kokes\Documents\cc_20110128_231810.reg
[2011.01.28 23:15:43 | 000,001,007 | ---- | C] () -- C:\Users\Kokes\Desktop\CCleaner.lnk
[2011.01.28 19:38:33 | 000,001,724 | ---- | C] () -- C:\Users\Public\Desktop\Defraggler.lnk
[2011.01.28 19:38:29 | 000,002,255 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011.01.28 19:38:29 | 000,002,239 | ---- | C] () -- C:\Users\Kokes\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011.01.28 19:36:51 | 000,000,950 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.01.28 19:36:50 | 000,000,946 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.01.25 18:24:42 | 000,001,770 | ---- | C] () -- C:\Users\Kokes\AppData\Roaming\Profile0.dat
[2010.12.09 21:55:02 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2010.10.14 01:36:44 | 000,179,263 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2010.08.18 17:25:05 | 000,000,331 | ---- | C] () -- C:\Windows\game.ini
[2010.03.08 21:31:03 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2010.03.01 19:48:28 | 000,001,039 | ---- | C] () -- C:\ProgramData\VodafoneConnectorService.log
[2010.01.22 20:35:00 | 000,007,610 | ---- | C] () -- C:\Users\Kokes\AppData\Local\resmon.resmoncfg
[2010.01.09 11:39:16 | 000,000,093 | ---- | C] () -- C:\Users\Kokes\AppData\Local\fusioncache.dat
[2010.01.08 18:36:42 | 000,734,870 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2009.12.22 21:47:24 | 000,148,480 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2009.12.22 21:47:24 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
[2009.12.22 21:42:02 | 000,002,560 | ---- | C] () -- C:\Windows\SysWow64\CTXFIRES.DLL
[2009.12.22 21:41:59 | 000,020,893 | ---- | C] () -- C:\Windows\SysWow64\instwdm.ini
[2009.12.22 21:41:59 | 000,000,321 | ---- | C] () -- C:\Windows\SysWow64\kill.ini
[2009.12.22 21:41:59 | 000,000,054 | ---- | C] () -- C:\Windows\SysWow64\ctzapxx.ini
[2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2008.07.23 17:50:52 | 003,596,288 | ---- | C] () -- C:\Windows\SysWow64\qt-dx331.dll
[2008.07.23 17:46:38 | 000,012,288 | ---- | C] () -- C:\Windows\SysWow64\DivXWMPExtType.dll
[2007.07.19 12:50:12 | 000,104,520 | ---- | C] () -- C:\Windows\SysWow64\OSD.dll
========== LOP Check ==========
[2010.02.17 20:22:35 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\Atari
[2010.06.07 19:26:11 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\Bioshock2
[2010.12.29 21:30:31 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\GetRightToGo
[2010.03.07 21:24:40 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\ID3-TagIT 3
[2010.03.01 19:59:26 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\LG Electronics
[2010.01.13 20:18:56 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\n52te
[2010.12.19 19:12:38 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\thriXXX
[2010.03.01 19:59:26 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\{D94BA408-F110-488B-A65E-3AE7945F79E6}
[2011.01.28 18:04:17 | 000,032,574 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Steam" = "C:\Program Files (x86)\Steam\Steam.exe" -silent -- [2010.11.17 14:23:52 | 001,242,448 | ---- | M] (Valve Corporation)
"Sidebar" = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun -- [2009.07.14 02:39:41 | 001,475,072 | ---- | M] (Microsoft Corporation)
"CTSMode" = C:\Program Files (x86)\Creative\AutoMode Switcher\CTSMode.exe /trayicon /nt -- [2008.10.29 17:49:50 | 000,430,080 | ---- | M] (Creative Technology Ltd)
< c:\windows\*.* /U >
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2010.03.27 16:55:12 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\Adobe
[2010.02.17 20:22:35 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\Atari
[2009.12.22 21:38:28 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\ATI
[2010.06.07 19:26:11 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\Bioshock2
[2010.07.31 17:47:34 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\Creative
[2010.03.08 21:06:12 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\DivX
[2010.12.29 21:30:31 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\GetRightToGo
[2010.03.07 21:24:40 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\ID3-TagIT 3
[2009.12.22 21:20:51 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\Identities
[2010.03.01 19:59:26 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\LG Electronics
[2009.12.22 23:22:21 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\Macromedia
[2011.01.29 00:40:44 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\Malwarebytes
[2009.07.14 08:44:38 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\Media Center Programs
[2010.12.10 21:34:33 | 000,000,000 | --SD | M] -- C:\Users\Kokes\AppData\Roaming\Microsoft
[2009.12.22 22:33:02 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\Mozilla
[2010.01.13 20:18:56 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\n52te
[2010.12.05 14:40:50 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\Real
[2009.12.22 22:51:55 | 000,000,000 | R--D | M] -- C:\Users\Kokes\AppData\Roaming\SecuROM
[2010.12.19 19:12:38 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\thriXXX
[2010.03.01 19:59:26 | 000,000,000 | ---D | M] -- C:\Users\Kokes\AppData\Roaming\{D94BA408-F110-488B-A65E-3AE7945F79E6}
< %APPDATA%\*.exe /s >
[2009.10.27 14:44:32 | 000,024,576 | ---- | M] ((주)테크노니아) -- C:\Users\Kokes\AppData\Roaming\LG Electronics\LG PC Suite III\UpdateHelper.exe
[2010.03.01 21:21:47 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Users\Kokes\AppData\Roaming\Microsoft\Installer\{E1640DA5-89B4-4F52-B15D-5DA3D14F29D4}\ARPPRODUCTICON.exe
[2010.03.01 21:21:48 | 000,049,152 | R--- | M] (Acresso Software Inc.) -- C:\Users\Kokes\AppData\Roaming\Microsoft\Installer\{E1640DA5-89B4-4F52-B15D-5DA3D14F29D4}\ExeInvoker.exe_431B2BA896014E69B34114BFD8E7B136.exe
[2010.03.01 21:21:48 | 000,049,152 | R--- | M] (Acresso Software Inc.) -- C:\Users\Kokes\AppData\Roaming\Microsoft\Installer\{E1640DA5-89B4-4F52-B15D-5DA3D14F29D4}\ExeLauncher.exe_5933C76ED597469A944A1DFEB496348C.exe
[2010.03.01 21:21:48 | 000,049,152 | R--- | M] (Acresso Software Inc.) -- C:\Users\Kokes\AppData\Roaming\Microsoft\Installer\{E1640DA5-89B4-4F52-B15D-5DA3D14F29D4}\ExeRemover.exe_5C5473BE36444FA89D0788993908FE0F.exe
[2010.03.01 21:21:48 | 000,049,152 | R--- | M] (Acresso Software Inc.) -- C:\Users\Kokes\AppData\Roaming\Microsoft\Installer\{E1640DA5-89B4-4F52-B15D-5DA3D14F29D4}\InstallUSB.exe_0912055C2AF14064B183AEB6F12A2FCB.exe
[2010.03.01 21:21:48 | 000,049,152 | R--- | M] (Acresso Software Inc.) -- C:\Users\Kokes\AppData\Roaming\Microsoft\Installer\{E1640DA5-89B4-4F52-B15D-5DA3D14F29D4}\InstallUSB64.exe_9C05A9D45C0842CF949276F7724FAEC9.exe
[2010.03.01 21:21:48 | 000,049,152 | R--- | M] (Acresso Software Inc.) -- C:\Users\Kokes\AppData\Roaming\Microsoft\Installer\{E1640DA5-89B4-4F52-B15D-5DA3D14F29D4}\InstallUSB9x.exe_F776472D82DA4AFDAFD0AAF1CF858DF7.exe
[2010.03.01 21:21:48 | 000,049,152 | R--- | M] (Acresso Software Inc.) -- C:\Users\Kokes\AppData\Roaming\Microsoft\Installer\{E1640DA5-89B4-4F52-B15D-5DA3D14F29D4}\UninstallShld.exe_DC44F1F136264642BD94B64FFC464DD7.exe
[2010.03.01 21:21:48 | 000,049,152 | R--- | M] (Acresso Software Inc.) -- C:\Users\Kokes\AppData\Roaming\Microsoft\Installer\{E1640DA5-89B4-4F52-B15D-5DA3D14F29D4}\UninstallShld64.ex_A20ACFB15A794B1C9E6A3DFBB9D252B8.exe
[2010.03.01 21:21:48 | 000,049,152 | R--- | M] (Acresso Software Inc.) -- C:\Users\Kokes\AppData\Roaming\Microsoft\Installer\{E1640DA5-89B4-4F52-B15D-5DA3D14F29D4}\UninstallShld9x.ex_8E637EE98DAB4D9CB1D54202EAD617F4.exe
[2010.03.01 21:21:48 | 000,049,152 | R--- | M] (Acresso Software Inc.) -- C:\Users\Kokes\AppData\Roaming\Microsoft\Installer\{E1640DA5-89B4-4F52-B15D-5DA3D14F29D4}\UninstallUSB.exe_CC88D403E3234E61A79375366C5599C5.exe
[2010.03.01 21:21:48 | 000,049,152 | R--- | M] (Acresso Software Inc.) -- C:\Users\Kokes\AppData\Roaming\Microsoft\Installer\{E1640DA5-89B4-4F52-B15D-5DA3D14F29D4}\UninstallUSB64.exe_135957F0A3F84224B026EA24C7F4E26D.exe
[2010.03.01 21:21:48 | 000,049,152 | R--- | M] (Acresso Software Inc.) -- C:\Users\Kokes\AppData\Roaming\Microsoft\Installer\{E1640DA5-89B4-4F52-B15D-5DA3D14F29D4}\UninstallUSB9x.exe_001C2C6090FF48C495F16AE3FD1ED9C9.exe
[2008.12.02 07:40:14 | 000,028,672 | R--- | M] () -- C:\Users\Kokes\AppData\Roaming\Microsoft\Windows\Templates\F\UninstallMSI.exe
[2008.12.01 12:29:00 | 000,014,336 | R--- | M] () -- C:\Users\Kokes\AppData\Roaming\Microsoft\Windows\Templates\F\UninstallMSI32.exe
[2008.12.01 12:29:00 | 000,016,896 | R--- | M] () -- C:\Users\Kokes\AppData\Roaming\Microsoft\Windows\Templates\F\UninstallMSI64.exe
[2009.06.04 12:51:24 | 001,413,256 | R--- | M] () -- C:\Users\Kokes\AppData\Roaming\Microsoft\Windows\Templates\F\USBAutoRun.exe
[2008.06.09 03:38:28 | 000,139,264 | R--- | M] () -- C:\Users\Kokes\AppData\Roaming\Microsoft\Windows\Templates\F\tools\LGAutorunService.exe
[2008.06.09 03:37:52 | 000,126,976 | R--- | M] () -- C:\Users\Kokes\AppData\Roaming\Microsoft\Windows\Templates\F\tools\LGAutoRunSvcTerminate.exe
[2009.05.12 07:46:36 | 000,212,992 | R--- | M] () -- C:\Users\Kokes\AppData\Roaming\Microsoft\Windows\Templates\F\tools\LGSetCDROMAutoRun.exe
[2009.01.27 07:28:16 | 003,817,737 | R--- | M] (Vodafone, support@vodafone.com) -- C:\Users\Kokes\AppData\Roaming\Microsoft\Windows\Templates\F\tools\VTP V2.3.20.2500 Compressed Embedded Setup.exe
[2010.03.07 18:14:43 | 000,439,816 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Kokes\AppData\Roaming\Real\Update\setup3.10\setup.exe
[2010.03.08 18:54:23 | 000,079,368 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Kokes\AppData\Roaming\Real\Update\setup3.10\RUP\vista.exe
[2010.07.06 18:35:05 | 000,439,816 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Kokes\AppData\Roaming\Real\Update\setup3.11\setup.exe
[2010.12.01 18:09:35 | 000,506,024 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Kokes\AppData\Roaming\Real\Update\setup3.13\setup.exe
< MD5 for: AGP440.SYS >
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\ERDNT\cache64\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
< MD5 for: CDROM.SYS >
[2009.07.14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\drivers\cdrom.sys
[2009.07.14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys
[2009.07.14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\ERDNT\cache86\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\ERDNT\cache64\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2009.07.14 02:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\ERDNT\cache64\cryptsvc.dll
[2009.07.14 02:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\SysNative\cryptsvc.dll
[2009.07.14 02:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_d1f48b0bb4805490\cryptsvc.dll
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\ERDNT\cache86\cryptsvc.dll
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\SysWOW64\cryptsvc.dll
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\SysWOW64\explorer.exe
[2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2009.08.03 07:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2009.10.31 07:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\ERDNT\cache86\explorer.exe
[2009.10.31 07:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\explorer.exe
[2009.10.31 07:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009.08.03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2009.10.31 07:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009.08.03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009.07.14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009.10.31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2009.08.03 07:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
< MD5 for: HAL.DLL >
[2009.07.14 02:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\SysNative\hal.dll
[2009.07.14 02:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll
< MD5 for: IASTORV.SYS >
[2009.07.14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\drivers\iaStorV.sys
[2009.07.14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb83b34e1453\iaStorV.sys
[2009.07.14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\drivers\isapnp.sys
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\isapnp.sys
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\isapnp.sys
< MD5 for: LSASS.EXE >
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\ERDNT\cache64\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\SysNative\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_023f7c69767c3edd\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_023e7e05767d22ad\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_02bd4ae48fa2de68\lsass.exe
< MD5 for: NDIS.SYS >
[2009.07.14 02:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\ERDNT\cache64\ndis.sys
[2009.07.14 02:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\SysNative\drivers\ndis.sys
[2009.07.14 02:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf\ndis.sys
< MD5 for: NETLOGON.DLL >
[2009.07.14 02:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\ERDNT\cache64\netlogon.dll
[2009.07.14 02:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\SysNative\netlogon.dll
[2009.07.14 02:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\ERDNT\cache86\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll
< MD5 for: NVRAID.SYS >
[2009.07.14 02:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysNative\drivers\nvraid.sys
[2009.07.14 02:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvraid.sys
[2009.07.14 02:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2009.07.14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\drivers\nvstor.sys
[2009.07.14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys
[2009.07.14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys
< MD5 for: SCECLI.DLL >
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\ERDNT\cache86\scecli.dll
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009.07.14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\ERDNT\cache64\scecli.dll
[2009.07.14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\SysNative\scecli.dll
[2009.07.14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
< MD5 for: SMSS.EXE >
[2009.07.14 02:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\SysNative\smss.exe
[2009.07.14 02:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\ERDNT\cache86\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\ERDNT\cache64\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: TCPIP.SYS >
[2010.06.14 07:39:16 | 001,889,152 | ---- | M] (Microsoft Corporation) MD5=542C6767C68C9D6AAACA59436B0D15C2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20733_none_0fd0b57e990e2079\tcpip.sys
[2010.06.14 07:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\ERDNT\cache64\tcpip.sys
[2010.06.14 07:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\SysNative\drivers\tcpip.sys
[2010.06.14 07:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16610_none_0f59b7ad7fe2fcc8\tcpip.sys
[2009.07.14 02:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
< MD5 for: USERINIT.EXE >
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\ERDNT\cache86\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009.07.14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\ERDNT\cache64\userinit.exe
[2009.07.14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe
[2009.07.14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009.07.14 02:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2009.10.28 08:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009.10.28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\ERDNT\cache64\winlogon.exe
[2009.10.28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\SysNative\winlogon.exe
[2009.10.28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe
< MD5 for: WS2_32.DLL >
[2009.07.14 02:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\ERDNT\cache64\ws2_32.dll
[2009.07.14 02:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\SysNative\ws2_32.dll
[2009.07.14 02:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_4eaca269e8070c6b\ws2_32.dll
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\ERDNT\cache86\ws2_32.dll
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\SysWOW64\ws2_32.dll
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
< End of report >
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zpomaleny net
Moderátor: Moderátoři
Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Re: Zpomaleny net
Otestujte na www.virustotal.com
C:\Windows\ctfile.rfc
-Do okénka zkopírujte cestu k souboru , pokud napíše, že soubor byl už testován, dejte otestovat znovu.
-Sem vložte link s výsledky.
Prosím ještě nový log z crystaldisk info.
C:\Windows\ctfile.rfc
-Do okénka zkopírujte cestu k souboru , pokud napíše, že soubor byl už testován, dejte otestovat znovu.
-Sem vložte link s výsledky.
Prosím ještě nový log z crystaldisk info.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Zpomaleny net
Soubor je OK
----------------------------------------------------------------------------
CrystalDiskInfo 3.10.0 (C) 2008-2010 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 7 Home Premium Edition [6.1 Build 7600] (x64)
Date : 2011/02/02 22:19:20
-- Controller Map ----------------------------------------------------------
- ATA Channel 0 (0) [ATA]
- ATA Channel 1 (1) [ATA]
+ Standard Dual Channel PCI IDE Controller [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ Standard Dual Channel PCI IDE Controller [ATA]
+ ATA Channel 0 (0)
- SAMSUNG HD322HJ ATA Device
+ ATA Channel 1 (1)
- TSSTcorp CDDVDW SH-S223Q ATA Device
-- Disk List ---------------------------------------------------------------
(1) SAMSUNG HD322HJ : 319.9 GB [0-0-1, pd1]
----------------------------------------------------------------------------
(1) SAMSUNG HD322HJ
----------------------------------------------------------------------------
Model : SAMSUNG HD322HJ
Firmware : 1AC01113
Serial Number : S17AJ9CQ902607
Disk Size : 319.9 GB (8.4/137.4/319.9)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 624876202
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ATA8-ACS version 3b
Transfer Mode : SATA/300
Power On Hours : 3753 hod.
Power On Count : 887 krát
Temparature : 27 C (80 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0000h [OFF]
AAM Level : FE00h [OFF]
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _51 000000000000 Počet chyb čtení
03 _93 _93 _11 000000000B90 Čas na roztočení ploten
04 _99 _99 __0 0000000003F9 Počet spuštění/zastavení
05 100 100 _10 000000000000 Počet přemapovaných sektorů
07 100 100 _51 000000000000 Počet chybných hledání
08 100 100 _15 000000000000 Čas potřebný na vyhledání
09 _99 _99 __0 000000000EA9 Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _99 _99 __0 000000000377 Počet cyklů zapnutí zařízení
0D 100 100 __0 000000000000 Počet pokusů o softvérové opravení chyb při čtení programů z disku
B7 100 100 __0 000000000000 Neznámý
B8 100 100 __0 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 100 __0 000000000000 Časový limit příkazu
BE _74 _65 __0 00001A0E001A Teplota toku vzduchu
C2 _73 _63 __0 00001B0E001B Teplota
C3 100 100 __0 000000472330 Počet oprav chybného čtení
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 100 _99 __0 000000000077 Počet chyb v kontrolním součtu UltraDMA
C8 100 100 __0 000000000000 Počet chyb při zápisu sektorů
C9 100 100 __0 000000000000 Počet chyb při čtení programů z disku
-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 00 40 3F FF C8 37 00 10 88 56 02 2A 00 3F 00 00 .@?..7...V.*.?..
010: 00 00 00 00 53 31 37 41 4A 39 43 51 39 30 32 36 ....S17AJ9CQ9026
020: 30 37 20 20 20 20 20 20 00 03 80 00 00 04 31 41 07 ......1A
030: 43 30 31 31 31 33 53 41 4D 53 55 4E 47 20 48 44 C01113SAMSUNG HD
040: 33 32 32 48 4A 20 20 20 20 20 20 20 20 20 20 20 322HJ
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10 ..
060: 00 00 2F 00 40 00 02 00 02 00 00 07 3F FF 00 10 ../.@.......?...
070: 00 3F FC 10 00 FB 01 10 FF FF 0F FF 00 00 00 07 .?..............
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00 ...x.x.x.x......
090: 00 00 00 00 00 00 00 1F 17 06 00 00 00 4C 00 40 .............L.@
0A0: 00 F8 00 52 74 6B 7F 69 41 33 74 69 BC 41 41 23 ...Rtk.iA3ti.AA#
0B0: 40 FF 00 1C 00 1C 00 00 FF FE 00 00 FE 00 00 08 @...............
0C0: 00 05 00 5D 86 A0 00 01 DA AA 25 3E 00 00 00 00 ...]......%>....
0D0: 00 64 00 00 00 00 00 00 50 00 0F 00 08 09 62 70 .d......P.....bp
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 1C ..............@.
0F0: 40 1C 00 00 00 00 00 00 00 00 00 00 00 00 00 00 @...............
100: 00 29 00 00 00 00 00 00 00 00 00 00 00 00 00 00 .)..............
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 3F 00 00 .............?..
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1D0: 00 00 00 00 00 01 04 00 00 00 00 00 00 00 00 00 ................
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 50 A5 ..............P.
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 00 10 0F 01 64 00 00 64 00 00 00 00 00 00 07 03 ....d..d........
010: 5D 00 90 5D 00 0B 00 00 00 00 32 04 63 00 F9 63 ]..]......2.c..c
020: 00 03 00 00 00 00 33 05 64 00 00 64 00 00 00 00 ......3.d..d....
030: 00 00 0F 07 64 00 00 64 00 00 00 00 00 00 25 08 ....d..d......%.
040: 64 00 00 64 00 00 00 00 00 00 32 09 63 00 A9 63 d..d......2.c..c
050: 00 0E 00 00 00 00 33 0A 64 00 00 64 00 00 00 00 ......3.d..d....
060: 00 00 12 0B 64 00 00 64 00 00 00 00 00 00 32 0C ....d..d......2.
070: 63 00 77 63 00 03 00 00 00 00 0E 0D 64 00 00 64 c.wc........d..d
080: 00 00 00 00 00 00 32 B7 64 00 00 64 00 00 00 00 ......2.d..d....
090: 00 00 33 B8 64 00 00 64 00 00 00 00 00 00 32 BB ..3.d..d......2.
0A0: 64 00 00 64 00 00 00 00 00 00 32 BC 64 00 00 64 d..d......2.d..d
0B0: 00 00 00 00 00 00 22 BE 4A 00 1A 41 0E 00 00 1A ......".J..A....
0C0: 00 00 22 C2 49 00 1B 3F 0E 00 00 1B 00 00 1A C3 ..".I..?........
0D0: 64 00 30 64 47 23 00 00 00 00 32 C4 64 00 00 64 d.0dG#....2.d..d
0E0: 00 00 00 00 00 00 12 C5 64 00 00 64 00 00 00 00 ........d..d....
0F0: 00 00 30 C6 64 00 00 64 00 00 00 00 00 00 3E C7 ..0.d..d......>.
100: 64 00 77 63 00 00 00 00 00 00 0A C8 64 00 00 64 d.wc........d..d
110: 00 00 00 00 00 00 0A C9 64 00 00 64 00 00 00 00 ........d..d....
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
160: 00 00 00 00 00 00 00 00 00 00 00 00 0F 33 7B 00 .............3{.
170: 00 03 00 01 42 02 42 08 00 00 00 00 00 00 00 00 ....B.B.........
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 9E 00 ................
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 00 10 33 01 00 00 00 00 00 00 00 00 00 00 0B 03 ..3.............
010: 00 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 ................
020: 00 00 00 00 00 00 0A 05 00 00 00 00 00 00 00 00 ................
030: 00 00 33 07 00 00 00 00 00 00 00 00 00 00 0F 08 ..3.............
040: 00 00 00 00 00 00 00 00 00 00 00 09 00 00 00 00 ................
050: 00 00 00 00 00 00 33 0A 00 00 00 00 00 00 00 00 ......3.........
060: 00 00 00 0B 00 00 00 00 00 00 00 00 00 00 00 0C ................
070: 00 00 00 00 00 00 00 00 00 00 00 0D 00 00 00 00 ................
080: 00 00 00 00 00 00 00 B7 00 00 00 00 00 00 00 00 ................
090: 00 00 00 B8 00 00 00 00 00 00 00 00 00 00 00 BB ................
0A0: 00 00 00 00 00 00 00 00 00 00 00 BC 00 00 00 00 ................
0B0: 00 00 00 00 00 00 00 BE 00 00 00 00 00 00 00 00 ................
0C0: 00 00 00 C2 00 00 00 00 00 00 00 00 00 00 00 C3 ................
0D0: 00 00 00 00 00 00 00 00 00 00 00 C4 00 00 00 00 ................
0E0: 00 00 00 00 00 00 00 C5 00 00 00 00 00 00 00 00 ................
0F0: 00 00 00 C6 00 00 00 00 00 00 00 00 00 00 00 C7 ................
100: 00 00 00 00 00 00 00 00 00 00 00 C8 00 00 00 00 ................
110: 00 00 00 00 00 00 00 C9 00 00 00 00 00 00 00 00 ................
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 10 00 ................
----------------------------------------------------------------------------
CrystalDiskInfo 3.10.0 (C) 2008-2010 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 7 Home Premium Edition [6.1 Build 7600] (x64)
Date : 2011/02/02 22:19:20
-- Controller Map ----------------------------------------------------------
- ATA Channel 0 (0) [ATA]
- ATA Channel 1 (1) [ATA]
+ Standard Dual Channel PCI IDE Controller [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ Standard Dual Channel PCI IDE Controller [ATA]
+ ATA Channel 0 (0)
- SAMSUNG HD322HJ ATA Device
+ ATA Channel 1 (1)
- TSSTcorp CDDVDW SH-S223Q ATA Device
-- Disk List ---------------------------------------------------------------
(1) SAMSUNG HD322HJ : 319.9 GB [0-0-1, pd1]
----------------------------------------------------------------------------
(1) SAMSUNG HD322HJ
----------------------------------------------------------------------------
Model : SAMSUNG HD322HJ
Firmware : 1AC01113
Serial Number : S17AJ9CQ902607
Disk Size : 319.9 GB (8.4/137.4/319.9)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 624876202
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ATA8-ACS version 3b
Transfer Mode : SATA/300
Power On Hours : 3753 hod.
Power On Count : 887 krát
Temparature : 27 C (80 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0000h [OFF]
AAM Level : FE00h [OFF]
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _51 000000000000 Počet chyb čtení
03 _93 _93 _11 000000000B90 Čas na roztočení ploten
04 _99 _99 __0 0000000003F9 Počet spuštění/zastavení
05 100 100 _10 000000000000 Počet přemapovaných sektorů
07 100 100 _51 000000000000 Počet chybných hledání
08 100 100 _15 000000000000 Čas potřebný na vyhledání
09 _99 _99 __0 000000000EA9 Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _99 _99 __0 000000000377 Počet cyklů zapnutí zařízení
0D 100 100 __0 000000000000 Počet pokusů o softvérové opravení chyb při čtení programů z disku
B7 100 100 __0 000000000000 Neznámý
B8 100 100 __0 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 100 __0 000000000000 Časový limit příkazu
BE _74 _65 __0 00001A0E001A Teplota toku vzduchu
C2 _73 _63 __0 00001B0E001B Teplota
C3 100 100 __0 000000472330 Počet oprav chybného čtení
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 100 _99 __0 000000000077 Počet chyb v kontrolním součtu UltraDMA
C8 100 100 __0 000000000000 Počet chyb při zápisu sektorů
C9 100 100 __0 000000000000 Počet chyb při čtení programů z disku
-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 00 40 3F FF C8 37 00 10 88 56 02 2A 00 3F 00 00 .@?..7...V.*.?..
010: 00 00 00 00 53 31 37 41 4A 39 43 51 39 30 32 36 ....S17AJ9CQ9026
020: 30 37 20 20 20 20 20 20 00 03 80 00 00 04 31 41 07 ......1A
030: 43 30 31 31 31 33 53 41 4D 53 55 4E 47 20 48 44 C01113SAMSUNG HD
040: 33 32 32 48 4A 20 20 20 20 20 20 20 20 20 20 20 322HJ
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10 ..
060: 00 00 2F 00 40 00 02 00 02 00 00 07 3F FF 00 10 ../.@.......?...
070: 00 3F FC 10 00 FB 01 10 FF FF 0F FF 00 00 00 07 .?..............
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00 ...x.x.x.x......
090: 00 00 00 00 00 00 00 1F 17 06 00 00 00 4C 00 40 .............L.@
0A0: 00 F8 00 52 74 6B 7F 69 41 33 74 69 BC 41 41 23 ...Rtk.iA3ti.AA#
0B0: 40 FF 00 1C 00 1C 00 00 FF FE 00 00 FE 00 00 08 @...............
0C0: 00 05 00 5D 86 A0 00 01 DA AA 25 3E 00 00 00 00 ...]......%>....
0D0: 00 64 00 00 00 00 00 00 50 00 0F 00 08 09 62 70 .d......P.....bp
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 1C ..............@.
0F0: 40 1C 00 00 00 00 00 00 00 00 00 00 00 00 00 00 @...............
100: 00 29 00 00 00 00 00 00 00 00 00 00 00 00 00 00 .)..............
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 3F 00 00 .............?..
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1D0: 00 00 00 00 00 01 04 00 00 00 00 00 00 00 00 00 ................
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 50 A5 ..............P.
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 00 10 0F 01 64 00 00 64 00 00 00 00 00 00 07 03 ....d..d........
010: 5D 00 90 5D 00 0B 00 00 00 00 32 04 63 00 F9 63 ]..]......2.c..c
020: 00 03 00 00 00 00 33 05 64 00 00 64 00 00 00 00 ......3.d..d....
030: 00 00 0F 07 64 00 00 64 00 00 00 00 00 00 25 08 ....d..d......%.
040: 64 00 00 64 00 00 00 00 00 00 32 09 63 00 A9 63 d..d......2.c..c
050: 00 0E 00 00 00 00 33 0A 64 00 00 64 00 00 00 00 ......3.d..d....
060: 00 00 12 0B 64 00 00 64 00 00 00 00 00 00 32 0C ....d..d......2.
070: 63 00 77 63 00 03 00 00 00 00 0E 0D 64 00 00 64 c.wc........d..d
080: 00 00 00 00 00 00 32 B7 64 00 00 64 00 00 00 00 ......2.d..d....
090: 00 00 33 B8 64 00 00 64 00 00 00 00 00 00 32 BB ..3.d..d......2.
0A0: 64 00 00 64 00 00 00 00 00 00 32 BC 64 00 00 64 d..d......2.d..d
0B0: 00 00 00 00 00 00 22 BE 4A 00 1A 41 0E 00 00 1A ......".J..A....
0C0: 00 00 22 C2 49 00 1B 3F 0E 00 00 1B 00 00 1A C3 ..".I..?........
0D0: 64 00 30 64 47 23 00 00 00 00 32 C4 64 00 00 64 d.0dG#....2.d..d
0E0: 00 00 00 00 00 00 12 C5 64 00 00 64 00 00 00 00 ........d..d....
0F0: 00 00 30 C6 64 00 00 64 00 00 00 00 00 00 3E C7 ..0.d..d......>.
100: 64 00 77 63 00 00 00 00 00 00 0A C8 64 00 00 64 d.wc........d..d
110: 00 00 00 00 00 00 0A C9 64 00 00 64 00 00 00 00 ........d..d....
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
160: 00 00 00 00 00 00 00 00 00 00 00 00 0F 33 7B 00 .............3{.
170: 00 03 00 01 42 02 42 08 00 00 00 00 00 00 00 00 ....B.B.........
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 9E 00 ................
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 00 10 33 01 00 00 00 00 00 00 00 00 00 00 0B 03 ..3.............
010: 00 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 ................
020: 00 00 00 00 00 00 0A 05 00 00 00 00 00 00 00 00 ................
030: 00 00 33 07 00 00 00 00 00 00 00 00 00 00 0F 08 ..3.............
040: 00 00 00 00 00 00 00 00 00 00 00 09 00 00 00 00 ................
050: 00 00 00 00 00 00 33 0A 00 00 00 00 00 00 00 00 ......3.........
060: 00 00 00 0B 00 00 00 00 00 00 00 00 00 00 00 0C ................
070: 00 00 00 00 00 00 00 00 00 00 00 0D 00 00 00 00 ................
080: 00 00 00 00 00 00 00 B7 00 00 00 00 00 00 00 00 ................
090: 00 00 00 B8 00 00 00 00 00 00 00 00 00 00 00 BB ................
0A0: 00 00 00 00 00 00 00 00 00 00 00 BC 00 00 00 00 ................
0B0: 00 00 00 00 00 00 00 BE 00 00 00 00 00 00 00 00 ................
0C0: 00 00 00 C2 00 00 00 00 00 00 00 00 00 00 00 C3 ................
0D0: 00 00 00 00 00 00 00 00 00 00 00 C4 00 00 00 00 ................
0E0: 00 00 00 00 00 00 00 C5 00 00 00 00 00 00 00 00 ................
0F0: 00 00 00 C6 00 00 00 00 00 00 00 00 00 00 00 C7 ................
100: 00 00 00 00 00 00 00 00 00 00 00 C8 00 00 00 00 ................
110: 00 00 00 00 00 00 00 C9 00 00 00 00 00 00 00 00 ................
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 10 00 ................
Re: Zpomaleny net
Poradím se s kolegou 
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Zpomaleny net
Takze mi neni pomoci?
Re: Zpomaleny net
Omlouvám se.
Log je ok, nevím kde je chyba
. Zkuste disk znovu zformátovat 
Log je ok, nevím kde je chyba
. Zkuste disk znovu zformátovat Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Přispějete na provoz fóra?