VIRY.CZ

snad jsem to udělal dobře

20:14:32.0359 3256 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
20:14:32.0625 3256 ============================================================
20:14:32.0640 3256 Current date / time: 2012/02/23 20:14:32.0625
20:14:32.0640 3256 SystemInfo:
20:14:32.0640 3256
20:14:32.0640 3256 OS Version: 5.1.2600 ServicePack: 3.0
20:14:32.0640 3256 Product type: Workstation
20:14:32.0640 3256 ComputerName: HAIDAS
20:14:32.0640 3256 UserName: Roman Haidaš
20:14:32.0640 3256 Windows directory: D:\WINDOWS
20:14:32.0640 3256 System windows directory: D:\WINDOWS
20:14:32.0640 3256 Processor architecture: Intel x86
20:14:32.0640 3256 Number of processors: 2
20:14:32.0640 3256 Page size: 0x1000
20:14:32.0640 3256 Boot type: Normal boot
20:14:32.0640 3256 ============================================================
20:14:33.0078 3256 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:14:33.0078 3256 \Device\Harddisk0\DR0:
20:14:33.0078 3256 MBR used
20:14:33.0078 3256 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
20:14:33.0078 3256 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x30A2000
20:14:33.0078 3256 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x30D4800, BlocksNum 0xAEBF800
20:14:33.0218 3256 Initialize success
20:14:33.0218 3256 ============================================================
20:15:15.0859 3520 ============================================================
20:15:15.0859 3520 Scan started
20:15:15.0859 3520 Mode: Manual; SigCheck; TDLFS;
20:15:15.0859 3520 ============================================================
20:15:16.0140 3520 Aavmker4 (95d1de2a6613494e853a9738d5d9acd4) D:\WINDOWS\system32\drivers\Aavmker4.sys
20:15:24.0250 3520 Aavmker4 - ok
20:15:24.0265 3520 Abiosdsk - ok
20:15:24.0281 3520 abp480n5 - ok
20:15:24.0359 3520 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) D:\WINDOWS\system32\DRIVERS\ACPI.sys
20:15:24.0625 3520 ACPI - ok
20:15:24.0671 3520 ACPIEC (afdff022a01f0b11c776f0860c3b282f) D:\WINDOWS\system32\DRIVERS\ACPIEC.sys
20:15:24.0796 3520 ACPIEC - ok
20:15:24.0796 3520 adpu160m - ok
20:15:24.0812 3520 adusbser - ok
20:15:24.0843 3520 aec (8bed39e3c35d6a489438b8141717a557) D:\WINDOWS\system32\drivers\aec.sys
20:15:24.0968 3520 aec - ok
20:15:25.0046 3520 AFD (355556d9e580915118cd7ef736653a89) D:\WINDOWS\System32\drivers\afd.sys
20:15:25.0093 3520 AFD - ok
20:15:25.0109 3520 Aha154x - ok
20:15:25.0109 3520 aic78u2 - ok
20:15:25.0125 3520 aic78xx - ok
20:15:25.0140 3520 AliIde - ok
20:15:25.0156 3520 amsint - ok
20:15:25.0171 3520 Arp1394 (b5b8a80875c1dededa8b02765642c32f) D:\WINDOWS\system32\DRIVERS\arp1394.sys
20:15:25.0296 3520 Arp1394 - ok
20:15:25.0296 3520 asc - ok
20:15:25.0312 3520 asc3350p - ok
20:15:25.0328 3520 asc3550 - ok
20:15:25.0328 3520 aswFsBlk - ok
20:15:25.0390 3520 aswMon2 (fff2dbb17a3c89f87f78d5fa72ca47fd) D:\WINDOWS\system32\drivers\aswMon2.sys
20:15:25.0406 3520 aswMon2 - ok
20:15:25.0421 3520 aswRdr (36239e24470a3dd81fae37510953cc6c) D:\WINDOWS\system32\drivers\aswRdr.sys
20:15:25.0437 3520 aswRdr - ok
20:15:25.0468 3520 aswSnx (caa846e9c83836bdc3d2d700c678db65) D:\WINDOWS\system32\drivers\aswSnx.sys
20:15:25.0500 3520 aswSnx - ok
20:15:25.0531 3520 aswSP (748ae7f2d7da33adb063fe05704a9969) D:\WINDOWS\system32\drivers\aswSP.sys
20:15:25.0562 3520 aswSP - ok
20:15:25.0578 3520 aswTdi (ca9925ce1dbd07ffe1eb357752cf5577) D:\WINDOWS\system32\drivers\aswTdi.sys
20:15:25.0593 3520 aswTdi - ok
20:15:25.0609 3520 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) D:\WINDOWS\system32\DRIVERS\asyncmac.sys
20:15:25.0765 3520 AsyncMac - ok
20:15:25.0859 3520 atapi (9f3a2f5aa6875c72bf062c712cfa2674) D:\WINDOWS\system32\DRIVERS\atapi.sys
20:15:26.0015 3520 atapi - ok
20:15:26.0031 3520 Atdisk - ok
20:15:26.0046 3520 Atmarpc (9916c1225104ba14794209cfa8012159) D:\WINDOWS\system32\DRIVERS\atmarpc.sys
20:15:26.0203 3520 Atmarpc - ok
20:15:26.0250 3520 audstub (d9f724aa26c010a217c97606b160ed68) D:\WINDOWS\system32\DRIVERS\audstub.sys
20:15:26.0406 3520 audstub - ok
20:15:26.0546 3520 Beep (da1f27d85e0d1525f6621372e7b685e9) D:\WINDOWS\system32\drivers\Beep.sys
20:15:26.0703 3520 Beep - ok
20:15:26.0750 3520 BthEnum (b279426e3c0c344893ed78a613a73bde) D:\WINDOWS\system32\DRIVERS\BthEnum.sys
20:15:26.0906 3520 BthEnum - ok
20:15:26.0921 3520 BTHMODEM (fca6f069597b62d42495191ace3fc6c1) D:\WINDOWS\system32\DRIVERS\bthmodem.sys
20:15:27.0062 3520 BTHMODEM - ok
20:15:27.0109 3520 BthPan (80602b8746d3738f5886ce3d67ef06b6) D:\WINDOWS\system32\DRIVERS\bthpan.sys
20:15:27.0234 3520 BthPan - ok
20:15:27.0281 3520 BTHPORT (f338662a6c1fc11dd9508f6dff2c06a2) D:\WINDOWS\system32\Drivers\BTHport.sys
20:15:27.0312 3520 BTHPORT - ok
20:15:27.0343 3520 BTHUSB (61364cd71ef63b0f038b7e9df00f1efa) D:\WINDOWS\system32\Drivers\BTHUSB.sys
20:15:27.0484 3520 BTHUSB - ok
20:15:27.0687 3520 catchme - ok
20:15:27.0765 3520 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) D:\WINDOWS\system32\drivers\cbidf2k.sys
20:15:27.0953 3520 cbidf2k - ok
20:15:27.0968 3520 cd20xrnt - ok
20:15:27.0984 3520 Cdaudio (c1b486a7658353d33a10cc15211a873b) D:\WINDOWS\system32\drivers\Cdaudio.sys
20:15:28.0109 3520 Cdaudio - ok
20:15:28.0140 3520 Cdfs (c885b02847f5d2fd45a24e219ed93b32) D:\WINDOWS\system32\drivers\Cdfs.sys
20:15:28.0265 3520 Cdfs - ok
20:15:28.0296 3520 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) D:\WINDOWS\system32\DRIVERS\cdrom.sys
20:15:28.0437 3520 Cdrom - ok
20:15:28.0437 3520 Changer - ok
20:15:28.0484 3520 CmBatt (0f6c187d38d98f8df904589a5f94d411) D:\WINDOWS\system32\DRIVERS\CmBatt.sys
20:15:28.0609 3520 CmBatt - ok
20:15:28.0625 3520 CmdIde - ok
20:15:28.0656 3520 Compbatt (6e4c9f21f0fae8940661144f41b13203) D:\WINDOWS\system32\DRIVERS\compbatt.sys
20:15:28.0765 3520 Compbatt - ok
20:15:28.0781 3520 Cpqarray - ok
20:15:28.0796 3520 dac2w2k - ok
20:15:28.0812 3520 dac960nt - ok
20:15:28.0828 3520 Disk (044452051f3e02e7963599fc8f4f3e25) D:\WINDOWS\system32\DRIVERS\disk.sys
20:15:28.0953 3520 Disk - ok
20:15:29.0000 3520 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) D:\WINDOWS\system32\drivers\dmboot.sys
20:15:29.0187 3520 dmboot - ok
20:15:29.0265 3520 dmio (fff1720af51171f32f1ead5cf71f2810) D:\WINDOWS\system32\drivers\dmio.sys
20:15:29.0406 3520 dmio - ok
20:15:29.0437 3520 dmload (e9317282a63ca4d188c0df5e09c6ac5f) D:\WINDOWS\system32\drivers\dmload.sys
20:15:29.0640 3520 dmload - ok
20:15:29.0671 3520 DMusic (8a208dfcf89792a484e76c40e5f50b45) D:\WINDOWS\system32\drivers\DMusic.sys
20:15:29.0796 3520 DMusic - ok
20:15:29.0812 3520 dpti2o - ok
20:15:29.0843 3520 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) D:\WINDOWS\system32\drivers\drmkaud.sys
20:15:29.0953 3520 drmkaud - ok
20:15:30.0078 3520 E100B (6ca101f9aa3d845ba31f6e13c01301a8) D:\WINDOWS\system32\DRIVERS\e100b325.sys
20:15:30.0125 3520 E100B - ok
20:15:30.0156 3520 eusk2par (0c79689b4840ef8ec522598343f26849) D:\WINDOWS\system32\Drivers\eusk2par.sys
20:15:30.0156 3520 eusk2par - ok
20:15:30.0234 3520 Fastfat (38d332a6d56af32635675f132548343e) D:\WINDOWS\system32\drivers\Fastfat.sys
20:15:30.0359 3520 Fastfat - ok
20:15:30.0390 3520 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) D:\WINDOWS\system32\drivers\Fdc.sys
20:15:30.0531 3520 Fdc - ok
20:15:30.0546 3520 Fips (ac366695a0796560aa37215ad5762aaf) D:\WINDOWS\system32\drivers\Fips.sys
20:15:30.0687 3520 Fips - ok
20:15:30.0703 3520 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) D:\WINDOWS\system32\drivers\Flpydisk.sys
20:15:30.0828 3520 Flpydisk - ok
20:15:30.0859 3520 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) D:\WINDOWS\system32\drivers\fltmgr.sys
20:15:30.0984 3520 FltMgr - ok
20:15:31.0046 3520 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) D:\WINDOWS\system32\drivers\Fs_Rec.sys
20:15:31.0171 3520 Fs_Rec - ok
20:15:31.0203 3520 Ftdisk (4e664d8541db4a66b73a24257e322e1f) D:\WINDOWS\system32\DRIVERS\ftdisk.sys
20:15:31.0328 3520 Ftdisk - ok
20:15:31.0406 3520 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) D:\WINDOWS\system32\DRIVERS\msgpc.sys
20:15:31.0562 3520 Gpc - ok
20:15:31.0609 3520 HdAudAddService (a32a0b427c296862f043296128dcc113) D:\WINDOWS\system32\drivers\CHDAud.sys
20:15:31.0687 3520 HdAudAddService - ok
20:15:31.0718 3520 HDAudBus (573c7d0a32852b48f3058cfd8026f511) D:\WINDOWS\system32\DRIVERS\HDAudBus.sys
20:15:31.0875 3520 HDAudBus - ok
20:15:31.0921 3520 hidusb (ccf82c5ec8a7326c3066de870c06daf1) D:\WINDOWS\system32\DRIVERS\hidusb.sys
20:15:32.0093 3520 hidusb - ok
20:15:32.0109 3520 hpn - ok
20:15:32.0171 3520 HSF_DPV (09c2f46230034280d7e5f0b437146c45) D:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
20:15:32.0265 3520 HSF_DPV - ok
20:15:32.0343 3520 HSXHWAZL (83f221ddae2d2353b41f0227e6e411d7) D:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
20:15:32.0359 3520 HSXHWAZL - ok
20:15:32.0406 3520 HTTP (f80a415ef82cd06ffaf0d971528ead38) D:\WINDOWS\system32\Drivers\HTTP.sys
20:15:32.0453 3520 HTTP - ok
20:15:32.0453 3520 i2omgmt - ok
20:15:32.0468 3520 i2omp - ok
20:15:32.0500 3520 i8042prt (c528e27945367191e7bae364930b6932) D:\WINDOWS\system32\DRIVERS\i8042prt.sys
20:15:32.0625 3520 i8042prt - ok
20:15:32.0703 3520 ialm (da91f5385cfc8ba0f110f2fde112b563) D:\WINDOWS\system32\DRIVERS\ialmnt5.sys
20:15:32.0859 3520 ialm - ok
20:15:33.0000 3520 iaStor (309c4d86d989fb1fcf64bd30dc81c51b) D:\WINDOWS\system32\DRIVERS\iaStor.sys
20:15:33.0062 3520 iaStor - ok
20:15:33.0093 3520 Imapi (083a052659f5310dd8b6a6cb05edcf8e) D:\WINDOWS\system32\DRIVERS\imapi.sys
20:15:33.0281 3520 Imapi - ok
20:15:33.0296 3520 ini910u - ok
20:15:33.0312 3520 IntelIde - ok
20:15:33.0328 3520 intelppm (27b290d632af2cf3cf40bfddb7370985) D:\WINDOWS\system32\DRIVERS\intelppm.sys
20:15:33.0453 3520 intelppm - ok
20:15:33.0484 3520 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) D:\WINDOWS\system32\drivers\ip6fw.sys
20:15:33.0593 3520 Ip6Fw - ok
20:15:33.0625 3520 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) D:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
20:15:33.0765 3520 IpFilterDriver - ok
20:15:33.0812 3520 IpInIp (b87ab476dcf76e72010632b5550955f5) D:\WINDOWS\system32\DRIVERS\ipinip.sys
20:15:33.0921 3520 IpInIp - ok
20:15:33.0953 3520 IpNat (cc748ea12c6effde940ee98098bf96bb) D:\WINDOWS\system32\DRIVERS\ipnat.sys
20:15:34.0078 3520 IpNat - ok
20:15:34.0171 3520 IPSec (23c74d75e36e7158768dd63d92789a91) D:\WINDOWS\system32\DRIVERS\ipsec.sys
20:15:34.0281 3520 IPSec - ok
20:15:34.0312 3520 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) D:\WINDOWS\system32\DRIVERS\irenum.sys
20:15:34.0406 3520 IRENUM - ok
20:15:34.0421 3520 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) D:\WINDOWS\system32\DRIVERS\isapnp.sys
20:15:34.0562 3520 isapnp - ok
20:15:34.0625 3520 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) D:\WINDOWS\system32\DRIVERS\kbdclass.sys
20:15:34.0734 3520 Kbdclass - ok
20:15:34.0750 3520 kbdhid (86c8f23616c6c6e5b2776901c17b945b) D:\WINDOWS\system32\DRIVERS\kbdhid.sys
20:15:34.0875 3520 kbdhid - ok
20:15:34.0921 3520 kmixer (692bcf44383d056aed41b045a323d378) D:\WINDOWS\system32\drivers\kmixer.sys
20:15:35.0031 3520 kmixer - ok
20:15:35.0046 3520 KSecDD (b467646c54cc746128904e1654c750c1) D:\WINDOWS\system32\drivers\KSecDD.sys
20:15:35.0109 3520 KSecDD - ok
20:15:35.0140 3520 lbrtfdc - ok
20:15:35.0187 3520 mdmxsdk (e246a32c445056996074a397da56e815) D:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
20:15:35.0218 3520 mdmxsdk - ok
20:15:35.0312 3520 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) D:\WINDOWS\system32\drivers\mnmdd.sys
20:15:35.0437 3520 mnmdd - ok
20:15:35.0453 3520 Modem (44032b0c6d9954d3fd26438330b99ee7) D:\WINDOWS\system32\drivers\Modem.sys
20:15:35.0609 3520 Modem - ok
20:15:35.0640 3520 Mouclass (4cb582831dbde63ce43b45d771218374) D:\WINDOWS\system32\DRIVERS\mouclass.sys
20:15:35.0812 3520 Mouclass - ok
20:15:35.0937 3520 mouhid (bb269eba740737ab749b214d568b6812) D:\WINDOWS\system32\DRIVERS\mouhid.sys
20:15:36.0046 3520 mouhid - ok
20:15:36.0078 3520 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) D:\WINDOWS\system32\drivers\MountMgr.sys
20:15:36.0203 3520 MountMgr - ok
20:15:36.0234 3520 mraid35x - ok
20:15:36.0281 3520 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) D:\WINDOWS\system32\DRIVERS\mrxdav.sys
20:15:36.0406 3520 MRxDAV - ok
20:15:36.0484 3520 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) D:\WINDOWS\system32\DRIVERS\mrxsmb.sys
20:15:36.0546 3520 MRxSmb - ok
20:15:36.0593 3520 Msfs (c941ea2454ba8350021d774daf0f1027) D:\WINDOWS\system32\drivers\Msfs.sys
20:15:36.0703 3520 Msfs - ok
20:15:36.0734 3520 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) D:\WINDOWS\system32\drivers\MSKSSRV.sys
20:15:36.0859 3520 MSKSSRV - ok
20:15:36.0875 3520 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) D:\WINDOWS\system32\drivers\MSPCLOCK.sys
20:15:37.0031 3520 MSPCLOCK - ok
20:15:37.0078 3520 MSPQM (bad59648ba099da4a17680b39730cb3d) D:\WINDOWS\system32\drivers\MSPQM.sys
20:15:37.0250 3520 MSPQM - ok
20:15:37.0343 3520 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) D:\WINDOWS\system32\DRIVERS\mssmbios.sys
20:15:37.0453 3520 mssmbios - ok
20:15:37.0468 3520 Mup (de6a75f5c270e756c5508d94b6cf68f5) D:\WINDOWS\system32\drivers\Mup.sys
20:15:37.0515 3520 Mup - ok
20:15:37.0546 3520 NDIS (1df7f42665c94b825322fae71721130d) D:\WINDOWS\system32\drivers\NDIS.sys
20:15:37.0671 3520 NDIS - ok
20:15:37.0703 3520 NdisTapi (0109c4f3850dfbab279542515386ae22) D:\WINDOWS\system32\DRIVERS\ndistapi.sys
20:15:37.0734 3520 NdisTapi - ok
20:15:37.0765 3520 Ndisuio (f927a4434c5028758a842943ef1a3849) D:\WINDOWS\system32\DRIVERS\ndisuio.sys
20:15:37.0906 3520 Ndisuio - ok
20:15:37.0937 3520 NdisWan (edc1531a49c80614b2cfda43ca8659ab) D:\WINDOWS\system32\DRIVERS\ndiswan.sys
20:15:38.0062 3520 NdisWan - ok
20:15:38.0140 3520 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) D:\WINDOWS\system32\drivers\NDProxy.sys
20:15:38.0187 3520 NDProxy - ok
20:15:38.0203 3520 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) D:\WINDOWS\system32\DRIVERS\netbios.sys
20:15:38.0312 3520 NetBIOS - ok
20:15:38.0359 3520 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) D:\WINDOWS\system32\DRIVERS\netbt.sys
20:15:38.0484 3520 NetBT - ok
20:15:38.0640 3520 NETw3x32 (e2f396f71a793a04839dbb6af304a026) D:\WINDOWS\system32\DRIVERS\NETw3x32.sys
20:15:38.0859 3520 NETw3x32 - ok
20:15:38.0968 3520 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) D:\WINDOWS\system32\DRIVERS\nic1394.sys
20:15:39.0140 3520 NIC1394 - ok
20:15:39.0203 3520 Npfs (3182d64ae053d6fb034f44b6def8034a) D:\WINDOWS\system32\drivers\Npfs.sys
20:15:39.0328 3520 Npfs - ok
20:15:39.0421 3520 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) D:\WINDOWS\system32\drivers\Ntfs.sys
20:15:39.0546 3520 Ntfs - ok
20:15:39.0578 3520 Null (73c1e1f395918bc2c6dd67af7591a3ad) D:\WINDOWS\system32\drivers\Null.sys
20:15:39.0687 3520 Null - ok
20:15:39.0718 3520 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) D:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
20:15:39.0859 3520 NwlnkFlt - ok
20:15:39.0875 3520 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) D:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
20:15:39.0984 3520 NwlnkFwd - ok
20:15:40.0046 3520 OdysseyIM4 (7af6ec0ea4261ecf7da084103be31ea8) D:\WINDOWS\system32\DRIVERS\odysseyIM4.sys
20:15:40.0078 3520 OdysseyIM4 - ok
20:15:40.0171 3520 ohci1394 (ca33832df41afb202ee7aeb05145922f) D:\WINDOWS\system32\DRIVERS\ohci1394.sys
20:15:40.0296 3520 ohci1394 - ok
20:15:40.0359 3520 Parport (46f8db73b4a53e543f8e371dc7c75bae) D:\WINDOWS\system32\drivers\Parport.sys
20:15:40.0468 3520 Parport - ok
20:15:40.0500 3520 PartMgr (beb3ba25197665d82ec7065b724171c6) D:\WINDOWS\system32\drivers\PartMgr.sys
20:15:40.0671 3520 PartMgr - ok
20:15:40.0718 3520 ParVdm (1fae19d0457176318bba4a8795656ebc) D:\WINDOWS\system32\drivers\ParVdm.sys
20:15:40.0843 3520 ParVdm - ok
20:15:40.0875 3520 PCI (6ce351d149cb4befc702951e471e1730) D:\WINDOWS\system32\DRIVERS\pci.sys
20:15:41.0000 3520 PCI - ok
20:15:41.0000 3520 PCIDump - ok
20:15:41.0031 3520 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) D:\WINDOWS\system32\DRIVERS\pciide.sys
20:15:41.0156 3520 PCIIde - ok
20:15:41.0234 3520 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) D:\WINDOWS\system32\drivers\Pcmcia.sys
20:15:41.0359 3520 Pcmcia - ok
20:15:41.0406 3520 PDCOMP - ok
20:15:41.0421 3520 PDFRAME - ok
20:15:41.0421 3520 PDRELI - ok
20:15:41.0437 3520 PDRFRAME - ok
20:15:41.0453 3520 perc2 - ok
20:15:41.0453 3520 perc2hib - ok
20:15:41.0500 3520 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) D:\WINDOWS\system32\DRIVERS\raspptp.sys
20:15:41.0625 3520 PptpMiniport - ok
20:15:41.0656 3520 PSched (09298ec810b07e5d582cb3a3f9255424) D:\WINDOWS\system32\DRIVERS\psched.sys
20:15:41.0765 3520 PSched - ok
20:15:41.0781 3520 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) D:\WINDOWS\system32\DRIVERS\ptilink.sys
20:15:41.0906 3520 Ptilink - ok
20:15:41.0906 3520 ql1080 - ok
20:15:41.0921 3520 Ql10wnt - ok
20:15:41.0921 3520 ql12160 - ok
20:15:41.0937 3520 ql1240 - ok
20:15:41.0953 3520 ql1280 - ok
20:15:41.0968 3520 RapidPortM2 (3ecbd2e98ebb3fdc72529738dac01c04) D:\WINDOWS\system32\Drivers\CAPM2LP.SYS
20:15:42.0000 3520 RapidPortM2 - ok
20:15:42.0015 3520 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) D:\WINDOWS\system32\DRIVERS\rasacd.sys
20:15:42.0125 3520 RasAcd - ok
20:15:42.0140 3520 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) D:\WINDOWS\system32\DRIVERS\rasl2tp.sys
20:15:42.0250 3520 Rasl2tp - ok
20:15:42.0281 3520 RasPppoe (5bc962f2654137c9909c3d4603587dee) D:\WINDOWS\system32\DRIVERS\raspppoe.sys
20:15:42.0390 3520 RasPppoe - ok
20:15:42.0390 3520 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) D:\WINDOWS\system32\DRIVERS\raspti.sys
20:15:42.0500 3520 Raspti - ok
20:15:42.0531 3520 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) D:\WINDOWS\system32\DRIVERS\rdbss.sys
20:15:42.0640 3520 Rdbss - ok
20:15:42.0703 3520 RDPCDD (4912d5b403614ce99c28420f75353332) D:\WINDOWS\system32\DRIVERS\RDPCDD.sys
20:15:42.0812 3520 RDPCDD - ok
20:15:42.0859 3520 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) D:\WINDOWS\system32\drivers\RDPWD.sys
20:15:42.0906 3520 RDPWD - ok
20:15:42.0921 3520 redbook (611bfd220305be3a85ae876ea47d4aa5) D:\WINDOWS\system32\DRIVERS\redbook.sys
20:15:43.0031 3520 redbook - ok
20:15:43.0078 3520 RFCOMM (851c30df2807fcfa21e4c681a7d6440e) D:\WINDOWS\system32\DRIVERS\rfcomm.sys
20:15:43.0218 3520 RFCOMM - ok
20:15:43.0250 3520 rimmptsk (b6e686aab08bc276d0000293f9fba0bb) D:\WINDOWS\system32\DRIVERS\rimmptsk.sys
20:15:43.0296 3520 rimmptsk - ok
20:15:43.0359 3520 rimsptsk (bcff51e0be86d6f0e2180e5142203527) D:\WINDOWS\system32\DRIVERS\rimsptsk.sys
20:15:43.0406 3520 rimsptsk - ok
20:15:43.0421 3520 rismxdp (6baf8990e6f701f501a6cee974cf08d8) D:\WINDOWS\system32\DRIVERS\rixdptsk.sys
20:15:43.0468 3520 rismxdp - ok
20:15:43.0515 3520 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) D:\WINDOWS\system32\DRIVERS\sdbus.sys
20:15:43.0656 3520 sdbus - ok
20:15:43.0687 3520 Secdrv (90a3935d05b494a5a39d37e71f09a677) D:\WINDOWS\system32\DRIVERS\secdrv.sys
20:15:43.0765 3520 Secdrv - ok
20:15:43.0796 3520 Serial (b842729337c9b921615c40d3c1a1af96) D:\WINDOWS\system32\drivers\Serial.sys
20:15:43.0906 3520 Serial - ok
20:15:43.0953 3520 sffdisk (0fa803c64df0914b41f807ea276bf2a6) D:\WINDOWS\system32\DRIVERS\sffdisk.sys
20:15:44.0062 3520 sffdisk - ok
20:15:44.0125 3520 sffp_sd (c17c331e435ed8737525c86a7557b3ac) D:\WINDOWS\system32\DRIVERS\sffp_sd.sys
20:15:44.0234 3520 sffp_sd - ok
20:15:44.0265 3520 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) D:\WINDOWS\system32\drivers\Sfloppy.sys
20:15:44.0359 3520 Sfloppy - ok
20:15:44.0375 3520 Simbad - ok
20:15:44.0406 3520 Sparrow - ok
20:15:44.0421 3520 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) D:\WINDOWS\system32\drivers\splitter.sys
20:15:44.0546 3520 splitter - ok
20:15:44.0578 3520 sr (94610c8653635e4459316a0050d55ce7) D:\WINDOWS\system32\DRIVERS\sr.sys
20:15:44.0656 3520 sr - ok
20:15:44.0687 3520 Srv (47ddfc2f003f7f9f0592c6874962a2e7) D:\WINDOWS\system32\DRIVERS\srv.sys
20:15:44.0750 3520 Srv - ok
20:15:44.0796 3520 swenum (3941d127aef12e93addf6fe6ee027e0f) D:\WINDOWS\system32\DRIVERS\swenum.sys
20:15:44.0906 3520 swenum - ok
20:15:45.0000 3520 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) D:\WINDOWS\system32\drivers\swmidi.sys
20:15:45.0109 3520 swmidi - ok
20:15:45.0156 3520 symc810 - ok
20:15:45.0156 3520 symc8xx - ok
20:15:45.0171 3520 sym_hi - ok
20:15:45.0187 3520 sym_u3 - ok
20:15:45.0234 3520 SynTP (56cfad81069df5dbc75fc9b98902fd66) D:\WINDOWS\system32\DRIVERS\SynTP.sys
20:15:45.0296 3520 SynTP - ok
20:15:45.0343 3520 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) D:\WINDOWS\system32\drivers\sysaudio.sys
20:15:45.0453 3520 sysaudio - ok
20:15:45.0500 3520 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) D:\WINDOWS\system32\DRIVERS\tcpip.sys
20:15:45.0546 3520 Tcpip - ok
20:15:45.0609 3520 TDPIPE (6471a66807f5e104e4885f5b67349397) D:\WINDOWS\system32\drivers\TDPIPE.sys
20:15:45.0734 3520 TDPIPE - ok
20:15:45.0812 3520 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) D:\WINDOWS\system32\drivers\TDTCP.sys
20:15:45.0937 3520 TDTCP - ok
20:15:45.0984 3520 TermDD (88155247177638048422893737429d9e) D:\WINDOWS\system32\DRIVERS\termdd.sys
20:15:46.0078 3520 TermDD - ok
20:15:46.0093 3520 TosIde - ok
20:15:46.0125 3520 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) D:\WINDOWS\system32\drivers\Udfs.sys
20:15:46.0250 3520 Udfs - ok
20:15:46.0265 3520 ultra - ok
20:15:46.0312 3520 Update (402ddc88356b1bac0ee3dd1580c76a31) D:\WINDOWS\system32\DRIVERS\update.sys
20:15:46.0453 3520 Update - ok
20:15:46.0500 3520 usbccgp (173f317ce0db8e21322e71b7e60a27e8) D:\WINDOWS\system32\DRIVERS\usbccgp.sys
20:15:46.0625 3520 usbccgp - ok
20:15:46.0640 3520 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) D:\WINDOWS\system32\DRIVERS\usbehci.sys
20:15:46.0750 3520 usbehci - ok
20:15:46.0828 3520 usbhub (1ab3cdde553b6e064d2e754efe20285c) D:\WINDOWS\system32\DRIVERS\usbhub.sys
20:15:46.0953 3520 usbhub - ok
20:15:46.0968 3520 usbprint (a717c8721046828520c9edf31288fc00) D:\WINDOWS\system32\DRIVERS\usbprint.sys
20:15:47.0078 3520 usbprint - ok
20:15:47.0109 3520 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) D:\WINDOWS\system32\DRIVERS\usbscan.sys
20:15:47.0234 3520 usbscan - ok
20:15:47.0281 3520 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) D:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
20:15:47.0390 3520 USBSTOR - ok
20:15:47.0421 3520 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) D:\WINDOWS\system32\DRIVERS\usbuhci.sys
20:15:47.0531 3520 usbuhci - ok
20:15:47.0562 3520 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) D:\WINDOWS\System32\drivers\vga.sys
20:15:47.0687 3520 VgaSave - ok
20:15:47.0687 3520 ViaIde - ok
20:15:47.0734 3520 VolSnap (28a4b296b47782173c346e376cb374d1) D:\WINDOWS\system32\drivers\VolSnap.sys
20:15:47.0843 3520 VolSnap - ok
20:15:47.0921 3520 Wanarp (e20b95baedb550f32dd489265c1da1f6) D:\WINDOWS\system32\DRIVERS\wanarp.sys
20:15:48.0031 3520 Wanarp - ok
20:15:48.0078 3520 WDICA - ok
20:15:48.0109 3520 wdmaud (6768acf64b18196494413695f0c3a00f) D:\WINDOWS\system32\drivers\wdmaud.sys
20:15:48.0218 3520 wdmaud - ok
20:15:48.0281 3520 winachsf (4c17a05813e1f48e5da30ada62cdf427) D:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
20:15:48.0359 3520 winachsf - ok
20:15:48.0406 3520 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) D:\WINDOWS\System32\drivers\ws2ifsl.sys
20:15:48.0515 3520 WS2IFSL - ok
20:15:48.0546 3520 MBR (0x1B8) (9c603bc3977968c891de319283e1e7af) \Device\Harddisk0\DR0
20:15:48.0578 3520 \Device\Harddisk0\DR0 ( Rootkit.Boot.Wistler.a ) - infected
20:15:48.0578 3520 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Wistler.a (0)
20:15:48.0671 3520 Boot (0x1200) (aeb87be0364fcde7643b905b991d6098) \Device\Harddisk0\DR0\Partition0
20:15:48.0671 3520 \Device\Harddisk0\DR0\Partition0 - ok
20:15:48.0671 3520 Boot (0x1200) (d50f9f75363f5505727932f6d3df4c94) \Device\Harddisk0\DR0\Partition1
20:15:48.0671 3520 \Device\Harddisk0\DR0\Partition1 - ok
20:15:48.0703 3520 Boot (0x1200) (41d608d24c0cabec1ec38626f5c36489) \Device\Harddisk0\DR0\Partition2
20:15:48.0703 3520 \Device\Harddisk0\DR0\Partition2 - ok
20:15:48.0703 3520 ============================================================
20:15:48.0703 3520 Scan finished
20:15:48.0703 3520 ============================================================
20:15:48.0812 2576 Detected object count: 1
20:15:48.0812 2576 Actual detected object count: 1
20:18:48.0734 2576 \Device\Harddisk0\DR0 ( Rootkit.Boot.Wistler.a ) - skipped by user
20:18:48.0734 2576 \Device\Harddisk0\DR0 ( Rootkit.Boot.Wistler.a ) - User select action: Skip
20:19:18.0625 2996 ============================================================
20:19:18.0625 2996 Scan started
20:19:18.0625 2996 Mode: Manual; SigCheck; TDLFS;
20:19:18.0625 2996 ============================================================
20:19:18.0906 2996 Aavmker4 (95d1de2a6613494e853a9738d5d9acd4) D:\WINDOWS\system32\drivers\Aavmker4.sys
20:19:18.0953 2996 Aavmker4 - ok
20:19:18.0984 2996 Abiosdsk - ok
20:19:18.0984 2996 abp480n5 - ok
20:19:19.0031 2996 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) D:\WINDOWS\system32\DRIVERS\ACPI.sys
20:19:19.0265 2996 ACPI - ok
20:19:19.0312 2996 ACPIEC (afdff022a01f0b11c776f0860c3b282f) D:\WINDOWS\system32\DRIVERS\ACPIEC.sys
20:19:19.0421 2996 ACPIEC - ok
20:19:19.0437 2996 adpu160m - ok
20:19:19.0437 2996 adusbser - ok
20:19:19.0468 2996 aec (8bed39e3c35d6a489438b8141717a557) D:\WINDOWS\system32\drivers\aec.sys
20:19:19.0593 2996 aec - ok
20:19:19.0640 2996 AFD (355556d9e580915118cd7ef736653a89) D:\WINDOWS\System32\drivers\afd.sys
20:19:19.0687 2996 AFD - ok
20:19:19.0734 2996 Aha154x - ok
20:19:19.0750 2996 aic78u2 - ok
20:19:19.0750 2996 aic78xx - ok
20:19:19.0765 2996 AliIde - ok
20:19:19.0781 2996 amsint - ok
20:19:19.0812 2996 Arp1394 (b5b8a80875c1dededa8b02765642c32f) D:\WINDOWS\system32\DRIVERS\arp1394.sys
20:19:19.0937 2996 Arp1394 - ok
20:19:19.0937 2996 asc - ok
20:19:19.0953 2996 asc3350p - ok
20:19:19.0968 2996 asc3550 - ok
20:19:19.0984 2996 aswFsBlk - ok
20:19:20.0015 2996 aswMon2 (fff2dbb17a3c89f87f78d5fa72ca47fd) D:\WINDOWS\system32\drivers\aswMon2.sys
20:19:20.0031 2996 aswMon2 - ok
20:19:20.0078 2996 aswRdr (36239e24470a3dd81fae37510953cc6c) D:\WINDOWS\system32\drivers\aswRdr.sys
20:19:20.0093 2996 aswRdr - ok
20:19:20.0140 2996 aswSnx (caa846e9c83836bdc3d2d700c678db65) D:\WINDOWS\system32\drivers\aswSnx.sys
20:19:20.0171 2996 aswSnx - ok
20:19:20.0218 2996 aswSP (748ae7f2d7da33adb063fe05704a9969) D:\WINDOWS\system32\drivers\aswSP.sys
20:19:20.0250 2996 aswSP - ok
20:19:20.0250 2996 aswTdi (ca9925ce1dbd07ffe1eb357752cf5577) D:\WINDOWS\system32\drivers\aswTdi.sys
20:19:20.0265 2996 aswTdi - ok
20:19:20.0296 2996 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) D:\WINDOWS\system32\DRIVERS\asyncmac.sys
20:19:20.0437 2996 AsyncMac - ok
20:19:20.0484 2996 atapi (9f3a2f5aa6875c72bf062c712cfa2674) D:\WINDOWS\system32\DRIVERS\atapi.sys
20:19:20.0671 2996 atapi - ok
20:19:20.0703 2996 Atdisk - ok
20:19:20.0718 2996 Atmarpc (9916c1225104ba14794209cfa8012159) D:\WINDOWS\system32\DRIVERS\atmarpc.sys
20:19:20.0890 2996 Atmarpc - ok
20:19:20.0937 2996 audstub (d9f724aa26c010a217c97606b160ed68) D:\WINDOWS\system32\DRIVERS\audstub.sys
20:19:21.0062 2996 audstub - ok
20:19:21.0093 2996 Beep (da1f27d85e0d1525f6621372e7b685e9) D:\WINDOWS\system32\drivers\Beep.sys
20:19:21.0203 2996 Beep - ok
20:19:21.0250 2996 BthEnum (b279426e3c0c344893ed78a613a73bde) D:\WINDOWS\system32\DRIVERS\BthEnum.sys
20:19:21.0359 2996 BthEnum - ok
20:19:21.0421 2996 BTHMODEM (fca6f069597b62d42495191ace3fc6c1) D:\WINDOWS\system32\DRIVERS\bthmodem.sys
20:19:21.0515 2996 BTHMODEM - ok
20:19:21.0531 2996 BthPan (80602b8746d3738f5886ce3d67ef06b6) D:\WINDOWS\system32\DRIVERS\bthpan.sys
20:19:21.0640 2996 BthPan - ok
20:19:21.0687 2996 BTHPORT (f338662a6c1fc11dd9508f6dff2c06a2) D:\WINDOWS\system32\Drivers\BTHport.sys
20:19:21.0703 2996 BTHPORT - ok
20:19:21.0734 2996 BTHUSB (61364cd71ef63b0f038b7e9df00f1efa) D:\WINDOWS\system32\Drivers\BTHUSB.sys
20:19:21.0843 2996 BTHUSB - ok
20:19:22.0046 2996 catchme - ok
20:19:22.0140 2996 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) D:\WINDOWS\system32\drivers\cbidf2k.sys
20:19:22.0328 2996 cbidf2k - ok
20:19:22.0328 2996 cd20xrnt - ok
20:19:22.0343 2996 Cdaudio (c1b486a7658353d33a10cc15211a873b) D:\WINDOWS\system32\drivers\Cdaudio.sys
20:19:22.0453 2996 Cdaudio - ok
20:19:22.0484 2996 Cdfs (c885b02847f5d2fd45a24e219ed93b32) D:\WINDOWS\system32\drivers\Cdfs.sys
20:19:22.0593 2996 Cdfs - ok
20:19:22.0640 2996 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) D:\WINDOWS\system32\DRIVERS\cdrom.sys
20:19:22.0765 2996 Cdrom - ok
20:19:22.0765 2996 Changer - ok
20:19:22.0812 2996 CmBatt (0f6c187d38d98f8df904589a5f94d411) D:\WINDOWS\system32\DRIVERS\CmBatt.sys
20:19:22.0937 2996 CmBatt - ok
20:19:22.0937 2996 CmdIde - ok
20:19:22.0984 2996 Compbatt (6e4c9f21f0fae8940661144f41b13203) D:\WINDOWS\system32\DRIVERS\compbatt.sys
20:19:23.0078 2996 Compbatt - ok
20:19:23.0093 2996 Cpqarray - ok
20:19:23.0109 2996 dac2w2k - ok
20:19:23.0125 2996 dac960nt - ok
20:19:23.0140 2996 Disk (044452051f3e02e7963599fc8f4f3e25) D:\WINDOWS\system32\DRIVERS\disk.sys
20:19:23.0250 2996 Disk - ok
20:19:23.0296 2996 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) D:\WINDOWS\system32\drivers\dmboot.sys
20:19:23.0453 2996 dmboot - ok
20:19:23.0531 2996 dmio (fff1720af51171f32f1ead5cf71f2810) D:\WINDOWS\system32\drivers\dmio.sys
20:19:23.0656 2996 dmio - ok
20:19:23.0687 2996 dmload (e9317282a63ca4d188c0df5e09c6ac5f) D:\WINDOWS\system32\drivers\dmload.sys
20:19:23.0812 2996 dmload - ok
20:19:23.0843 2996 DMusic (8a208dfcf89792a484e76c40e5f50b45) D:\WINDOWS\system32\drivers\DMusic.sys
20:19:23.0968 2996 DMusic - ok
20:19:23.0968 2996 dpti2o - ok
20:19:24.0000 2996 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) D:\WINDOWS\system32\drivers\drmkaud.sys
20:19:24.0109 2996 drmkaud - ok
20:19:24.0140 2996 E100B (6ca101f9aa3d845ba31f6e13c01301a8) D:\WINDOWS\system32\DRIVERS\e100b325.sys
20:19:24.0171 2996 E100B - ok
20:19:24.0250 2996 eusk2par (0c79689b4840ef8ec522598343f26849) D:\WINDOWS\system32\Drivers\eusk2par.sys
20:19:24.0265 2996 eusk2par - ok
20:19:24.0312 2996 Fastfat (38d332a6d56af32635675f132548343e) D:\WINDOWS\system32\drivers\Fastfat.sys
20:19:24.0406 2996 Fastfat - ok
20:19:24.0453 2996 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) D:\WINDOWS\system32\drivers\Fdc.sys
20:19:24.0562 2996 Fdc - ok
20:19:24.0578 2996 Fips (ac366695a0796560aa37215ad5762aaf) D:\WINDOWS\system32\drivers\Fips.sys
20:19:24.0703 2996 Fips - ok
20:19:24.0703 2996 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) D:\WINDOWS\system32\drivers\Flpydisk.sys
20:19:24.0812 2996 Flpydisk - ok
20:19:24.0859 2996 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) D:\WINDOWS\system32\drivers\fltmgr.sys
20:19:24.0984 2996 FltMgr - ok
20:19:25.0015 2996 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) D:\WINDOWS\system32\drivers\Fs_Rec.sys
20:19:25.0125 2996 Fs_Rec - ok
20:19:25.0218 2996 Ftdisk (4e664d8541db4a66b73a24257e322e1f) D:\WINDOWS\system32\DRIVERS\ftdisk.sys
20:19:25.0328 2996 Ftdisk - ok
20:19:25.0375 2996 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) D:\WINDOWS\system32\DRIVERS\msgpc.sys
20:19:25.0515 2996 Gpc - ok
20:19:25.0562 2996 HdAudAddService (a32a0b427c296862f043296128dcc113) D:\WINDOWS\system32\drivers\CHDAud.sys
20:19:25.0609 2996 HdAudAddService - ok
20:19:25.0640 2996 HDAudBus (573c7d0a32852b48f3058cfd8026f511) D:\WINDOWS\system32\DRIVERS\HDAudBus.sys
20:19:25.0765 2996 HDAudBus - ok
20:19:25.0796 2996 hidusb (ccf82c5ec8a7326c3066de870c06daf1) D:\WINDOWS\system32\DRIVERS\hidusb.sys
20:19:25.0906 2996 hidusb - ok
20:19:25.0921 2996 hpn - ok
20:19:25.0968 2996 HSF_DPV (09c2f46230034280d7e5f0b437146c45) D:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
20:19:26.0031 2996 HSF_DPV - ok
20:19:26.0078 2996 HSXHWAZL (83f221ddae2d2353b41f0227e6e411d7) D:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
20:19:26.0093 2996 HSXHWAZL - ok
20:19:26.0187 2996 HTTP (f80a415ef82cd06ffaf0d971528ead38) D:\WINDOWS\system32\Drivers\HTTP.sys
20:19:26.0234 2996 HTTP - ok
20:19:26.0265 2996 i2omgmt - ok
20:19:26.0281 2996 i2omp - ok
20:19:26.0312 2996 i8042prt (c528e27945367191e7bae364930b6932) D:\WINDOWS\system32\DRIVERS\i8042prt.sys
20:19:26.0437 2996 i8042prt - ok
20:19:26.0500 2996 ialm (da91f5385cfc8ba0f110f2fde112b563) D:\WINDOWS\system32\DRIVERS\ialmnt5.sys
20:19:26.0609 2996 ialm - ok
20:19:26.0703 2996 iaStor (309c4d86d989fb1fcf64bd30dc81c51b) D:\WINDOWS\system32\DRIVERS\iaStor.sys
20:19:26.0781 2996 iaStor - ok
20:19:26.0843 2996 Imapi (083a052659f5310dd8b6a6cb05edcf8e) D:\WINDOWS\system32\DRIVERS\imapi.sys
20:19:27.0015 2996 Imapi - ok
20:19:27.0140 2996 ini910u - ok
20:19:27.0156 2996 IntelIde - ok
20:19:27.0187 2996 intelppm (27b290d632af2cf3cf40bfddb7370985) D:\WINDOWS\system32\DRIVERS\intelppm.sys
20:19:27.0312 2996 intelppm - ok
20:19:27.0328 2996 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) D:\WINDOWS\system32\drivers\ip6fw.sys
20:19:27.0437 2996 Ip6Fw - ok
20:19:27.0500 2996 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) D:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
20:19:27.0640 2996 IpFilterDriver - ok
20:19:27.0656 2996 IpInIp (b87ab476dcf76e72010632b5550955f5) D:\WINDOWS\system32\DRIVERS\ipinip.sys
20:19:27.0781 2996 IpInIp - ok
20:19:27.0828 2996 IpNat (cc748ea12c6effde940ee98098bf96bb) D:\WINDOWS\system32\DRIVERS\ipnat.sys
20:19:27.0984 2996 IpNat - ok
20:19:28.0062 2996 IPSec (23c74d75e36e7158768dd63d92789a91) D:\WINDOWS\system32\DRIVERS\ipsec.sys
20:19:28.0187 2996 IPSec - ok
20:19:28.0250 2996 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) D:\WINDOWS\system32\DRIVERS\irenum.sys
20:19:28.0343 2996 IRENUM - ok
20:19:28.0375 2996 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) D:\WINDOWS\system32\DRIVERS\isapnp.sys
20:19:28.0546 2996 isapnp - ok
20:19:28.0578 2996 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) D:\WINDOWS\system32\DRIVERS\kbdclass.sys
20:19:28.0687 2996 Kbdclass - ok
20:19:28.0703 2996 kbdhid (86c8f23616c6c6e5b2776901c17b945b) D:\WINDOWS\system32\DRIVERS\kbdhid.sys
20:19:28.0812 2996 kbdhid - ok
20:19:28.0843 2996 kmixer (692bcf44383d056aed41b045a323d378) D:\WINDOWS\system32\drivers\kmixer.sys
20:19:28.0937 2996 kmixer - ok
20:19:28.0968 2996 KSecDD (b467646c54cc746128904e1654c750c1) D:\WINDOWS\system32\drivers\KSecDD.sys
20:19:28.0984 2996 KSecDD - ok
20:19:29.0000 2996 lbrtfdc - ok
20:19:29.0031 2996 mdmxsdk (e246a32c445056996074a397da56e815) D:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
20:19:29.0046 2996 mdmxsdk - ok
20:19:29.0125 2996 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) D:\WINDOWS\system32\drivers\mnmdd.sys
20:19:29.0234 2996 mnmdd - ok
20:19:29.0281 2996 Modem (44032b0c6d9954d3fd26438330b99ee7) D:\WINDOWS\system32\drivers\Modem.sys
20:19:29.0406 2996 Modem - ok
20:19:29.0421 2996 Mouclass (4cb582831dbde63ce43b45d771218374) D:\WINDOWS\system32\DRIVERS\mouclass.sys
20:19:29.0546 2996 Mouclass - ok
20:19:29.0562 2996 mouhid (bb269eba740737ab749b214d568b6812) D:\WINDOWS\system32\DRIVERS\mouhid.sys
20:19:29.0687 2996 mouhid - ok
20:19:29.0718 2996 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) D:\WINDOWS\system32\drivers\MountMgr.sys
20:19:29.0828 2996 MountMgr - ok
20:19:29.0843 2996 mraid35x - ok
20:19:29.0875 2996 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) D:\WINDOWS\system32\DRIVERS\mrxdav.sys
20:19:30.0000 2996 MRxDAV - ok
20:19:30.0046 2996 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) D:\WINDOWS\system32\DRIVERS\mrxsmb.sys
20:19:30.0093 2996 MRxSmb - ok
20:19:30.0140 2996 Msfs (c941ea2454ba8350021d774daf0f1027) D:\WINDOWS\system32\drivers\Msfs.sys
20:19:30.0265 2996 Msfs - ok
20:19:30.0281 2996 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) D:\WINDOWS\system32\drivers\MSKSSRV.sys
20:19:30.0390 2996 MSKSSRV - ok
20:19:30.0406 2996 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) D:\WINDOWS\system32\drivers\MSPCLOCK.sys
20:19:30.0531 2996 MSPCLOCK - ok
20:19:30.0562 2996 MSPQM (bad59648ba099da4a17680b39730cb3d) D:\WINDOWS\system32\drivers\MSPQM.sys
20:19:30.0703 2996 MSPQM - ok
20:19:30.0718 2996 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) D:\WINDOWS\system32\DRIVERS\mssmbios.sys
20:19:30.0812 2996 mssmbios - ok
20:19:30.0859 2996 Mup (de6a75f5c270e756c5508d94b6cf68f5) D:\WINDOWS\system32\drivers\Mup.sys
20:19:30.0890 2996 Mup - ok
20:19:30.0968 2996 NDIS (1df7f42665c94b825322fae71721130d) D:\WINDOWS\system32\drivers\NDIS.sys
20:19:31.0078 2996 NDIS - ok
20:19:31.0109 2996 NdisTapi (0109c4f3850dfbab279542515386ae22) D:\WINDOWS\system32\DRIVERS\ndistapi.sys
20:19:31.0125 2996 NdisTapi - ok
20:19:31.0156 2996 Ndisuio (f927a4434c5028758a842943ef1a3849) D:\WINDOWS\system32\DRIVERS\ndisuio.sys
20:19:31.0265 2996 Ndisuio - ok
20:19:31.0281 2996 NdisWan (edc1531a49c80614b2cfda43ca8659ab) D:\WINDOWS\system32\DRIVERS\ndiswan.sys
20:19:31.0421 2996 NdisWan - ok
20:19:31.0468 2996 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) D:\WINDOWS\system32\drivers\NDProxy.sys
20:19:31.0500 2996 NDProxy - ok
20:19:31.0531 2996 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) D:\WINDOWS\system32\DRIVERS\netbios.sys
20:19:31.0718 2996 NetBIOS - ok
20:19:31.0890 2996 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) D:\WINDOWS\system32\DRIVERS\netbt.sys
20:19:32.0000 2996 NetBT - ok
20:19:32.0234 2996 NETw3x32 (e2f396f71a793a04839dbb6af304a026) D:\WINDOWS\system32\DRIVERS\NETw3x32.sys
20:19:32.0328 2996 NETw3x32 - ok
20:19:32.0359 2996 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) D:\WINDOWS\system32\DRIVERS\nic1394.sys
20:19:32.0468 2996 NIC1394 - ok
20:19:32.0500 2996 Npfs (3182d64ae053d6fb034f44b6def8034a) D:\WINDOWS\system32\drivers\Npfs.sys
20:19:32.0593 2996 Npfs - ok
20:19:32.0671 2996 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) D:\WINDOWS\system32\drivers\Ntfs.sys
20:19:32.0796 2996 Ntfs - ok
20:19:32.0828 2996 Null (73c1e1f395918bc2c6dd67af7591a3ad) D:\WINDOWS\system32\drivers\Null.sys
20:19:32.0937 2996 Null - ok
20:19:33.0015 2996 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) D:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
20:19:33.0140 2996 NwlnkFlt - ok
20:19:33.0156 2996 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) D:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
20:19:33.0250 2996 NwlnkFwd - ok
20:19:33.0296 2996 OdysseyIM4 (7af6ec0ea4261ecf7da084103be31ea8) D:\WINDOWS\system32\DRIVERS\odysseyIM4.sys
20:19:33.0343 2996 OdysseyIM4 - ok
20:19:33.0375 2996 ohci1394 (ca33832df41afb202ee7aeb05145922f) D:\WINDOWS\system32\DRIVERS\ohci1394.sys
20:19:33.0500 2996 ohci1394 - ok
20:19:33.0531 2996 Parport (46f8db73b4a53e543f8e371dc7c75bae) D:\WINDOWS\system32\drivers\Parport.sys
20:19:33.0640 2996 Parport - ok
20:19:33.0718 2996 PartMgr (beb3ba25197665d82ec7065b724171c6) D:\WINDOWS\system32\drivers\PartMgr.sys
20:19:33.0828 2996 PartMgr - ok
20:19:33.0843 2996 ParVdm (1fae19d0457176318bba4a8795656ebc) D:\WINDOWS\system32\drivers\ParVdm.sys
20:19:33.0968 2996 ParVdm - ok
20:19:33.0984 2996 PCI (6ce351d149cb4befc702951e471e1730) D:\WINDOWS\system32\DRIVERS\pci.sys
20:19:34.0093 2996 PCI - ok
20:19:34.0109 2996 PCIDump - ok
20:19:34.0140 2996 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) D:\WINDOWS\system32\DRIVERS\pciide.sys
20:19:34.0250 2996 PCIIde - ok
20:19:34.0296 2996 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) D:\WINDOWS\system32\drivers\Pcmcia.sys
20:19:34.0421 2996 Pcmcia - ok
20:19:34.0468 2996 PDCOMP - ok
20:19:34.0484 2996 PDFRAME - ok
20:19:34.0500 2996 PDRELI - ok
20:19:34.0515 2996 PDRFRAME - ok
20:19:34.0515 2996 perc2 - ok
20:19:34.0531 2996 perc2hib - ok
20:19:34.0578 2996 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) D:\WINDOWS\system32\DRIVERS\raspptp.sys
20:19:34.0687 2996 PptpMiniport - ok
20:19:34.0703 2996 PSched (09298ec810b07e5d582cb3a3f9255424) D:\WINDOWS\system32\DRIVERS\psched.sys
20:19:34.0812 2996 PSched - ok
20:19:34.0843 2996 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) D:\WINDOWS\system32\DRIVERS\ptilink.sys
20:19:34.0953 2996 Ptilink - ok
20:19:34.0968 2996 ql1080 - ok
20:19:34.0984 2996 Ql10wnt - ok
20:19:34.0984 2996 ql12160 - ok
20:19:35.0000 2996 ql1240 - ok
20:19:35.0015 2996 ql1280 - ok
20:19:35.0046 2996 RapidPortM2 (3ecbd2e98ebb3fdc72529738dac01c04) D:\WINDOWS\system32\Drivers\CAPM2LP.SYS
20:19:35.0062 2996 RapidPortM2 - ok
20:19:35.0078 2996 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) D:\WINDOWS\system32\DRIVERS\rasacd.sys
20:19:35.0187 2996 RasAcd - ok
20:19:35.0203 2996 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) D:\WINDOWS\system32\DRIVERS\rasl2tp.sys
20:19:35.0312 2996 Rasl2tp - ok
20:19:35.0343 2996 RasPppoe (5bc962f2654137c9909c3d4603587dee) D:\WINDOWS\system32\DRIVERS\raspppoe.sys
20:19:35.0437 2996 RasPppoe - ok
20:19:35.0453 2996 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) D:\WINDOWS\system32\DRIVERS\raspti.sys
20:19:35.0546 2996 Raspti - ok
20:19:35.0578 2996 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) D:\WINDOWS\system32\DRIVERS\rdbss.sys
20:19:35.0703 2996 Rdbss - ok
20:19:35.0765 2996 RDPCDD (4912d5b403614ce99c28420f75353332) D:\WINDOWS\system32\DRIVERS\RDPCDD.sys
20:19:35.0875 2996 RDPCDD - ok
20:19:35.0921 2996 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) D:\WINDOWS\system32\drivers\RDPWD.sys
20:19:35.0953 2996 RDPWD - ok
20:19:35.0984 2996 redbook (611bfd220305be3a85ae876ea47d4aa5) D:\WINDOWS\system32\DRIVERS\redbook.sys
20:19:36.0093 2996 redbook - ok
20:19:36.0125 2996 RFCOMM (851c30df2807fcfa21e4c681a7d6440e) D:\WINDOWS\system32\DRIVERS\rfcomm.sys
20:19:36.0234 2996 RFCOMM - ok
20:19:36.0281 2996 rimmptsk (b6e686aab08bc276d0000293f9fba0bb) D:\WINDOWS\system32\DRIVERS\rimmptsk.sys
20:19:36.0281 2996 rimmptsk - ok
20:19:36.0312 2996 rimsptsk (bcff51e0be86d6f0e2180e5142203527) D:\WINDOWS\system32\DRIVERS\rimsptsk.sys
20:19:36.0328 2996 rimsptsk - ok
20:19:36.0359 2996 rismxdp (6baf8990e6f701f501a6cee974cf08d8) D:\WINDOWS\system32\DRIVERS\rixdptsk.sys
20:19:36.0390 2996 rismxdp - ok
20:19:36.0500 2996 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) D:\WINDOWS\system32\DRIVERS\sdbus.sys
20:19:36.0609 2996 sdbus - ok
20:19:36.0640 2996 Secdrv (90a3935d05b494a5a39d37e71f09a677) D:\WINDOWS\system32\DRIVERS\secdrv.sys
20:19:36.0703 2996 Secdrv - ok
20:19:36.0734 2996 Serial (b842729337c9b921615c40d3c1a1af96) D:\WINDOWS\system32\drivers\Serial.sys
20:19:36.0828 2996 Serial - ok
20:19:36.0859 2996 sffdisk (0fa803c64df0914b41f807ea276bf2a6) D:\WINDOWS\system32\DRIVERS\sffdisk.sys
20:19:36.0968 2996 sffdisk - ok
20:19:36.0984 2996 sffp_sd (c17c331e435ed8737525c86a7557b3ac) D:\WINDOWS\system32\DRIVERS\sffp_sd.sys
20:19:37.0109 2996 sffp_sd - ok
20:19:37.0125 2996 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) D:\WINDOWS\system32\drivers\Sfloppy.sys
20:19:37.0234 2996 Sfloppy - ok
20:19:37.0250 2996 Simbad - ok
20:19:37.0265 2996 Sparrow - ok
20:19:37.0281 2996 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) D:\WINDOWS\system32\drivers\splitter.sys
20:19:37.0406 2996 splitter - ok
20:19:37.0484 2996 sr (94610c8653635e4459316a0050d55ce7) D:\WINDOWS\system32\DRIVERS\sr.sys
20:19:37.0546 2996 sr - ok
20:19:37.0593 2996 Srv (47ddfc2f003f7f9f0592c6874962a2e7) D:\WINDOWS\system32\DRIVERS\srv.sys
20:19:37.0625 2996 Srv - ok
20:19:37.0671 2996 swenum (3941d127aef12e93addf6fe6ee027e0f) D:\WINDOWS\system32\DRIVERS\swenum.sys
20:19:37.0765 2996 swenum - ok
20:19:37.0781 2996 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) D:\WINDOWS\system32\drivers\swmidi.sys
20:19:37.0906 2996 swmidi - ok
20:19:37.0921 2996 symc810 - ok
20:19:37.0921 2996 symc8xx - ok
20:19:37.0937 2996 sym_hi - ok
20:19:37.0953 2996 sym_u3 - ok
20:19:38.0000 2996 SynTP (56cfad81069df5dbc75fc9b98902fd66) D:\WINDOWS\system32\DRIVERS\SynTP.sys
20:19:38.0031 2996 SynTP - ok
20:19:38.0046 2996 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) D:\WINDOWS\system32\drivers\sysaudio.sys
20:19:38.0187 2996 sysaudio - ok
20:19:38.0312 2996 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) D:\WINDOWS\system32\DRIVERS\tcpip.sys
20:19:38.0328 2996 Tcpip - ok
20:19:38.0406 2996 TDPIPE (6471a66807f5e104e4885f5b67349397) D:\WINDOWS\system32\drivers\TDPIPE.sys
20:19:38.0546 2996 TDPIPE - ok
20:19:38.0578 2996 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) D:\WINDOWS\system32\drivers\TDTCP.sys
20:19:38.0718 2996 TDTCP - ok
20:19:38.0734 2996 TermDD (88155247177638048422893737429d9e) D:\WINDOWS\system32\DRIVERS\termdd.sys
20:19:38.0828 2996 TermDD - ok
20:19:38.0843 2996 TosIde - ok
20:19:38.0875 2996 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) D:\WINDOWS\system32\drivers\Udfs.sys
20:19:39.0000 2996 Udfs - ok
20:19:39.0046 2996 ultra - ok
20:19:39.0109 2996 Update (402ddc88356b1bac0ee3dd1580c76a31) D:\WINDOWS\system32\DRIVERS\update.sys
20:19:39.0234 2996 Update - ok
20:19:39.0343 2996 usbccgp (173f317ce0db8e21322e71b7e60a27e8) D:\WINDOWS\system32\DRIVERS\usbccgp.sys
20:19:39.0500 2996 usbccgp - ok
20:19:39.0531 2996 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) D:\WINDOWS\system32\DRIVERS\usbehci.sys
20:19:39.0703 2996 usbehci - ok
20:19:39.0734 2996 usbhub (1ab3cdde553b6e064d2e754efe20285c) D:\WINDOWS\system32\DRIVERS\usbhub.sys
20:19:39.0843 2996 usbhub - ok
20:19:39.0890 2996 usbprint (a717c8721046828520c9edf31288fc00) D:\WINDOWS\system32\DRIVERS\usbprint.sys
20:19:40.0000 2996 usbprint - ok
20:19:40.0046 2996 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) D:\WINDOWS\system32\DRIVERS\usbscan.sys
20:19:40.0156 2996 usbscan - ok
20:19:40.0218 2996 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) D:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
20:19:40.0328 2996 USBSTOR - ok
20:19:40.0359 2996 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) D:\WINDOWS\system32\DRIVERS\usbuhci.sys
20:19:40.0468 2996 usbuhci - ok
20:19:40.0531 2996 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) D:\WINDOWS\System32\drivers\vga.sys
20:19:40.0687 2996 VgaSave - ok
20:19:40.0734 2996 ViaIde - ok
20:19:40.0781 2996 VolSnap (28a4b296b47782173c346e376cb374d1) D:\WINDOWS\system32\drivers\VolSnap.sys
20:19:40.0921 2996 VolSnap - ok
20:19:40.0953 2996 Wanarp (e20b95baedb550f32dd489265c1da1f6) D:\WINDOWS\system32\DRIVERS\wanarp.sys
20:19:41.0078 2996 Wanarp - ok
20:19:41.0109 2996 WDICA - ok
20:19:41.0125 2996 wdmaud (6768acf64b18196494413695f0c3a00f) D:\WINDOWS\system32\drivers\wdmaud.sys
20:19:41.0265 2996 wdmaud - ok
20:19:41.0328 2996 winachsf (4c17a05813e1f48e5da30ada62cdf427) D:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
20:19:41.0375 2996 winachsf - ok
20:19:41.0421 2996 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) D:\WINDOWS\System32\drivers\ws2ifsl.sys
20:19:41.0546 2996 WS2IFSL - ok
20:19:41.0593 2996 MBR (0x1B8) (9c603bc3977968c891de319283e1e7af) \Device\Harddisk0\DR0
20:19:41.0609 2996 \Device\Harddisk0\DR0 ( Rootkit.Boot.Wistler.a ) - infected
20:19:41.0609 2996 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Wistler.a (0)
20:19:41.0703 2996 Boot (0x1200) (aeb87be0364fcde7643b905b991d6098) \Device\Harddisk0\DR0\Partition0
20:19:41.0703 2996 \Device\Harddisk0\DR0\Partition0 - ok
20:19:41.0718 2996 Boot (0x1200) (d50f9f75363f5505727932f6d3df4c94) \Device\Harddisk0\DR0\Partition1
20:19:41.0718 2996 \Device\Harddisk0\DR0\Partition1 - ok
20:19:41.0750 2996 Boot (0x1200) (41d608d24c0cabec1ec38626f5c36489) \Device\Harddisk0\DR0\Partition2
20:19:41.0750 2996 \Device\Harddisk0\DR0\Partition2 - ok
20:19:41.0750 2996 ============================================================
20:19:41.0750 2996 Scan finished
20:19:41.0750 2996 ============================================================
20:19:41.0750 3076 Detected object count: 1
20:19:41.0750 3076 Actual detected object count: 1
20:20:24.0687 3076 \Device\Harddisk0\DR0\# - copied to quarantine
20:20:24.0687 3076 \Device\Harddisk0\DR0 - copied to quarantine
20:20:24.0703 3076 \Device\Harddisk0\DR0 ( Rootkit.Boot.Wistler.a ) - will be cured on reboot
20:20:24.0703 3076 \Device\Harddisk0\DR0 - ok
20:20:24.0703 3076 \Device\Harddisk0\DR0 ( Rootkit.Boot.Wistler.a ) - User select action: Cure
20:20:43.0156 0444 Deinitialize success

snad jsem to udělal dobře

20:14:32.0359 3256 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
20:14:32.0625 3256 ============================================================
20:14:32.0640 3256 Current date / time: 2012/02/23 20:14:32.0625
20:14:32.0640 3256 SystemInfo:
20:14:32.0640 3256
20:14:32.0640 3256 OS Version: 5.1.2600 ServicePack: 3.0
20:14:32.0640 3256 Product type: Workstation
20:14:32.0640 3256 ComputerName: HAIDAS
20:14:32.0640 3256 UserName: Roman Haidaš
20:14:32.0640 3256 Windows directory: D:\WINDOWS
20:14:32.0640 3256 System windows directory: D:\WINDOWS
20:14:32.0640 3256 Processor architecture: Intel x86
20:14:32.0640 3256 Number of processors: 2
20:14:32.0640 3256 Page size: 0x1000
20:14:32.0640 3256 Boot type: Normal boot
20:14:32.0640 3256 ============================================================
20:14:33.0078 3256 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:14:33.0078 3256 \Device\Harddisk0\DR0:
20:14:33.0078 3256 MBR used
20:14:33.0078 3256 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
20:14:33.0078 3256 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x30A2000
20:14:33.0078 3256 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x30D4800, BlocksNum 0xAEBF800
20:14:33.0218 3256 Initialize success
20:14:33.0218 3256 ============================================================
20:15:15.0859 3520 ============================================================
20:15:15.0859 3520 Scan started
20:15:15.0859 3520 Mode: Manual; SigCheck; TDLFS;
20:15:15.0859 3520 ============================================================
20:15:16.0140 3520 Aavmker4 (95d1de2a6613494e853a9738d5d9acd4) D:\WINDOWS\system32\drivers\Aavmker4.sys
20:15:24.0250 3520 Aavmker4 - ok
20:15:24.0265 3520 Abiosdsk - ok
20:15:24.0281 3520 abp480n5 - ok
20:15:24.0359 3520 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) D:\WINDOWS\system32\DRIVERS\ACPI.sys
20:15:24.0625 3520 ACPI - ok
20:15:24.0671 3520 ACPIEC (afdff022a01f0b11c776f0860c3b282f) D:\WINDOWS\system32\DRIVERS\ACPIEC.sys
20:15:24.0796 3520 ACPIEC - ok
20:15:24.0796 3520 adpu160m - ok
20:15:24.0812 3520 adusbser - ok
20:15:24.0843 3520 aec (8bed39e3c35d6a489438b8141717a557) D:\WINDOWS\system32\drivers\aec.sys
20:15:24.0968 3520 aec - ok
20:15:25.0046 3520 AFD (355556d9e580915118cd7ef736653a89) D:\WINDOWS\System32\drivers\afd.sys
20:15:25.0093 3520 AFD - ok
20:15:25.0109 3520 Aha154x - ok
20:15:25.0109 3520 aic78u2 - ok
20:15:25.0125 3520 aic78xx - ok
20:15:25.0140 3520 AliIde - ok
20:15:25.0156 3520 amsint - ok
20:15:25.0171 3520 Arp1394 (b5b8a80875c1dededa8b02765642c32f) D:\WINDOWS\system32\DRIVERS\arp1394.sys
20:15:25.0296 3520 Arp1394 - ok
20:15:25.0296 3520 asc - ok
20:15:25.0312 3520 asc3350p - ok
20:15:25.0328 3520 asc3550 - ok
20:15:25.0328 3520 aswFsBlk - ok
20:15:25.0390 3520 aswMon2 (fff2dbb17a3c89f87f78d5fa72ca47fd) D:\WINDOWS\system32\drivers\aswMon2.sys
20:15:25.0406 3520 aswMon2 - ok
20:15:25.0421 3520 aswRdr (36239e24470a3dd81fae37510953cc6c) D:\WINDOWS\system32\drivers\aswRdr.sys
20:15:25.0437 3520 aswRdr - ok
20:15:25.0468 3520 aswSnx (caa846e9c83836bdc3d2d700c678db65) D:\WINDOWS\system32\drivers\aswSnx.sys
20:15:25.0500 3520 aswSnx - ok
20:15:25.0531 3520 aswSP (748ae7f2d7da33adb063fe05704a9969) D:\WINDOWS\system32\drivers\aswSP.sys
20:15:25.0562 3520 aswSP - ok
20:15:25.0578 3520 aswTdi (ca9925ce1dbd07ffe1eb357752cf5577) D:\WINDOWS\system32\drivers\aswTdi.sys
20:15:25.0593 3520 aswTdi - ok
20:15:25.0609 3520 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) D:\WINDOWS\system32\DRIVERS\asyncmac.sys
20:15:25.0765 3520 AsyncMac - ok
20:15:25.0859 3520 atapi (9f3a2f5aa6875c72bf062c712cfa2674) D:\WINDOWS\system32\DRIVERS\atapi.sys
20:15:26.0015 3520 atapi - ok
20:15:26.0031 3520 Atdisk - ok
20:15:26.0046 3520 Atmarpc (9916c1225104ba14794209cfa8012159) D:\WINDOWS\system32\DRIVERS\atmarpc.sys
20:15:26.0203 3520 Atmarpc - ok
20:15:26.0250 3520 audstub (d9f724aa26c010a217c97606b160ed68) D:\WINDOWS\system32\DRIVERS\audstub.sys
20:15:26.0406 3520 audstub - ok
20:15:26.0546 3520 Beep (da1f27d85e0d1525f6621372e7b685e9) D:\WINDOWS\system32\drivers\Beep.sys
20:15:26.0703 3520 Beep - ok
20:15:26.0750 3520 BthEnum (b279426e3c0c344893ed78a613a73bde) D:\WINDOWS\system32\DRIVERS\BthEnum.sys
20:15:26.0906 3520 BthEnum - ok
20:15:26.0921 3520 BTHMODEM (fca6f069597b62d42495191ace3fc6c1) D:\WINDOWS\system32\DRIVERS\bthmodem.sys
20:15:27.0062 3520 BTHMODEM - ok
20:15:27.0109 3520 BthPan (80602b8746d3738f5886ce3d67ef06b6) D:\WINDOWS\system32\DRIVERS\bthpan.sys
20:15:27.0234 3520 BthPan - ok
20:15:27.0281 3520 BTHPORT (f338662a6c1fc11dd9508f6dff2c06a2) D:\WINDOWS\system32\Drivers\BTHport.sys
20:15:27.0312 3520 BTHPORT - ok
20:15:27.0343 3520 BTHUSB (61364cd71ef63b0f038b7e9df00f1efa) D:\WINDOWS\system32\Drivers\BTHUSB.sys
20:15:27.0484 3520 BTHUSB - ok
20:15:27.0687 3520 catchme - ok
20:15:27.0765 3520 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) D:\WINDOWS\system32\drivers\cbidf2k.sys
20:15:27.0953 3520 cbidf2k - ok
20:15:27.0968 3520 cd20xrnt - ok
20:15:27.0984 3520 Cdaudio (c1b486a7658353d33a10cc15211a873b) D:\WINDOWS\system32\drivers\Cdaudio.sys
20:15:28.0109 3520 Cdaudio - ok
20:15:28.0140 3520 Cdfs (c885b02847f5d2fd45a24e219ed93b32) D:\WINDOWS\system32\drivers\Cdfs.sys
20:15:28.0265 3520 Cdfs - ok
20:15:28.0296 3520 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) D:\WINDOWS\system32\DRIVERS\cdrom.sys
20:15:28.0437 3520 Cdrom - ok
20:15:28.0437 3520 Changer - ok
20:15:28.0484 3520 CmBatt (0f6c187d38d98f8df904589a5f94d411) D:\WINDOWS\system32\DRIVERS\CmBatt.sys
20:15:28.0609 3520 CmBatt - ok
20:15:28.0625 3520 CmdIde - ok
20:15:28.0656 3520 Compbatt (6e4c9f21f0fae8940661144f41b13203) D:\WINDOWS\system32\DRIVERS\compbatt.sys
20:15:28.0765 3520 Compbatt - ok
20:15:28.0781 3520 Cpqarray - ok
20:15:28.0796 3520 dac2w2k - ok
20:15:28.0812 3520 dac960nt - ok
20:15:28.0828 3520 Disk (044452051f3e02e7963599fc8f4f3e25) D:\WINDOWS\system32\DRIVERS\disk.sys
20:15:28.0953 3520 Disk - ok
20:15:29.0000 3520 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) D:\WINDOWS\system32\drivers\dmboot.sys
20:15:29.0187 3520 dmboot - ok
20:15:29.0265 3520 dmio (fff1720af51171f32f1ead5cf71f2810) D:\WINDOWS\system32\drivers\dmio.sys
20:15:29.0406 3520 dmio - ok
20:15:29.0437 3520 dmload (e9317282a63ca4d188c0df5e09c6ac5f) D:\WINDOWS\system32\drivers\dmload.sys
20:15:29.0640 3520 dmload - ok
20:15:29.0671 3520 DMusic (8a208dfcf89792a484e76c40e5f50b45) D:\WINDOWS\system32\drivers\DMusic.sys
20:15:29.0796 3520 DMusic - ok
20:15:29.0812 3520 dpti2o - ok
20:15:29.0843 3520 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) D:\WINDOWS\system32\drivers\drmkaud.sys
20:15:29.0953 3520 drmkaud - ok
20:15:30.0078 3520 E100B (6ca101f9aa3d845ba31f6e13c01301a8) D:\WINDOWS\system32\DRIVERS\e100b325.sys
20:15:30.0125 3520 E100B - ok
20:15:30.0156 3520 eusk2par (0c79689b4840ef8ec522598343f26849) D:\WINDOWS\system32\Drivers\eusk2par.sys
20:15:30.0156 3520 eusk2par - ok
20:15:30.0234 3520 Fastfat (38d332a6d56af32635675f132548343e) D:\WINDOWS\system32\drivers\Fastfat.sys
20:15:30.0359 3520 Fastfat - ok
20:15:30.0390 3520 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) D:\WINDOWS\system32\drivers\Fdc.sys
20:15:30.0531 3520 Fdc - ok
20:15:30.0546 3520 Fips (ac366695a0796560aa37215ad5762aaf) D:\WINDOWS\system32\drivers\Fips.sys
20:15:30.0687 3520 Fips - ok
20:15:30.0703 3520 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) D:\WINDOWS\system32\drivers\Flpydisk.sys
20:15:30.0828 3520 Flpydisk - ok
20:15:30.0859 3520 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) D:\WINDOWS\system32\drivers\fltmgr.sys
20:15:30.0984 3520 FltMgr - ok
20:15:31.0046 3520 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) D:\WINDOWS\system32\drivers\Fs_Rec.sys
20:15:31.0171 3520 Fs_Rec - ok
20:15:31.0203 3520 Ftdisk (4e664d8541db4a66b73a24257e322e1f) D:\WINDOWS\system32\DRIVERS\ftdisk.sys
20:15:31.0328 3520 Ftdisk - ok
20:15:31.0406 3520 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) D:\WINDOWS\system32\DRIVERS\msgpc.sys
20:15:31.0562 3520 Gpc - ok
20:15:31.0609 3520 HdAudAddService (a32a0b427c296862f043296128dcc113) D:\WINDOWS\system32\drivers\CHDAud.sys
20:15:31.0687 3520 HdAudAddService - ok
20:15:31.0718 3520 HDAudBus (573c7d0a32852b48f3058cfd8026f511) D:\WINDOWS\system32\DRIVERS\HDAudBus.sys
20:15:31.0875 3520 HDAudBus - ok
20:15:31.0921 3520 hidusb (ccf82c5ec8a7326c3066de870c06daf1) D:\WINDOWS\system32\DRIVERS\hidusb.sys
20:15:32.0093 3520 hidusb - ok
20:15:32.0109 3520 hpn - ok
20:15:32.0171 3520 HSF_DPV (09c2f46230034280d7e5f0b437146c45) D:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
20:15:32.0265 3520 HSF_DPV - ok
20:15:32.0343 3520 HSXHWAZL (83f221ddae2d2353b41f0227e6e411d7) D:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
20:15:32.0359 3520 HSXHWAZL - ok
20:15:32.0406 3520 HTTP (f80a415ef82cd06ffaf0d971528ead38) D:\WINDOWS\system32\Drivers\HTTP.sys
20:15:32.0453 3520 HTTP - ok
20:15:32.0453 3520 i2omgmt - ok
20:15:32.0468 3520 i2omp - ok
20:15:32.0500 3520 i8042prt (c528e27945367191e7bae364930b6932) D:\WINDOWS\system32\DRIVERS\i8042prt.sys
20:15:32.0625 3520 i8042prt - ok
20:15:32.0703 3520 ialm (da91f5385cfc8ba0f110f2fde112b563) D:\WINDOWS\system32\DRIVERS\ialmnt5.sys
20:15:32.0859 3520 ialm - ok
20:15:33.0000 3520 iaStor (309c4d86d989fb1fcf64bd30dc81c51b) D:\WINDOWS\system32\DRIVERS\iaStor.sys
20:15:33.0062 3520 iaStor - ok
20:15:33.0093 3520 Imapi (083a052659f5310dd8b6a6cb05edcf8e) D:\WINDOWS\system32\DRIVERS\imapi.sys
20:15:33.0281 3520 Imapi - ok
20:15:33.0296 3520 ini910u - ok
20:15:33.0312 3520 IntelIde - ok
20:15:33.0328 3520 intelppm (27b290d632af2cf3cf40bfddb7370985) D:\WINDOWS\system32\DRIVERS\intelppm.sys
20:15:33.0453 3520 intelppm - ok
20:15:33.0484 3520 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) D:\WINDOWS\system32\drivers\ip6fw.sys
20:15:33.0593 3520 Ip6Fw - ok
20:15:33.0625 3520 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) D:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
20:15:33.0765 3520 IpFilterDriver - ok
20:15:33.0812 3520 IpInIp (b87ab476dcf76e72010632b5550955f5) D:\WINDOWS\system32\DRIVERS\ipinip.sys
20:15:33.0921 3520 IpInIp - ok
20:15:33.0953 3520 IpNat (cc748ea12c6effde940ee98098bf96bb) D:\WINDOWS\system32\DRIVERS\ipnat.sys
20:15:34.0078 3520 IpNat - ok
20:15:34.0171 3520 IPSec (23c74d75e36e7158768dd63d92789a91) D:\WINDOWS\system32\DRIVERS\ipsec.sys
20:15:34.0281 3520 IPSec - ok
20:15:34.0312 3520 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) D:\WINDOWS\system32\DRIVERS\irenum.sys
20:15:34.0406 3520 IRENUM - ok
20:15:34.0421 3520 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) D:\WINDOWS\system32\DRIVERS\isapnp.sys
20:15:34.0562 3520 isapnp - ok
20:15:34.0625 3520 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) D:\WINDOWS\system32\DRIVERS\kbdclass.sys
20:15:34.0734 3520 Kbdclass - ok
20:15:34.0750 3520 kbdhid (86c8f23616c6c6e5b2776901c17b945b) D:\WINDOWS\system32\DRIVERS\kbdhid.sys
20:15:34.0875 3520 kbdhid - ok
20:15:34.0921 3520 kmixer (692bcf44383d056aed41b045a323d378) D:\WINDOWS\system32\drivers\kmixer.sys
20:15:35.0031 3520 kmixer - ok
20:15:35.0046 3520 KSecDD (b467646c54cc746128904e1654c750c1) D:\WINDOWS\system32\drivers\KSecDD.sys
20:15:35.0109 3520 KSecDD - ok
20:15:35.0140 3520 lbrtfdc - ok
20:15:35.0187 3520 mdmxsdk (e246a32c445056996074a397da56e815) D:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
20:15:35.0218 3520 mdmxsdk - ok
20:15:35.0312 3520 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) D:\WINDOWS\system32\drivers\mnmdd.sys
20:15:35.0437 3520 mnmdd - ok
20:15:35.0453 3520 Modem (44032b0c6d9954d3fd26438330b99ee7) D:\WINDOWS\system32\drivers\Modem.sys
20:15:35.0609 3520 Modem - ok
20:15:35.0640 3520 Mouclass (4cb582831dbde63ce43b45d771218374) D:\WINDOWS\system32\DRIVERS\mouclass.sys
20:15:35.0812 3520 Mouclass - ok
20:15:35.0937 3520 mouhid (bb269eba740737ab749b214d568b6812) D:\WINDOWS\system32\DRIVERS\mouhid.sys
20:15:36.0046 3520 mouhid - ok
20:15:36.0078 3520 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) D:\WINDOWS\system32\drivers\MountMgr.sys
20:15:36.0203 3520 MountMgr - ok
20:15:36.0234 3520 mraid35x - ok
20:15:36.0281 3520 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) D:\WINDOWS\system32\DRIVERS\mrxdav.sys
20:15:36.0406 3520 MRxDAV - ok
20:15:36.0484 3520 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) D:\WINDOWS\system32\DRIVERS\mrxsmb.sys
20:15:36.0546 3520 MRxSmb - ok
20:15:36.0593 3520 Msfs (c941ea2454ba8350021d774daf0f1027) D:\WINDOWS\system32\drivers\Msfs.sys
20:15:36.0703 3520 Msfs - ok
20:15:36.0734 3520 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) D:\WINDOWS\system32\drivers\MSKSSRV.sys
20:15:36.0859 3520 MSKSSRV - ok
20:15:36.0875 3520 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) D:\WINDOWS\system32\drivers\MSPCLOCK.sys
20:15:37.0031 3520 MSPCLOCK - ok
20:15:37.0078 3520 MSPQM (bad59648ba099da4a17680b39730cb3d) D:\WINDOWS\system32\drivers\MSPQM.sys
20:15:37.0250 3520 MSPQM - ok
20:15:37.0343 3520 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) D:\WINDOWS\system32\DRIVERS\mssmbios.sys
20:15:37.0453 3520 mssmbios - ok
20:15:37.0468 3520 Mup (de6a75f5c270e756c5508d94b6cf68f5) D:\WINDOWS\system32\drivers\Mup.sys
20:15:37.0515 3520 Mup - ok
20:15:37.0546 3520 NDIS (1df7f42665c94b825322fae71721130d) D:\WINDOWS\system32\drivers\NDIS.sys
20:15:37.0671 3520 NDIS - ok
20:15:37.0703 3520 NdisTapi (0109c4f3850dfbab279542515386ae22) D:\WINDOWS\system32\DRIVERS\ndistapi.sys
20:15:37.0734 3520 NdisTapi - ok
20:15:37.0765 3520 Ndisuio (f927a4434c5028758a842943ef1a3849) D:\WINDOWS\system32\DRIVERS\ndisuio.sys
20:15:37.0906 3520 Ndisuio - ok
20:15:37.0937 3520 NdisWan (edc1531a49c80614b2cfda43ca8659ab) D:\WINDOWS\system32\DRIVERS\ndiswan.sys
20:15:38.0062 3520 NdisWan - ok
20:15:38.0140 3520 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) D:\WINDOWS\system32\drivers\NDProxy.sys
20:15:38.0187 3520 NDProxy - ok
20:15:38.0203 3520 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) D:\WINDOWS\system32\DRIVERS\netbios.sys
20:15:38.0312 3520 NetBIOS - ok
20:15:38.0359 3520 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) D:\WINDOWS\system32\DRIVERS\netbt.sys
20:15:38.0484 3520 NetBT - ok
20:15:38.0640 3520 NETw3x32 (e2f396f71a793a04839dbb6af304a026) D:\WINDOWS\system32\DRIVERS\NETw3x32.sys
20:15:38.0859 3520 NETw3x32 - ok
20:15:38.0968 3520 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) D:\WINDOWS\system32\DRIVERS\nic1394.sys
20:15:39.0140 3520 NIC1394 - ok
20:15:39.0203 3520 Npfs (3182d64ae053d6fb034f44b6def8034a) D:\WINDOWS\system32\drivers\Npfs.sys
20:15:39.0328 3520 Npfs - ok
20:15:39.0421 3520 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) D:\WINDOWS\system32\drivers\Ntfs.sys
20:15:39.0546 3520 Ntfs - ok
20:15:39.0578 3520 Null (73c1e1f395918bc2c6dd67af7591a3ad) D:\WINDOWS\system32\drivers\Null.sys
20:15:39.0687 3520 Null - ok
20:15:39.0718 3520 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) D:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
20:15:39.0859 3520 NwlnkFlt - ok
20:15:39.0875 3520 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) D:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
20:15:39.0984 3520 NwlnkFwd - ok
20:15:40.0046 3520 OdysseyIM4 (7af6ec0ea4261ecf7da084103be31ea8) D:\WINDOWS\system32\DRIVERS\odysseyIM4.sys
20:15:40.0078 3520 OdysseyIM4 - ok
20:15:40.0171 3520 ohci1394 (ca33832df41afb202ee7aeb05145922f) D:\WINDOWS\system32\DRIVERS\ohci1394.sys
20:15:40.0296 3520 ohci1394 - ok
20:15:40.0359 3520 Parport (46f8db73b4a53e543f8e371dc7c75bae) D:\WINDOWS\system32\drivers\Parport.sys
20:15:40.0468 3520 Parport - ok
20:15:40.0500 3520 PartMgr (beb3ba25197665d82ec7065b724171c6) D:\WINDOWS\system32\drivers\PartMgr.sys
20:15:40.0671 3520 PartMgr - ok
20:15:40.0718 3520 ParVdm (1fae19d0457176318bba4a8795656ebc) D:\WINDOWS\system32\drivers\ParVdm.sys
20:15:40.0843 3520 ParVdm - ok
20:15:40.0875 3520 PCI (6ce351d149cb4befc702951e471e1730) D:\WINDOWS\system32\DRIVERS\pci.sys
20:15:41.0000 3520 PCI - ok
20:15:41.0000 3520 PCIDump - ok
20:15:41.0031 3520 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) D:\WINDOWS\system32\DRIVERS\pciide.sys
20:15:41.0156 3520 PCIIde - ok
20:15:41.0234 3520 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) D:\WINDOWS\system32\drivers\Pcmcia.sys
20:15:41.0359 3520 Pcmcia - ok
20:15:41.0406 3520 PDCOMP - ok
20:15:41.0421 3520 PDFRAME - ok
20:15:41.0421 3520 PDRELI - ok
20:15:41.0437 3520 PDRFRAME - ok
20:15:41.0453 3520 perc2 - ok
20:15:41.0453 3520 perc2hib - ok
20:15:41.0500 3520 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) D:\WINDOWS\system32\DRIVERS\raspptp.sys
20:15:41.0625 3520 PptpMiniport - ok
20:15:41.0656 3520 PSched (09298ec810b07e5d582cb3a3f9255424) D:\WINDOWS\system32\DRIVERS\psched.sys
20:15:41.0765 3520 PSched - ok
20:15:41.0781 3520 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) D:\WINDOWS\system32\DRIVERS\ptilink.sys
20:15:41.0906 3520 Ptilink - ok
20:15:41.0906 3520 ql1080 - ok
20:15:41.0921 3520 Ql10wnt - ok
20:15:41.0921 3520 ql12160 - ok
20:15:41.0937 3520 ql1240 - ok
20:15:41.0953 3520 ql1280 - ok
20:15:41.0968 3520 RapidPortM2 (3ecbd2e98ebb3fdc72529738dac01c04) D:\WINDOWS\system32\Drivers\CAPM2LP.SYS
20:15:42.0000 3520 RapidPortM2 - ok
20:15:42.0015 3520 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) D:\WINDOWS\system32\DRIVERS\rasacd.sys
20:15:42.0125 3520 RasAcd - ok
20:15:42.0140 3520 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) D:\WINDOWS\system32\DRIVERS\rasl2tp.sys
20:15:42.0250 3520 Rasl2tp - ok
20:15:42.0281 3520 RasPppoe (5bc962f2654137c9909c3d4603587dee) D:\WINDOWS\system32\DRIVERS\raspppoe.sys
20:15:42.0390 3520 RasPppoe - ok
20:15:42.0390 3520 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) D:\WINDOWS\system32\DRIVERS\raspti.sys
20:15:42.0500 3520 Raspti - ok
20:15:42.0531 3520 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) D:\WINDOWS\system32\DRIVERS\rdbss.sys
20:15:42.0640 3520 Rdbss - ok
20:15:42.0703 3520 RDPCDD (4912d5b403614ce99c28420f75353332) D:\WINDOWS\system32\DRIVERS\RDPCDD.sys
20:15:42.0812 3520 RDPCDD - ok
20:15:42.0859 3520 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) D:\WINDOWS\system32\drivers\RDPWD.sys
20:15:42.0906 3520 RDPWD - ok
20:15:42.0921 3520 redbook (611bfd220305be3a85ae876ea47d4aa5) D:\WINDOWS\system32\DRIVERS\redbook.sys
20:15:43.0031 3520 redbook - ok
20:15:43.0078 3520 RFCOMM (851c30df2807fcfa21e4c681a7d6440e) D:\WINDOWS\system32\DRIVERS\rfcomm.sys
20:15:43.0218 3520 RFCOMM - ok
20:15:43.0250 3520 rimmptsk (b6e686aab08bc276d0000293f9fba0bb) D:\WINDOWS\system32\DRIVERS\rimmptsk.sys
20:15:43.0296 3520 rimmptsk - ok
20:15:43.0359 3520 rimsptsk (bcff51e0be86d6f0e2180e5142203527) D:\WINDOWS\system32\DRIVERS\rimsptsk.sys
20:15:43.0406 3520 rimsptsk - ok
20:15:43.0421 3520 rismxdp (6baf8990e6f701f501a6cee974cf08d8) D:\WINDOWS\system32\DRIVERS\rixdptsk.sys
20:15:43.0468 3520 rismxdp - ok
20:15:43.0515 3520 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) D:\WINDOWS\system32\DRIVERS\sdbus.sys
20:15:43.0656 3520 sdbus - ok
20:15:43.0687 3520 Secdrv (90a3935d05b494a5a39d37e71f09a677) D:\WINDOWS\system32\DRIVERS\secdrv.sys
20:15:43.0765 3520 Secdrv - ok
20:15:43.0796 3520 Serial (b842729337c9b921615c40d3c1a1af96) D:\WINDOWS\system32\drivers\Serial.sys
20:15:43.0906 3520 Serial - ok
20:15:43.0953 3520 sffdisk (0fa803c64df0914b41f807ea276bf2a6) D:\WINDOWS\system32\DRIVERS\sffdisk.sys
20:15:44.0062 3520 sffdisk - ok
20:15:44.0125 3520 sffp_sd (c17c331e435ed8737525c86a7557b3ac) D:\WINDOWS\system32\DRIVERS\sffp_sd.sys
20:15:44.0234 3520 sffp_sd - ok
20:15:44.0265 3520 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) D:\WINDOWS\system32\drivers\Sfloppy.sys
20:15:44.0359 3520 Sfloppy - ok
20:15:44.0375 3520 Simbad - ok
20:15:44.0406 3520 Sparrow - ok
20:15:44.0421 3520 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) D:\WINDOWS\system32\drivers\splitter.sys
20:15:44.0546 3520 splitter - ok
20:15:44.0578 3520 sr (94610c8653635e4459316a0050d55ce7) D:\WINDOWS\system32\DRIVERS\sr.sys
20:15:44.0656 3520 sr - ok
20:15:44.0687 3520 Srv (47ddfc2f003f7f9f0592c6874962a2e7) D:\WINDOWS\system32\DRIVERS\srv.sys
20:15:44.0750 3520 Srv - ok
20:15:44.0796 3520 swenum (3941d127aef12e93addf6fe6ee027e0f) D:\WINDOWS\system32\DRIVERS\swenum.sys
20:15:44.0906 3520 swenum - ok
20:15:45.0000 3520 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) D:\WINDOWS\system32\drivers\swmidi.sys
20:15:45.0109 3520 swmidi - ok
20:15:45.0156 3520 symc810 - ok
20:15:45.0156 3520 symc8xx - ok
20:15:45.0171 3520 sym_hi - ok
20:15:45.0187 3520 sym_u3 - ok
20:15:45.0234 3520 SynTP (56cfad81069df5dbc75fc9b98902fd66) D:\WINDOWS\system32\DRIVERS\SynTP.sys
20:15:45.0296 3520 SynTP - ok
20:15:45.0343 3520 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) D:\WINDOWS\system32\drivers\sysaudio.sys
20:15:45.0453 3520 sysaudio - ok
20:15:45.0500 3520 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) D:\WINDOWS\system32\DRIVERS\tcpip.sys
20:15:45.0546 3520 Tcpip - ok
20:15:45.0609 3520 TDPIPE (6471a66807f5e104e4885f5b67349397) D:\WINDOWS\system32\drivers\TDPIPE.sys
20:15:45.0734 3520 TDPIPE - ok
20:15:45.0812 3520 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) D:\WINDOWS\system32\drivers\TDTCP.sys
20:15:45.0937 3520 TDTCP - ok
20:15:45.0984 3520 TermDD (88155247177638048422893737429d9e) D:\WINDOWS\system32\DRIVERS\termdd.sys
20:15:46.0078 3520 TermDD - ok
20:15:46.0093 3520 TosIde - ok
20:15:46.0125 3520 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) D:\WINDOWS\system32\drivers\Udfs.sys
20:15:46.0250 3520 Udfs - ok
20:15:46.0265 3520 ultra - ok
20:15:46.0312 3520 Update (402ddc88356b1bac0ee3dd1580c76a31) D:\WINDOWS\system32\DRIVERS\update.sys
20:15:46.0453 3520 Update - ok
20:15:46.0500 3520 usbccgp (173f317ce0db8e21322e71b7e60a27e8) D:\WINDOWS\system32\DRIVERS\usbccgp.sys
20:15:46.0625 3520 usbccgp - ok
20:15:46.0640 3520 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) D:\WINDOWS\system32\DRIVERS\usbehci.sys
20:15:46.0750 3520 usbehci - ok
20:15:46.0828 3520 usbhub (1ab3cdde553b6e064d2e754efe20285c) D:\WINDOWS\system32\DRIVERS\usbhub.sys
20:15:46.0953 3520 usbhub - ok
20:15:46.0968 3520 usbprint (a717c8721046828520c9edf31288fc00) D:\WINDOWS\system32\DRIVERS\usbprint.sys
20:15:47.0078 3520 usbprint - ok
20:15:47.0109 3520 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) D:\WINDOWS\system32\DRIVERS\usbscan.sys
20:15:47.0234 3520 usbscan - ok
20:15:47.0281 3520 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) D:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
20:15:47.0390 3520 USBSTOR - ok
20:15:47.0421 3520 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) D:\WINDOWS\system32\DRIVERS\usbuhci.sys
20:15:47.0531 3520 usbuhci - ok
20:15:47.0562 3520 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) D:\WINDOWS\System32\drivers\vga.sys
20:15:47.0687 3520 VgaSave - ok
20:15:47.0687 3520 ViaIde - ok
20:15:47.0734 3520 VolSnap (28a4b296b47782173c346e376cb374d1) D:\WINDOWS\system32\drivers\VolSnap.sys
20:15:47.0843 3520 VolSnap - ok
20:15:47.0921 3520 Wanarp (e20b95baedb550f32dd489265c1da1f6) D:\WINDOWS\system32\DRIVERS\wanarp.sys
20:15:48.0031 3520 Wanarp - ok
20:15:48.0078 3520 WDICA - ok
20:15:48.0109 3520 wdmaud (6768acf64b18196494413695f0c3a00f) D:\WINDOWS\system32\drivers\wdmaud.sys
20:15:48.0218 3520 wdmaud - ok
20:15:48.0281 3520 winachsf (4c17a05813e1f48e5da30ada62cdf427) D:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
20:15:48.0359 3520 winachsf - ok
20:15:48.0406 3520 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) D:\WINDOWS\System32\drivers\ws2ifsl.sys
20:15:48.0515 3520 WS2IFSL - ok
20:15:48.0546 3520 MBR (0x1B8) (9c603bc3977968c891de319283e1e7af) \Device\Harddisk0\DR0
20:15:48.0578 3520 \Device\Harddisk0\DR0 ( Rootkit.Boot.Wistler.a ) - infected
20:15:48.0578 3520 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Wistler.a (0)
20:15:48.0671 3520 Boot (0x1200) (aeb87be0364fcde7643b905b991d6098) \Device\Harddisk0\DR0\Partition0
20:15:48.0671 3520 \Device\Harddisk0\DR0\Partition0 - ok
20:15:48.0671 3520 Boot (0x1200) (d50f9f75363f5505727932f6d3df4c94) \Device\Harddisk0\DR0\Partition1
20:15:48.0671 3520 \Device\Harddisk0\DR0\Partition1 - ok
20:15:48.0703 3520 Boot (0x1200) (41d608d24c0cabec1ec38626f5c36489) \Device\Harddisk0\DR0\Partition2
20:15:48.0703 3520 \Device\Harddisk0\DR0\Partition2 - ok
20:15:48.0703 3520 ============================================================
20:15:48.0703 3520 Scan finished
20:15:48.0703 3520 ============================================================
20:15:48.0812 2576 Detected object count: 1
20:15:48.0812 2576 Actual detected object count: 1
20:18:48.0734 2576 \Device\Harddisk0\DR0 ( Rootkit.Boot.Wistler.a ) - skipped by user
20:18:48.0734 2576 \Device\Harddisk0\DR0 ( Rootkit.Boot.Wistler.a ) - User select action: Skip
20:19:18.0625 2996 ============================================================
20:19:18.0625 2996 Scan started
20:19:18.0625 2996 Mode: Manual; SigCheck; TDLFS;
20:19:18.0625 2996 ============================================================
20:19:18.0906 2996 Aavmker4 (95d1de2a6613494e853a9738d5d9acd4) D:\WINDOWS\system32\drivers\Aavmker4.sys
20:19:18.0953 2996 Aavmker4 - ok
20:19:18.0984 2996 Abiosdsk - ok
20:19:18.0984 2996 abp480n5 - ok
20:19:19.0031 2996 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) D:\WINDOWS\system32\DRIVERS\ACPI.sys
20:19:19.0265 2996 ACPI - ok
20:19:19.0312 2996 ACPIEC (afdff022a01f0b11c776f0860c3b282f) D:\WINDOWS\system32\DRIVERS\ACPIEC.sys
20:19:19.0421 2996 ACPIEC - ok
20:19:19.0437 2996 adpu160m - ok
20:19:19.0437 2996 adusbser - ok
20:19:19.0468 2996 aec (8bed39e3c35d6a489438b8141717a557) D:\WINDOWS\system32\drivers\aec.sys
20:19:19.0593 2996 aec - ok
20:19:19.0640 2996 AFD (355556d9e580915118cd7ef736653a89) D:\WINDOWS\System32\drivers\afd.sys
20:19:19.0687 2996 AFD - ok
20:19:19.0734 2996 Aha154x - ok
20:19:19.0750 2996 aic78u2 - ok
20:19:19.0750 2996 aic78xx - ok
20:19:19.0765 2996 AliIde - ok
20:19:19.0781 2996 amsint - ok
20:19:19.0812 2996 Arp1394 (b5b8a80875c1dededa8b02765642c32f) D:\WINDOWS\system32\DRIVERS\arp1394.sys
20:19:19.0937 2996 Arp1394 - ok
20:19:19.0937 2996 asc - ok
20:19:19.0953 2996 asc3350p - ok
20:19:19.0968 2996 asc3550 - ok
20:19:19.0984 2996 aswFsBlk - ok
20:19:20.0015 2996 aswMon2 (fff2dbb17a3c89f87f78d5fa72ca47fd) D:\WINDOWS\system32\drivers\aswMon2.sys
20:19:20.0031 2996 aswMon2 - ok
20:19:20.0078 2996 aswRdr (36239e24470a3dd81fae37510953cc6c) D:\WINDOWS\system32\drivers\aswRdr.sys
20:19:20.0093 2996 aswRdr - ok
20:19:20.0140 2996 aswSnx (caa846e9c83836bdc3d2d700c678db65) D:\WINDOWS\system32\drivers\aswSnx.sys
20:19:20.0171 2996 aswSnx - ok
20:19:20.0218 2996 aswSP (748ae7f2d7da33adb063fe05704a9969) D:\WINDOWS\system32\drivers\aswSP.sys
20:19:20.0250 2996 aswSP - ok
20:19:20.0250 2996 aswTdi (ca9925ce1dbd07ffe1eb357752cf5577) D:\WINDOWS\system32\drivers\aswTdi.sys
20:19:20.0265 2996 aswTdi - ok
20:19:20.0296 2996 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) D:\WINDOWS\system32\DRIVERS\asyncmac.sys
20:19:20.0437 2996 AsyncMac - ok
20:19:20.0484 2996 atapi (9f3a2f5aa6875c72bf062c712cfa2674) D:\WINDOWS\system32\DRIVERS\atapi.sys
20:19:20.0671 2996 atapi - ok
20:19:20.0703 2996 Atdisk - ok
20:19:20.0718 2996 Atmarpc (9916c1225104ba14794209cfa8012159) D:\WINDOWS\system32\DRIVERS\atmarpc.sys
20:19:20.0890 2996 Atmarpc - ok
20:19:20.0937 2996 audstub (d9f724aa26c010a217c97606b160ed68) D:\WINDOWS\system32\DRIVERS\audstub.sys
20:19:21.0062 2996 audstub - ok
20:19:21.0093 2996 Beep (da1f27d85e0d1525f6621372e7b685e9) D:\WINDOWS\system32\drivers\Beep.sys
20:19:21.0203 2996 Beep - ok
20:19:21.0250 2996 BthEnum (b279426e3c0c344893ed78a613a73bde) D:\WINDOWS\system32\DRIVERS\BthEnum.sys
20:19:21.0359 2996 BthEnum - ok
20:19:21.0421 2996 BTHMODEM (fca6f069597b62d42495191ace3fc6c1) D:\WINDOWS\system32\DRIVERS\bthmodem.sys
20:19:21.0515 2996 BTHMODEM - ok
20:19:21.0531 2996 BthPan (80602b8746d3738f5886ce3d67ef06b6) D:\WINDOWS\system32\DRIVERS\bthpan.sys
20:19:21.0640 2996 BthPan - ok
20:19:21.0687 2996 BTHPORT (f338662a6c1fc11dd9508f6dff2c06a2) D:\WINDOWS\system32\Drivers\BTHport.sys
20:19:21.0703 2996 BTHPORT - ok
20:19:21.0734 2996 BTHUSB (61364cd71ef63b0f038b7e9df00f1efa) D:\WINDOWS\system32\Drivers\BTHUSB.sys
20:19:21.0843 2996 BTHUSB - ok
20:19:22.0046 2996 catchme - ok
20:19:22.0140 2996 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) D:\WINDOWS\system32\drivers\cbidf2k.sys
20:19:22.0328 2996 cbidf2k - ok
20:19:22.0328 2996 cd20xrnt - ok
20:19:22.0343 2996 Cdaudio (c1b486a7658353d33a10cc15211a873b) D:\WINDOWS\system32\drivers\Cdaudio.sys
20:19:22.0453 2996 Cdaudio - ok
20:19:22.0484 2996 Cdfs (c885b02847f5d2fd45a24e219ed93b32) D:\WINDOWS\system32\drivers\Cdfs.sys
20:19:22.0593 2996 Cdfs - ok
20:19:22.0640 2996 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) D:\WINDOWS\system32\DRIVERS\cdrom.sys
20:19:22.0765 2996 Cdrom - ok
20:19:22.0765 2996 Changer - ok
20:19:22.0812 2996 CmBatt (0f6c187d38d98f8df904589a5f94d411) D:\WINDOWS\system32\DRIVERS\CmBatt.sys
20:19:22.0937 2996 CmBatt - ok
20:19:22.0937 2996 CmdIde - ok
20:19:22.0984 2996 Compbatt (6e4c9f21f0fae8940661144f41b13203) D:\WINDOWS\system32\DRIVERS\compbatt.sys
20:19:23.0078 2996 Compbatt - ok
20:19:23.0093 2996 Cpqarray - ok
20:19:23.0109 2996 dac2w2k - ok
20:19:23.0125 2996 dac960nt - ok
20:19:23.0140 2996 Disk (044452051f3e02e7963599fc8f4f3e25) D:\WINDOWS\system32\DRIVERS\disk.sys
20:19:23.0250 2996 Disk - ok
20:19:23.0296 2996 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) D:\WINDOWS\system32\drivers\dmboot.sys
20:19:23.0453 2996 dmboot - ok
20:19:23.0531 2996 dmio (fff1720af51171f32f1ead5cf71f2810) D:\WINDOWS\system32\drivers\dmio.sys
20:19:23.0656 2996 dmio - ok
20:19:23.0687 2996 dmload (e9317282a63ca4d188c0df5e09c6ac5f) D:\WINDOWS\system32\drivers\dmload.sys
20:19:23.0812 2996 dmload - ok
20:19:23.0843 2996 DMusic (8a208dfcf89792a484e76c40e5f50b45) D:\WINDOWS\system32\drivers\DMusic.sys
20:19:23.0968 2996 DMusic - ok
20:19:23.0968 2996 dpti2o - ok
20:19:24.0000 2996 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) D:\WINDOWS\system32\drivers\drmkaud.sys
20:19:24.0109 2996 drmkaud - ok
20:19:24.0140 2996 E100B (6ca101f9aa3d845ba31f6e13c01301a8) D:\WINDOWS\system32\DRIVERS\e100b325.sys
20:19:24.0171 2996 E100B - ok
20:19:24.0250 2996 eusk2par (0c79689b4840ef8ec522598343f26849) D:\WINDOWS\system32\Drivers\eusk2par.sys
20:19:24.0265 2996 eusk2par - ok
20:19:24.0312 2996 Fastfat (38d332a6d56af32635675f132548343e) D:\WINDOWS\system32\drivers\Fastfat.sys
20:19:24.0406 2996 Fastfat - ok
20:19:24.0453 2996 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) D:\WINDOWS\system32\drivers\Fdc.sys
20:19:24.0562 2996 Fdc - ok
20:19:24.0578 2996 Fips (ac366695a0796560aa37215ad5762aaf) D:\WINDOWS\system32\drivers\Fips.sys
20:19:24.0703 2996 Fips - ok
20:19:24.0703 2996 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) D:\WINDOWS\system32\drivers\Flpydisk.sys
20:19:24.0812 2996 Flpydisk - ok
20:19:24.0859 2996 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) D:\WINDOWS\system32\drivers\fltmgr.sys
20:19:24.0984 2996 FltMgr - ok
20:19:25.0015 2996 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) D:\WINDOWS\system32\drivers\Fs_Rec.sys
20:19:25.0125 2996 Fs_Rec - ok
20:19:25.0218 2996 Ftdisk (4e664d8541db4a66b73a24257e322e1f) D:\WINDOWS\system32\DRIVERS\ftdisk.sys
20:19:25.0328 2996 Ftdisk - ok
20:19:25.0375 2996 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) D:\WINDOWS\system32\DRIVERS\msgpc.sys
20:19:25.0515 2996 Gpc - ok
20:19:25.0562 2996 HdAudAddService (a32a0b427c296862f043296128dcc113) D:\WINDOWS\system32\drivers\CHDAud.sys
20:19:25.0609 2996 HdAudAddService - ok
20:19:25.0640 2996 HDAudBus (573c7d0a32852b48f3058cfd8026f511) D:\WINDOWS\system32\DRIVERS\HDAudBus.sys
20:19:25.0765 2996 HDAudBus - ok
20:19:25.0796 2996 hidusb (ccf82c5ec8a7326c3066de870c06daf1) D:\WINDOWS\system32\DRIVERS\hidusb.sys
20:19:25.0906 2996 hidusb - ok
20:19:25.0921 2996 hpn - ok
20:19:25.0968 2996 HSF_DPV (09c2f46230034280d7e5f0b437146c45) D:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
20:19:26.0031 2996 HSF_DPV - ok
20:19:26.0078 2996 HSXHWAZL (83f221ddae2d2353b41f0227e6e411d7) D:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
20:19:26.0093 2996 HSXHWAZL - ok
20:19:26.0187 2996 HTTP (f80a415ef82cd06ffaf0d971528ead38) D:\WINDOWS\system32\Drivers\HTTP.sys
20:19:26.0234 2996 HTTP - ok
20:19:26.0265 2996 i2omgmt - ok
20:19:26.0281 2996 i2omp - ok
20:19:26.0312 2996 i8042prt (c528e27945367191e7bae364930b6932) D:\WINDOWS\system32\DRIVERS\i8042prt.sys
20:19:26.0437 2996 i8042prt - ok
20:19:26.0500 2996 ialm (da91f5385cfc8ba0f110f2fde112b563) D:\WINDOWS\system32\DRIVERS\ialmnt5.sys
20:19:26.0609 2996 ialm - ok
20:19:26.0703 2996 iaStor (309c4d86d989fb1fcf64bd30dc81c51b) D:\WINDOWS\system32\DRIVERS\iaStor.sys
20:19:26.0781 2996 iaStor - ok
20:19:26.0843 2996 Imapi (083a052659f5310dd8b6a6cb05edcf8e) D:\WINDOWS\system32\DRIVERS\imapi.sys
20:19:27.0015 2996 Imapi - ok
20:19:27.0140 2996 ini910u - ok
20:19:27.0156 2996 IntelIde - ok
20:19:27.0187 2996 intelppm (27b290d632af2cf3cf40bfddb7370985) D:\WINDOWS\system32\DRIVERS\intelppm.sys
20:19:27.0312 2996 intelppm - ok
20:19:27.0328 2996 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) D:\WINDOWS\system32\drivers\ip6fw.sys
20:19:27.0437 2996 Ip6Fw - ok
20:19:27.0500 2996 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) D:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
20:19:27.0640 2996 IpFilterDriver - ok
20:19:27.0656 2996 IpInIp (b87ab476dcf76e72010632b5550955f5) D:\WINDOWS\system32\DRIVERS\ipinip.sys
20:19:27.0781 2996 IpInIp - ok
20:19:27.0828 2996 IpNat (cc748ea12c6effde940ee98098bf96bb) D:\WINDOWS\system32\DRIVERS\ipnat.sys
20:19:27.0984 2996 IpNat - ok
20:19:28.0062 2996 IPSec (23c74d75e36e7158768dd63d92789a91) D:\WINDOWS\system32\DRIVERS\ipsec.sys
20:19:28.0187 2996 IPSec - ok
20:19:28.0250 2996 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) D:\WINDOWS\system32\DRIVERS\irenum.sys
20:19:28.0343 2996 IRENUM - ok
20:19:28.0375 2996 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) D:\WINDOWS\system32\DRIVERS\isapnp.sys
20:19:28.0546 2996 isapnp - ok
20:19:28.0578 2996 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) D:\WINDOWS\system32\DRIVERS\kbdclass.sys
20:19:28.0687 2996 Kbdclass - ok
20:19:28.0703 2996 kbdhid (86c8f23616c6c6e5b2776901c17b945b) D:\WINDOWS\system32\DRIVERS\kbdhid.sys
20:19:28.0812 2996 kbdhid - ok
20:19:28.0843 2996 kmixer (692bcf44383d056aed41b045a323d378) D:\WINDOWS\system32\drivers\kmixer.sys
20:19:28.0937 2996 kmixer - ok
20:19:28.0968 2996 KSecDD (b467646c54cc746128904e1654c750c1) D:\WINDOWS\system32\drivers\KSecDD.sys
20:19:28.0984 2996 KSecDD - ok
20:19:29.0000 2996 lbrtfdc - ok
20:19:29.0031 2996 mdmxsdk (e246a32c445056996074a397da56e815) D:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
20:19:29.0046 2996 mdmxsdk - ok
20:19:29.0125 2996 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) D:\WINDOWS\system32\drivers\mnmdd.sys
20:19:29.0234 2996 mnmdd - ok
20:19:29.0281 2996 Modem (44032b0c6d9954d3fd26438330b99ee7) D:\WINDOWS\system32\drivers\Modem.sys
20:19:29.0406 2996 Modem - ok
20:19:29.0421 2996 Mouclass (4cb582831dbde63ce43b45d771218374) D:\WINDOWS\system32\DRIVERS\mouclass.sys
20:19:29.0546 2996 Mouclass - ok
20:19:29.0562 2996 mouhid (bb269eba740737ab749b214d568b6812) D:\WINDOWS\system32\DRIVERS\mouhid.sys
20:19:29.0687 2996 mouhid - ok
20:19:29.0718 2996 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) D:\WINDOWS\system32\drivers\MountMgr.sys
20:19:29.0828 2996 MountMgr - ok
20:19:29.0843 2996 mraid35x - ok
20:19:29.0875 2996 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) D:\WINDOWS\system32\DRIVERS\mrxdav.sys
20:19:30.0000 2996 MRxDAV - ok
20:19:30.0046 2996 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) D:\WINDOWS\system32\DRIVERS\mrxsmb.sys
20:19:30.0093 2996 MRxSmb - ok
20:19:30.0140 2996 Msfs (c941ea2454ba8350021d774daf0f1027) D:\WINDOWS\system32\drivers\Msfs.sys
20:19:30.0265 2996 Msfs - ok
20:19:30.0281 2996 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) D:\WINDOWS\system32\drivers\MSKSSRV.sys
20:19:30.0390 2996 MSKSSRV - ok
20:19:30.0406 2996 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) D:\WINDOWS\system32\drivers\MSPCLOCK.sys
20:19:30.0531 2996 MSPCLOCK - ok
20:19:30.0562 2996 MSPQM (bad59648ba099da4a17680b39730cb3d) D:\WINDOWS\system32\drivers\MSPQM.sys
20:19:30.0703 2996 MSPQM - ok
20:19:30.0718 2996 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) D:\WINDOWS\system32\DRIVERS\mssmbios.sys
20:19:30.0812 2996 mssmbios - ok
20:19:30.0859 2996 Mup (de6a75f5c270e756c5508d94b6cf68f5) D:\WINDOWS\system32\drivers\Mup.sys
20:19:30.0890 2996 Mup - ok
20:19:30.0968 2996 NDIS (1df7f42665c94b825322fae71721130d) D:\WINDOWS\system32\drivers\NDIS.sys
20:19:31.0078 2996 NDIS - ok
20:19:31.0109 2996 NdisTapi (0109c4f3850dfbab279542515386ae22) D:\WINDOWS\system32\DRIVERS\ndistapi.sys
20:19:31.0125 2996 NdisTapi - ok
20:19:31.0156 2996 Ndisuio (f927a4434c5028758a842943ef1a3849) D:\WINDOWS\system32\DRIVERS\ndisuio.sys
20:19:31.0265 2996 Ndisuio - ok
20:19:31.0281 2996 NdisWan (edc1531a49c80614b2cfda43ca8659ab) D:\WINDOWS\system32\DRIVERS\ndiswan.sys
20:19:31.0421 2996 NdisWan - ok
20:19:31.0468 2996 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) D:\WINDOWS\system32\drivers\NDProxy.sys
20:19:31.0500 2996 NDProxy - ok
20:19:31.0531 2996 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) D:\WINDOWS\system32\DRIVERS\netbios.sys
20:19:31.0718 2996 NetBIOS - ok
20:19:31.0890 2996 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) D:\WINDOWS\system32\DRIVERS\netbt.sys
20:19:32.0000 2996 NetBT - ok
20:19:32.0234 2996 NETw3x32 (e2f396f71a793a04839dbb6af304a026) D:\WINDOWS\system32\DRIVERS\NETw3x32.sys
20:19:32.0328 2996 NETw3x32 - ok
20:19:32.0359 2996 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) D:\WINDOWS\system32\DRIVERS\nic1394.sys
20:19:32.0468 2996 NIC1394 - ok
20:19:32.0500 2996 Npfs (3182d64ae053d6fb034f44b6def8034a) D:\WINDOWS\system32\drivers\Npfs.sys
20:19:32.0593 2996 Npfs - ok
20:19:32.0671 2996 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) D:\WINDOWS\system32\drivers\Ntfs.sys
20:19:32.0796 2996 Ntfs - ok
20:19:32.0828 2996 Null (73c1e1f395918bc2c6dd67af7591a3ad) D:\WINDOWS\system32\drivers\Null.sys
20:19:32.0937 2996 Null - ok
20:19:33.0015 2996 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) D:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
20:19:33.0140 2996 NwlnkFlt - ok
20:19:33.0156 2996 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) D:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
20:19:33.0250 2996 NwlnkFwd - ok
20:19:33.0296 2996 OdysseyIM4 (7af6ec0ea4261ecf7da084103be31ea8) D:\WINDOWS\system32\DRIVERS\odysseyIM4.sys
20:19:33.0343 2996 OdysseyIM4 - ok
20:19:33.0375 2996 ohci1394 (ca33832df41afb202ee7aeb05145922f) D:\WINDOWS\system32\DRIVERS\ohci1394.sys
20:19:33.0500 2996 ohci1394 - ok
20:19:33.0531 2996 Parport (46f8db73b4a53e543f8e371dc7c75bae) D:\WINDOWS\system32\drivers\Parport.sys
20:19:33.0640 2996 Parport - ok
20:19:33.0718 2996 PartMgr (beb3ba25197665d82ec7065b724171c6) D:\WINDOWS\system32\drivers\PartMgr.sys
20:19:33.0828 2996 PartMgr - ok
20:19:33.0843 2996 ParVdm (1fae19d0457176318bba4a8795656ebc) D:\WINDOWS\system32\drivers\ParVdm.sys
20:19:33.0968 2996 ParVdm - ok
20:19:33.0984 2996 PCI (6ce351d149cb4befc702951e471e1730) D:\WINDOWS\system32\DRIVERS\pci.sys
20:19:34.0093 2996 PCI - ok
20:19:34.0109 2996 PCIDump - ok
20:19:34.0140 2996 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) D:\WINDOWS\system32\DRIVERS\pciide.sys
20:19:34.0250 2996 PCIIde - ok
20:19:34.0296 2996 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) D:\WINDOWS\system32\drivers\Pcmcia.sys
20:19:34.0421 2996 Pcmcia - ok
20:19:34.0468 2996 PDCOMP - ok
20:19:34.0484 2996 PDFRAME - ok
20:19:34.0500 2996 PDRELI - ok
20:19:34.0515 2996 PDRFRAME - ok
20:19:34.0515 2996 perc2 - ok
20:19:34.0531 2996 perc2hib - ok
20:19:34.0578 2996 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) D:\WINDOWS\system32\DRIVERS\raspptp.sys
20:19:34.0687 2996 PptpMiniport - ok
20:19:34.0703 2996 PSched (09298ec810b07e5d582cb3a3f9255424) D:\WINDOWS\system32\DRIVERS\psched.sys
20:19:34.0812 2996 PSched - ok
20:19:34.0843 2996 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) D:\WINDOWS\system32\DRIVERS\ptilink.sys
20:19:34.0953 2996 Ptilink - ok
20:19:34.0968 2996 ql1080 - ok
20:19:34.0984 2996 Ql10wnt - ok
20:19:34.0984 2996 ql12160 - ok
20:19:35.0000 2996 ql1240 - ok
20:19:35.0015 2996 ql1280 - ok
20:19:35.0046 2996 RapidPortM2 (3ecbd2e98ebb3fdc72529738dac01c04) D:\WINDOWS\system32\Drivers\CAPM2LP.SYS
20:19:35.0062 2996 RapidPortM2 - ok
20:19:35.0078 2996 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) D:\WINDOWS\system32\DRIVERS\rasacd.sys
20:19:35.0187 2996 RasAcd - ok
20:19:35.0203 2996 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) D:\WINDOWS\system32\DRIVERS\rasl2tp.sys
20:19:35.0312 2996 Rasl2tp - ok
20:19:35.0343 2996 RasPppoe (5bc962f2654137c9909c3d4603587dee) D:\WINDOWS\system32\DRIVERS\raspppoe.sys
20:19:35.0437 2996 RasPppoe - ok
20:19:35.0453 2996 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) D:\WINDOWS\system32\DRIVERS\raspti.sys
20:19:35.0546 2996 Raspti - ok
20:19:35.0578 2996 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) D:\WINDOWS\system32\DRIVERS\rdbss.sys
20:19:35.0703 2996 Rdbss - ok
20:19:35.0765 2996 RDPCDD (4912d5b403614ce99c28420f75353332) D:\WINDOWS\system32\DRIVERS\RDPCDD.sys
20:19:35.0875 2996 RDPCDD - ok
20:19:35.0921 2996 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) D:\WINDOWS\system32\drivers\RDPWD.sys
20:19:35.0953 2996 RDPWD - ok
20:19:35.0984 2996 redbook (611bfd220305be3a85ae876ea47d4aa5) D:\WINDOWS\system32\DRIVERS\redbook.sys
20:19:36.0093 2996 redbook - ok
20:19:36.0125 2996 RFCOMM (851c30df2807fcfa21e4c681a7d6440e) D:\WINDOWS\system32\DRIVERS\rfcomm.sys
20:19:36.0234 2996 RFCOMM - ok
20:19:36.0281 2996 rimmptsk (b6e686aab08bc276d0000293f9fba0bb) D:\WINDOWS\system32\DRIVERS\rimmptsk.sys
20:19:36.0281 2996 rimmptsk - ok
20:19:36.0312 2996 rimsptsk (bcff51e0be86d6f0e2180e5142203527) D:\WINDOWS\system32\DRIVERS\rimsptsk.sys
20:19:36.0328 2996 rimsptsk - ok
20:19:36.0359 2996 rismxdp (6baf8990e6f701f501a6cee974cf08d8) D:\WINDOWS\system32\DRIVERS\rixdptsk.sys
20:19:36.0390 2996 rismxdp - ok
20:19:36.0500 2996 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) D:\WINDOWS\system32\DRIVERS\sdbus.sys
20:19:36.0609 2996 sdbus - ok
20:19:36.0640 2996 Secdrv (90a3935d05b494a5a39d37e71f09a677) D:\WINDOWS\system32\DRIVERS\secdrv.sys
20:19:36.0703 2996 Secdrv - ok
20:19:36.0734 2996 Serial (b842729337c9b921615c40d3c1a1af96) D:\WINDOWS\system32\drivers\Serial.sys
20:19:36.0828 2996 Serial - ok
20:19:36.0859 2996 sffdisk (0fa803c64df0914b41f807ea276bf2a6) D:\WINDOWS\system32\DRIVERS\sffdisk.sys
20:19:36.0968 2996 sffdisk - ok
20:19:36.0984 2996 sffp_sd (c17c331e435ed8737525c86a7557b3ac) D:\WINDOWS\system32\DRIVERS\sffp_sd.sys
20:19:37.0109 2996 sffp_sd - ok
20:19:37.0125 2996 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) D:\WINDOWS\system32\drivers\Sfloppy.sys
20:19:37.0234 2996 Sfloppy - ok
20:19:37.0250 2996 Simbad - ok
20:19:37.0265 2996 Sparrow - ok
20:19:37.0281 2996 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) D:\WINDOWS\system32\drivers\splitter.sys
20:19:37.0406 2996 splitter - ok
20:19:37.0484 2996 sr (94610c8653635e4459316a0050d55ce7) D:\WINDOWS\system32\DRIVERS\sr.sys
20:19:37.0546 2996 sr - ok
20:19:37.0593 2996 Srv (47ddfc2f003f7f9f0592c6874962a2e7) D:\WINDOWS\system32\DRIVERS\srv.sys
20:19:37.0625 2996 Srv - ok
20:19:37.0671 2996 swenum (3941d127aef12e93addf6fe6ee027e0f) D:\WINDOWS\system32\DRIVERS\swenum.sys
20:19:37.0765 2996 swenum - ok
20:19:37.0781 2996 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) D:\WINDOWS\system32\drivers\swmidi.sys
20:19:37.0906 2996 swmidi - ok
20:19:37.0921 2996 symc810 - ok
20:19:37.0921 2996 symc8xx - ok
20:19:37.0937 2996 sym_hi - ok
20:19:37.0953 2996 sym_u3 - ok
20:19:38.0000 2996 SynTP (56cfad81069df5dbc75fc9b98902fd66) D:\WINDOWS\system32\DRIVERS\SynTP.sys
20:19:38.0031 2996 SynTP - ok
20:19:38.0046 2996 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) D:\WINDOWS\system32\drivers\sysaudio.sys
20:19:38.0187 2996 sysaudio - ok
20:19:38.0312 2996 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) D:\WINDOWS\system32\DRIVERS\tcpip.sys
20:19:38.0328 2996 Tcpip - ok
20:19:38.0406 2996 TDPIPE (6471a66807f5e104e4885f5b67349397) D:\WINDOWS\system32\drivers\TDPIPE.sys
20:19:38.0546 2996 TDPIPE - ok
20:19:38.0578 2996 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) D:\WINDOWS\system32\drivers\TDTCP.sys
20:19:38.0718 2996 TDTCP - ok
20:19:38.0734 2996 TermDD (88155247177638048422893737429d9e) D:\WINDOWS\system32\DRIVERS\termdd.sys
20:19:38.0828 2996 TermDD - ok
20:19:38.0843 2996 TosIde - ok
20:19:38.0875 2996 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) D:\WINDOWS\system32\drivers\Udfs.sys
20:19:39.0000 2996 Udfs - ok
20:19:39.0046 2996 ultra - ok
20:19:39.0109 2996 Update (402ddc88356b1bac0ee3dd1580c76a31) D:\WINDOWS\system32\DRIVERS\update.sys
20:19:39.0234 2996 Update - ok
20:19:39.0343 2996 usbccgp (173f317ce0db8e21322e71b7e60a27e8) D:\WINDOWS\system32\DRIVERS\usbccgp.sys
20:19:39.0500 2996 usbccgp - ok
20:19:39.0531 2996 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) D:\WINDOWS\system32\DRIVERS\usbehci.sys
20:19:39.0703 2996 usbehci - ok
20:19:39.0734 2996 usbhub (1ab3cdde553b6e064d2e754efe20285c) D:\WINDOWS\system32\DRIVERS\usbhub.sys
20:19:39.0843 2996 usbhub - ok
20:19:39.0890 2996 usbprint (a717c8721046828520c9edf31288fc00) D:\WINDOWS\system32\DRIVERS\usbprint.sys
20:19:40.0000 2996 usbprint - ok
20:19:40.0046 2996 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) D:\WINDOWS\system32\DRIVERS\usbscan.sys
20:19:40.0156 2996 usbscan - ok
20:19:40.0218 2996 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) D:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
20:19:40.0328 2996 USBSTOR - ok
20:19:40.0359 2996 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) D:\WINDOWS\system32\DRIVERS\usbuhci.sys
20:19:40.0468 2996 usbuhci - ok
20:19:40.0531 2996 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) D:\WINDOWS\System32\drivers\vga.sys
20:19:40.0687 2996 VgaSave - ok
20:19:40.0734 2996 ViaIde - ok
20:19:40.0781 2996 VolSnap (28a4b296b47782173c346e376cb374d1) D:\WINDOWS\system32\drivers\VolSnap.sys
20:19:40.0921 2996 VolSnap - ok
20:19:40.0953 2996 Wanarp (e20b95baedb550f32dd489265c1da1f6) D:\WINDOWS\system32\DRIVERS\wanarp.sys
20:19:41.0078 2996 Wanarp - ok
20:19:41.0109 2996 WDICA - ok
20:19:41.0125 2996 wdmaud (6768acf64b18196494413695f0c3a00f) D:\WINDOWS\system32\drivers\wdmaud.sys
20:19:41.0265 2996 wdmaud - ok
20:19:41.0328 2996 winachsf (4c17a05813e1f48e5da30ada62cdf427) D:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
20:19:41.0375 2996 winachsf - ok
20:19:41.0421 2996 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) D:\WINDOWS\System32\drivers\ws2ifsl.sys
20:19:41.0546 2996 WS2IFSL - ok
20:19:41.0593 2996 MBR (0x1B8) (9c603bc3977968c891de319283e1e7af) \Device\Harddisk0\DR0
20:19:41.0609 2996 \Device\Harddisk0\DR0 ( Rootkit.Boot.Wistler.a ) - infected
20:19:41.0609 2996 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Wistler.a (0)
20:19:41.0703 2996 Boot (0x1200) (aeb87be0364fcde7643b905b991d6098) \Device\Harddisk0\DR0\Partition0
20:19:41.0703 2996 \Device\Harddisk0\DR0\Partition0 - ok
20:19:41.0718 2996 Boot (0x1200) (d50f9f75363f5505727932f6d3df4c94) \Device\Harddisk0\DR0\Partition1
20:19:41.0718 2996 \Device\Harddisk0\DR0\Partition1 - ok
20:19:41.0750 2996 Boot (0x1200) (41d608d24c0cabec1ec38626f5c36489) \Device\Harddisk0\DR0\Partition2
20:19:41.0750 2996 \Device\Harddisk0\DR0\Partition2 - ok
20:19:41.0750 2996 ============================================================
20:19:41.0750 2996 Scan finished
20:19:41.0750 2996 ============================================================
20:19:41.0750 3076 Detected object count: 1
20:19:41.0750 3076 Actual detected object count: 1
20:20:24.0687 3076 \Device\Harddisk0\DR0\# - copied to quarantine
20:20:24.0687 3076 \Device\Harddisk0\DR0 - copied to quarantine
20:20:24.0703 3076 \Device\Harddisk0\DR0 ( Rootkit.Boot.Wistler.a ) - will be cured on reboot
20:20:24.0703 3076 \Device\Harddisk0\DR0 - ok
20:20:24.0703 3076 \Device\Harddisk0\DR0 ( Rootkit.Boot.Wistler.a ) - User select action: Cure
20:20:43.0156 0444 Deinitialize success

Fajn, udelano dobre

Stahnete TDSSQlook http://www.malwareinfo.nl/tools/TDSSQlook.exe

• Ulozte na plochu a spustte
• Zvolte moznost A a potvrdte Enterem
• Po chvili se zobrazi log, ten sem vlozte

Stahnete aswMBR http://public.avast.com/%7Egmerek/aswMBR.exe a ulozte jej na plochu.

• Utilitu spustte a prikazte ji, at skenuje - klik na Scan
• Kliknutim na Save log ulozte log aswMBR na plochu
• Obsah logu aswMBR mi sem vlozte

TDSSKiller Quarantine Information log
Version 1.0.0.4
***** START SCAN čt 23.02.2012 20:36:12,35 *****

---------- TDSSKiller logs ----------

TDSSKiller.2.7.13.0_23.02.2012_20.14.32_log.txt

---------- TDSSStarter logs ----------


---------- DIR LIST ----------

D:\TDSSKiller_Quarantine\23.02.2012_20.14.32
D:\TDSSKiller_Quarantine\23.02.2012_20.14.32\mbr0000
D:\TDSSKiller_Quarantine\23.02.2012_20.14.32\mbr0000\object.ini
D:\TDSSKiller_Quarantine\23.02.2012_20.14.32\mbr0000\mbr0000
D:\TDSSKiller_Quarantine\23.02.2012_20.14.32\mbr0000\mbr0000\tsk0001.dta
D:\TDSSKiller_Quarantine\23.02.2012_20.14.32\mbr0000\mbr0000\object.ini
D:\TDSSKiller_Quarantine\23.02.2012_20.14.32\mbr0000\mbr0000\tsk0000.dta
D:\TDSSKiller_Quarantine\23.02.2012_20.14.32\mbr0000\mbr0000\tsk0000.ini
D:\TDSSKiller_Quarantine\23.02.2012_20.14.32\mbr0000\mbr0000\tsk0001.ini

---------- INI FILES ----------

aswMBR version 0.9.9.1649 Copyright(c) 2011 AVAST Software
Run date: 2012-02-23 20:38:14
-----------------------------
20:38:14.640 OS Version: Windows 5.1.2600 Service Pack 3
20:38:14.640 Number of processors: 2 586 0xF06
20:38:14.640 ComputerName: HAIDAS UserName:
20:38:15.078 Initialize success
20:41:23.703 The log file has been saved successfully to "D:\Documents and Settings\Roman Haidaš\Plocha\aswMBR.txt"

Musite aswMBR nechat dobehnout do konce - nejak takhle bude vypadat, pak dejte az ulozit log

ano,omlouvám se ted to doběhlo

aswMBR version 0.9.9.1649 Copyright(c) 2011 AVAST Software
Run date: 2012-02-23 20:38:14
-----------------------------
20:38:14.640 OS Version: Windows 5.1.2600 Service Pack 3
20:38:14.640 Number of processors: 2 586 0xF06
20:38:14.640 ComputerName: HAIDAS UserName:
20:38:15.078 Initialize success
20:41:23.703 The log file has been saved successfully to "D:\Documents and Settings\Roman Haidaš\Plocha\aswMBR.txt"
20:57:28.703 The log file has been saved successfully to "D:\Documents and Settings\Roman Haidaš\Plocha\aswMBR.txt"
20:58:09.625 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
20:58:09.625 Disk 0 Vendor: Size: 0MB BusType: 0
20:58:09.968 Disk 0 MBR read successfully
20:58:09.968 Disk 0 MBR scan
20:58:09.968 Disk 0 Windows XP default MBR code
20:58:09.968 Disk 0 MBR hidden
20:58:09.984 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
20:58:10.000 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 24900 MB offset 206848
20:58:10.000 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 89471 MB offset 51202048
20:58:10.046 Disk 0 scanning D:\WINDOWS\system32\drivers
20:58:17.281 Service scanning
20:58:27.109 Modules scanning
20:58:41.906 Disk 0 trace - called modules:
20:58:41.921 ntkrnlpa.exe catchme.sys >>UNKNOWN [0x84d38a0a]<<
20:58:41.921 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86545ab8]
20:58:41.921 \Driver\Disk[0x8657ea70] -> IRP_MJ_READ -> 0x84d38a0a
20:58:41.921 Scan finished successfully
20:59:11.031 Disk 0 MBR has been saved successfully to "D:\Documents and Settings\Roman Haidaš\Plocha\MBR.dat"
20:59:11.031 The log file has been saved successfully to "D:\Documents and Settings\Roman Haidaš\Plocha\aswMBR.txt"

Stahnete MBRScan http://eric71.geekstogo.com/tools/MbrScan.exe

• Ulozte nejlepe na plochu
• Pokud pouzivate Win Vista ci W7, kliknete na MBRScan pravym a dejte Run As Administrator ci Spustit jako spravce
• Kliknete na Report
• Po chvilce se objevi log do souboru MBRScan.txt, ten sem vlozte

A poprosim o novy log z TDSSKilleru

udělám to zítra,musel jsem odjet do práce,zatím díky za váš čas

Dobra tedy

dobrý den

Log z MBRScanu neni cely, udelejte jej znovu

Udelal jste log z TDSQlooku ne z TDSSKiller, Udelejte mi znovu TDSSKiller, postup jste mel zde http://forum.viry.cz/viewtopic.php?p=1090173#p1090173