prosim pomoc eset hlasi trojany a nic nevymaze

[Joseph]

prikladam log z TDSKILLER, dufam ze tdskiller som mal zapnut priamo vo viste (z visty je aj tento log) a nie v tom druhom prostredi


23:55:23.0332 4588 TDSS rootkit removing tool 2.7.18.0 Mar 2 2012 09:40:07
23:55:24.0096 4588 ============================================================
23:55:24.0096 4588 Current date / time: 2012/03/04 23:55:24.0096
23:55:24.0096 4588 SystemInfo:
23:55:24.0096 4588
23:55:24.0096 4588 OS Version: 6.0.6002 ServicePack: 2.0
23:55:24.0096 4588 Product type: Workstation
23:55:24.0096 4588 ComputerName: JOSEPH-PC
23:55:24.0096 4588 UserName: Joseph
23:55:24.0096 4588 Windows directory: C:\Windows
23:55:24.0096 4588 System windows directory: C:\Windows
23:55:24.0096 4588 Processor architecture: Intel x86
23:55:24.0096 4588 Number of processors: 2
23:55:24.0096 4588 Page size: 0x1000
23:55:24.0096 4588 Boot type: Normal boot
23:55:24.0096 4588 ============================================================
23:55:25.0110 4588 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
23:55:25.0110 4588 Drive \Device\Harddisk1\DR1 - Size: 0x3D800000 (0.96 Gb), SectorSize: 0x200, Cylinders: 0x7D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
23:55:25.0142 4588 \Device\Harddisk0\DR0:
23:55:25.0142 4588 MBR used
23:55:25.0142 4588 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x7530462
23:55:25.0157 4588 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x75304E0, BlocksNum 0xC34F28D
23:55:25.0173 4588 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1387F7AC, BlocksNum 0xC34F28D
23:55:25.0188 4588 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1FBCEA78, BlocksNum 0x2AC84588
23:55:25.0188 4588 \Device\Harddisk1\DR1:
23:55:25.0188 4588 MBR used
23:55:25.0188 4588 \Device\Harddisk1\DR1\Partition0: MBR, Type 0xE, StartLBA 0x3F, BlocksNum 0x1EBFC1
23:55:25.0329 4588 Initialize success
23:55:25.0329 4588 ============================================================
23:55:37.0949 3072 ============================================================
23:55:37.0949 3072 Scan started
23:55:37.0949 3072 Mode: Manual; SigCheck; TDLFS;
23:55:37.0949 3072 ============================================================
23:55:38.0651 3072 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
23:55:38.0776 3072 ACPI - ok
23:55:38.0901 3072 ADIHdAudAddService (07cdda3220a01e95b9e815779db35801) C:\Windows\system32\drivers\ADIHdAud.sys
23:55:38.0963 3072 ADIHdAudAddService ( UnsignedFile.Multi.Generic ) - warning
23:55:38.0963 3072 ADIHdAudAddService - detected UnsignedFile.Multi.Generic (1)
23:55:39.0166 3072 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
23:55:39.0291 3072 adp94xx - ok
23:55:39.0431 3072 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
23:55:39.0478 3072 adpahci - ok
23:55:39.0556 3072 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
23:55:39.0587 3072 adpu160m - ok
23:55:39.0665 3072 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
23:55:39.0696 3072 adpu320 - ok
23:55:40.0086 3072 afcdp (53696ad8ffc5fac51949a525ff65a689) C:\Windows\system32\DRIVERS\afcdp.sys
23:55:40.0196 3072 afcdp - ok
23:55:40.0242 3072 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
23:55:40.0430 3072 AFD - ok
23:55:40.0523 3072 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
23:55:40.0554 3072 agp440 - ok
23:55:40.0601 3072 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
23:55:40.0601 3072 aic78xx - ok
23:55:40.0617 3072 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
23:55:40.0648 3072 aliide - ok
23:55:40.0664 3072 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
23:55:40.0695 3072 amdagp - ok
23:55:40.0695 3072 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
23:55:40.0710 3072 amdide - ok
23:55:40.0726 3072 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
23:55:40.0773 3072 AmdK7 - ok
23:55:40.0788 3072 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
23:55:40.0835 3072 AmdK8 - ok
23:55:40.0913 3072 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
23:55:40.0929 3072 arc - ok
23:55:40.0944 3072 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
23:55:40.0976 3072 arcsas - ok
23:55:40.0991 3072 AsIO (2b4e66fac6503494a2c6f32bb6ab3826) C:\Windows\system32\drivers\AsIO.sys
23:55:41.0007 3072 AsIO - ok
23:55:41.0163 3072 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
23:55:41.0210 3072 AsyncMac - ok
23:55:41.0241 3072 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
23:55:41.0256 3072 atapi - ok
23:55:41.0444 3072 atikmdag (c6eec3603b6d66d0f5a2edd430d338b3) C:\Windows\system32\DRIVERS\atikmdag.sys
23:55:41.0631 3072 atikmdag - ok
23:55:41.0678 3072 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
23:55:41.0724 3072 Beep - ok
23:55:41.0740 3072 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
23:55:41.0802 3072 blbdrive - ok
23:55:41.0834 3072 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
23:55:41.0896 3072 bowser - ok
23:55:41.0927 3072 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
23:55:41.0958 3072 BrFiltLo - ok
23:55:41.0974 3072 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
23:55:41.0990 3072 BrFiltUp - ok
23:55:42.0021 3072 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
23:55:42.0239 3072 Brserid - ok
23:55:42.0255 3072 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
23:55:42.0302 3072 BrSerWdm - ok
23:55:42.0317 3072 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
23:55:42.0348 3072 BrUsbMdm - ok
23:55:42.0364 3072 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
23:55:42.0426 3072 BrUsbSer - ok
23:55:42.0442 3072 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
23:55:42.0504 3072 BTHMODEM - ok
23:55:42.0598 3072 catchme - ok
23:55:42.0645 3072 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
23:55:42.0707 3072 cdfs - ok
23:55:42.0738 3072 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
23:55:42.0770 3072 cdrom - ok
23:55:42.0785 3072 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\DRIVERS\circlass.sys
23:55:42.0801 3072 circlass - ok
23:55:42.0863 3072 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
23:55:42.0910 3072 CLFS - ok
23:55:42.0957 3072 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
23:55:42.0972 3072 cmdide - ok
23:55:43.0004 3072 COMMONFX.DLL (d7b2bd9c6e974b173ca536b96fc099c6) C:\Windows\system32\COMMONFX.DLL
23:55:43.0019 3072 COMMONFX.DLL - ok
23:55:43.0019 3072 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
23:55:43.0035 3072 Compbatt - ok
23:55:43.0035 3072 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
23:55:43.0050 3072 crcdisk - ok
23:55:43.0082 3072 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
23:55:43.0128 3072 Crusoe - ok
23:55:43.0175 3072 CSC (9bdb2e89be8d0ef37b1f25c3d3fc192c) C:\Windows\system32\drivers\csc.sys
23:55:43.0238 3072 CSC - ok
23:55:43.0253 3072 CT20XUT.DLL (5ecc0de5f90ca891ff2368cb2dbc365c) C:\Windows\system32\CT20XUT.DLL
23:55:43.0253 3072 CT20XUT.DLL - ok
23:55:43.0284 3072 ctac32k (f35de8895559d4e2d1a024a3ac05b962) C:\Windows\system32\drivers\ctac32k.sys
23:55:43.0284 3072 ctac32k - ok
23:55:43.0316 3072 ctaud2k (82ce9b8ccd70040f0b1a91b44e39e865) C:\Windows\system32\drivers\ctaud2k.sys
23:55:43.0331 3072 ctaud2k - ok
23:55:43.0472 3072 CTAUDFX.DLL (ed97653aebc514634f78b441acec9781) C:\Windows\system32\CTAUDFX.DLL
23:55:43.0487 3072 CTAUDFX.DLL - ok
23:55:43.0518 3072 ctdvda2k (4998163c5efaec75be1946b49b5343f5) C:\Windows\system32\drivers\ctdvda2k.sys
23:55:43.0550 3072 ctdvda2k - ok
23:55:43.0581 3072 CTEAPSFX.DLL (bab84177d031385bc9c97eb8e92f58f6) C:\Windows\system32\CTEAPSFX.DLL
23:55:43.0596 3072 CTEAPSFX.DLL - ok
23:55:43.0612 3072 CTEDSPFX.DLL (5c5e1d51041c118104739294ab5f0fd4) C:\Windows\system32\CTEDSPFX.DLL
23:55:43.0628 3072 CTEDSPFX.DLL - ok
23:55:43.0643 3072 CTEDSPIO.DLL (2d7d58aabee8e6e9c53a261984823205) C:\Windows\system32\CTEDSPIO.DLL
23:55:43.0643 3072 CTEDSPIO.DLL - ok
23:55:43.0659 3072 CTEDSPSY.DLL (3fec927bf0e567226726934b0d5626a8) C:\Windows\system32\CTEDSPSY.DLL
23:55:43.0674 3072 CTEDSPSY.DLL - ok
23:55:43.0706 3072 CTERFXFX.DLL (47bd331c0854d13cfc26aca5abfd4af3) C:\Windows\system32\CTERFXFX.DLL
23:55:43.0721 3072 CTERFXFX.DLL - ok
23:55:43.0768 3072 CTEXFIFX.DLL (5b8386421ae9aaf4dc94e3fb88b2b998) C:\Windows\system32\CTEXFIFX.DLL
23:55:43.0784 3072 CTEXFIFX.DLL - ok
23:55:43.0815 3072 CTHWIUT.DLL (905c9950d24eb157db7981a3ad7de4dc) C:\Windows\system32\CTHWIUT.DLL
23:55:43.0830 3072 CTHWIUT.DLL - ok
23:55:43.0830 3072 ctprxy2k (f05cf0e3696621a205f0d5b2cf8e346e) C:\Windows\system32\drivers\ctprxy2k.sys
23:55:43.0862 3072 ctprxy2k - ok
23:55:43.0924 3072 CTSBLFX.DLL (b0d488737174b1ff69f18086ee2c914e) C:\Windows\system32\CTSBLFX.DLL
23:55:44.0049 3072 CTSBLFX.DLL - ok
23:55:44.0080 3072 ctsfm2k (3747490f9ae9d28eed18fc35235cee31) C:\Windows\system32\drivers\ctsfm2k.sys
23:55:44.0096 3072 ctsfm2k - ok
23:55:44.0142 3072 CXIR (bc202aa4d5bd995211c57f3165191063) C:\Windows\system32\drivers\cxcir.sys
23:55:44.0174 3072 CXIR - ok
23:55:44.0220 3072 CXPOLARIS (fc9c0cacaa562a562d5a2876e45e0c07) C:\Windows\system32\drivers\cxpolaris.sys
23:55:44.0283 3072 CXPOLARIS - ok
23:55:44.0314 3072 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
23:55:44.0361 3072 DfsC - ok
23:55:44.0408 3072 DgiVecp (7f19dba1a467b838ccb23124a2c55568) C:\Windows\system32\Drivers\DgiVecp.sys
23:55:44.0408 3072 DgiVecp ( UnsignedFile.Multi.Generic ) - warning
23:55:44.0408 3072 DgiVecp - detected UnsignedFile.Multi.Generic (1)
23:55:44.0470 3072 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
23:55:44.0486 3072 disk - ok
23:55:44.0548 3072 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
23:55:44.0579 3072 drmkaud - ok
23:55:44.0657 3072 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
23:55:44.0673 3072 DXGKrnl - ok
23:55:44.0704 3072 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
23:55:44.0735 3072 E1G60 - ok
23:55:44.0782 3072 eamonm (04cba07e73f152970fc34d66d3892e2a) C:\Windows\system32\DRIVERS\eamonm.sys
23:55:44.0798 3072 eamonm - ok
23:55:44.0829 3072 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
23:55:44.0844 3072 Ecache - ok
23:55:44.0907 3072 ehdrv (fe7824239d132ad9ebd8645fe1199b30) C:\Windows\system32\DRIVERS\ehdrv.sys
23:55:44.0922 3072 ehdrv - ok
23:55:44.0954 3072 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
23:55:44.0985 3072 elxstor - ok
23:55:45.0016 3072 emupia (b396b42a80f8ac72336fa483f7c26bec) C:\Windows\system32\drivers\emupia2k.sys
23:55:45.0032 3072 emupia - ok
23:55:45.0141 3072 EOlmarikFix - ok
23:55:45.0281 3072 epfw (73411c14a8c6062bb6a510772cf2f38c) C:\Windows\system32\DRIVERS\epfw.sys
23:55:45.0281 3072 epfw - ok
23:55:45.0406 3072 Epfwndis (490329bf80f333e788df9596a752a915) C:\Windows\system32\DRIVERS\Epfwndis.sys
23:55:45.0437 3072 Epfwndis - ok
23:55:45.0468 3072 epfwwfp (c62068dab6e2510fb231286d3da63dfa) C:\Windows\system32\DRIVERS\epfwwfp.sys
23:55:45.0484 3072 epfwwfp - ok
23:55:45.0515 3072 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
23:55:45.0546 3072 ErrDev - ok
23:55:45.0593 3072 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
23:55:45.0671 3072 exfat - ok
23:55:45.0687 3072 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
23:55:45.0734 3072 fastfat - ok
23:55:45.0749 3072 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
23:55:45.0796 3072 fdc - ok
23:55:45.0843 3072 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
23:55:45.0874 3072 FileInfo - ok
23:55:45.0890 3072 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
23:55:45.0936 3072 Filetrace - ok
23:55:45.0936 3072 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
23:55:45.0983 3072 flpydisk - ok
23:55:46.0030 3072 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
23:55:46.0077 3072 FltMgr - ok
23:55:46.0092 3072 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
23:55:46.0124 3072 Fs_Rec - ok
23:55:46.0139 3072 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
23:55:46.0155 3072 gagp30kx - ok
23:55:46.0202 3072 GEARAspiWDM (f2f431d1573ee632975c524418655b84) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:55:46.0217 3072 GEARAspiWDM - ok
23:55:46.0264 3072 ggflt (007aea2e06e7cef7372e40c277163959) C:\Windows\system32\DRIVERS\ggflt.sys
23:55:46.0280 3072 ggflt - ok
23:55:46.0295 3072 ggsemc (c73de35960ca75c5ab4ae636b127c64e) C:\Windows\system32\DRIVERS\ggsemc.sys
23:55:46.0295 3072 ggsemc - ok
23:55:46.0358 3072 ha20x2k (c98953793e4d139ff1ac328ef863e4cd) C:\Windows\system32\drivers\ha20x2k.sys
23:55:46.0404 3072 ha20x2k - ok
23:55:46.0451 3072 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
23:55:46.0514 3072 HdAudAddService - ok
23:55:46.0545 3072 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
23:55:46.0576 3072 HDAudBus - ok
23:55:46.0638 3072 HidBatt (1eea61828eb0263b97252842c07e5a1c) C:\Windows\system32\DRIVERS\HidBatt.sys
23:55:46.0670 3072 HidBatt - ok
23:55:46.0685 3072 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
23:55:46.0732 3072 HidBth - ok
23:55:46.0810 3072 HidIr (d8df3722d5e961baa1292aa2f12827e2) C:\Windows\system32\DRIVERS\hidir.sys
23:55:46.0857 3072 HidIr - ok
23:55:46.0888 3072 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
23:55:46.0904 3072 HidUsb - ok
23:55:46.0935 3072 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
23:55:46.0935 3072 HpCISSs - ok
23:55:47.0028 3072 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
23:55:47.0106 3072 HTTP - ok
23:55:47.0122 3072 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
23:55:47.0138 3072 i2omp - ok
23:55:47.0169 3072 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
23:55:47.0200 3072 i8042prt - ok
23:55:47.0231 3072 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
23:55:47.0262 3072 iaStorV - ok
23:55:47.0294 3072 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
23:55:47.0325 3072 iirsp - ok
23:55:47.0340 3072 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
23:55:47.0372 3072 intelide - ok
23:55:47.0372 3072 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
23:55:47.0418 3072 intelppm - ok
23:55:47.0434 3072 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:55:47.0465 3072 IpFilterDriver - ok
23:55:47.0481 3072 IpInIp - ok
23:55:47.0528 3072 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
23:55:47.0574 3072 IPMIDRV - ok
23:55:47.0590 3072 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
23:55:47.0637 3072 IPNAT - ok
23:55:47.0652 3072 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
23:55:47.0684 3072 IRENUM - ok
23:55:47.0699 3072 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
23:55:47.0715 3072 isapnp - ok
23:55:47.0762 3072 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
23:55:47.0824 3072 iScsiPrt - ok
23:55:47.0840 3072 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
23:55:47.0840 3072 iteatapi - ok
23:55:47.0871 3072 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
23:55:47.0902 3072 iteraid - ok
23:55:47.0918 3072 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
23:55:47.0949 3072 kbdclass - ok
23:55:48.0042 3072 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
23:55:48.0058 3072 kbdhid - ok
23:55:48.0136 3072 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
23:55:48.0152 3072 KSecDD - ok
23:55:48.0198 3072 L8042Kbd (d88846f9f4f27ae9be584a6e5b6b8753) C:\Windows\system32\DRIVERS\L8042Kbd.sys
23:55:48.0214 3072 L8042Kbd - ok
23:55:48.0245 3072 L8042mou (d6fc755ff505d99e6cc73e83492310df) C:\Windows\system32\DRIVERS\L8042mou.Sys
23:55:48.0245 3072 L8042mou - ok
23:55:48.0292 3072 LHidFilt (24e0ddb99aeccf86bb37702611761459) C:\Windows\system32\DRIVERS\LHidFilt.Sys
23:55:48.0308 3072 LHidFilt - ok
23:55:48.0339 3072 libusb0 (e2f1dcf4a68cc6cf694fbfba1842f4cd) C:\Windows\system32\drivers\libusb0.sys
23:55:48.0370 3072 libusb0 ( UnsignedFile.Multi.Generic ) - warning
23:55:48.0370 3072 libusb0 - detected UnsignedFile.Multi.Generic (1)
23:55:48.0401 3072 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
23:55:48.0432 3072 lltdio - ok
23:55:48.0464 3072 LMouFilt (d58b330d318361a66a9fe60d7c9b4951) C:\Windows\system32\DRIVERS\LMouFilt.Sys
23:55:48.0464 3072 LMouFilt - ok
23:55:48.0479 3072 LMouKE (c149bdad13194df16ea33f9f601ed7bf) C:\Windows\system32\DRIVERS\LMouKE.Sys
23:55:48.0495 3072 LMouKE - ok
23:55:48.0510 3072 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
23:55:48.0542 3072 LSI_FC - ok
23:55:48.0573 3072 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
23:55:48.0588 3072 LSI_SAS - ok
23:55:48.0604 3072 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
23:55:48.0635 3072 LSI_SCSI - ok
23:55:48.0635 3072 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
23:55:48.0666 3072 luafv - ok
23:55:48.0682 3072 LUsbFilt (144011d14bd35f4e36136ae057b1aadd) C:\Windows\system32\Drivers\LUsbFilt.Sys
23:55:48.0682 3072 LUsbFilt - ok
23:55:48.0729 3072 MagicTune (7acae9601b3eb413f8bf5c90a77a6848) C:\Windows\system32\drivers\MTiCtwl.sys
23:55:48.0744 3072 MagicTune ( UnsignedFile.Multi.Generic ) - warning
23:55:48.0744 3072 MagicTune - detected UnsignedFile.Multi.Generic (1)
23:55:48.0776 3072 MarvinBus (a3e700d78eec390f1208098cdca5c6b6) C:\Windows\system32\DRIVERS\MarvinBus.sys
23:55:48.0807 3072 MarvinBus ( UnsignedFile.Multi.Generic ) - warning
23:55:48.0807 3072 MarvinBus - detected UnsignedFile.Multi.Generic (1)
23:55:48.0822 3072 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
23:55:48.0838 3072 megasas - ok
23:55:48.0869 3072 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
23:55:48.0900 3072 MegaSR - ok
23:55:48.0916 3072 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
23:55:49.0010 3072 Modem - ok
23:55:49.0041 3072 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
23:55:49.0056 3072 monitor - ok
23:55:49.0134 3072 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
23:55:49.0134 3072 mouclass - ok
23:55:49.0337 3072 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
23:55:49.0478 3072 mouhid - ok
23:55:49.0493 3072 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
23:55:49.0509 3072 MountMgr - ok
23:55:49.0540 3072 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
23:55:49.0540 3072 mpio - ok
23:55:49.0556 3072 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
23:55:49.0618 3072 mpsdrv - ok
23:55:49.0634 3072 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
23:55:49.0649 3072 Mraid35x - ok
23:55:49.0696 3072 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
23:55:49.0727 3072 MRxDAV - ok
23:55:49.0758 3072 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
23:55:49.0805 3072 mrxsmb - ok
23:55:49.0836 3072 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:55:49.0868 3072 mrxsmb10 - ok
23:55:49.0883 3072 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:55:49.0914 3072 mrxsmb20 - ok
23:55:49.0930 3072 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
23:55:49.0946 3072 msahci - ok
23:55:49.0977 3072 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
23:55:49.0977 3072 msdsm - ok
23:55:50.0039 3072 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
23:55:50.0086 3072 Msfs - ok
23:55:50.0102 3072 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
23:55:50.0117 3072 msisadrv - ok
23:55:50.0133 3072 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
23:55:50.0164 3072 MSKSSRV - ok
23:55:50.0195 3072 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
23:55:50.0226 3072 MSPCLOCK - ok
23:55:50.0242 3072 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
23:55:50.0273 3072 MSPQM - ok
23:55:50.0304 3072 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
23:55:50.0320 3072 MsRPC - ok
23:55:50.0336 3072 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
23:55:50.0336 3072 mssmbios - ok
23:55:50.0351 3072 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
23:55:50.0382 3072 MSTEE - ok
23:55:50.0507 3072 MTsensor (dcdaab8697a47894a554050ce18d0b56) C:\Windows\system32\DRIVERS\ASACPI.sys
23:55:50.0601 3072 MTsensor - ok
23:55:50.0648 3072 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
23:55:50.0663 3072 Mup - ok
23:55:50.0694 3072 mv61xx (e6f48050af7548e4bf775f0d83873794) C:\Windows\system32\DRIVERS\mv61xx.sys
23:55:50.0726 3072 mv61xx - ok
23:55:50.0757 3072 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
23:55:50.0850 3072 NativeWifiP - ok
23:55:50.0882 3072 NCPro (7acae9601b3eb413f8bf5c90a77a6848) C:\Windows\system32\drivers\MTictwl.sys
23:55:50.0897 3072 NCPro ( UnsignedFile.Multi.Generic ) - warning
23:55:50.0897 3072 NCPro - detected UnsignedFile.Multi.Generic (1)
23:55:50.0944 3072 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
23:55:50.0975 3072 NDIS - ok
23:55:50.0975 3072 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
23:55:50.0991 3072 NdisTapi - ok
23:55:51.0006 3072 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
23:55:51.0038 3072 Ndisuio - ok
23:55:51.0069 3072 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
23:55:51.0131 3072 NdisWan - ok
23:55:51.0131 3072 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
23:55:51.0178 3072 NDProxy - ok
23:55:51.0194 3072 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
23:55:51.0225 3072 NetBIOS - ok
23:55:51.0272 3072 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
23:55:51.0381 3072 netbt - ok
23:55:51.0412 3072 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
23:55:51.0428 3072 nfrd960 - ok
23:55:51.0443 3072 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
23:55:51.0490 3072 Npfs - ok
23:55:51.0490 3072 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
23:55:51.0521 3072 nsiproxy - ok
23:55:51.0584 3072 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
23:55:51.0630 3072 Ntfs - ok
23:55:51.0662 3072 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
23:55:51.0708 3072 ntrigdigi - ok
23:55:51.0724 3072 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
23:55:51.0755 3072 Null - ok
23:55:51.0771 3072 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
23:55:51.0802 3072 nvraid - ok
23:55:51.0818 3072 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
23:55:51.0833 3072 nvstor - ok
23:55:51.0849 3072 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
23:55:51.0880 3072 nv_agp - ok
23:55:51.0896 3072 NwlnkFlt - ok
23:55:51.0911 3072 NwlnkFwd - ok
23:55:51.0942 3072 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
23:55:51.0958 3072 ohci1394 - ok
23:55:52.0005 3072 OlmarikFixer (3dbfd3e9dc5e225187c81d94edb45d29) C:\Windows\system32\drivers\OlmarikFixer.sys
23:55:52.0005 3072 OlmarikFixer - ok
23:55:52.0052 3072 ossrv (1018385d44f084509027494f763630bd) C:\Windows\system32\drivers\ctoss2k.sys
23:55:52.0067 3072 ossrv - ok
23:55:52.0098 3072 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
23:55:52.0145 3072 Parport - ok
23:55:52.0176 3072 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
23:55:52.0208 3072 partmgr - ok
23:55:52.0223 3072 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
23:55:52.0317 3072 Parvdm - ok
23:55:52.0348 3072 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
23:55:52.0379 3072 pci - ok
23:55:52.0410 3072 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
23:55:52.0426 3072 pciide - ok
23:55:52.0442 3072 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
23:55:52.0442 3072 pcmcia - ok
23:55:52.0488 3072 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
23:55:52.0582 3072 PEAUTH - ok
23:55:52.0613 3072 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
23:55:52.0644 3072 PptpMiniport - ok
23:55:52.0660 3072 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
23:55:52.0707 3072 Processor - ok
23:55:52.0754 3072 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
23:55:52.0785 3072 PSched - ok
23:55:52.0816 3072 pwdrvio (297e2746df41528a0950f3af80cedb2d) C:\Windows\system32\pwdrvio.sys
23:55:52.0832 3072 pwdrvio - ok
23:55:52.0878 3072 pwdspio (bc7d54cdbe3bbfe52f09cb7b20c3d365) C:\Windows\system32\pwdspio.sys
23:55:52.0878 3072 pwdspio - ok
23:55:52.0925 3072 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
23:55:52.0988 3072 ql2300 - ok
23:55:53.0019 3072 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
23:55:53.0019 3072 ql40xx - ok
23:55:53.0034 3072 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
23:55:53.0066 3072 QWAVEdrv - ok
23:55:53.0081 3072 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
23:55:53.0128 3072 RasAcd - ok
23:55:53.0144 3072 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
23:55:53.0175 3072 Rasl2tp - ok
23:55:53.0206 3072 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
23:55:53.0253 3072 RasPppoe - ok
23:55:53.0268 3072 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
23:55:53.0284 3072 RasSstp - ok
23:55:53.0315 3072 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
23:55:53.0346 3072 rdbss - ok
23:55:53.0378 3072 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
23:55:53.0393 3072 RDPCDD - ok
23:55:53.0440 3072 rdpdr (943b18305eae3935598a9b4a3d560b4c) C:\Windows\system32\DRIVERS\rdpdr.sys
23:55:53.0487 3072 rdpdr - ok
23:55:53.0487 3072 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
23:55:53.0518 3072 RDPENCDD - ok
23:55:53.0534 3072 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
23:55:53.0565 3072 RDPWD - ok
23:55:53.0580 3072 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
23:55:53.0627 3072 rspndr - ok
23:55:53.0643 3072 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
23:55:53.0658 3072 sbp2port - ok
23:55:53.0705 3072 SE30bus (879696c028726e5a70e4c8d2e8c7c667) C:\Windows\system32\DRIVERS\SE30bus.sys
23:55:53.0752 3072 SE30bus - ok
23:55:53.0768 3072 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
23:55:53.0814 3072 secdrv - ok
23:55:53.0830 3072 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
23:55:53.0861 3072 Serenum - ok
23:55:53.0892 3072 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
23:55:53.0924 3072 Serial - ok
23:55:53.0939 3072 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
23:55:53.0970 3072 sermouse - ok
23:55:54.0002 3072 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
23:55:54.0033 3072 sffdisk - ok
23:55:54.0048 3072 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
23:55:54.0080 3072 sffp_mmc - ok
23:55:54.0111 3072 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
23:55:54.0158 3072 sffp_sd - ok
23:55:54.0173 3072 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
23:55:54.0220 3072 sfloppy - ok
23:55:54.0236 3072 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
23:55:54.0267 3072 sisagp - ok
23:55:54.0282 3072 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
23:55:54.0298 3072 SiSRaid2 - ok
23:55:54.0314 3072 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
23:55:54.0345 3072 SiSRaid4 - ok
23:55:54.0360 3072 slicedisk.sys - ok
23:55:54.0392 3072 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
23:55:54.0438 3072 Smb - ok
23:55:54.0470 3072 snapman (eb49860e776ce860dc3cfb9edb1ba517) C:\Windows\system32\DRIVERS\snapman.sys
23:55:54.0501 3072 snapman - ok
23:55:54.0516 3072 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
23:55:54.0532 3072 spldr - ok
23:55:54.0594 3072 sptd (71e276f6d189413266ea22171806597b) C:\Windows\system32\Drivers\sptd.sys
23:55:54.0594 3072 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 71e276f6d189413266ea22171806597b
23:55:54.0594 3072 sptd ( LockedFile.Multi.Generic ) - warning
23:55:54.0594 3072 sptd - detected LockedFile.Multi.Generic (1)
23:55:54.0641 3072 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
23:55:54.0704 3072 srv - ok
23:55:54.0735 3072 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
23:55:54.0782 3072 srv2 - ok
23:55:54.0813 3072 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
23:55:54.0844 3072 srvnet - ok
23:55:54.0875 3072 SSPORT (ef3458337d7341a05169cefc73709264) C:\Windows\system32\Drivers\SSPORT.sys
23:55:54.0891 3072 SSPORT ( UnsignedFile.Multi.Generic ) - warning
23:55:54.0891 3072 SSPORT - detected UnsignedFile.Multi.Generic (1)
23:55:54.0906 3072 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
23:55:54.0922 3072 swenum - ok
23:55:54.0953 3072 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
23:55:54.0969 3072 Symc8xx - ok
23:55:54.0984 3072 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
23:55:55.0000 3072 Sym_hi - ok
23:55:55.0000 3072 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
23:55:55.0031 3072 Sym_u3 - ok
23:55:55.0078 3072 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
23:55:55.0125 3072 Tcpip - ok
23:55:55.0140 3072 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
23:55:55.0172 3072 Tcpip6 - ok
23:55:55.0203 3072 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
23:55:55.0250 3072 tcpipreg - ok
23:55:55.0265 3072 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
23:55:55.0296 3072 TDPIPE - ok
23:55:55.0374 3072 tdrpman273 (431801fcc97034e04a6eff81136578d7) C:\Windows\system32\DRIVERS\tdrpm273.sys
23:55:55.0421 3072 tdrpman273 - ok
23:55:55.0437 3072 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
23:55:55.0484 3072 TDTCP - ok
23:55:55.0546 3072 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
23:55:55.0593 3072 tdx - ok
23:55:55.0640 3072 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
23:55:55.0655 3072 TermDD - ok
23:55:55.0811 3072 timounter (a34d7024bb7140ec785c86bc065d4f60) C:\Windows\system32\DRIVERS\timntr.sys
23:55:55.0842 3072 timounter - ok
23:55:55.0858 3072 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
23:55:55.0905 3072 tssecsrv - ok
23:55:55.0920 3072 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
23:55:55.0952 3072 tunmp - ok
23:55:55.0983 3072 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
23:55:56.0030 3072 tunnel - ok
23:55:56.0045 3072 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
23:55:56.0076 3072 uagp35 - ok
23:55:56.0139 3072 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
23:55:56.0186 3072 udfs - ok
23:55:56.0217 3072 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
23:55:56.0232 3072 uliagpkx - ok
23:55:56.0248 3072 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
23:55:56.0295 3072 uliahci - ok
23:55:56.0310 3072 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
23:55:56.0342 3072 UlSata - ok
23:55:56.0357 3072 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
23:55:56.0388 3072 ulsata2 - ok
23:55:56.0404 3072 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
23:55:56.0513 3072 umbus - ok
23:55:56.0544 3072 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
23:55:56.0576 3072 usbccgp - ok
23:55:56.0607 3072 usbcir (47b9770ea21436de4ad5aea7926e0900) C:\Windows\system32\DRIVERS\usbcir.sys
23:55:56.0638 3072 usbcir - ok
23:55:56.0685 3072 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
23:55:56.0716 3072 usbehci - ok
23:55:56.0747 3072 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
23:55:56.0794 3072 usbhub - ok
23:55:56.0810 3072 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
23:55:56.0856 3072 usbohci - ok
23:55:56.0888 3072 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
23:55:56.0934 3072 usbprint - ok
23:55:56.0966 3072 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
23:55:56.0997 3072 usbscan - ok
23:55:57.0012 3072 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:55:57.0028 3072 USBSTOR - ok
23:55:57.0044 3072 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
23:55:57.0075 3072 usbuhci - ok
23:55:57.0106 3072 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
23:55:57.0137 3072 vga - ok
23:55:57.0153 3072 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
23:55:57.0215 3072 VgaSave - ok
23:55:57.0231 3072 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
23:55:57.0246 3072 viaagp - ok
23:55:57.0262 3072 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
23:55:57.0309 3072 ViaC7 - ok
23:55:57.0324 3072 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
23:55:57.0340 3072 viaide - ok
23:55:57.0356 3072 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
23:55:57.0387 3072 volmgr - ok
23:55:57.0418 3072 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
23:55:57.0449 3072 volmgrx - ok
23:55:57.0449 3072 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
23:55:57.0480 3072 volsnap - ok
23:55:57.0496 3072 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
23:55:57.0527 3072 vsmraid - ok
23:55:57.0543 3072 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
23:55:57.0590 3072 WacomPen - ok
23:55:57.0605 3072 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
23:55:57.0652 3072 Wanarp - ok
23:55:57.0652 3072 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
23:55:57.0668 3072 Wanarpv6 - ok
23:55:57.0683 3072 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
23:55:57.0699 3072 Wd - ok
23:55:57.0746 3072 WDC_SAM (d6efaf429fd30c5df613d220e344cce7) C:\Windows\system32\DRIVERS\wdcsam.sys
23:55:57.0777 3072 WDC_SAM - ok
23:55:57.0808 3072 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
23:55:57.0855 3072 Wdf01000 - ok
23:55:57.0933 3072 WmBEnum (5d410936831f7fb58eff941eac3f6d3d) C:\Windows\system32\drivers\WmBEnum.sys
23:55:57.0948 3072 WmBEnum - ok
23:55:57.0964 3072 WmFilter (7a13cfde92956ca61a0927d766c5ad4f) C:\Windows\system32\drivers\WmFilter.sys
23:55:57.0980 3072 WmFilter - ok
23:55:58.0011 3072 WmHidLo (bb49902577091f634e752537181d2c19) C:\Windows\system32\drivers\WmHidLo.sys
23:55:58.0058 3072 WmHidLo - ok
23:55:58.0073 3072 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
23:55:58.0104 3072 WmiAcpi - ok
23:55:58.0136 3072 WmVirHid (6f04646bc690f8bbfc344be32a60796d) C:\Windows\system32\drivers\WmVirHid.sys
23:55:58.0151 3072 WmVirHid - ok
23:55:58.0214 3072 WmXlCore (1d6ca43d562333f4dfb40bcef2453f3a) C:\Windows\system32\drivers\WmXlCore.sys
23:55:58.0229 3072 WmXlCore - ok
23:55:58.0276 3072 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
23:55:58.0292 3072 WpdUsb - ok
23:55:58.0307 3072 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
23:55:58.0338 3072 ws2ifsl - ok
23:55:58.0370 3072 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
23:55:58.0401 3072 WUDFRd - ok
23:55:58.0448 3072 xnacc (9eea6d029fef5f3016d089b1a603837d) C:\Windows\system32\DRIVERS\xnacc.sys
23:55:58.0510 3072 xnacc - ok
23:55:58.0541 3072 xusb21 (f5e5f944e63a9b5f6e76c2ebb2ac462f) C:\Windows\system32\DRIVERS\xusb21.sys
23:55:58.0572 3072 xusb21 - ok
23:55:58.0604 3072 yukonwlh (a4822191c7cea271903c2a4fb6d9809d) C:\Windows\system32\DRIVERS\yk60x86.sys
23:55:58.0635 3072 yukonwlh - ok
23:55:58.0650 3072 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
23:55:58.0806 3072 \Device\Harddisk0\DR0 - ok
23:55:58.0822 3072 MBR (0x1B8) (739b36f7a373fc81121d831231b6d311) \Device\Harddisk1\DR1
23:56:05.0889 3072 \Device\Harddisk1\DR1 - ok
23:56:05.0904 3072 Boot (0x1200) (b8ea02a0db0c07f46d173fc121cc2591) \Device\Harddisk0\DR0\Partition0
23:56:05.0936 3072 \Device\Harddisk0\DR0\Partition0 - ok
23:56:05.0936 3072 Boot (0x1200) (da70f67c4d54c037de4cfb2e75ad30f5) \Device\Harddisk0\DR0\Partition1
23:56:05.0936 3072 \Device\Harddisk0\DR0\Partition1 - ok
23:56:05.0967 3072 Boot (0x1200) (e244802e9722c0c7d527eac29e3285ec) \Device\Harddisk0\DR0\Partition2
23:56:05.0982 3072 \Device\Harddisk0\DR0\Partition2 - ok
23:56:05.0998 3072 Boot (0x1200) (eec04b8286587f3a286f72971bbbdced) \Device\Harddisk0\DR0\Partition3
23:56:05.0998 3072 \Device\Harddisk0\DR0\Partition3 - ok
23:56:06.0014 3072 Boot (0x1200) (821843bb4979b4fd32ad22ddf377f120) \Device\Harddisk1\DR1\Partition0
23:56:06.0014 3072 \Device\Harddisk1\DR1\Partition0 - ok
23:56:06.0014 3072 ============================================================
23:56:06.0014 3072 Scan finished
23:56:06.0014 3072 ============================================================
23:56:06.0014 5796 Detected object count: 8
23:56:06.0014 5796 Actual detected object count: 8
23:56:46.0496 5796 ADIHdAudAddService ( UnsignedFile.Multi.Generic ) - skipped by user
23:56:46.0496 5796 ADIHdAudAddService ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:56:46.0496 5796 DgiVecp ( UnsignedFile.Multi.Generic ) - skipped by user
23:56:46.0496 5796 DgiVecp ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:56:46.0496 5796 libusb0 ( UnsignedFile.Multi.Generic ) - skipped by user
23:56:46.0496 5796 libusb0 ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:56:46.0496 5796 MagicTune ( UnsignedFile.Multi.Generic ) - skipped by user
23:56:46.0496 5796 MagicTune ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:56:46.0496 5796 MarvinBus ( UnsignedFile.Multi.Generic ) - skipped by user
23:56:46.0496 5796 MarvinBus ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:56:46.0496 5796 NCPro ( UnsignedFile.Multi.Generic ) - skipped by user
23:56:46.0496 5796 NCPro ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:56:46.0496 5796 sptd ( LockedFile.Multi.Generic ) - skipped by user
23:56:46.0496 5796 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
23:56:46.0511 5796 SSPORT ( UnsignedFile.Multi.Generic ) - skipped by user
23:56:46.0511 5796 SSPORT ( UnsignedFile.Multi.Generic ) - User select action: Skip

[Joseph]

Sem si říkal co pořád nacvičuješ

zálohu mbrfixu i dump soubory MBRscanu (Dump_Hdd0_DR0.mbr, Dump_Hdd1_DR1.mbr apod) mi upni, dík.

opakuj akci s MBRScan, log sem.


Stáhni OTL http://oldtimer.geekstogo.com/OTL.exe na plochu
- spusť
- označ Pro všechny uživatele
- pokud máš 64b Operační systém zkontroluj, zda je označen čtverecek "Pro 64bitové OS"
- označ havěť: Lop a Purity
- změn Stáří suborů na 7 dnu místo 30-ti
- zde doplňek: - do bílého pole mající titulek "Vlastní skenování/opravy" programu zkopíruj následující skript taktéž z bílého pole:

- odklikni tlačítko Prohledat
- vytvoří se dva logy, oba OTL.txt i Extras.txt zazipuj a vlož v podobě přílohy do svého příspěvku
- Oba dva výsledné logy lze najít v místě spuštění programu

sorry som nejaky dopleteny a mam par otazok:

1. tieto veci mam robit vo viste alebo v tom druhom prostredi, ktore botujem z CD?

2. log z TDSKILLER (o prispevok vyssie) - tdskiller som mal zapnut priamo vo viste (z visty je ten vyssie uvedeny log) alebo v tom druhom prostredi, ktore botujem z CD?

v prilohe prikladam:
zálohu mbrfixu i dump soubory MBRscanu (Dump_Hdd0_DR0.mbr, Dump_Hdd1_DR1.mbr

[Joseph]

1 i 2 ve viste hlásí antivirák problémy?

od rana nic vsetko ok ,posledna zachytena infiltracia - olmarik tdl4 bola 4.3. 2012 okolo 19:30

[Joseph]

prikladam logy z MBscan

[Joseph]

logy z otl

[Joseph]

a log z CF

a nevies mi poradit ako vyriesit tieto problemy:
1. ked otvorim vo viste ponuku START nie su tam ziadne naposledy pouzite programy alebo ked v nom kliknem napr na zlozku tomtom je prazdna (prazdne su aj ostatne)

2. vyhodi mi chybu ked kliknem v ovladacich paneloch na programi po spusteni ale napr. odinstalovat programy v ovladacich paneloch ide

3. tiez mi nejde par porogramov po spusteni (napr setpoint on logitechu a tak nemam plne funkcnu klavsenicu(nejde mi zoom tlacitko a pod.))

[Joseph]

REGEDIT 4

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders
"Programs"="%USERPROFILE%\Start Menu\Programs"
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders
"Programs"="%USERPROFILE%\Start Menu\Programs"

ulož jako oprava.reg, nech naimportovat do registrů.

restart, koukni zdali je OK, klavesnici přeinstaluj.

dvojka (2.) mi pred importovanim do registrov isla a teraz nejde ale neviem ci to bolo tymto sposobene

jednotka pretrvava a klavesnicu preinstalujem a dam vediet

[Joseph]

to teda neviem a ja som pouzil nejaky OlmarikFixer?

[Joseph]

EOlmarikTdl4Cleaner nezmazal nic kedze mi vypisalo ze nic nenasiel

to obnovenie registrov nepomohlo, stale vyhdazuje chybu ked chcem otvorit programi alebo defender po spusteni v ovladacich paneloch

stale nie je nic v starte, ked dam start, vsetky porgramy, tak rozkliknem zlozky a tie su vsetky prazdne (iba novo instalovane programy nemaju zlozky prazdne (myslim porgramy instalovane po vylieceni))

[Joseph]

log RK

k tomu bodu obnovy, no pokial ho robi system automaticky kde ho najdem? lebo urcite som ja ziadne registre nezalohoval resp. som nerobil ziadne body obnovy

RogueKiller V7.2.1 [02/29/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Spuštěno v: Normální režim
Uživatel: Joseph [Práva správce]
Mode: Kontrola -- Date: 03/07/2012 11:39:50

¤¤¤ Škodlivé procesy: 0 ¤¤¤

¤¤¤ Záznamy Registrů: 11 ¤¤¤
[HJ] HKLM\[...]\System : EnableLUA (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowUser (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowSetProgramAccessAndDefaults (0) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ] HKCU\[...]\ClassicStartMenu : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> FOUND
[HIDDEN VAL] HKLM\[...]\Run : S ("C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe") -> FOUND

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač: [NAHRÁNO] ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: WDC WD6400AACS-00G8B0 ATA Device +++++
--- User ---
[MBR] 2bfa8593380f69e6cd4f81642f7725ab
[BSP] ff90c617e7dcc04c5a6c91b3cd4eb549 : Windows Vista MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 60000 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 122881185 | Size: 550469 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: WD My Book 1111 USB Device +++++
--- User ---
[MBR] 501e0d6900b18b534a9fcc91650fc670
[BSP] d17cd76fdfd3323b5fe85b518ea94d94 : Windows XP MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 953198 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Dokončeno : << RKreport[1].txt >>
RKreport[1].txt

[Joseph]

v tom RK mam naco kliknut aby to opravilo?
na to tlacitko - Opr zastupcu (najit a obnovit subory skryte haveti typu Fake HDD) ci na ktore?

[Joseph]

dal som opravit zastupcov ale nepomohlo to

[Joseph]

a ten bod obnovy mi vsetky subory, napr. nejaky excel vrati do stavu napr. spred mesiaca (pretoze medzi tym som ho par krat upravil)?

radsej si mam vsetko zalohavat asi

a nevraqti sa mi bodom obnovy do pc aj ten trojan?