reštartovanie PC + mrznutie PC - podozrenie na vírus

[stell]

restartuj pc do nudzoveho rezimu s pracou v sieti.
1:)Pri štartovaní počítača stlačte kláves F8 a podržte ho stlačený.
2:)Kláves F8 musíte stlačiť predtým, než sa zobrazí logo systému Windows.
3:)Ak sa zobrazí logo systému Windows,bude nutné pokus o stlačenie klávesu F8 zopakovať.
4:)Na obrazovke zvýraznite pomocou šípok želanú možnosť núdzového režimu a stlačte kláves ENTER.

A skus tu, ak aj tu bude restart, tak pis.

[patricia11]

PC mi nereštartovalo,ale OTL sa stále nedá spustiť - ukazuje rovnakú chybu

[stell]

Stiahni si ho prosím
http://support.kaspersky.com/downloads/ ... killer.exe
Spustenie aplikácie: 2x-klik na >TDSSKiller.exe
Spustenie kontroly: Start Scan
Ak je infikovaný súbor detekovaný, bude predvolená akcia Cure, kliknite na "Continue".
Ak podozrivý [suspicious] súbor je detekovaný, bude predvolená akcia Skip, kliknite na "Continue".
Môže vás požiadať, aby ste reštartovali počítač na dokončenie procesu. Kliknite na "Reboot Now".

Správa je k dispozícii vo vašom koreňovom adresári (zvyčajne C:\ zložka) vo forme "TDSSKiller. _log.txt".
vloz sem

[patricia11]

PC mám mať stále v tomto režime - tdsskiller.exe nedokončilo sťahovanie píše tam nedostatečná oprávnení

[stell]

Ano zostan stale v nudzovom rezime.
Takto nepamatas sa ake infekcie hlasil NOD??
Tdsskiller nahram ti na server vydrz.

[patricia11]

Ok, zostanem v núdzovom režime......To si fakt nepamätám, je mi ľúto......

[stell]

http://leteckaposta.cz/542060504
stiahni ,je ti ZIp, treba najprv rozbalit

[patricia11]

podarilo sa mi to nakoniec stiahnuť podľa predošlého návodu
žiadne súbory neboli infikované....
tu je log

20:49:46.0781 0176 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35
20:49:47.0312 0176 ============================================================
20:49:47.0312 0176 Current date / time: 2012/07/16 20:49:47.0312
20:49:47.0312 0176 SystemInfo:
20:49:47.0312 0176
20:49:47.0312 0176 OS Version: 5.1.2600 ServicePack: 2.0
20:49:47.0312 0176 Product type: Workstation
20:49:47.0312 0176 ComputerName: PUR-E722624FA40
20:49:47.0312 0176 UserName: Administrator
20:49:47.0312 0176 Windows directory: C:\WINDOWS
20:49:47.0312 0176 System windows directory: C:\WINDOWS
20:49:47.0312 0176 Processor architecture: Intel x86
20:49:47.0312 0176 Number of processors: 2
20:49:47.0312 0176 Page size: 0x1000
20:49:47.0312 0176 Boot type: Safe boot with network
20:49:47.0312 0176 ============================================================
20:49:50.0390 0176 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
20:49:50.0406 0176 ============================================================
20:49:50.0406 0176 \Device\Harddisk0\DR0:
20:49:50.0406 0176 MBR partitions:
20:49:50.0406 0176 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x254297C1
20:49:50.0406 0176 ============================================================
20:49:50.0437 0176 C: <-> \Device\Harddisk0\DR0\Partition0
20:49:50.0921 0176 ============================================================
20:49:50.0921 0176 Initialize success
20:49:50.0921 0176 ============================================================
20:50:25.0375 1476 ============================================================
20:50:25.0375 1476 Scan started
20:50:25.0375 1476 Mode: Manual;
20:50:25.0375 1476 ============================================================
20:50:26.0390 1476 Abiosdsk - ok
20:50:26.0421 1476 abp480n5 - ok
20:50:26.0484 1476 ACPI (fa2fbcda96d2385f773b059fe5a125a6) C:\WINDOWS\system32\DRIVERS\ACPI.sys
20:50:26.0484 1476 ACPI - ok
20:50:26.0531 1476 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
20:50:26.0531 1476 ACPIEC - ok
20:50:26.0609 1476 Adobe LM Service (6d182c31acf16213407f2768f1107fe3) C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
20:50:26.0625 1476 Adobe LM Service - ok
20:50:26.0640 1476 adpu160m - ok
20:50:26.0703 1476 aec (841f385c6cfaf66b58fbd898722bb4f0) C:\WINDOWS\system32\drivers\aec.sys
20:50:26.0703 1476 aec - ok
20:50:26.0750 1476 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
20:50:26.0750 1476 AFD - ok
20:50:26.0765 1476 Aha154x - ok
20:50:26.0796 1476 aic78u2 - ok
20:50:26.0828 1476 aic78xx - ok
20:50:26.0875 1476 Alerter (026ddaa7e6f8d49df82c7a98bae5d0d1) C:\WINDOWS\system32\alrsvc.dll
20:50:26.0875 1476 Alerter - ok
20:50:26.0921 1476 ALG (b3f690bf43f93a012a52f28f234faa1b) C:\WINDOWS\System32\alg.exe
20:50:26.0921 1476 ALG - ok
20:50:26.0937 1476 AliIde - ok
20:50:27.0015 1476 AMON (78ece71701d5d65cc42125a4ef2d76aa) C:\WINDOWS\system32\drivers\amon.sys
20:50:27.0031 1476 AMON - ok
20:50:27.0046 1476 amsint - ok
20:50:27.0093 1476 AppMgmt (421184f91eae5c6e78e653c6b32aae84) C:\WINDOWS\System32\appmgmts.dll
20:50:27.0109 1476 AppMgmt - ok
20:50:27.0125 1476 asc - ok
20:50:27.0140 1476 asc3350p - ok
20:50:27.0171 1476 asc3550 - ok
20:50:27.0203 1476 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
20:50:27.0203 1476 AsyncMac - ok
20:50:27.0234 1476 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
20:50:27.0234 1476 atapi - ok
20:50:27.0265 1476 Atdisk - ok
20:50:27.0296 1476 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
20:50:27.0296 1476 Atmarpc - ok
20:50:27.0343 1476 AudioSrv (40d78f514c8588ef12ec718d2af0fc4e) C:\WINDOWS\System32\audiosrv.dll
20:50:27.0343 1476 AudioSrv - ok
20:50:27.0406 1476 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
20:50:27.0406 1476 audstub - ok
20:50:27.0453 1476 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
20:50:27.0468 1476 Beep - ok
20:50:27.0515 1476 BITS (e774a26610ec92674273486612c11cfc) C:\WINDOWS\system32\qmgr.dll
20:50:27.0546 1476 BITS - ok
20:50:27.0578 1476 Browser (f219e27e88107a50544153898dd8178e) C:\WINDOWS\System32\browser.dll
20:50:27.0578 1476 Browser - ok
20:50:27.0609 1476 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
20:50:27.0609 1476 cbidf2k - ok
20:50:27.0640 1476 CCDECODE (6163ed60b684bab19d3352ab22fc48b2) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
20:50:27.0640 1476 CCDECODE - ok
20:50:27.0656 1476 cd20xrnt - ok
20:50:27.0703 1476 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
20:50:27.0718 1476 Cdaudio - ok
20:50:27.0734 1476 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
20:50:27.0734 1476 Cdfs - ok
20:50:27.0750 1476 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
20:50:27.0765 1476 Cdrom - ok
20:50:27.0781 1476 Changer - ok
20:50:27.0812 1476 CiSvc (9e21229e04e1d301bb40222fe4641cb2) C:\WINDOWS\system32\cisvc.exe
20:50:27.0812 1476 CiSvc - ok
20:50:27.0828 1476 ClipSrv (d3dc45553c8025338e08a60e95b1b91d) C:\WINDOWS\system32\clipsrv.exe
20:50:27.0843 1476 ClipSrv - ok
20:50:27.0859 1476 CmdIde - ok
20:50:27.0890 1476 COMSysApp - ok
20:50:27.0937 1476 Cpqarray - ok
20:50:27.0984 1476 CryptSvc (70d2a1756f4b2067658a186c963fcabd) C:\WINDOWS\System32\cryptsvc.dll
20:50:27.0984 1476 CryptSvc - ok
20:50:28.0000 1476 dac2w2k - ok
20:50:28.0031 1476 dac960nt - ok
20:50:28.0093 1476 DcomLaunch (2b269c916766bdb43404f043b763427d) C:\WINDOWS\system32\rpcss.dll
20:50:28.0109 1476 DcomLaunch - ok
20:50:28.0171 1476 Dhcp (562830efb7cf367fb773fea5256e67c8) C:\WINDOWS\System32\dhcpcsvc.dll
20:50:28.0171 1476 Dhcp - ok
20:50:28.0187 1476 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
20:50:28.0187 1476 Disk - ok
20:50:28.0203 1476 dmadmin - ok
20:50:28.0328 1476 dmboot (e1968edec81c430108feb23ab07bdb14) C:\WINDOWS\system32\drivers\dmboot.sys
20:50:28.0375 1476 dmboot - ok
20:50:28.0390 1476 dmio (1b1520a82e396e46b9ae9fa6b03ff6c6) C:\WINDOWS\system32\drivers\dmio.sys
20:50:28.0390 1476 dmio - ok
20:50:28.0421 1476 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
20:50:28.0421 1476 dmload - ok
20:50:28.0437 1476 dmserver (7b3ca72885923eb947221f17f3e3ac59) C:\WINDOWS\System32\dmserver.dll
20:50:28.0437 1476 dmserver - ok
20:50:28.0484 1476 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
20:50:28.0484 1476 DMusic - ok
20:50:28.0500 1476 Dnscache (f605b3f5674d67587c4b6c9e92a3e025) C:\WINDOWS\System32\dnsrslvr.dll
20:50:28.0515 1476 Dnscache - ok
20:50:28.0531 1476 dpti2o - ok
20:50:28.0578 1476 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
20:50:28.0578 1476 drmkaud - ok
20:50:28.0593 1476 ERSvc (d6f7428b201e33bc80066b47144cb568) C:\WINDOWS\System32\ersvc.dll
20:50:28.0593 1476 ERSvc - ok
20:50:28.0671 1476 Eventlog (4f9f7b567970b524f31d9970a23f7c24) C:\WINDOWS\system32\services.exe
20:50:28.0687 1476 Eventlog - ok
20:50:28.0734 1476 EventSystem (398314df0b21338c4996b469101750d1) C:\WINDOWS\system32\es.dll
20:50:28.0734 1476 EventSystem - ok
20:50:28.0765 1476 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
20:50:28.0765 1476 Fastfat - ok
20:50:28.0812 1476 FastUserSwitchingCompatibility (8ba76bd2a943f642f267a296a15776d2) C:\WINDOWS\System32\shsvcs.dll
20:50:28.0812 1476 FastUserSwitchingCompatibility - ok
20:50:28.0828 1476 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
20:50:28.0828 1476 Fdc - ok
20:50:28.0890 1476 FilterService (bcef16e3aedd1b44bca45f748d975d73) C:\WINDOWS\system32\DRIVERS\lvuvcflt.sys
20:50:28.0890 1476 FilterService - ok
20:50:28.0937 1476 Fips (266dab58619b17bdf37fabbd48d875ca) C:\WINDOWS\system32\drivers\Fips.sys
20:50:28.0937 1476 Fips - ok
20:50:28.0953 1476 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
20:50:28.0953 1476 Flpydisk - ok
20:50:28.0984 1476 FltMgr (157754f0df355a9e0a6f54721914f9c6) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
20:50:29.0000 1476 FltMgr - ok
20:50:29.0015 1476 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
20:50:29.0015 1476 Fs_Rec - ok
20:50:29.0046 1476 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
20:50:29.0046 1476 Ftdisk - ok
20:50:29.0062 1476 GMSIPCI - ok
20:50:29.0109 1476 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
20:50:29.0109 1476 Gpc - ok
20:50:29.0343 1476 gupdate1c9bf4da32aed3a (626a24ed1228580b9518c01930936df9) C:\Program Files\Google\Update\GoogleUpdate.exe
20:50:29.0343 1476 gupdate1c9bf4da32aed3a - ok
20:50:29.0359 1476 gupdatem (626a24ed1228580b9518c01930936df9) C:\Program Files\Google\Update\GoogleUpdate.exe
20:50:29.0359 1476 gupdatem - ok
20:50:29.0421 1476 HDAudBus (3fcc124b6e08ee0e9351f717dd136939) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
20:50:29.0421 1476 HDAudBus - ok
20:50:29.0437 1476 helpsvc (f59152272782fed8a8197fa788287f68) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
20:50:29.0437 1476 helpsvc - ok
20:50:29.0468 1476 HidServ (d2dcf769e5a70027058ad5be1f9b55bf) C:\WINDOWS\System32\hidserv.dll
20:50:29.0468 1476 HidServ - ok
20:50:29.0546 1476 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
20:50:29.0546 1476 HidUsb - ok
20:50:29.0562 1476 hpn - ok
20:50:29.0625 1476 HTTP (c19b522a9ae0bbc3293397f3055e80a1) C:\WINDOWS\system32\Drivers\HTTP.sys
20:50:29.0625 1476 HTTP - ok
20:50:29.0671 1476 HTTPFilter (da826826c5c9116f47e0cd0ca8cc7c11) C:\WINDOWS\System32\w3ssl.dll
20:50:29.0687 1476 HTTPFilter - ok
20:50:29.0703 1476 i2omgmt - ok
20:50:29.0718 1476 i2omp - ok
20:50:29.0765 1476 i8042prt (0f42de9909b5dbf2c48dd1a79d491af5) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
20:50:29.0765 1476 i8042prt - ok
20:50:29.0843 1476 imagedrv (25edd75e23c5ef6b33d0fbcce125a601) C:\WINDOWS\system32\Drivers\imagedrv.sys
20:50:29.0843 1476 imagedrv - ok
20:50:29.0906 1476 imagesrv (9c4bbacf4e9b9543c3ce23f1fe556941) C:\WINDOWS\system32\DRIVERS\imagesrv.sys
20:50:29.0906 1476 imagesrv - ok
20:50:29.0937 1476 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
20:50:29.0937 1476 Imapi - ok
20:50:29.0984 1476 ImapiService (cf9d286b34cb4912f3b28b4972d5cb33) C:\WINDOWS\system32\imapi.exe
20:50:29.0984 1476 ImapiService - ok
20:50:30.0015 1476 ini910u - ok
20:50:30.0281 1476 IntcAzAudAddService (7c09d605fcae64e3cb11ebf90fb1e3a1) C:\WINDOWS\system32\drivers\RtkHDAud.sys
20:50:30.0484 1476 IntcAzAudAddService - ok
20:50:30.0593 1476 IntelIde - ok
20:50:30.0640 1476 intelppm (10a3ac0f0df720ad3c3fd13861d50eb9) C:\WINDOWS\system32\DRIVERS\intelppm.sys
20:50:30.0640 1476 intelppm - ok
20:50:30.0656 1476 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
20:50:30.0656 1476 Ip6Fw - ok
20:50:30.0703 1476 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
20:50:30.0703 1476 IpFilterDriver - ok
20:50:30.0718 1476 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
20:50:30.0718 1476 IpInIp - ok
20:50:30.0781 1476 IpNat (b5a8e215ac29d24d60b4d1250ef05ace) C:\WINDOWS\system32\DRIVERS\ipnat.sys
20:50:30.0781 1476 IpNat - ok
20:50:30.0796 1476 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
20:50:30.0796 1476 IPSec - ok
20:50:30.0828 1476 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
20:50:30.0828 1476 IRENUM - ok
20:50:30.0875 1476 isapnp (1091528512e4dd7ed5fddcc4df1c53d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
20:50:30.0875 1476 isapnp - ok
20:50:31.0031 1476 JavaQuickStarterService (9dba73c2f1e76ec4cb837e67c5743596) C:\Program Files\Java\jre6\bin\jqs.exe
20:50:31.0046 1476 JavaQuickStarterService - ok
20:50:31.0062 1476 JGOGO (c995c0e8b4503fac38793bb0236ad246) C:\WINDOWS\system32\DRIVERS\JGOGO.sys
20:50:31.0062 1476 JGOGO - ok
20:50:31.0062 1476 JRAID (4b5602befddc838ea8fc737484091d4e) C:\WINDOWS\system32\DRIVERS\jraid.sys
20:50:31.0078 1476 JRAID - ok
20:50:31.0125 1476 Kbdclass (6f877bf8dc01a550cd666f3bedb2213c) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
20:50:31.0125 1476 Kbdclass - ok
20:50:31.0140 1476 kbdhid (065b5a83aa78c0c7047bf22e0ab5c821) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
20:50:31.0140 1476 kbdhid - ok
20:50:31.0171 1476 kmixer (d93cad07c5683db066b0b2d2d3790ead) C:\WINDOWS\system32\drivers\kmixer.sys
20:50:31.0187 1476 kmixer - ok
20:50:31.0203 1476 KSecDD (674d3e5a593475915dc6643317192403) C:\WINDOWS\system32\drivers\KSecDD.sys
20:50:31.0218 1476 KSecDD - ok
20:50:31.0250 1476 lanmanserver (6d6bdd68b775986577c48a8df961a05c) C:\WINDOWS\System32\srvsvc.dll
20:50:31.0250 1476 lanmanserver - ok
20:50:31.0421 1476 lanmanworkstation (6bf7baf420dd4422d2c35dfb3e51a29c) C:\WINDOWS\System32\wkssvc.dll
20:50:31.0437 1476 lanmanworkstation - ok
20:50:31.0578 1476 lbrtfdc - ok
20:50:31.0625 1476 LmHosts (f9ee6d2aab0690b34ae35ba9921a1414) C:\WINDOWS\System32\lmhsvc.dll
20:50:31.0625 1476 LmHosts - ok
20:50:31.0890 1476 LVcKap (8113133ec42dd6c566908008ce913edd) C:\WINDOWS\system32\DRIVERS\LVcKap.sys
20:50:31.0937 1476 LVcKap - ok
20:50:32.0265 1476 LVCOMSer (9e41266c68c11d7101a2d18cd1f7553e) C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
20:50:32.0296 1476 LVCOMSer - ok
20:50:32.0609 1476 LVMVDrv (0dd5b8af4917a2821047450195c511b3) C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys
20:50:32.0671 1476 LVMVDrv - ok
20:50:32.0921 1476 lvpopflt (e1158b0cb852db0573922c92e6e564de) C:\WINDOWS\system32\DRIVERS\lvpopflt.sys
20:50:32.0968 1476 lvpopflt - ok
20:50:33.0015 1476 LVPr2Mon (406b1d186f75b4b4832d6237859e1b00) C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
20:50:33.0015 1476 LVPr2Mon - ok
20:50:33.0046 1476 LVPrcSrv (85c2e84bc1224c75a20b5560d5a15db9) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
20:50:33.0046 1476 LVPrcSrv - ok
20:50:33.0078 1476 LVSrvLauncher (656180e9c0c5199520972426c44bc2f0) C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
20:50:33.0078 1476 LVSrvLauncher - ok
20:50:33.0140 1476 LVUSBSta (be5e104be263921d6842c555db6a5c23) C:\WINDOWS\system32\drivers\LVUSBSta.sys
20:50:33.0140 1476 LVUSBSta - ok
20:50:33.0359 1476 LVUVC (eacd1eb2d82ed2adc753afeee1d4d660) C:\WINDOWS\system32\DRIVERS\lvuvc.sys
20:50:33.0453 1476 LVUVC - ok
20:50:33.0625 1476 MDM (11f714f85530a2bd134074dc30e99fca) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
20:50:33.0625 1476 MDM - ok
20:50:33.0890 1476 Messenger (8b2fcbd881879b55be40b41f12ffc431) C:\WINDOWS\System32\msgsvc.dll
20:50:33.0890 1476 Messenger - ok
20:50:34.0218 1476 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
20:50:34.0218 1476 mnmdd - ok
20:50:34.0343 1476 mnmsrvc (7d137132d6a9b41ef800e59a771ed48c) C:\WINDOWS\system32\mnmsrvc.exe
20:50:34.0359 1476 mnmsrvc - ok
20:50:34.0375 1476 Modem (60210deb037846afe521ebf349964f6b) C:\WINDOWS\system32\drivers\Modem.sys
20:50:34.0375 1476 Modem - ok
20:50:34.0421 1476 Mouclass (b160ec94114715675509115986400fd9) C:\WINDOWS\system32\DRIVERS\mouclass.sys
20:50:34.0421 1476 Mouclass - ok
20:50:34.0468 1476 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
20:50:34.0468 1476 mouhid - ok
20:50:34.0515 1476 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
20:50:34.0515 1476 MountMgr - ok
20:50:34.0531 1476 mraid35x - ok
20:50:34.0562 1476 MRxDAV (46edcc8f2db2f322c24f48785cb46366) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
20:50:34.0562 1476 MRxDAV - ok
20:50:34.0640 1476 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
20:50:34.0640 1476 MRxSmb - ok
20:50:34.0671 1476 MSDTC (944a24032aed84c59455b981f6ca1c1a) C:\WINDOWS\system32\msdtc.exe
20:50:34.0687 1476 MSDTC - ok
20:50:34.0687 1476 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
20:50:34.0703 1476 Msfs - ok
20:50:34.0718 1476 MSIServer - ok
20:50:34.0781 1476 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
20:50:34.0781 1476 MSKSSRV - ok
20:50:34.0812 1476 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
20:50:34.0812 1476 MSPCLOCK - ok
20:50:34.0843 1476 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
20:50:34.0843 1476 MSPQM - ok
20:50:34.0890 1476 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
20:50:34.0890 1476 mssmbios - ok
20:50:34.0937 1476 MSTEE (bf13612142995096ab084f2db7f40f77) C:\WINDOWS\system32\drivers\MSTEE.sys
20:50:34.0937 1476 MSTEE - ok
20:50:34.0968 1476 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
20:50:34.0968 1476 Mup - ok
20:50:35.0000 1476 NABTSFEC (5c8dc6429c43dc6177c1fa5b76290d1a) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
20:50:35.0000 1476 NABTSFEC - ok
20:50:35.0031 1476 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
20:50:35.0031 1476 NDIS - ok
20:50:35.0078 1476 NdisIP (520ce427a8b298f54112857bcf6bde15) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
20:50:35.0078 1476 NdisIP - ok
20:50:35.0109 1476 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
20:50:35.0109 1476 NdisTapi - ok
20:50:35.0125 1476 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
20:50:35.0125 1476 Ndisuio - ok
20:50:35.0156 1476 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
20:50:35.0156 1476 NdisWan - ok
20:50:35.0187 1476 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
20:50:35.0187 1476 NDProxy - ok
20:50:35.0203 1476 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
20:50:35.0203 1476 NetBIOS - ok
20:50:35.0250 1476 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
20:50:35.0250 1476 NetBT - ok
20:50:35.0265 1476 NetDDE (818053225bf4aac5f0f718001e492f70) C:\WINDOWS\system32\netdde.exe
20:50:35.0265 1476 NetDDE - ok
20:50:35.0296 1476 NetDDEdsdm (818053225bf4aac5f0f718001e492f70) C:\WINDOWS\system32\netdde.exe
20:50:35.0296 1476 NetDDEdsdm - ok
20:50:35.0359 1476 Netlogon (82a362fe1d4980b71b588d9c10748511) C:\WINDOWS\system32\lsass.exe
20:50:35.0359 1476 Netlogon - ok
20:50:35.0390 1476 Netman (af342d2781225a8769686e0d47e3123e) C:\WINDOWS\System32\netman.dll
20:50:35.0390 1476 Netman - ok
20:50:35.0468 1476 Nla (a6e79b60ac73241e5721ab6a573d2b24) C:\WINDOWS\System32\mswsock.dll
20:50:35.0468 1476 Nla - ok
20:50:35.0500 1476 nod32drv (0d91989c0c37fdc7f6ffbef238fe9dfb) C:\WINDOWS\system32\drivers\nod32drv.sys
20:50:35.0515 1476 nod32drv - ok
20:50:35.0703 1476 NOD32krn (82f52e10a4df718ff4ca67d2dbde8d07) C:\Program Files\Eset\nod32krn.exe
20:50:35.0703 1476 NOD32krn - ok
20:50:35.0781 1476 npf (b9730495e0cf674680121e34bd95a73b) C:\WINDOWS\system32\drivers\npf.sys
20:50:35.0781 1476 npf - ok
20:50:35.0812 1476 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
20:50:35.0812 1476 Npfs - ok
20:50:35.0875 1476 Ntfs (b78be402c3f63dd55521f73876951cdd) C:\WINDOWS\system32\drivers\Ntfs.sys
20:50:35.0890 1476 Ntfs - ok
20:50:35.0921 1476 NtLmSsp (82a362fe1d4980b71b588d9c10748511) C:\WINDOWS\system32\lsass.exe
20:50:35.0921 1476 NtLmSsp - ok
20:50:36.0000 1476 NtmsSvc (d8d2b13ba93ae830b1a637df571d1195) C:\WINDOWS\system32\ntmssvc.dll
20:50:36.0015 1476 NtmsSvc - ok
20:50:36.0031 1476 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
20:50:36.0031 1476 Null - ok
20:50:36.0421 1476 nv (8c2ed5910513a56cf78bfd86d5d0894f) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
20:50:36.0609 1476 nv - ok
20:50:36.0734 1476 NVSvc (8f461425764dccccedc6e78b7bafa8a7) C:\WINDOWS\system32\nvsvc32.exe
20:50:36.0734 1476 NVSvc - ok
20:50:36.0781 1476 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
20:50:36.0781 1476 NwlnkFlt - ok
20:50:36.0796 1476 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
20:50:36.0796 1476 NwlnkFwd - ok
20:50:36.0875 1476 ose (7a56cf3e3f12e8af599963b16f50fb6a) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:50:36.0875 1476 ose - ok
20:50:36.0953 1476 Parport (76a18caa2fefb28a4ced38d76837e86e) C:\WINDOWS\system32\DRIVERS\parport.sys
20:50:36.0953 1476 Parport - ok
20:50:36.0968 1476 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
20:50:36.0968 1476 PartMgr - ok
20:50:37.0000 1476 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
20:50:37.0000 1476 ParVdm - ok
20:50:37.0031 1476 PCI (b7979f37bb7b9df2230046134955e6e7) C:\WINDOWS\system32\DRIVERS\pci.sys
20:50:37.0031 1476 PCI - ok
20:50:37.0062 1476 PCIDump - ok
20:50:37.0093 1476 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
20:50:37.0093 1476 PCIIde - ok
20:50:37.0140 1476 Pcmcia (90505755634407d4ef4c6dea60fc1df9) C:\WINDOWS\system32\drivers\Pcmcia.sys
20:50:37.0140 1476 Pcmcia - ok
20:50:37.0156 1476 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\WINDOWS\system32\Drivers\pcouffin.sys
20:50:37.0156 1476 pcouffin - ok
20:50:37.0187 1476 PDCOMP - ok
20:50:37.0203 1476 PDFRAME - ok
20:50:37.0234 1476 PDRELI - ok
20:50:37.0265 1476 PDRFRAME - ok
20:50:37.0296 1476 perc2 - ok
20:50:37.0312 1476 perc2hib - ok
20:50:37.0406 1476 pfc (5903fa75200807ad739286bbf40c4904) C:\WINDOWS\system32\drivers\pfc.sys
20:50:37.0406 1476 pfc - ok
20:50:37.0468 1476 PlugPlay (4f9f7b567970b524f31d9970a23f7c24) C:\WINDOWS\system32\services.exe
20:50:37.0468 1476 PlugPlay - ok
20:50:37.0500 1476 PolicyAgent (82a362fe1d4980b71b588d9c10748511) C:\WINDOWS\system32\lsass.exe
20:50:37.0500 1476 PolicyAgent - ok
20:50:37.0515 1476 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
20:50:37.0531 1476 PptpMiniport - ok
20:50:37.0546 1476 ProtectedStorage (82a362fe1d4980b71b588d9c10748511) C:\WINDOWS\system32\lsass.exe
20:50:37.0546 1476 ProtectedStorage - ok
20:50:37.0578 1476 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
20:50:37.0578 1476 PSched - ok
20:50:37.0609 1476 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
20:50:37.0609 1476 Ptilink - ok
20:50:37.0625 1476 PxHelp20 (153d02480a0a2f45785522e814c634b6) C:\WINDOWS\system32\DRIVERS\PxHelp20.sys
20:50:37.0625 1476 PxHelp20 - ok
20:50:37.0656 1476 ql1080 - ok
20:50:37.0687 1476 Ql10wnt - ok
20:50:37.0703 1476 ql12160 - ok
20:50:37.0734 1476 ql1240 - ok
20:50:37.0765 1476 ql1280 - ok
20:50:37.0812 1476 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
20:50:37.0812 1476 RasAcd - ok
20:50:37.0843 1476 RasAuto (e68b6f9a726a444059705ab43b5656d1) C:\WINDOWS\System32\rasauto.dll
20:50:37.0843 1476 RasAuto - ok
20:50:37.0859 1476 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
20:50:37.0875 1476 Rasl2tp - ok
20:50:37.0906 1476 RasMan (6e519d777c91e90592403c9f981fdf03) C:\WINDOWS\System32\rasmans.dll
20:50:37.0921 1476 RasMan - ok
20:50:37.0937 1476 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
20:50:37.0937 1476 RasPppoe - ok
20:50:37.0953 1476 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
20:50:37.0953 1476 Raspti - ok
20:50:38.0000 1476 Rdbss (29d66245adba878fff574cd66abd2884) C:\WINDOWS\system32\DRIVERS\rdbss.sys
20:50:38.0000 1476 Rdbss - ok
20:50:38.0031 1476 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
20:50:38.0031 1476 RDPCDD - ok
20:50:38.0093 1476 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
20:50:38.0093 1476 rdpdr - ok
20:50:38.0140 1476 RDPWD (d4f5643d7714ef499ae9527fdcd50894) C:\WINDOWS\system32\drivers\RDPWD.sys
20:50:38.0140 1476 RDPWD - ok
20:50:38.0171 1476 RDSessMgr (125acf258da9633f748131a0e0185af3) C:\WINDOWS\system32\sessmgr.exe
20:50:38.0171 1476 RDSessMgr - ok
20:50:38.0218 1476 redbook (aba13d33e1f888c9a68599a48a8840d6) C:\WINDOWS\system32\DRIVERS\redbook.sys
20:50:38.0218 1476 redbook - ok
20:50:38.0281 1476 RemoteAccess (eb5e1a601e5a1908a87e4d5a41803d98) C:\WINDOWS\System32\mprdim.dll
20:50:38.0281 1476 RemoteAccess - ok
20:50:38.0312 1476 RemoteRegistry (5b21208fcf8970bb61fe98e19d828714) C:\WINDOWS\system32\regsvc.dll
20:50:38.0312 1476 RemoteRegistry - ok
20:50:38.0375 1476 RpcLocator (c8a3b668985d61249f2dc71716c58de8) C:\WINDOWS\system32\locator.exe
20:50:38.0375 1476 RpcLocator - ok
20:50:38.0453 1476 RpcSs (2b269c916766bdb43404f043b763427d) C:\WINDOWS\system32\rpcss.dll
20:50:38.0453 1476 RpcSs - ok
20:50:38.0500 1476 RSVP (09ab2e71e58b078038e3bfdba7ffc984) C:\WINDOWS\system32\rsvp.exe
20:50:38.0515 1476 RSVP - ok
20:50:38.0531 1476 RTL8023xp (8e34400ffc7d647946d9c820678775af) C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys
20:50:38.0531 1476 RTL8023xp - ok
20:50:38.0562 1476 SamSs (82a362fe1d4980b71b588d9c10748511) C:\WINDOWS\system32\lsass.exe
20:50:38.0562 1476 SamSs - ok
20:50:38.0609 1476 SCardSvr (c177354e995cc1aa1f767bcd9980434a) C:\WINDOWS\System32\SCardSvr.exe
20:50:38.0609 1476 SCardSvr - ok
20:50:38.0656 1476 Schedule (29ac93307c6182dbe336bca314947f28) C:\WINDOWS\system32\schedsvc.dll
20:50:38.0671 1476 Schedule - ok
20:50:38.0687 1476 Secdrv (bb6fbebebbd14429021f2851a60d8546) C:\WINDOWS\system32\DRIVERS\secdrv.sys
20:50:38.0687 1476 Secdrv - ok
20:50:38.0703 1476 seclogon (c76cb8a133374fac6805f83ff7b7da03) C:\WINDOWS\System32\seclogon.dll
20:50:38.0703 1476 seclogon - ok
20:50:38.0734 1476 SENS (220ad85ba9c5b3011296354011b901cc) C:\WINDOWS\system32\sens.dll
20:50:38.0734 1476 SENS - ok
20:50:38.0765 1476 serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys
20:50:38.0765 1476 serenum - ok
20:50:38.0796 1476 Serial (c1ddbc85251551a840212999da3d95f3) C:\WINDOWS\system32\DRIVERS\serial.sys
20:50:38.0796 1476 Serial - ok
20:50:38.0859 1476 sfdrv01 (00de597b81b381053cb5b21a7f20e365) C:\WINDOWS\system32\drivers\sfdrv01.sys
20:50:38.0875 1476 sfdrv01 - ok
20:50:38.0875 1476 sfhlp02 (64b9ab76f1b16eb059cb6cdd906c067a) C:\WINDOWS\system32\drivers\sfhlp02.sys
20:50:38.0890 1476 sfhlp02 - ok
20:50:38.0921 1476 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
20:50:38.0921 1476 Sfloppy - ok
20:50:38.0937 1476 sfsync02 (798d918d8f20380008277ce3ce5319d1) C:\WINDOWS\system32\drivers\sfsync02.sys
20:50:38.0937 1476 sfsync02 - ok
20:50:39.0000 1476 SharedAccess (6a93501bcdebf159109429b022c0ff83) C:\WINDOWS\System32\ipnathlp.dll
20:50:39.0015 1476 SharedAccess - ok
20:50:39.0062 1476 ShellHWDetection (8ba76bd2a943f642f267a296a15776d2) C:\WINDOWS\System32\shsvcs.dll
20:50:39.0062 1476 ShellHWDetection - ok
20:50:39.0078 1476 Simbad - ok
20:50:39.0125 1476 SLIP (5caeed86821fa2c6139e32e9e05ccdc9) C:\WINDOWS\system32\DRIVERS\SLIP.sys
20:50:39.0125 1476 SLIP - ok
20:50:39.0140 1476 Sparrow - ok
20:50:39.0218 1476 splitter (8e186b8f23295d1e42c573b82b80d548) C:\WINDOWS\system32\drivers\splitter.sys
20:50:39.0218 1476 splitter - ok
20:50:39.0234 1476 Spooler (21b6faa88044a41640e03ebb68be93e8) C:\WINDOWS\system32\spoolsv.exe
20:50:39.0250 1476 Spooler - ok
20:50:39.0328 1476 sptd (a199171385be17973fd800fa91f8f78a) C:\WINDOWS\system32\Drivers\sptd.sys
20:50:39.0328 1476 sptd - ok
20:50:39.0343 1476 sr (a74035ea526db97d9d50d2143a55f5cf) C:\WINDOWS\system32\DRIVERS\sr.sys
20:50:39.0359 1476 sr - ok
20:50:39.0375 1476 srservice (3cd57f31a64d32fdb28918b16d1e6aac) C:\WINDOWS\system32\srsvc.dll
20:50:39.0390 1476 srservice - ok
20:50:39.0421 1476 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys
20:50:39.0421 1476 Srv - ok
20:50:39.0453 1476 SSDPSRV (88c28f53f53438dafcd95e99c837c61e) C:\WINDOWS\System32\ssdpsrv.dll
20:50:39.0468 1476 SSDPSRV - ok
20:50:39.0500 1476 stisvc (0645ccdddd27f96eea3534c1def736d9) C:\WINDOWS\system32\wiaservc.dll
20:50:39.0515 1476 stisvc - ok
20:50:39.0531 1476 streamip (284c57df5dc7abca656bc2b96a667afb) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
20:50:39.0531 1476 streamip - ok
20:50:39.0562 1476 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
20:50:39.0562 1476 swenum - ok
20:50:39.0593 1476 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
20:50:39.0593 1476 swmidi - ok
20:50:39.0609 1476 SwPrv - ok
20:50:39.0640 1476 symc810 - ok
20:50:39.0671 1476 symc8xx - ok
20:50:39.0687 1476 sym_hi - ok
20:50:39.0718 1476 sym_u3 - ok
20:50:39.0750 1476 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
20:50:39.0750 1476 sysaudio - ok
20:50:39.0781 1476 SysmonLog (d9c9ecff4904e6151525c533aeedf8f4) C:\WINDOWS\system32\smlogsvc.exe
20:50:39.0781 1476 SysmonLog - ok
20:50:39.0812 1476 TapiSrv (37162d29cd61519e6f5ea0de99786ff6) C:\WINDOWS\System32\tapisrv.dll
20:50:39.0828 1476 TapiSrv - ok
20:50:39.0890 1476 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys
20:50:39.0906 1476 Tcpip - ok
20:50:39.0921 1476 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
20:50:39.0921 1476 TDPIPE - ok
20:50:39.0968 1476 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
20:50:39.0968 1476 TDTCP - ok
20:50:40.0031 1476 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
20:50:40.0031 1476 TermDD - ok
20:50:40.0062 1476 TermService (2f5919f2f6ee7a845893d9c3aa2bc56a) C:\WINDOWS\System32\termsrv.dll
20:50:40.0078 1476 TermService - ok
20:50:40.0156 1476 Themes (8ba76bd2a943f642f267a296a15776d2) C:\WINDOWS\System32\shsvcs.dll
20:50:40.0156 1476 Themes - ok
20:50:40.0171 1476 TlntSvr (535c2fb97336bafa509f4783dd1e5746) C:\WINDOWS\system32\tlntsvr.exe
20:50:40.0171 1476 TlntSvr - ok
20:50:40.0375 1476 TomTomHOMEService (f32e7cd2339c66760aa5178924b21e6b) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
20:50:40.0375 1476 TomTomHOMEService - ok
20:50:40.0390 1476 TosIde - ok
20:50:40.0437 1476 TrkWks (4dce17221b1a87fb47e36842f3e38753) C:\WINDOWS\system32\trkwks.dll
20:50:40.0437 1476 TrkWks - ok
20:50:40.0500 1476 TrueSight (b3c9c35dc93563b8d19ad414edf2fc82) c:\windows\system32\drivers\TrueSight.sys
20:50:40.0500 1476 TrueSight - ok
20:50:40.0578 1476 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
20:50:40.0578 1476 Udfs - ok
20:50:40.0593 1476 ultra - ok
20:50:40.0656 1476 UMWdf (ab0a7ca90d9e3d6a193905dc1715ded0) C:\WINDOWS\system32\wdfmgr.exe
20:50:40.0656 1476 UMWdf - ok
20:50:40.0687 1476 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys
20:50:40.0687 1476 Update - ok
20:50:40.0734 1476 upnphost (984fc1518b0d5b31d76f0e63608e0500) C:\WINDOWS\System32\upnphost.dll
20:50:40.0734 1476 upnphost - ok
20:50:40.0765 1476 UPS (6148a3ba4d9cc628357fc92014fea30e) C:\WINDOWS\System32\ups.exe
20:50:40.0765 1476 UPS - ok
20:50:40.0843 1476 usbaudio (45a0d14b26c35497ad93bce7e15c9941) C:\WINDOWS\system32\drivers\usbaudio.sys
20:50:40.0843 1476 usbaudio - ok
20:50:40.0906 1476 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
20:50:40.0906 1476 usbccgp - ok
20:50:40.0984 1476 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys
20:50:40.0984 1476 usbehci - ok
20:50:41.0000 1476 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
20:50:41.0000 1476 usbhub - ok
20:50:41.0046 1476 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys
20:50:41.0046 1476 usbprint - ok
20:50:41.0109 1476 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys
20:50:41.0109 1476 usbscan - ok
20:50:41.0125 1476 usbser (49106ee29074e6a3d3ac9e24c6d791d8) C:\WINDOWS\system32\DRIVERS\usbser.sys
20:50:41.0125 1476 usbser - ok
20:50:41.0234 1476 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
20:50:41.0234 1476 USBSTOR - ok
20:50:41.0250 1476 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
20:50:41.0250 1476 usbuhci - ok
20:50:41.0312 1476 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
20:50:41.0312 1476 VgaSave - ok
20:50:41.0328 1476 ViaIde - ok
20:50:41.0390 1476 VolSnap (cd8cce067f7e9cbd762c00bdddecaa34) C:\WINDOWS\system32\drivers\VolSnap.sys
20:50:41.0390 1476 VolSnap - ok
20:50:41.0421 1476 VSS (043539881667bb37b07524032d6ffc3e) C:\WINDOWS\System32\vssvc.exe
20:50:41.0437 1476 VSS - ok
20:50:41.0468 1476 W32Time (2ceebb402187ae56b585701f3d191fb3) C:\WINDOWS\system32\w32time.dll
20:50:41.0468 1476 W32Time - ok
20:50:41.0515 1476 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
20:50:41.0515 1476 Wanarp - ok
20:50:41.0531 1476 WDICA - ok
20:50:41.0593 1476 wdmaud (2797f33ebf50466020c430ee4f037933) C:\WINDOWS\system32\drivers\wdmaud.sys
20:50:41.0593 1476 wdmaud - ok
20:50:41.0609 1476 WebClient (3791adf1d3466ac6b4b662d3f79cbfec) C:\WINDOWS\System32\webclnt.dll
20:50:41.0625 1476 WebClient - ok
20:50:41.0718 1476 winmgmt (e12084ea622bdf2262c637bef15dd85c) C:\WINDOWS\system32\wbem\WMIsvc.dll
20:50:41.0718 1476 winmgmt - ok
20:50:41.0812 1476 WmdmPmSN (140ef97b64f560fd78643cae2cdad838) C:\WINDOWS\system32\MsPMSNSv.dll
20:50:41.0812 1476 WmdmPmSN - ok
20:50:41.0890 1476 Wmi (e428eed87e8055fb995cf0e4d1532d4c) C:\WINDOWS\System32\advapi32.dll
20:50:41.0906 1476 Wmi - ok
20:50:42.0000 1476 WmiApSrv (bcd21b989f0fd4ace78287fc01b4693d) C:\WINDOWS\system32\wbem\wmiapsrv.exe
20:50:42.0000 1476 WmiApSrv - ok
20:50:42.0015 1476 WpdUsb (1385e5aa9c9821790d33a9563b8d2dd0) C:\WINDOWS\system32\Drivers\wpdusb.sys
20:50:42.0015 1476 WpdUsb - ok
20:50:42.0062 1476 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
20:50:42.0062 1476 WS2IFSL - ok
20:50:42.0109 1476 wscsvc (4aded1adef25041d9827f9a79c0fda13) C:\WINDOWS\system32\wscsvc.dll
20:50:42.0109 1476 wscsvc - ok
20:50:42.0156 1476 WSTCODEC (d5842484f05e12121c511aa93f6439ec) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
20:50:42.0156 1476 WSTCODEC - ok
20:50:42.0218 1476 wuauserv (21f5169ca14e0b25c757644456f637df) C:\WINDOWS\system32\wuauserv.dll
20:50:42.0234 1476 wuauserv - ok
20:50:42.0265 1476 WZCSVC (325cedef696ef4b649ddcd3968d085c9) C:\WINDOWS\System32\wzcsvc.dll
20:50:42.0296 1476 WZCSVC - ok
20:50:42.0328 1476 xmlprov (9b835d4c64860b155a1701d5092ec9e4) C:\WINDOWS\System32\xmlprov.dll
20:50:42.0343 1476 xmlprov - ok
20:50:42.0406 1476 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
20:50:42.0765 1476 \Device\Harddisk0\DR0 - ok
20:50:42.0781 1476 Boot (0x1200) (b8c9042ac241250af9d3bd008044e857) \Device\Harddisk0\DR0\Partition0
20:50:42.0781 1476 \Device\Harddisk0\DR0\Partition0 - ok
20:50:42.0781 1476 ============================================================
20:50:42.0781 1476 Scan finished
20:50:42.0781 1476 ============================================================
20:50:42.0828 1808 Detected object count: 0
20:50:42.0828 1808 Actual detected object count: 0
20:51:14.0781 1180 Deinitialize success

[stell]

ok, ideme dalej zostan v nudzovom rezime.
pouzijes combofix, v nudzovom rezime stale klikaj na ok,ok,
http://www.bleepingcomputer.com/combofi ... t-combofix

[patricia11]

Píšem z notebooku, z druhého PC.......
Stále ešte prebieha AutoScan.......

[stell]

Pise ze
stage1
stage2 atd,atd??

[patricia11]

Áno, písalo......
Tu je log, napísalo len, že mám skontrolovať ovládacie panely...... dala som ok
ComboFix 12-07-16.01 - Administrator 16.07.2012 21:10:42.1.2 - x86 NETWORK
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.1022.508 [GMT 2:00]
Spuštěný z: c:\documents and settings\Administrator\Plocha\ComboFix.exe
AV: Eset NOD32 Antivirus 2.70 *Enabled/Outdated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Administrator\Dokumenty\$AP22E.tmp
c:\documents and settings\Administrator\Dokumenty\$AP3E.tmp
c:\documents and settings\Administrator\Dokumenty\$AP3F.tmp
c:\documents and settings\Administrator\Local Settings\Temporary Internet Files\_tm168F.tmp
c:\documents and settings\Administrator\Local Settings\Temporary Internet Files\_tm1DB0.tmp
c:\documents and settings\Administrator\Local Settings\Temporary Internet Files\stb06759.tmp
c:\documents and settings\Administrator\WINDOWS
C:\install.exe
c:\windows\IsUn0405.exe
c:\windows\iun6002.exe
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\system32\SET414.tmp
c:\windows\system32\WinSys.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-06-16 do 2012-07-16 )))))))))))))))))))))))))))))))
.
.
2012-07-16 18:02 . 2012-07-16 18:02 14080 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2012-07-16 17:55 . 2001-03-13 13:49 140288 ----a-w- c:\windows\system32\Comdlg32.ocx
2012-07-16 17:55 . 2010-09-02 12:25 180736 ----a-w- c:\windows\system32\avaxgrph.dll
2012-07-16 17:55 . 1999-09-30 12:29 61440 ----a-w- c:\windows\system32\gvlib32.dll
2012-07-16 17:55 . 2000-08-04 12:24 397312 ----a-w- c:\windows\system32\avImageX.dll
2012-07-16 17:55 . 2000-07-13 16:07 1830912 ----a-w- c:\windows\system32\ODX.dll
2012-07-16 17:54 . 2012-07-16 17:57 -------- d-----w- c:\program files\Avax Vector ActiveX R1
2012-07-16 13:56 . 2012-07-16 18:13 -------- d-----w- c:\program files\trend micro
2012-07-16 13:56 . 2012-07-16 13:57 -------- d-----w- C:\rsit
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2011-01-17 14:54 175912 ----a-w- c:\program files\ConduitEngine\prxConduitEngine.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\prxConduitEngine.dll" [2011-01-17 175912]
.
[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\prxConduitEngine.dll" [2011-01-17 175912]
.
[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2006-04-21 94208]
"TomTomHOME.exe"="c:\program files\TomTom HOME 2\TomTomHOMERunner.exe" [2010-06-24 247144]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"JMB36X Configure"="c:\windows\system32\JMRaidTool.exe" [2006-04-20 385024]
"RTHDCPL"="RTHDCPL.EXE" [2006-05-04 16206848]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-03-07 8425472]
"nwiz"="nwiz.exe" [2007-03-07 1622016]
"WinSys2"="c:\windows\system32\winsys2.exe" [2006-12-15 217088]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-03-07 81920]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2007-06-03 185896]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2004-07-14 32768]
"SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2006-09-28 185896]
"OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" [2006-10-11 75304]
"Acrobat Assistant 7.0"="c:\program files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe" [2004-12-14 483328]
"nod32kui"="c:\program files\Eset\nod32kui.exe" [2008-03-31 949376]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
"LogitechCommunicationsManager"="c:\program files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe" [2007-10-25 563984]
"LogitechQuickCamRibbon"="c:\program files\Logitech\QuickCam\Quickcam.exe" [2007-10-25 2178832]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"UpdateReminder"="c:\program files\Eset\UpdateReminder.exe" [2012-03-13 451704]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-17 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Adobe Acrobat Speed Launcher.lnk - [N/A]
Logitech Desktop Messenger.lnk - c:\program files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2008-11-7 66864]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Documents and Settings\\Administrator\\Plocha\\NetTester.exe"=
"c:\\Program Files\\Boiling Point - Cesta do pekel\\XENUS.EXE"=
"c:\\Program Files\\Red Storm Entertainment\\Ghost Recon\\GhostRecon.exe"=
"c:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [8.9.2010 17:59 436792]
S1 nod32drv;nod32drv;c:\windows\system32\drivers\nod32drv.sys [31.3.2008 18:32 15424]
S2 gupdate1c9bf4da32aed3a;Služba Google Update (gupdate1c9bf4da32aed3a);c:\program files\Google\Update\GoogleUpdate.exe [17.4.2009 13:14 133104]
S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [27.1.2010 4:09 50704]
S2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [24.6.2010 16:41 92008]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [17.4.2009 13:14 133104]
S3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [19.7.2009 9:18 47360]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - 17135817
*Deregistered* - 17135817
.
Obsah adresáře 'Naplánované úlohy'
.
2012-07-16 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-04-17 11:13]
.
2012-07-16 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-04-17 11:13]
.
2012-07-16 c:\windows\Tasks\WGASetup.job
- c:\windows\system32\KB905474\wgasetup.exe [2011-07-18 20:18]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2776682
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: &ICQ Toolbar Search - c:\program files\ICQToolbar\toolbaru.dll/SEARCH.HTML
IE: Convert link target to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Easy-WebPrint - Náhled - c:\program files\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html
IE: Easy-WebPrint - Přidat na seznam k tisku - c:\program files\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html
IE: Easy-WebPrint - Tisk - c:\program files\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html
IE: Easy-WebPrint - Vysokorychlostní tisk - c:\program files\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html
LSP: c:\windows\system32\imon.dll
TCP: DhcpNameServer = 217.75.72.11
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
FF - ProfilePath - c:\documents and settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\j2hd1ofy.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2776682&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.sk
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1098640&q=
FF - Ext: ICQ Toolbar: {800b5000-a755-47e1-992b-48a1c1357f07} - c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
FF - Ext: Skype Click to Call: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} - c:\program files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF - Ext: Skinner: support@fbskinner.com - %profile%\extensions\support@fbskinner.com
FF - Ext: free-downloads.net Toolbar: {ecdee021-0d17-467f-a1ff-c7a115230949} - %profile%\extensions\{ecdee021-0d17-467f-a1ff-c7a115230949}
FF - Ext: Conduit Engine : engine@conduit.com - %profile%\extensions\engine@conduit.com
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{7c5c0f58-e061-457d-9033-77307f5ed00c} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKLM-Run-WinampAgent - c:\program files\Winamp\winampa.exe
AddRemove-Cool's_Codec_pack_4.12 - c:\windows\iun6002.exe
AddRemove-Easy-WebPrint - c:\windows\IsUn0405.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-07-16 21:16
Windows 5.1.2600 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Celkový čas: 2012-07-16 21:18:31
ComboFix-quarantined-files.txt 2012-07-16 19:18
.
Před spuštěním: Volných bajtů: 156 205 441 024
Po spuštění: Volných bajtů: 170 885 607 424
.
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - 48991A9D41B5C20AA8EA5C5E405811E2

[stell]

Otestuj na WWW.virustotal.com
c:\windows\system32\gvlib32.dll
c:\windows\system32\drivers\TrueSight.sys
adresy z testov vloz sem

[patricia11]

Tu je z prvého:
Community
Statistics
Dokumentace
FAQ
About
Join our community
Sign in

SHA256: 8a5c3327d37a869379b684bc7accf51e2e8260c41ebdc8e1777f00585d32ff23
Detection ratio: 0 / 41
Analysis date: 2010-02-25 17:02:46 UTC ( 2 roky, 4 měsíce ago )
00
More details
Antivirus Result Update
a-squared - 20100225
AhnLab-V3 - 20100225
AntiVir - 20100225
Antiy-AVL - 20100225
Authentium - 20100225
Avast - 20100224
AVG - 20100225
BitDefender - 20100225
CAT-QuickHeal - 20100225
ClamAV - 20100225
Comodo - 20100225
DrWeb - 20100225
eSafe - 20100225
eTrust-Vet - 20100225
F-Prot - 20100225
F-Secure - 20100225
Fortinet - 20100225
GData - 20100225
Ikarus - 20100225
Jiangmin - 20100225
K7AntiVirus - 20100225
Kaspersky - 20100225
McAfee - 20100224
McAfee+Artemis - 20100224
McAfee-GW-Edition - 20100225
Microsoft - 20100225
NOD32 - 20100225
Norman - 20100225
nProtect - 20100225
Panda - 20100224
PCTools - 20100225
Prevx - 20100225
Rising - 20100211
Sophos - 20100225
Sunbelt - 20100225
Symantec - 20100225
TheHacker - 20100225
TrendMicro - 20100225
VBA32 - 20100225
ViRobot - 20100225
VirusBuster - 20100225
Comments
Votes
Additional information
No comments
You have not signed in. Only registered users can leave comments, sign in and have a voice!

Sign in Join the community
Blog | Twitter | contact@virustotal.com | Google groups | TOS & Privacy Policy

[patricia11]

Tu je z druhého:


Community
Statistics
Dokumentace
FAQ
About
Join our community
Sign in

SHA256: fdf897f6a04b5844d12a8cef321ff146acaf84b38d49fc4eae0263cdb474defe
File name: TrueSight.sys
Detection ratio: 0 / 42
Analysis date: 2012-07-16 19:37:24 UTC ( 1 minuta ago )
00
More details
Antivirus Result Update
AhnLab-V3 - 20120716
AntiVir - 20120716
Antiy-AVL - 20120712
Avast - 20120716
AVG - 20120716
BitDefender - 20120716
ByteHero - 20120716
CAT-QuickHeal - 20120716
ClamAV - 20120716
Commtouch - 20120716
Comodo - 20120716
DrWeb - 20120716
Emsisoft - 20120716
eSafe - 20120716
ESET-NOD32 - 20120716
F-Prot - 20120716
F-Secure - 20120716
Fortinet - 20120716
GData - 20120716
Ikarus - 20120716
Jiangmin - 20120716
K7AntiVirus - 20120716
Kaspersky - 20120716
McAfee - 20120716
McAfee-GW-Edition - 20120716
Microsoft - 20120716
Norman - 20120716
nProtect - 20120716
Panda - 20120716
PCTools - 20120716
Rising - 20120716
Sophos - 20120716
SUPERAntiSpyware - 20120715
Symantec - 20120716
TheHacker - 20120716
TotalDefense - 20120713
TrendMicro - 20120716
TrendMicro-HouseCall - 20120716
VBA32 - 20120716
VIPRE - 20120716
ViRobot - 20120716
VirusBuster - 20120716
Comments
Votes
Additional information
No comments
You have not signed in. Only registered users can leave comments, sign in and have a voice!

Sign in Join the community
Blog | Twitter | contact@virustotal.com | Google groups | TOS & Privacy Policy