posielam log z rsit,a prosim o radu,mam jedine uz pouzit combofix.
dakujem
Logfile of random's system information tool 1.09 (written by random/random)
Run by okaynetbook at 2011-10-08 12:58:34
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 5 GB (7%) free of 74 GB
Total RAM: 1015 MB (54% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:49:40, on 29.9.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\NlsSrv32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\WINDOWS\RTHDCPL.EXE
D:\programy\Microsoft Office 2007 CZ full\Office12\GrooveMonitor.exe
C:\Program Files\ASUS\Eee Docking\Eee Docking.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\IDM.5.19.2\IDMan.exe
C:\Program Files\IDM.5.19.2\IEMonitor.exe
C:\Documents and Settings\okaynetbook\Plocha\RSIT.exe
C:\Program Files\trend micro\okaynetbook.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = DOOOSHA
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\IDM.5.19.2\IDMIECC.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\programy\Microsoft Office 2007 CZ full\Office12\GrooveShellExtensions.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: (no name) - {C9F97205-62A3-41F2-9F2C-D99392F882EB} - (no file)
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [GrooveMonitor] "D:\programy\Microsoft Office 2007 CZ full\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [Eee Docking] C:\Program Files\ASUS\Eee Docking\Eee Docking.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Zástupce - sndvol32.lnk = C:\WINDOWS\system32\sndvol32.exe
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
O8 - Extra context menu item: Stáhnout pomocí FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files\IDM.5.19.2\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM obsah FLV videa - C:\Program Files\IDM.5.19.2\IEGetVL.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files\IDM.5.19.2\IEGetAll.htm
O8 - Extra context menu item: Stáhnout vše pomocí FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: Translate this web page with Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm
O8 - Extra context menu item: Translate with Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\programy\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\programy\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\programy\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe (file missing)
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\programy\Microsoft Office 2007 CZ full\Office12\GrooveSystemServices.dll
O18 - Protocol: x-cnote - {8D32BA61-D15B-11D4-894B-000000000000} - C:\Program Files\Common Files\EzTools\hsppp.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Advanced SystemCare Service (AdvancedSystemCareService) - IObit - C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MySQL - Unknown owner - D:\programy\AWKasa\bin\mysqld-nt.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (file missing)
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\WINDOWS\system32\NlsSrv32.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: STSService - Unknown owner - C:\Program Files\SoundTaxi Media Suite\STSService.exe (file missing)
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: Windows Presentation Foundation Font Cache 4.0.0.0 (WPFFontCache_v0400) - Unknown owner - C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe (file missing)
--
End of file - 11278 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\ASC4_PerformanceMonitor.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Microsoft_Hardware_Launch_IPoint_exe.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\okaynetbook\Data aplikací\Mozilla\Firefox\Profiles\6jpdurms.default
prefs.js - "browser.startup.homepage" - "www.google.com"
prefs.js - "extensions.enabledItems" - "{20a82645-c095-46ed-80e3-08825760534b}:1.2.1, jqs@sun.com:1.0, mozilla_cc@internetdownloadmanager.com:6.9.7, translator@zoli.bod:2.1.0.1, {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.23"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8064.0206]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprphtml5videoshim;version=1.0.0.0]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
FlashGet3.xpi
C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
nppdf32.dll
C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml
C:\Documents and Settings\okaynetbook\Data aplikací\Mozilla\Firefox\Profiles\6jpdurms.default\extensions\
{20a82645-c095-46ed-80e3-08825760534b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files\IDM.5.19.2\IDMIECC.dll [2011-09-15 210352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2009-07-15 1586472]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\programy\Microsoft Office 2007 CZ full\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-29 305328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll [2011-08-12 1007160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C9F97205-62A3-41F2-9F2C-D99392F882EB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-08-03 42272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-08-03 79648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2010-03-28 1017592]
{E0E899AB-F487-11D5-8D29-0050BA6940E3}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-29 305328]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2011-06-15 997920]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2011-08-09 20055144]
"GrooveMonitor"=D:\programy\Microsoft Office 2007 CZ full\Office12\GrooveMonitor.exe [2008-10-25 31072]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Eee Docking"=C:\Program Files\ASUS\Eee Docking\Eee Docking.exe [2009-07-27 397312]
"NBJ"=C:\Program Files\Ahead\Nero BackItUp\NBJ.exe [2005-06-02 1957888]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2011-06-19 39408]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Advanced SystemCare 4"=C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe [2011-05-28 412560]
"DWQueuedReporting"=C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe [2008-11-04 435096]
C:\Documents and Settings\okaynetbook\Nabídka Start\Programy\Po spuštění
Zástupce - sndvol32.lnk - C:\WINDOWS\system32\sndvol32.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-15 208896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\programy\Microsoft Office 2007 CZ full\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoSMBalloonTip"=0
"NoDriveAutoRun"=67108863
"NoInstrumentation"=1
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"NoResolveSearch"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\muzapp.exe"="C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player"
"D:\programy\Microsoft Office 2007 CZ full\Office12\GROOVE.EXE"="D:\programy\Microsoft Office 2007 CZ full\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"D:\Games\left_4_dead\left 4 dead\hl2.exe"="D:\Games\left_4_dead\left 4 dead\hl2.exe:*:Enabled:hl2"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\ICQ7.2\ICQ.exe"="C:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\Iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"msacm.siren"=sirenacm.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"VIDC.WMV3"=wmv9vcm.dll
"VIDC.DIVX"=divx.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.VP60"=vp6vfw.dll
"vidc.VP61"=vp6vfw.dll
"vidc.VP62"=vp6vfw.dll
"vidc.XVID"=xvidvfw.dll
"vidc.mjpg"=pvmjpg30.dll
"vidc.MPG4"=MPG4c32.dll
"vidc.MP42"=MPG4c32.dll
"vidc.MP43"=MPG4c32.dll
"msacm.divxa32"=msaud32_divx.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======List of files/folders created in the last 1 month======
2011-10-03 07:51:20 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\Vasilek Games
2011-10-02 21:07:17 ----D---- C:\Documents and Settings\All Users\Data aplikací\Alawar Stargaze
2011-10-02 20:50:11 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\wrapper
2011-10-02 20:49:04 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\Špidla Data Processing, s.r.o
2011-10-02 20:49:04 ----D---- C:\Documents and Settings\All Users\Data aplikací\Špidla Data Processing, s.r.o
2011-10-01 11:49:00 ----A---- C:\WINDOWS\popcinfo.dat
2011-09-30 00:02:15 ----SHD---- C:\RECYCLER
2011-09-29 23:49:19 ----A---- C:\ComboFix.txt
2011-09-29 23:40:56 ----D---- C:\WINDOWS\temp
2011-09-29 11:49:20 ----D---- C:\rsit
2011-09-22 20:46:37 ----D---- C:\Program Files\upnito.sk manager
2011-09-17 00:15:47 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\AutoHideIP
2011-09-17 00:15:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\AutoHideIP
2011-09-15 23:07:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2616676$
2011-09-15 22:57:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2570947$
2011-09-15 17:12:49 ----A---- C:\WINDOWS\system32\drivers\idmtdi.sys
2011-09-10 18:02:57 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\Sahmon Games
2011-09-10 17:14:15 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\Meridian93
2011-09-10 16:44:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2492386$
2011-09-10 16:43:21 ----D---- C:\WINDOWS\system32\WindowsPowerShell
2011-09-10 16:43:20 ----D---- C:\WINDOWS\system32\winrm
2011-09-10 16:43:20 ----D---- C:\WINDOWS\system32\GroupPolicy
2011-09-10 16:43:07 ----HDC---- C:\WINDOWS\$968930Uinstall_KB968930$
2011-09-10 16:43:05 ----D---- C:\WINDOWS\$NtUninstallKB968930$
2011-09-10 16:41:18 ----HDC---- C:\WINDOWS\$NtUninstallKB971513$
2011-09-10 16:07:14 ----A---- C:\WINDOWS\system32\CmdLineExt03.dll
2011-09-10 09:00:50 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\Real
======List of files/folders modified in the last 1 month======
2011-10-08 12:58:37 ----D---- C:\Program Files\trend micro
2011-10-08 12:57:41 ----D---- C:\Program Files\Mozilla Firefox
2011-10-08 12:55:38 ----AD---- C:\WINDOWS
2011-10-08 12:54:20 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-10-08 12:08:50 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\DMCache
2011-10-08 11:49:11 ----D---- C:\WINDOWS\Debug
2011-10-08 11:14:28 ----SD---- C:\WINDOWS\Tasks
2011-10-08 10:04:46 ----D---- C:\WINDOWS\system32\CatRoot2
2011-10-07 21:24:42 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\IDM
2011-10-07 19:51:11 ----A---- C:\WINDOWS\NeroDigital.ini
2011-10-03 12:54:21 ----A---- C:\WINDOWS\WirelessFTP.INI
2011-10-01 23:31:09 ----SHD---- C:\WINDOWS\Installer
2011-10-01 22:39:13 ----HD---- C:\Program Files\InstallShield Installation Information
2011-10-01 22:34:33 ----AD---- C:\WINDOWS\system32
2011-10-01 13:20:47 ----D---- C:\WINDOWS\Prefetch
2011-09-29 23:49:23 ----D---- C:\WINDOWS\system32\drivers
2011-09-29 23:49:23 ----D---- C:\Qoobox
2011-09-29 23:43:36 ----A---- C:\WINDOWS\system.ini
2011-09-29 23:43:07 ----D---- C:\WINDOWS\system32\drivers\etc
2011-09-29 23:40:23 ----RD---- C:\Program Files
2011-09-29 23:36:41 ----D---- C:\WINDOWS\AppPatch
2011-09-29 23:36:39 ----D---- C:\Program Files\Common Files
2011-09-29 21:13:27 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\Skype
2011-09-29 13:18:21 ----D---- C:\WINDOWS\Microsoft.NET
2011-09-29 00:06:49 ----HD---- C:\WINDOWS\inf
2011-09-29 00:06:44 ----D---- C:\Program Files\IDM.5.19.2
2011-09-28 08:40:08 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\SEDE
2011-09-23 15:26:13 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-09-16 21:43:14 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\ICQ
2011-09-16 20:31:08 ----D---- C:\Program Files\ICQ7.2
2011-09-16 10:38:02 ----A---- C:\WINDOWS\system32\MRT.exe
2011-09-15 23:07:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2011-09-15 23:07:04 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-09-15 22:57:23 ----HD---- C:\WINDOWS\$hf_mig$
2011-09-15 19:17:01 ----RD---- C:\Program Files\Skype
2011-09-15 19:16:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2011-09-15 17:13:14 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\skypePM
2011-09-15 16:37:51 ----D---- C:\WINDOWS\system32\Adobe
2011-09-15 16:37:29 ----D---- C:\WINDOWS\system32\Macromed
2011-09-10 17:56:48 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\YoudaGames
2011-09-10 16:56:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\Apple Computer
2011-09-10 16:50:21 ----D---- C:\WINDOWS\Logs
2011-09-10 16:49:55 ----D---- C:\WINDOWS\security
2011-09-10 16:49:36 ----D---- C:\Program Files\CCleaner
2011-09-10 16:46:14 ----RSD---- C:\WINDOWS\assembly
2011-09-10 16:44:46 ----D---- C:\Program Files\Internet Explorer
2011-09-10 16:44:36 ----D---- C:\WINDOWS\ie8updates
2011-09-10 16:43:33 ----D---- C:\WINDOWS\system32\config
2011-09-10 16:43:31 ----D---- C:\WINDOWS\Help
2011-09-10 16:43:20 ----D---- C:\WINDOWS\system32\wbem
2011-09-10 12:45:41 ----A---- C:\WINDOWS\win.ini
2011-09-09 14:44:43 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\Media Player Classic
2011-09-09 11:12:04 ----A---- C:\WINDOWS\system32\crypt32.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 BtHidBus;Bluetooth HID Bus Service; C:\WINDOWS\System32\Drivers\BtHidBus.sys [2009-01-07 20744]
R0 iaStor;Intel AHCI Controller; C:\WINDOWS\system32\drivers\iaStor.sys [2011-05-20 461592]
R0 prohlp02;StarForce Protection Helper Driver v2; C:\WINDOWS\System32\drivers\prohlp02.sys [2004-08-09 114016]
R0 prosync1;StarForce Protection Synchronization Driver v1; C:\WINDOWS\System32\drivers\prosync1.sys [2004-07-19 7040]
R0 sfhlp01;StarForce Protection Helper Driver; C:\WINDOWS\System32\drivers\sfhlp01.sys [2003-12-01 4832]
R1 IDMTDI;IDMTDI; C:\WINDOWS\system32\DRIVERS\idmtdi.sys [2011-07-06 101616]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys [2011-04-18 165648]
R1 MpKsl4115c471;MpKsl4115c471; \??\C:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{71A60099-A880-4BF1-9B97-360984044F6E}\MpKsl4115c471.sys []
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2004-08-09 53920]
R1 Tosrfcom;Bluetooth RFCOMM; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2007-05-24 64000]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.7.5.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2011-03-02 21361]
R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-02-06 55152]
R3 AsusACPI;ASUS ACPI Driver; C:\WINDOWS\system32\DRIVERS\ASUSACPI.sys [2008-04-08 10752]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2011-08-16 6427240]
R3 L1c;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l1c51x86.sys [2010-04-22 61040]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2008-04-14 5888]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2009-03-13 1759616]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2009-04-09 208816]
R3 tosporte;Bluetooth COM Port; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2006-10-10 41600]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S1 MpKsl3035e4d2;MpKsl3035e4d2; \??\c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{2DC07DD7-5D5D-44B4-8265-8099EE8D422E}\MpKsl3035e4d2.sys []
S1 MpKsl45925265;MpKsl45925265; \??\c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{B78BFFF6-3F5A-4A9E-92C9-75BF44751E68}\MpKsl45925265.sys []
S1 MpKsl89fe49ca;MpKsl89fe49ca; \??\c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{6398E580-7350-4D20-91A2-EBEA19ADE162}\MpKsl89fe49ca.sys []
S1 MpKsl92706dd6;MpKsl92706dd6; \??\c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{ED732446-F921-4509-AD0E-FBE0131D4AD8}\MpKsl92706dd6.sys []
S1 MpKsl9c8abaa8;MpKsl9c8abaa8; \??\C:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{C1041DC6-62E4-45E0-BFEC-C9FFAEA72133}\MpKsl9c8abaa8.sys []
S1 MpKslc6cef8fd;MpKslc6cef8fd; \??\c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{9853E6DE-6988-4F2E-8AFE-9A18AEB43742}\MpKslc6cef8fd.sys []
S1 MpKslf6aff973;MpKslf6aff973; \??\c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{9853E6DE-6988-4F2E-8AFE-9A18AEB43742}\MpKslf6aff973.sys []
S3 2hotspot controller;2hotspot Miniport; C:\WINDOWS\system32\DRIVERS\acontrol.sys []
S3 39c9f424;39c9f424; C:\WINDOWS\620022073:3325430747.exe []
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 btaudio;Zvukové zařízení Bluetooth; C:\WINDOWS\system32\drivers\btaudio.sys []
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys []
S3 BTDriver;Ovladač virtuálních komunikací Bluetooth; C:\WINDOWS\system32\DRIVERS\btport.sys []
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-14 17024]
S3 BTHMODEM;Ovladač pro sériovou komunikaci protokolem Bluetooth; C:\WINDOWS\system32\DRIVERS\bthmodem.sys [2008-04-14 37888]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-14 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-14 18944]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\WINDOWS\System32\Drivers\btnetBus.sys [2008-12-07 30088]
S3 BTWDNDIS;Server pro přístup k síti LAN Bluetooth; C:\WINDOWS\system32\DRIVERS\btwdndis.sys []
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys []
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 cpuz132;cpuz132; \??\C:\Program Files\CPUID\PC Wizard 2010\pcwiz32.sys []
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Documents and Settings\okaynetbook\Plocha\MediaCoder\SysInfo.sys []
S3 dc3d;MS Hardware Device Detection Driver; C:\WINDOWS\system32\DRIVERS\dc3d.sys [2010-07-21 44432]
S3 dgderdrv;dgderdrv; C:\WINDOWS\System32\drivers\dgderdrv.sys []
S3 DrvAgent32;DrvAgent32; \??\C:\WINDOWS\system32\Drivers\DrvAgent32.sys []
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [2008-07-02 26248]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NANMp50;NANMp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\NANMp50.sys []
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 NSNDIS5;NSNDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\NSNDIS5.SYS []
S3 NuidFltr;NUID filter driver; C:\WINDOWS\system32\DRIVERS\NuidFltr.sys [2010-07-21 21520]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 Pcouffin;Low level access layer for CD devices; C:\WINDOWS\System32\Drivers\Pcouffin.sys []
S3 Point32;Microsoft IntelliPoint Filter Driver; C:\WINDOWS\system32\DRIVERS\point32.sys [2010-07-21 40848]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-14 59136]
S3 RT80x86;Ralink 802.11n Wireless Driver; C:\WINDOWS\system32\DRIVERS\RT2860.sys [2011-04-15 2240064]
S3 RTLWUSB;AirLive WL1600USB; C:\WINDOWS\system32\DRIVERS\RTL8187.sys [2010-04-06 323328]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 SndTAudio;SndTAudio; C:\WINDOWS\system32\drivers\SndTAudio.sys [2010-09-11 23608]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\WINDOWS\system32\DRIVERS\sscdbus.sys [2007-07-03 80552]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys [2007-07-03 11944]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\WINDOWS\system32\DRIVERS\sscdmdm.sys [2007-07-03 106792]
S3 sscdserd;SAMSUNG Mobile Modem Diagnostic Serial Port (WDM); C:\WINDOWS\system32\DRIVERS\sscdserd.sys [2007-07-03 86824]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 tosrfbd;Bluetooth RFBUS; C:\WINDOWS\system32\DRIVERS\tosrfbd.sys [2007-04-24 113920]
S3 tosrfbnp;Bluetooth RFBNEP; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2006-11-20 36480]
S3 Tosrfhid;Bluetooth RFHID; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2007-03-01 73728]
S3 tosrfnds;Bluetooth Personal Area Network; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
S3 TosRfSnd;Bluetooth Audio; C:\WINDOWS\system32\drivers\tosrfsnd.sys [2007-01-22 53376]
S3 tosrfusb;Bluetooth USB Controller; C:\WINDOWS\system32\DRIVERS\tosrfusb.sys [2007-06-11 41856]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2011-02-18 41984]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-14 121984]
S3 uvclf;uvclf; C:\WINDOWS\system32\DRIVERS\uvclf.sys [2008-11-19 39040]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 widseasd;Widsea Secret Disk Service; \??\C:\Documents and Settings\okaynetbook\Dokumenty\Downloads\Music\TS-Disk1.63\TS-Disk1.63\widseasd.sys []
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2008-04-14 12032]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdvancedSystemCareService;Advanced SystemCare Service; C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe [2011-05-28 353168]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2011-02-18 37664]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2010-03-28 246520]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-05-04 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2005-06-21 53248]
R2 nlsX86cc;Nalpeiron Licensing Service; C:\WINDOWS\system32\NlsSrv32.exe [2009-06-07 61440]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-02-25 125048]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-15 136176]
S2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2011-04-27 11736]
S2 MySQL;MySQL; D:\programy\AWKasa\bin\mysqld-nt.exe MySQL []
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe []
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 fsssvc;Windows Live Zabezpečení rodiny; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-15 136176]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-06-19 182768]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; D:\programy\Microsoft Office 2007 CZ full\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-11-11 620544]
S3 STSService;STSService; C:\Program Files\SoundTaxi Media Suite\STSService.exe []
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe []
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
nejde spustit antivir ziadny
Moderátor: Moderátoři
Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní: http://forum.viry.cz/viewtopic.php?f=12&t=123975 . Děkujeme za pochopení.
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní: http://forum.viry.cz/viewtopic.php?f=12&t=123975 . Děkujeme za pochopení.
Re: nejde spustit antivir ziadny
Zdravim a pekny den preji 
ComboFix se nepouziva bez doporuceni - vizte nize
Nebezpeci CFka
Odinstalujte Advanced SystemCare 4 a nasledne i vse od IOBit - jsou to cinske smejdy a spise jen skodi nez jsou uzitkem. Hledaji nesmyslne a neexistujici problemy, databazi haveti ukradli jine renomovane spolecnosti
Doporucuji odinstalovat (pokud nepouzivate) toolbary (listy prohlizecu) v Přidat nebo odebrat programy
Dejte mi sem ten log z ComboFix, kdyz uz jste jej pouzil (a budte rad ze nesel system do kopriv) - log je umisten v c:\combofix.txt
ComboFix se nepouziva bez doporuceni - vizte nize Nebezpeci CFka
- Je urcen primarne pro radce - jeho svevolnym pouzitim ztracite narok na podporu
- Maze stopy po haveti, takze v logu z RSIT neni nic videt
- Jeho log je treba dolustit, jelikoz neumi smazat vse - to ovsem tezko zvladnete pokud k tomu nejste vyskolen
- CF muze mit bug = sunda Vam system, pokud nevite kam co uklada, jak co obnovit, mate system v kytkam a ceka Vas reinstal
- CF taky bohuzel prozatim nekontroluje nektere dulezite knihovny (napr. hal.dll) - ty treba mazou nektere typy haveti (napr. angela) - smaze Vam po restartu hal.dll = nenajede Vam system a jste o radek vyse = reinstal
Odinstalujte Advanced SystemCare 4 a nasledne i vse od IOBit - jsou to cinske smejdy a spise jen skodi nez jsou uzitkem. Hledaji nesmyslne a neexistujici problemy, databazi haveti ukradli jine renomovane spolecnosti Doporucuji odinstalovat (pokud nepouzivate) toolbary (listy prohlizecu) v Přidat nebo odebrat programy Dejte mi sem ten log z ComboFix, kdyz uz jste jej pouzil (a budte rad ze nesel system do kopriv) - log je umisten v c:\combofix.txt"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.-
jarek26
- Návštěvník
- Příspěvky: 121
- Registrován: 23 pro 2008 16:01
- Bydliště: Bardejov
- Kontaktovat uživatele:
Re: nejde spustit antivir ziadny
odinstaloval som si advanced system care 4,potom ako som spustil combofix mi napisalo ze microsoft essentials je zapnuty a ma zapnute rezistencne stity,ja ich zrusit nemozem pretoze mne ho nezapne,ten antivirovy program,takze som ho spustil aj stim,potom mi vypisalo v combofixe ze boli detekovane nejake rookity-restart a tak spravilo tu kontrolu.posielam log z combofixu:
ComboFix 11-10-08.01 - okaynetbook 08.10.2011 14:28:26.7.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1015.652 [GMT 2:00]
Spuštěný z: c:\documents and settings\okaynetbook\Plocha\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {BCF43643-A118-4432-AEDE-D861FCBCFCDF}
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
SP: Microsoft Security Essentials *Disabled/Updated* {BCF43643-A118-4432-AEDE-D861FCBCFCDE}
SP: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7094}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\$NtUninstallKB12818$\1653950356
c:\windows\$NtUninstallKB12818$\969536548\@
c:\windows\$NtUninstallKB12818$\969536548\click.tlb
c:\windows\$NtUninstallKB12818$\969536548\L\nysonioo
c:\windows\$NtUninstallKB12818$\969536548\loader.tlb
c:\windows\$NtUninstallKB12818$\969536548\U\@00000001
c:\windows\$NtUninstallKB12818$\969536548\U\@000000c0
c:\windows\$NtUninstallKB12818$\969536548\U\@000000cb
c:\windows\$NtUninstallKB12818$\969536548\U\@000000cf
c:\windows\$NtUninstallKB12818$\969536548\U\@80000000
c:\windows\$NtUninstallKB12818$\969536548\U\@800000c0
c:\windows\$NtUninstallKB12818$\969536548\U\@800000cb
c:\windows\$NtUninstallKB12818$\969536548\U\@800000cf
c:\windows\system32\
c:\windows\$NtUninstallKB12818$ . . . . nemohl být smazán
.
Nakažená kopie c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073160.exe
.
Nakažená kopie c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073167.exe
.
Nakažená kopie c:\program files\ICQ6Toolbar\ICQ Service.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073161.exe
.
Nakažená kopie c:\program files\Java\jre6\bin\jqs.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073162.exe
.
Nakažená kopie c:\program files\Common Files\LightScribe\LSSrvc.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073163.exe
.
Nakažená kopie c:\windows\system32\NlsSrv32.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073164.exe
.
Nakažená kopie c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073165.exe
.
Nakažená kopie c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073166.exe
.
Nakažená kopie c:\program files\Common Files\LightScribe\LSSrvc.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073163.exe
Nakažená kopie c:\windows\system32\NlsSrv32.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073164.exe
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_39c9f424
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-09-08 do 2011-10-08 )))))))))))))))))))))))))))))))
.
.
2011-10-08 11:31 . 2011-10-08 11:31 -------- d-----w- C:\rsit
2011-10-08 08:41 . 2011-10-08 08:41 -------- d-sh--w- c:\documents and settings\okaynetbook\Local Settings\Data aplikací\39c9f424
2011-10-07 15:21 . 2011-10-08 08:03 56200 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{71A60099-A880-4BF1-9B97-360984044F6E}\offreg.dll
2011-10-07 15:21 . 2011-09-12 23:14 7269712 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{71A60099-A880-4BF1-9B97-360984044F6E}\mpengine.dll
2011-10-03 05:51 . 2011-10-03 05:51 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Vasilek Games
2011-10-02 19:07 . 2011-10-02 19:07 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Alawar Stargaze
2011-10-02 18:50 . 2011-10-03 05:50 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\wrapper
2011-10-02 18:49 . 2011-10-03 05:50 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Špidla Data Processing, s.r.o
2011-10-02 18:49 . 2011-10-03 05:50 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Špidla Data Processing, s.r.o
2011-09-28 21:50 . 2011-09-03 06:40 134104 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll
2011-09-28 21:50 . 2011-09-03 06:40 89048 ----a-w- c:\program files\Mozilla Firefox\libEGL.dll
2011-09-28 21:50 . 2011-09-03 06:40 785368 ----a-w- c:\program files\Mozilla Firefox\mozsqlite3.dll
2011-09-28 21:50 . 2011-09-03 06:40 478168 ----a-w- c:\program files\Mozilla Firefox\libGLESv2.dll
2011-09-28 21:50 . 2011-09-03 06:40 1846232 ----a-w- c:\program files\Mozilla Firefox\mozjs.dll
2011-09-28 21:50 . 2011-09-03 06:40 15832 ----a-w- c:\program files\Mozilla Firefox\mozalloc.dll
2011-09-28 21:50 . 2011-09-02 23:25 2106216 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_43.dll
2011-09-28 21:50 . 2011-09-02 23:25 1998168 ----a-w- c:\program files\Mozilla Firefox\d3dx9_43.dll
2011-09-22 18:46 . 2011-09-22 18:46 -------- d-----w- c:\program files\upnito.sk manager
2011-09-16 22:15 . 2011-09-16 22:15 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\AutoHideIP
2011-09-16 22:15 . 2011-09-16 22:15 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AutoHideIP
2011-09-15 15:12 . 2011-07-06 15:14 101616 ----a-w- c:\windows\system32\drivers\idmtdi.sys
2011-09-10 16:02 . 2011-09-10 16:02 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Sahmon Games
2011-09-10 15:14 . 2011-09-10 15:14 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Meridian93
2011-09-10 14:43 . 2011-09-10 14:43 -------- d-----w- c:\windows\system32\winrm
2011-09-10 14:43 . 2011-09-10 14:43 -------- d-----w- c:\windows\system32\GroupPolicy
2011-09-10 14:43 . 2011-09-10 14:43 -------- dc-h--w- c:\windows\$968930Uinstall_KB968930$
2011-09-10 14:07 . 2011-09-10 14:07 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll
2011-09-09 09:35 . 2011-09-09 09:35 -------- d-----w- c:\documents and settings\okaynetbook\Local Settings\Data aplikací\MPlayer
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-29 09:24 . 2011-08-13 06:20 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-12 23:14 . 2011-01-24 18:19 7269712 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-09-09 09:12 . 2009-09-01 22:26 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-08-16 16:46 . 2009-09-01 21:01 6427240 ----a-w- c:\windows\system32\drivers\RtkHDAud.sys
2011-08-15 14:47 . 2009-09-01 21:01 60008 ----a-w- c:\windows\system32\RtkCoInstXP.dll
2011-08-09 14:14 . 2009-09-01 21:01 20055144 ----a-w- c:\windows\RTHDCPL.EXE
2011-08-04 14:59 . 2009-09-01 21:01 1493608 ----a-w- c:\windows\RtlUpd.exe
2011-07-29 04:34 . 2011-07-29 04:34 689664 ----a-w- c:\windows\system32\yowindow.scr
2011-07-15 13:29 . 2009-09-01 22:26 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-07-13 03:39 . 2011-08-15 20:46 6881616 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\Updates\mpengine.dll
2011-07-11 12:17 . 2009-09-01 21:01 1698408 ----a-w- c:\windows\RtlExUpd.dll
2010-05-01 14:50 . 2011-05-09 19:40 2536390 ----a-w- c:\program files\IDM.5.19.2.exe
2008-03-09 05:25 . 2010-05-17 19:18 236 ----a-w- c:\program files\Common Files\dx.reg
2011-09-03 06:40 . 2011-09-28 21:50 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[7] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[-] 2008-06-20 . 4AFB3B0919649F95C1964AA1FAD27D73 . 361600 . . [5.1.2600.5625] . . c:\windows\$NtUninstallKB2509553$\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\ERDNT\cache\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\tcpip.sys
[-] 2008-06-20 . 4AFB3B0919649F95C1964AA1FAD27D73 . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys
[7] 2008-04-14 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\tcpip.sys
.
((((((((((((((((((((((((((((( SnapShot@2011-09-29_18.24.49 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-10-08 12:43 . 2011-10-08 12:43 16384 c:\windows\temp\Perflib_Perfdata_6f0.dat
+ 2011-08-15 20:39 . 2007-11-30 12:39 17272 c:\windows\system32\spmsg.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2011-05-30 16:50 21864 ----a-w- c:\program files\IDM.5.19.2\IDMShellExt.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Eee Docking"="c:\program files\ASUS\Eee Docking\Eee Docking.exe" [2009-07-27 397312]
"NBJ"="c:\program files\Ahead\Nero BackItUp\NBJ.exe" [2005-06-02 1957888]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2011-06-18 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 997920]
"RTHDCPL"="RTHDCPL.EXE" [2011-08-09 20055144]
"GrooveMonitor"="d:\programy\Microsoft Office 2007 CZ full\Office12\GrooveMonitor.exe" [2008-10-25 31072]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2008-11-04 435096]
.
c:\documents and settings\okaynetbook\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Z stupce - sndvol32.lnk - c:\windows\system32\sndvol32.exe [2009-9-1 138752]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMBalloonTip"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\muzapp.exe"=
"d:\\programy\\Microsoft Office 2007 CZ full\\Office12\\GROOVE.EXE"=
"d:\\Games\\left_4_dead\\left 4 dead\\hl2.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\ICQ7.2\\ICQ.exe"=
"c:\\Documents and Settings\\okaynetbook\\Plocha\\RSIT.exe"=
"c:\\Program Files\\Common Files\\Microsoft Shared\\DW\\DW20.EXE"=
"c:\\WINDOWS\\system32\\msiexec.exe"=
"c:\\Program Files\\Google\\Update\\GoogleUpdate.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5985:TCP"= 5985:TCP:*:Disabled:Vzdálená správa systému Windows
.
R0 BtHidBus;Bluetooth HID Bus Service;c:\windows\system32\drivers\BtHidBus.sys [31.7.2008 20:45 20744]
R1 IDMTDI;IDMTDI;c:\windows\system32\drivers\idmtdi.sys [15.9.2011 17:12 101616]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [6.7.2011 19:21 13592]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [25.7.2010 19:27 246520]
R2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\system32\NlsSrv32.exe [4.8.2010 17:06 61440]
R3 L1c;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\l1c51x86.sys [18.8.2009 23:44 61040]
S1 MpKsl3035e4d2;MpKsl3035e4d2;\??\c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{2DC07DD7-5D5D-44B4-8265-8099EE8D422E}\MpKsl3035e4d2.sys --> c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{2DC07DD7-5D5D-44B4-8265-8099EE8D422E}\MpKsl3035e4d2.sys [?]
S1 MpKsl45925265;MpKsl45925265;\??\c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{B78BFFF6-3F5A-4A9E-92C9-75BF44751E68}\MpKsl45925265.sys --> c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{B78BFFF6-3F5A-4A9E-92C9-75BF44751E68}\MpKsl45925265.sys [?]
S1 MpKsl89fe49ca;MpKsl89fe49ca;\??\c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{6398E580-7350-4D20-91A2-EBEA19ADE162}\MpKsl89fe49ca.sys --> c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{6398E580-7350-4D20-91A2-EBEA19ADE162}\MpKsl89fe49ca.sys [?]
S1 MpKsl92706dd6;MpKsl92706dd6;\??\c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{ED732446-F921-4509-AD0E-FBE0131D4AD8}\MpKsl92706dd6.sys --> c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{ED732446-F921-4509-AD0E-FBE0131D4AD8}\MpKsl92706dd6.sys [?]
S1 MpKsl9c8abaa8;MpKsl9c8abaa8;\??\c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{C1041DC6-62E4-45E0-BFEC-C9FFAEA72133}\MpKsl9c8abaa8.sys --> c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{C1041DC6-62E4-45E0-BFEC-C9FFAEA72133}\MpKsl9c8abaa8.sys [?]
S1 MpKslc6cef8fd;MpKslc6cef8fd;\??\c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{9853E6DE-6988-4F2E-8AFE-9A18AEB43742}\MpKslc6cef8fd.sys --> c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{9853E6DE-6988-4F2E-8AFE-9A18AEB43742}\MpKslc6cef8fd.sys [?]
S1 MpKslf6aff973;MpKslf6aff973;\??\c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{9853E6DE-6988-4F2E-8AFE-9A18AEB43742}\MpKslf6aff973.sys --> c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{9853E6DE-6988-4F2E-8AFE-9A18AEB43742}\MpKslf6aff973.sys [?]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [15.9.2010 22:01 136176]
S3 2hotspot controller;2hotspot Miniport;c:\windows\system32\DRIVERS\acontrol.sys --> c:\windows\system32\DRIVERS\acontrol.sys [?]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [1.9.2009 23:01 1691480]
S3 btnetBUs;Bluetooth PAN Bus Service;c:\windows\system32\drivers\btnetBus.sys [7.12.2008 12:44 30088]
S3 dc3d;MS Hardware Device Detection Driver;c:\windows\system32\drivers\dc3d.sys [6.7.2011 18:43 44432]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys --> c:\windows\system32\drivers\dgderdrv.sys [?]
S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [6.7.2011 0:22 23456]
S3 FsUsbExDisk;FsUsbExDisk;\??\c:\windows\system32\FsUsbExDisk.SYS --> c:\windows\system32\FsUsbExDisk.SYS [?]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [15.9.2010 22:01 136176]
S3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\drivers\IvtBtBus.sys [2.7.2008 14:58 26248]
S3 NANMp50;NANMp50 NDIS Protocol Driver;c:\windows\system32\Drivers\NANMp50.sys --> c:\windows\system32\Drivers\NANMp50.sys [?]
S3 Pcouffin;Low level access layer for CD devices;c:\windows\system32\Drivers\Pcouffin.sys --> c:\windows\system32\Drivers\Pcouffin.sys [?]
S3 RT80x86;Ralink 802.11n Wireless Driver;c:\windows\system32\drivers\rt2860.sys [22.8.2011 17:18 2240064]
S3 RTLWUSB;AirLive WL1600USB;c:\windows\system32\drivers\RTL8187.sys [2.3.2011 16:00 323328]
S3 SndTAudio;SndTAudio;c:\windows\system32\drivers\SndTAudio.sys [7.11.2010 5:59 23608]
S3 STSService;STSService;"c:\program files\SoundTaxi Media Suite\STSService.exe" --> c:\program files\SoundTaxi Media Suite\STSService.exe [?]
S3 uvclf;uvclf;c:\windows\system32\drivers\uvclf.sys [12.8.2009 8:57 39040]
S3 widseasd;Widsea Secret Disk Service;\??\c:\documents and settings\okaynetbook\Dokumenty\Downloads\Music\TS-Disk1.63\TS-Disk1.63\widseasd.sys --> c:\documents and settings\okaynetbook\Dokumenty\Downloads\Music\TS-Disk1.63\TS-Disk1.63\widseasd.sys [?]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2.9.2009 0:26 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe --> c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WINRM REG_MULTI_SZ WINRM
.
Obsah adresáře 'Naplánované úlohy'
.
2011-10-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-15 20:00]
.
2011-10-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-15 20:00]
.
2011-07-06 c:\windows\Tasks\Microsoft_Hardware_Launch_IPoint_exe.job
- c:\program files\Microsoft IntelliPoint\ipoint.exe [2010-07-21 14:52]
.
2011-10-08 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2011-04-27 13:39]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com/
uSearchURL,(Default) = hxxp://www.google.com.eg/keyword/%s
IE: ????3??
IE: ????3??????
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
IE: Stáhnout pomocí FlashGet - c:\program files\FlashGet\jc_link.htm
IE: Stáhnout s IDM - c:\program files\IDM.5.19.2\IEExt.htm
IE: Stáhnout s IDM obsah FLV videa - c:\program files\IDM.5.19.2\IEGetVL.htm
IE: Stáhnout s IDM všechny odkazy - c:\program files\IDM.5.19.2\IEGetAll.htm
IE: Stáhnout vše pomocí FlashGet - c:\program files\FlashGet\jc_all.htm
IE: Translate this web page with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm
IE: Translate with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm
IE: ????3?? - c:\documents and settings\okaynetbook\Data aplikací\FlashGetBHO\GetUrl.htm
IE: ????3?????? - c:\documents and settings\okaynetbook\Data aplikací\FlashGetBHO\GetAllUrl.htm
TCP: DhcpNameServer = 217.119.127.1 217.119.127.200
FF - ProfilePath - c:\documents and settings\okaynetbook\Data aplikací\Mozilla\Firefox\Profiles\6jpdurms.default\
FF - prefs.js: browser.startup.homepage - www.google.com
FF - prefs.js: network.proxy.type - 0
FF - user.js: browser.cache.memory.capacity - 16000
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: content.max.tokenizing.time - 2250000
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: dom.disable_window_status_change - true
FF - user.js: network.http.max-connections - 32
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 8
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 750
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-10-08 14:44
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3626335844-41941361-4021371189-1005\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}Ź]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
@="c:\\Documents and Settings\\okaynetbook\\Data aplikací\\FlashGetBHO\\GetUrl.htm"
"contexts"=dword:00000022
.
[HKEY_USERS\S-1-5-21-3626335844-41941361-4021371189-1005\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}ŹhQčţ”Ąc]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
@="c:\\Documents and Settings\\okaynetbook\\Data aplikací\\FlashGetBHO\\GetAllUrl.htm"
"contexts"=dword:000000f3
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{0470c0e5-e7d6-4970-aadc-2497f7be8e14}]
@Denied: (Full) (Everyone)
"Model"=dword:00000118
"Therad"=dword:00000015
"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,
1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):00,fe,de,4d,de,29,61,83,57,e5,06,1c,bd,d4,98,e6,74,46,8e,c8,5e,
5a,e0,cf,a1,39,fe,20,4c,cd,1e,1d,1f,19,39,ac,4d,7b,0e,08,00,00,00,00,00,00,\
.
[HKEY_LOCAL_MACHINE\software\Classes\ShockwaveFlash.ShockwaveFlash]
@DACL=(02 0000)
@="Shockwave Flash Object"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(776)
c:\windows\SYSTEM32\RtlGina\RtlGina.DLL
.
- - - - - - - > 'explorer.exe'(3388)
c:\program files\IDM.5.19.2\IDMShellExt.dll
c:\program files\IDM.5.19.2\IDMNetMon.DLL
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\RTHDCPL.EXE
.
**************************************************************************
.
Celkový čas: 2011-10-08 14:50:47 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-10-08 12:50
ComboFix2.txt 2011-09-29 21:49
ComboFix3.txt 2011-09-29 18:29
.
Před spuštěním: 5 491 810 304
Po spuštění: 5 483 401 216
.
- - End Of File - - BD0E86625409686D2B2EA4877EAF1F76
ComboFix 11-10-08.01 - okaynetbook 08.10.2011 14:28:26.7.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1015.652 [GMT 2:00]
Spuštěný z: c:\documents and settings\okaynetbook\Plocha\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {BCF43643-A118-4432-AEDE-D861FCBCFCDF}
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
SP: Microsoft Security Essentials *Disabled/Updated* {BCF43643-A118-4432-AEDE-D861FCBCFCDE}
SP: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7094}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\$NtUninstallKB12818$\1653950356
c:\windows\$NtUninstallKB12818$\969536548\@
c:\windows\$NtUninstallKB12818$\969536548\click.tlb
c:\windows\$NtUninstallKB12818$\969536548\L\nysonioo
c:\windows\$NtUninstallKB12818$\969536548\loader.tlb
c:\windows\$NtUninstallKB12818$\969536548\U\@00000001
c:\windows\$NtUninstallKB12818$\969536548\U\@000000c0
c:\windows\$NtUninstallKB12818$\969536548\U\@000000cb
c:\windows\$NtUninstallKB12818$\969536548\U\@000000cf
c:\windows\$NtUninstallKB12818$\969536548\U\@80000000
c:\windows\$NtUninstallKB12818$\969536548\U\@800000c0
c:\windows\$NtUninstallKB12818$\969536548\U\@800000cb
c:\windows\$NtUninstallKB12818$\969536548\U\@800000cf
c:\windows\system32\
c:\windows\$NtUninstallKB12818$ . . . . nemohl být smazán
.
Nakažená kopie c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073160.exe
.
Nakažená kopie c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073167.exe
.
Nakažená kopie c:\program files\ICQ6Toolbar\ICQ Service.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073161.exe
.
Nakažená kopie c:\program files\Java\jre6\bin\jqs.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073162.exe
.
Nakažená kopie c:\program files\Common Files\LightScribe\LSSrvc.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073163.exe
.
Nakažená kopie c:\windows\system32\NlsSrv32.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073164.exe
.
Nakažená kopie c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073165.exe
.
Nakažená kopie c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073166.exe
.
Nakažená kopie c:\program files\Common Files\LightScribe\LSSrvc.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073163.exe
Nakažená kopie c:\windows\system32\NlsSrv32.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\system volume information\_restore{1C2E968C-4466-43AE-B413-C12E35B10633}\RP285\A0073164.exe
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_39c9f424
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-09-08 do 2011-10-08 )))))))))))))))))))))))))))))))
.
.
2011-10-08 11:31 . 2011-10-08 11:31 -------- d-----w- C:\rsit
2011-10-08 08:41 . 2011-10-08 08:41 -------- d-sh--w- c:\documents and settings\okaynetbook\Local Settings\Data aplikací\39c9f424
2011-10-07 15:21 . 2011-10-08 08:03 56200 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{71A60099-A880-4BF1-9B97-360984044F6E}\offreg.dll
2011-10-07 15:21 . 2011-09-12 23:14 7269712 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{71A60099-A880-4BF1-9B97-360984044F6E}\mpengine.dll
2011-10-03 05:51 . 2011-10-03 05:51 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Vasilek Games
2011-10-02 19:07 . 2011-10-02 19:07 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Alawar Stargaze
2011-10-02 18:50 . 2011-10-03 05:50 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\wrapper
2011-10-02 18:49 . 2011-10-03 05:50 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Špidla Data Processing, s.r.o
2011-10-02 18:49 . 2011-10-03 05:50 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Špidla Data Processing, s.r.o
2011-09-28 21:50 . 2011-09-03 06:40 134104 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll
2011-09-28 21:50 . 2011-09-03 06:40 89048 ----a-w- c:\program files\Mozilla Firefox\libEGL.dll
2011-09-28 21:50 . 2011-09-03 06:40 785368 ----a-w- c:\program files\Mozilla Firefox\mozsqlite3.dll
2011-09-28 21:50 . 2011-09-03 06:40 478168 ----a-w- c:\program files\Mozilla Firefox\libGLESv2.dll
2011-09-28 21:50 . 2011-09-03 06:40 1846232 ----a-w- c:\program files\Mozilla Firefox\mozjs.dll
2011-09-28 21:50 . 2011-09-03 06:40 15832 ----a-w- c:\program files\Mozilla Firefox\mozalloc.dll
2011-09-28 21:50 . 2011-09-02 23:25 2106216 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_43.dll
2011-09-28 21:50 . 2011-09-02 23:25 1998168 ----a-w- c:\program files\Mozilla Firefox\d3dx9_43.dll
2011-09-22 18:46 . 2011-09-22 18:46 -------- d-----w- c:\program files\upnito.sk manager
2011-09-16 22:15 . 2011-09-16 22:15 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\AutoHideIP
2011-09-16 22:15 . 2011-09-16 22:15 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AutoHideIP
2011-09-15 15:12 . 2011-07-06 15:14 101616 ----a-w- c:\windows\system32\drivers\idmtdi.sys
2011-09-10 16:02 . 2011-09-10 16:02 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Sahmon Games
2011-09-10 15:14 . 2011-09-10 15:14 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Meridian93
2011-09-10 14:43 . 2011-09-10 14:43 -------- d-----w- c:\windows\system32\winrm
2011-09-10 14:43 . 2011-09-10 14:43 -------- d-----w- c:\windows\system32\GroupPolicy
2011-09-10 14:43 . 2011-09-10 14:43 -------- dc-h--w- c:\windows\$968930Uinstall_KB968930$
2011-09-10 14:07 . 2011-09-10 14:07 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll
2011-09-09 09:35 . 2011-09-09 09:35 -------- d-----w- c:\documents and settings\okaynetbook\Local Settings\Data aplikací\MPlayer
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-29 09:24 . 2011-08-13 06:20 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-12 23:14 . 2011-01-24 18:19 7269712 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-09-09 09:12 . 2009-09-01 22:26 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-08-16 16:46 . 2009-09-01 21:01 6427240 ----a-w- c:\windows\system32\drivers\RtkHDAud.sys
2011-08-15 14:47 . 2009-09-01 21:01 60008 ----a-w- c:\windows\system32\RtkCoInstXP.dll
2011-08-09 14:14 . 2009-09-01 21:01 20055144 ----a-w- c:\windows\RTHDCPL.EXE
2011-08-04 14:59 . 2009-09-01 21:01 1493608 ----a-w- c:\windows\RtlUpd.exe
2011-07-29 04:34 . 2011-07-29 04:34 689664 ----a-w- c:\windows\system32\yowindow.scr
2011-07-15 13:29 . 2009-09-01 22:26 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-07-13 03:39 . 2011-08-15 20:46 6881616 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\Updates\mpengine.dll
2011-07-11 12:17 . 2009-09-01 21:01 1698408 ----a-w- c:\windows\RtlExUpd.dll
2010-05-01 14:50 . 2011-05-09 19:40 2536390 ----a-w- c:\program files\IDM.5.19.2.exe
2008-03-09 05:25 . 2010-05-17 19:18 236 ----a-w- c:\program files\Common Files\dx.reg
2011-09-03 06:40 . 2011-09-28 21:50 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[7] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[-] 2008-06-20 . 4AFB3B0919649F95C1964AA1FAD27D73 . 361600 . . [5.1.2600.5625] . . c:\windows\$NtUninstallKB2509553$\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\ERDNT\cache\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\tcpip.sys
[-] 2008-06-20 . 4AFB3B0919649F95C1964AA1FAD27D73 . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys
[7] 2008-04-14 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\tcpip.sys
.
((((((((((((((((((((((((((((( SnapShot@2011-09-29_18.24.49 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-10-08 12:43 . 2011-10-08 12:43 16384 c:\windows\temp\Perflib_Perfdata_6f0.dat
+ 2011-08-15 20:39 . 2007-11-30 12:39 17272 c:\windows\system32\spmsg.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2011-05-30 16:50 21864 ----a-w- c:\program files\IDM.5.19.2\IDMShellExt.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Eee Docking"="c:\program files\ASUS\Eee Docking\Eee Docking.exe" [2009-07-27 397312]
"NBJ"="c:\program files\Ahead\Nero BackItUp\NBJ.exe" [2005-06-02 1957888]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2011-06-18 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 997920]
"RTHDCPL"="RTHDCPL.EXE" [2011-08-09 20055144]
"GrooveMonitor"="d:\programy\Microsoft Office 2007 CZ full\Office12\GrooveMonitor.exe" [2008-10-25 31072]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2008-11-04 435096]
.
c:\documents and settings\okaynetbook\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Z stupce - sndvol32.lnk - c:\windows\system32\sndvol32.exe [2009-9-1 138752]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMBalloonTip"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\muzapp.exe"=
"d:\\programy\\Microsoft Office 2007 CZ full\\Office12\\GROOVE.EXE"=
"d:\\Games\\left_4_dead\\left 4 dead\\hl2.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\ICQ7.2\\ICQ.exe"=
"c:\\Documents and Settings\\okaynetbook\\Plocha\\RSIT.exe"=
"c:\\Program Files\\Common Files\\Microsoft Shared\\DW\\DW20.EXE"=
"c:\\WINDOWS\\system32\\msiexec.exe"=
"c:\\Program Files\\Google\\Update\\GoogleUpdate.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5985:TCP"= 5985:TCP:*:Disabled:Vzdálená správa systému Windows
.
R0 BtHidBus;Bluetooth HID Bus Service;c:\windows\system32\drivers\BtHidBus.sys [31.7.2008 20:45 20744]
R1 IDMTDI;IDMTDI;c:\windows\system32\drivers\idmtdi.sys [15.9.2011 17:12 101616]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [6.7.2011 19:21 13592]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [25.7.2010 19:27 246520]
R2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\system32\NlsSrv32.exe [4.8.2010 17:06 61440]
R3 L1c;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\l1c51x86.sys [18.8.2009 23:44 61040]
S1 MpKsl3035e4d2;MpKsl3035e4d2;\??\c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{2DC07DD7-5D5D-44B4-8265-8099EE8D422E}\MpKsl3035e4d2.sys --> c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{2DC07DD7-5D5D-44B4-8265-8099EE8D422E}\MpKsl3035e4d2.sys [?]
S1 MpKsl45925265;MpKsl45925265;\??\c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{B78BFFF6-3F5A-4A9E-92C9-75BF44751E68}\MpKsl45925265.sys --> c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{B78BFFF6-3F5A-4A9E-92C9-75BF44751E68}\MpKsl45925265.sys [?]
S1 MpKsl89fe49ca;MpKsl89fe49ca;\??\c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{6398E580-7350-4D20-91A2-EBEA19ADE162}\MpKsl89fe49ca.sys --> c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{6398E580-7350-4D20-91A2-EBEA19ADE162}\MpKsl89fe49ca.sys [?]
S1 MpKsl92706dd6;MpKsl92706dd6;\??\c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{ED732446-F921-4509-AD0E-FBE0131D4AD8}\MpKsl92706dd6.sys --> c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{ED732446-F921-4509-AD0E-FBE0131D4AD8}\MpKsl92706dd6.sys [?]
S1 MpKsl9c8abaa8;MpKsl9c8abaa8;\??\c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{C1041DC6-62E4-45E0-BFEC-C9FFAEA72133}\MpKsl9c8abaa8.sys --> c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{C1041DC6-62E4-45E0-BFEC-C9FFAEA72133}\MpKsl9c8abaa8.sys [?]
S1 MpKslc6cef8fd;MpKslc6cef8fd;\??\c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{9853E6DE-6988-4F2E-8AFE-9A18AEB43742}\MpKslc6cef8fd.sys --> c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{9853E6DE-6988-4F2E-8AFE-9A18AEB43742}\MpKslc6cef8fd.sys [?]
S1 MpKslf6aff973;MpKslf6aff973;\??\c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{9853E6DE-6988-4F2E-8AFE-9A18AEB43742}\MpKslf6aff973.sys --> c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{9853E6DE-6988-4F2E-8AFE-9A18AEB43742}\MpKslf6aff973.sys [?]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [15.9.2010 22:01 136176]
S3 2hotspot controller;2hotspot Miniport;c:\windows\system32\DRIVERS\acontrol.sys --> c:\windows\system32\DRIVERS\acontrol.sys [?]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [1.9.2009 23:01 1691480]
S3 btnetBUs;Bluetooth PAN Bus Service;c:\windows\system32\drivers\btnetBus.sys [7.12.2008 12:44 30088]
S3 dc3d;MS Hardware Device Detection Driver;c:\windows\system32\drivers\dc3d.sys [6.7.2011 18:43 44432]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys --> c:\windows\system32\drivers\dgderdrv.sys [?]
S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [6.7.2011 0:22 23456]
S3 FsUsbExDisk;FsUsbExDisk;\??\c:\windows\system32\FsUsbExDisk.SYS --> c:\windows\system32\FsUsbExDisk.SYS [?]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [15.9.2010 22:01 136176]
S3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\drivers\IvtBtBus.sys [2.7.2008 14:58 26248]
S3 NANMp50;NANMp50 NDIS Protocol Driver;c:\windows\system32\Drivers\NANMp50.sys --> c:\windows\system32\Drivers\NANMp50.sys [?]
S3 Pcouffin;Low level access layer for CD devices;c:\windows\system32\Drivers\Pcouffin.sys --> c:\windows\system32\Drivers\Pcouffin.sys [?]
S3 RT80x86;Ralink 802.11n Wireless Driver;c:\windows\system32\drivers\rt2860.sys [22.8.2011 17:18 2240064]
S3 RTLWUSB;AirLive WL1600USB;c:\windows\system32\drivers\RTL8187.sys [2.3.2011 16:00 323328]
S3 SndTAudio;SndTAudio;c:\windows\system32\drivers\SndTAudio.sys [7.11.2010 5:59 23608]
S3 STSService;STSService;"c:\program files\SoundTaxi Media Suite\STSService.exe" --> c:\program files\SoundTaxi Media Suite\STSService.exe [?]
S3 uvclf;uvclf;c:\windows\system32\drivers\uvclf.sys [12.8.2009 8:57 39040]
S3 widseasd;Widsea Secret Disk Service;\??\c:\documents and settings\okaynetbook\Dokumenty\Downloads\Music\TS-Disk1.63\TS-Disk1.63\widseasd.sys --> c:\documents and settings\okaynetbook\Dokumenty\Downloads\Music\TS-Disk1.63\TS-Disk1.63\widseasd.sys [?]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2.9.2009 0:26 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe --> c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WINRM REG_MULTI_SZ WINRM
.
Obsah adresáře 'Naplánované úlohy'
.
2011-10-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-15 20:00]
.
2011-10-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-15 20:00]
.
2011-07-06 c:\windows\Tasks\Microsoft_Hardware_Launch_IPoint_exe.job
- c:\program files\Microsoft IntelliPoint\ipoint.exe [2010-07-21 14:52]
.
2011-10-08 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2011-04-27 13:39]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com/
uSearchURL,(Default) = hxxp://www.google.com.eg/keyword/%s
IE: ????3??
IE: ????3??????
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
IE: Stáhnout pomocí FlashGet - c:\program files\FlashGet\jc_link.htm
IE: Stáhnout s IDM - c:\program files\IDM.5.19.2\IEExt.htm
IE: Stáhnout s IDM obsah FLV videa - c:\program files\IDM.5.19.2\IEGetVL.htm
IE: Stáhnout s IDM všechny odkazy - c:\program files\IDM.5.19.2\IEGetAll.htm
IE: Stáhnout vše pomocí FlashGet - c:\program files\FlashGet\jc_all.htm
IE: Translate this web page with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm
IE: Translate with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm
IE: ????3?? - c:\documents and settings\okaynetbook\Data aplikací\FlashGetBHO\GetUrl.htm
IE: ????3?????? - c:\documents and settings\okaynetbook\Data aplikací\FlashGetBHO\GetAllUrl.htm
TCP: DhcpNameServer = 217.119.127.1 217.119.127.200
FF - ProfilePath - c:\documents and settings\okaynetbook\Data aplikací\Mozilla\Firefox\Profiles\6jpdurms.default\
FF - prefs.js: browser.startup.homepage - www.google.com
FF - prefs.js: network.proxy.type - 0
FF - user.js: browser.cache.memory.capacity - 16000
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: content.max.tokenizing.time - 2250000
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: dom.disable_window_status_change - true
FF - user.js: network.http.max-connections - 32
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 8
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 750
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-10-08 14:44
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3626335844-41941361-4021371189-1005\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}Ź]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
@="c:\\Documents and Settings\\okaynetbook\\Data aplikací\\FlashGetBHO\\GetUrl.htm"
"contexts"=dword:00000022
.
[HKEY_USERS\S-1-5-21-3626335844-41941361-4021371189-1005\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}ŹhQčţ”Ąc]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
@="c:\\Documents and Settings\\okaynetbook\\Data aplikací\\FlashGetBHO\\GetAllUrl.htm"
"contexts"=dword:000000f3
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{0470c0e5-e7d6-4970-aadc-2497f7be8e14}]
@Denied: (Full) (Everyone)
"Model"=dword:00000118
"Therad"=dword:00000015
"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,
1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):00,fe,de,4d,de,29,61,83,57,e5,06,1c,bd,d4,98,e6,74,46,8e,c8,5e,
5a,e0,cf,a1,39,fe,20,4c,cd,1e,1d,1f,19,39,ac,4d,7b,0e,08,00,00,00,00,00,00,\
.
[HKEY_LOCAL_MACHINE\software\Classes\ShockwaveFlash.ShockwaveFlash]
@DACL=(02 0000)
@="Shockwave Flash Object"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(776)
c:\windows\SYSTEM32\RtlGina\RtlGina.DLL
.
- - - - - - - > 'explorer.exe'(3388)
c:\program files\IDM.5.19.2\IDMShellExt.dll
c:\program files\IDM.5.19.2\IDMNetMon.DLL
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\RTHDCPL.EXE
.
**************************************************************************
.
Celkový čas: 2011-10-08 14:50:47 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-10-08 12:50
ComboFix2.txt 2011-09-29 21:49
ComboFix3.txt 2011-09-29 18:29
.
Před spuštěním: 5 491 810 304
Po spuštění: 5 483 401 216
.
- - End Of File - - BD0E86625409686D2B2EA4877EAF1F76
Re: nejde spustit antivir ziadny
Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe
- Utilitu spustte a prikazte ji, at skenuje - klik na Start Scan
- Pokud utilita najde infikekci, bude ji chtit lecit (Cure), povolte leceni kliknutim na Continue
- Pokud utilita najde podezrely soubor (suspicious), bude jej chtit preskocit (Skip), povolte preskoceni kliknutim na Continue
- Po dokonceni skenu bude mozna nutny restart PC, povolte jej kliknutim na Reboot now
- Po restartu na Vas vyskoci log, pokud se tak nestane, najdete jej primo na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt - jeho obsah sem vlozte
- Pokud restart nebude vyzadovan, kliknete na Close a nasledne na Report - vytvori se log - jeho obsah sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.-
jarek26
- Návštěvník
- Příspěvky: 121
- Registrován: 23 pro 2008 16:01
- Bydliště: Bardejov
- Kontaktovat uživatele:
Re: nejde spustit antivir ziadny
takze vlozujem ten log
17:47:44.0015 2740 TDSS rootkit removing tool 2.6.6.0 Oct 7 2011 12:45:24
17:47:44.0234 2740 ============================================================
17:47:44.0234 2740 Current date / time: 2011/10/08 17:47:44.0234
17:47:44.0234 2740 SystemInfo:
17:47:44.0234 2740
17:47:44.0234 2740 OS Version: 5.1.2600 ServicePack: 3.0
17:47:44.0234 2740 Product type: Workstation
17:47:44.0234 2740 ComputerName: OKAYNETBOOK
17:47:44.0234 2740 UserName: okaynetbook
17:47:44.0234 2740 Windows directory: C:\WINDOWS
17:47:44.0234 2740 System windows directory: C:\WINDOWS
17:47:44.0234 2740 Processor architecture: Intel x86
17:47:44.0234 2740 Number of processors: 2
17:47:44.0234 2740 Page size: 0x1000
17:47:44.0234 2740 Boot type: Normal boot
17:47:44.0234 2740 ============================================================
17:47:45.0296 2740 Initialize success
17:47:46.0921 0484 ============================================================
17:47:46.0921 0484 Scan started
17:47:46.0921 0484 Mode: Manual;
17:47:46.0921 0484 ============================================================
17:47:48.0468 0484 2hotspot controller - ok
17:47:48.0500 0484 Abiosdsk - ok
17:47:48.0515 0484 abp480n5 - ok
17:47:48.0578 0484 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:47:48.0593 0484 ACPI - ok
17:47:48.0625 0484 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
17:47:48.0640 0484 ACPIEC - ok
17:47:48.0656 0484 adpu160m - ok
17:47:48.0718 0484 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
17:47:48.0718 0484 aec - ok
17:47:48.0796 0484 AegisP (023867b6606fbabcdd52e089c4a507da) C:\WINDOWS\system32\DRIVERS\AegisP.sys
17:47:48.0796 0484 AegisP - ok
17:47:48.0843 0484 AFD (355556d9e580915118cd7ef736653a89) C:\WINDOWS\System32\drivers\afd.sys
17:47:48.0875 0484 AFD - ok
17:47:48.0937 0484 Aha154x - ok
17:47:48.0953 0484 aic78u2 - ok
17:47:48.0984 0484 aic78xx - ok
17:47:49.0015 0484 AliIde - ok
17:47:49.0156 0484 Ambfilt (267fc636801edc5ab28e14036349e3be) C:\WINDOWS\system32\drivers\Ambfilt.sys
17:47:49.0250 0484 Ambfilt - ok
17:47:49.0265 0484 amsint - ok
17:47:49.0328 0484 asc - ok
17:47:49.0359 0484 asc3350p - ok
17:47:49.0375 0484 asc3550 - ok
17:47:49.0500 0484 AsusACPI (12415a4b61ded200fe9932b47a35fa42) C:\WINDOWS\system32\DRIVERS\ASUSACPI.sys
17:47:49.0500 0484 AsusACPI - ok
17:47:49.0546 0484 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:47:49.0546 0484 AsyncMac - ok
17:47:49.0625 0484 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\drivers\atapi.sys
17:47:49.0625 0484 atapi - ok
17:47:49.0687 0484 Atdisk - ok
17:47:49.0734 0484 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:47:49.0750 0484 Atmarpc - ok
17:47:49.0828 0484 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
17:47:49.0828 0484 audstub - ok
17:47:49.0890 0484 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
17:47:49.0890 0484 Beep - ok
17:47:49.0921 0484 BT - ok
17:47:49.0953 0484 btaudio - ok
17:47:49.0984 0484 Btcsrusb - ok
17:47:50.0000 0484 BTDriver - ok
17:47:50.0078 0484 BthEnum (b279426e3c0c344893ed78a613a73bde) C:\WINDOWS\system32\DRIVERS\BthEnum.sys
17:47:50.0078 0484 BthEnum - ok
17:47:50.0125 0484 BtHidBus (ce441ccd98c5ecb10cb12fcaf97322ec) C:\WINDOWS\system32\Drivers\BtHidBus.sys
17:47:50.0140 0484 BtHidBus - ok
17:47:50.0187 0484 BTHMODEM (fca6f069597b62d42495191ace3fc6c1) C:\WINDOWS\system32\DRIVERS\bthmodem.sys
17:47:50.0203 0484 BTHMODEM - ok
17:47:50.0234 0484 BthPan (80602b8746d3738f5886ce3d67ef06b6) C:\WINDOWS\system32\DRIVERS\bthpan.sys
17:47:50.0234 0484 BthPan - ok
17:47:50.0296 0484 BTHPORT (f338662a6c1fc11dd9508f6dff2c06a2) C:\WINDOWS\system32\Drivers\BTHport.sys
17:47:50.0296 0484 BTHPORT - ok
17:47:50.0359 0484 BTHUSB (61364cd71ef63b0f038b7e9df00f1efa) C:\WINDOWS\system32\Drivers\BTHUSB.sys
17:47:50.0359 0484 BTHUSB - ok
17:47:50.0421 0484 btnetBUs (d3c277a51ef9e2ec972d6221f99c0b6d) C:\WINDOWS\system32\Drivers\btnetBus.sys
17:47:50.0421 0484 btnetBUs - ok
17:47:50.0437 0484 BTWDNDIS - ok
17:47:50.0500 0484 BTWUSB - ok
17:47:50.0515 0484 catchme - ok
17:47:50.0562 0484 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
17:47:50.0578 0484 cbidf2k - ok
17:47:50.0609 0484 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
17:47:50.0609 0484 CCDECODE - ok
17:47:50.0625 0484 cd20xrnt - ok
17:47:50.0687 0484 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
17:47:50.0687 0484 Cdaudio - ok
17:47:50.0718 0484 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
17:47:50.0734 0484 Cdfs - ok
17:47:50.0796 0484 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:47:50.0796 0484 Cdrom - ok
17:47:50.0812 0484 Changer - ok
17:47:50.0906 0484 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
17:47:50.0921 0484 CmBatt - ok
17:47:50.0937 0484 CmdIde - ok
17:47:50.0968 0484 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
17:47:50.0984 0484 Compbatt - ok
17:47:51.0015 0484 Cpqarray - ok
17:47:51.0109 0484 cpuz132 (ef35b7c69a4d78ebddb5eed96e0ecd42) C:\Program Files\CPUID\PC Wizard 2010\pcwiz32.sys
17:47:51.0109 0484 cpuz132 - ok
17:47:51.0250 0484 CrystalSysInfo - ok
17:47:51.0265 0484 dac2w2k - ok
17:47:51.0281 0484 dac960nt - ok
17:47:51.0359 0484 dc3d (b6672f62f75fb952d7ae7cb4e80011a9) C:\WINDOWS\system32\DRIVERS\dc3d.sys
17:47:51.0359 0484 dc3d - ok
17:47:51.0406 0484 dgderdrv - ok
17:47:51.0468 0484 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
17:47:51.0468 0484 Disk - ok
17:47:51.0546 0484 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
17:47:51.0593 0484 dmboot - ok
17:47:51.0656 0484 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
17:47:51.0671 0484 dmio - ok
17:47:51.0734 0484 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
17:47:51.0734 0484 dmload - ok
17:47:51.0781 0484 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
17:47:51.0781 0484 DMusic - ok
17:47:51.0812 0484 dpti2o - ok
17:47:51.0843 0484 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
17:47:51.0843 0484 drmkaud - ok
17:47:51.0890 0484 DrvAgent32 (651554e483712b708ede864d0ca1aa73) C:\WINDOWS\system32\Drivers\DrvAgent32.sys
17:47:51.0890 0484 DrvAgent32 - ok
17:47:51.0953 0484 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
17:47:51.0968 0484 Fastfat - ok
17:47:52.0031 0484 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
17:47:52.0031 0484 Fdc - ok
17:47:52.0062 0484 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
17:47:52.0062 0484 Fips - ok
17:47:52.0093 0484 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
17:47:52.0093 0484 Flpydisk - ok
17:47:52.0140 0484 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
17:47:52.0140 0484 FltMgr - ok
17:47:52.0203 0484 fssfltr (960f5e5e4e1f720465311ac68a99c2df) C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
17:47:52.0203 0484 fssfltr - ok
17:47:52.0234 0484 FsUsbExDisk - ok
17:47:52.0296 0484 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:47:52.0296 0484 Fs_Rec - ok
17:47:52.0359 0484 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:47:52.0359 0484 Ftdisk - ok
17:47:52.0421 0484 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:47:52.0421 0484 Gpc - ok
17:47:52.0515 0484 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
17:47:52.0515 0484 HDAudBus - ok
17:47:52.0593 0484 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:47:52.0593 0484 HidUsb - ok
17:47:52.0625 0484 hpn - ok
17:47:52.0687 0484 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
17:47:52.0703 0484 HTTP - ok
17:47:52.0718 0484 i2omgmt - ok
17:47:52.0750 0484 i2omp - ok
17:47:52.0796 0484 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:47:52.0796 0484 i8042prt - ok
17:47:53.0093 0484 ialm (48846b31be5a4fa662ccfde7a1ba86b9) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
17:47:53.0343 0484 ialm - ok
17:47:53.0406 0484 iaStor (db81f413fa4e3f328cad7b5d59ef3f21) C:\WINDOWS\system32\drivers\iaStor.sys
17:47:53.0406 0484 iaStor - ok
17:47:53.0468 0484 IDMTDI (330a6a0baf4fd945bde14c7b1d88d9b9) C:\WINDOWS\system32\DRIVERS\idmtdi.sys
17:47:53.0484 0484 IDMTDI - ok
17:47:53.0562 0484 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
17:47:53.0562 0484 Imapi - ok
17:47:53.0578 0484 ini910u - ok
17:47:53.0812 0484 IntcAzAudAddService (440317795d6f9af27bf305036ad43d1d) C:\WINDOWS\system32\drivers\RtkHDAud.sys
17:47:54.0046 0484 IntcAzAudAddService - ok
17:47:54.0078 0484 IntelIde - ok
17:47:54.0125 0484 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
17:47:54.0125 0484 intelppm - ok
17:47:54.0156 0484 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
17:47:54.0156 0484 Ip6Fw - ok
17:47:54.0187 0484 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:47:54.0187 0484 IpFilterDriver - ok
17:47:54.0203 0484 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:47:54.0203 0484 IpInIp - ok
17:47:54.0250 0484 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:47:54.0250 0484 IpNat - ok
17:47:54.0296 0484 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:47:54.0296 0484 IPSec - ok
17:47:54.0343 0484 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
17:47:54.0343 0484 IRENUM - ok
17:47:54.0390 0484 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:47:54.0390 0484 isapnp - ok
17:47:54.0437 0484 IvtBtBUs (71e1fc547cc488d5cd7bf0860c96f5af) C:\WINDOWS\system32\Drivers\IvtBtBus.sys
17:47:54.0437 0484 IvtBtBUs - ok
17:47:54.0515 0484 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:47:54.0515 0484 Kbdclass - ok
17:47:54.0562 0484 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
17:47:54.0578 0484 kmixer - ok
17:47:54.0625 0484 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
17:47:54.0640 0484 KSecDD - ok
17:47:54.0671 0484 L1c (31ea3f3219abdd2a6ee0969cb3dc54e6) C:\WINDOWS\system32\DRIVERS\l1c51x86.sys
17:47:54.0671 0484 L1c - ok
17:47:54.0703 0484 lbrtfdc - ok
17:47:54.0796 0484 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
17:47:54.0796 0484 mnmdd - ok
17:47:54.0859 0484 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
17:47:54.0859 0484 Modem - ok
17:47:54.0953 0484 Monfilt (c7d9f9717916b34c1b00dd4834af485c) C:\WINDOWS\system32\drivers\Monfilt.sys
17:47:55.0015 0484 Monfilt - ok
17:47:55.0062 0484 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:47:55.0062 0484 Mouclass - ok
17:47:55.0109 0484 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:47:55.0125 0484 mouhid - ok
17:47:55.0171 0484 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
17:47:55.0171 0484 MountMgr - ok
17:47:55.0218 0484 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
17:47:55.0218 0484 MpFilter - ok
17:47:55.0296 0484 MpKsl3035e4d2 - ok
17:47:55.0328 0484 MpKsl45925265 - ok
17:47:55.0343 0484 MpKsl89fe49ca - ok
17:47:55.0359 0484 MpKsl92706dd6 - ok
17:47:55.0375 0484 MpKsl9c8abaa8 - ok
17:47:55.0390 0484 MpKslc6cef8fd - ok
17:47:55.0406 0484 MpKslf6aff973 - ok
17:47:55.0421 0484 mraid35x - ok
17:47:55.0484 0484 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:47:55.0500 0484 MRxDAV - ok
17:47:55.0546 0484 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:47:55.0562 0484 MRxSmb - ok
17:47:55.0625 0484 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
17:47:55.0625 0484 Msfs - ok
17:47:55.0671 0484 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:47:55.0671 0484 MSKSSRV - ok
17:47:55.0703 0484 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:47:55.0703 0484 MSPCLOCK - ok
17:47:55.0781 0484 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
17:47:55.0781 0484 MSPQM - ok
17:47:55.0843 0484 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:47:55.0843 0484 mssmbios - ok
17:47:55.0890 0484 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
17:47:55.0890 0484 MSTEE - ok
17:47:55.0937 0484 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
17:47:55.0937 0484 Mup - ok
17:47:55.0984 0484 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
17:47:55.0984 0484 NABTSFEC - ok
17:47:56.0031 0484 NANMp50 - ok
17:47:56.0109 0484 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
17:47:56.0109 0484 NDIS - ok
17:47:56.0171 0484 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
17:47:56.0171 0484 NdisIP - ok
17:47:56.0218 0484 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:47:56.0234 0484 NdisTapi - ok
17:47:56.0281 0484 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:47:56.0281 0484 Ndisuio - ok
17:47:56.0312 0484 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:47:56.0328 0484 NdisWan - ok
17:47:56.0375 0484 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
17:47:56.0375 0484 NDProxy - ok
17:47:56.0421 0484 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
17:47:56.0421 0484 NetBIOS - ok
17:47:56.0484 0484 NetBT (629b6e95eabeb75a53199eb7066138c2) C:\WINDOWS\system32\DRIVERS\netbt.sys
17:47:56.0500 0484 NetBT - ok
17:47:56.0593 0484 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
17:47:56.0593 0484 Npfs - ok
17:47:56.0609 0484 NSNDIS5 - ok
17:47:56.0656 0484 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
17:47:56.0671 0484 Ntfs - ok
17:47:56.0750 0484 NuidFltr (ef2b9a14ec5dd74ade3417faf1b45e16) C:\WINDOWS\system32\DRIVERS\NuidFltr.sys
17:47:56.0750 0484 NuidFltr - ok
17:47:56.0796 0484 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
17:47:56.0796 0484 Null - ok
17:47:56.0859 0484 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:47:56.0859 0484 NwlnkFlt - ok
17:47:56.0890 0484 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:47:56.0890 0484 NwlnkFwd - ok
17:47:56.0968 0484 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\drivers\Parport.sys
17:47:56.0984 0484 Parport - ok
17:47:57.0031 0484 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
17:47:57.0031 0484 PartMgr - ok
17:47:57.0078 0484 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
17:47:57.0078 0484 ParVdm - ok
17:47:57.0156 0484 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
17:47:57.0156 0484 pccsmcfd - ok
17:47:57.0281 0484 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
17:47:57.0296 0484 PCI - ok
17:47:57.0328 0484 PCIDump - ok
17:47:57.0343 0484 PCIIde - ok
17:47:57.0390 0484 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
17:47:57.0390 0484 Pcmcia - ok
17:47:57.0421 0484 Pcouffin - ok
17:47:57.0437 0484 PDCOMP - ok
17:47:57.0453 0484 PDFRAME - ok
17:47:57.0484 0484 PDRELI - ok
17:47:57.0500 0484 PDRFRAME - ok
17:47:57.0515 0484 perc2 - ok
17:47:57.0531 0484 perc2hib - ok
17:47:57.0609 0484 Point32 (60a044879c4fa76314494f5fddc43b93) C:\WINDOWS\system32\DRIVERS\point32.sys
17:47:57.0609 0484 Point32 - ok
17:47:57.0656 0484 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:47:57.0656 0484 PptpMiniport - ok
17:47:57.0703 0484 prodrv06 (18d9789a4664bf417eea944d2776091a) C:\WINDOWS\System32\drivers\prodrv06.sys
17:47:57.0703 0484 prodrv06 - ok
17:47:57.0750 0484 prohlp02 (8cc9671a7ed2902e747ee0892e1c8575) C:\WINDOWS\system32\drivers\prohlp02.sys
17:47:57.0750 0484 prohlp02 - ok
17:47:57.0796 0484 prosync1 (960bce3ed38761b446aabac06c76badf) C:\WINDOWS\system32\drivers\prosync1.sys
17:47:57.0796 0484 prosync1 - ok
17:47:57.0828 0484 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
17:47:57.0828 0484 PSched - ok
17:47:57.0875 0484 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:47:57.0875 0484 Ptilink - ok
17:47:57.0890 0484 ql1080 - ok
17:47:57.0906 0484 Ql10wnt - ok
17:47:57.0937 0484 ql12160 - ok
17:47:57.0953 0484 ql1240 - ok
17:47:57.0968 0484 ql1280 - ok
17:47:58.0015 0484 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:47:58.0015 0484 RasAcd - ok
17:47:58.0031 0484 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:47:58.0031 0484 Rasl2tp - ok
17:47:58.0078 0484 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:47:58.0078 0484 RasPppoe - ok
17:47:58.0093 0484 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
17:47:58.0109 0484 Raspti - ok
17:47:58.0156 0484 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:47:58.0156 0484 Rdbss - ok
17:47:58.0203 0484 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:47:58.0203 0484 RDPCDD - ok
17:47:58.0281 0484 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
17:47:58.0281 0484 RDPWD - ok
17:47:58.0343 0484 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
17:47:58.0343 0484 redbook - ok
17:47:58.0421 0484 RFCOMM (851c30df2807fcfa21e4c681a7d6440e) C:\WINDOWS\system32\DRIVERS\rfcomm.sys
17:47:58.0421 0484 RFCOMM - ok
17:47:58.0468 0484 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
17:47:58.0468 0484 ROOTMODEM - ok
17:47:58.0609 0484 RT80x86 (121d1b58598d4182adf715f9c0218ce4) C:\WINDOWS\system32\DRIVERS\RT2860.sys
17:47:58.0687 0484 RT80x86 - ok
17:47:58.0750 0484 RTLWUSB (0534004db838fd5ae5f64e8d78a544dd) C:\WINDOWS\system32\DRIVERS\RTL8187.sys
17:47:58.0765 0484 RTLWUSB - ok
17:47:58.0875 0484 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:47:58.0875 0484 Secdrv - ok
17:47:58.0937 0484 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\drivers\Serial.sys
17:47:58.0953 0484 Serial - ok
17:47:59.0031 0484 sfhlp01 (462aee0ea0481ea8bd45cac876a4ccc4) C:\WINDOWS\system32\drivers\sfhlp01.sys
17:47:59.0031 0484 sfhlp01 - ok
17:47:59.0078 0484 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
17:47:59.0078 0484 Sfloppy - ok
17:47:59.0125 0484 Simbad - ok
17:47:59.0171 0484 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
17:47:59.0171 0484 SLIP - ok
17:47:59.0265 0484 SndTAudio (ff6e54b49607cc0f37d675b763735570) C:\WINDOWS\system32\drivers\SndTAudio.sys
17:47:59.0265 0484 SndTAudio - ok
17:47:59.0375 0484 SNP2UVC (473f35e2a378b854731e67c377a3bea7) C:\WINDOWS\system32\DRIVERS\snp2uvc.sys
17:47:59.0437 0484 SNP2UVC - ok
17:47:59.0484 0484 Sparrow - ok
17:47:59.0546 0484 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
17:47:59.0546 0484 splitter - ok
17:47:59.0640 0484 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
17:47:59.0640 0484 sr - ok
17:47:59.0703 0484 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
17:47:59.0718 0484 Srv - ok
17:47:59.0765 0484 sscdbus (d6870895fe46a464a19141440eb6cc1e) C:\WINDOWS\system32\DRIVERS\sscdbus.sys
17:47:59.0781 0484 sscdbus - ok
17:47:59.0812 0484 sscdmdfl (0fe167362e4689b716cdc8d93adedda8) C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
17:47:59.0812 0484 sscdmdfl - ok
17:47:59.0859 0484 sscdmdm (55a15707e32b6709242ad127e62ca55a) C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
17:47:59.0859 0484 sscdmdm - ok
17:47:59.0906 0484 sscdserd (9fa66e361a99f8920c7609bae6814a0e) C:\WINDOWS\system32\DRIVERS\sscdserd.sys
17:47:59.0906 0484 sscdserd - ok
17:47:59.0984 0484 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
17:47:59.0984 0484 streamip - ok
17:48:00.0046 0484 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
17:48:00.0046 0484 swenum - ok
17:48:00.0125 0484 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
17:48:00.0125 0484 swmidi - ok
17:48:00.0156 0484 symc810 - ok
17:48:00.0187 0484 symc8xx - ok
17:48:00.0218 0484 sym_hi - ok
17:48:00.0234 0484 sym_u3 - ok
17:48:00.0296 0484 SynTP (8e25a1dbb8527b2074af9b682f818768) C:\WINDOWS\system32\DRIVERS\SynTP.sys
17:48:00.0312 0484 SynTP - ok
17:48:00.0375 0484 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
17:48:00.0375 0484 sysaudio - ok
17:48:00.0437 0484 Tcpip (4afb3b0919649f95c1964aa1fad27d73) C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:48:00.0453 0484 Tcpip - ok
17:48:00.0515 0484 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
17:48:00.0515 0484 TDPIPE - ok
17:48:00.0531 0484 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
17:48:00.0546 0484 TDTCP - ok
17:48:00.0593 0484 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
17:48:00.0593 0484 TermDD - ok
17:48:00.0656 0484 TosIde - ok
17:48:00.0718 0484 tosporte (8d624d3bd1f2d78bd1c01a2d4e954b4e) C:\WINDOWS\system32\DRIVERS\tosporte.sys
17:48:00.0734 0484 tosporte - ok
17:48:00.0781 0484 tosrfbd (8c3bfaf3fca90502e6fa35503b8e979e) C:\WINDOWS\system32\DRIVERS\tosrfbd.sys
17:48:00.0781 0484 tosrfbd - ok
17:48:00.0812 0484 tosrfbnp (90c8525bc578aaffe87c2d0ed4379e9e) C:\WINDOWS\system32\Drivers\tosrfbnp.sys
17:48:00.0812 0484 tosrfbnp - ok
17:48:00.0859 0484 Tosrfcom (4742f0bad28268ab093ed6f4ea857997) C:\WINDOWS\system32\Drivers\tosrfcom.sys
17:48:00.0859 0484 Tosrfcom - ok
17:48:00.0890 0484 Tosrfhid (7c807ba9660e2995cc0217a14a24094c) C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys
17:48:00.0890 0484 Tosrfhid - ok
17:48:00.0937 0484 tosrfnds (c52fd27b9adf3a1f22cb90e6bcf9b0cb) C:\WINDOWS\system32\DRIVERS\tosrfnds.sys
17:48:00.0937 0484 tosrfnds - ok
17:48:00.0968 0484 TosRfSnd (a4ce9572bc4ac8d329455059b43c5bea) C:\WINDOWS\system32\drivers\tosrfsnd.sys
17:48:00.0968 0484 TosRfSnd - ok
17:48:01.0015 0484 tosrfusb (01c90086cd37e7e8d9a827e24167fcb7) C:\WINDOWS\system32\DRIVERS\tosrfusb.sys
17:48:01.0015 0484 tosrfusb - ok
17:48:01.0093 0484 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
17:48:01.0093 0484 Udfs - ok
17:48:01.0109 0484 ultra - ok
17:48:01.0171 0484 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
17:48:01.0171 0484 Update - ok
17:48:01.0234 0484 USBAAPL (d4fb6ecc60a428564ba8768b0e23c0fc) C:\WINDOWS\system32\Drivers\usbaapl.sys
17:48:01.0234 0484 USBAAPL - ok
17:48:01.0281 0484 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:48:01.0281 0484 usbccgp - ok
17:48:01.0328 0484 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:48:01.0328 0484 usbehci - ok
17:48:01.0390 0484 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:48:01.0390 0484 usbhub - ok
17:48:01.0421 0484 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
17:48:01.0421 0484 usbscan - ok
17:48:01.0468 0484 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:48:01.0468 0484 usbstor - ok
17:48:01.0500 0484 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:48:01.0515 0484 usbuhci - ok
17:48:01.0578 0484 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
17:48:01.0578 0484 usbvideo - ok
17:48:01.0640 0484 uvclf (c019889035cdc1a06f2febc93cbb6897) C:\WINDOWS\system32\DRIVERS\uvclf.sys
17:48:01.0640 0484 uvclf - ok
17:48:01.0656 0484 VComm - ok
17:48:01.0687 0484 VcommMgr - ok
17:48:01.0750 0484 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
17:48:01.0750 0484 VgaSave - ok
17:48:01.0781 0484 ViaIde - ok
17:48:01.0828 0484 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
17:48:01.0828 0484 VolSnap - ok
17:48:01.0906 0484 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:48:01.0906 0484 Wanarp - ok
17:48:01.0968 0484 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
17:48:02.0000 0484 Wdf01000 - ok
17:48:02.0015 0484 WDICA - ok
17:48:02.0078 0484 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
17:48:02.0093 0484 wdmaud - ok
17:48:02.0265 0484 widseasd - ok
17:48:02.0421 0484 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
17:48:02.0421 0484 WS2IFSL - ok
17:48:02.0515 0484 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
17:48:02.0515 0484 WSTCODEC - ok
17:48:02.0609 0484 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
17:48:02.0609 0484 WudfPf - ok
17:48:02.0671 0484 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
17:48:02.0671 0484 WudfRd - ok
17:48:02.0796 0484 MBR (0x1B8) (7d62a6f2a9826d768f5027b51635512d) \Device\Harddisk0\DR0
17:48:02.0828 0484 \Device\Harddisk0\DR0 - ok
17:48:02.0828 0484 Boot (0x1200) (b9b5c2effce87b74ea37c28109aed26d) \Device\Harddisk0\DR0\Partition0
17:48:02.0843 0484 \Device\Harddisk0\DR0\Partition0 - ok
17:48:02.0859 0484 Boot (0x1200) (d56a3b990eaa43c9bf7798a85cb5e097) \Device\Harddisk0\DR0\Partition1
17:48:02.0875 0484 \Device\Harddisk0\DR0\Partition1 - ok
17:48:02.0875 0484 ============================================================
17:48:02.0875 0484 Scan finished
17:48:02.0875 0484 ============================================================
17:48:02.0906 2984 Detected object count: 0
17:48:02.0906 2984 Actual detected object count: 0
17:48:36.0421 3060 ============================================================
17:48:36.0421 3060 Scan started
17:48:36.0421 3060 Mode: Manual;
17:48:36.0421 3060 ============================================================
17:48:36.0656 3060 2hotspot controller - ok
17:48:36.0687 3060 Abiosdsk - ok
17:48:36.0703 3060 abp480n5 - ok
17:48:36.0765 3060 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:48:36.0765 3060 ACPI - ok
17:48:36.0796 3060 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
17:48:36.0796 3060 ACPIEC - ok
17:48:36.0812 3060 adpu160m - ok
17:48:36.0859 3060 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
17:48:36.0859 3060 aec - ok
17:48:36.0906 3060 AegisP (023867b6606fbabcdd52e089c4a507da) C:\WINDOWS\system32\DRIVERS\AegisP.sys
17:48:36.0906 3060 AegisP - ok
17:48:36.0953 3060 AFD (355556d9e580915118cd7ef736653a89) C:\WINDOWS\System32\drivers\afd.sys
17:48:36.0953 3060 AFD - ok
17:48:36.0968 3060 Aha154x - ok
17:48:36.0984 3060 aic78u2 - ok
17:48:37.0000 3060 aic78xx - ok
17:48:37.0031 3060 AliIde - ok
17:48:37.0140 3060 Ambfilt (267fc636801edc5ab28e14036349e3be) C:\WINDOWS\system32\drivers\Ambfilt.sys
17:48:37.0156 3060 Ambfilt - ok
17:48:37.0187 3060 amsint - ok
17:48:37.0203 3060 asc - ok
17:48:37.0234 3060 asc3350p - ok
17:48:37.0250 3060 asc3550 - ok
17:48:37.0328 3060 AsusACPI (12415a4b61ded200fe9932b47a35fa42) C:\WINDOWS\system32\DRIVERS\ASUSACPI.sys
17:48:37.0328 3060 AsusACPI - ok
17:48:37.0375 3060 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:48:37.0375 3060 AsyncMac - ok
17:48:37.0421 3060 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\drivers\atapi.sys
17:48:37.0421 3060 atapi - ok
17:48:37.0437 3060 Atdisk - ok
17:48:37.0468 3060 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:48:37.0468 3060 Atmarpc - ok
17:48:37.0531 3060 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
17:48:37.0531 3060 audstub - ok
17:48:37.0578 3060 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
17:48:37.0578 3060 Beep - ok
17:48:37.0609 3060 BT - ok
17:48:37.0625 3060 btaudio - ok
17:48:37.0656 3060 Btcsrusb - ok
17:48:37.0671 3060 BTDriver - ok
17:48:37.0718 3060 BthEnum (b279426e3c0c344893ed78a613a73bde) C:\WINDOWS\system32\DRIVERS\BthEnum.sys
17:48:37.0718 3060 BthEnum - ok
17:48:37.0765 3060 BtHidBus (ce441ccd98c5ecb10cb12fcaf97322ec) C:\WINDOWS\system32\Drivers\BtHidBus.sys
17:48:37.0765 3060 BtHidBus - ok
17:48:37.0796 3060 BTHMODEM (fca6f069597b62d42495191ace3fc6c1) C:\WINDOWS\system32\DRIVERS\bthmodem.sys
17:48:37.0812 3060 BTHMODEM - ok
17:48:37.0828 3060 BthPan (80602b8746d3738f5886ce3d67ef06b6) C:\WINDOWS\system32\DRIVERS\bthpan.sys
17:48:37.0828 3060 BthPan - ok
17:48:37.0875 3060 BTHPORT (f338662a6c1fc11dd9508f6dff2c06a2) C:\WINDOWS\system32\Drivers\BTHport.sys
17:48:37.0875 3060 BTHPORT - ok
17:48:37.0921 3060 BTHUSB (61364cd71ef63b0f038b7e9df00f1efa) C:\WINDOWS\system32\Drivers\BTHUSB.sys
17:48:37.0921 3060 BTHUSB - ok
17:48:37.0968 3060 btnetBUs (d3c277a51ef9e2ec972d6221f99c0b6d) C:\WINDOWS\system32\Drivers\btnetBus.sys
17:48:37.0984 3060 btnetBUs - ok
17:48:38.0000 3060 BTWDNDIS - ok
17:48:38.0015 3060 BTWUSB - ok
17:48:38.0015 3060 catchme - ok
17:48:38.0062 3060 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
17:48:38.0062 3060 cbidf2k - ok
17:48:38.0109 3060 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
17:48:38.0109 3060 CCDECODE - ok
17:48:38.0125 3060 cd20xrnt - ok
17:48:38.0156 3060 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
17:48:38.0156 3060 Cdaudio - ok
17:48:38.0187 3060 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
17:48:38.0187 3060 Cdfs - ok
17:48:38.0234 3060 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:48:38.0234 3060 Cdrom - ok
17:48:38.0250 3060 Changer - ok
17:48:38.0328 3060 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
17:48:38.0328 3060 CmBatt - ok
17:48:38.0343 3060 CmdIde - ok
17:48:38.0359 3060 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
17:48:38.0359 3060 Compbatt - ok
17:48:38.0390 3060 Cpqarray - ok
17:48:38.0484 3060 cpuz132 (ef35b7c69a4d78ebddb5eed96e0ecd42) C:\Program Files\CPUID\PC Wizard 2010\pcwiz32.sys
17:48:38.0484 3060 cpuz132 - ok
17:48:38.0609 3060 CrystalSysInfo - ok
17:48:38.0625 3060 dac2w2k - ok
17:48:38.0640 3060 dac960nt - ok
17:48:38.0703 3060 dc3d (b6672f62f75fb952d7ae7cb4e80011a9) C:\WINDOWS\system32\DRIVERS\dc3d.sys
17:48:38.0703 3060 dc3d - ok
17:48:38.0718 3060 dgderdrv - ok
17:48:38.0765 3060 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
17:48:38.0765 3060 Disk - ok
17:48:38.0828 3060 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
17:48:38.0843 3060 dmboot - ok
17:48:38.0890 3060 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
17:48:38.0890 3060 dmio - ok
17:48:38.0921 3060 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
17:48:38.0921 3060 dmload - ok
17:48:38.0968 3060 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
17:48:38.0968 3060 DMusic - ok
17:48:38.0984 3060 dpti2o - ok
17:48:39.0015 3060 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
17:48:39.0015 3060 drmkaud - ok
17:48:39.0062 3060 DrvAgent32 (651554e483712b708ede864d0ca1aa73) C:\WINDOWS\system32\Drivers\DrvAgent32.sys
17:48:39.0062 3060 DrvAgent32 - ok
17:48:39.0140 3060 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
17:48:39.0140 3060 Fastfat - ok
17:48:39.0187 3060 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
17:48:39.0187 3060 Fdc - ok
17:48:39.0218 3060 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
17:48:39.0218 3060 Fips - ok
17:48:39.0250 3060 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
17:48:39.0250 3060 Flpydisk - ok
17:48:39.0281 3060 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
17:48:39.0281 3060 FltMgr - ok
17:48:39.0328 3060 fssfltr (960f5e5e4e1f720465311ac68a99c2df) C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
17:48:39.0328 3060 fssfltr - ok
17:48:39.0343 3060 FsUsbExDisk - ok
17:48:39.0390 3060 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:48:39.0390 3060 Fs_Rec - ok
17:48:39.0437 3060 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:48:39.0437 3060 Ftdisk - ok
17:48:39.0468 3060 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:48:39.0468 3060 Gpc - ok
17:48:39.0515 3060 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
17:48:39.0531 3060 HDAudBus - ok
17:48:39.0562 3060 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:48:39.0562 3060 HidUsb - ok
17:48:39.0593 3060 hpn - ok
17:48:39.0656 3060 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
17:48:39.0656 3060 HTTP - ok
17:48:39.0671 3060 i2omgmt - ok
17:48:39.0687 3060 i2omp - ok
17:48:39.0750 3060 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:48:39.0750 3060 i8042prt - ok
17:48:39.0968 3060 ialm (48846b31be5a4fa662ccfde7a1ba86b9) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
17:48:40.0031 3060 ialm - ok
17:48:40.0093 3060 iaStor (db81f413fa4e3f328cad7b5d59ef3f21) C:\WINDOWS\system32\drivers\iaStor.sys
17:48:40.0093 3060 iaStor - ok
17:48:40.0156 3060 IDMTDI (330a6a0baf4fd945bde14c7b1d88d9b9) C:\WINDOWS\system32\DRIVERS\idmtdi.sys
17:48:40.0156 3060 IDMTDI - ok
17:48:40.0203 3060 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
17:48:40.0203 3060 Imapi - ok
17:48:40.0218 3060 ini910u - ok
17:48:40.0468 3060 IntcAzAudAddService (440317795d6f9af27bf305036ad43d1d) C:\WINDOWS\system32\drivers\RtkHDAud.sys
17:48:40.0531 3060 IntcAzAudAddService - ok
17:48:40.0546 3060 IntelIde - ok
17:48:40.0593 3060 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
17:48:40.0593 3060 intelppm - ok
17:48:40.0625 3060 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
17:48:40.0625 3060 Ip6Fw - ok
17:48:40.0656 3060 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:48:40.0656 3060 IpFilterDriver - ok
17:48:40.0671 3060 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:48:40.0671 3060 IpInIp - ok
17:48:40.0703 3060 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:48:40.0718 3060 IpNat - ok
17:48:40.0750 3060 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:48:40.0750 3060 IPSec - ok
17:48:40.0796 3060 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
17:48:40.0796 3060 IRENUM - ok
17:48:40.0828 3060 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:48:40.0843 3060 isapnp - ok
17:48:40.0875 3060 IvtBtBUs (71e1fc547cc488d5cd7bf0860c96f5af) C:\WINDOWS\system32\Drivers\IvtBtBus.sys
17:48:40.0875 3060 IvtBtBUs - ok
17:48:40.0937 3060 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:48:40.0937 3060 Kbdclass - ok
17:48:40.0984 3060 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
17:48:40.0984 3060 kmixer - ok
17:48:41.0031 3060 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
17:48:41.0031 3060 KSecDD - ok
17:48:41.0078 3060 L1c (31ea3f3219abdd2a6ee0969cb3dc54e6) C:\WINDOWS\system32\DRIVERS\l1c51x86.sys
17:48:41.0078 3060 L1c - ok
17:48:41.0093 3060 lbrtfdc - ok
17:48:41.0171 3060 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
17:48:41.0171 3060 mnmdd - ok
17:48:41.0218 3060 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
17:48:41.0234 3060 Modem - ok
17:48:41.0312 3060 Monfilt (c7d9f9717916b34c1b00dd4834af485c) C:\WINDOWS\system32\drivers\Monfilt.sys
17:48:41.0328 3060 Monfilt - ok
17:48:41.0375 3060 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:48:41.0375 3060 Mouclass - ok
17:48:41.0421 3060 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:48:41.0421 3060 mouhid - ok
17:48:41.0453 3060 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
17:48:41.0453 3060 MountMgr - ok
17:48:41.0500 3060 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
17:48:41.0500 3060 MpFilter - ok
17:48:41.0578 3060 MpKsl3035e4d2 - ok
17:48:41.0593 3060 MpKsl45925265 - ok
17:48:41.0593 3060 MpKsl89fe49ca - ok
17:48:41.0609 3060 MpKsl92706dd6 - ok
17:48:41.0625 3060 MpKsl9c8abaa8 - ok
17:48:41.0625 3060 MpKslc6cef8fd - ok
17:48:41.0640 3060 MpKslf6aff973 - ok
17:48:41.0656 3060 mraid35x - ok
17:48:41.0718 3060 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:48:41.0718 3060 MRxDAV - ok
17:48:41.0781 3060 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:48:41.0796 3060 MRxSmb - ok
17:48:41.0828 3060 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
17:48:41.0828 3060 Msfs - ok
17:48:41.0875 3060 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:48:41.0875 3060 MSKSSRV - ok
17:48:41.0906 3060 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:48:41.0906 3060 MSPCLOCK - ok
17:48:41.0937 3060 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
17:48:41.0937 3060 MSPQM - ok
17:48:41.0984 3060 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:48:41.0984 3060 mssmbios - ok
17:48:42.0000 3060 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
17:48:42.0000 3060 MSTEE - ok
17:48:42.0046 3060 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
17:48:42.0046 3060 Mup - ok
17:48:42.0093 3060 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
17:48:42.0093 3060 NABTSFEC - ok
17:48:42.0109 3060 NANMp50 - ok
17:48:42.0171 3060 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
17:48:42.0171 3060 NDIS - ok
17:48:42.0234 3060 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
17:48:42.0234 3060 NdisIP - ok
17:48:42.0265 3060 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:48:42.0265 3060 NdisTapi - ok
17:48:42.0312 3060 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:48:42.0312 3060 Ndisuio - ok
17:48:42.0359 3060 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:48:42.0359 3060 NdisWan - ok
17:48:42.0406 3060 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
17:48:42.0406 3060 NDProxy - ok
17:48:42.0468 3060 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
17:48:42.0468 3060 NetBIOS - ok
17:48:42.0515 3060 NetBT (629b6e95eabeb75a53199eb7066138c2) C:\WINDOWS\system32\DRIVERS\netbt.sys
17:48:42.0515 3060 NetBT - ok
17:48:42.0593 3060 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
17:48:42.0609 3060 Npfs - ok
17:48:42.0609 3060 NSNDIS5 - ok
17:48:42.0656 3060 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
17:48:42.0656 3060 Ntfs - ok
17:48:42.0703 3060 NuidFltr (ef2b9a14ec5dd74ade3417faf1b45e16) C:\WINDOWS\system32\DRIVERS\NuidFltr.sys
17:48:42.0718 3060 NuidFltr - ok
17:48:42.0765 3060 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
17:48:42.0765 3060 Null - ok
17:48:42.0796 3060 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:48:42.0796 3060 NwlnkFlt - ok
17:48:42.0812 3060 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:48:42.0812 3060 NwlnkFwd - ok
17:48:42.0890 3060 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\drivers\Parport.sys
17:48:42.0890 3060 Parport - ok
17:48:42.0906 3060 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
17:48:42.0921 3060 PartMgr - ok
17:48:42.0968 3060 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
17:48:42.0968 3060 ParVdm - ok
17:48:43.0015 3060 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
17:48:43.0031 3060 pccsmcfd - ok
17:48:43.0062 3060 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
17:48:43.0062 3060 PCI - ok
17:48:43.0078 3060 PCIDump - ok
17:48:43.0093 3060 PCIIde - ok
17:48:43.0140 3060 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
17:48:43.0140 3060 Pcmcia - ok
17:48:43.0156 3060 Pcouffin - ok
17:48:43.0171 3060 PDCOMP - ok
17:48:43.0187 3060 PDFRAME - ok
17:48:43.0218 3060 PDRELI - ok
17:48:43.0234 3060 PDRFRAME - ok
17:48:43.0250 3060 perc2 - ok
17:48:43.0265 3060 perc2hib - ok
17:48:43.0312 3060 Point32 (60a044879c4fa76314494f5fddc43b93) C:\WINDOWS\system32\DRIVERS\point32.sys
17:48:43.0328 3060 Point32 - ok
17:48:43.0359 3060 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:48:43.0359 3060 PptpMiniport - ok
17:48:43.0406 3060 prodrv06 (18d9789a4664bf417eea944d2776091a) C:\WINDOWS\System32\drivers\prodrv06.sys
17:48:43.0406 3060 prodrv06 - ok
17:48:43.0453 3060 prohlp02 (8cc9671a7ed2902e747ee0892e1c8575) C:\WINDOWS\system32\drivers\prohlp02.sys
17:48:43.0453 3060 prohlp02 - ok
17:48:43.0484 3060 prosync1 (960bce3ed38761b446aabac06c76badf) C:\WINDOWS\system32\drivers\prosync1.sys
17:48:43.0484 3060 prosync1 - ok
17:48:43.0515 3060 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
17:48:43.0515 3060 PSched - ok
17:48:43.0546 3060 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:48:43.0546 3060 Ptilink - ok
17:48:43.0562 3060 ql1080 - ok
17:48:43.0578 3060 Ql10wnt - ok
17:48:43.0593 3060 ql12160 - ok
17:48:43.0609 3060 ql1240 - ok
17:48:43.0640 3060 ql1280 - ok
17:48:43.0671 3060 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:48:43.0671 3060 RasAcd - ok
17:48:43.0718 3060 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:48:43.0718 3060 Rasl2tp - ok
17:48:43.0750 3060 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:48:43.0750 3060 RasPppoe - ok
17:48:43.0765 3060 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
17:48:43.0765 3060 Raspti - ok
17:48:43.0812 3060 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:48:43.0812 3060 Rdbss - ok
17:48:43.0859 3060 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:48:43.0859 3060 RDPCDD - ok
17:48:43.0921 3060 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
17:48:43.0921 3060 RDPWD - ok
17:48:43.0968 3060 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
17:48:43.0968 3060 redbook - ok
17:48:44.0031 3060 RFCOMM (851c30df2807fcfa21e4c681a7d6440e) C:\WINDOWS\system32\DRIVERS\rfcomm.sys
17:48:44.0031 3060 RFCOMM - ok
17:48:44.0062 3060 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
17:48:44.0078 3060 ROOTMODEM - ok
17:48:44.0203 3060 RT80x86 (121d1b58598d4182adf715f9c0218ce4) C:\WINDOWS\system32\DRIVERS\RT2860.sys
17:48:44.0234 3060 RT80x86 - ok
17:48:44.0281 3060 RTLWUSB (0534004db838fd5ae5f64e8d78a544dd) C:\WINDOWS\system32\DRIVERS\RTL8187.sys
17:48:44.0281 3060 RTLWUSB - ok
17:48:44.0359 3060 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:48:44.0359 3060 Secdrv - ok
17:48:44.0406 3060 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\drivers\Serial.sys
17:48:44.0406 3060 Serial - ok
17:48:44.0468 3060 sfhlp01 (462aee0ea0481ea8bd45cac876a4ccc4) C:\WINDOWS\system32\drivers\sfhlp01.sys
17:48:44.0468 3060 sfhlp01 - ok
17:48:44.0500 3060 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
17:48:44.0500 3060 Sfloppy - ok
17:48:44.0546 3060 Simbad - ok
17:48:44.0578 3060 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
17:48:44.0593 3060 SLIP - ok
17:48:44.0640 3060 SndTAudio (ff6e54b49607cc0f37d675b763735570) C:\WINDOWS\system32\drivers\SndTAudio.sys
17:48:44.0640 3060 SndTAudio - ok
17:48:44.0812 3060 SNP2UVC (473f35e2a378b854731e67c377a3bea7) C:\WINDOWS\system32\DRIVERS\snp2uvc.sys
17:48:44.0828 3060 SNP2UVC - ok
17:48:44.0843 3060 Sparrow - ok
17:48:44.0906 3060 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
17:48:44.0906 3060 splitter - ok
17:48:44.0953 3060 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
17:48:44.0953 3060 sr - ok
17:48:45.0000 3060 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
17:48:45.0000 3060 Srv - ok
17:48:45.0046 3060 sscdbus (d6870895fe46a464a19141440eb6cc1e) C:\WINDOWS\system32\DRIVERS\sscdbus.sys
17:48:45.0046 3060 sscdbus - ok
17:48:45.0078 3060 sscdmdfl (0fe167362e4689b716cdc8d93adedda8) C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
17:48:45.0078 3060 sscdmdfl - ok
17:48:45.0109 3060 sscdmdm (55a15707e32b6709242ad127e62ca55a) C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
17:48:45.0109 3060 sscdmdm - ok
17:48:45.0140 3060 sscdserd (9fa66e361a99f8920c7609bae6814a0e) C:\WINDOWS\system32\DRIVERS\sscdserd.sys
17:48:45.0140 3060 sscdserd - ok
17:48:45.0203 3060 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
17:48:45.0203 3060 streamip - ok
17:48:45.0265 3060 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
17:48:45.0265 3060 swenum - ok
17:48:45.0312 3060 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
17:48:45.0312 3060 swmidi - ok
17:48:45.0343 3060 symc810 - ok
17:48:45.0359 3060 symc8xx - ok
17:48:45.0375 3060 sym_hi - ok
17:48:45.0390 3060 sym_u3 - ok
17:48:45.0453 3060 SynTP (8e25a1dbb8527b2074af9b682f818768) C:\WINDOWS\system32\DRIVERS\SynTP.sys
17:48:45.0453 3060 SynTP - ok
17:48:45.0500 3060 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
17:48:45.0500 3060 sysaudio - ok
17:48:45.0578 3060 Tcpip (4afb3b0919649f95c1964aa1fad27d73) C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:48:45.0578 3060 Tcpip - ok
17:48:45.0625 3060 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
17:48:45.0625 3060 TDPIPE - ok
17:48:45.0640 3060 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
17:48:45.0640 3060 TDTCP - ok
17:48:45.0687 3060 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
17:48:45.0687 3060 TermDD - ok
17:48:45.0718 3060 TosIde - ok
17:48:45.0781 3060 tosporte (8d624d3bd1f2d78bd1c01a2d4e954b4e) C:\WINDOWS\system32\DRIVERS\tosporte.sys
17:48:45.0781 3060 tosporte - ok
17:48:45.0812 3060 tosrfbd (8c3bfaf3fca90502e6fa35503b8e979e) C:\WINDOWS\system32\DRIVERS\tosrfbd.sys
17:48:45.0812 3060 tosrfbd - ok
17:48:45.0843 3060 tosrfbnp (90c8525bc578aaffe87c2d0ed4379e9e) C:\WINDOWS\system32\Drivers\tosrfbnp.sys
17:48:45.0843 3060 tosrfbnp - ok
17:48:45.0875 3060 Tosrfcom (4742f0bad28268ab093ed6f4ea857997) C:\WINDOWS\system32\Drivers\tosrfcom.sys
17:48:45.0875 3060 Tosrfcom - ok
17:48:45.0906 3060 Tosrfhid (7c807ba9660e2995cc0217a14a24094c) C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys
17:48:45.0921 3060 Tosrfhid - ok
17:48:45.0953 3060 tosrfnds (c52fd27b9adf3a1f22cb90e6bcf9b0cb) C:\WINDOWS\system32\DRIVERS\tosrfnds.sys
17:48:45.0953 3060 tosrfnds - ok
17:48:45.0984 3060 TosRfSnd (a4ce9572bc4ac8d329455059b43c5bea) C:\WINDOWS\system32\drivers\tosrfsnd.sys
17:48:45.0984 3060 TosRfSnd - ok
17:48:46.0015 3060 tosrfusb (01c90086cd37e7e8d9a827e24167fcb7) C:\WINDOWS\system32\DRIVERS\tosrfusb.sys
17:48:46.0015 3060 tosrfusb - ok
17:48:46.0078 3060 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
17:48:46.0078 3060 Udfs - ok
17:48:46.0093 3060 ultra - ok
17:48:46.0156 3060 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
17:48:46.0156 3060 Update - ok
17:48:46.0218 3060 USBAAPL (d4fb6ecc60a428564ba8768b0e23c0fc) C:\WINDOWS\system32\Drivers\usbaapl.sys
17:48:46.0218 3060 USBAAPL - ok
17:48:46.0265 3060 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:48:46.0265 3060 usbccgp - ok
17:48:46.0312 3060 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:48:46.0328 3060 usbehci - ok
17:48:46.0375 3060 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:48:46.0375 3060 usbhub - ok
17:48:46.0421 3060 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
17:48:46.0421 3060 usbscan - ok
17:48:46.0468 3060 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:48:46.0468 3060 usbstor - ok
17:48:46.0515 3060 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:48:46.0515 3060 usbuhci - ok
17:48:46.0578 3060 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
17:48:46.0578 3060 usbvideo - ok
17:48:46.0625 3060 uvclf (c019889035cdc1a06f2febc93cbb6897) C:\WINDOWS\system32\DRIVERS\uvclf.sys
17:48:46.0625 3060 uvclf - ok
17:48:46.0640 3060 VComm - ok
17:48:46.0656 3060 VcommMgr - ok
17:48:46.0718 3060 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
17:48:46.0718 3060 VgaSave - ok
17:48:46.0734 3060 ViaIde - ok
17:48:46.0781 3060 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
17:48:46.0781 3060 VolSnap - ok
17:48:46.0843 3060 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:48:46.0843 3060 Wanarp - ok
17:48:46.0921 3060 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
17:48:46.0921 3060 Wdf01000 - ok
17:48:46.0937 3060 WDICA - ok
17:48:46.0968 3060 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
17:48:46.0968 3060 wdmaud - ok
17:48:47.0140 3060 widseasd - ok
17:48:47.0265 3060 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
17:48:47.0265 3060 WS2IFSL - ok
17:48:47.0328 3060 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
17:48:47.0328 3060 WSTCODEC - ok
17:48:47.0390 3060 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
17:48:47.0390 3060 WudfPf - ok
17:48:47.0406 3060 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
17:48:47.0421 3060 WudfRd - ok
17:48:47.0484 3060 MBR (0x1B8) (7d62a6f2a9826d768f5027b51635512d) \Device\Harddisk0\DR0
17:48:47.0500 3060 \Device\Harddisk0\DR0 - ok
17:48:47.0515 3060 Boot (0x1200) (b9b5c2effce87b74ea37c28109aed26d) \Device\Harddisk0\DR0\Partition0
17:48:47.0515 3060 \Device\Harddisk0\DR0\Partition0 - ok
17:48:47.0546 3060 Boot (0x1200) (d56a3b990eaa43c9bf7798a85cb5e097) \Device\Harddisk0\DR0\Partition1
17:48:47.0562 3060 \Device\Harddisk0\DR0\Partition1 - ok
17:48:47.0562 3060 ============================================================
17:48:47.0562 3060 Scan finished
17:48:47.0562 3060 ============================================================
17:48:47.0578 0736 Detected object count: 0
17:48:47.0578 0736 Actual detected object count: 0
17:50:22.0765 3068 Deinitialize success
17:47:44.0015 2740 TDSS rootkit removing tool 2.6.6.0 Oct 7 2011 12:45:24
17:47:44.0234 2740 ============================================================
17:47:44.0234 2740 Current date / time: 2011/10/08 17:47:44.0234
17:47:44.0234 2740 SystemInfo:
17:47:44.0234 2740
17:47:44.0234 2740 OS Version: 5.1.2600 ServicePack: 3.0
17:47:44.0234 2740 Product type: Workstation
17:47:44.0234 2740 ComputerName: OKAYNETBOOK
17:47:44.0234 2740 UserName: okaynetbook
17:47:44.0234 2740 Windows directory: C:\WINDOWS
17:47:44.0234 2740 System windows directory: C:\WINDOWS
17:47:44.0234 2740 Processor architecture: Intel x86
17:47:44.0234 2740 Number of processors: 2
17:47:44.0234 2740 Page size: 0x1000
17:47:44.0234 2740 Boot type: Normal boot
17:47:44.0234 2740 ============================================================
17:47:45.0296 2740 Initialize success
17:47:46.0921 0484 ============================================================
17:47:46.0921 0484 Scan started
17:47:46.0921 0484 Mode: Manual;
17:47:46.0921 0484 ============================================================
17:47:48.0468 0484 2hotspot controller - ok
17:47:48.0500 0484 Abiosdsk - ok
17:47:48.0515 0484 abp480n5 - ok
17:47:48.0578 0484 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:47:48.0593 0484 ACPI - ok
17:47:48.0625 0484 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
17:47:48.0640 0484 ACPIEC - ok
17:47:48.0656 0484 adpu160m - ok
17:47:48.0718 0484 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
17:47:48.0718 0484 aec - ok
17:47:48.0796 0484 AegisP (023867b6606fbabcdd52e089c4a507da) C:\WINDOWS\system32\DRIVERS\AegisP.sys
17:47:48.0796 0484 AegisP - ok
17:47:48.0843 0484 AFD (355556d9e580915118cd7ef736653a89) C:\WINDOWS\System32\drivers\afd.sys
17:47:48.0875 0484 AFD - ok
17:47:48.0937 0484 Aha154x - ok
17:47:48.0953 0484 aic78u2 - ok
17:47:48.0984 0484 aic78xx - ok
17:47:49.0015 0484 AliIde - ok
17:47:49.0156 0484 Ambfilt (267fc636801edc5ab28e14036349e3be) C:\WINDOWS\system32\drivers\Ambfilt.sys
17:47:49.0250 0484 Ambfilt - ok
17:47:49.0265 0484 amsint - ok
17:47:49.0328 0484 asc - ok
17:47:49.0359 0484 asc3350p - ok
17:47:49.0375 0484 asc3550 - ok
17:47:49.0500 0484 AsusACPI (12415a4b61ded200fe9932b47a35fa42) C:\WINDOWS\system32\DRIVERS\ASUSACPI.sys
17:47:49.0500 0484 AsusACPI - ok
17:47:49.0546 0484 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:47:49.0546 0484 AsyncMac - ok
17:47:49.0625 0484 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\drivers\atapi.sys
17:47:49.0625 0484 atapi - ok
17:47:49.0687 0484 Atdisk - ok
17:47:49.0734 0484 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:47:49.0750 0484 Atmarpc - ok
17:47:49.0828 0484 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
17:47:49.0828 0484 audstub - ok
17:47:49.0890 0484 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
17:47:49.0890 0484 Beep - ok
17:47:49.0921 0484 BT - ok
17:47:49.0953 0484 btaudio - ok
17:47:49.0984 0484 Btcsrusb - ok
17:47:50.0000 0484 BTDriver - ok
17:47:50.0078 0484 BthEnum (b279426e3c0c344893ed78a613a73bde) C:\WINDOWS\system32\DRIVERS\BthEnum.sys
17:47:50.0078 0484 BthEnum - ok
17:47:50.0125 0484 BtHidBus (ce441ccd98c5ecb10cb12fcaf97322ec) C:\WINDOWS\system32\Drivers\BtHidBus.sys
17:47:50.0140 0484 BtHidBus - ok
17:47:50.0187 0484 BTHMODEM (fca6f069597b62d42495191ace3fc6c1) C:\WINDOWS\system32\DRIVERS\bthmodem.sys
17:47:50.0203 0484 BTHMODEM - ok
17:47:50.0234 0484 BthPan (80602b8746d3738f5886ce3d67ef06b6) C:\WINDOWS\system32\DRIVERS\bthpan.sys
17:47:50.0234 0484 BthPan - ok
17:47:50.0296 0484 BTHPORT (f338662a6c1fc11dd9508f6dff2c06a2) C:\WINDOWS\system32\Drivers\BTHport.sys
17:47:50.0296 0484 BTHPORT - ok
17:47:50.0359 0484 BTHUSB (61364cd71ef63b0f038b7e9df00f1efa) C:\WINDOWS\system32\Drivers\BTHUSB.sys
17:47:50.0359 0484 BTHUSB - ok
17:47:50.0421 0484 btnetBUs (d3c277a51ef9e2ec972d6221f99c0b6d) C:\WINDOWS\system32\Drivers\btnetBus.sys
17:47:50.0421 0484 btnetBUs - ok
17:47:50.0437 0484 BTWDNDIS - ok
17:47:50.0500 0484 BTWUSB - ok
17:47:50.0515 0484 catchme - ok
17:47:50.0562 0484 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
17:47:50.0578 0484 cbidf2k - ok
17:47:50.0609 0484 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
17:47:50.0609 0484 CCDECODE - ok
17:47:50.0625 0484 cd20xrnt - ok
17:47:50.0687 0484 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
17:47:50.0687 0484 Cdaudio - ok
17:47:50.0718 0484 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
17:47:50.0734 0484 Cdfs - ok
17:47:50.0796 0484 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:47:50.0796 0484 Cdrom - ok
17:47:50.0812 0484 Changer - ok
17:47:50.0906 0484 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
17:47:50.0921 0484 CmBatt - ok
17:47:50.0937 0484 CmdIde - ok
17:47:50.0968 0484 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
17:47:50.0984 0484 Compbatt - ok
17:47:51.0015 0484 Cpqarray - ok
17:47:51.0109 0484 cpuz132 (ef35b7c69a4d78ebddb5eed96e0ecd42) C:\Program Files\CPUID\PC Wizard 2010\pcwiz32.sys
17:47:51.0109 0484 cpuz132 - ok
17:47:51.0250 0484 CrystalSysInfo - ok
17:47:51.0265 0484 dac2w2k - ok
17:47:51.0281 0484 dac960nt - ok
17:47:51.0359 0484 dc3d (b6672f62f75fb952d7ae7cb4e80011a9) C:\WINDOWS\system32\DRIVERS\dc3d.sys
17:47:51.0359 0484 dc3d - ok
17:47:51.0406 0484 dgderdrv - ok
17:47:51.0468 0484 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
17:47:51.0468 0484 Disk - ok
17:47:51.0546 0484 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
17:47:51.0593 0484 dmboot - ok
17:47:51.0656 0484 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
17:47:51.0671 0484 dmio - ok
17:47:51.0734 0484 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
17:47:51.0734 0484 dmload - ok
17:47:51.0781 0484 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
17:47:51.0781 0484 DMusic - ok
17:47:51.0812 0484 dpti2o - ok
17:47:51.0843 0484 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
17:47:51.0843 0484 drmkaud - ok
17:47:51.0890 0484 DrvAgent32 (651554e483712b708ede864d0ca1aa73) C:\WINDOWS\system32\Drivers\DrvAgent32.sys
17:47:51.0890 0484 DrvAgent32 - ok
17:47:51.0953 0484 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
17:47:51.0968 0484 Fastfat - ok
17:47:52.0031 0484 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
17:47:52.0031 0484 Fdc - ok
17:47:52.0062 0484 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
17:47:52.0062 0484 Fips - ok
17:47:52.0093 0484 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
17:47:52.0093 0484 Flpydisk - ok
17:47:52.0140 0484 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
17:47:52.0140 0484 FltMgr - ok
17:47:52.0203 0484 fssfltr (960f5e5e4e1f720465311ac68a99c2df) C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
17:47:52.0203 0484 fssfltr - ok
17:47:52.0234 0484 FsUsbExDisk - ok
17:47:52.0296 0484 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:47:52.0296 0484 Fs_Rec - ok
17:47:52.0359 0484 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:47:52.0359 0484 Ftdisk - ok
17:47:52.0421 0484 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:47:52.0421 0484 Gpc - ok
17:47:52.0515 0484 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
17:47:52.0515 0484 HDAudBus - ok
17:47:52.0593 0484 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:47:52.0593 0484 HidUsb - ok
17:47:52.0625 0484 hpn - ok
17:47:52.0687 0484 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
17:47:52.0703 0484 HTTP - ok
17:47:52.0718 0484 i2omgmt - ok
17:47:52.0750 0484 i2omp - ok
17:47:52.0796 0484 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:47:52.0796 0484 i8042prt - ok
17:47:53.0093 0484 ialm (48846b31be5a4fa662ccfde7a1ba86b9) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
17:47:53.0343 0484 ialm - ok
17:47:53.0406 0484 iaStor (db81f413fa4e3f328cad7b5d59ef3f21) C:\WINDOWS\system32\drivers\iaStor.sys
17:47:53.0406 0484 iaStor - ok
17:47:53.0468 0484 IDMTDI (330a6a0baf4fd945bde14c7b1d88d9b9) C:\WINDOWS\system32\DRIVERS\idmtdi.sys
17:47:53.0484 0484 IDMTDI - ok
17:47:53.0562 0484 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
17:47:53.0562 0484 Imapi - ok
17:47:53.0578 0484 ini910u - ok
17:47:53.0812 0484 IntcAzAudAddService (440317795d6f9af27bf305036ad43d1d) C:\WINDOWS\system32\drivers\RtkHDAud.sys
17:47:54.0046 0484 IntcAzAudAddService - ok
17:47:54.0078 0484 IntelIde - ok
17:47:54.0125 0484 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
17:47:54.0125 0484 intelppm - ok
17:47:54.0156 0484 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
17:47:54.0156 0484 Ip6Fw - ok
17:47:54.0187 0484 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:47:54.0187 0484 IpFilterDriver - ok
17:47:54.0203 0484 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:47:54.0203 0484 IpInIp - ok
17:47:54.0250 0484 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:47:54.0250 0484 IpNat - ok
17:47:54.0296 0484 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:47:54.0296 0484 IPSec - ok
17:47:54.0343 0484 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
17:47:54.0343 0484 IRENUM - ok
17:47:54.0390 0484 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:47:54.0390 0484 isapnp - ok
17:47:54.0437 0484 IvtBtBUs (71e1fc547cc488d5cd7bf0860c96f5af) C:\WINDOWS\system32\Drivers\IvtBtBus.sys
17:47:54.0437 0484 IvtBtBUs - ok
17:47:54.0515 0484 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:47:54.0515 0484 Kbdclass - ok
17:47:54.0562 0484 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
17:47:54.0578 0484 kmixer - ok
17:47:54.0625 0484 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
17:47:54.0640 0484 KSecDD - ok
17:47:54.0671 0484 L1c (31ea3f3219abdd2a6ee0969cb3dc54e6) C:\WINDOWS\system32\DRIVERS\l1c51x86.sys
17:47:54.0671 0484 L1c - ok
17:47:54.0703 0484 lbrtfdc - ok
17:47:54.0796 0484 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
17:47:54.0796 0484 mnmdd - ok
17:47:54.0859 0484 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
17:47:54.0859 0484 Modem - ok
17:47:54.0953 0484 Monfilt (c7d9f9717916b34c1b00dd4834af485c) C:\WINDOWS\system32\drivers\Monfilt.sys
17:47:55.0015 0484 Monfilt - ok
17:47:55.0062 0484 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:47:55.0062 0484 Mouclass - ok
17:47:55.0109 0484 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:47:55.0125 0484 mouhid - ok
17:47:55.0171 0484 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
17:47:55.0171 0484 MountMgr - ok
17:47:55.0218 0484 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
17:47:55.0218 0484 MpFilter - ok
17:47:55.0296 0484 MpKsl3035e4d2 - ok
17:47:55.0328 0484 MpKsl45925265 - ok
17:47:55.0343 0484 MpKsl89fe49ca - ok
17:47:55.0359 0484 MpKsl92706dd6 - ok
17:47:55.0375 0484 MpKsl9c8abaa8 - ok
17:47:55.0390 0484 MpKslc6cef8fd - ok
17:47:55.0406 0484 MpKslf6aff973 - ok
17:47:55.0421 0484 mraid35x - ok
17:47:55.0484 0484 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:47:55.0500 0484 MRxDAV - ok
17:47:55.0546 0484 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:47:55.0562 0484 MRxSmb - ok
17:47:55.0625 0484 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
17:47:55.0625 0484 Msfs - ok
17:47:55.0671 0484 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:47:55.0671 0484 MSKSSRV - ok
17:47:55.0703 0484 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:47:55.0703 0484 MSPCLOCK - ok
17:47:55.0781 0484 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
17:47:55.0781 0484 MSPQM - ok
17:47:55.0843 0484 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:47:55.0843 0484 mssmbios - ok
17:47:55.0890 0484 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
17:47:55.0890 0484 MSTEE - ok
17:47:55.0937 0484 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
17:47:55.0937 0484 Mup - ok
17:47:55.0984 0484 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
17:47:55.0984 0484 NABTSFEC - ok
17:47:56.0031 0484 NANMp50 - ok
17:47:56.0109 0484 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
17:47:56.0109 0484 NDIS - ok
17:47:56.0171 0484 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
17:47:56.0171 0484 NdisIP - ok
17:47:56.0218 0484 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:47:56.0234 0484 NdisTapi - ok
17:47:56.0281 0484 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:47:56.0281 0484 Ndisuio - ok
17:47:56.0312 0484 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:47:56.0328 0484 NdisWan - ok
17:47:56.0375 0484 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
17:47:56.0375 0484 NDProxy - ok
17:47:56.0421 0484 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
17:47:56.0421 0484 NetBIOS - ok
17:47:56.0484 0484 NetBT (629b6e95eabeb75a53199eb7066138c2) C:\WINDOWS\system32\DRIVERS\netbt.sys
17:47:56.0500 0484 NetBT - ok
17:47:56.0593 0484 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
17:47:56.0593 0484 Npfs - ok
17:47:56.0609 0484 NSNDIS5 - ok
17:47:56.0656 0484 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
17:47:56.0671 0484 Ntfs - ok
17:47:56.0750 0484 NuidFltr (ef2b9a14ec5dd74ade3417faf1b45e16) C:\WINDOWS\system32\DRIVERS\NuidFltr.sys
17:47:56.0750 0484 NuidFltr - ok
17:47:56.0796 0484 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
17:47:56.0796 0484 Null - ok
17:47:56.0859 0484 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:47:56.0859 0484 NwlnkFlt - ok
17:47:56.0890 0484 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:47:56.0890 0484 NwlnkFwd - ok
17:47:56.0968 0484 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\drivers\Parport.sys
17:47:56.0984 0484 Parport - ok
17:47:57.0031 0484 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
17:47:57.0031 0484 PartMgr - ok
17:47:57.0078 0484 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
17:47:57.0078 0484 ParVdm - ok
17:47:57.0156 0484 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
17:47:57.0156 0484 pccsmcfd - ok
17:47:57.0281 0484 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
17:47:57.0296 0484 PCI - ok
17:47:57.0328 0484 PCIDump - ok
17:47:57.0343 0484 PCIIde - ok
17:47:57.0390 0484 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
17:47:57.0390 0484 Pcmcia - ok
17:47:57.0421 0484 Pcouffin - ok
17:47:57.0437 0484 PDCOMP - ok
17:47:57.0453 0484 PDFRAME - ok
17:47:57.0484 0484 PDRELI - ok
17:47:57.0500 0484 PDRFRAME - ok
17:47:57.0515 0484 perc2 - ok
17:47:57.0531 0484 perc2hib - ok
17:47:57.0609 0484 Point32 (60a044879c4fa76314494f5fddc43b93) C:\WINDOWS\system32\DRIVERS\point32.sys
17:47:57.0609 0484 Point32 - ok
17:47:57.0656 0484 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:47:57.0656 0484 PptpMiniport - ok
17:47:57.0703 0484 prodrv06 (18d9789a4664bf417eea944d2776091a) C:\WINDOWS\System32\drivers\prodrv06.sys
17:47:57.0703 0484 prodrv06 - ok
17:47:57.0750 0484 prohlp02 (8cc9671a7ed2902e747ee0892e1c8575) C:\WINDOWS\system32\drivers\prohlp02.sys
17:47:57.0750 0484 prohlp02 - ok
17:47:57.0796 0484 prosync1 (960bce3ed38761b446aabac06c76badf) C:\WINDOWS\system32\drivers\prosync1.sys
17:47:57.0796 0484 prosync1 - ok
17:47:57.0828 0484 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
17:47:57.0828 0484 PSched - ok
17:47:57.0875 0484 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:47:57.0875 0484 Ptilink - ok
17:47:57.0890 0484 ql1080 - ok
17:47:57.0906 0484 Ql10wnt - ok
17:47:57.0937 0484 ql12160 - ok
17:47:57.0953 0484 ql1240 - ok
17:47:57.0968 0484 ql1280 - ok
17:47:58.0015 0484 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:47:58.0015 0484 RasAcd - ok
17:47:58.0031 0484 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:47:58.0031 0484 Rasl2tp - ok
17:47:58.0078 0484 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:47:58.0078 0484 RasPppoe - ok
17:47:58.0093 0484 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
17:47:58.0109 0484 Raspti - ok
17:47:58.0156 0484 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:47:58.0156 0484 Rdbss - ok
17:47:58.0203 0484 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:47:58.0203 0484 RDPCDD - ok
17:47:58.0281 0484 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
17:47:58.0281 0484 RDPWD - ok
17:47:58.0343 0484 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
17:47:58.0343 0484 redbook - ok
17:47:58.0421 0484 RFCOMM (851c30df2807fcfa21e4c681a7d6440e) C:\WINDOWS\system32\DRIVERS\rfcomm.sys
17:47:58.0421 0484 RFCOMM - ok
17:47:58.0468 0484 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
17:47:58.0468 0484 ROOTMODEM - ok
17:47:58.0609 0484 RT80x86 (121d1b58598d4182adf715f9c0218ce4) C:\WINDOWS\system32\DRIVERS\RT2860.sys
17:47:58.0687 0484 RT80x86 - ok
17:47:58.0750 0484 RTLWUSB (0534004db838fd5ae5f64e8d78a544dd) C:\WINDOWS\system32\DRIVERS\RTL8187.sys
17:47:58.0765 0484 RTLWUSB - ok
17:47:58.0875 0484 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:47:58.0875 0484 Secdrv - ok
17:47:58.0937 0484 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\drivers\Serial.sys
17:47:58.0953 0484 Serial - ok
17:47:59.0031 0484 sfhlp01 (462aee0ea0481ea8bd45cac876a4ccc4) C:\WINDOWS\system32\drivers\sfhlp01.sys
17:47:59.0031 0484 sfhlp01 - ok
17:47:59.0078 0484 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
17:47:59.0078 0484 Sfloppy - ok
17:47:59.0125 0484 Simbad - ok
17:47:59.0171 0484 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
17:47:59.0171 0484 SLIP - ok
17:47:59.0265 0484 SndTAudio (ff6e54b49607cc0f37d675b763735570) C:\WINDOWS\system32\drivers\SndTAudio.sys
17:47:59.0265 0484 SndTAudio - ok
17:47:59.0375 0484 SNP2UVC (473f35e2a378b854731e67c377a3bea7) C:\WINDOWS\system32\DRIVERS\snp2uvc.sys
17:47:59.0437 0484 SNP2UVC - ok
17:47:59.0484 0484 Sparrow - ok
17:47:59.0546 0484 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
17:47:59.0546 0484 splitter - ok
17:47:59.0640 0484 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
17:47:59.0640 0484 sr - ok
17:47:59.0703 0484 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
17:47:59.0718 0484 Srv - ok
17:47:59.0765 0484 sscdbus (d6870895fe46a464a19141440eb6cc1e) C:\WINDOWS\system32\DRIVERS\sscdbus.sys
17:47:59.0781 0484 sscdbus - ok
17:47:59.0812 0484 sscdmdfl (0fe167362e4689b716cdc8d93adedda8) C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
17:47:59.0812 0484 sscdmdfl - ok
17:47:59.0859 0484 sscdmdm (55a15707e32b6709242ad127e62ca55a) C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
17:47:59.0859 0484 sscdmdm - ok
17:47:59.0906 0484 sscdserd (9fa66e361a99f8920c7609bae6814a0e) C:\WINDOWS\system32\DRIVERS\sscdserd.sys
17:47:59.0906 0484 sscdserd - ok
17:47:59.0984 0484 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
17:47:59.0984 0484 streamip - ok
17:48:00.0046 0484 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
17:48:00.0046 0484 swenum - ok
17:48:00.0125 0484 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
17:48:00.0125 0484 swmidi - ok
17:48:00.0156 0484 symc810 - ok
17:48:00.0187 0484 symc8xx - ok
17:48:00.0218 0484 sym_hi - ok
17:48:00.0234 0484 sym_u3 - ok
17:48:00.0296 0484 SynTP (8e25a1dbb8527b2074af9b682f818768) C:\WINDOWS\system32\DRIVERS\SynTP.sys
17:48:00.0312 0484 SynTP - ok
17:48:00.0375 0484 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
17:48:00.0375 0484 sysaudio - ok
17:48:00.0437 0484 Tcpip (4afb3b0919649f95c1964aa1fad27d73) C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:48:00.0453 0484 Tcpip - ok
17:48:00.0515 0484 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
17:48:00.0515 0484 TDPIPE - ok
17:48:00.0531 0484 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
17:48:00.0546 0484 TDTCP - ok
17:48:00.0593 0484 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
17:48:00.0593 0484 TermDD - ok
17:48:00.0656 0484 TosIde - ok
17:48:00.0718 0484 tosporte (8d624d3bd1f2d78bd1c01a2d4e954b4e) C:\WINDOWS\system32\DRIVERS\tosporte.sys
17:48:00.0734 0484 tosporte - ok
17:48:00.0781 0484 tosrfbd (8c3bfaf3fca90502e6fa35503b8e979e) C:\WINDOWS\system32\DRIVERS\tosrfbd.sys
17:48:00.0781 0484 tosrfbd - ok
17:48:00.0812 0484 tosrfbnp (90c8525bc578aaffe87c2d0ed4379e9e) C:\WINDOWS\system32\Drivers\tosrfbnp.sys
17:48:00.0812 0484 tosrfbnp - ok
17:48:00.0859 0484 Tosrfcom (4742f0bad28268ab093ed6f4ea857997) C:\WINDOWS\system32\Drivers\tosrfcom.sys
17:48:00.0859 0484 Tosrfcom - ok
17:48:00.0890 0484 Tosrfhid (7c807ba9660e2995cc0217a14a24094c) C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys
17:48:00.0890 0484 Tosrfhid - ok
17:48:00.0937 0484 tosrfnds (c52fd27b9adf3a1f22cb90e6bcf9b0cb) C:\WINDOWS\system32\DRIVERS\tosrfnds.sys
17:48:00.0937 0484 tosrfnds - ok
17:48:00.0968 0484 TosRfSnd (a4ce9572bc4ac8d329455059b43c5bea) C:\WINDOWS\system32\drivers\tosrfsnd.sys
17:48:00.0968 0484 TosRfSnd - ok
17:48:01.0015 0484 tosrfusb (01c90086cd37e7e8d9a827e24167fcb7) C:\WINDOWS\system32\DRIVERS\tosrfusb.sys
17:48:01.0015 0484 tosrfusb - ok
17:48:01.0093 0484 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
17:48:01.0093 0484 Udfs - ok
17:48:01.0109 0484 ultra - ok
17:48:01.0171 0484 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
17:48:01.0171 0484 Update - ok
17:48:01.0234 0484 USBAAPL (d4fb6ecc60a428564ba8768b0e23c0fc) C:\WINDOWS\system32\Drivers\usbaapl.sys
17:48:01.0234 0484 USBAAPL - ok
17:48:01.0281 0484 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:48:01.0281 0484 usbccgp - ok
17:48:01.0328 0484 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:48:01.0328 0484 usbehci - ok
17:48:01.0390 0484 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:48:01.0390 0484 usbhub - ok
17:48:01.0421 0484 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
17:48:01.0421 0484 usbscan - ok
17:48:01.0468 0484 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:48:01.0468 0484 usbstor - ok
17:48:01.0500 0484 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:48:01.0515 0484 usbuhci - ok
17:48:01.0578 0484 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
17:48:01.0578 0484 usbvideo - ok
17:48:01.0640 0484 uvclf (c019889035cdc1a06f2febc93cbb6897) C:\WINDOWS\system32\DRIVERS\uvclf.sys
17:48:01.0640 0484 uvclf - ok
17:48:01.0656 0484 VComm - ok
17:48:01.0687 0484 VcommMgr - ok
17:48:01.0750 0484 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
17:48:01.0750 0484 VgaSave - ok
17:48:01.0781 0484 ViaIde - ok
17:48:01.0828 0484 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
17:48:01.0828 0484 VolSnap - ok
17:48:01.0906 0484 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:48:01.0906 0484 Wanarp - ok
17:48:01.0968 0484 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
17:48:02.0000 0484 Wdf01000 - ok
17:48:02.0015 0484 WDICA - ok
17:48:02.0078 0484 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
17:48:02.0093 0484 wdmaud - ok
17:48:02.0265 0484 widseasd - ok
17:48:02.0421 0484 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
17:48:02.0421 0484 WS2IFSL - ok
17:48:02.0515 0484 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
17:48:02.0515 0484 WSTCODEC - ok
17:48:02.0609 0484 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
17:48:02.0609 0484 WudfPf - ok
17:48:02.0671 0484 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
17:48:02.0671 0484 WudfRd - ok
17:48:02.0796 0484 MBR (0x1B8) (7d62a6f2a9826d768f5027b51635512d) \Device\Harddisk0\DR0
17:48:02.0828 0484 \Device\Harddisk0\DR0 - ok
17:48:02.0828 0484 Boot (0x1200) (b9b5c2effce87b74ea37c28109aed26d) \Device\Harddisk0\DR0\Partition0
17:48:02.0843 0484 \Device\Harddisk0\DR0\Partition0 - ok
17:48:02.0859 0484 Boot (0x1200) (d56a3b990eaa43c9bf7798a85cb5e097) \Device\Harddisk0\DR0\Partition1
17:48:02.0875 0484 \Device\Harddisk0\DR0\Partition1 - ok
17:48:02.0875 0484 ============================================================
17:48:02.0875 0484 Scan finished
17:48:02.0875 0484 ============================================================
17:48:02.0906 2984 Detected object count: 0
17:48:02.0906 2984 Actual detected object count: 0
17:48:36.0421 3060 ============================================================
17:48:36.0421 3060 Scan started
17:48:36.0421 3060 Mode: Manual;
17:48:36.0421 3060 ============================================================
17:48:36.0656 3060 2hotspot controller - ok
17:48:36.0687 3060 Abiosdsk - ok
17:48:36.0703 3060 abp480n5 - ok
17:48:36.0765 3060 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:48:36.0765 3060 ACPI - ok
17:48:36.0796 3060 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
17:48:36.0796 3060 ACPIEC - ok
17:48:36.0812 3060 adpu160m - ok
17:48:36.0859 3060 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
17:48:36.0859 3060 aec - ok
17:48:36.0906 3060 AegisP (023867b6606fbabcdd52e089c4a507da) C:\WINDOWS\system32\DRIVERS\AegisP.sys
17:48:36.0906 3060 AegisP - ok
17:48:36.0953 3060 AFD (355556d9e580915118cd7ef736653a89) C:\WINDOWS\System32\drivers\afd.sys
17:48:36.0953 3060 AFD - ok
17:48:36.0968 3060 Aha154x - ok
17:48:36.0984 3060 aic78u2 - ok
17:48:37.0000 3060 aic78xx - ok
17:48:37.0031 3060 AliIde - ok
17:48:37.0140 3060 Ambfilt (267fc636801edc5ab28e14036349e3be) C:\WINDOWS\system32\drivers\Ambfilt.sys
17:48:37.0156 3060 Ambfilt - ok
17:48:37.0187 3060 amsint - ok
17:48:37.0203 3060 asc - ok
17:48:37.0234 3060 asc3350p - ok
17:48:37.0250 3060 asc3550 - ok
17:48:37.0328 3060 AsusACPI (12415a4b61ded200fe9932b47a35fa42) C:\WINDOWS\system32\DRIVERS\ASUSACPI.sys
17:48:37.0328 3060 AsusACPI - ok
17:48:37.0375 3060 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:48:37.0375 3060 AsyncMac - ok
17:48:37.0421 3060 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\drivers\atapi.sys
17:48:37.0421 3060 atapi - ok
17:48:37.0437 3060 Atdisk - ok
17:48:37.0468 3060 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:48:37.0468 3060 Atmarpc - ok
17:48:37.0531 3060 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
17:48:37.0531 3060 audstub - ok
17:48:37.0578 3060 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
17:48:37.0578 3060 Beep - ok
17:48:37.0609 3060 BT - ok
17:48:37.0625 3060 btaudio - ok
17:48:37.0656 3060 Btcsrusb - ok
17:48:37.0671 3060 BTDriver - ok
17:48:37.0718 3060 BthEnum (b279426e3c0c344893ed78a613a73bde) C:\WINDOWS\system32\DRIVERS\BthEnum.sys
17:48:37.0718 3060 BthEnum - ok
17:48:37.0765 3060 BtHidBus (ce441ccd98c5ecb10cb12fcaf97322ec) C:\WINDOWS\system32\Drivers\BtHidBus.sys
17:48:37.0765 3060 BtHidBus - ok
17:48:37.0796 3060 BTHMODEM (fca6f069597b62d42495191ace3fc6c1) C:\WINDOWS\system32\DRIVERS\bthmodem.sys
17:48:37.0812 3060 BTHMODEM - ok
17:48:37.0828 3060 BthPan (80602b8746d3738f5886ce3d67ef06b6) C:\WINDOWS\system32\DRIVERS\bthpan.sys
17:48:37.0828 3060 BthPan - ok
17:48:37.0875 3060 BTHPORT (f338662a6c1fc11dd9508f6dff2c06a2) C:\WINDOWS\system32\Drivers\BTHport.sys
17:48:37.0875 3060 BTHPORT - ok
17:48:37.0921 3060 BTHUSB (61364cd71ef63b0f038b7e9df00f1efa) C:\WINDOWS\system32\Drivers\BTHUSB.sys
17:48:37.0921 3060 BTHUSB - ok
17:48:37.0968 3060 btnetBUs (d3c277a51ef9e2ec972d6221f99c0b6d) C:\WINDOWS\system32\Drivers\btnetBus.sys
17:48:37.0984 3060 btnetBUs - ok
17:48:38.0000 3060 BTWDNDIS - ok
17:48:38.0015 3060 BTWUSB - ok
17:48:38.0015 3060 catchme - ok
17:48:38.0062 3060 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
17:48:38.0062 3060 cbidf2k - ok
17:48:38.0109 3060 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
17:48:38.0109 3060 CCDECODE - ok
17:48:38.0125 3060 cd20xrnt - ok
17:48:38.0156 3060 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
17:48:38.0156 3060 Cdaudio - ok
17:48:38.0187 3060 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
17:48:38.0187 3060 Cdfs - ok
17:48:38.0234 3060 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:48:38.0234 3060 Cdrom - ok
17:48:38.0250 3060 Changer - ok
17:48:38.0328 3060 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
17:48:38.0328 3060 CmBatt - ok
17:48:38.0343 3060 CmdIde - ok
17:48:38.0359 3060 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
17:48:38.0359 3060 Compbatt - ok
17:48:38.0390 3060 Cpqarray - ok
17:48:38.0484 3060 cpuz132 (ef35b7c69a4d78ebddb5eed96e0ecd42) C:\Program Files\CPUID\PC Wizard 2010\pcwiz32.sys
17:48:38.0484 3060 cpuz132 - ok
17:48:38.0609 3060 CrystalSysInfo - ok
17:48:38.0625 3060 dac2w2k - ok
17:48:38.0640 3060 dac960nt - ok
17:48:38.0703 3060 dc3d (b6672f62f75fb952d7ae7cb4e80011a9) C:\WINDOWS\system32\DRIVERS\dc3d.sys
17:48:38.0703 3060 dc3d - ok
17:48:38.0718 3060 dgderdrv - ok
17:48:38.0765 3060 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
17:48:38.0765 3060 Disk - ok
17:48:38.0828 3060 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
17:48:38.0843 3060 dmboot - ok
17:48:38.0890 3060 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
17:48:38.0890 3060 dmio - ok
17:48:38.0921 3060 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
17:48:38.0921 3060 dmload - ok
17:48:38.0968 3060 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
17:48:38.0968 3060 DMusic - ok
17:48:38.0984 3060 dpti2o - ok
17:48:39.0015 3060 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
17:48:39.0015 3060 drmkaud - ok
17:48:39.0062 3060 DrvAgent32 (651554e483712b708ede864d0ca1aa73) C:\WINDOWS\system32\Drivers\DrvAgent32.sys
17:48:39.0062 3060 DrvAgent32 - ok
17:48:39.0140 3060 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
17:48:39.0140 3060 Fastfat - ok
17:48:39.0187 3060 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
17:48:39.0187 3060 Fdc - ok
17:48:39.0218 3060 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
17:48:39.0218 3060 Fips - ok
17:48:39.0250 3060 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
17:48:39.0250 3060 Flpydisk - ok
17:48:39.0281 3060 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
17:48:39.0281 3060 FltMgr - ok
17:48:39.0328 3060 fssfltr (960f5e5e4e1f720465311ac68a99c2df) C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
17:48:39.0328 3060 fssfltr - ok
17:48:39.0343 3060 FsUsbExDisk - ok
17:48:39.0390 3060 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:48:39.0390 3060 Fs_Rec - ok
17:48:39.0437 3060 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:48:39.0437 3060 Ftdisk - ok
17:48:39.0468 3060 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:48:39.0468 3060 Gpc - ok
17:48:39.0515 3060 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
17:48:39.0531 3060 HDAudBus - ok
17:48:39.0562 3060 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:48:39.0562 3060 HidUsb - ok
17:48:39.0593 3060 hpn - ok
17:48:39.0656 3060 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
17:48:39.0656 3060 HTTP - ok
17:48:39.0671 3060 i2omgmt - ok
17:48:39.0687 3060 i2omp - ok
17:48:39.0750 3060 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:48:39.0750 3060 i8042prt - ok
17:48:39.0968 3060 ialm (48846b31be5a4fa662ccfde7a1ba86b9) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
17:48:40.0031 3060 ialm - ok
17:48:40.0093 3060 iaStor (db81f413fa4e3f328cad7b5d59ef3f21) C:\WINDOWS\system32\drivers\iaStor.sys
17:48:40.0093 3060 iaStor - ok
17:48:40.0156 3060 IDMTDI (330a6a0baf4fd945bde14c7b1d88d9b9) C:\WINDOWS\system32\DRIVERS\idmtdi.sys
17:48:40.0156 3060 IDMTDI - ok
17:48:40.0203 3060 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
17:48:40.0203 3060 Imapi - ok
17:48:40.0218 3060 ini910u - ok
17:48:40.0468 3060 IntcAzAudAddService (440317795d6f9af27bf305036ad43d1d) C:\WINDOWS\system32\drivers\RtkHDAud.sys
17:48:40.0531 3060 IntcAzAudAddService - ok
17:48:40.0546 3060 IntelIde - ok
17:48:40.0593 3060 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
17:48:40.0593 3060 intelppm - ok
17:48:40.0625 3060 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
17:48:40.0625 3060 Ip6Fw - ok
17:48:40.0656 3060 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:48:40.0656 3060 IpFilterDriver - ok
17:48:40.0671 3060 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:48:40.0671 3060 IpInIp - ok
17:48:40.0703 3060 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:48:40.0718 3060 IpNat - ok
17:48:40.0750 3060 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:48:40.0750 3060 IPSec - ok
17:48:40.0796 3060 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
17:48:40.0796 3060 IRENUM - ok
17:48:40.0828 3060 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:48:40.0843 3060 isapnp - ok
17:48:40.0875 3060 IvtBtBUs (71e1fc547cc488d5cd7bf0860c96f5af) C:\WINDOWS\system32\Drivers\IvtBtBus.sys
17:48:40.0875 3060 IvtBtBUs - ok
17:48:40.0937 3060 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:48:40.0937 3060 Kbdclass - ok
17:48:40.0984 3060 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
17:48:40.0984 3060 kmixer - ok
17:48:41.0031 3060 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
17:48:41.0031 3060 KSecDD - ok
17:48:41.0078 3060 L1c (31ea3f3219abdd2a6ee0969cb3dc54e6) C:\WINDOWS\system32\DRIVERS\l1c51x86.sys
17:48:41.0078 3060 L1c - ok
17:48:41.0093 3060 lbrtfdc - ok
17:48:41.0171 3060 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
17:48:41.0171 3060 mnmdd - ok
17:48:41.0218 3060 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
17:48:41.0234 3060 Modem - ok
17:48:41.0312 3060 Monfilt (c7d9f9717916b34c1b00dd4834af485c) C:\WINDOWS\system32\drivers\Monfilt.sys
17:48:41.0328 3060 Monfilt - ok
17:48:41.0375 3060 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:48:41.0375 3060 Mouclass - ok
17:48:41.0421 3060 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:48:41.0421 3060 mouhid - ok
17:48:41.0453 3060 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
17:48:41.0453 3060 MountMgr - ok
17:48:41.0500 3060 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
17:48:41.0500 3060 MpFilter - ok
17:48:41.0578 3060 MpKsl3035e4d2 - ok
17:48:41.0593 3060 MpKsl45925265 - ok
17:48:41.0593 3060 MpKsl89fe49ca - ok
17:48:41.0609 3060 MpKsl92706dd6 - ok
17:48:41.0625 3060 MpKsl9c8abaa8 - ok
17:48:41.0625 3060 MpKslc6cef8fd - ok
17:48:41.0640 3060 MpKslf6aff973 - ok
17:48:41.0656 3060 mraid35x - ok
17:48:41.0718 3060 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:48:41.0718 3060 MRxDAV - ok
17:48:41.0781 3060 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:48:41.0796 3060 MRxSmb - ok
17:48:41.0828 3060 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
17:48:41.0828 3060 Msfs - ok
17:48:41.0875 3060 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:48:41.0875 3060 MSKSSRV - ok
17:48:41.0906 3060 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:48:41.0906 3060 MSPCLOCK - ok
17:48:41.0937 3060 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
17:48:41.0937 3060 MSPQM - ok
17:48:41.0984 3060 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:48:41.0984 3060 mssmbios - ok
17:48:42.0000 3060 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
17:48:42.0000 3060 MSTEE - ok
17:48:42.0046 3060 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
17:48:42.0046 3060 Mup - ok
17:48:42.0093 3060 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
17:48:42.0093 3060 NABTSFEC - ok
17:48:42.0109 3060 NANMp50 - ok
17:48:42.0171 3060 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
17:48:42.0171 3060 NDIS - ok
17:48:42.0234 3060 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
17:48:42.0234 3060 NdisIP - ok
17:48:42.0265 3060 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:48:42.0265 3060 NdisTapi - ok
17:48:42.0312 3060 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:48:42.0312 3060 Ndisuio - ok
17:48:42.0359 3060 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:48:42.0359 3060 NdisWan - ok
17:48:42.0406 3060 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
17:48:42.0406 3060 NDProxy - ok
17:48:42.0468 3060 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
17:48:42.0468 3060 NetBIOS - ok
17:48:42.0515 3060 NetBT (629b6e95eabeb75a53199eb7066138c2) C:\WINDOWS\system32\DRIVERS\netbt.sys
17:48:42.0515 3060 NetBT - ok
17:48:42.0593 3060 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
17:48:42.0609 3060 Npfs - ok
17:48:42.0609 3060 NSNDIS5 - ok
17:48:42.0656 3060 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
17:48:42.0656 3060 Ntfs - ok
17:48:42.0703 3060 NuidFltr (ef2b9a14ec5dd74ade3417faf1b45e16) C:\WINDOWS\system32\DRIVERS\NuidFltr.sys
17:48:42.0718 3060 NuidFltr - ok
17:48:42.0765 3060 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
17:48:42.0765 3060 Null - ok
17:48:42.0796 3060 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:48:42.0796 3060 NwlnkFlt - ok
17:48:42.0812 3060 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:48:42.0812 3060 NwlnkFwd - ok
17:48:42.0890 3060 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\drivers\Parport.sys
17:48:42.0890 3060 Parport - ok
17:48:42.0906 3060 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
17:48:42.0921 3060 PartMgr - ok
17:48:42.0968 3060 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
17:48:42.0968 3060 ParVdm - ok
17:48:43.0015 3060 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
17:48:43.0031 3060 pccsmcfd - ok
17:48:43.0062 3060 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
17:48:43.0062 3060 PCI - ok
17:48:43.0078 3060 PCIDump - ok
17:48:43.0093 3060 PCIIde - ok
17:48:43.0140 3060 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
17:48:43.0140 3060 Pcmcia - ok
17:48:43.0156 3060 Pcouffin - ok
17:48:43.0171 3060 PDCOMP - ok
17:48:43.0187 3060 PDFRAME - ok
17:48:43.0218 3060 PDRELI - ok
17:48:43.0234 3060 PDRFRAME - ok
17:48:43.0250 3060 perc2 - ok
17:48:43.0265 3060 perc2hib - ok
17:48:43.0312 3060 Point32 (60a044879c4fa76314494f5fddc43b93) C:\WINDOWS\system32\DRIVERS\point32.sys
17:48:43.0328 3060 Point32 - ok
17:48:43.0359 3060 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:48:43.0359 3060 PptpMiniport - ok
17:48:43.0406 3060 prodrv06 (18d9789a4664bf417eea944d2776091a) C:\WINDOWS\System32\drivers\prodrv06.sys
17:48:43.0406 3060 prodrv06 - ok
17:48:43.0453 3060 prohlp02 (8cc9671a7ed2902e747ee0892e1c8575) C:\WINDOWS\system32\drivers\prohlp02.sys
17:48:43.0453 3060 prohlp02 - ok
17:48:43.0484 3060 prosync1 (960bce3ed38761b446aabac06c76badf) C:\WINDOWS\system32\drivers\prosync1.sys
17:48:43.0484 3060 prosync1 - ok
17:48:43.0515 3060 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
17:48:43.0515 3060 PSched - ok
17:48:43.0546 3060 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:48:43.0546 3060 Ptilink - ok
17:48:43.0562 3060 ql1080 - ok
17:48:43.0578 3060 Ql10wnt - ok
17:48:43.0593 3060 ql12160 - ok
17:48:43.0609 3060 ql1240 - ok
17:48:43.0640 3060 ql1280 - ok
17:48:43.0671 3060 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:48:43.0671 3060 RasAcd - ok
17:48:43.0718 3060 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:48:43.0718 3060 Rasl2tp - ok
17:48:43.0750 3060 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:48:43.0750 3060 RasPppoe - ok
17:48:43.0765 3060 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
17:48:43.0765 3060 Raspti - ok
17:48:43.0812 3060 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:48:43.0812 3060 Rdbss - ok
17:48:43.0859 3060 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:48:43.0859 3060 RDPCDD - ok
17:48:43.0921 3060 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
17:48:43.0921 3060 RDPWD - ok
17:48:43.0968 3060 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
17:48:43.0968 3060 redbook - ok
17:48:44.0031 3060 RFCOMM (851c30df2807fcfa21e4c681a7d6440e) C:\WINDOWS\system32\DRIVERS\rfcomm.sys
17:48:44.0031 3060 RFCOMM - ok
17:48:44.0062 3060 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
17:48:44.0078 3060 ROOTMODEM - ok
17:48:44.0203 3060 RT80x86 (121d1b58598d4182adf715f9c0218ce4) C:\WINDOWS\system32\DRIVERS\RT2860.sys
17:48:44.0234 3060 RT80x86 - ok
17:48:44.0281 3060 RTLWUSB (0534004db838fd5ae5f64e8d78a544dd) C:\WINDOWS\system32\DRIVERS\RTL8187.sys
17:48:44.0281 3060 RTLWUSB - ok
17:48:44.0359 3060 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:48:44.0359 3060 Secdrv - ok
17:48:44.0406 3060 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\drivers\Serial.sys
17:48:44.0406 3060 Serial - ok
17:48:44.0468 3060 sfhlp01 (462aee0ea0481ea8bd45cac876a4ccc4) C:\WINDOWS\system32\drivers\sfhlp01.sys
17:48:44.0468 3060 sfhlp01 - ok
17:48:44.0500 3060 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
17:48:44.0500 3060 Sfloppy - ok
17:48:44.0546 3060 Simbad - ok
17:48:44.0578 3060 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
17:48:44.0593 3060 SLIP - ok
17:48:44.0640 3060 SndTAudio (ff6e54b49607cc0f37d675b763735570) C:\WINDOWS\system32\drivers\SndTAudio.sys
17:48:44.0640 3060 SndTAudio - ok
17:48:44.0812 3060 SNP2UVC (473f35e2a378b854731e67c377a3bea7) C:\WINDOWS\system32\DRIVERS\snp2uvc.sys
17:48:44.0828 3060 SNP2UVC - ok
17:48:44.0843 3060 Sparrow - ok
17:48:44.0906 3060 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
17:48:44.0906 3060 splitter - ok
17:48:44.0953 3060 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
17:48:44.0953 3060 sr - ok
17:48:45.0000 3060 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
17:48:45.0000 3060 Srv - ok
17:48:45.0046 3060 sscdbus (d6870895fe46a464a19141440eb6cc1e) C:\WINDOWS\system32\DRIVERS\sscdbus.sys
17:48:45.0046 3060 sscdbus - ok
17:48:45.0078 3060 sscdmdfl (0fe167362e4689b716cdc8d93adedda8) C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
17:48:45.0078 3060 sscdmdfl - ok
17:48:45.0109 3060 sscdmdm (55a15707e32b6709242ad127e62ca55a) C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
17:48:45.0109 3060 sscdmdm - ok
17:48:45.0140 3060 sscdserd (9fa66e361a99f8920c7609bae6814a0e) C:\WINDOWS\system32\DRIVERS\sscdserd.sys
17:48:45.0140 3060 sscdserd - ok
17:48:45.0203 3060 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
17:48:45.0203 3060 streamip - ok
17:48:45.0265 3060 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
17:48:45.0265 3060 swenum - ok
17:48:45.0312 3060 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
17:48:45.0312 3060 swmidi - ok
17:48:45.0343 3060 symc810 - ok
17:48:45.0359 3060 symc8xx - ok
17:48:45.0375 3060 sym_hi - ok
17:48:45.0390 3060 sym_u3 - ok
17:48:45.0453 3060 SynTP (8e25a1dbb8527b2074af9b682f818768) C:\WINDOWS\system32\DRIVERS\SynTP.sys
17:48:45.0453 3060 SynTP - ok
17:48:45.0500 3060 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
17:48:45.0500 3060 sysaudio - ok
17:48:45.0578 3060 Tcpip (4afb3b0919649f95c1964aa1fad27d73) C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:48:45.0578 3060 Tcpip - ok
17:48:45.0625 3060 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
17:48:45.0625 3060 TDPIPE - ok
17:48:45.0640 3060 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
17:48:45.0640 3060 TDTCP - ok
17:48:45.0687 3060 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
17:48:45.0687 3060 TermDD - ok
17:48:45.0718 3060 TosIde - ok
17:48:45.0781 3060 tosporte (8d624d3bd1f2d78bd1c01a2d4e954b4e) C:\WINDOWS\system32\DRIVERS\tosporte.sys
17:48:45.0781 3060 tosporte - ok
17:48:45.0812 3060 tosrfbd (8c3bfaf3fca90502e6fa35503b8e979e) C:\WINDOWS\system32\DRIVERS\tosrfbd.sys
17:48:45.0812 3060 tosrfbd - ok
17:48:45.0843 3060 tosrfbnp (90c8525bc578aaffe87c2d0ed4379e9e) C:\WINDOWS\system32\Drivers\tosrfbnp.sys
17:48:45.0843 3060 tosrfbnp - ok
17:48:45.0875 3060 Tosrfcom (4742f0bad28268ab093ed6f4ea857997) C:\WINDOWS\system32\Drivers\tosrfcom.sys
17:48:45.0875 3060 Tosrfcom - ok
17:48:45.0906 3060 Tosrfhid (7c807ba9660e2995cc0217a14a24094c) C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys
17:48:45.0921 3060 Tosrfhid - ok
17:48:45.0953 3060 tosrfnds (c52fd27b9adf3a1f22cb90e6bcf9b0cb) C:\WINDOWS\system32\DRIVERS\tosrfnds.sys
17:48:45.0953 3060 tosrfnds - ok
17:48:45.0984 3060 TosRfSnd (a4ce9572bc4ac8d329455059b43c5bea) C:\WINDOWS\system32\drivers\tosrfsnd.sys
17:48:45.0984 3060 TosRfSnd - ok
17:48:46.0015 3060 tosrfusb (01c90086cd37e7e8d9a827e24167fcb7) C:\WINDOWS\system32\DRIVERS\tosrfusb.sys
17:48:46.0015 3060 tosrfusb - ok
17:48:46.0078 3060 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
17:48:46.0078 3060 Udfs - ok
17:48:46.0093 3060 ultra - ok
17:48:46.0156 3060 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
17:48:46.0156 3060 Update - ok
17:48:46.0218 3060 USBAAPL (d4fb6ecc60a428564ba8768b0e23c0fc) C:\WINDOWS\system32\Drivers\usbaapl.sys
17:48:46.0218 3060 USBAAPL - ok
17:48:46.0265 3060 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:48:46.0265 3060 usbccgp - ok
17:48:46.0312 3060 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:48:46.0328 3060 usbehci - ok
17:48:46.0375 3060 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:48:46.0375 3060 usbhub - ok
17:48:46.0421 3060 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
17:48:46.0421 3060 usbscan - ok
17:48:46.0468 3060 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:48:46.0468 3060 usbstor - ok
17:48:46.0515 3060 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:48:46.0515 3060 usbuhci - ok
17:48:46.0578 3060 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
17:48:46.0578 3060 usbvideo - ok
17:48:46.0625 3060 uvclf (c019889035cdc1a06f2febc93cbb6897) C:\WINDOWS\system32\DRIVERS\uvclf.sys
17:48:46.0625 3060 uvclf - ok
17:48:46.0640 3060 VComm - ok
17:48:46.0656 3060 VcommMgr - ok
17:48:46.0718 3060 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
17:48:46.0718 3060 VgaSave - ok
17:48:46.0734 3060 ViaIde - ok
17:48:46.0781 3060 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
17:48:46.0781 3060 VolSnap - ok
17:48:46.0843 3060 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:48:46.0843 3060 Wanarp - ok
17:48:46.0921 3060 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
17:48:46.0921 3060 Wdf01000 - ok
17:48:46.0937 3060 WDICA - ok
17:48:46.0968 3060 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
17:48:46.0968 3060 wdmaud - ok
17:48:47.0140 3060 widseasd - ok
17:48:47.0265 3060 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
17:48:47.0265 3060 WS2IFSL - ok
17:48:47.0328 3060 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
17:48:47.0328 3060 WSTCODEC - ok
17:48:47.0390 3060 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
17:48:47.0390 3060 WudfPf - ok
17:48:47.0406 3060 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
17:48:47.0421 3060 WudfRd - ok
17:48:47.0484 3060 MBR (0x1B8) (7d62a6f2a9826d768f5027b51635512d) \Device\Harddisk0\DR0
17:48:47.0500 3060 \Device\Harddisk0\DR0 - ok
17:48:47.0515 3060 Boot (0x1200) (b9b5c2effce87b74ea37c28109aed26d) \Device\Harddisk0\DR0\Partition0
17:48:47.0515 3060 \Device\Harddisk0\DR0\Partition0 - ok
17:48:47.0546 3060 Boot (0x1200) (d56a3b990eaa43c9bf7798a85cb5e097) \Device\Harddisk0\DR0\Partition1
17:48:47.0562 3060 \Device\Harddisk0\DR0\Partition1 - ok
17:48:47.0562 3060 ============================================================
17:48:47.0562 3060 Scan finished
17:48:47.0562 3060 ============================================================
17:48:47.0578 0736 Detected object count: 0
17:48:47.0578 0736 Actual detected object count: 0
17:50:22.0765 3068 Deinitialize success
Re: nejde spustit antivir ziadny
Odstrante MSE timto http://go.microsoft.com/?linkid=9748340 a naslednte jeste projedte PC timto http://download.microsoft.com/download/ ... leanUp.exe Pokud nemate, tak presunte Combofix na plochu
- Spustte poznamkovy blok (Start-spustit-notepad)
- Zkopirujte skript nize
Kód: Vybrat vše
KillAll:: Folder:: c:\documents and settings\okaynetbook\Local Settings\Data aplikací\39c9f424 c:\program files\ICQ6Toolbar Restore:: c:\windows\$NtUninstallKB2509553$\tcpip.sys Registry:: [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NBJ"=- "swg"=- [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusOverride"=dword:00000000 "FirewallOverride"=dword:00000000 Driver:: ICQ Service MpKsl3035e4d2 MpKsl45925265 MpKsl89fe49ca MpKsl92706dd6 MpKsl9c8abaa8 MpKslc6cef8fd MpKslf6aff973 gupdate gupdatem Nero BackItUp Scheduler 4.0 39c9f424 Collect:: C:\WINDOWS\620022073:3325430747.exe File:: C:\WINDOWS\tasks\ASC4_PerformanceMonitor.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job C:\WINDOWS\tasks\Microsoft_Hardware_Launch_IPoint_exe.job C:\WINDOWS\tasks\MP Scheduled Scan.job DDS:: uSearchURL,(Default) = hxxp://www.google.com.eg/keyword/%s IE: ????3?? IE: ????3?????? Firefox:: FF - ProfilePath - c:\documents and settings\okaynetbook\Data aplikací\Mozilla\Firefox\Profiles\6jpdurms.default\ FF - prefs.js: network.proxy.type - 0 FF - user.js: browser.cache.memory.capacity - 16000 FF - user.js: browser.display.show_image_placeholders - true FF - user.js: browser.chrome.favicons - false FF - user.js: browser.turbo.enabled - true FF - user.js: browser.urlbar.autocomplete.enabled - true FF - user.js: browser.urlbar.autofill - true FF - user.js: content.max.tokenizing.time - 2250000 FF - user.js: content.notify.backoffcount - 5 FF - user.js: content.notify.interval - 750000 FF - user.js: content.notify.ontimer - true FF - user.js: content.switch.threshold - 750000 FF - user.js: dom.disable_window_status_change - true FF - user.js: network.http.max-connections - 32 FF - user.js: network.http.max-connections-per-server - 8 FF - user.js: network.http.max-persistent-connections-per-proxy - 8 FF - user.js: network.http.max-persistent-connections-per-server - 4 FF - user.js: network.http.pipelining - true FF - user.js: network.http.pipelining.maxrequests - 8 FF - user.js: network.http.proxy.pipelining - true FF - user.js: network.http.request.max-start-delay - 0 FF - user.js: nglayout.initialpaint.delay - 750 FF - user.js: plugin.expose_full_path - true FF - user.js: ui.submenuDelay - 0 RegLock:: [HKEY_USERS\S-1-5-21-3626335844-41941361-4021371189-1005\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}Ź] [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{0470c0e5-e7d6-4970-aadc-2497f7be8e14}] [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}] [HKEY_LOCAL_MACHINE\software\Classes\ShockwaveFlash.ShockwaveFlash] [HKEY_USERS\S-1-5-21-3626335844-41941361-4021371189-1005\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}ŹhQčţ”Ąc] Reboot::- Ulozte vytvoreny TXT jako CFScript.txt
- Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
- Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte
Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.-
jarek26
- Návštěvník
- Příspěvky: 121
- Registrován: 23 pro 2008 16:01
- Bydliště: Bardejov
- Kontaktovat uživatele:
Re: nejde spustit antivir ziadny
no staihol som si MicrosoftFixit50535 spustil,restartoval,potom som spustil OneCareCleanUp.dokoncilo vsetko teraz by to malo byt uz vporiadku?pri zapnuti vyndows my vypise chybovu hlasku
An error has occurred in the program.Try to open it again.If this problem continues,you"ll need to reinstall microsoft security client.
error code:Ox8007064e
mam si ho preinstalovat?alebo od znova si ho mozem nainstalovat?
dakujem
An error has occurred in the program.Try to open it again.If this problem continues,you"ll need to reinstall microsoft security client.
error code:Ox8007064e
mam si ho preinstalovat?alebo od znova si ho mozem nainstalovat?
dakujem
Re: nejde spustit antivir ziadny
Ztaim tam MSE nedavejte, poresime jej az po ukonceni leceni Nyni aplikujte ten skript pro ComboFix"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.-
jarek26
- Návštěvník
- Příspěvky: 121
- Registrován: 23 pro 2008 16:01
- Bydliště: Bardejov
- Kontaktovat uživatele:
Re: nejde spustit antivir ziadny
takze posielam ten log a cakam ako dalej
ComboFix 11-10-08.01 - okaynetbook 08.10.2011 19:02:13.8.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1015.573 [GMT 2:00]
Spuštěný z: c:\documents and settings\okaynetbook\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\okaynetbook\Plocha\CFScript.txt
AV: Microsoft Security Essentials *Disabled/Updated* {BCF43643-A118-4432-AEDE-D861FCBCFCDF}
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
SP: Microsoft Security Essentials *Disabled/Updated* {BCF43643-A118-4432-AEDE-D861FCBCFCDE}
SP: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7094}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
FILE ::
"c:\windows\tasks\ASC4_PerformanceMonitor.job"
"c:\windows\tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\tasks\Microsoft_Hardware_Launch_IPoint_exe.job"
"c:\windows\tasks\MP Scheduled Scan.job"
.
ADS - WINDOWS: deleted 0 bytes in 1 streams.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\ICQ6Toolbar
c:\program files\ICQ6Toolbar\config.xml
c:\program files\ICQ6Toolbar\Icons.bmp
c:\program files\ICQ6Toolbar\ICQ Service.exe
c:\program files\ICQ6Toolbar\icq6Toolbar.ico
c:\program files\ICQ6Toolbar\ICQToolBar.dll
c:\program files\ICQ6Toolbar\ICQUnToolbar.exe
c:\program files\ICQ6Toolbar\logo_small.gif
c:\program files\ICQ6Toolbar\ServiceStarter.exe
c:\program files\ICQ6Toolbar\short.wav
c:\program files\ICQ6Toolbar\Version.txt
.
Nakažená kopie c:\windows\$NtUninstallKB2509553$\tcpip.sys byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\system32\dllcache\tcpip.sys
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_GUPDATE
-------\Legacy_GUPDATEM
-------\Legacy_ICQ_SERVICE
-------\Legacy_MPKSL3035E4D2
-------\Legacy_MPKSL45925265
-------\Legacy_MPKSL89FE49CA
-------\Legacy_MPKSL92706DD6
-------\Legacy_MPKSL9C8ABAA8
-------\Legacy_MPKSLC6CEF8FD
-------\Legacy_MPKSLF6AFF973
-------\Legacy_NERO_BACKITUP_SCHEDULER_4.0
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_ICQ Service
-------\Service_MpKsl3035e4d2
-------\Service_MpKsl45925265
-------\Service_MpKsl89fe49ca
-------\Service_MpKsl92706dd6
-------\Service_MpKsl9c8abaa8
-------\Service_MpKslc6cef8fd
-------\Service_MpKslf6aff973
-------\Service_Nero BackItUp Scheduler 4.0
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-09-08 do 2011-10-08 )))))))))))))))))))))))))))))))
.
.
2011-10-08 16:42 . 2011-10-08 16:43 -------- d-----w- C:\WINSSLog
2011-10-08 16:35 . 2011-10-08 16:35 27626 ----a-w- C:\FixitRegBackup.reg
2011-10-08 15:03 . 2011-10-08 15:03 -------- d-----w- c:\windows\Resistance
2011-10-08 15:02 . 2011-10-08 15:02 -------- d-----w- c:\program files\Ask.com
2011-10-08 11:31 . 2011-10-08 11:31 -------- d-----w- C:\rsit
2011-10-08 08:41 . 2011-10-08 08:41 -------- d-sh--w- c:\documents and settings\okaynetbook\Local Settings\Data aplikací\39c9f424
2011-10-07 15:21 . 2011-10-08 08:03 56200 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{71A60099-A880-4BF1-9B97-360984044F6E}\offreg.dll
2011-10-07 15:21 . 2011-09-12 23:14 7269712 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{71A60099-A880-4BF1-9B97-360984044F6E}\mpengine.dll
2011-10-03 05:51 . 2011-10-03 05:51 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Vasilek Games
2011-10-02 19:07 . 2011-10-02 19:07 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Alawar Stargaze
2011-10-02 18:50 . 2011-10-03 05:50 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\wrapper
2011-10-02 18:49 . 2011-10-03 05:50 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Špidla Data Processing, s.r.o
2011-10-02 18:49 . 2011-10-03 05:50 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Špidla Data Processing, s.r.o
2011-09-28 21:50 . 2011-09-03 06:40 134104 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll
2011-09-28 21:50 . 2011-09-03 06:40 89048 ----a-w- c:\program files\Mozilla Firefox\libEGL.dll
2011-09-28 21:50 . 2011-09-03 06:40 785368 ----a-w- c:\program files\Mozilla Firefox\mozsqlite3.dll
2011-09-28 21:50 . 2011-09-03 06:40 478168 ----a-w- c:\program files\Mozilla Firefox\libGLESv2.dll
2011-09-28 21:50 . 2011-09-03 06:40 1846232 ----a-w- c:\program files\Mozilla Firefox\mozjs.dll
2011-09-28 21:50 . 2011-09-03 06:40 15832 ----a-w- c:\program files\Mozilla Firefox\mozalloc.dll
2011-09-28 21:50 . 2011-09-02 23:25 2106216 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_43.dll
2011-09-28 21:50 . 2011-09-02 23:25 1998168 ----a-w- c:\program files\Mozilla Firefox\d3dx9_43.dll
2011-09-22 18:46 . 2011-09-22 18:46 -------- d-----w- c:\program files\upnito.sk manager
2011-09-16 22:15 . 2011-09-16 22:15 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\AutoHideIP
2011-09-16 22:15 . 2011-09-16 22:15 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AutoHideIP
2011-09-15 15:12 . 2011-07-06 15:14 101616 ----a-w- c:\windows\system32\drivers\idmtdi.sys
2011-09-10 16:02 . 2011-09-10 16:02 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Sahmon Games
2011-09-10 15:14 . 2011-09-10 15:14 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Meridian93
2011-09-10 14:43 . 2011-09-10 14:43 -------- d-----w- c:\windows\system32\winrm
2011-09-10 14:43 . 2011-09-10 14:43 -------- d-----w- c:\windows\system32\GroupPolicy
2011-09-10 14:43 . 2011-09-10 14:43 -------- dc-h--w- c:\windows\$968930Uinstall_KB968930$
2011-09-10 14:07 . 2011-09-10 14:07 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll
2011-09-09 09:35 . 2011-09-09 09:35 -------- d-----w- c:\documents and settings\okaynetbook\Local Settings\Data aplikací\MPlayer
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-29 09:24 . 2011-08-13 06:20 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-12 23:14 . 2011-01-24 18:19 7269712 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-09-09 09:12 . 2009-09-01 22:26 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-08-16 16:46 . 2009-09-01 21:01 6427240 ----a-w- c:\windows\system32\drivers\RtkHDAud.sys
2011-08-15 14:47 . 2009-09-01 21:01 60008 ----a-w- c:\windows\system32\RtkCoInstXP.dll
2011-08-09 14:14 . 2009-09-01 21:01 20055144 ----a-w- c:\windows\RTHDCPL.EXE
2011-08-04 14:59 . 2009-09-01 21:01 1493608 ----a-w- c:\windows\RtlUpd.exe
2011-07-29 04:34 . 2011-07-29 04:34 689664 ----a-w- c:\windows\system32\yowindow.scr
2011-07-15 13:29 . 2009-09-01 22:26 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-07-13 03:39 . 2011-08-15 20:46 6881616 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\Updates\mpengine.dll
2011-07-11 12:17 . 2009-09-01 21:01 1698408 ----a-w- c:\windows\RtlExUpd.dll
2010-05-01 14:50 . 2011-05-09 19:40 2536390 ----a-w- c:\program files\IDM.5.19.2.exe
2008-03-09 05:25 . 2010-05-17 19:18 236 ----a-w- c:\program files\Common Files\dx.reg
2011-09-03 06:40 . 2011-09-28 21:50 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[7] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\$NtUninstallKB2509553$\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\ERDNT\cache\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\tcpip.sys
[-] 2008-06-20 . 4AFB3B0919649F95C1964AA1FAD27D73 . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys
[7] 2008-04-14 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\tcpip.sys
.
((((((((((((((((((((((((((((( SnapShot@2011-09-29_18.24.49 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-10-08 17:14 . 2011-10-08 17:14 16384 c:\windows\temp\Perflib_Perfdata_658.dat
+ 2011-08-15 20:39 . 2007-11-30 12:39 17272 c:\windows\system32\spmsg.dll
+ 1998-08-09 09:07 . 1998-08-09 09:07 94208 c:\windows\system32\MSSTKPRP.DLL
+ 1998-06-17 17:08 . 1998-06-17 17:08 53248 c:\windows\system32\MFC42ENU.DLL
+ 2011-10-08 14:21 . 2011-10-08 14:21 27136 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\oisicon.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 12288 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 64088 c:\windows\assembly\GAC\Microsoft.Vbe.Interop\11.0.0.0__71e9bce111e9429c\Microsoft.Vbe.Interop.dll
+ 2011-10-08 14:21 . 2011-10-08 14:21 4096 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2000-04-03 15:52 . 2000-04-03 15:52 151552 c:\windows\system32\RDOCURS.DLL
+ 2000-05-11 11:06 . 2000-05-11 11:06 397312 c:\windows\system32\MSRDO20.DLL
+ 2011-10-08 15:03 . 2011-10-08 15:03 451072 c:\windows\Resistance\uninstall.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 135168 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\misc.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 282624 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\fpicon.exe
+ 2011-07-05 22:50 . 2011-10-08 15:02 102400 c:\windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\ARPPRODUCTICON.exe
- 2011-07-05 22:50 . 2011-07-05 22:50 102400 c:\windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\ARPPRODUCTICON.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 223800 c:\windows\assembly\GAC\office\11.0.0.0__71e9bce111e9429c\OFFICE.DLL
+ 2011-10-08 15:02 . 2011-10-08 15:03 2245120 c:\windows\Installer\7fea5e.msi
+ 2011-10-08 14:21 . 2011-10-08 14:21 3035648 c:\windows\Installer\5916b7.msi
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2011-05-30 16:50 21864 ----a-w- c:\program files\IDM.5.19.2\IDMShellExt.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Eee Docking"="c:\program files\ASUS\Eee Docking\Eee Docking.exe" [2009-07-27 397312]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 997920]
"RTHDCPL"="RTHDCPL.EXE" [2011-08-09 20055144]
"GrooveMonitor"="d:\programy\Microsoft Office 2007 CZ full\Office12\GrooveMonitor.exe" [2008-10-25 31072]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2008-11-04 435096]
.
c:\documents and settings\okaynetbook\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Z stupce - sndvol32.lnk - c:\windows\system32\sndvol32.exe [2009-9-1 138752]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMBalloonTip"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\muzapp.exe"=
"d:\\programy\\Microsoft Office 2007 CZ full\\Office12\\GROOVE.EXE"=
"d:\\Games\\left_4_dead\\left 4 dead\\hl2.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\ICQ7.2\\ICQ.exe"=
"c:\\Documents and Settings\\okaynetbook\\Plocha\\RSIT.exe"=
"c:\\Program Files\\Common Files\\Microsoft Shared\\DW\\DW20.EXE"=
"c:\\WINDOWS\\system32\\msiexec.exe"=
"c:\\Program Files\\Google\\Update\\GoogleUpdate.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5985:TCP"= 5985:TCP:*:Disabled:Vzdálená správa systému Windows
.
R0 BtHidBus;Bluetooth HID Bus Service;c:\windows\system32\drivers\BtHidBus.sys [31.7.2008 20:45 20744]
R1 IDMTDI;IDMTDI;c:\windows\system32\drivers\idmtdi.sys [15.9.2011 17:12 101616]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [6.7.2011 19:21 13592]
R2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\system32\NlsSrv32.exe [4.8.2010 17:06 61440]
R3 L1c;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\l1c51x86.sys [18.8.2009 23:44 61040]
S3 2hotspot controller;2hotspot Miniport;c:\windows\system32\DRIVERS\acontrol.sys --> c:\windows\system32\DRIVERS\acontrol.sys [?]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [1.9.2009 23:01 1691480]
S3 btnetBUs;Bluetooth PAN Bus Service;c:\windows\system32\drivers\btnetBus.sys [7.12.2008 12:44 30088]
S3 dc3d;MS Hardware Device Detection Driver;c:\windows\system32\drivers\dc3d.sys [6.7.2011 18:43 44432]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys --> c:\windows\system32\drivers\dgderdrv.sys [?]
S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [6.7.2011 0:22 23456]
S3 FsUsbExDisk;FsUsbExDisk;\??\c:\windows\system32\FsUsbExDisk.SYS --> c:\windows\system32\FsUsbExDisk.SYS [?]
S3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\drivers\IvtBtBus.sys [2.7.2008 14:58 26248]
S3 NANMp50;NANMp50 NDIS Protocol Driver;c:\windows\system32\Drivers\NANMp50.sys --> c:\windows\system32\Drivers\NANMp50.sys [?]
S3 Pcouffin;Low level access layer for CD devices;c:\windows\system32\Drivers\Pcouffin.sys --> c:\windows\system32\Drivers\Pcouffin.sys [?]
S3 RT80x86;Ralink 802.11n Wireless Driver;c:\windows\system32\drivers\rt2860.sys [22.8.2011 17:18 2240064]
S3 RTLWUSB;AirLive WL1600USB;c:\windows\system32\drivers\RTL8187.sys [2.3.2011 16:00 323328]
S3 SndTAudio;SndTAudio;c:\windows\system32\drivers\SndTAudio.sys [7.11.2010 5:59 23608]
S3 STSService;STSService;"c:\program files\SoundTaxi Media Suite\STSService.exe" --> c:\program files\SoundTaxi Media Suite\STSService.exe [?]
S3 uvclf;uvclf;c:\windows\system32\drivers\uvclf.sys [12.8.2009 8:57 39040]
S3 widseasd;Widsea Secret Disk Service;\??\c:\documents and settings\okaynetbook\Dokumenty\Downloads\Music\TS-Disk1.63\TS-Disk1.63\widseasd.sys --> c:\documents and settings\okaynetbook\Dokumenty\Downloads\Music\TS-Disk1.63\TS-Disk1.63\widseasd.sys [?]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2.9.2009 0:26 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe --> c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WINRM REG_MULTI_SZ WINRM
.
Obsah adresáře 'Naplánované úlohy'
.
2011-10-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-15 20:00]
.
2011-10-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-15 20:00]
.
2011-07-06 c:\windows\Tasks\Microsoft_Hardware_Launch_IPoint_exe.job
- c:\program files\Microsoft IntelliPoint\ipoint.exe [2010-07-21 14:52]
.
2011-10-08 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2011-04-27 13:39]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com/
uSearchURL,(Default) = hxxp://www.google.com.eg/keyword/%s
IE: ????3??
IE: ????3??????
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
IE: Stáhnout pomocí FlashGet - c:\program files\FlashGet\jc_link.htm
IE: Stáhnout s IDM - c:\program files\IDM.5.19.2\IEExt.htm
IE: Stáhnout s IDM obsah FLV videa - c:\program files\IDM.5.19.2\IEGetVL.htm
IE: Stáhnout s IDM všechny odkazy - c:\program files\IDM.5.19.2\IEGetAll.htm
IE: Stáhnout vše pomocí FlashGet - c:\program files\FlashGet\jc_all.htm
IE: Translate this web page with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm
IE: Translate with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm
IE: ????3?? - c:\documents and settings\okaynetbook\Data aplikací\FlashGetBHO\GetUrl.htm
IE: ????3?????? - c:\documents and settings\okaynetbook\Data aplikací\FlashGetBHO\GetAllUrl.htm
TCP: DhcpNameServer = 217.119.127.1 217.119.127.200
FF - ProfilePath - c:\documents and settings\okaynetbook\Data aplikací\Mozilla\Firefox\Profiles\6jpdurms.default\
FF - prefs.js: browser.startup.homepage - www.google.com
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
SafeBoot-MsMpSvc
AddRemove-ICQToolbar - c:\program files\ICQ6Toolbar\ICQUnToolbar.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-10-08 19:15
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3626335844-41941361-4021371189-1005\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}Ź]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
@="c:\\Documents and Settings\\okaynetbook\\Data aplikací\\FlashGetBHO\\GetUrl.htm"
"contexts"=dword:00000022
.
[HKEY_USERS\S-1-5-21-3626335844-41941361-4021371189-1005\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}ŹhQčţ”Ąc]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
@="c:\\Documents and Settings\\okaynetbook\\Data aplikací\\FlashGetBHO\\GetAllUrl.htm"
"contexts"=dword:000000f3
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(772)
c:\windows\SYSTEM32\RtlGina\RtlGina.DLL
.
- - - - - - - > 'explorer.exe'(3948)
c:\program files\IDM.5.19.2\IDMShellExt.dll
c:\program files\IDM.5.19.2\IDMNetMon.DLL
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\RTHDCPL.EXE
.
**************************************************************************
.
Celkový čas: 2011-10-08 19:19:30 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-10-08 17:19
ComboFix2.txt 2011-10-08 12:50
ComboFix3.txt 2011-09-29 21:49
ComboFix4.txt 2011-09-29 18:29
.
Před spuštěním: 4 594 286 592
Po spuštění: 4 633 645 056
.
- - End Of File - - 8F05B545E6E16C6B03123FD70FA0ED0D
ComboFix 11-10-08.01 - okaynetbook 08.10.2011 19:02:13.8.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1015.573 [GMT 2:00]
Spuštěný z: c:\documents and settings\okaynetbook\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\okaynetbook\Plocha\CFScript.txt
AV: Microsoft Security Essentials *Disabled/Updated* {BCF43643-A118-4432-AEDE-D861FCBCFCDF}
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
SP: Microsoft Security Essentials *Disabled/Updated* {BCF43643-A118-4432-AEDE-D861FCBCFCDE}
SP: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7094}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
FILE ::
"c:\windows\tasks\ASC4_PerformanceMonitor.job"
"c:\windows\tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\tasks\Microsoft_Hardware_Launch_IPoint_exe.job"
"c:\windows\tasks\MP Scheduled Scan.job"
.
ADS - WINDOWS: deleted 0 bytes in 1 streams.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\ICQ6Toolbar
c:\program files\ICQ6Toolbar\config.xml
c:\program files\ICQ6Toolbar\Icons.bmp
c:\program files\ICQ6Toolbar\ICQ Service.exe
c:\program files\ICQ6Toolbar\icq6Toolbar.ico
c:\program files\ICQ6Toolbar\ICQToolBar.dll
c:\program files\ICQ6Toolbar\ICQUnToolbar.exe
c:\program files\ICQ6Toolbar\logo_small.gif
c:\program files\ICQ6Toolbar\ServiceStarter.exe
c:\program files\ICQ6Toolbar\short.wav
c:\program files\ICQ6Toolbar\Version.txt
.
Nakažená kopie c:\windows\$NtUninstallKB2509553$\tcpip.sys byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\system32\dllcache\tcpip.sys
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_GUPDATE
-------\Legacy_GUPDATEM
-------\Legacy_ICQ_SERVICE
-------\Legacy_MPKSL3035E4D2
-------\Legacy_MPKSL45925265
-------\Legacy_MPKSL89FE49CA
-------\Legacy_MPKSL92706DD6
-------\Legacy_MPKSL9C8ABAA8
-------\Legacy_MPKSLC6CEF8FD
-------\Legacy_MPKSLF6AFF973
-------\Legacy_NERO_BACKITUP_SCHEDULER_4.0
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_ICQ Service
-------\Service_MpKsl3035e4d2
-------\Service_MpKsl45925265
-------\Service_MpKsl89fe49ca
-------\Service_MpKsl92706dd6
-------\Service_MpKsl9c8abaa8
-------\Service_MpKslc6cef8fd
-------\Service_MpKslf6aff973
-------\Service_Nero BackItUp Scheduler 4.0
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-09-08 do 2011-10-08 )))))))))))))))))))))))))))))))
.
.
2011-10-08 16:42 . 2011-10-08 16:43 -------- d-----w- C:\WINSSLog
2011-10-08 16:35 . 2011-10-08 16:35 27626 ----a-w- C:\FixitRegBackup.reg
2011-10-08 15:03 . 2011-10-08 15:03 -------- d-----w- c:\windows\Resistance
2011-10-08 15:02 . 2011-10-08 15:02 -------- d-----w- c:\program files\Ask.com
2011-10-08 11:31 . 2011-10-08 11:31 -------- d-----w- C:\rsit
2011-10-08 08:41 . 2011-10-08 08:41 -------- d-sh--w- c:\documents and settings\okaynetbook\Local Settings\Data aplikací\39c9f424
2011-10-07 15:21 . 2011-10-08 08:03 56200 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{71A60099-A880-4BF1-9B97-360984044F6E}\offreg.dll
2011-10-07 15:21 . 2011-09-12 23:14 7269712 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{71A60099-A880-4BF1-9B97-360984044F6E}\mpengine.dll
2011-10-03 05:51 . 2011-10-03 05:51 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Vasilek Games
2011-10-02 19:07 . 2011-10-02 19:07 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Alawar Stargaze
2011-10-02 18:50 . 2011-10-03 05:50 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\wrapper
2011-10-02 18:49 . 2011-10-03 05:50 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Špidla Data Processing, s.r.o
2011-10-02 18:49 . 2011-10-03 05:50 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Špidla Data Processing, s.r.o
2011-09-28 21:50 . 2011-09-03 06:40 134104 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll
2011-09-28 21:50 . 2011-09-03 06:40 89048 ----a-w- c:\program files\Mozilla Firefox\libEGL.dll
2011-09-28 21:50 . 2011-09-03 06:40 785368 ----a-w- c:\program files\Mozilla Firefox\mozsqlite3.dll
2011-09-28 21:50 . 2011-09-03 06:40 478168 ----a-w- c:\program files\Mozilla Firefox\libGLESv2.dll
2011-09-28 21:50 . 2011-09-03 06:40 1846232 ----a-w- c:\program files\Mozilla Firefox\mozjs.dll
2011-09-28 21:50 . 2011-09-03 06:40 15832 ----a-w- c:\program files\Mozilla Firefox\mozalloc.dll
2011-09-28 21:50 . 2011-09-02 23:25 2106216 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_43.dll
2011-09-28 21:50 . 2011-09-02 23:25 1998168 ----a-w- c:\program files\Mozilla Firefox\d3dx9_43.dll
2011-09-22 18:46 . 2011-09-22 18:46 -------- d-----w- c:\program files\upnito.sk manager
2011-09-16 22:15 . 2011-09-16 22:15 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\AutoHideIP
2011-09-16 22:15 . 2011-09-16 22:15 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AutoHideIP
2011-09-15 15:12 . 2011-07-06 15:14 101616 ----a-w- c:\windows\system32\drivers\idmtdi.sys
2011-09-10 16:02 . 2011-09-10 16:02 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Sahmon Games
2011-09-10 15:14 . 2011-09-10 15:14 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Meridian93
2011-09-10 14:43 . 2011-09-10 14:43 -------- d-----w- c:\windows\system32\winrm
2011-09-10 14:43 . 2011-09-10 14:43 -------- d-----w- c:\windows\system32\GroupPolicy
2011-09-10 14:43 . 2011-09-10 14:43 -------- dc-h--w- c:\windows\$968930Uinstall_KB968930$
2011-09-10 14:07 . 2011-09-10 14:07 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll
2011-09-09 09:35 . 2011-09-09 09:35 -------- d-----w- c:\documents and settings\okaynetbook\Local Settings\Data aplikací\MPlayer
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-29 09:24 . 2011-08-13 06:20 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-12 23:14 . 2011-01-24 18:19 7269712 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-09-09 09:12 . 2009-09-01 22:26 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-08-16 16:46 . 2009-09-01 21:01 6427240 ----a-w- c:\windows\system32\drivers\RtkHDAud.sys
2011-08-15 14:47 . 2009-09-01 21:01 60008 ----a-w- c:\windows\system32\RtkCoInstXP.dll
2011-08-09 14:14 . 2009-09-01 21:01 20055144 ----a-w- c:\windows\RTHDCPL.EXE
2011-08-04 14:59 . 2009-09-01 21:01 1493608 ----a-w- c:\windows\RtlUpd.exe
2011-07-29 04:34 . 2011-07-29 04:34 689664 ----a-w- c:\windows\system32\yowindow.scr
2011-07-15 13:29 . 2009-09-01 22:26 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-07-13 03:39 . 2011-08-15 20:46 6881616 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\Updates\mpengine.dll
2011-07-11 12:17 . 2009-09-01 21:01 1698408 ----a-w- c:\windows\RtlExUpd.dll
2010-05-01 14:50 . 2011-05-09 19:40 2536390 ----a-w- c:\program files\IDM.5.19.2.exe
2008-03-09 05:25 . 2010-05-17 19:18 236 ----a-w- c:\program files\Common Files\dx.reg
2011-09-03 06:40 . 2011-09-28 21:50 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[7] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\$NtUninstallKB2509553$\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\ERDNT\cache\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\tcpip.sys
[-] 2008-06-20 . 4AFB3B0919649F95C1964AA1FAD27D73 . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys
[7] 2008-04-14 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\tcpip.sys
.
((((((((((((((((((((((((((((( SnapShot@2011-09-29_18.24.49 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-10-08 17:14 . 2011-10-08 17:14 16384 c:\windows\temp\Perflib_Perfdata_658.dat
+ 2011-08-15 20:39 . 2007-11-30 12:39 17272 c:\windows\system32\spmsg.dll
+ 1998-08-09 09:07 . 1998-08-09 09:07 94208 c:\windows\system32\MSSTKPRP.DLL
+ 1998-06-17 17:08 . 1998-06-17 17:08 53248 c:\windows\system32\MFC42ENU.DLL
+ 2011-10-08 14:21 . 2011-10-08 14:21 27136 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\oisicon.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 12288 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 64088 c:\windows\assembly\GAC\Microsoft.Vbe.Interop\11.0.0.0__71e9bce111e9429c\Microsoft.Vbe.Interop.dll
+ 2011-10-08 14:21 . 2011-10-08 14:21 4096 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2000-04-03 15:52 . 2000-04-03 15:52 151552 c:\windows\system32\RDOCURS.DLL
+ 2000-05-11 11:06 . 2000-05-11 11:06 397312 c:\windows\system32\MSRDO20.DLL
+ 2011-10-08 15:03 . 2011-10-08 15:03 451072 c:\windows\Resistance\uninstall.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 135168 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\misc.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 282624 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\fpicon.exe
+ 2011-07-05 22:50 . 2011-10-08 15:02 102400 c:\windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\ARPPRODUCTICON.exe
- 2011-07-05 22:50 . 2011-07-05 22:50 102400 c:\windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\ARPPRODUCTICON.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 223800 c:\windows\assembly\GAC\office\11.0.0.0__71e9bce111e9429c\OFFICE.DLL
+ 2011-10-08 15:02 . 2011-10-08 15:03 2245120 c:\windows\Installer\7fea5e.msi
+ 2011-10-08 14:21 . 2011-10-08 14:21 3035648 c:\windows\Installer\5916b7.msi
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2011-05-30 16:50 21864 ----a-w- c:\program files\IDM.5.19.2\IDMShellExt.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Eee Docking"="c:\program files\ASUS\Eee Docking\Eee Docking.exe" [2009-07-27 397312]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 997920]
"RTHDCPL"="RTHDCPL.EXE" [2011-08-09 20055144]
"GrooveMonitor"="d:\programy\Microsoft Office 2007 CZ full\Office12\GrooveMonitor.exe" [2008-10-25 31072]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2008-11-04 435096]
.
c:\documents and settings\okaynetbook\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Z stupce - sndvol32.lnk - c:\windows\system32\sndvol32.exe [2009-9-1 138752]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMBalloonTip"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\muzapp.exe"=
"d:\\programy\\Microsoft Office 2007 CZ full\\Office12\\GROOVE.EXE"=
"d:\\Games\\left_4_dead\\left 4 dead\\hl2.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\ICQ7.2\\ICQ.exe"=
"c:\\Documents and Settings\\okaynetbook\\Plocha\\RSIT.exe"=
"c:\\Program Files\\Common Files\\Microsoft Shared\\DW\\DW20.EXE"=
"c:\\WINDOWS\\system32\\msiexec.exe"=
"c:\\Program Files\\Google\\Update\\GoogleUpdate.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5985:TCP"= 5985:TCP:*:Disabled:Vzdálená správa systému Windows
.
R0 BtHidBus;Bluetooth HID Bus Service;c:\windows\system32\drivers\BtHidBus.sys [31.7.2008 20:45 20744]
R1 IDMTDI;IDMTDI;c:\windows\system32\drivers\idmtdi.sys [15.9.2011 17:12 101616]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [6.7.2011 19:21 13592]
R2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\system32\NlsSrv32.exe [4.8.2010 17:06 61440]
R3 L1c;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\l1c51x86.sys [18.8.2009 23:44 61040]
S3 2hotspot controller;2hotspot Miniport;c:\windows\system32\DRIVERS\acontrol.sys --> c:\windows\system32\DRIVERS\acontrol.sys [?]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [1.9.2009 23:01 1691480]
S3 btnetBUs;Bluetooth PAN Bus Service;c:\windows\system32\drivers\btnetBus.sys [7.12.2008 12:44 30088]
S3 dc3d;MS Hardware Device Detection Driver;c:\windows\system32\drivers\dc3d.sys [6.7.2011 18:43 44432]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys --> c:\windows\system32\drivers\dgderdrv.sys [?]
S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [6.7.2011 0:22 23456]
S3 FsUsbExDisk;FsUsbExDisk;\??\c:\windows\system32\FsUsbExDisk.SYS --> c:\windows\system32\FsUsbExDisk.SYS [?]
S3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\drivers\IvtBtBus.sys [2.7.2008 14:58 26248]
S3 NANMp50;NANMp50 NDIS Protocol Driver;c:\windows\system32\Drivers\NANMp50.sys --> c:\windows\system32\Drivers\NANMp50.sys [?]
S3 Pcouffin;Low level access layer for CD devices;c:\windows\system32\Drivers\Pcouffin.sys --> c:\windows\system32\Drivers\Pcouffin.sys [?]
S3 RT80x86;Ralink 802.11n Wireless Driver;c:\windows\system32\drivers\rt2860.sys [22.8.2011 17:18 2240064]
S3 RTLWUSB;AirLive WL1600USB;c:\windows\system32\drivers\RTL8187.sys [2.3.2011 16:00 323328]
S3 SndTAudio;SndTAudio;c:\windows\system32\drivers\SndTAudio.sys [7.11.2010 5:59 23608]
S3 STSService;STSService;"c:\program files\SoundTaxi Media Suite\STSService.exe" --> c:\program files\SoundTaxi Media Suite\STSService.exe [?]
S3 uvclf;uvclf;c:\windows\system32\drivers\uvclf.sys [12.8.2009 8:57 39040]
S3 widseasd;Widsea Secret Disk Service;\??\c:\documents and settings\okaynetbook\Dokumenty\Downloads\Music\TS-Disk1.63\TS-Disk1.63\widseasd.sys --> c:\documents and settings\okaynetbook\Dokumenty\Downloads\Music\TS-Disk1.63\TS-Disk1.63\widseasd.sys [?]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2.9.2009 0:26 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe --> c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WINRM REG_MULTI_SZ WINRM
.
Obsah adresáře 'Naplánované úlohy'
.
2011-10-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-15 20:00]
.
2011-10-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-15 20:00]
.
2011-07-06 c:\windows\Tasks\Microsoft_Hardware_Launch_IPoint_exe.job
- c:\program files\Microsoft IntelliPoint\ipoint.exe [2010-07-21 14:52]
.
2011-10-08 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2011-04-27 13:39]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com/
uSearchURL,(Default) = hxxp://www.google.com.eg/keyword/%s
IE: ????3??
IE: ????3??????
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
IE: Stáhnout pomocí FlashGet - c:\program files\FlashGet\jc_link.htm
IE: Stáhnout s IDM - c:\program files\IDM.5.19.2\IEExt.htm
IE: Stáhnout s IDM obsah FLV videa - c:\program files\IDM.5.19.2\IEGetVL.htm
IE: Stáhnout s IDM všechny odkazy - c:\program files\IDM.5.19.2\IEGetAll.htm
IE: Stáhnout vše pomocí FlashGet - c:\program files\FlashGet\jc_all.htm
IE: Translate this web page with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm
IE: Translate with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm
IE: ????3?? - c:\documents and settings\okaynetbook\Data aplikací\FlashGetBHO\GetUrl.htm
IE: ????3?????? - c:\documents and settings\okaynetbook\Data aplikací\FlashGetBHO\GetAllUrl.htm
TCP: DhcpNameServer = 217.119.127.1 217.119.127.200
FF - ProfilePath - c:\documents and settings\okaynetbook\Data aplikací\Mozilla\Firefox\Profiles\6jpdurms.default\
FF - prefs.js: browser.startup.homepage - www.google.com
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
SafeBoot-MsMpSvc
AddRemove-ICQToolbar - c:\program files\ICQ6Toolbar\ICQUnToolbar.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-10-08 19:15
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3626335844-41941361-4021371189-1005\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}Ź]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
@="c:\\Documents and Settings\\okaynetbook\\Data aplikací\\FlashGetBHO\\GetUrl.htm"
"contexts"=dword:00000022
.
[HKEY_USERS\S-1-5-21-3626335844-41941361-4021371189-1005\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}ŹhQčţ”Ąc]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
@="c:\\Documents and Settings\\okaynetbook\\Data aplikací\\FlashGetBHO\\GetAllUrl.htm"
"contexts"=dword:000000f3
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(772)
c:\windows\SYSTEM32\RtlGina\RtlGina.DLL
.
- - - - - - - > 'explorer.exe'(3948)
c:\program files\IDM.5.19.2\IDMShellExt.dll
c:\program files\IDM.5.19.2\IDMNetMon.DLL
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\RTHDCPL.EXE
.
**************************************************************************
.
Celkový čas: 2011-10-08 19:19:30 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-10-08 17:19
ComboFix2.txt 2011-10-08 12:50
ComboFix3.txt 2011-09-29 21:49
ComboFix4.txt 2011-09-29 18:29
.
Před spuštěním: 4 594 286 592
Po spuštění: 4 633 645 056
.
- - End Of File - - 8F05B545E6E16C6B03123FD70FA0ED0D
Re: nejde spustit antivir ziadny
Jeste jeden skript pro ComboFix - postup stejny
Kód: Vybrat vše
KillAll::
RegNull::
[HKEY_USERS\S-1-5-21-3626335844-41941361-4021371189-1005\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}Ź]
[HKEY_USERS\S-1-5-21-3626335844-41941361-4021371189-1005\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}ŹhQčţ”Ąc]
DDS::
uSearchURL,(Default) = hxxp://www.google.com.eg/keyword/%s
IE: ????3??
IE: ????3??????
IE: Stáhnout pomocí FlashGet - c:\program files\FlashGet\jc_link.htm
File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\Microsoft_Hardware_Launch_IPoint_exe.job
Folder::
c:\program files\Microsoft Security Client
c:\program files\Ask.com
Restore::
c:\windows\system32\drivers\tcpip.sys
SecCenter::
AV: Microsoft Security Essentials *Disabled/Updated* {BCF43643-A118-4432-AEDE-D861FCBCFCDF}
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
SP: Microsoft Security Essentials *Disabled/Updated* {BCF43643-A118-4432-AEDE-D861FCBCFCDE}
SP: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7094}
{BCF43643-A118-4432-AEDE-D861FCBCFCDF}
{EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
{BCF43643-A118-4432-AEDE-D861FCBCFCDE}
{EDB4FA23-53B8-4AFA-8C5D-99752CCA7094}
Registry::
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5985:TCP"=-
Reboot::
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.-
jarek26
- Návštěvník
- Příspěvky: 121
- Registrován: 23 pro 2008 16:01
- Bydliště: Bardejov
- Kontaktovat uživatele:
Re: nejde spustit antivir ziadny
takze posilam log z combofixu,co dal?
ComboFix 11-10-08.01 - okaynetbook 08.10.2011 19:38:57.9.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1015.482 [GMT 2:00]
Spuštěný z: c:\documents and settings\okaynetbook\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\okaynetbook\Plocha\CFScript.txt
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
FILE ::
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\Tasks\Microsoft_Hardware_Launch_IPoint_exe.job"
.
ADS - WINDOWS: deleted 0 bytes in 1 streams.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Ask.com
c:\program files\Ask.com\config.xml
c:\program files\Ask.com\mupcfg.xml
c:\program files\Ask.com\SaUpdate.exe
c:\program files\Microsoft Security Client
c:\program files\Microsoft Security Client\Antimalware\Drivers\mpfilter\mpfilter.cat
c:\program files\Microsoft Security Client\Antimalware\Drivers\mpfilter\mpfilter.inf
c:\program files\Microsoft Security Client\Antimalware\Drivers\mpfilter\mpfilter.sys
c:\program files\Microsoft Security Client\Antimalware\Drivers\mpnwmon\mpnwmon.cat
c:\program files\Microsoft Security Client\Antimalware\Drivers\mpnwmon\mpnwmon.inf
c:\program files\Microsoft Security Client\Antimalware\Drivers\mpnwmon\mpnwmon.sys
c:\program files\Microsoft Security Client\Antimalware\EN-US\MpAsDesc.dll.mui
c:\program files\Microsoft Security Client\Antimalware\EN-US\mpevmsg.dll.mui
c:\program files\Microsoft Security Client\Antimalware\MpAsDesc.dll
c:\program files\Microsoft Security Client\Antimalware\MpClient.dll
c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe
c:\program files\Microsoft Security Client\Antimalware\MpCommu.dll
c:\program files\Microsoft Security Client\Antimalware\MpEvMsg.dll
c:\program files\Microsoft Security Client\Antimalware\MpOAv.dll
c:\program files\Microsoft Security Client\Antimalware\MpRTP.dll
c:\program files\Microsoft Security Client\Antimalware\MpSvc.dll
c:\program files\Microsoft Security Client\Antimalware\MsMpCom.dll
c:\program files\Microsoft Security Client\Antimalware\MsMpEng.exe
c:\program files\Microsoft Security Client\Antimalware\MsMpLics.dll
c:\program files\Microsoft Security Client\Backup\cs-cz\amhelp.chm
c:\program files\Microsoft Security Client\Backup\cs-cz\epploc.cab
c:\program files\Microsoft Security Client\Backup\cs-cz\epploc_x86.msi
c:\program files\Microsoft Security Client\Backup\cs-cz\eula.rtf
c:\program files\Microsoft Security Client\Backup\cs-cz\setupres.dll.mui
c:\program files\Microsoft Security Client\Backup\cs-cz\x86\amloc-cs-cz.msi
c:\program files\Microsoft Security Client\Backup\en-us\amhelp.chm
c:\program files\Microsoft Security Client\Backup\en-us\epploc.cab
c:\program files\Microsoft Security Client\Backup\en-us\epploc_x86.msi
c:\program files\Microsoft Security Client\Backup\en-us\eula.rtf
c:\program files\Microsoft Security Client\Backup\en-us\setupres.dll.mui
c:\program files\Microsoft Security Client\Backup\eppmanifest.dll
c:\program files\Microsoft Security Client\Backup\setupres.dll
c:\program files\Microsoft Security Client\Backup\x86\dw20shared.msi
c:\program files\Microsoft Security Client\Backup\x86\epp.msi
c:\program files\Microsoft Security Client\Backup\x86\legitlib.dll
c:\program files\Microsoft Security Client\Backup\x86\mp_ambits.msi
c:\program files\Microsoft Security Client\Backup\x86\setup.exe
c:\program files\Microsoft Security Client\Backup\x86\sqmapi.dll
c:\program files\Microsoft Security Client\Backup\x86\windows6.0-kb981889-v2.msu
c:\program files\Microsoft Security Client\Backup\x86\windows6.1-kb981889.msu
c:\program files\Microsoft Security Client\CleanUpPolicy.xml
c:\program files\Microsoft Security Client\ConfigSecurityPolicy.exe
c:\program files\Microsoft Security Client\CS-CZ\amhelp.chm
c:\program files\Microsoft Security Client\CS-CZ\eula.rtf
c:\program files\Microsoft Security Client\CS-CZ\MsMpRes.dll.mui
c:\program files\Microsoft Security Client\CS-CZ\setupres.dll.mui
c:\program files\Microsoft Security Client\CS-CZ\shellext.dll.mui
c:\program files\Microsoft Security Client\en-us\amhelp.chm
c:\program files\Microsoft Security Client\en-us\eula.rtf
c:\program files\Microsoft Security Client\en-us\MsMpRes.dll.mui
c:\program files\Microsoft Security Client\en-us\setupres.dll.mui
c:\program files\Microsoft Security Client\en-us\shellext.dll.mui
c:\program files\Microsoft Security Client\eppmanifest.dll
c:\program files\Microsoft Security Client\LegitLib.dll
c:\program files\Microsoft Security Client\MsMpRes.dll
c:\program files\Microsoft Security Client\msseces.exe
c:\program files\Microsoft Security Client\MsseWat.dll
c:\program files\Microsoft Security Client\setup.exe
c:\program files\Microsoft Security Client\setupres.dll
c:\program files\Microsoft Security Client\shellext.dll
c:\program files\Microsoft Security Client\sqmapi.dll
.
Nakažená kopie c:\windows\system32\drivers\tcpip.sys byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\system32\dllcache\tcpip.sys
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-09-08 do 2011-10-08 )))))))))))))))))))))))))))))))
.
.
2011-10-08 16:42 . 2011-10-08 16:43 -------- d-----w- C:\WINSSLog
2011-10-08 16:35 . 2011-10-08 16:35 27626 ----a-w- C:\FixitRegBackup.reg
2011-10-08 15:03 . 2011-10-08 15:03 -------- d-----w- c:\windows\Resistance
2011-10-08 11:31 . 2011-10-08 11:31 -------- d-----w- C:\rsit
2011-10-08 08:41 . 2011-10-08 08:41 -------- d-sh--w- c:\documents and settings\okaynetbook\Local Settings\Data aplikací\39c9f424
2011-10-07 15:21 . 2011-10-08 08:03 56200 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{71A60099-A880-4BF1-9B97-360984044F6E}\offreg.dll
2011-10-07 15:21 . 2011-09-12 23:14 7269712 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{71A60099-A880-4BF1-9B97-360984044F6E}\mpengine.dll
2011-10-03 05:51 . 2011-10-03 05:51 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Vasilek Games
2011-10-02 19:07 . 2011-10-02 19:07 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Alawar Stargaze
2011-10-02 18:50 . 2011-10-03 05:50 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\wrapper
2011-10-02 18:49 . 2011-10-03 05:50 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Špidla Data Processing, s.r.o
2011-10-02 18:49 . 2011-10-03 05:50 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Špidla Data Processing, s.r.o
2011-09-28 21:50 . 2011-09-03 06:40 134104 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll
2011-09-28 21:50 . 2011-09-03 06:40 89048 ----a-w- c:\program files\Mozilla Firefox\libEGL.dll
2011-09-28 21:50 . 2011-09-03 06:40 785368 ----a-w- c:\program files\Mozilla Firefox\mozsqlite3.dll
2011-09-28 21:50 . 2011-09-03 06:40 478168 ----a-w- c:\program files\Mozilla Firefox\libGLESv2.dll
2011-09-28 21:50 . 2011-09-03 06:40 1846232 ----a-w- c:\program files\Mozilla Firefox\mozjs.dll
2011-09-28 21:50 . 2011-09-03 06:40 15832 ----a-w- c:\program files\Mozilla Firefox\mozalloc.dll
2011-09-28 21:50 . 2011-09-02 23:25 2106216 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_43.dll
2011-09-28 21:50 . 2011-09-02 23:25 1998168 ----a-w- c:\program files\Mozilla Firefox\d3dx9_43.dll
2011-09-22 18:46 . 2011-09-22 18:46 -------- d-----w- c:\program files\upnito.sk manager
2011-09-16 22:15 . 2011-09-16 22:15 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\AutoHideIP
2011-09-16 22:15 . 2011-09-16 22:15 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AutoHideIP
2011-09-15 15:12 . 2011-07-06 15:14 101616 ----a-w- c:\windows\system32\drivers\idmtdi.sys
2011-09-10 16:02 . 2011-09-10 16:02 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Sahmon Games
2011-09-10 15:14 . 2011-09-10 15:14 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Meridian93
2011-09-10 14:43 . 2011-09-10 14:43 -------- d-----w- c:\windows\system32\winrm
2011-09-10 14:43 . 2011-09-10 14:43 -------- d-----w- c:\windows\system32\GroupPolicy
2011-09-10 14:43 . 2011-09-10 14:43 -------- dc-h--w- c:\windows\$968930Uinstall_KB968930$
2011-09-10 14:07 . 2011-09-10 14:07 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll
2011-09-09 09:35 . 2011-09-09 09:35 -------- d-----w- c:\documents and settings\okaynetbook\Local Settings\Data aplikací\MPlayer
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-29 09:24 . 2011-08-13 06:20 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-12 23:14 . 2011-01-24 18:19 7269712 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-09-09 09:12 . 2009-09-01 22:26 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-08-16 16:46 . 2009-09-01 21:01 6427240 ----a-w- c:\windows\system32\drivers\RtkHDAud.sys
2011-08-15 14:47 . 2009-09-01 21:01 60008 ----a-w- c:\windows\system32\RtkCoInstXP.dll
2011-08-09 14:14 . 2009-09-01 21:01 20055144 ----a-w- c:\windows\RTHDCPL.EXE
2011-08-04 14:59 . 2009-09-01 21:01 1493608 ----a-w- c:\windows\RtlUpd.exe
2011-07-29 04:34 . 2011-07-29 04:34 689664 ----a-w- c:\windows\system32\yowindow.scr
2011-07-15 13:29 . 2009-09-01 22:26 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-07-13 03:39 . 2011-08-15 20:46 6881616 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\Updates\mpengine.dll
2011-07-11 12:17 . 2009-09-01 21:01 1698408 ----a-w- c:\windows\RtlExUpd.dll
2010-05-01 14:50 . 2011-05-09 19:40 2536390 ----a-w- c:\program files\IDM.5.19.2.exe
2008-03-09 05:25 . 2010-05-17 19:18 236 ----a-w- c:\program files\Common Files\dx.reg
2011-09-03 06:40 . 2011-09-28 21:50 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-09-29_18.24.49 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-10-08 17:50 . 2011-10-08 17:50 16384 c:\windows\temp\Perflib_Perfdata_65c.dat
+ 2011-08-15 20:39 . 2007-11-30 12:39 17272 c:\windows\system32\spmsg.dll
+ 1998-08-09 09:07 . 1998-08-09 09:07 94208 c:\windows\system32\MSSTKPRP.DLL
+ 1998-06-17 17:08 . 1998-06-17 17:08 53248 c:\windows\system32\MFC42ENU.DLL
+ 2011-10-08 14:21 . 2011-10-08 14:21 27136 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\oisicon.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 12288 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 64088 c:\windows\assembly\GAC\Microsoft.Vbe.Interop\11.0.0.0__71e9bce111e9429c\Microsoft.Vbe.Interop.dll
+ 2011-10-08 14:21 . 2011-10-08 14:21 4096 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2000-04-03 15:52 . 2000-04-03 15:52 151552 c:\windows\system32\RDOCURS.DLL
+ 2000-05-11 11:06 . 2000-05-11 11:06 397312 c:\windows\system32\MSRDO20.DLL
+ 2011-10-08 15:03 . 2011-10-08 15:03 451072 c:\windows\Resistance\uninstall.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 135168 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\misc.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 282624 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\fpicon.exe
+ 2011-07-05 22:50 . 2011-10-08 15:02 102400 c:\windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\ARPPRODUCTICON.exe
- 2011-07-05 22:50 . 2011-07-05 22:50 102400 c:\windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\ARPPRODUCTICON.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 223800 c:\windows\assembly\GAC\office\11.0.0.0__71e9bce111e9429c\OFFICE.DLL
+ 2011-10-08 15:02 . 2011-10-08 15:03 2245120 c:\windows\Installer\7fea5e.msi
+ 2011-10-08 14:21 . 2011-10-08 14:21 3035648 c:\windows\Installer\5916b7.msi
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2011-05-30 16:50 21864 ----a-w- c:\program files\IDM.5.19.2\IDMShellExt.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Eee Docking"="c:\program files\ASUS\Eee Docking\Eee Docking.exe" [2009-07-27 397312]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2011-08-09 20055144]
"GrooveMonitor"="d:\programy\Microsoft Office 2007 CZ full\Office12\GrooveMonitor.exe" [2008-10-25 31072]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2008-11-04 435096]
.
c:\documents and settings\okaynetbook\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Z stupce - sndvol32.lnk - c:\windows\system32\sndvol32.exe [2009-9-1 138752]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMBalloonTip"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\muzapp.exe"=
"d:\\programy\\Microsoft Office 2007 CZ full\\Office12\\GROOVE.EXE"=
"d:\\Games\\left_4_dead\\left 4 dead\\hl2.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\ICQ7.2\\ICQ.exe"=
"c:\\Documents and Settings\\okaynetbook\\Plocha\\RSIT.exe"=
"c:\\Program Files\\Common Files\\Microsoft Shared\\DW\\DW20.EXE"=
"c:\\WINDOWS\\system32\\msiexec.exe"=
"c:\\Program Files\\Google\\Update\\GoogleUpdate.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
.
R0 BtHidBus;Bluetooth HID Bus Service;c:\windows\system32\drivers\BtHidBus.sys [31.7.2008 20:45 20744]
R1 IDMTDI;IDMTDI;c:\windows\system32\drivers\idmtdi.sys [15.9.2011 17:12 101616]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [6.7.2011 19:21 13592]
R2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\system32\NlsSrv32.exe [4.8.2010 17:06 61440]
R3 L1c;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\l1c51x86.sys [18.8.2009 23:44 61040]
S3 2hotspot controller;2hotspot Miniport;c:\windows\system32\DRIVERS\acontrol.sys --> c:\windows\system32\DRIVERS\acontrol.sys [?]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [1.9.2009 23:01 1691480]
S3 btnetBUs;Bluetooth PAN Bus Service;c:\windows\system32\drivers\btnetBus.sys [7.12.2008 12:44 30088]
S3 dc3d;MS Hardware Device Detection Driver;c:\windows\system32\drivers\dc3d.sys [6.7.2011 18:43 44432]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys --> c:\windows\system32\drivers\dgderdrv.sys [?]
S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [6.7.2011 0:22 23456]
S3 FsUsbExDisk;FsUsbExDisk;\??\c:\windows\system32\FsUsbExDisk.SYS --> c:\windows\system32\FsUsbExDisk.SYS [?]
S3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\drivers\IvtBtBus.sys [2.7.2008 14:58 26248]
S3 NANMp50;NANMp50 NDIS Protocol Driver;c:\windows\system32\Drivers\NANMp50.sys --> c:\windows\system32\Drivers\NANMp50.sys [?]
S3 Pcouffin;Low level access layer for CD devices;c:\windows\system32\Drivers\Pcouffin.sys --> c:\windows\system32\Drivers\Pcouffin.sys [?]
S3 RT80x86;Ralink 802.11n Wireless Driver;c:\windows\system32\drivers\rt2860.sys [22.8.2011 17:18 2240064]
S3 RTLWUSB;AirLive WL1600USB;c:\windows\system32\drivers\RTL8187.sys [2.3.2011 16:00 323328]
S3 SndTAudio;SndTAudio;c:\windows\system32\drivers\SndTAudio.sys [7.11.2010 5:59 23608]
S3 STSService;STSService;"c:\program files\SoundTaxi Media Suite\STSService.exe" --> c:\program files\SoundTaxi Media Suite\STSService.exe [?]
S3 uvclf;uvclf;c:\windows\system32\drivers\uvclf.sys [12.8.2009 8:57 39040]
S3 widseasd;Widsea Secret Disk Service;\??\c:\documents and settings\okaynetbook\Dokumenty\Downloads\Music\TS-Disk1.63\TS-Disk1.63\widseasd.sys --> c:\documents and settings\okaynetbook\Dokumenty\Downloads\Music\TS-Disk1.63\TS-Disk1.63\widseasd.sys [?]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2.9.2009 0:26 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe --> c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WINRM REG_MULTI_SZ WINRM
.
Obsah adresáře 'Naplánované úlohy'
.
2011-10-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-15 20:00]
.
2011-10-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-15 20:00]
.
2011-07-06 c:\windows\Tasks\Microsoft_Hardware_Launch_IPoint_exe.job
- c:\program files\Microsoft IntelliPoint\ipoint.exe [2010-07-21 14:52]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com/
uSearchURL,(Default) = hxxp://www.google.com.eg/keyword/%s
IE: ????3??
IE: ????3??????
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
IE: Stáhnout s IDM - c:\program files\IDM.5.19.2\IEExt.htm
IE: Stáhnout s IDM obsah FLV videa - c:\program files\IDM.5.19.2\IEGetVL.htm
IE: Stáhnout s IDM všechny odkazy - c:\program files\IDM.5.19.2\IEGetAll.htm
IE: Stáhnout vše pomocí FlashGet - c:\program files\FlashGet\jc_all.htm
IE: Translate this web page with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm
IE: Translate with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm
IE: ????3?? - c:\documents and settings\okaynetbook\Data aplikací\FlashGetBHO\GetUrl.htm
IE: ????3?????? - c:\documents and settings\okaynetbook\Data aplikací\FlashGetBHO\GetAllUrl.htm
TCP: DhcpNameServer = 217.119.127.1 217.119.127.200
FF - ProfilePath - c:\documents and settings\okaynetbook\Data aplikací\Mozilla\Firefox\Profiles\6jpdurms.default\
FF - prefs.js: browser.startup.homepage - www.google.com
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-Run-MSC - c:\program files\Microsoft Security Client\msseces.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-10-08 19:51
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3626335844-41941361-4021371189-1005\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}Ź]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
@="c:\\Documents and Settings\\okaynetbook\\Data aplikací\\FlashGetBHO\\GetUrl.htm"
"contexts"=dword:00000022
.
[HKEY_USERS\S-1-5-21-3626335844-41941361-4021371189-1005\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}ŹhQčţ”Ąc]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
@="c:\\Documents and Settings\\okaynetbook\\Data aplikací\\FlashGetBHO\\GetAllUrl.htm"
"contexts"=dword:000000f3
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(772)
c:\windows\SYSTEM32\RtlGina\RtlGina.DLL
.
- - - - - - - > 'explorer.exe'(3812)
c:\program files\IDM.5.19.2\IDMShellExt.dll
c:\program files\IDM.5.19.2\IDMNetMon.DLL
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\wscntfy.exe
c:\windows\RTHDCPL.EXE
.
**************************************************************************
.
Celkový čas: 2011-10-08 19:57:19 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-10-08 17:57
ComboFix2.txt 2011-10-08 17:19
ComboFix3.txt 2011-10-08 12:50
ComboFix4.txt 2011-09-29 21:49
ComboFix5.txt 2011-10-08 17:37
.
Před spuštěním: 4 646 215 680
Po spuštění: 4 607 774 720
.
- - End Of File - - DF30641826FF41C79B78BEE2F59A4F8E
ComboFix 11-10-08.01 - okaynetbook 08.10.2011 19:38:57.9.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1015.482 [GMT 2:00]
Spuštěný z: c:\documents and settings\okaynetbook\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\okaynetbook\Plocha\CFScript.txt
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
FILE ::
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\Tasks\Microsoft_Hardware_Launch_IPoint_exe.job"
.
ADS - WINDOWS: deleted 0 bytes in 1 streams.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Ask.com
c:\program files\Ask.com\config.xml
c:\program files\Ask.com\mupcfg.xml
c:\program files\Ask.com\SaUpdate.exe
c:\program files\Microsoft Security Client
c:\program files\Microsoft Security Client\Antimalware\Drivers\mpfilter\mpfilter.cat
c:\program files\Microsoft Security Client\Antimalware\Drivers\mpfilter\mpfilter.inf
c:\program files\Microsoft Security Client\Antimalware\Drivers\mpfilter\mpfilter.sys
c:\program files\Microsoft Security Client\Antimalware\Drivers\mpnwmon\mpnwmon.cat
c:\program files\Microsoft Security Client\Antimalware\Drivers\mpnwmon\mpnwmon.inf
c:\program files\Microsoft Security Client\Antimalware\Drivers\mpnwmon\mpnwmon.sys
c:\program files\Microsoft Security Client\Antimalware\EN-US\MpAsDesc.dll.mui
c:\program files\Microsoft Security Client\Antimalware\EN-US\mpevmsg.dll.mui
c:\program files\Microsoft Security Client\Antimalware\MpAsDesc.dll
c:\program files\Microsoft Security Client\Antimalware\MpClient.dll
c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe
c:\program files\Microsoft Security Client\Antimalware\MpCommu.dll
c:\program files\Microsoft Security Client\Antimalware\MpEvMsg.dll
c:\program files\Microsoft Security Client\Antimalware\MpOAv.dll
c:\program files\Microsoft Security Client\Antimalware\MpRTP.dll
c:\program files\Microsoft Security Client\Antimalware\MpSvc.dll
c:\program files\Microsoft Security Client\Antimalware\MsMpCom.dll
c:\program files\Microsoft Security Client\Antimalware\MsMpEng.exe
c:\program files\Microsoft Security Client\Antimalware\MsMpLics.dll
c:\program files\Microsoft Security Client\Backup\cs-cz\amhelp.chm
c:\program files\Microsoft Security Client\Backup\cs-cz\epploc.cab
c:\program files\Microsoft Security Client\Backup\cs-cz\epploc_x86.msi
c:\program files\Microsoft Security Client\Backup\cs-cz\eula.rtf
c:\program files\Microsoft Security Client\Backup\cs-cz\setupres.dll.mui
c:\program files\Microsoft Security Client\Backup\cs-cz\x86\amloc-cs-cz.msi
c:\program files\Microsoft Security Client\Backup\en-us\amhelp.chm
c:\program files\Microsoft Security Client\Backup\en-us\epploc.cab
c:\program files\Microsoft Security Client\Backup\en-us\epploc_x86.msi
c:\program files\Microsoft Security Client\Backup\en-us\eula.rtf
c:\program files\Microsoft Security Client\Backup\en-us\setupres.dll.mui
c:\program files\Microsoft Security Client\Backup\eppmanifest.dll
c:\program files\Microsoft Security Client\Backup\setupres.dll
c:\program files\Microsoft Security Client\Backup\x86\dw20shared.msi
c:\program files\Microsoft Security Client\Backup\x86\epp.msi
c:\program files\Microsoft Security Client\Backup\x86\legitlib.dll
c:\program files\Microsoft Security Client\Backup\x86\mp_ambits.msi
c:\program files\Microsoft Security Client\Backup\x86\setup.exe
c:\program files\Microsoft Security Client\Backup\x86\sqmapi.dll
c:\program files\Microsoft Security Client\Backup\x86\windows6.0-kb981889-v2.msu
c:\program files\Microsoft Security Client\Backup\x86\windows6.1-kb981889.msu
c:\program files\Microsoft Security Client\CleanUpPolicy.xml
c:\program files\Microsoft Security Client\ConfigSecurityPolicy.exe
c:\program files\Microsoft Security Client\CS-CZ\amhelp.chm
c:\program files\Microsoft Security Client\CS-CZ\eula.rtf
c:\program files\Microsoft Security Client\CS-CZ\MsMpRes.dll.mui
c:\program files\Microsoft Security Client\CS-CZ\setupres.dll.mui
c:\program files\Microsoft Security Client\CS-CZ\shellext.dll.mui
c:\program files\Microsoft Security Client\en-us\amhelp.chm
c:\program files\Microsoft Security Client\en-us\eula.rtf
c:\program files\Microsoft Security Client\en-us\MsMpRes.dll.mui
c:\program files\Microsoft Security Client\en-us\setupres.dll.mui
c:\program files\Microsoft Security Client\en-us\shellext.dll.mui
c:\program files\Microsoft Security Client\eppmanifest.dll
c:\program files\Microsoft Security Client\LegitLib.dll
c:\program files\Microsoft Security Client\MsMpRes.dll
c:\program files\Microsoft Security Client\msseces.exe
c:\program files\Microsoft Security Client\MsseWat.dll
c:\program files\Microsoft Security Client\setup.exe
c:\program files\Microsoft Security Client\setupres.dll
c:\program files\Microsoft Security Client\shellext.dll
c:\program files\Microsoft Security Client\sqmapi.dll
.
Nakažená kopie c:\windows\system32\drivers\tcpip.sys byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\system32\dllcache\tcpip.sys
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-09-08 do 2011-10-08 )))))))))))))))))))))))))))))))
.
.
2011-10-08 16:42 . 2011-10-08 16:43 -------- d-----w- C:\WINSSLog
2011-10-08 16:35 . 2011-10-08 16:35 27626 ----a-w- C:\FixitRegBackup.reg
2011-10-08 15:03 . 2011-10-08 15:03 -------- d-----w- c:\windows\Resistance
2011-10-08 11:31 . 2011-10-08 11:31 -------- d-----w- C:\rsit
2011-10-08 08:41 . 2011-10-08 08:41 -------- d-sh--w- c:\documents and settings\okaynetbook\Local Settings\Data aplikací\39c9f424
2011-10-07 15:21 . 2011-10-08 08:03 56200 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{71A60099-A880-4BF1-9B97-360984044F6E}\offreg.dll
2011-10-07 15:21 . 2011-09-12 23:14 7269712 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{71A60099-A880-4BF1-9B97-360984044F6E}\mpengine.dll
2011-10-03 05:51 . 2011-10-03 05:51 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Vasilek Games
2011-10-02 19:07 . 2011-10-02 19:07 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Alawar Stargaze
2011-10-02 18:50 . 2011-10-03 05:50 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\wrapper
2011-10-02 18:49 . 2011-10-03 05:50 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Špidla Data Processing, s.r.o
2011-10-02 18:49 . 2011-10-03 05:50 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Špidla Data Processing, s.r.o
2011-09-28 21:50 . 2011-09-03 06:40 134104 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll
2011-09-28 21:50 . 2011-09-03 06:40 89048 ----a-w- c:\program files\Mozilla Firefox\libEGL.dll
2011-09-28 21:50 . 2011-09-03 06:40 785368 ----a-w- c:\program files\Mozilla Firefox\mozsqlite3.dll
2011-09-28 21:50 . 2011-09-03 06:40 478168 ----a-w- c:\program files\Mozilla Firefox\libGLESv2.dll
2011-09-28 21:50 . 2011-09-03 06:40 1846232 ----a-w- c:\program files\Mozilla Firefox\mozjs.dll
2011-09-28 21:50 . 2011-09-03 06:40 15832 ----a-w- c:\program files\Mozilla Firefox\mozalloc.dll
2011-09-28 21:50 . 2011-09-02 23:25 2106216 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_43.dll
2011-09-28 21:50 . 2011-09-02 23:25 1998168 ----a-w- c:\program files\Mozilla Firefox\d3dx9_43.dll
2011-09-22 18:46 . 2011-09-22 18:46 -------- d-----w- c:\program files\upnito.sk manager
2011-09-16 22:15 . 2011-09-16 22:15 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\AutoHideIP
2011-09-16 22:15 . 2011-09-16 22:15 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AutoHideIP
2011-09-15 15:12 . 2011-07-06 15:14 101616 ----a-w- c:\windows\system32\drivers\idmtdi.sys
2011-09-10 16:02 . 2011-09-10 16:02 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Sahmon Games
2011-09-10 15:14 . 2011-09-10 15:14 -------- d-----w- c:\documents and settings\okaynetbook\Data aplikací\Meridian93
2011-09-10 14:43 . 2011-09-10 14:43 -------- d-----w- c:\windows\system32\winrm
2011-09-10 14:43 . 2011-09-10 14:43 -------- d-----w- c:\windows\system32\GroupPolicy
2011-09-10 14:43 . 2011-09-10 14:43 -------- dc-h--w- c:\windows\$968930Uinstall_KB968930$
2011-09-10 14:07 . 2011-09-10 14:07 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll
2011-09-09 09:35 . 2011-09-09 09:35 -------- d-----w- c:\documents and settings\okaynetbook\Local Settings\Data aplikací\MPlayer
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-29 09:24 . 2011-08-13 06:20 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-12 23:14 . 2011-01-24 18:19 7269712 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-09-09 09:12 . 2009-09-01 22:26 602112 ----a-w- c:\windows\system32\crypt32.dll
2011-08-16 16:46 . 2009-09-01 21:01 6427240 ----a-w- c:\windows\system32\drivers\RtkHDAud.sys
2011-08-15 14:47 . 2009-09-01 21:01 60008 ----a-w- c:\windows\system32\RtkCoInstXP.dll
2011-08-09 14:14 . 2009-09-01 21:01 20055144 ----a-w- c:\windows\RTHDCPL.EXE
2011-08-04 14:59 . 2009-09-01 21:01 1493608 ----a-w- c:\windows\RtlUpd.exe
2011-07-29 04:34 . 2011-07-29 04:34 689664 ----a-w- c:\windows\system32\yowindow.scr
2011-07-15 13:29 . 2009-09-01 22:26 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-07-13 03:39 . 2011-08-15 20:46 6881616 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\Updates\mpengine.dll
2011-07-11 12:17 . 2009-09-01 21:01 1698408 ----a-w- c:\windows\RtlExUpd.dll
2010-05-01 14:50 . 2011-05-09 19:40 2536390 ----a-w- c:\program files\IDM.5.19.2.exe
2008-03-09 05:25 . 2010-05-17 19:18 236 ----a-w- c:\program files\Common Files\dx.reg
2011-09-03 06:40 . 2011-09-28 21:50 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-09-29_18.24.49 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-10-08 17:50 . 2011-10-08 17:50 16384 c:\windows\temp\Perflib_Perfdata_65c.dat
+ 2011-08-15 20:39 . 2007-11-30 12:39 17272 c:\windows\system32\spmsg.dll
+ 1998-08-09 09:07 . 1998-08-09 09:07 94208 c:\windows\system32\MSSTKPRP.DLL
+ 1998-06-17 17:08 . 1998-06-17 17:08 53248 c:\windows\system32\MFC42ENU.DLL
+ 2011-10-08 14:21 . 2011-10-08 14:21 27136 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\oisicon.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 12288 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 64088 c:\windows\assembly\GAC\Microsoft.Vbe.Interop\11.0.0.0__71e9bce111e9429c\Microsoft.Vbe.Interop.dll
+ 2011-10-08 14:21 . 2011-10-08 14:21 4096 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2000-04-03 15:52 . 2000-04-03 15:52 151552 c:\windows\system32\RDOCURS.DLL
+ 2000-05-11 11:06 . 2000-05-11 11:06 397312 c:\windows\system32\MSRDO20.DLL
+ 2011-10-08 15:03 . 2011-10-08 15:03 451072 c:\windows\Resistance\uninstall.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 135168 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\misc.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 282624 c:\windows\Installer\{90170409-6000-11D3-8CFE-0150048383C9}\fpicon.exe
+ 2011-07-05 22:50 . 2011-10-08 15:02 102400 c:\windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\ARPPRODUCTICON.exe
- 2011-07-05 22:50 . 2011-07-05 22:50 102400 c:\windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\ARPPRODUCTICON.exe
+ 2011-10-08 14:21 . 2011-10-08 14:21 223800 c:\windows\assembly\GAC\office\11.0.0.0__71e9bce111e9429c\OFFICE.DLL
+ 2011-10-08 15:02 . 2011-10-08 15:03 2245120 c:\windows\Installer\7fea5e.msi
+ 2011-10-08 14:21 . 2011-10-08 14:21 3035648 c:\windows\Installer\5916b7.msi
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2011-05-30 16:50 21864 ----a-w- c:\program files\IDM.5.19.2\IDMShellExt.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Eee Docking"="c:\program files\ASUS\Eee Docking\Eee Docking.exe" [2009-07-27 397312]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2011-08-09 20055144]
"GrooveMonitor"="d:\programy\Microsoft Office 2007 CZ full\Office12\GrooveMonitor.exe" [2008-10-25 31072]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2008-11-04 435096]
.
c:\documents and settings\okaynetbook\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Z stupce - sndvol32.lnk - c:\windows\system32\sndvol32.exe [2009-9-1 138752]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMBalloonTip"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\muzapp.exe"=
"d:\\programy\\Microsoft Office 2007 CZ full\\Office12\\GROOVE.EXE"=
"d:\\Games\\left_4_dead\\left 4 dead\\hl2.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\ICQ7.2\\ICQ.exe"=
"c:\\Documents and Settings\\okaynetbook\\Plocha\\RSIT.exe"=
"c:\\Program Files\\Common Files\\Microsoft Shared\\DW\\DW20.EXE"=
"c:\\WINDOWS\\system32\\msiexec.exe"=
"c:\\Program Files\\Google\\Update\\GoogleUpdate.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
.
R0 BtHidBus;Bluetooth HID Bus Service;c:\windows\system32\drivers\BtHidBus.sys [31.7.2008 20:45 20744]
R1 IDMTDI;IDMTDI;c:\windows\system32\drivers\idmtdi.sys [15.9.2011 17:12 101616]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [6.7.2011 19:21 13592]
R2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\system32\NlsSrv32.exe [4.8.2010 17:06 61440]
R3 L1c;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\l1c51x86.sys [18.8.2009 23:44 61040]
S3 2hotspot controller;2hotspot Miniport;c:\windows\system32\DRIVERS\acontrol.sys --> c:\windows\system32\DRIVERS\acontrol.sys [?]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [1.9.2009 23:01 1691480]
S3 btnetBUs;Bluetooth PAN Bus Service;c:\windows\system32\drivers\btnetBus.sys [7.12.2008 12:44 30088]
S3 dc3d;MS Hardware Device Detection Driver;c:\windows\system32\drivers\dc3d.sys [6.7.2011 18:43 44432]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys --> c:\windows\system32\drivers\dgderdrv.sys [?]
S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [6.7.2011 0:22 23456]
S3 FsUsbExDisk;FsUsbExDisk;\??\c:\windows\system32\FsUsbExDisk.SYS --> c:\windows\system32\FsUsbExDisk.SYS [?]
S3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\drivers\IvtBtBus.sys [2.7.2008 14:58 26248]
S3 NANMp50;NANMp50 NDIS Protocol Driver;c:\windows\system32\Drivers\NANMp50.sys --> c:\windows\system32\Drivers\NANMp50.sys [?]
S3 Pcouffin;Low level access layer for CD devices;c:\windows\system32\Drivers\Pcouffin.sys --> c:\windows\system32\Drivers\Pcouffin.sys [?]
S3 RT80x86;Ralink 802.11n Wireless Driver;c:\windows\system32\drivers\rt2860.sys [22.8.2011 17:18 2240064]
S3 RTLWUSB;AirLive WL1600USB;c:\windows\system32\drivers\RTL8187.sys [2.3.2011 16:00 323328]
S3 SndTAudio;SndTAudio;c:\windows\system32\drivers\SndTAudio.sys [7.11.2010 5:59 23608]
S3 STSService;STSService;"c:\program files\SoundTaxi Media Suite\STSService.exe" --> c:\program files\SoundTaxi Media Suite\STSService.exe [?]
S3 uvclf;uvclf;c:\windows\system32\drivers\uvclf.sys [12.8.2009 8:57 39040]
S3 widseasd;Widsea Secret Disk Service;\??\c:\documents and settings\okaynetbook\Dokumenty\Downloads\Music\TS-Disk1.63\TS-Disk1.63\widseasd.sys --> c:\documents and settings\okaynetbook\Dokumenty\Downloads\Music\TS-Disk1.63\TS-Disk1.63\widseasd.sys [?]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2.9.2009 0:26 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe --> c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WINRM REG_MULTI_SZ WINRM
.
Obsah adresáře 'Naplánované úlohy'
.
2011-10-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-15 20:00]
.
2011-10-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-15 20:00]
.
2011-07-06 c:\windows\Tasks\Microsoft_Hardware_Launch_IPoint_exe.job
- c:\program files\Microsoft IntelliPoint\ipoint.exe [2010-07-21 14:52]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com/
uSearchURL,(Default) = hxxp://www.google.com.eg/keyword/%s
IE: ????3??
IE: ????3??????
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
IE: Stáhnout s IDM - c:\program files\IDM.5.19.2\IEExt.htm
IE: Stáhnout s IDM obsah FLV videa - c:\program files\IDM.5.19.2\IEGetVL.htm
IE: Stáhnout s IDM všechny odkazy - c:\program files\IDM.5.19.2\IEGetAll.htm
IE: Stáhnout vše pomocí FlashGet - c:\program files\FlashGet\jc_all.htm
IE: Translate this web page with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm
IE: Translate with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm
IE: ????3?? - c:\documents and settings\okaynetbook\Data aplikací\FlashGetBHO\GetUrl.htm
IE: ????3?????? - c:\documents and settings\okaynetbook\Data aplikací\FlashGetBHO\GetAllUrl.htm
TCP: DhcpNameServer = 217.119.127.1 217.119.127.200
FF - ProfilePath - c:\documents and settings\okaynetbook\Data aplikací\Mozilla\Firefox\Profiles\6jpdurms.default\
FF - prefs.js: browser.startup.homepage - www.google.com
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-Run-MSC - c:\program files\Microsoft Security Client\msseces.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-10-08 19:51
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3626335844-41941361-4021371189-1005\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}Ź]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
@="c:\\Documents and Settings\\okaynetbook\\Data aplikací\\FlashGetBHO\\GetUrl.htm"
"contexts"=dword:00000022
.
[HKEY_USERS\S-1-5-21-3626335844-41941361-4021371189-1005\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}ŹhQčţ”Ąc]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
@="c:\\Documents and Settings\\okaynetbook\\Data aplikací\\FlashGetBHO\\GetAllUrl.htm"
"contexts"=dword:000000f3
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(772)
c:\windows\SYSTEM32\RtlGina\RtlGina.DLL
.
- - - - - - - > 'explorer.exe'(3812)
c:\program files\IDM.5.19.2\IDMShellExt.dll
c:\program files\IDM.5.19.2\IDMNetMon.DLL
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\wscntfy.exe
c:\windows\RTHDCPL.EXE
.
**************************************************************************
.
Celkový čas: 2011-10-08 19:57:19 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-10-08 17:57
ComboFix2.txt 2011-10-08 17:19
ComboFix3.txt 2011-10-08 12:50
ComboFix4.txt 2011-09-29 21:49
ComboFix5.txt 2011-10-08 17:37
.
Před spuštěním: 4 646 215 680
Po spuštění: 4 607 774 720
.
- - End Of File - - DF30641826FF41C79B78BEE2F59A4F8E
Re: nejde spustit antivir ziadny
Zkuste nyni nainstalovat MSE a napiste co PC
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.-
jarek26
- Návštěvník
- Příspěvky: 121
- Registrován: 23 pro 2008 16:01
- Bydliště: Bardejov
- Kontaktovat uživatele:
Re: nejde spustit antivir ziadny
no prekopiroval som pc a stiahol mse vsetko vyzera v poriadku
dakujem
dakujem
Re: nejde spustit antivir ziadny
Tak jeste uklidime 
Odinstalujte Combofix
T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
OTC http://oldtimer.geekstogo.com/OTC.exe
TFC http://oldtimer.geekstogo.com/TFC.exe
Stahnete Ccleaner (viz muj podpis)
Panel čistič
Dejte novy log z RSIT a napiste co PC, ci je vse OK
Odinstalujte Combofix
- Prejmenujte ComboFix na Uninstall
- Spustte jej
- Tohle smaze Combofix a jeho slozky
T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
- Stahnete a spustte
- Pro potvrzeni volby mackejte A, Enter
- Po pouziti utilitu smazte
- Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
OTC http://oldtimer.geekstogo.com/OTC.exe
- Stahnete a spustte
- Kliknete na CleanUp a potvrdte YES
- Program uklidi a restartuje PC
TFC http://oldtimer.geekstogo.com/TFC.exe
- Stahnete a spustte
- Kliknete na Start a potvrdte OK
- Program uklidi a restartuje pc
- Po pouziti utilitu smazte
Stahnete Ccleaner (viz muj podpis)Panel čistič
- Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
- dejte Hledej problémy
- nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
- postup opakujte dokud nebude bez problemu - vetsinou cca 3x
- Zde muzete odinstalovat nepotrebne programy
Dejte novy log z RSIT a napiste co PC, ci je vse OK"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.-
jarek26
- Návštěvník
- Příspěvky: 121
- Registrován: 23 pro 2008 16:01
- Bydliště: Bardejov
- Kontaktovat uživatele:
Re: nejde spustit antivir ziadny
no zabudol som na combofix,ale T-cleaner mi z plochy odstranil combofix,dalej pri tfc mi dokoncilo scan a nerestartvoalo pc tak som to urobil ja,zatial je pc v poriadku,a log z rsit:
Logfile of random's system information tool 1.09 (written by random/random)
Run by okaynetbook at 2011-10-09 16:50:57
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 8 GB (11%) free of 74 GB
Total RAM: 1015 MB (41% free)
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Microsoft_Hardware_Launch_IPoint_exe.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
C:\WINDOWS\tasks\MpIdleTask.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\okaynetbook\Data aplikací\Mozilla\Firefox\Profiles\6jpdurms.default
prefs.js - "browser.startup.homepage" - "www.google.com"
prefs.js - "extensions.enabledItems" - "{20a82645-c095-46ed-80e3-08825760534b}:1.2.1, jqs@sun.com:1.0, mozilla_cc@internetdownloadmanager.com:6.9.7, translator@zoli.bod:2.1.0.1, {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.23"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8064.0206]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprphtml5videoshim;version=1.0.0.0]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
FlashGet3.xpi
C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
NPOFFICE.DLL
nppdf32.dll
C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml
C:\Documents and Settings\okaynetbook\Data aplikací\Mozilla\Firefox\Profiles\6jpdurms.default\extensions\
{20a82645-c095-46ed-80e3-08825760534b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files\IDM.5.19.2\IDMIECC.dll [2011-09-15 210352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2009-07-15 1586472]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\programy\Microsoft Office 2007 CZ full\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-29 305328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll [2011-08-12 1007160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C9F97205-62A3-41F2-9F2C-D99392F882EB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-08-03 42272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-08-03 79648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
{855F3B16-6D32-4FE6-8A56-BBB695989046}
{E0E899AB-F487-11D5-8D29-0050BA6940E3}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-29 305328]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2011-08-09 20055144]
"GrooveMonitor"=D:\programy\Microsoft Office 2007 CZ full\Office12\GrooveMonitor.exe [2008-10-25 31072]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2011-06-15 997920]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Eee Docking"=C:\Program Files\ASUS\Eee Docking\Eee Docking.exe [2009-07-27 397312]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Linguarde"=C:\Program Files\Linguarde\linguarde.exe [2011-04-03 510464]
C:\Documents and Settings\okaynetbook\Nabídka Start\Programy\Po spuštění
Zástupce - sndvol32.lnk - C:\WINDOWS\system32\sndvol32.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-15 208896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\programy\Microsoft Office 2007 CZ full\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoSMBalloonTip"=0
"NoDriveAutoRun"=67108863
"NoInstrumentation"=1
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"NoResolveSearch"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\muzapp.exe"="C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player"
"D:\programy\Microsoft Office 2007 CZ full\Office12\GROOVE.EXE"="D:\programy\Microsoft Office 2007 CZ full\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"D:\Games\left_4_dead\left 4 dead\hl2.exe"="D:\Games\left_4_dead\left 4 dead\hl2.exe:*:Enabled:hl2"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\ICQ7.2\ICQ.exe"="C:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ"
"C:\Documents and Settings\okaynetbook\Plocha\RSIT.exe"="C:\Documents and Settings\okaynetbook\Plocha\RSIT.exe:*:Enabled:RSIT"
"C:\Program Files\Common Files\Microsoft Shared\DW\DW20.EXE"="C:\Program Files\Common Files\Microsoft Shared\DW\DW20.EXE:*:Enabled:Microsoft Application Error Reporting"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:Windows® installer"
"C:\Program Files\Google\Update\GoogleUpdate.exe"="C:\Program Files\Google\Update\GoogleUpdate.exe:*:Enabled:Instalační program Google"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\Iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"msacm.siren"=sirenacm.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"VIDC.WMV3"=wmv9vcm.dll
"VIDC.DIVX"=divx.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.VP60"=vp6vfw.dll
"vidc.VP61"=vp6vfw.dll
"vidc.VP62"=vp6vfw.dll
"vidc.XVID"=xvidvfw.dll
"vidc.mjpg"=pvmjpg30.dll
"vidc.MPG4"=MPG4c32.dll
"vidc.MP42"=MPG4c32.dll
"vidc.MP43"=MPG4c32.dll
"msacm.divxa32"=msaud32_divx.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======List of files/folders created in the last 1 month======
2011-10-09 16:50:57 ----D---- C:\rsit
2011-10-08 20:10:45 ----D---- C:\Program Files\Microsoft Security Client
2011-10-08 20:01:35 ----SHD---- C:\RECYCLER
2011-10-08 19:49:40 ----D---- C:\WINDOWS\temp
2011-10-08 17:03:01 ----D---- C:\WINDOWS\Resistance
2011-10-08 14:06:56 ----HDC---- C:\WINDOWS\$NtUninstallKB953356$
2011-10-03 07:51:20 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\Vasilek Games
2011-10-02 21:07:17 ----D---- C:\Documents and Settings\All Users\Data aplikací\Alawar Stargaze
2011-10-02 20:50:11 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\wrapper
2011-10-02 20:49:04 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\Špidla Data Processing, s.r.o
2011-10-02 20:49:04 ----D---- C:\Documents and Settings\All Users\Data aplikací\Špidla Data Processing, s.r.o
2011-10-01 11:49:00 ----A---- C:\WINDOWS\popcinfo.dat
2011-09-17 00:15:47 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\AutoHideIP
2011-09-17 00:15:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\AutoHideIP
2011-09-15 23:07:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2616676$
2011-09-15 22:57:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2570947$
2011-09-15 17:12:49 ----A---- C:\WINDOWS\system32\drivers\idmtdi.sys
2011-09-10 18:02:57 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\Sahmon Games
2011-09-10 17:14:15 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\Meridian93
2011-09-10 16:44:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2492386$
2011-09-10 16:43:21 ----D---- C:\WINDOWS\system32\WindowsPowerShell
2011-09-10 16:43:20 ----D---- C:\WINDOWS\system32\winrm
2011-09-10 16:43:20 ----D---- C:\WINDOWS\system32\GroupPolicy
2011-09-10 16:43:07 ----HDC---- C:\WINDOWS\$968930Uinstall_KB968930$
2011-09-10 16:43:05 ----D---- C:\WINDOWS\$NtUninstallKB968930$
2011-09-10 16:41:18 ----HDC---- C:\WINDOWS\$NtUninstallKB971513$
2011-09-10 16:07:14 ----A---- C:\WINDOWS\system32\CmdLineExt03.dll
2011-09-10 09:00:50 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\Real
======List of files/folders modified in the last 1 month======
2011-10-09 16:49:55 ----D---- C:\WINDOWS\Prefetch
2011-10-09 16:44:41 ----SD---- C:\WINDOWS\Tasks
2011-10-09 16:44:06 ----AD---- C:\WINDOWS
2011-10-09 16:41:12 ----D---- C:\Program Files\Mozilla Firefox
2011-10-09 16:40:23 ----D---- C:\WINDOWS\system32\CatRoot2
2011-10-09 16:38:47 ----N---- C:\WINDOWS\SchedLgU.Txt
2011-10-09 16:33:34 ----AD---- C:\WINDOWS\system32
2011-10-09 16:29:09 ----SHD---- C:\System Volume Information
2011-10-09 16:29:09 ----D---- C:\WINDOWS\system32\Restore
2011-10-09 16:27:50 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\DMCache
2011-10-09 16:18:41 ----D---- C:\Qoobox
2011-10-09 16:18:38 ----D---- C:\Program Files\trend micro
2011-10-09 16:06:55 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\IDM
2011-10-08 23:13:07 ----SHD---- C:\WINDOWS\Installer
2011-10-08 23:12:44 ----RSD---- C:\WINDOWS\assembly
2011-10-08 23:12:43 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-10-08 23:03:12 ----RD---- C:\Program Files
2011-10-08 22:32:54 ----D---- C:\Program Files\Pinnacle
2011-10-08 22:32:38 ----D---- C:\Program Files\Common Files
2011-10-08 22:32:36 ----RSD---- C:\WINDOWS\Fonts
2011-10-08 22:17:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2011-10-08 20:11:00 ----D---- C:\WINDOWS\system32\drivers
2011-10-08 19:52:10 ----A---- C:\WINDOWS\system.ini
2011-10-08 19:51:49 ----D---- C:\WINDOWS\system32\drivers\etc
2011-10-08 19:45:23 ----D---- C:\WINDOWS\AppPatch
2011-10-08 19:13:06 ----D---- C:\WINDOWS\system32\config
2011-10-08 19:02:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2011-10-08 16:23:51 ----SD---- C:\Documents and Settings\okaynetbook\Data aplikací\Microsoft
2011-10-08 16:22:08 ----A---- C:\WINDOWS\ODBC.INI
2011-10-08 16:18:34 ----D---- C:\WINDOWS\system
2011-10-08 14:43:13 ----D---- C:\Program Files\Common Files\LightScribe
2011-10-08 14:40:26 ----DC---- C:\WINDOWS\$NtUninstallKB12818$
2011-10-08 14:08:43 ----D---- C:\WINDOWS\system32\CatRoot
2011-10-08 14:07:35 ----HD---- C:\WINDOWS\inf
2011-10-08 14:06:42 ----HD---- C:\WINDOWS\$hf_mig$
2011-10-08 11:49:11 ----D---- C:\WINDOWS\Debug
2011-10-07 19:51:11 ----A---- C:\WINDOWS\NeroDigital.ini
2011-10-03 12:54:21 ----A---- C:\WINDOWS\WirelessFTP.INI
2011-10-01 22:39:13 ----HD---- C:\Program Files\InstallShield Installation Information
2011-09-29 21:13:27 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\Skype
2011-09-29 13:18:21 ----D---- C:\WINDOWS\Microsoft.NET
2011-09-29 00:06:44 ----D---- C:\Program Files\IDM.5.19.2
2011-09-28 08:40:08 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\SEDE
2011-09-23 15:26:13 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-09-16 21:43:14 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\ICQ
2011-09-16 20:31:08 ----D---- C:\Program Files\ICQ7.2
2011-09-16 10:38:02 ----A---- C:\WINDOWS\system32\MRT.exe
2011-09-15 23:07:04 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-09-15 19:17:01 ----RD---- C:\Program Files\Skype
2011-09-15 19:16:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2011-09-15 17:13:14 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\skypePM
2011-09-15 16:37:51 ----D---- C:\WINDOWS\system32\Adobe
2011-09-15 16:37:29 ----D---- C:\WINDOWS\system32\Macromed
2011-09-10 17:56:48 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\YoudaGames
2011-09-10 16:56:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\Apple Computer
2011-09-10 16:50:21 ----D---- C:\WINDOWS\Logs
2011-09-10 16:49:55 ----D---- C:\WINDOWS\security
2011-09-10 16:49:36 ----D---- C:\Program Files\CCleaner
2011-09-10 16:44:46 ----D---- C:\Program Files\Internet Explorer
2011-09-10 16:44:36 ----D---- C:\WINDOWS\ie8updates
2011-09-10 16:43:31 ----D---- C:\WINDOWS\Help
2011-09-10 16:43:20 ----D---- C:\WINDOWS\system32\wbem
2011-09-10 12:45:41 ----A---- C:\WINDOWS\win.ini
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 BtHidBus;Bluetooth HID Bus Service; C:\WINDOWS\System32\Drivers\BtHidBus.sys [2009-01-07 20744]
R0 iaStor;Intel AHCI Controller; C:\WINDOWS\system32\drivers\iaStor.sys [2011-05-20 461592]
R0 prohlp02;StarForce Protection Helper Driver v2; C:\WINDOWS\System32\drivers\prohlp02.sys [2004-08-09 114016]
R0 prosync1;StarForce Protection Synchronization Driver v1; C:\WINDOWS\System32\drivers\prosync1.sys [2004-07-19 7040]
R0 sfhlp01;StarForce Protection Helper Driver; C:\WINDOWS\System32\drivers\sfhlp01.sys [2003-12-01 4832]
R1 IDMTDI;IDMTDI; C:\WINDOWS\system32\DRIVERS\idmtdi.sys [2011-07-06 101616]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys [2011-04-18 165648]
R1 MpKsl17020a40;MpKsl17020a40; \??\C:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{EDBB804A-49E0-4FF4-823C-B457A3000B68}\MpKsl17020a40.sys []
R1 MpKsl264522c6;MpKsl264522c6; \??\C:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{EDBB804A-49E0-4FF4-823C-B457A3000B68}\MpKsl264522c6.sys []
R1 MpKsl4500bf0c;MpKsl4500bf0c; \??\C:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{EDBB804A-49E0-4FF4-823C-B457A3000B68}\MpKsl4500bf0c.sys []
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2004-08-09 53920]
R1 Tosrfcom;Bluetooth RFCOMM; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2007-05-24 64000]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.7.5.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2011-03-02 21361]
R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-02-06 55152]
R3 AsusACPI;ASUS ACPI Driver; C:\WINDOWS\system32\DRIVERS\ASUSACPI.sys [2008-04-08 10752]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2011-08-16 6427240]
R3 L1c;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l1c51x86.sys [2010-04-22 61040]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2008-04-14 5888]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2009-03-13 1759616]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2009-04-09 208816]
R3 tosporte;Bluetooth COM Port; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2006-10-10 41600]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 2hotspot controller;2hotspot Miniport; C:\WINDOWS\system32\DRIVERS\acontrol.sys []
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 btaudio;Zvukové zařízení Bluetooth; C:\WINDOWS\system32\drivers\btaudio.sys []
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys []
S3 BTDriver;Ovladač virtuálních komunikací Bluetooth; C:\WINDOWS\system32\DRIVERS\btport.sys []
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-14 17024]
S3 BTHMODEM;Ovladač pro sériovou komunikaci protokolem Bluetooth; C:\WINDOWS\system32\DRIVERS\bthmodem.sys [2008-04-14 37888]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-14 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-14 18944]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\WINDOWS\System32\Drivers\btnetBus.sys [2008-12-07 30088]
S3 BTWDNDIS;Server pro přístup k síti LAN Bluetooth; C:\WINDOWS\system32\DRIVERS\btwdndis.sys []
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 cpuz132;cpuz132; \??\C:\Program Files\CPUID\PC Wizard 2010\pcwiz32.sys []
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Documents and Settings\okaynetbook\Plocha\MediaCoder\SysInfo.sys []
S3 dc3d;MS Hardware Device Detection Driver; C:\WINDOWS\system32\DRIVERS\dc3d.sys [2010-07-21 44432]
S3 dgderdrv;dgderdrv; C:\WINDOWS\System32\drivers\dgderdrv.sys []
S3 DrvAgent32;DrvAgent32; \??\C:\WINDOWS\system32\Drivers\DrvAgent32.sys []
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [2008-07-02 26248]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NANMp50;NANMp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\NANMp50.sys []
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 NSNDIS5;NSNDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\NSNDIS5.SYS []
S3 NuidFltr;NUID filter driver; C:\WINDOWS\system32\DRIVERS\NuidFltr.sys [2010-07-21 21520]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 Pcouffin;Low level access layer for CD devices; C:\WINDOWS\System32\Drivers\Pcouffin.sys []
S3 Point32;Microsoft IntelliPoint Filter Driver; C:\WINDOWS\system32\DRIVERS\point32.sys [2010-07-21 40848]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-14 59136]
S3 RT80x86;Ralink 802.11n Wireless Driver; C:\WINDOWS\system32\DRIVERS\RT2860.sys [2011-04-15 2240064]
S3 RTLWUSB;AirLive WL1600USB; C:\WINDOWS\system32\DRIVERS\RTL8187.sys [2010-04-06 323328]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 SndTAudio;SndTAudio; C:\WINDOWS\system32\drivers\SndTAudio.sys [2010-09-11 23608]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\WINDOWS\system32\DRIVERS\sscdbus.sys [2007-07-03 80552]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys [2007-07-03 11944]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\WINDOWS\system32\DRIVERS\sscdmdm.sys [2007-07-03 106792]
S3 sscdserd;SAMSUNG Mobile Modem Diagnostic Serial Port (WDM); C:\WINDOWS\system32\DRIVERS\sscdserd.sys [2007-07-03 86824]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 tosrfbd;Bluetooth RFBUS; C:\WINDOWS\system32\DRIVERS\tosrfbd.sys [2007-04-24 113920]
S3 tosrfbnp;Bluetooth RFBNEP; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2006-11-20 36480]
S3 Tosrfhid;Bluetooth RFHID; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2007-03-01 73728]
S3 tosrfnds;Bluetooth Personal Area Network; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
S3 TosRfSnd;Bluetooth Audio; C:\WINDOWS\system32\drivers\tosrfsnd.sys [2007-01-22 53376]
S3 tosrfusb;Bluetooth USB Controller; C:\WINDOWS\system32\DRIVERS\tosrfusb.sys [2007-06-11 41856]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2011-02-18 41984]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-14 121984]
S3 uvclf;uvclf; C:\WINDOWS\system32\DRIVERS\uvclf.sys [2008-11-19 39040]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 widseasd;Widsea Secret Disk Service; \??\C:\Documents and Settings\okaynetbook\Dokumenty\Downloads\Music\TS-Disk1.63\TS-Disk1.63\widseasd.sys []
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2008-04-14 12032]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2011-02-18 37664]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-05-04 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2005-06-21 53248]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2011-04-27 11736]
R2 nlsX86cc;Nalpeiron Licensing Service; C:\WINDOWS\system32\NlsSrv32.exe [2009-06-07 61440]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-02-25 125048]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 fsssvc;Windows Live Zabezpečení rodiny; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-06-19 182768]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; D:\programy\Microsoft Office 2007 CZ full\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-11-11 620544]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Logfile of random's system information tool 1.09 (written by random/random)
Run by okaynetbook at 2011-10-09 16:50:57
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 8 GB (11%) free of 74 GB
Total RAM: 1015 MB (41% free)
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Microsoft_Hardware_Launch_IPoint_exe.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
C:\WINDOWS\tasks\MpIdleTask.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\okaynetbook\Data aplikací\Mozilla\Firefox\Profiles\6jpdurms.default
prefs.js - "browser.startup.homepage" - "www.google.com"
prefs.js - "extensions.enabledItems" - "{20a82645-c095-46ed-80e3-08825760534b}:1.2.1, jqs@sun.com:1.0, mozilla_cc@internetdownloadmanager.com:6.9.7, translator@zoli.bod:2.1.0.1, {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.23"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8064.0206]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprphtml5videoshim;version=1.0.0.0]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
FlashGet3.xpi
C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
NPOFFICE.DLL
nppdf32.dll
C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml
C:\Documents and Settings\okaynetbook\Data aplikací\Mozilla\Firefox\Profiles\6jpdurms.default\extensions\
{20a82645-c095-46ed-80e3-08825760534b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files\IDM.5.19.2\IDMIECC.dll [2011-09-15 210352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2009-07-15 1586472]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\programy\Microsoft Office 2007 CZ full\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-29 305328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll [2011-08-12 1007160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C9F97205-62A3-41F2-9F2C-D99392F882EB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-08-03 42272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-08-03 79648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
{855F3B16-6D32-4FE6-8A56-BBB695989046}
{E0E899AB-F487-11D5-8D29-0050BA6940E3}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-29 305328]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2011-08-09 20055144]
"GrooveMonitor"=D:\programy\Microsoft Office 2007 CZ full\Office12\GrooveMonitor.exe [2008-10-25 31072]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2011-06-15 997920]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Eee Docking"=C:\Program Files\ASUS\Eee Docking\Eee Docking.exe [2009-07-27 397312]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Linguarde"=C:\Program Files\Linguarde\linguarde.exe [2011-04-03 510464]
C:\Documents and Settings\okaynetbook\Nabídka Start\Programy\Po spuštění
Zástupce - sndvol32.lnk - C:\WINDOWS\system32\sndvol32.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-15 208896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\programy\Microsoft Office 2007 CZ full\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoSMBalloonTip"=0
"NoDriveAutoRun"=67108863
"NoInstrumentation"=1
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"NoResolveSearch"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\muzapp.exe"="C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player"
"D:\programy\Microsoft Office 2007 CZ full\Office12\GROOVE.EXE"="D:\programy\Microsoft Office 2007 CZ full\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"D:\Games\left_4_dead\left 4 dead\hl2.exe"="D:\Games\left_4_dead\left 4 dead\hl2.exe:*:Enabled:hl2"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\ICQ7.2\ICQ.exe"="C:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ"
"C:\Documents and Settings\okaynetbook\Plocha\RSIT.exe"="C:\Documents and Settings\okaynetbook\Plocha\RSIT.exe:*:Enabled:RSIT"
"C:\Program Files\Common Files\Microsoft Shared\DW\DW20.EXE"="C:\Program Files\Common Files\Microsoft Shared\DW\DW20.EXE:*:Enabled:Microsoft Application Error Reporting"
"C:\WINDOWS\system32\msiexec.exe"="C:\WINDOWS\system32\msiexec.exe:*:Enabled:Windows® installer"
"C:\Program Files\Google\Update\GoogleUpdate.exe"="C:\Program Files\Google\Update\GoogleUpdate.exe:*:Enabled:Instalační program Google"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\Iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"msacm.siren"=sirenacm.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"VIDC.WMV3"=wmv9vcm.dll
"VIDC.DIVX"=divx.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.VP60"=vp6vfw.dll
"vidc.VP61"=vp6vfw.dll
"vidc.VP62"=vp6vfw.dll
"vidc.XVID"=xvidvfw.dll
"vidc.mjpg"=pvmjpg30.dll
"vidc.MPG4"=MPG4c32.dll
"vidc.MP42"=MPG4c32.dll
"vidc.MP43"=MPG4c32.dll
"msacm.divxa32"=msaud32_divx.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======List of files/folders created in the last 1 month======
2011-10-09 16:50:57 ----D---- C:\rsit
2011-10-08 20:10:45 ----D---- C:\Program Files\Microsoft Security Client
2011-10-08 20:01:35 ----SHD---- C:\RECYCLER
2011-10-08 19:49:40 ----D---- C:\WINDOWS\temp
2011-10-08 17:03:01 ----D---- C:\WINDOWS\Resistance
2011-10-08 14:06:56 ----HDC---- C:\WINDOWS\$NtUninstallKB953356$
2011-10-03 07:51:20 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\Vasilek Games
2011-10-02 21:07:17 ----D---- C:\Documents and Settings\All Users\Data aplikací\Alawar Stargaze
2011-10-02 20:50:11 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\wrapper
2011-10-02 20:49:04 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\Špidla Data Processing, s.r.o
2011-10-02 20:49:04 ----D---- C:\Documents and Settings\All Users\Data aplikací\Špidla Data Processing, s.r.o
2011-10-01 11:49:00 ----A---- C:\WINDOWS\popcinfo.dat
2011-09-17 00:15:47 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\AutoHideIP
2011-09-17 00:15:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\AutoHideIP
2011-09-15 23:07:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2616676$
2011-09-15 22:57:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2570947$
2011-09-15 17:12:49 ----A---- C:\WINDOWS\system32\drivers\idmtdi.sys
2011-09-10 18:02:57 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\Sahmon Games
2011-09-10 17:14:15 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\Meridian93
2011-09-10 16:44:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2492386$
2011-09-10 16:43:21 ----D---- C:\WINDOWS\system32\WindowsPowerShell
2011-09-10 16:43:20 ----D---- C:\WINDOWS\system32\winrm
2011-09-10 16:43:20 ----D---- C:\WINDOWS\system32\GroupPolicy
2011-09-10 16:43:07 ----HDC---- C:\WINDOWS\$968930Uinstall_KB968930$
2011-09-10 16:43:05 ----D---- C:\WINDOWS\$NtUninstallKB968930$
2011-09-10 16:41:18 ----HDC---- C:\WINDOWS\$NtUninstallKB971513$
2011-09-10 16:07:14 ----A---- C:\WINDOWS\system32\CmdLineExt03.dll
2011-09-10 09:00:50 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\Real
======List of files/folders modified in the last 1 month======
2011-10-09 16:49:55 ----D---- C:\WINDOWS\Prefetch
2011-10-09 16:44:41 ----SD---- C:\WINDOWS\Tasks
2011-10-09 16:44:06 ----AD---- C:\WINDOWS
2011-10-09 16:41:12 ----D---- C:\Program Files\Mozilla Firefox
2011-10-09 16:40:23 ----D---- C:\WINDOWS\system32\CatRoot2
2011-10-09 16:38:47 ----N---- C:\WINDOWS\SchedLgU.Txt
2011-10-09 16:33:34 ----AD---- C:\WINDOWS\system32
2011-10-09 16:29:09 ----SHD---- C:\System Volume Information
2011-10-09 16:29:09 ----D---- C:\WINDOWS\system32\Restore
2011-10-09 16:27:50 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\DMCache
2011-10-09 16:18:41 ----D---- C:\Qoobox
2011-10-09 16:18:38 ----D---- C:\Program Files\trend micro
2011-10-09 16:06:55 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\IDM
2011-10-08 23:13:07 ----SHD---- C:\WINDOWS\Installer
2011-10-08 23:12:44 ----RSD---- C:\WINDOWS\assembly
2011-10-08 23:12:43 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-10-08 23:03:12 ----RD---- C:\Program Files
2011-10-08 22:32:54 ----D---- C:\Program Files\Pinnacle
2011-10-08 22:32:38 ----D---- C:\Program Files\Common Files
2011-10-08 22:32:36 ----RSD---- C:\WINDOWS\Fonts
2011-10-08 22:17:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2011-10-08 20:11:00 ----D---- C:\WINDOWS\system32\drivers
2011-10-08 19:52:10 ----A---- C:\WINDOWS\system.ini
2011-10-08 19:51:49 ----D---- C:\WINDOWS\system32\drivers\etc
2011-10-08 19:45:23 ----D---- C:\WINDOWS\AppPatch
2011-10-08 19:13:06 ----D---- C:\WINDOWS\system32\config
2011-10-08 19:02:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2011-10-08 16:23:51 ----SD---- C:\Documents and Settings\okaynetbook\Data aplikací\Microsoft
2011-10-08 16:22:08 ----A---- C:\WINDOWS\ODBC.INI
2011-10-08 16:18:34 ----D---- C:\WINDOWS\system
2011-10-08 14:43:13 ----D---- C:\Program Files\Common Files\LightScribe
2011-10-08 14:40:26 ----DC---- C:\WINDOWS\$NtUninstallKB12818$
2011-10-08 14:08:43 ----D---- C:\WINDOWS\system32\CatRoot
2011-10-08 14:07:35 ----HD---- C:\WINDOWS\inf
2011-10-08 14:06:42 ----HD---- C:\WINDOWS\$hf_mig$
2011-10-08 11:49:11 ----D---- C:\WINDOWS\Debug
2011-10-07 19:51:11 ----A---- C:\WINDOWS\NeroDigital.ini
2011-10-03 12:54:21 ----A---- C:\WINDOWS\WirelessFTP.INI
2011-10-01 22:39:13 ----HD---- C:\Program Files\InstallShield Installation Information
2011-09-29 21:13:27 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\Skype
2011-09-29 13:18:21 ----D---- C:\WINDOWS\Microsoft.NET
2011-09-29 00:06:44 ----D---- C:\Program Files\IDM.5.19.2
2011-09-28 08:40:08 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\SEDE
2011-09-23 15:26:13 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-09-16 21:43:14 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\ICQ
2011-09-16 20:31:08 ----D---- C:\Program Files\ICQ7.2
2011-09-16 10:38:02 ----A---- C:\WINDOWS\system32\MRT.exe
2011-09-15 23:07:04 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-09-15 19:17:01 ----RD---- C:\Program Files\Skype
2011-09-15 19:16:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2011-09-15 17:13:14 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\skypePM
2011-09-15 16:37:51 ----D---- C:\WINDOWS\system32\Adobe
2011-09-15 16:37:29 ----D---- C:\WINDOWS\system32\Macromed
2011-09-10 17:56:48 ----D---- C:\Documents and Settings\okaynetbook\Data aplikací\YoudaGames
2011-09-10 16:56:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\Apple Computer
2011-09-10 16:50:21 ----D---- C:\WINDOWS\Logs
2011-09-10 16:49:55 ----D---- C:\WINDOWS\security
2011-09-10 16:49:36 ----D---- C:\Program Files\CCleaner
2011-09-10 16:44:46 ----D---- C:\Program Files\Internet Explorer
2011-09-10 16:44:36 ----D---- C:\WINDOWS\ie8updates
2011-09-10 16:43:31 ----D---- C:\WINDOWS\Help
2011-09-10 16:43:20 ----D---- C:\WINDOWS\system32\wbem
2011-09-10 12:45:41 ----A---- C:\WINDOWS\win.ini
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 BtHidBus;Bluetooth HID Bus Service; C:\WINDOWS\System32\Drivers\BtHidBus.sys [2009-01-07 20744]
R0 iaStor;Intel AHCI Controller; C:\WINDOWS\system32\drivers\iaStor.sys [2011-05-20 461592]
R0 prohlp02;StarForce Protection Helper Driver v2; C:\WINDOWS\System32\drivers\prohlp02.sys [2004-08-09 114016]
R0 prosync1;StarForce Protection Synchronization Driver v1; C:\WINDOWS\System32\drivers\prosync1.sys [2004-07-19 7040]
R0 sfhlp01;StarForce Protection Helper Driver; C:\WINDOWS\System32\drivers\sfhlp01.sys [2003-12-01 4832]
R1 IDMTDI;IDMTDI; C:\WINDOWS\system32\DRIVERS\idmtdi.sys [2011-07-06 101616]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys [2011-04-18 165648]
R1 MpKsl17020a40;MpKsl17020a40; \??\C:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{EDBB804A-49E0-4FF4-823C-B457A3000B68}\MpKsl17020a40.sys []
R1 MpKsl264522c6;MpKsl264522c6; \??\C:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{EDBB804A-49E0-4FF4-823C-B457A3000B68}\MpKsl264522c6.sys []
R1 MpKsl4500bf0c;MpKsl4500bf0c; \??\C:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{EDBB804A-49E0-4FF4-823C-B457A3000B68}\MpKsl4500bf0c.sys []
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2004-08-09 53920]
R1 Tosrfcom;Bluetooth RFCOMM; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2007-05-24 64000]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.7.5.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2011-03-02 21361]
R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-02-06 55152]
R3 AsusACPI;ASUS ACPI Driver; C:\WINDOWS\system32\DRIVERS\ASUSACPI.sys [2008-04-08 10752]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2011-08-16 6427240]
R3 L1c;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l1c51x86.sys [2010-04-22 61040]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2008-04-14 5888]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2009-03-13 1759616]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2009-04-09 208816]
R3 tosporte;Bluetooth COM Port; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2006-10-10 41600]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 2hotspot controller;2hotspot Miniport; C:\WINDOWS\system32\DRIVERS\acontrol.sys []
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 btaudio;Zvukové zařízení Bluetooth; C:\WINDOWS\system32\drivers\btaudio.sys []
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys []
S3 BTDriver;Ovladač virtuálních komunikací Bluetooth; C:\WINDOWS\system32\DRIVERS\btport.sys []
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-14 17024]
S3 BTHMODEM;Ovladač pro sériovou komunikaci protokolem Bluetooth; C:\WINDOWS\system32\DRIVERS\bthmodem.sys [2008-04-14 37888]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-14 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-14 18944]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\WINDOWS\System32\Drivers\btnetBus.sys [2008-12-07 30088]
S3 BTWDNDIS;Server pro přístup k síti LAN Bluetooth; C:\WINDOWS\system32\DRIVERS\btwdndis.sys []
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 cpuz132;cpuz132; \??\C:\Program Files\CPUID\PC Wizard 2010\pcwiz32.sys []
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Documents and Settings\okaynetbook\Plocha\MediaCoder\SysInfo.sys []
S3 dc3d;MS Hardware Device Detection Driver; C:\WINDOWS\system32\DRIVERS\dc3d.sys [2010-07-21 44432]
S3 dgderdrv;dgderdrv; C:\WINDOWS\System32\drivers\dgderdrv.sys []
S3 DrvAgent32;DrvAgent32; \??\C:\WINDOWS\system32\Drivers\DrvAgent32.sys []
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [2008-07-02 26248]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NANMp50;NANMp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\NANMp50.sys []
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 NSNDIS5;NSNDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\NSNDIS5.SYS []
S3 NuidFltr;NUID filter driver; C:\WINDOWS\system32\DRIVERS\NuidFltr.sys [2010-07-21 21520]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 Pcouffin;Low level access layer for CD devices; C:\WINDOWS\System32\Drivers\Pcouffin.sys []
S3 Point32;Microsoft IntelliPoint Filter Driver; C:\WINDOWS\system32\DRIVERS\point32.sys [2010-07-21 40848]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-14 59136]
S3 RT80x86;Ralink 802.11n Wireless Driver; C:\WINDOWS\system32\DRIVERS\RT2860.sys [2011-04-15 2240064]
S3 RTLWUSB;AirLive WL1600USB; C:\WINDOWS\system32\DRIVERS\RTL8187.sys [2010-04-06 323328]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 SndTAudio;SndTAudio; C:\WINDOWS\system32\drivers\SndTAudio.sys [2010-09-11 23608]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\WINDOWS\system32\DRIVERS\sscdbus.sys [2007-07-03 80552]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys [2007-07-03 11944]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\WINDOWS\system32\DRIVERS\sscdmdm.sys [2007-07-03 106792]
S3 sscdserd;SAMSUNG Mobile Modem Diagnostic Serial Port (WDM); C:\WINDOWS\system32\DRIVERS\sscdserd.sys [2007-07-03 86824]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 tosrfbd;Bluetooth RFBUS; C:\WINDOWS\system32\DRIVERS\tosrfbd.sys [2007-04-24 113920]
S3 tosrfbnp;Bluetooth RFBNEP; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2006-11-20 36480]
S3 Tosrfhid;Bluetooth RFHID; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2007-03-01 73728]
S3 tosrfnds;Bluetooth Personal Area Network; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
S3 TosRfSnd;Bluetooth Audio; C:\WINDOWS\system32\drivers\tosrfsnd.sys [2007-01-22 53376]
S3 tosrfusb;Bluetooth USB Controller; C:\WINDOWS\system32\DRIVERS\tosrfusb.sys [2007-06-11 41856]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2011-02-18 41984]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-14 121984]
S3 uvclf;uvclf; C:\WINDOWS\system32\DRIVERS\uvclf.sys [2008-11-19 39040]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 widseasd;Widsea Secret Disk Service; \??\C:\Documents and Settings\okaynetbook\Dokumenty\Downloads\Music\TS-Disk1.63\TS-Disk1.63\widseasd.sys []
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2008-04-14 12032]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2011-02-18 37664]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-05-04 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2005-06-21 53248]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2011-04-27 11736]
R2 nlsX86cc;Nalpeiron Licensing Service; C:\WINDOWS\system32\NlsSrv32.exe [2009-06-07 61440]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-02-25 125048]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 fsssvc;Windows Live Zabezpečení rodiny; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-06-19 182768]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; D:\programy\Microsoft Office 2007 CZ full\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-11-11 620544]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Přispějete na provoz fóra?