prosim o kontrolu logu dakujem ti je
Logfile of random's system information tool 1.09 (written by random/random)
Run by Domino at 2012-01-09 19:01:04
Systém Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 4 GB (9%) free of 40 GB
Total RAM: 1014 MB (58% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:01:26, on 9.1.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\agrsmsvc.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\WLTRAY.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Documents and Settings\Domino\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\Apoint2K\ApMsgFwd.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\WINDOWS\system32\igfxext.exe
C:\DOCUME~1\Domino\LOCALS~1\Temp\RtkBtMnt.exe
C:\Documents and Settings\Domino\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Domino\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Domino\My Documents\Downloads\RSIT.exe
C:\Program Files\trend micro\Domino.exe
C:\Documents and Settings\Domino\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [HfJDIJNKXWUbklE.exe] C:\Documents and Settings\All Users\Application Data\HfJDIJNKXWUbklE.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Domino\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 2701314234
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\WINDOWS\system32\agrsmsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE
--
End of file - 5838 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1417001333-1202660629-839522115-1004Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1417001333-1202660629-839522115-1004UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2004-12-14 63136]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2007-07-21 159744]
"LManager"=C:\PROGRA~1\LAUNCH~1\LManager.exe [2007-07-16 768520]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-07-05 16380416]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"Broadcom Wireless Manager UI"=C:\WINDOWS\system32\WLTRAY.exe [2005-11-11 1236992]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-09-11 143360]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-09-11 172032]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-09-11 143360]
"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2004-11-02 32768]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-05-27 413696]
"HfJDIJNKXWUbklE.exe"=C:\Documents and Settings\All Users\Application Data\HfJDIJNKXWUbklE.exe []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2008-08-19 1576176]
"NBJ"=C:\Program Files\Ahead\Nero BackItUp\NBJ.exe [2004-11-30 1945600]
"Google Update"=C:\Documents and Settings\Domino\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-12-03 136176]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Documents and Settings\Domino\Start Menu\Programs\Startup
OpenOffice.org 3.0.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2008-07-23 352256]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-09-11 217088]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableTaskMgr"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0xFF000000
"NoDesktop"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"vidc.XVID"=xvid.dll
"vidc.DIV3"=DivXc32.dll
"vidc.DIV4"=DivXc32f.dll
"vidc.MPG4"=Mpg4c32.dll
"vidc.MP42"=Mpg4c32.dll
"vidc.MP43"=Mpg4c32.dll
"msacm.l3codec"=l3codecp.acm
"msacm.vorbis"=vorbis.acm
"vidc.3ivx"=3ivxVfWCodec.dll
"msacm.divxa32"=divxa32.acm
"VIDC.wmv3"=wmv9vcm.dll
"VIDC.FFDS"=ffdshow.ax
"msacm.avis"=ff_acm.acm
"msacm.ac3filter"=ac3filter.acm
======List of files/folders created in the last 1 month======
2012-01-09 19:01:04 ----D---- C:\rsit
2012-01-09 19:01:04 ----D---- C:\Program Files\trend micro
2012-01-09 18:53:21 ----D---- C:\WINDOWS\LastGood
2012-01-09 18:49:24 ----A---- C:\WINDOWS\NIRCMD.exe
2012-01-09 18:47:05 ----D---- C:\WINDOWS\ERDNT
2012-01-09 18:46:59 ----SD---- C:\ComboFix
2012-01-09 18:44:18 ----D---- C:\Qoobox
2012-01-09 18:32:21 ----A---- C:\WINDOWS\ntbtlog.txt
2011-12-10 20:08:11 ----A---- C:\Documents and Settings\All Users\Application Data\91Ppic93LCsyHe.exe
======List of files/folders modified in the last 1 month======
2012-01-09 19:01:16 ----D---- C:\WINDOWS\Prefetch
2012-01-09 19:01:04 ----RD---- C:\Program Files
2012-01-09 18:54:39 ----D---- C:\WINDOWS\inf
2012-01-09 18:54:19 ----D---- C:\WINDOWS\$hf_mig$
2012-01-09 18:54:19 ----D---- C:\WINDOWS
2012-01-09 18:53:21 ----D---- C:\WINDOWS\system32\CatRoot2
2012-01-09 18:51:28 ----D---- C:\WINDOWS\Temp
2012-01-09 18:46:10 ----D---- C:\WINDOWS\system32\drivers
2012-01-09 18:35:13 ----SHD---- C:\WINDOWS\Installer
2012-01-09 18:32:34 ----D---- C:\Documents and Settings
2012-01-09 18:31:43 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-12-10 20:45:35 ----D---- C:\WINDOWS\network diagnostic
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 DritekPortIO;Dritek General Port I/O; \??\C:\PROGRA~1\LAUNCH~1\DPortIO.sys []
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys []
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2007-03-09 1163616]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2007-08-02 156672]
R3 AR5211;Atheros Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2007-05-02 546976]
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2007-06-06 161792]
R3 DKbFltr;Dritek Keyboard Filter Driver; C:\WINDOWS\system32\DRIVERS\DKbFltr.sys [2004-12-08 16896]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-09-11 6047904]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-07-10 4449280]
R3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS []
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 athr;Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athr.sys [2007-06-18 737280]
S3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2009-08-26 21568]
S3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd32.sys []
S3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\WINDOWS\system32\agrsmsvc.exe [2006-10-05 9216]
R2 wltrysvc;Broadcom Wireless LAN Tray Service; C:\WINDOWS\System32\WLTRYSVC.EXE [2005-11-11 18944]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
pomale pc pls kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
alexander82
- Návštěvník
- Příspěvky: 48
- Registrován: 04 říj 2009 14:27
-
Rudy
- Site Admin
- Příspěvky: 119515
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomale pc pls kontrolu logu
Zdravím!
Poprosím o log ComboFix.
Poprosím o log ComboFix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
pote spustte aplikaci pod uctem s administratorskym opravnenim
hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.
v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se
jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine
aplikace ani nic jineho
behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)
upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,
pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k
nezadoucim kolizim s rezidentem antispyware
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
alexander82
- Návštěvník
- Příspěvky: 48
- Registrován: 04 říj 2009 14:27
Re: pomale pc pls kontrolu logu
ComboFix 12-01-09.03 - Domino 09.01.2012 20:18:51.1.1 - x86
Systém Microsoft Windows XP Home Edition 5.1.2600.3.1250.421.1033.18.1014.675 [GMT 1:00]
Running from: c:\documents and settings\Domino\Desktop\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\91Ppic93LCsyHe.exe
c:\documents and settings\Domino\Application Data\Microsoft\Internet Explorer\Quick Launch\System Fix.lnk
c:\documents and settings\Domino\Desktop\System Fix.lnk
c:\documents and settings\Domino\Start Menu\Programs\System Fix
c:\documents and settings\Domino\Start Menu\Programs\System Fix\System Fix.lnk
c:\documents and settings\Domino\Start Menu\Programs\System Fix\Uninstall System Fix.lnk
c:\documents and settings\Domino\WINDOWS
c:\windows\iun6002.exe
c:\windows\system32\Desktop_.ini
c:\windows\system32\SET86.tmp
c:\windows\system32\SET8A.tmp
c:\windows\system32\SET92.tmp
D:\Autorun.inf
.
.
((((((((((((((((((((((((( Files Created from 2011-12-09 to 2012-01-09 )))))))))))))))))))))))))))))))
.
.
2012-01-09 18:01 . 2012-01-09 18:01 -------- d-----w- C:\rsit
2012-01-09 18:01 . 2012-01-09 18:01 -------- d-----w- c:\program files\trend micro
2012-01-09 17:53 . 2012-01-09 17:53 -------- d-----w- c:\windows\LastGood
2012-01-09 17:32 . 2012-01-09 17:35 -------- d-----w- c:\documents and settings\Administrator
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2008-08-19 1576176]
"NBJ"="c:\program files\Ahead\Nero BackItUp\NBJ.exe" [2004-11-30 1945600]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\Apoint2K\Apoint.exe" [2007-07-21 159744]
"LManager"="c:\progra~1\LAUNCH~1\LManager.exe" [2007-07-16 768520]
"RTHDCPL"="RTHDCPL.EXE" [2007-07-05 16380416]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2005-11-11 1236992]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-09-11 143360]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-09-11 172032]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-09-11 143360]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2004-11-02 32768]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-05-27 413696]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\Domino\Start Menu\Programs\Startup\
OpenOffice.org 3.0.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2008-10-13 393216]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2004-12-14 29696]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2008-07-23 15:28 352256 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
.
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [19.8.2008 23:34 8944]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [19.8.2008 23:34 55024]
R3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [19.8.2008 23:34 7408]
.
Contents of the 'Scheduled Tasks' folder
.
2011-12-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1417001333-1202660629-839522115-1004Core.job
- c:\documents and settings\Domino\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-12-03 19:52]
.
2012-01-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1417001333-1202660629-839522115-1004UA.job
- c:\documents and settings\Domino\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-12-03 19:52]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.sk/
uInternet Connection Wizard,ShellNext = iexplore
TCP: DhcpNameServer = 172.16.0.254 192.168.91.237
.
- - - - ORPHANS REMOVED - - - -
.
HKLM-Run-HfJDIJNKXWUbklE.exe - c:\documents and settings\All Users\Application Data\HfJDIJNKXWUbklE.exe
AddRemove-Cool's_Codec_pack_4.12 - c:\windows\iun6002.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-01-09 20:54
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(736)
c:\program files\SUPERAntiSpyware\SASWINLO.dll
c:\windows\system32\WININET.dll
c:\windows\System32\BCMLogon.dll
.
Completion time: 2012-01-09 21:09:26
ComboFix-quarantined-files.txt 2012-01-09 20:09
.
Pre-Run: 6 824 923 136 bytes free
Post-Run: 8 176 975 872 voľných bajtov
.
WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - 28C87D64FB40AF7E49EE17E557F0FD5B
Systém Microsoft Windows XP Home Edition 5.1.2600.3.1250.421.1033.18.1014.675 [GMT 1:00]
Running from: c:\documents and settings\Domino\Desktop\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\91Ppic93LCsyHe.exe
c:\documents and settings\Domino\Application Data\Microsoft\Internet Explorer\Quick Launch\System Fix.lnk
c:\documents and settings\Domino\Desktop\System Fix.lnk
c:\documents and settings\Domino\Start Menu\Programs\System Fix
c:\documents and settings\Domino\Start Menu\Programs\System Fix\System Fix.lnk
c:\documents and settings\Domino\Start Menu\Programs\System Fix\Uninstall System Fix.lnk
c:\documents and settings\Domino\WINDOWS
c:\windows\iun6002.exe
c:\windows\system32\Desktop_.ini
c:\windows\system32\SET86.tmp
c:\windows\system32\SET8A.tmp
c:\windows\system32\SET92.tmp
D:\Autorun.inf
.
.
((((((((((((((((((((((((( Files Created from 2011-12-09 to 2012-01-09 )))))))))))))))))))))))))))))))
.
.
2012-01-09 18:01 . 2012-01-09 18:01 -------- d-----w- C:\rsit
2012-01-09 18:01 . 2012-01-09 18:01 -------- d-----w- c:\program files\trend micro
2012-01-09 17:53 . 2012-01-09 17:53 -------- d-----w- c:\windows\LastGood
2012-01-09 17:32 . 2012-01-09 17:35 -------- d-----w- c:\documents and settings\Administrator
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2008-08-19 1576176]
"NBJ"="c:\program files\Ahead\Nero BackItUp\NBJ.exe" [2004-11-30 1945600]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\Apoint2K\Apoint.exe" [2007-07-21 159744]
"LManager"="c:\progra~1\LAUNCH~1\LManager.exe" [2007-07-16 768520]
"RTHDCPL"="RTHDCPL.EXE" [2007-07-05 16380416]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2005-11-11 1236992]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-09-11 143360]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-09-11 172032]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-09-11 143360]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2004-11-02 32768]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-05-27 413696]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\Domino\Start Menu\Programs\Startup\
OpenOffice.org 3.0.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2008-10-13 393216]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2004-12-14 29696]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2008-07-23 15:28 352256 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
.
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [19.8.2008 23:34 8944]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [19.8.2008 23:34 55024]
R3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [19.8.2008 23:34 7408]
.
Contents of the 'Scheduled Tasks' folder
.
2011-12-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1417001333-1202660629-839522115-1004Core.job
- c:\documents and settings\Domino\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-12-03 19:52]
.
2012-01-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1417001333-1202660629-839522115-1004UA.job
- c:\documents and settings\Domino\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-12-03 19:52]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.sk/
uInternet Connection Wizard,ShellNext = iexplore
TCP: DhcpNameServer = 172.16.0.254 192.168.91.237
.
- - - - ORPHANS REMOVED - - - -
.
HKLM-Run-HfJDIJNKXWUbklE.exe - c:\documents and settings\All Users\Application Data\HfJDIJNKXWUbklE.exe
AddRemove-Cool's_Codec_pack_4.12 - c:\windows\iun6002.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-01-09 20:54
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(736)
c:\program files\SUPERAntiSpyware\SASWINLO.dll
c:\windows\system32\WININET.dll
c:\windows\System32\BCMLogon.dll
.
Completion time: 2012-01-09 21:09:26
ComboFix-quarantined-files.txt 2012-01-09 20:09
.
Pre-Run: 6 824 923 136 bytes free
Post-Run: 8 176 975 872 voľných bajtov
.
WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - 28C87D64FB40AF7E49EE17E557F0FD5B
-
Rudy
- Site Admin
- Příspěvky: 119515
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomale pc pls kontrolu logu
Několik položek bylo smazáno, zbytek logu vypadá čistý. Nastala nějaká změna.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
alexander82
- Návštěvník
- Příspěvky: 48
- Registrován: 04 říj 2009 14:27
Re: pomale pc pls kontrolu logu
Stiahol som nove esetko 5Gen... No nasiel infiltraciu akehosi trojskeho konika este v pameti. 
-
alexander82
- Návštěvník
- Příspěvky: 48
- Registrován: 04 říj 2009 14:27
Re: pomale pc pls kontrolu logu
Olmasco.O sa vola ten trojan hnus...
-
Rudy
- Site Admin
- Příspěvky: 119515
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomale pc pls kontrolu logu
OK. Smazal ho?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
alexander82
- Návštěvník
- Příspěvky: 48
- Registrován: 04 říj 2009 14:27
Re: pomale pc pls kontrolu logu
Prave ze nie pri operacii pisalo ze nieje mozne liecit
Re: pomale pc pls kontrolu logu
Rudy promin za vstup.
Stáhněte TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe
- a uložte ho na plochu.
- 2x klikněte na ikonu programu a spusťte
- dejte volbu Spustit kontrolu - pak potvrdte start sken
- pokud program najde infikovaný soubor, ukáže se Vám předvolená akce Cure, v tom případě potvrdte tlačítko Continue
- pokud bude chtít program restartovat počítač, klikněte na tlačítko Reboot Now
- pokud si restart nevyžádá, klikněte na tlačítko Report. Měl vy na Vás vyskočit log, obsah logu zkopírujte do svého topicu.
- pokud se log nezobrazí, je uložený ve Vašem kořenovém adresáři.
Stáhněte TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe- a uložte ho na plochu.
- 2x klikněte na ikonu programu a spusťte
- dejte volbu Spustit kontrolu - pak potvrdte start sken
- pokud program najde infikovaný soubor, ukáže se Vám předvolená akce Cure, v tom případě potvrdte tlačítko Continue
- pokud bude chtít program restartovat počítač, klikněte na tlačítko Reboot Now
- pokud si restart nevyžádá, klikněte na tlačítko Report. Měl vy na Vás vyskočit log, obsah logu zkopírujte do svého topicu.
- pokud se log nezobrazí, je uložený ve Vašem kořenovém adresáři.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
-
alexander82
- Návštěvník
- Příspěvky: 48
- Registrován: 04 říj 2009 14:27
Re: pomale pc pls kontrolu logu
vsetko prebehlo vporiadku stym ze si pytal aj rebor systemu vsetko ok.
log je tu ...
00:10:46.0265 2492 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
00:10:46.0546 2492 ============================================================
00:10:46.0546 2492 Current date / time: 2012/01/10 00:10:46.0546
00:10:46.0546 2492 SystemInfo:
00:10:46.0546 2492
00:10:46.0546 2492 OS Version: 5.1.2600 ServicePack: 3.0
00:10:46.0546 2492 Product type: Workstation
00:10:46.0546 2492 ComputerName: 6D56004A8F7A4E6
00:10:46.0546 2492 UserName: Domino
00:10:46.0546 2492 Windows directory: C:\WINDOWS
00:10:46.0546 2492 System windows directory: C:\WINDOWS
00:10:46.0546 2492 Processor architecture: Intel x86
00:10:46.0546 2492 Number of processors: 1
00:10:46.0546 2492 Page size: 0x1000
00:10:46.0546 2492 Boot type: Normal boot
00:10:46.0546 2492 ============================================================
00:10:47.0765 2492 Initialize success
00:11:23.0515 0204 ============================================================
00:11:23.0515 0204 Scan started
00:11:23.0515 0204 Mode: Manual;
00:11:23.0515 0204 ============================================================
00:11:24.0421 0204 Abiosdsk - ok
00:11:24.0437 0204 abp480n5 - ok
00:11:24.0484 0204 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
00:11:24.0484 0204 ACPI - ok
00:11:24.0500 0204 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
00:11:24.0500 0204 ACPIEC - ok
00:11:24.0531 0204 adpu160m - ok
00:11:24.0687 0204 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
00:11:24.0687 0204 aec - ok
00:11:24.0734 0204 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
00:11:24.0734 0204 AFD - ok
00:11:24.0921 0204 AgereSoftModem (d31d1a92479bd8c0d050a6ffbdd410d9) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
00:11:24.0937 0204 AgereSoftModem - ok
00:11:25.0062 0204 Aha154x - ok
00:11:25.0078 0204 aic78u2 - ok
00:11:25.0093 0204 aic78xx - ok
00:11:25.0109 0204 AliIde - ok
00:11:25.0125 0204 amsint - ok
00:11:25.0156 0204 ApfiltrService (a24bf3622223933d478af613df323a57) C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
00:11:25.0171 0204 ApfiltrService - ok
00:11:25.0218 0204 AR5211 (6d5f95602b8d0d994d31a864872b38ef) C:\WINDOWS\system32\DRIVERS\ar5211.sys
00:11:25.0234 0204 AR5211 - ok
00:11:25.0343 0204 asc - ok
00:11:25.0375 0204 asc3350p - ok
00:11:25.0390 0204 asc3550 - ok
00:11:25.0406 0204 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
00:11:25.0421 0204 AsyncMac - ok
00:11:25.0437 0204 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
00:11:25.0437 0204 atapi - ok
00:11:25.0453 0204 Atdisk - ok
00:11:25.0515 0204 athr (b0c272def210b149c0bfa0d85600ce4b) C:\WINDOWS\system32\DRIVERS\athr.sys
00:11:25.0515 0204 athr - ok
00:11:25.0671 0204 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
00:11:25.0671 0204 Atmarpc - ok
00:11:25.0703 0204 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
00:11:25.0703 0204 audstub - ok
00:11:25.0750 0204 b57w2k (d0692f7b8217e3b82d2bfac535816117) C:\WINDOWS\system32\DRIVERS\b57xp32.sys
00:11:25.0750 0204 b57w2k - ok
00:11:25.0890 0204 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
00:11:25.0890 0204 Beep - ok
00:11:26.0031 0204 catchme - ok
00:11:26.0187 0204 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
00:11:26.0187 0204 cbidf2k - ok
00:11:26.0203 0204 cd20xrnt - ok
00:11:26.0218 0204 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
00:11:26.0218 0204 Cdaudio - ok
00:11:26.0250 0204 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
00:11:26.0250 0204 Cdfs - ok
00:11:26.0390 0204 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
00:11:26.0390 0204 Cdrom - ok
00:11:26.0406 0204 Changer - ok
00:11:26.0437 0204 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
00:11:26.0437 0204 CmBatt - ok
00:11:26.0453 0204 CmdIde - ok
00:11:26.0484 0204 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
00:11:26.0484 0204 Compbatt - ok
00:11:26.0625 0204 Cpqarray - ok
00:11:26.0640 0204 dac2w2k - ok
00:11:26.0656 0204 dac960nt - ok
00:11:26.0703 0204 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
00:11:26.0703 0204 Disk - ok
00:11:26.0734 0204 DKbFltr (08d30af92c270f2e76787c81589dbad6) C:\WINDOWS\system32\DRIVERS\DKbFltr.sys
00:11:26.0734 0204 DKbFltr - ok
00:11:26.0796 0204 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
00:11:26.0812 0204 dmboot - ok
00:11:26.0937 0204 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
00:11:26.0953 0204 dmio - ok
00:11:26.0968 0204 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
00:11:26.0968 0204 dmload - ok
00:11:27.0000 0204 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
00:11:27.0000 0204 DMusic - ok
00:11:27.0031 0204 dpti2o - ok
00:11:27.0093 0204 DritekPortIO (5c918d413f5837e67a85775c9873775e) C:\PROGRA~1\LAUNCH~1\DPortIO.sys
00:11:27.0093 0204 DritekPortIO - ok
00:11:27.0234 0204 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
00:11:27.0234 0204 drmkaud - ok
00:11:27.0281 0204 eamon (9309c5c9831203436e64cf2ae605c5d7) C:\WINDOWS\system32\DRIVERS\eamon.sys
00:11:27.0296 0204 eamon - ok
00:11:27.0328 0204 ehdrv (deff87f04ab5f6dd5edf2b80853bbe10) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
00:11:27.0328 0204 ehdrv - ok
00:11:27.0500 0204 epfw (5ba193ca0ae31209aaa39939ce6736b2) C:\WINDOWS\system32\DRIVERS\epfw.sys
00:11:27.0500 0204 epfw - ok
00:11:27.0546 0204 Epfwndis (75d3bcd3e0eded0ab0f96d9a10ff01c9) C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
00:11:27.0546 0204 Epfwndis - ok
00:11:27.0578 0204 epfwtdi (dc64f26f35e32c9472bbf8acd84060d3) C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
00:11:27.0578 0204 epfwtdi - ok
00:11:27.0750 0204 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
00:11:27.0750 0204 Fastfat - ok
00:11:27.0781 0204 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
00:11:27.0781 0204 Fdc - ok
00:11:27.0812 0204 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
00:11:27.0812 0204 Fips - ok
00:11:27.0953 0204 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
00:11:27.0953 0204 Flpydisk - ok
00:11:27.0984 0204 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
00:11:27.0984 0204 FltMgr - ok
00:11:28.0031 0204 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
00:11:28.0031 0204 Fs_Rec - ok
00:11:28.0062 0204 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
00:11:28.0062 0204 Ftdisk - ok
00:11:28.0203 0204 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
00:11:28.0203 0204 Gpc - ok
00:11:28.0250 0204 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
00:11:28.0250 0204 HDAudBus - ok
00:11:28.0359 0204 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
00:11:28.0359 0204 HidUsb - ok
00:11:28.0390 0204 hpn - ok
00:11:28.0437 0204 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
00:11:28.0437 0204 HPZius12 - ok
00:11:28.0515 0204 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
00:11:28.0515 0204 HTTP - ok
00:11:28.0640 0204 i2omgmt - ok
00:11:28.0671 0204 i2omp - ok
00:11:28.0687 0204 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
00:11:28.0703 0204 i8042prt - ok
00:11:28.0906 0204 ialm (d1359e54d9755d28e56b17a352ab8aae) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
00:11:29.0078 0204 ialm - ok
00:11:29.0187 0204 igfx - ok
00:11:29.0218 0204 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
00:11:29.0218 0204 Imapi - ok
00:11:29.0250 0204 ini910u - ok
00:11:29.0406 0204 IntcAzAudAddService (1ebde650d97a8eccdc1cc4a0804647cd) C:\WINDOWS\system32\drivers\RtkHDAud.sys
00:11:29.0515 0204 IntcAzAudAddService - ok
00:11:29.0656 0204 IntelIde - ok
00:11:29.0687 0204 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
00:11:29.0687 0204 intelppm - ok
00:11:29.0718 0204 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
00:11:29.0718 0204 Ip6Fw - ok
00:11:29.0750 0204 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
00:11:29.0750 0204 IpFilterDriver - ok
00:11:29.0906 0204 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
00:11:29.0921 0204 IpInIp - ok
00:11:29.0937 0204 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
00:11:29.0953 0204 IpNat - ok
00:11:29.0968 0204 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
00:11:29.0968 0204 IPSec - ok
00:11:30.0140 0204 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
00:11:30.0140 0204 IRENUM - ok
00:11:30.0171 0204 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
00:11:30.0171 0204 isapnp - ok
00:11:30.0187 0204 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
00:11:30.0187 0204 Kbdclass - ok
00:11:30.0359 0204 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
00:11:30.0359 0204 kmixer - ok
00:11:30.0406 0204 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
00:11:30.0406 0204 KSecDD - ok
00:11:30.0546 0204 lbrtfdc - ok
00:11:30.0593 0204 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
00:11:30.0593 0204 mnmdd - ok
00:11:30.0625 0204 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
00:11:30.0625 0204 Modem - ok
00:11:30.0640 0204 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
00:11:30.0640 0204 Mouclass - ok
00:11:30.0671 0204 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
00:11:30.0671 0204 mouhid - ok
00:11:30.0703 0204 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
00:11:30.0703 0204 MountMgr - ok
00:11:30.0828 0204 mraid35x - ok
00:11:30.0843 0204 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
00:11:30.0859 0204 MRxDAV - ok
00:11:30.0906 0204 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
00:11:30.0921 0204 MRxSmb - ok
00:11:30.0953 0204 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
00:11:30.0953 0204 Msfs - ok
00:11:31.0078 0204 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
00:11:31.0078 0204 MSKSSRV - ok
00:11:31.0109 0204 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
00:11:31.0109 0204 MSPCLOCK - ok
00:11:31.0125 0204 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
00:11:31.0125 0204 MSPQM - ok
00:11:31.0171 0204 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
00:11:31.0171 0204 mssmbios - ok
00:11:31.0312 0204 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
00:11:31.0312 0204 Mup - ok
00:11:31.0375 0204 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
00:11:31.0375 0204 NDIS - ok
00:11:31.0531 0204 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
00:11:31.0531 0204 NdisTapi - ok
00:11:31.0562 0204 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
00:11:31.0562 0204 Ndisuio - ok
00:11:31.0593 0204 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
00:11:31.0593 0204 NdisWan - ok
00:11:31.0750 0204 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
00:11:31.0750 0204 NDProxy - ok
00:11:31.0796 0204 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
00:11:31.0796 0204 NetBIOS - ok
00:11:31.0937 0204 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
00:11:31.0953 0204 NetBT - ok
00:11:32.0031 0204 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
00:11:32.0031 0204 Npfs - ok
00:11:32.0140 0204 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
00:11:32.0156 0204 Ntfs - ok
00:11:32.0218 0204 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
00:11:32.0218 0204 Null - ok
00:11:32.0281 0204 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
00:11:32.0281 0204 NwlnkFlt - ok
00:11:32.0375 0204 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
00:11:32.0375 0204 NwlnkFwd - ok
00:11:32.0437 0204 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
00:11:32.0437 0204 Parport - ok
00:11:32.0500 0204 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
00:11:32.0500 0204 PartMgr - ok
00:11:32.0531 0204 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
00:11:32.0531 0204 ParVdm - ok
00:11:32.0609 0204 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
00:11:32.0609 0204 PCI - ok
00:11:32.0625 0204 PCIDump - ok
00:11:32.0656 0204 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
00:11:32.0656 0204 PCIIde - ok
00:11:32.0703 0204 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
00:11:32.0718 0204 Pcmcia - ok
00:11:32.0750 0204 PDCOMP - ok
00:11:32.0765 0204 PDFRAME - ok
00:11:32.0781 0204 PDRELI - ok
00:11:32.0796 0204 PDRFRAME - ok
00:11:32.0812 0204 perc2 - ok
00:11:32.0828 0204 perc2hib - ok
00:11:32.0875 0204 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
00:11:32.0875 0204 PptpMiniport - ok
00:11:32.0953 0204 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
00:11:32.0953 0204 PSched - ok
00:11:32.0984 0204 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
00:11:32.0984 0204 Ptilink - ok
00:11:33.0015 0204 ql1080 - ok
00:11:33.0031 0204 Ql10wnt - ok
00:11:33.0062 0204 ql12160 - ok
00:11:33.0078 0204 ql1240 - ok
00:11:33.0093 0204 ql1280 - ok
00:11:33.0109 0204 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
00:11:33.0109 0204 RasAcd - ok
00:11:33.0156 0204 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
00:11:33.0156 0204 Rasl2tp - ok
00:11:33.0218 0204 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
00:11:33.0218 0204 RasPppoe - ok
00:11:33.0328 0204 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
00:11:33.0343 0204 Raspti - ok
00:11:33.0375 0204 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
00:11:33.0375 0204 Rdbss - ok
00:11:33.0484 0204 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
00:11:33.0484 0204 RDPCDD - ok
00:11:33.0625 0204 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
00:11:33.0625 0204 RDPWD - ok
00:11:33.0671 0204 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
00:11:33.0671 0204 redbook - ok
00:11:33.0750 0204 SASKUTIL - ok
00:11:33.0906 0204 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
00:11:33.0906 0204 Secdrv - ok
00:11:33.0937 0204 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
00:11:33.0937 0204 Serial - ok
00:11:33.0968 0204 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
00:11:33.0968 0204 Sfloppy - ok
00:11:34.0078 0204 Simbad - ok
00:11:34.0093 0204 Sparrow - ok
00:11:34.0140 0204 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
00:11:34.0140 0204 splitter - ok
00:11:34.0187 0204 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
00:11:34.0187 0204 sr - ok
00:11:34.0343 0204 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
00:11:34.0343 0204 Srv - ok
00:11:34.0390 0204 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
00:11:34.0390 0204 swenum - ok
00:11:34.0421 0204 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
00:11:34.0421 0204 swmidi - ok
00:11:34.0546 0204 symc810 - ok
00:11:34.0562 0204 symc8xx - ok
00:11:34.0562 0204 sym_hi - ok
00:11:34.0578 0204 sym_u3 - ok
00:11:34.0625 0204 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
00:11:34.0625 0204 sysaudio - ok
00:11:34.0687 0204 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
00:11:34.0687 0204 Tcpip - ok
00:11:34.0828 0204 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
00:11:34.0828 0204 TDPIPE - ok
00:11:34.0859 0204 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
00:11:34.0859 0204 TDTCP - ok
00:11:34.0875 0204 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
00:11:34.0875 0204 TermDD - ok
00:11:34.0906 0204 TosIde - ok
00:11:34.0937 0204 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
00:11:34.0937 0204 Udfs - ok
00:11:35.0046 0204 ultra - ok
00:11:35.0109 0204 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
00:11:35.0109 0204 Update - ok
00:11:35.0171 0204 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
00:11:35.0171 0204 usbccgp - ok
00:11:35.0312 0204 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
00:11:35.0312 0204 usbehci - ok
00:11:35.0375 0204 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
00:11:35.0375 0204 usbhub - ok
00:11:35.0531 0204 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
00:11:35.0531 0204 usbprint - ok
00:11:35.0578 0204 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
00:11:35.0578 0204 USBSTOR - ok
00:11:35.0625 0204 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
00:11:35.0625 0204 usbuhci - ok
00:11:35.0750 0204 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
00:11:35.0750 0204 VgaSave - ok
00:11:35.0765 0204 ViaIde - ok
00:11:35.0796 0204 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
00:11:35.0796 0204 VolSnap - ok
00:11:35.0843 0204 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
00:11:35.0843 0204 Wanarp - ok
00:11:35.0906 0204 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
00:11:35.0921 0204 Wdf01000 - ok
00:11:36.0031 0204 WDICA - ok
00:11:36.0078 0204 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
00:11:36.0078 0204 wdmaud - ok
00:11:36.0156 0204 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
00:11:36.0156 0204 WmiAcpi - ok
00:11:36.0312 0204 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
00:11:36.0312 0204 WpdUsb - ok
00:11:36.0359 0204 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
00:11:36.0359 0204 WS2IFSL - ok
00:11:36.0421 0204 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
00:11:36.0421 0204 WudfPf - ok
00:11:36.0531 0204 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
00:11:36.0531 0204 WudfRd - ok
00:11:36.0562 0204 MBR (0x1B8) (9806b88a617aa67ac35f5d1ba8fb30c0) \Device\Harddisk0\DR0
00:11:36.0593 0204 \Device\Harddisk0\DR0 ( Rootkit.Boot.SST.a ) - infected
00:11:36.0593 0204 \Device\Harddisk0\DR0 - detected Rootkit.Boot.SST.a (0)
00:11:36.0593 0204 Boot (0x1200) (1ca91d440e02aa8bd956bb28d560bc45) \Device\Harddisk0\DR0\Partition0
00:11:36.0593 0204 \Device\Harddisk0\DR0\Partition0 - ok
00:11:36.0625 0204 Boot (0x1200) (d71f138884f186efa4618e0aadb55dc5) \Device\Harddisk0\DR0\Partition1
00:11:36.0625 0204 \Device\Harddisk0\DR0\Partition1 - ok
00:11:36.0625 0204 ============================================================
00:11:36.0625 0204 Scan finished
00:11:36.0625 0204 ============================================================
00:11:36.0640 0180 Detected object count: 1
00:11:36.0640 0180 Actual detected object count: 1
00:12:25.0703 0180 \Device\Harddisk0\DR0 - processing error
00:12:39.0390 0180 \Device\Harddisk0\DR0 - will be restored on reboot
00:12:39.0390 0180 \Device\Harddisk0\DR0 ( Rootkit.Boot.SST.a ) - User select action: Cure Restore
00:13:00.0328 2236 Deinitialize success
log je tu ...
00:10:46.0265 2492 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
00:10:46.0546 2492 ============================================================
00:10:46.0546 2492 Current date / time: 2012/01/10 00:10:46.0546
00:10:46.0546 2492 SystemInfo:
00:10:46.0546 2492
00:10:46.0546 2492 OS Version: 5.1.2600 ServicePack: 3.0
00:10:46.0546 2492 Product type: Workstation
00:10:46.0546 2492 ComputerName: 6D56004A8F7A4E6
00:10:46.0546 2492 UserName: Domino
00:10:46.0546 2492 Windows directory: C:\WINDOWS
00:10:46.0546 2492 System windows directory: C:\WINDOWS
00:10:46.0546 2492 Processor architecture: Intel x86
00:10:46.0546 2492 Number of processors: 1
00:10:46.0546 2492 Page size: 0x1000
00:10:46.0546 2492 Boot type: Normal boot
00:10:46.0546 2492 ============================================================
00:10:47.0765 2492 Initialize success
00:11:23.0515 0204 ============================================================
00:11:23.0515 0204 Scan started
00:11:23.0515 0204 Mode: Manual;
00:11:23.0515 0204 ============================================================
00:11:24.0421 0204 Abiosdsk - ok
00:11:24.0437 0204 abp480n5 - ok
00:11:24.0484 0204 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
00:11:24.0484 0204 ACPI - ok
00:11:24.0500 0204 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
00:11:24.0500 0204 ACPIEC - ok
00:11:24.0531 0204 adpu160m - ok
00:11:24.0687 0204 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
00:11:24.0687 0204 aec - ok
00:11:24.0734 0204 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
00:11:24.0734 0204 AFD - ok
00:11:24.0921 0204 AgereSoftModem (d31d1a92479bd8c0d050a6ffbdd410d9) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
00:11:24.0937 0204 AgereSoftModem - ok
00:11:25.0062 0204 Aha154x - ok
00:11:25.0078 0204 aic78u2 - ok
00:11:25.0093 0204 aic78xx - ok
00:11:25.0109 0204 AliIde - ok
00:11:25.0125 0204 amsint - ok
00:11:25.0156 0204 ApfiltrService (a24bf3622223933d478af613df323a57) C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
00:11:25.0171 0204 ApfiltrService - ok
00:11:25.0218 0204 AR5211 (6d5f95602b8d0d994d31a864872b38ef) C:\WINDOWS\system32\DRIVERS\ar5211.sys
00:11:25.0234 0204 AR5211 - ok
00:11:25.0343 0204 asc - ok
00:11:25.0375 0204 asc3350p - ok
00:11:25.0390 0204 asc3550 - ok
00:11:25.0406 0204 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
00:11:25.0421 0204 AsyncMac - ok
00:11:25.0437 0204 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
00:11:25.0437 0204 atapi - ok
00:11:25.0453 0204 Atdisk - ok
00:11:25.0515 0204 athr (b0c272def210b149c0bfa0d85600ce4b) C:\WINDOWS\system32\DRIVERS\athr.sys
00:11:25.0515 0204 athr - ok
00:11:25.0671 0204 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
00:11:25.0671 0204 Atmarpc - ok
00:11:25.0703 0204 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
00:11:25.0703 0204 audstub - ok
00:11:25.0750 0204 b57w2k (d0692f7b8217e3b82d2bfac535816117) C:\WINDOWS\system32\DRIVERS\b57xp32.sys
00:11:25.0750 0204 b57w2k - ok
00:11:25.0890 0204 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
00:11:25.0890 0204 Beep - ok
00:11:26.0031 0204 catchme - ok
00:11:26.0187 0204 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
00:11:26.0187 0204 cbidf2k - ok
00:11:26.0203 0204 cd20xrnt - ok
00:11:26.0218 0204 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
00:11:26.0218 0204 Cdaudio - ok
00:11:26.0250 0204 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
00:11:26.0250 0204 Cdfs - ok
00:11:26.0390 0204 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
00:11:26.0390 0204 Cdrom - ok
00:11:26.0406 0204 Changer - ok
00:11:26.0437 0204 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
00:11:26.0437 0204 CmBatt - ok
00:11:26.0453 0204 CmdIde - ok
00:11:26.0484 0204 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
00:11:26.0484 0204 Compbatt - ok
00:11:26.0625 0204 Cpqarray - ok
00:11:26.0640 0204 dac2w2k - ok
00:11:26.0656 0204 dac960nt - ok
00:11:26.0703 0204 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
00:11:26.0703 0204 Disk - ok
00:11:26.0734 0204 DKbFltr (08d30af92c270f2e76787c81589dbad6) C:\WINDOWS\system32\DRIVERS\DKbFltr.sys
00:11:26.0734 0204 DKbFltr - ok
00:11:26.0796 0204 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
00:11:26.0812 0204 dmboot - ok
00:11:26.0937 0204 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
00:11:26.0953 0204 dmio - ok
00:11:26.0968 0204 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
00:11:26.0968 0204 dmload - ok
00:11:27.0000 0204 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
00:11:27.0000 0204 DMusic - ok
00:11:27.0031 0204 dpti2o - ok
00:11:27.0093 0204 DritekPortIO (5c918d413f5837e67a85775c9873775e) C:\PROGRA~1\LAUNCH~1\DPortIO.sys
00:11:27.0093 0204 DritekPortIO - ok
00:11:27.0234 0204 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
00:11:27.0234 0204 drmkaud - ok
00:11:27.0281 0204 eamon (9309c5c9831203436e64cf2ae605c5d7) C:\WINDOWS\system32\DRIVERS\eamon.sys
00:11:27.0296 0204 eamon - ok
00:11:27.0328 0204 ehdrv (deff87f04ab5f6dd5edf2b80853bbe10) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
00:11:27.0328 0204 ehdrv - ok
00:11:27.0500 0204 epfw (5ba193ca0ae31209aaa39939ce6736b2) C:\WINDOWS\system32\DRIVERS\epfw.sys
00:11:27.0500 0204 epfw - ok
00:11:27.0546 0204 Epfwndis (75d3bcd3e0eded0ab0f96d9a10ff01c9) C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
00:11:27.0546 0204 Epfwndis - ok
00:11:27.0578 0204 epfwtdi (dc64f26f35e32c9472bbf8acd84060d3) C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
00:11:27.0578 0204 epfwtdi - ok
00:11:27.0750 0204 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
00:11:27.0750 0204 Fastfat - ok
00:11:27.0781 0204 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
00:11:27.0781 0204 Fdc - ok
00:11:27.0812 0204 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
00:11:27.0812 0204 Fips - ok
00:11:27.0953 0204 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
00:11:27.0953 0204 Flpydisk - ok
00:11:27.0984 0204 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
00:11:27.0984 0204 FltMgr - ok
00:11:28.0031 0204 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
00:11:28.0031 0204 Fs_Rec - ok
00:11:28.0062 0204 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
00:11:28.0062 0204 Ftdisk - ok
00:11:28.0203 0204 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
00:11:28.0203 0204 Gpc - ok
00:11:28.0250 0204 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
00:11:28.0250 0204 HDAudBus - ok
00:11:28.0359 0204 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
00:11:28.0359 0204 HidUsb - ok
00:11:28.0390 0204 hpn - ok
00:11:28.0437 0204 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
00:11:28.0437 0204 HPZius12 - ok
00:11:28.0515 0204 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
00:11:28.0515 0204 HTTP - ok
00:11:28.0640 0204 i2omgmt - ok
00:11:28.0671 0204 i2omp - ok
00:11:28.0687 0204 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
00:11:28.0703 0204 i8042prt - ok
00:11:28.0906 0204 ialm (d1359e54d9755d28e56b17a352ab8aae) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
00:11:29.0078 0204 ialm - ok
00:11:29.0187 0204 igfx - ok
00:11:29.0218 0204 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
00:11:29.0218 0204 Imapi - ok
00:11:29.0250 0204 ini910u - ok
00:11:29.0406 0204 IntcAzAudAddService (1ebde650d97a8eccdc1cc4a0804647cd) C:\WINDOWS\system32\drivers\RtkHDAud.sys
00:11:29.0515 0204 IntcAzAudAddService - ok
00:11:29.0656 0204 IntelIde - ok
00:11:29.0687 0204 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
00:11:29.0687 0204 intelppm - ok
00:11:29.0718 0204 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
00:11:29.0718 0204 Ip6Fw - ok
00:11:29.0750 0204 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
00:11:29.0750 0204 IpFilterDriver - ok
00:11:29.0906 0204 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
00:11:29.0921 0204 IpInIp - ok
00:11:29.0937 0204 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
00:11:29.0953 0204 IpNat - ok
00:11:29.0968 0204 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
00:11:29.0968 0204 IPSec - ok
00:11:30.0140 0204 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
00:11:30.0140 0204 IRENUM - ok
00:11:30.0171 0204 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
00:11:30.0171 0204 isapnp - ok
00:11:30.0187 0204 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
00:11:30.0187 0204 Kbdclass - ok
00:11:30.0359 0204 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
00:11:30.0359 0204 kmixer - ok
00:11:30.0406 0204 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
00:11:30.0406 0204 KSecDD - ok
00:11:30.0546 0204 lbrtfdc - ok
00:11:30.0593 0204 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
00:11:30.0593 0204 mnmdd - ok
00:11:30.0625 0204 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
00:11:30.0625 0204 Modem - ok
00:11:30.0640 0204 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
00:11:30.0640 0204 Mouclass - ok
00:11:30.0671 0204 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
00:11:30.0671 0204 mouhid - ok
00:11:30.0703 0204 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
00:11:30.0703 0204 MountMgr - ok
00:11:30.0828 0204 mraid35x - ok
00:11:30.0843 0204 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
00:11:30.0859 0204 MRxDAV - ok
00:11:30.0906 0204 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
00:11:30.0921 0204 MRxSmb - ok
00:11:30.0953 0204 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
00:11:30.0953 0204 Msfs - ok
00:11:31.0078 0204 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
00:11:31.0078 0204 MSKSSRV - ok
00:11:31.0109 0204 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
00:11:31.0109 0204 MSPCLOCK - ok
00:11:31.0125 0204 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
00:11:31.0125 0204 MSPQM - ok
00:11:31.0171 0204 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
00:11:31.0171 0204 mssmbios - ok
00:11:31.0312 0204 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
00:11:31.0312 0204 Mup - ok
00:11:31.0375 0204 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
00:11:31.0375 0204 NDIS - ok
00:11:31.0531 0204 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
00:11:31.0531 0204 NdisTapi - ok
00:11:31.0562 0204 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
00:11:31.0562 0204 Ndisuio - ok
00:11:31.0593 0204 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
00:11:31.0593 0204 NdisWan - ok
00:11:31.0750 0204 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
00:11:31.0750 0204 NDProxy - ok
00:11:31.0796 0204 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
00:11:31.0796 0204 NetBIOS - ok
00:11:31.0937 0204 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
00:11:31.0953 0204 NetBT - ok
00:11:32.0031 0204 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
00:11:32.0031 0204 Npfs - ok
00:11:32.0140 0204 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
00:11:32.0156 0204 Ntfs - ok
00:11:32.0218 0204 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
00:11:32.0218 0204 Null - ok
00:11:32.0281 0204 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
00:11:32.0281 0204 NwlnkFlt - ok
00:11:32.0375 0204 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
00:11:32.0375 0204 NwlnkFwd - ok
00:11:32.0437 0204 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
00:11:32.0437 0204 Parport - ok
00:11:32.0500 0204 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
00:11:32.0500 0204 PartMgr - ok
00:11:32.0531 0204 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
00:11:32.0531 0204 ParVdm - ok
00:11:32.0609 0204 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
00:11:32.0609 0204 PCI - ok
00:11:32.0625 0204 PCIDump - ok
00:11:32.0656 0204 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
00:11:32.0656 0204 PCIIde - ok
00:11:32.0703 0204 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
00:11:32.0718 0204 Pcmcia - ok
00:11:32.0750 0204 PDCOMP - ok
00:11:32.0765 0204 PDFRAME - ok
00:11:32.0781 0204 PDRELI - ok
00:11:32.0796 0204 PDRFRAME - ok
00:11:32.0812 0204 perc2 - ok
00:11:32.0828 0204 perc2hib - ok
00:11:32.0875 0204 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
00:11:32.0875 0204 PptpMiniport - ok
00:11:32.0953 0204 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
00:11:32.0953 0204 PSched - ok
00:11:32.0984 0204 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
00:11:32.0984 0204 Ptilink - ok
00:11:33.0015 0204 ql1080 - ok
00:11:33.0031 0204 Ql10wnt - ok
00:11:33.0062 0204 ql12160 - ok
00:11:33.0078 0204 ql1240 - ok
00:11:33.0093 0204 ql1280 - ok
00:11:33.0109 0204 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
00:11:33.0109 0204 RasAcd - ok
00:11:33.0156 0204 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
00:11:33.0156 0204 Rasl2tp - ok
00:11:33.0218 0204 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
00:11:33.0218 0204 RasPppoe - ok
00:11:33.0328 0204 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
00:11:33.0343 0204 Raspti - ok
00:11:33.0375 0204 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
00:11:33.0375 0204 Rdbss - ok
00:11:33.0484 0204 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
00:11:33.0484 0204 RDPCDD - ok
00:11:33.0625 0204 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
00:11:33.0625 0204 RDPWD - ok
00:11:33.0671 0204 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
00:11:33.0671 0204 redbook - ok
00:11:33.0750 0204 SASKUTIL - ok
00:11:33.0906 0204 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
00:11:33.0906 0204 Secdrv - ok
00:11:33.0937 0204 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
00:11:33.0937 0204 Serial - ok
00:11:33.0968 0204 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
00:11:33.0968 0204 Sfloppy - ok
00:11:34.0078 0204 Simbad - ok
00:11:34.0093 0204 Sparrow - ok
00:11:34.0140 0204 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
00:11:34.0140 0204 splitter - ok
00:11:34.0187 0204 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
00:11:34.0187 0204 sr - ok
00:11:34.0343 0204 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
00:11:34.0343 0204 Srv - ok
00:11:34.0390 0204 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
00:11:34.0390 0204 swenum - ok
00:11:34.0421 0204 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
00:11:34.0421 0204 swmidi - ok
00:11:34.0546 0204 symc810 - ok
00:11:34.0562 0204 symc8xx - ok
00:11:34.0562 0204 sym_hi - ok
00:11:34.0578 0204 sym_u3 - ok
00:11:34.0625 0204 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
00:11:34.0625 0204 sysaudio - ok
00:11:34.0687 0204 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
00:11:34.0687 0204 Tcpip - ok
00:11:34.0828 0204 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
00:11:34.0828 0204 TDPIPE - ok
00:11:34.0859 0204 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
00:11:34.0859 0204 TDTCP - ok
00:11:34.0875 0204 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
00:11:34.0875 0204 TermDD - ok
00:11:34.0906 0204 TosIde - ok
00:11:34.0937 0204 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
00:11:34.0937 0204 Udfs - ok
00:11:35.0046 0204 ultra - ok
00:11:35.0109 0204 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
00:11:35.0109 0204 Update - ok
00:11:35.0171 0204 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
00:11:35.0171 0204 usbccgp - ok
00:11:35.0312 0204 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
00:11:35.0312 0204 usbehci - ok
00:11:35.0375 0204 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
00:11:35.0375 0204 usbhub - ok
00:11:35.0531 0204 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
00:11:35.0531 0204 usbprint - ok
00:11:35.0578 0204 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
00:11:35.0578 0204 USBSTOR - ok
00:11:35.0625 0204 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
00:11:35.0625 0204 usbuhci - ok
00:11:35.0750 0204 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
00:11:35.0750 0204 VgaSave - ok
00:11:35.0765 0204 ViaIde - ok
00:11:35.0796 0204 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
00:11:35.0796 0204 VolSnap - ok
00:11:35.0843 0204 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
00:11:35.0843 0204 Wanarp - ok
00:11:35.0906 0204 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
00:11:35.0921 0204 Wdf01000 - ok
00:11:36.0031 0204 WDICA - ok
00:11:36.0078 0204 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
00:11:36.0078 0204 wdmaud - ok
00:11:36.0156 0204 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
00:11:36.0156 0204 WmiAcpi - ok
00:11:36.0312 0204 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
00:11:36.0312 0204 WpdUsb - ok
00:11:36.0359 0204 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
00:11:36.0359 0204 WS2IFSL - ok
00:11:36.0421 0204 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
00:11:36.0421 0204 WudfPf - ok
00:11:36.0531 0204 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
00:11:36.0531 0204 WudfRd - ok
00:11:36.0562 0204 MBR (0x1B8) (9806b88a617aa67ac35f5d1ba8fb30c0) \Device\Harddisk0\DR0
00:11:36.0593 0204 \Device\Harddisk0\DR0 ( Rootkit.Boot.SST.a ) - infected
00:11:36.0593 0204 \Device\Harddisk0\DR0 - detected Rootkit.Boot.SST.a (0)
00:11:36.0593 0204 Boot (0x1200) (1ca91d440e02aa8bd956bb28d560bc45) \Device\Harddisk0\DR0\Partition0
00:11:36.0593 0204 \Device\Harddisk0\DR0\Partition0 - ok
00:11:36.0625 0204 Boot (0x1200) (d71f138884f186efa4618e0aadb55dc5) \Device\Harddisk0\DR0\Partition1
00:11:36.0625 0204 \Device\Harddisk0\DR0\Partition1 - ok
00:11:36.0625 0204 ============================================================
00:11:36.0625 0204 Scan finished
00:11:36.0625 0204 ============================================================
00:11:36.0640 0180 Detected object count: 1
00:11:36.0640 0180 Actual detected object count: 1
00:12:25.0703 0180 \Device\Harddisk0\DR0 - processing error
00:12:39.0390 0180 \Device\Harddisk0\DR0 - will be restored on reboot
00:12:39.0390 0180 \Device\Harddisk0\DR0 ( Rootkit.Boot.SST.a ) - User select action: Cure Restore
00:13:00.0328 2236 Deinitialize success
Re: pomale pc pls kontrolu logu
Spustte TDSS ještě jendou, jestli je opravdu vše ok 
.
Antivir ještě pořád něco hlásí?
.Antivir ještě pořád něco hlásí?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
-
alexander82
- Návštěvník
- Příspěvky: 48
- Registrován: 04 říj 2009 14:27
Re: pomale pc pls kontrolu logu
tu to je
eset zatim nic nehlasil
10:48:12.0375 1552 TDSS rootkit removing tool 2.7.0.0 Jan 10 2012 09:14:26
10:48:12.0546 1552 ============================================================
10:48:12.0546 1552 Current date / time: 2012/01/10 10:48:12.0546
10:48:12.0546 1552 SystemInfo:
10:48:12.0546 1552
10:48:12.0546 1552 OS Version: 5.1.2600 ServicePack: 3.0
10:48:12.0546 1552 Product type: Workstation
10:48:12.0562 1552 ComputerName: 6D56004A8F7A4E6
10:48:12.0562 1552 UserName: Domino
10:48:12.0562 1552 Windows directory: C:\WINDOWS
10:48:12.0562 1552 System windows directory: C:\WINDOWS
10:48:12.0562 1552 Processor architecture: Intel x86
10:48:12.0562 1552 Number of processors: 1
10:48:12.0562 1552 Page size: 0x1000
10:48:12.0562 1552 Boot type: Normal boot
10:48:12.0562 1552 ============================================================
10:48:14.0078 1552 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000, SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K', Flags 0x00000054
10:48:14.0203 1552 Initialize success
10:48:15.0937 3320 ============================================================
10:48:15.0937 3320 Scan started
10:48:15.0937 3320 Mode: Manual;
10:48:15.0937 3320 ============================================================
10:48:16.0750 3320 Abiosdsk - ok
10:48:16.0765 3320 abp480n5 - ok
10:48:16.0812 3320 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
10:48:16.0812 3320 ACPI - ok
10:48:16.0843 3320 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
10:48:16.0843 3320 ACPIEC - ok
10:48:16.0968 3320 adpu160m - ok
10:48:17.0000 3320 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
10:48:17.0015 3320 aec - ok
10:48:17.0046 3320 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
10:48:17.0046 3320 AFD - ok
10:48:17.0250 3320 AgereSoftModem (d31d1a92479bd8c0d050a6ffbdd410d9) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
10:48:17.0265 3320 AgereSoftModem - ok
10:48:17.0390 3320 Aha154x - ok
10:48:17.0406 3320 aic78u2 - ok
10:48:17.0421 3320 aic78xx - ok
10:48:17.0437 3320 AliIde - ok
10:48:17.0453 3320 amsint - ok
10:48:17.0500 3320 ApfiltrService (a24bf3622223933d478af613df323a57) C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
10:48:17.0500 3320 ApfiltrService - ok
10:48:17.0562 3320 AR5211 (6d5f95602b8d0d994d31a864872b38ef) C:\WINDOWS\system32\DRIVERS\ar5211.sys
10:48:17.0562 3320 AR5211 - ok
10:48:17.0687 3320 asc - ok
10:48:17.0703 3320 asc3350p - ok
10:48:17.0718 3320 asc3550 - ok
10:48:17.0765 3320 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
10:48:17.0765 3320 AsyncMac - ok
10:48:17.0796 3320 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
10:48:17.0796 3320 atapi - ok
10:48:17.0812 3320 Atdisk - ok
10:48:17.0875 3320 athr (b0c272def210b149c0bfa0d85600ce4b) C:\WINDOWS\system32\DRIVERS\athr.sys
10:48:17.0890 3320 athr - ok
10:48:18.0046 3320 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
10:48:18.0046 3320 Atmarpc - ok
10:48:18.0078 3320 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
10:48:18.0078 3320 audstub - ok
10:48:18.0125 3320 b57w2k (d0692f7b8217e3b82d2bfac535816117) C:\WINDOWS\system32\DRIVERS\b57xp32.sys
10:48:18.0125 3320 b57w2k - ok
10:48:18.0281 3320 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
10:48:18.0281 3320 Beep - ok
10:48:18.0406 3320 catchme - ok
10:48:18.0562 3320 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
10:48:18.0562 3320 cbidf2k - ok
10:48:18.0578 3320 cd20xrnt - ok
10:48:18.0593 3320 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
10:48:18.0593 3320 Cdaudio - ok
10:48:18.0640 3320 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
10:48:18.0640 3320 Cdfs - ok
10:48:18.0765 3320 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
10:48:18.0781 3320 Cdrom - ok
10:48:18.0796 3320 Changer - ok
10:48:18.0812 3320 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
10:48:18.0812 3320 CmBatt - ok
10:48:18.0828 3320 CmdIde - ok
10:48:18.0875 3320 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
10:48:18.0875 3320 Compbatt - ok
10:48:19.0000 3320 Cpqarray - ok
10:48:19.0015 3320 dac2w2k - ok
10:48:19.0031 3320 dac960nt - ok
10:48:19.0046 3320 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
10:48:19.0046 3320 Disk - ok
10:48:19.0078 3320 DKbFltr (08d30af92c270f2e76787c81589dbad6) C:\WINDOWS\system32\DRIVERS\DKbFltr.sys
10:48:19.0078 3320 DKbFltr - ok
10:48:19.0140 3320 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
10:48:19.0156 3320 dmboot - ok
10:48:19.0296 3320 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
10:48:19.0312 3320 dmio - ok
10:48:19.0328 3320 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
10:48:19.0328 3320 dmload - ok
10:48:19.0359 3320 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
10:48:19.0359 3320 DMusic - ok
10:48:19.0375 3320 dpti2o - ok
10:48:19.0453 3320 DritekPortIO (5c918d413f5837e67a85775c9873775e) C:\PROGRA~1\LAUNCH~1\DPortIO.sys
10:48:19.0453 3320 DritekPortIO - ok
10:48:19.0609 3320 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
10:48:19.0609 3320 drmkaud - ok
10:48:19.0656 3320 eamon (9309c5c9831203436e64cf2ae605c5d7) C:\WINDOWS\system32\DRIVERS\eamon.sys
10:48:19.0656 3320 eamon - ok
10:48:19.0703 3320 ehdrv (deff87f04ab5f6dd5edf2b80853bbe10) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
10:48:19.0718 3320 ehdrv - ok
10:48:19.0875 3320 epfw (5ba193ca0ae31209aaa39939ce6736b2) C:\WINDOWS\system32\DRIVERS\epfw.sys
10:48:19.0875 3320 epfw - ok
10:48:19.0890 3320 Epfwndis (75d3bcd3e0eded0ab0f96d9a10ff01c9) C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
10:48:19.0906 3320 Epfwndis - ok
10:48:19.0921 3320 epfwtdi (dc64f26f35e32c9472bbf8acd84060d3) C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
10:48:19.0937 3320 epfwtdi - ok
10:48:20.0125 3320 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
10:48:20.0125 3320 Fastfat - ok
10:48:20.0156 3320 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
10:48:20.0156 3320 Fdc - ok
10:48:20.0187 3320 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
10:48:20.0187 3320 Fips - ok
10:48:20.0312 3320 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
10:48:20.0312 3320 Flpydisk - ok
10:48:20.0359 3320 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
10:48:20.0359 3320 FltMgr - ok
10:48:20.0406 3320 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
10:48:20.0406 3320 Fs_Rec - ok
10:48:20.0437 3320 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
10:48:20.0437 3320 Ftdisk - ok
10:48:20.0578 3320 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
10:48:20.0578 3320 Gpc - ok
10:48:20.0609 3320 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
10:48:20.0609 3320 HDAudBus - ok
10:48:20.0625 3320 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
10:48:20.0625 3320 HidUsb - ok
10:48:20.0640 3320 hpn - ok
10:48:20.0671 3320 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
10:48:20.0671 3320 HPZius12 - ok
10:48:20.0875 3320 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
10:48:20.0875 3320 HTTP - ok
10:48:20.0921 3320 i2omgmt - ok
10:48:20.0937 3320 i2omp - ok
10:48:20.0968 3320 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
10:48:20.0968 3320 i8042prt - ok
10:48:21.0250 3320 ialm (d1359e54d9755d28e56b17a352ab8aae) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
10:48:21.0406 3320 ialm - ok
10:48:21.0531 3320 igfx - ok
10:48:21.0562 3320 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
10:48:21.0562 3320 Imapi - ok
10:48:21.0578 3320 ini910u - ok
10:48:21.0718 3320 IntcAzAudAddService (1ebde650d97a8eccdc1cc4a0804647cd) C:\WINDOWS\system32\drivers\RtkHDAud.sys
10:48:21.0750 3320 IntcAzAudAddService - ok
10:48:21.0890 3320 IntelIde - ok
10:48:21.0921 3320 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
10:48:21.0921 3320 intelppm - ok
10:48:21.0937 3320 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
10:48:21.0937 3320 Ip6Fw - ok
10:48:21.0968 3320 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
10:48:21.0984 3320 IpFilterDriver - ok
10:48:22.0140 3320 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
10:48:22.0140 3320 IpInIp - ok
10:48:22.0171 3320 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
10:48:22.0171 3320 IpNat - ok
10:48:22.0203 3320 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
10:48:22.0203 3320 IPSec - ok
10:48:22.0359 3320 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
10:48:22.0359 3320 IRENUM - ok
10:48:22.0390 3320 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
10:48:22.0390 3320 isapnp - ok
10:48:22.0421 3320 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
10:48:22.0421 3320 Kbdclass - ok
10:48:22.0531 3320 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
10:48:22.0531 3320 kmixer - ok
10:48:22.0593 3320 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
10:48:22.0609 3320 KSecDD - ok
10:48:22.0625 3320 lbrtfdc - ok
10:48:22.0734 3320 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
10:48:22.0734 3320 mnmdd - ok
10:48:22.0765 3320 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
10:48:22.0781 3320 Modem - ok
10:48:23.0234 3320 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
10:48:23.0234 3320 Mouclass - ok
10:48:23.0265 3320 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
10:48:23.0265 3320 mouhid - ok
10:48:23.0281 3320 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
10:48:23.0296 3320 MountMgr - ok
10:48:23.0375 3320 mraid35x - ok
10:48:23.0390 3320 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
10:48:23.0390 3320 MRxDAV - ok
10:48:23.0421 3320 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
10:48:23.0437 3320 MRxSmb - ok
10:48:23.0484 3320 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
10:48:23.0484 3320 Msfs - ok
10:48:23.0609 3320 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
10:48:23.0609 3320 MSKSSRV - ok
10:48:23.0625 3320 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
10:48:23.0625 3320 MSPCLOCK - ok
10:48:23.0656 3320 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
10:48:23.0656 3320 MSPQM - ok
10:48:23.0703 3320 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
10:48:23.0703 3320 mssmbios - ok
10:48:23.0828 3320 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
10:48:23.0828 3320 Mup - ok
10:48:23.0890 3320 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
10:48:23.0906 3320 NDIS - ok
10:48:23.0953 3320 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
10:48:23.0953 3320 NdisTapi - ok
10:48:24.0078 3320 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
10:48:24.0078 3320 Ndisuio - ok
10:48:24.0109 3320 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:48:24.0109 3320 NdisWan - ok
10:48:24.0171 3320 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
10:48:24.0171 3320 NDProxy - ok
10:48:24.0343 3320 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
10:48:24.0343 3320 NetBIOS - ok
10:48:24.0390 3320 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
10:48:24.0390 3320 NetBT - ok
10:48:24.0546 3320 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
10:48:24.0546 3320 Npfs - ok
10:48:24.0578 3320 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
10:48:24.0593 3320 Ntfs - ok
10:48:24.0671 3320 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
10:48:24.0671 3320 Null - ok
10:48:24.0796 3320 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
10:48:24.0796 3320 NwlnkFlt - ok
10:48:24.0828 3320 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
10:48:24.0828 3320 NwlnkFwd - ok
10:48:24.0875 3320 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
10:48:24.0875 3320 Parport - ok
10:48:24.0921 3320 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
10:48:24.0921 3320 PartMgr - ok
10:48:25.0046 3320 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
10:48:25.0062 3320 ParVdm - ok
10:48:25.0078 3320 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
10:48:25.0078 3320 PCI - ok
10:48:25.0125 3320 PCIDump - ok
10:48:25.0156 3320 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
10:48:25.0156 3320 PCIIde - ok
10:48:25.0281 3320 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
10:48:25.0281 3320 Pcmcia - ok
10:48:25.0296 3320 PDCOMP - ok
10:48:25.0312 3320 PDFRAME - ok
10:48:25.0328 3320 PDRELI - ok
10:48:25.0343 3320 PDRFRAME - ok
10:48:25.0343 3320 perc2 - ok
10:48:25.0359 3320 perc2hib - ok
10:48:25.0406 3320 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
10:48:25.0406 3320 PptpMiniport - ok
10:48:25.0453 3320 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
10:48:25.0453 3320 PSched - ok
10:48:25.0562 3320 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
10:48:25.0562 3320 Ptilink - ok
10:48:25.0578 3320 ql1080 - ok
10:48:25.0593 3320 Ql10wnt - ok
10:48:25.0609 3320 ql12160 - ok
10:48:25.0625 3320 ql1240 - ok
10:48:25.0625 3320 ql1280 - ok
10:48:25.0656 3320 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
10:48:25.0656 3320 RasAcd - ok
10:48:25.0718 3320 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
10:48:25.0718 3320 Rasl2tp - ok
10:48:25.0796 3320 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
10:48:25.0796 3320 RasPppoe - ok
10:48:25.0859 3320 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
10:48:25.0859 3320 Raspti - ok
10:48:25.0875 3320 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
10:48:25.0890 3320 Rdbss - ok
10:48:25.0937 3320 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
10:48:25.0937 3320 RDPCDD - ok
10:48:26.0015 3320 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
10:48:26.0015 3320 RDPWD - ok
10:48:26.0140 3320 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
10:48:26.0140 3320 redbook - ok
10:48:26.0203 3320 SASKUTIL - ok
10:48:26.0250 3320 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
10:48:26.0250 3320 Secdrv - ok
10:48:26.0390 3320 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
10:48:26.0406 3320 Serial - ok
10:48:26.0515 3320 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
10:48:26.0515 3320 Sfloppy - ok
10:48:26.0890 3320 Simbad - ok
10:48:27.0031 3320 Sparrow - ok
10:48:27.0156 3320 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
10:48:27.0171 3320 splitter - ok
10:48:27.0296 3320 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
10:48:27.0296 3320 sr - ok
10:48:27.0421 3320 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
10:48:27.0421 3320 Srv - ok
10:48:27.0593 3320 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
10:48:27.0593 3320 swenum - ok
10:48:27.0656 3320 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
10:48:27.0671 3320 swmidi - ok
10:48:27.0843 3320 symc810 - ok
10:48:27.0968 3320 symc8xx - ok
10:48:28.0015 3320 sym_hi - ok
10:48:28.0046 3320 sym_u3 - ok
10:48:28.0093 3320 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
10:48:28.0109 3320 sysaudio - ok
10:48:28.0296 3320 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
10:48:28.0312 3320 Tcpip - ok
10:48:28.0406 3320 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
10:48:28.0406 3320 TDPIPE - ok
10:48:28.0484 3320 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
10:48:28.0500 3320 TDTCP - ok
10:48:28.0515 3320 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
10:48:28.0515 3320 TermDD - ok
10:48:28.0531 3320 TosIde - ok
10:48:28.0562 3320 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
10:48:28.0578 3320 Udfs - ok
10:48:28.0593 3320 ultra - ok
10:48:28.0671 3320 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
10:48:28.0687 3320 Update - ok
10:48:28.0843 3320 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
10:48:28.0859 3320 usbccgp - ok
10:48:28.0937 3320 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
10:48:28.0937 3320 usbehci - ok
10:48:28.0984 3320 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
10:48:28.0984 3320 usbhub - ok
10:48:29.0093 3320 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
10:48:29.0093 3320 usbprint - ok
10:48:29.0171 3320 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
10:48:29.0171 3320 USBSTOR - ok
10:48:29.0218 3320 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
10:48:29.0218 3320 usbuhci - ok
10:48:29.0250 3320 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
10:48:29.0250 3320 VgaSave - ok
10:48:29.0343 3320 ViaIde - ok
10:48:29.0390 3320 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
10:48:29.0406 3320 VolSnap - ok
10:48:29.0468 3320 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:48:29.0468 3320 Wanarp - ok
10:48:29.0515 3320 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
10:48:29.0531 3320 Wdf01000 - ok
10:48:29.0609 3320 WDICA - ok
10:48:29.0687 3320 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
10:48:29.0687 3320 wdmaud - ok
10:48:29.0750 3320 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
10:48:29.0765 3320 WmiAcpi - ok
10:48:29.0812 3320 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
10:48:29.0812 3320 WpdUsb - ok
10:48:29.0921 3320 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
10:48:29.0921 3320 WS2IFSL - ok
10:48:29.0984 3320 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
10:48:29.0984 3320 WudfPf - ok
10:48:30.0015 3320 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
10:48:30.0015 3320 WudfRd - ok
10:48:30.0062 3320 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
10:48:30.0234 3320 \Device\Harddisk0\DR0 - ok
10:48:30.0250 3320 Boot (0x1200) (1ca91d440e02aa8bd956bb28d560bc45) \Device\Harddisk0\DR0\Partition0
10:48:30.0250 3320 \Device\Harddisk0\DR0\Partition0 - ok
10:48:30.0265 3320 Boot (0x1200) (d71f138884f186efa4618e0aadb55dc5) \Device\Harddisk0\DR0\Partition1
10:48:30.0265 3320 \Device\Harddisk0\DR0\Partition1 - ok
10:48:30.0265 3320 ============================================================
10:48:30.0265 3320 Scan finished
10:48:30.0265 3320 ============================================================
10:48:30.0281 1568 Detected object count: 0
10:48:30.0281 1568 Actual detected object count: 0
10:53:30.0750 2328 ============================================================
10:53:30.0750 2328 Scan started
10:53:30.0750 2328 Mode: Manual;
10:53:30.0750 2328 ============================================================
10:53:31.0343 2328 Abiosdsk - ok
10:53:31.0359 2328 abp480n5 - ok
10:53:31.0406 2328 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
10:53:31.0406 2328 ACPI - ok
10:53:31.0437 2328 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
10:53:31.0437 2328 ACPIEC - ok
10:53:31.0453 2328 adpu160m - ok
10:53:31.0578 2328 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
10:53:31.0578 2328 aec - ok
10:53:31.0609 2328 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
10:53:31.0609 2328 AFD - ok
10:53:31.0687 2328 AgereSoftModem (d31d1a92479bd8c0d050a6ffbdd410d9) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
10:53:31.0703 2328 AgereSoftModem - ok
10:53:31.0812 2328 Aha154x - ok
10:53:31.0828 2328 aic78u2 - ok
10:53:31.0843 2328 aic78xx - ok
10:53:31.0859 2328 AliIde - ok
10:53:31.0875 2328 amsint - ok
10:53:31.0906 2328 ApfiltrService (a24bf3622223933d478af613df323a57) C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
10:53:31.0906 2328 ApfiltrService - ok
10:53:31.0953 2328 AR5211 (6d5f95602b8d0d994d31a864872b38ef) C:\WINDOWS\system32\DRIVERS\ar5211.sys
10:53:31.0953 2328 AR5211 - ok
10:53:32.0078 2328 asc - ok
10:53:32.0093 2328 asc3350p - ok
10:53:32.0109 2328 asc3550 - ok
10:53:32.0140 2328 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
10:53:32.0140 2328 AsyncMac - ok
10:53:32.0171 2328 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
10:53:32.0171 2328 atapi - ok
10:53:32.0281 2328 Atdisk - ok
10:53:32.0359 2328 athr (b0c272def210b149c0bfa0d85600ce4b) C:\WINDOWS\system32\DRIVERS\athr.sys
10:53:32.0359 2328 athr - ok
10:53:32.0500 2328 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
10:53:32.0500 2328 Atmarpc - ok
10:53:32.0546 2328 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
10:53:32.0546 2328 audstub - ok
10:53:32.0578 2328 b57w2k (d0692f7b8217e3b82d2bfac535816117) C:\WINDOWS\system32\DRIVERS\b57xp32.sys
10:53:32.0578 2328 b57w2k - ok
10:53:32.0703 2328 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
10:53:32.0703 2328 Beep - ok
10:53:32.0828 2328 catchme - ok
10:53:32.0984 2328 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
10:53:32.0984 2328 cbidf2k - ok
10:53:33.0000 2328 cd20xrnt - ok
10:53:33.0015 2328 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
10:53:33.0031 2328 Cdaudio - ok
10:53:33.0062 2328 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
10:53:33.0062 2328 Cdfs - ok
10:53:33.0187 2328 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
10:53:33.0187 2328 Cdrom - ok
10:53:33.0203 2328 Changer - ok
10:53:33.0218 2328 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
10:53:33.0234 2328 CmBatt - ok
10:53:33.0234 2328 CmdIde - ok
10:53:33.0281 2328 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
10:53:33.0281 2328 Compbatt - ok
10:53:33.0406 2328 Cpqarray - ok
10:53:33.0421 2328 dac2w2k - ok
10:53:33.0437 2328 dac960nt - ok
10:53:33.0468 2328 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
10:53:33.0468 2328 Disk - ok
10:53:33.0500 2328 DKbFltr (08d30af92c270f2e76787c81589dbad6) C:\WINDOWS\system32\DRIVERS\DKbFltr.sys
10:53:33.0500 2328 DKbFltr - ok
10:53:33.0562 2328 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
10:53:33.0578 2328 dmboot - ok
10:53:33.0703 2328 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
10:53:33.0703 2328 dmio - ok
10:53:33.0734 2328 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
10:53:33.0734 2328 dmload - ok
10:53:33.0765 2328 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
10:53:33.0765 2328 DMusic - ok
10:53:33.0796 2328 dpti2o - ok
10:53:33.0875 2328 DritekPortIO (5c918d413f5837e67a85775c9873775e) C:\PROGRA~1\LAUNCH~1\DPortIO.sys
10:53:33.0875 2328 DritekPortIO - ok
10:53:34.0015 2328 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
10:53:34.0015 2328 drmkaud - ok
10:53:34.0046 2328 eamon (9309c5c9831203436e64cf2ae605c5d7) C:\WINDOWS\system32\DRIVERS\eamon.sys
10:53:34.0062 2328 eamon - ok
10:53:34.0109 2328 ehdrv (deff87f04ab5f6dd5edf2b80853bbe10) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
10:53:34.0109 2328 ehdrv - ok
10:53:34.0250 2328 epfw (5ba193ca0ae31209aaa39939ce6736b2) C:\WINDOWS\system32\DRIVERS\epfw.sys
10:53:34.0265 2328 epfw - ok
10:53:34.0296 2328 Epfwndis (75d3bcd3e0eded0ab0f96d9a10ff01c9) C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
10:53:34.0296 2328 Epfwndis - ok
10:53:34.0328 2328 epfwtdi (dc64f26f35e32c9472bbf8acd84060d3) C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
10:53:34.0328 2328 epfwtdi - ok
10:53:34.0500 2328 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
10:53:34.0500 2328 Fastfat - ok
10:53:34.0531 2328 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
10:53:34.0531 2328 Fdc - ok
10:53:34.0562 2328 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
10:53:34.0562 2328 Fips - ok
10:53:34.0671 2328 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
10:53:34.0671 2328 Flpydisk - ok
10:53:34.0703 2328 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
10:53:34.0703 2328 FltMgr - ok
10:53:34.0750 2328 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
10:53:34.0750 2328 Fs_Rec - ok
10:53:34.0781 2328 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
10:53:34.0781 2328 Ftdisk - ok
10:53:34.0812 2328 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
10:53:34.0812 2328 Gpc - ok
10:53:34.0937 2328 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
10:53:34.0937 2328 HDAudBus - ok
10:53:34.0968 2328 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
10:53:34.0968 2328 HidUsb - ok
10:53:34.0984 2328 hpn - ok
10:53:35.0031 2328 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
10:53:35.0031 2328 HPZius12 - ok
10:53:35.0109 2328 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
10:53:35.0109 2328 HTTP - ok
10:53:35.0203 2328 i2omgmt - ok
10:53:35.0234 2328 i2omp - ok
10:53:35.0265 2328 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
10:53:35.0265 2328 i8042prt - ok
10:53:35.0500 2328 ialm (d1359e54d9755d28e56b17a352ab8aae) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
10:53:35.0546 2328 ialm - ok
10:53:35.0671 2328 igfx - ok
10:53:35.0703 2328 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
10:53:35.0703 2328 Imapi - ok
10:53:35.0718 2328 ini910u - ok
10:53:35.0875 2328 IntcAzAudAddService (1ebde650d97a8eccdc1cc4a0804647cd) C:\WINDOWS\system32\drivers\RtkHDAud.sys
10:53:35.0906 2328 IntcAzAudAddService - ok
10:53:36.0031 2328 IntelIde - ok
10:53:36.0078 2328 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
10:53:36.0078 2328 intelppm - ok
10:53:36.0109 2328 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
10:53:36.0109 2328 Ip6Fw - ok
10:53:36.0140 2328 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
10:53:36.0140 2328 IpFilterDriver - ok
10:53:36.0281 2328 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
10:53:36.0281 2328 IpInIp - ok
10:53:36.0312 2328 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
10:53:36.0312 2328 IpNat - ok
10:53:36.0343 2328 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
10:53:36.0343 2328 IPSec - ok
10:53:36.0500 2328 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
10:53:36.0500 2328 IRENUM - ok
10:53:36.0531 2328 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
10:53:36.0531 2328 isapnp - ok
10:53:36.0562 2328 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
10:53:36.0562 2328 Kbdclass - ok
10:53:36.0718 2328 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
10:53:36.0718 2328 kmixer - ok
10:53:36.0765 2328 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
10:53:36.0765 2328 KSecDD - ok
10:53:36.0812 2328 lbrtfdc - ok
10:53:36.0953 2328 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
10:53:36.0953 2328 mnmdd - ok
10:53:36.0984 2328 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
10:53:36.0984 2328 Modem - ok
10:53:37.0000 2328 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
10:53:37.0000 2328 Mouclass - ok
10:53:37.0015 2328 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
10:53:37.0015 2328 mouhid - ok
10:53:37.0062 2328 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
10:53:37.0062 2328 MountMgr - ok
10:53:37.0156 2328 mraid35x - ok
10:53:37.0187 2328 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
10:53:37.0187 2328 MRxDAV - ok
10:53:37.0250 2328 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
10:53:37.0250 2328 MRxSmb - ok
10:53:37.0390 2328 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
10:53:37.0390 2328 Msfs - ok
10:53:37.0421 2328 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
10:53:37.0421 2328 MSKSSRV - ok
10:53:37.0437 2328 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
10:53:37.0437 2328 MSPCLOCK - ok
10:53:37.0468 2328 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
10:53:37.0468 2328 MSPQM - ok
10:53:37.0500 2328 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
10:53:37.0500 2328 mssmbios - ok
10:53:37.0640 2328 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
10:53:37.0640 2328 Mup - ok
10:53:37.0671 2328 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
10:53:37.0671 2328 NDIS - ok
10:53:37.0796 2328 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
10:53:37.0796 2328 NdisTapi - ok
10:53:37.0843 2328 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
10:53:37.0843 2328 Ndisuio - ok
10:53:37.0890 2328 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:53:37.0890 2328 NdisWan - ok
10:53:38.0031 2328 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
10:53:38.0031 2328 NDProxy - ok
10:53:38.0109 2328 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
10:53:38.0109 2328 NetBIOS - ok
10:53:38.0203 2328 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
10:53:38.0203 2328 NetBT - ok
10:53:38.0250 2328 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
10:53:38.0250 2328 Npfs - ok
10:53:38.0281 2328 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
10:53:38.0296 2328 Ntfs - ok
10:53:38.0375 2328 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
10:53:38.0375 2328 Null - ok
10:53:38.0500 2328 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
10:53:38.0500 2328 NwlnkFlt - ok
10:53:38.0515 2328 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
10:53:38.0515 2328 NwlnkFwd - ok
10:53:38.0609 2328 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
10:53:38.0609 2328 Parport - ok
10:53:38.0703 2328 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
10:53:38.0703 2328 PartMgr - ok
10:53:38.0750 2328 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
10:53:38.0750 2328 ParVdm - ok
10:53:38.0828 2328 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
10:53:38.0828 2328 PCI - ok
10:53:38.0843 2328 PCIDump - ok
10:53:38.0875 2328 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
10:53:38.0875 2328 PCIIde - ok
10:53:38.0953 2328 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
10:53:38.0953 2328 Pcmcia - ok
10:53:38.0968 2328 PDCOMP - ok
10:53:38.0984 2328 PDFRAME - ok
10:53:39.0000 2328 PDRELI - ok
10:53:39.0015 2328 PDRFRAME - ok
10:53:39.0031 2328 perc2 - ok
10:53:39.0046 2328 perc2hib - ok
10:53:39.0078 2328 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
10:53:39.0078 2328 PptpMiniport - ok
10:53:39.0109 2328 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
10:53:39.0109 2328 PSched - ok
10:53:39.0140 2328 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
10:53:39.0140 2328 Ptilink - ok
10:53:39.0203 2328 ql1080 - ok
10:53:39.0218 2328 Ql10wnt - ok
10:53:39.0234 2328 ql12160 - ok
10:53:39.0250 2328 ql1240 - ok
10:53:39.0265 2328 ql1280 - ok
10:53:39.0281 2328 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
10:53:39.0281 2328 RasAcd - ok
10:53:39.0328 2328 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
10:53:39.0328 2328 Rasl2tp - ok
10:53:39.0390 2328 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
10:53:39.0390 2328 RasPppoe - ok
10:53:39.0421 2328 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
10:53:39.0421 2328 Raspti - ok
10:53:39.0515 2328 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
10:53:39.0515 2328 Rdbss - ok
10:53:39.0546 2328 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
10:53:39.0546 2328 RDPCDD - ok
10:53:39.0625 2328 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
10:53:39.0625 2328 RDPWD - ok
10:53:39.0671 2328 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
10:53:39.0671 2328 redbook - ok
10:53:39.0750 2328 SASKUTIL - ok
10:53:39.0843 2328 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
10:53:39.0843 2328 Secdrv - ok
10:53:39.0937 2328 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
10:53:39.0937 2328 Serial - ok
10:53:39.0968 2328 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
10:53:39.0968 2328 Sfloppy - ok
10:53:40.0046 2328 Simbad - ok
10:53:40.0062 2328 Sparrow - ok
10:53:40.0078 2328 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
10:53:40.0078 2328 splitter - ok
10:53:40.0171 2328 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
10:53:40.0171 2328 sr - ok
10:53:40.0234 2328 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
10:53:40.0234 2328 Srv - ok
10:53:40.0312 2328 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
10:53:40.0312 2328 swenum - ok
10:53:40.0390 2328 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
10:53:40.0390 2328 swmidi - ok
10:53:40.0421 2328 symc810 - ok
10:53:40.0437 2328 symc8xx - ok
10:53:40.0453 2328 sym_hi - ok
10:53:40.0468 2328 sym_u3 - ok
10:53:40.0484 2328 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
10:53:40.0484 2328 sysaudio - ok
10:53:40.0546 2328 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
10:53:40.0546 2328 Tcpip - ok
10:53:40.0640 2328 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
10:53:40.0640 2328 TDPIPE - ok
10:53:40.0718 2328 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
10:53:40.0718 2328 TDTCP - ok
10:53:40.0734 2328 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
10:53:40.0750 2328 TermDD - ok
10:53:40.0765 2328 TosIde - ok
10:53:40.0812 2328 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
10:53:40.0812 2328 Udfs - ok
10:53:40.0828 2328 ultra - ok
10:53:40.0890 2328 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
10:53:40.0890 2328 Update - ok
10:53:40.0984 2328 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
10:53:40.0984 2328 usbccgp - ok
10:53:41.0078 2328 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
10:53:41.0078 2328 usbehci - ok
10:53:41.0125 2328 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
10:53:41.0125 2328 usbhub - ok
10:53:41.0234 2328 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
10:53:41.0234 2328 usbprint - ok
10:53:41.0328 2328 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
10:53:41.0328 2328 USBSTOR - ok
10:53:41.0375 2328 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
10:53:41.0375 2328 usbuhci - ok
10:53:41.0437 2328 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
10:53:41.0437 2328 VgaSave - ok
10:53:41.0500 2328 ViaIde - ok
10:53:41.0531 2328 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
10:53:41.0531 2328 VolSnap - ok
10:53:41.0578 2328 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:53:41.0578 2328 Wanarp - ok
10:53:41.0640 2328 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
10:53:41.0640 2328 Wdf01000 - ok
10:53:41.0687 2328 WDICA - ok
10:53:41.0781 2328 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
10:53:41.0781 2328 wdmaud - ok
10:53:41.0859 2328 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
10:53:41.0875 2328 WmiAcpi - ok
10:53:41.0937 2328 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
10:53:41.0937 2328 WpdUsb - ok
10:53:42.0031 2328 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
10:53:42.0031 2328 WS2IFSL - ok
10:53:42.0125 2328 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
10:53:42.0125 2328 WudfPf - ok
10:53:42.0140 2328 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
10:53:42.0140 2328 WudfRd - ok
10:53:42.0171 2328 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
10:53:42.0328 2328 \Device\Harddisk0\DR0 - ok
10:53:42.0343 2328 Boot (0x1200) (1ca91d440e02aa8bd956bb28d560bc45) \Device\Harddisk0\DR0\Partition0
10:53:42.0343 2328 \Device\Harddisk0\DR0\Partition0 - ok
10:53:42.0359 2328 Boot (0x1200) (d71f138884f186efa4618e0aadb55dc5) \Device\Harddisk0\DR0\Partition1
10:53:42.0359 2328 \Device\Harddisk0\DR0\Partition1 - ok
10:53:42.0375 2328 ============================================================
10:53:42.0375 2328 Scan finished
10:53:42.0375 2328 ============================================================
10:53:42.0375 2320 Detected object count: 0
10:53:42.0375 2320 Actual detected object count: 0
eset zatim nic nehlasil
10:48:12.0375 1552 TDSS rootkit removing tool 2.7.0.0 Jan 10 2012 09:14:26
10:48:12.0546 1552 ============================================================
10:48:12.0546 1552 Current date / time: 2012/01/10 10:48:12.0546
10:48:12.0546 1552 SystemInfo:
10:48:12.0546 1552
10:48:12.0546 1552 OS Version: 5.1.2600 ServicePack: 3.0
10:48:12.0546 1552 Product type: Workstation
10:48:12.0562 1552 ComputerName: 6D56004A8F7A4E6
10:48:12.0562 1552 UserName: Domino
10:48:12.0562 1552 Windows directory: C:\WINDOWS
10:48:12.0562 1552 System windows directory: C:\WINDOWS
10:48:12.0562 1552 Processor architecture: Intel x86
10:48:12.0562 1552 Number of processors: 1
10:48:12.0562 1552 Page size: 0x1000
10:48:12.0562 1552 Boot type: Normal boot
10:48:12.0562 1552 ============================================================
10:48:14.0078 1552 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000, SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K', Flags 0x00000054
10:48:14.0203 1552 Initialize success
10:48:15.0937 3320 ============================================================
10:48:15.0937 3320 Scan started
10:48:15.0937 3320 Mode: Manual;
10:48:15.0937 3320 ============================================================
10:48:16.0750 3320 Abiosdsk - ok
10:48:16.0765 3320 abp480n5 - ok
10:48:16.0812 3320 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
10:48:16.0812 3320 ACPI - ok
10:48:16.0843 3320 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
10:48:16.0843 3320 ACPIEC - ok
10:48:16.0968 3320 adpu160m - ok
10:48:17.0000 3320 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
10:48:17.0015 3320 aec - ok
10:48:17.0046 3320 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
10:48:17.0046 3320 AFD - ok
10:48:17.0250 3320 AgereSoftModem (d31d1a92479bd8c0d050a6ffbdd410d9) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
10:48:17.0265 3320 AgereSoftModem - ok
10:48:17.0390 3320 Aha154x - ok
10:48:17.0406 3320 aic78u2 - ok
10:48:17.0421 3320 aic78xx - ok
10:48:17.0437 3320 AliIde - ok
10:48:17.0453 3320 amsint - ok
10:48:17.0500 3320 ApfiltrService (a24bf3622223933d478af613df323a57) C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
10:48:17.0500 3320 ApfiltrService - ok
10:48:17.0562 3320 AR5211 (6d5f95602b8d0d994d31a864872b38ef) C:\WINDOWS\system32\DRIVERS\ar5211.sys
10:48:17.0562 3320 AR5211 - ok
10:48:17.0687 3320 asc - ok
10:48:17.0703 3320 asc3350p - ok
10:48:17.0718 3320 asc3550 - ok
10:48:17.0765 3320 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
10:48:17.0765 3320 AsyncMac - ok
10:48:17.0796 3320 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
10:48:17.0796 3320 atapi - ok
10:48:17.0812 3320 Atdisk - ok
10:48:17.0875 3320 athr (b0c272def210b149c0bfa0d85600ce4b) C:\WINDOWS\system32\DRIVERS\athr.sys
10:48:17.0890 3320 athr - ok
10:48:18.0046 3320 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
10:48:18.0046 3320 Atmarpc - ok
10:48:18.0078 3320 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
10:48:18.0078 3320 audstub - ok
10:48:18.0125 3320 b57w2k (d0692f7b8217e3b82d2bfac535816117) C:\WINDOWS\system32\DRIVERS\b57xp32.sys
10:48:18.0125 3320 b57w2k - ok
10:48:18.0281 3320 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
10:48:18.0281 3320 Beep - ok
10:48:18.0406 3320 catchme - ok
10:48:18.0562 3320 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
10:48:18.0562 3320 cbidf2k - ok
10:48:18.0578 3320 cd20xrnt - ok
10:48:18.0593 3320 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
10:48:18.0593 3320 Cdaudio - ok
10:48:18.0640 3320 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
10:48:18.0640 3320 Cdfs - ok
10:48:18.0765 3320 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
10:48:18.0781 3320 Cdrom - ok
10:48:18.0796 3320 Changer - ok
10:48:18.0812 3320 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
10:48:18.0812 3320 CmBatt - ok
10:48:18.0828 3320 CmdIde - ok
10:48:18.0875 3320 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
10:48:18.0875 3320 Compbatt - ok
10:48:19.0000 3320 Cpqarray - ok
10:48:19.0015 3320 dac2w2k - ok
10:48:19.0031 3320 dac960nt - ok
10:48:19.0046 3320 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
10:48:19.0046 3320 Disk - ok
10:48:19.0078 3320 DKbFltr (08d30af92c270f2e76787c81589dbad6) C:\WINDOWS\system32\DRIVERS\DKbFltr.sys
10:48:19.0078 3320 DKbFltr - ok
10:48:19.0140 3320 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
10:48:19.0156 3320 dmboot - ok
10:48:19.0296 3320 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
10:48:19.0312 3320 dmio - ok
10:48:19.0328 3320 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
10:48:19.0328 3320 dmload - ok
10:48:19.0359 3320 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
10:48:19.0359 3320 DMusic - ok
10:48:19.0375 3320 dpti2o - ok
10:48:19.0453 3320 DritekPortIO (5c918d413f5837e67a85775c9873775e) C:\PROGRA~1\LAUNCH~1\DPortIO.sys
10:48:19.0453 3320 DritekPortIO - ok
10:48:19.0609 3320 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
10:48:19.0609 3320 drmkaud - ok
10:48:19.0656 3320 eamon (9309c5c9831203436e64cf2ae605c5d7) C:\WINDOWS\system32\DRIVERS\eamon.sys
10:48:19.0656 3320 eamon - ok
10:48:19.0703 3320 ehdrv (deff87f04ab5f6dd5edf2b80853bbe10) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
10:48:19.0718 3320 ehdrv - ok
10:48:19.0875 3320 epfw (5ba193ca0ae31209aaa39939ce6736b2) C:\WINDOWS\system32\DRIVERS\epfw.sys
10:48:19.0875 3320 epfw - ok
10:48:19.0890 3320 Epfwndis (75d3bcd3e0eded0ab0f96d9a10ff01c9) C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
10:48:19.0906 3320 Epfwndis - ok
10:48:19.0921 3320 epfwtdi (dc64f26f35e32c9472bbf8acd84060d3) C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
10:48:19.0937 3320 epfwtdi - ok
10:48:20.0125 3320 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
10:48:20.0125 3320 Fastfat - ok
10:48:20.0156 3320 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
10:48:20.0156 3320 Fdc - ok
10:48:20.0187 3320 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
10:48:20.0187 3320 Fips - ok
10:48:20.0312 3320 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
10:48:20.0312 3320 Flpydisk - ok
10:48:20.0359 3320 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
10:48:20.0359 3320 FltMgr - ok
10:48:20.0406 3320 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
10:48:20.0406 3320 Fs_Rec - ok
10:48:20.0437 3320 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
10:48:20.0437 3320 Ftdisk - ok
10:48:20.0578 3320 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
10:48:20.0578 3320 Gpc - ok
10:48:20.0609 3320 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
10:48:20.0609 3320 HDAudBus - ok
10:48:20.0625 3320 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
10:48:20.0625 3320 HidUsb - ok
10:48:20.0640 3320 hpn - ok
10:48:20.0671 3320 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
10:48:20.0671 3320 HPZius12 - ok
10:48:20.0875 3320 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
10:48:20.0875 3320 HTTP - ok
10:48:20.0921 3320 i2omgmt - ok
10:48:20.0937 3320 i2omp - ok
10:48:20.0968 3320 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
10:48:20.0968 3320 i8042prt - ok
10:48:21.0250 3320 ialm (d1359e54d9755d28e56b17a352ab8aae) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
10:48:21.0406 3320 ialm - ok
10:48:21.0531 3320 igfx - ok
10:48:21.0562 3320 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
10:48:21.0562 3320 Imapi - ok
10:48:21.0578 3320 ini910u - ok
10:48:21.0718 3320 IntcAzAudAddService (1ebde650d97a8eccdc1cc4a0804647cd) C:\WINDOWS\system32\drivers\RtkHDAud.sys
10:48:21.0750 3320 IntcAzAudAddService - ok
10:48:21.0890 3320 IntelIde - ok
10:48:21.0921 3320 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
10:48:21.0921 3320 intelppm - ok
10:48:21.0937 3320 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
10:48:21.0937 3320 Ip6Fw - ok
10:48:21.0968 3320 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
10:48:21.0984 3320 IpFilterDriver - ok
10:48:22.0140 3320 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
10:48:22.0140 3320 IpInIp - ok
10:48:22.0171 3320 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
10:48:22.0171 3320 IpNat - ok
10:48:22.0203 3320 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
10:48:22.0203 3320 IPSec - ok
10:48:22.0359 3320 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
10:48:22.0359 3320 IRENUM - ok
10:48:22.0390 3320 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
10:48:22.0390 3320 isapnp - ok
10:48:22.0421 3320 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
10:48:22.0421 3320 Kbdclass - ok
10:48:22.0531 3320 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
10:48:22.0531 3320 kmixer - ok
10:48:22.0593 3320 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
10:48:22.0609 3320 KSecDD - ok
10:48:22.0625 3320 lbrtfdc - ok
10:48:22.0734 3320 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
10:48:22.0734 3320 mnmdd - ok
10:48:22.0765 3320 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
10:48:22.0781 3320 Modem - ok
10:48:23.0234 3320 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
10:48:23.0234 3320 Mouclass - ok
10:48:23.0265 3320 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
10:48:23.0265 3320 mouhid - ok
10:48:23.0281 3320 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
10:48:23.0296 3320 MountMgr - ok
10:48:23.0375 3320 mraid35x - ok
10:48:23.0390 3320 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
10:48:23.0390 3320 MRxDAV - ok
10:48:23.0421 3320 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
10:48:23.0437 3320 MRxSmb - ok
10:48:23.0484 3320 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
10:48:23.0484 3320 Msfs - ok
10:48:23.0609 3320 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
10:48:23.0609 3320 MSKSSRV - ok
10:48:23.0625 3320 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
10:48:23.0625 3320 MSPCLOCK - ok
10:48:23.0656 3320 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
10:48:23.0656 3320 MSPQM - ok
10:48:23.0703 3320 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
10:48:23.0703 3320 mssmbios - ok
10:48:23.0828 3320 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
10:48:23.0828 3320 Mup - ok
10:48:23.0890 3320 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
10:48:23.0906 3320 NDIS - ok
10:48:23.0953 3320 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
10:48:23.0953 3320 NdisTapi - ok
10:48:24.0078 3320 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
10:48:24.0078 3320 Ndisuio - ok
10:48:24.0109 3320 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:48:24.0109 3320 NdisWan - ok
10:48:24.0171 3320 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
10:48:24.0171 3320 NDProxy - ok
10:48:24.0343 3320 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
10:48:24.0343 3320 NetBIOS - ok
10:48:24.0390 3320 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
10:48:24.0390 3320 NetBT - ok
10:48:24.0546 3320 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
10:48:24.0546 3320 Npfs - ok
10:48:24.0578 3320 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
10:48:24.0593 3320 Ntfs - ok
10:48:24.0671 3320 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
10:48:24.0671 3320 Null - ok
10:48:24.0796 3320 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
10:48:24.0796 3320 NwlnkFlt - ok
10:48:24.0828 3320 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
10:48:24.0828 3320 NwlnkFwd - ok
10:48:24.0875 3320 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
10:48:24.0875 3320 Parport - ok
10:48:24.0921 3320 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
10:48:24.0921 3320 PartMgr - ok
10:48:25.0046 3320 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
10:48:25.0062 3320 ParVdm - ok
10:48:25.0078 3320 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
10:48:25.0078 3320 PCI - ok
10:48:25.0125 3320 PCIDump - ok
10:48:25.0156 3320 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
10:48:25.0156 3320 PCIIde - ok
10:48:25.0281 3320 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
10:48:25.0281 3320 Pcmcia - ok
10:48:25.0296 3320 PDCOMP - ok
10:48:25.0312 3320 PDFRAME - ok
10:48:25.0328 3320 PDRELI - ok
10:48:25.0343 3320 PDRFRAME - ok
10:48:25.0343 3320 perc2 - ok
10:48:25.0359 3320 perc2hib - ok
10:48:25.0406 3320 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
10:48:25.0406 3320 PptpMiniport - ok
10:48:25.0453 3320 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
10:48:25.0453 3320 PSched - ok
10:48:25.0562 3320 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
10:48:25.0562 3320 Ptilink - ok
10:48:25.0578 3320 ql1080 - ok
10:48:25.0593 3320 Ql10wnt - ok
10:48:25.0609 3320 ql12160 - ok
10:48:25.0625 3320 ql1240 - ok
10:48:25.0625 3320 ql1280 - ok
10:48:25.0656 3320 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
10:48:25.0656 3320 RasAcd - ok
10:48:25.0718 3320 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
10:48:25.0718 3320 Rasl2tp - ok
10:48:25.0796 3320 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
10:48:25.0796 3320 RasPppoe - ok
10:48:25.0859 3320 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
10:48:25.0859 3320 Raspti - ok
10:48:25.0875 3320 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
10:48:25.0890 3320 Rdbss - ok
10:48:25.0937 3320 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
10:48:25.0937 3320 RDPCDD - ok
10:48:26.0015 3320 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
10:48:26.0015 3320 RDPWD - ok
10:48:26.0140 3320 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
10:48:26.0140 3320 redbook - ok
10:48:26.0203 3320 SASKUTIL - ok
10:48:26.0250 3320 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
10:48:26.0250 3320 Secdrv - ok
10:48:26.0390 3320 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
10:48:26.0406 3320 Serial - ok
10:48:26.0515 3320 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
10:48:26.0515 3320 Sfloppy - ok
10:48:26.0890 3320 Simbad - ok
10:48:27.0031 3320 Sparrow - ok
10:48:27.0156 3320 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
10:48:27.0171 3320 splitter - ok
10:48:27.0296 3320 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
10:48:27.0296 3320 sr - ok
10:48:27.0421 3320 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
10:48:27.0421 3320 Srv - ok
10:48:27.0593 3320 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
10:48:27.0593 3320 swenum - ok
10:48:27.0656 3320 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
10:48:27.0671 3320 swmidi - ok
10:48:27.0843 3320 symc810 - ok
10:48:27.0968 3320 symc8xx - ok
10:48:28.0015 3320 sym_hi - ok
10:48:28.0046 3320 sym_u3 - ok
10:48:28.0093 3320 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
10:48:28.0109 3320 sysaudio - ok
10:48:28.0296 3320 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
10:48:28.0312 3320 Tcpip - ok
10:48:28.0406 3320 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
10:48:28.0406 3320 TDPIPE - ok
10:48:28.0484 3320 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
10:48:28.0500 3320 TDTCP - ok
10:48:28.0515 3320 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
10:48:28.0515 3320 TermDD - ok
10:48:28.0531 3320 TosIde - ok
10:48:28.0562 3320 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
10:48:28.0578 3320 Udfs - ok
10:48:28.0593 3320 ultra - ok
10:48:28.0671 3320 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
10:48:28.0687 3320 Update - ok
10:48:28.0843 3320 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
10:48:28.0859 3320 usbccgp - ok
10:48:28.0937 3320 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
10:48:28.0937 3320 usbehci - ok
10:48:28.0984 3320 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
10:48:28.0984 3320 usbhub - ok
10:48:29.0093 3320 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
10:48:29.0093 3320 usbprint - ok
10:48:29.0171 3320 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
10:48:29.0171 3320 USBSTOR - ok
10:48:29.0218 3320 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
10:48:29.0218 3320 usbuhci - ok
10:48:29.0250 3320 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
10:48:29.0250 3320 VgaSave - ok
10:48:29.0343 3320 ViaIde - ok
10:48:29.0390 3320 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
10:48:29.0406 3320 VolSnap - ok
10:48:29.0468 3320 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:48:29.0468 3320 Wanarp - ok
10:48:29.0515 3320 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
10:48:29.0531 3320 Wdf01000 - ok
10:48:29.0609 3320 WDICA - ok
10:48:29.0687 3320 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
10:48:29.0687 3320 wdmaud - ok
10:48:29.0750 3320 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
10:48:29.0765 3320 WmiAcpi - ok
10:48:29.0812 3320 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
10:48:29.0812 3320 WpdUsb - ok
10:48:29.0921 3320 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
10:48:29.0921 3320 WS2IFSL - ok
10:48:29.0984 3320 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
10:48:29.0984 3320 WudfPf - ok
10:48:30.0015 3320 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
10:48:30.0015 3320 WudfRd - ok
10:48:30.0062 3320 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
10:48:30.0234 3320 \Device\Harddisk0\DR0 - ok
10:48:30.0250 3320 Boot (0x1200) (1ca91d440e02aa8bd956bb28d560bc45) \Device\Harddisk0\DR0\Partition0
10:48:30.0250 3320 \Device\Harddisk0\DR0\Partition0 - ok
10:48:30.0265 3320 Boot (0x1200) (d71f138884f186efa4618e0aadb55dc5) \Device\Harddisk0\DR0\Partition1
10:48:30.0265 3320 \Device\Harddisk0\DR0\Partition1 - ok
10:48:30.0265 3320 ============================================================
10:48:30.0265 3320 Scan finished
10:48:30.0265 3320 ============================================================
10:48:30.0281 1568 Detected object count: 0
10:48:30.0281 1568 Actual detected object count: 0
10:53:30.0750 2328 ============================================================
10:53:30.0750 2328 Scan started
10:53:30.0750 2328 Mode: Manual;
10:53:30.0750 2328 ============================================================
10:53:31.0343 2328 Abiosdsk - ok
10:53:31.0359 2328 abp480n5 - ok
10:53:31.0406 2328 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
10:53:31.0406 2328 ACPI - ok
10:53:31.0437 2328 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
10:53:31.0437 2328 ACPIEC - ok
10:53:31.0453 2328 adpu160m - ok
10:53:31.0578 2328 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
10:53:31.0578 2328 aec - ok
10:53:31.0609 2328 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
10:53:31.0609 2328 AFD - ok
10:53:31.0687 2328 AgereSoftModem (d31d1a92479bd8c0d050a6ffbdd410d9) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
10:53:31.0703 2328 AgereSoftModem - ok
10:53:31.0812 2328 Aha154x - ok
10:53:31.0828 2328 aic78u2 - ok
10:53:31.0843 2328 aic78xx - ok
10:53:31.0859 2328 AliIde - ok
10:53:31.0875 2328 amsint - ok
10:53:31.0906 2328 ApfiltrService (a24bf3622223933d478af613df323a57) C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
10:53:31.0906 2328 ApfiltrService - ok
10:53:31.0953 2328 AR5211 (6d5f95602b8d0d994d31a864872b38ef) C:\WINDOWS\system32\DRIVERS\ar5211.sys
10:53:31.0953 2328 AR5211 - ok
10:53:32.0078 2328 asc - ok
10:53:32.0093 2328 asc3350p - ok
10:53:32.0109 2328 asc3550 - ok
10:53:32.0140 2328 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
10:53:32.0140 2328 AsyncMac - ok
10:53:32.0171 2328 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
10:53:32.0171 2328 atapi - ok
10:53:32.0281 2328 Atdisk - ok
10:53:32.0359 2328 athr (b0c272def210b149c0bfa0d85600ce4b) C:\WINDOWS\system32\DRIVERS\athr.sys
10:53:32.0359 2328 athr - ok
10:53:32.0500 2328 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
10:53:32.0500 2328 Atmarpc - ok
10:53:32.0546 2328 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
10:53:32.0546 2328 audstub - ok
10:53:32.0578 2328 b57w2k (d0692f7b8217e3b82d2bfac535816117) C:\WINDOWS\system32\DRIVERS\b57xp32.sys
10:53:32.0578 2328 b57w2k - ok
10:53:32.0703 2328 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
10:53:32.0703 2328 Beep - ok
10:53:32.0828 2328 catchme - ok
10:53:32.0984 2328 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
10:53:32.0984 2328 cbidf2k - ok
10:53:33.0000 2328 cd20xrnt - ok
10:53:33.0015 2328 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
10:53:33.0031 2328 Cdaudio - ok
10:53:33.0062 2328 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
10:53:33.0062 2328 Cdfs - ok
10:53:33.0187 2328 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
10:53:33.0187 2328 Cdrom - ok
10:53:33.0203 2328 Changer - ok
10:53:33.0218 2328 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
10:53:33.0234 2328 CmBatt - ok
10:53:33.0234 2328 CmdIde - ok
10:53:33.0281 2328 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
10:53:33.0281 2328 Compbatt - ok
10:53:33.0406 2328 Cpqarray - ok
10:53:33.0421 2328 dac2w2k - ok
10:53:33.0437 2328 dac960nt - ok
10:53:33.0468 2328 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
10:53:33.0468 2328 Disk - ok
10:53:33.0500 2328 DKbFltr (08d30af92c270f2e76787c81589dbad6) C:\WINDOWS\system32\DRIVERS\DKbFltr.sys
10:53:33.0500 2328 DKbFltr - ok
10:53:33.0562 2328 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
10:53:33.0578 2328 dmboot - ok
10:53:33.0703 2328 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
10:53:33.0703 2328 dmio - ok
10:53:33.0734 2328 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
10:53:33.0734 2328 dmload - ok
10:53:33.0765 2328 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
10:53:33.0765 2328 DMusic - ok
10:53:33.0796 2328 dpti2o - ok
10:53:33.0875 2328 DritekPortIO (5c918d413f5837e67a85775c9873775e) C:\PROGRA~1\LAUNCH~1\DPortIO.sys
10:53:33.0875 2328 DritekPortIO - ok
10:53:34.0015 2328 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
10:53:34.0015 2328 drmkaud - ok
10:53:34.0046 2328 eamon (9309c5c9831203436e64cf2ae605c5d7) C:\WINDOWS\system32\DRIVERS\eamon.sys
10:53:34.0062 2328 eamon - ok
10:53:34.0109 2328 ehdrv (deff87f04ab5f6dd5edf2b80853bbe10) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
10:53:34.0109 2328 ehdrv - ok
10:53:34.0250 2328 epfw (5ba193ca0ae31209aaa39939ce6736b2) C:\WINDOWS\system32\DRIVERS\epfw.sys
10:53:34.0265 2328 epfw - ok
10:53:34.0296 2328 Epfwndis (75d3bcd3e0eded0ab0f96d9a10ff01c9) C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
10:53:34.0296 2328 Epfwndis - ok
10:53:34.0328 2328 epfwtdi (dc64f26f35e32c9472bbf8acd84060d3) C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
10:53:34.0328 2328 epfwtdi - ok
10:53:34.0500 2328 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
10:53:34.0500 2328 Fastfat - ok
10:53:34.0531 2328 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
10:53:34.0531 2328 Fdc - ok
10:53:34.0562 2328 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
10:53:34.0562 2328 Fips - ok
10:53:34.0671 2328 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
10:53:34.0671 2328 Flpydisk - ok
10:53:34.0703 2328 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
10:53:34.0703 2328 FltMgr - ok
10:53:34.0750 2328 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
10:53:34.0750 2328 Fs_Rec - ok
10:53:34.0781 2328 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
10:53:34.0781 2328 Ftdisk - ok
10:53:34.0812 2328 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
10:53:34.0812 2328 Gpc - ok
10:53:34.0937 2328 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
10:53:34.0937 2328 HDAudBus - ok
10:53:34.0968 2328 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
10:53:34.0968 2328 HidUsb - ok
10:53:34.0984 2328 hpn - ok
10:53:35.0031 2328 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
10:53:35.0031 2328 HPZius12 - ok
10:53:35.0109 2328 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
10:53:35.0109 2328 HTTP - ok
10:53:35.0203 2328 i2omgmt - ok
10:53:35.0234 2328 i2omp - ok
10:53:35.0265 2328 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
10:53:35.0265 2328 i8042prt - ok
10:53:35.0500 2328 ialm (d1359e54d9755d28e56b17a352ab8aae) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
10:53:35.0546 2328 ialm - ok
10:53:35.0671 2328 igfx - ok
10:53:35.0703 2328 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
10:53:35.0703 2328 Imapi - ok
10:53:35.0718 2328 ini910u - ok
10:53:35.0875 2328 IntcAzAudAddService (1ebde650d97a8eccdc1cc4a0804647cd) C:\WINDOWS\system32\drivers\RtkHDAud.sys
10:53:35.0906 2328 IntcAzAudAddService - ok
10:53:36.0031 2328 IntelIde - ok
10:53:36.0078 2328 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
10:53:36.0078 2328 intelppm - ok
10:53:36.0109 2328 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
10:53:36.0109 2328 Ip6Fw - ok
10:53:36.0140 2328 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
10:53:36.0140 2328 IpFilterDriver - ok
10:53:36.0281 2328 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
10:53:36.0281 2328 IpInIp - ok
10:53:36.0312 2328 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
10:53:36.0312 2328 IpNat - ok
10:53:36.0343 2328 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
10:53:36.0343 2328 IPSec - ok
10:53:36.0500 2328 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
10:53:36.0500 2328 IRENUM - ok
10:53:36.0531 2328 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
10:53:36.0531 2328 isapnp - ok
10:53:36.0562 2328 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
10:53:36.0562 2328 Kbdclass - ok
10:53:36.0718 2328 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
10:53:36.0718 2328 kmixer - ok
10:53:36.0765 2328 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
10:53:36.0765 2328 KSecDD - ok
10:53:36.0812 2328 lbrtfdc - ok
10:53:36.0953 2328 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
10:53:36.0953 2328 mnmdd - ok
10:53:36.0984 2328 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
10:53:36.0984 2328 Modem - ok
10:53:37.0000 2328 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
10:53:37.0000 2328 Mouclass - ok
10:53:37.0015 2328 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
10:53:37.0015 2328 mouhid - ok
10:53:37.0062 2328 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
10:53:37.0062 2328 MountMgr - ok
10:53:37.0156 2328 mraid35x - ok
10:53:37.0187 2328 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
10:53:37.0187 2328 MRxDAV - ok
10:53:37.0250 2328 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
10:53:37.0250 2328 MRxSmb - ok
10:53:37.0390 2328 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
10:53:37.0390 2328 Msfs - ok
10:53:37.0421 2328 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
10:53:37.0421 2328 MSKSSRV - ok
10:53:37.0437 2328 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
10:53:37.0437 2328 MSPCLOCK - ok
10:53:37.0468 2328 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
10:53:37.0468 2328 MSPQM - ok
10:53:37.0500 2328 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
10:53:37.0500 2328 mssmbios - ok
10:53:37.0640 2328 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
10:53:37.0640 2328 Mup - ok
10:53:37.0671 2328 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
10:53:37.0671 2328 NDIS - ok
10:53:37.0796 2328 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
10:53:37.0796 2328 NdisTapi - ok
10:53:37.0843 2328 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
10:53:37.0843 2328 Ndisuio - ok
10:53:37.0890 2328 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:53:37.0890 2328 NdisWan - ok
10:53:38.0031 2328 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
10:53:38.0031 2328 NDProxy - ok
10:53:38.0109 2328 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
10:53:38.0109 2328 NetBIOS - ok
10:53:38.0203 2328 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
10:53:38.0203 2328 NetBT - ok
10:53:38.0250 2328 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
10:53:38.0250 2328 Npfs - ok
10:53:38.0281 2328 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
10:53:38.0296 2328 Ntfs - ok
10:53:38.0375 2328 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
10:53:38.0375 2328 Null - ok
10:53:38.0500 2328 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
10:53:38.0500 2328 NwlnkFlt - ok
10:53:38.0515 2328 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
10:53:38.0515 2328 NwlnkFwd - ok
10:53:38.0609 2328 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
10:53:38.0609 2328 Parport - ok
10:53:38.0703 2328 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
10:53:38.0703 2328 PartMgr - ok
10:53:38.0750 2328 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
10:53:38.0750 2328 ParVdm - ok
10:53:38.0828 2328 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
10:53:38.0828 2328 PCI - ok
10:53:38.0843 2328 PCIDump - ok
10:53:38.0875 2328 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
10:53:38.0875 2328 PCIIde - ok
10:53:38.0953 2328 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
10:53:38.0953 2328 Pcmcia - ok
10:53:38.0968 2328 PDCOMP - ok
10:53:38.0984 2328 PDFRAME - ok
10:53:39.0000 2328 PDRELI - ok
10:53:39.0015 2328 PDRFRAME - ok
10:53:39.0031 2328 perc2 - ok
10:53:39.0046 2328 perc2hib - ok
10:53:39.0078 2328 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
10:53:39.0078 2328 PptpMiniport - ok
10:53:39.0109 2328 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
10:53:39.0109 2328 PSched - ok
10:53:39.0140 2328 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
10:53:39.0140 2328 Ptilink - ok
10:53:39.0203 2328 ql1080 - ok
10:53:39.0218 2328 Ql10wnt - ok
10:53:39.0234 2328 ql12160 - ok
10:53:39.0250 2328 ql1240 - ok
10:53:39.0265 2328 ql1280 - ok
10:53:39.0281 2328 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
10:53:39.0281 2328 RasAcd - ok
10:53:39.0328 2328 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
10:53:39.0328 2328 Rasl2tp - ok
10:53:39.0390 2328 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
10:53:39.0390 2328 RasPppoe - ok
10:53:39.0421 2328 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
10:53:39.0421 2328 Raspti - ok
10:53:39.0515 2328 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
10:53:39.0515 2328 Rdbss - ok
10:53:39.0546 2328 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
10:53:39.0546 2328 RDPCDD - ok
10:53:39.0625 2328 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
10:53:39.0625 2328 RDPWD - ok
10:53:39.0671 2328 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
10:53:39.0671 2328 redbook - ok
10:53:39.0750 2328 SASKUTIL - ok
10:53:39.0843 2328 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
10:53:39.0843 2328 Secdrv - ok
10:53:39.0937 2328 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
10:53:39.0937 2328 Serial - ok
10:53:39.0968 2328 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
10:53:39.0968 2328 Sfloppy - ok
10:53:40.0046 2328 Simbad - ok
10:53:40.0062 2328 Sparrow - ok
10:53:40.0078 2328 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
10:53:40.0078 2328 splitter - ok
10:53:40.0171 2328 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
10:53:40.0171 2328 sr - ok
10:53:40.0234 2328 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
10:53:40.0234 2328 Srv - ok
10:53:40.0312 2328 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
10:53:40.0312 2328 swenum - ok
10:53:40.0390 2328 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
10:53:40.0390 2328 swmidi - ok
10:53:40.0421 2328 symc810 - ok
10:53:40.0437 2328 symc8xx - ok
10:53:40.0453 2328 sym_hi - ok
10:53:40.0468 2328 sym_u3 - ok
10:53:40.0484 2328 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
10:53:40.0484 2328 sysaudio - ok
10:53:40.0546 2328 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
10:53:40.0546 2328 Tcpip - ok
10:53:40.0640 2328 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
10:53:40.0640 2328 TDPIPE - ok
10:53:40.0718 2328 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
10:53:40.0718 2328 TDTCP - ok
10:53:40.0734 2328 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
10:53:40.0750 2328 TermDD - ok
10:53:40.0765 2328 TosIde - ok
10:53:40.0812 2328 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
10:53:40.0812 2328 Udfs - ok
10:53:40.0828 2328 ultra - ok
10:53:40.0890 2328 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
10:53:40.0890 2328 Update - ok
10:53:40.0984 2328 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
10:53:40.0984 2328 usbccgp - ok
10:53:41.0078 2328 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
10:53:41.0078 2328 usbehci - ok
10:53:41.0125 2328 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
10:53:41.0125 2328 usbhub - ok
10:53:41.0234 2328 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
10:53:41.0234 2328 usbprint - ok
10:53:41.0328 2328 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
10:53:41.0328 2328 USBSTOR - ok
10:53:41.0375 2328 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
10:53:41.0375 2328 usbuhci - ok
10:53:41.0437 2328 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
10:53:41.0437 2328 VgaSave - ok
10:53:41.0500 2328 ViaIde - ok
10:53:41.0531 2328 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
10:53:41.0531 2328 VolSnap - ok
10:53:41.0578 2328 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:53:41.0578 2328 Wanarp - ok
10:53:41.0640 2328 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
10:53:41.0640 2328 Wdf01000 - ok
10:53:41.0687 2328 WDICA - ok
10:53:41.0781 2328 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
10:53:41.0781 2328 wdmaud - ok
10:53:41.0859 2328 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
10:53:41.0875 2328 WmiAcpi - ok
10:53:41.0937 2328 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
10:53:41.0937 2328 WpdUsb - ok
10:53:42.0031 2328 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
10:53:42.0031 2328 WS2IFSL - ok
10:53:42.0125 2328 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
10:53:42.0125 2328 WudfPf - ok
10:53:42.0140 2328 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
10:53:42.0140 2328 WudfRd - ok
10:53:42.0171 2328 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
10:53:42.0328 2328 \Device\Harddisk0\DR0 - ok
10:53:42.0343 2328 Boot (0x1200) (1ca91d440e02aa8bd956bb28d560bc45) \Device\Harddisk0\DR0\Partition0
10:53:42.0343 2328 \Device\Harddisk0\DR0\Partition0 - ok
10:53:42.0359 2328 Boot (0x1200) (d71f138884f186efa4618e0aadb55dc5) \Device\Harddisk0\DR0\Partition1
10:53:42.0359 2328 \Device\Harddisk0\DR0\Partition1 - ok
10:53:42.0375 2328 ============================================================
10:53:42.0375 2328 Scan finished
10:53:42.0375 2328 ============================================================
10:53:42.0375 2320 Detected object count: 0
10:53:42.0375 2320 Actual detected object count: 0
Re: pomale pc pls kontrolu logu
Fajn, ještě spuste znovu combofix
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
-
alexander82
- Návštěvník
- Příspěvky: 48
- Registrován: 04 říj 2009 14:27
Re: pomale pc pls kontrolu logu
tu to to je
ComboFix 12-01-09.07 - Domino 10.01.2012 15:53:54.2.1 - x86
Systém Microsoft Windows XP Home Edition 5.1.2600.3.1250.421.1033.18.1014.586 [GMT 1:00]
Running from: c:\documents and settings\Domino\My Documents\Downloads\ComboFix.exe
AV: ESET Smart Security 5.0 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *Enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
* Resident AV is active
.
.
.
((((((((((((((((((((((((( Files Created from 2011-12-10 to 2012-01-10 )))))))))))))))))))))))))))))))
.
.
2012-01-09 22:33 . 2012-01-09 22:33 -------- d-----w- c:\documents and settings\Domino\Application Data\DriverCure
2012-01-09 22:33 . 2012-01-09 22:33 -------- d-----w- c:\documents and settings\Domino\Application Data\ParetoLogic
2012-01-09 22:32 . 2012-01-09 22:32 -------- d-----w- c:\program files\Common Files\ParetoLogic
2012-01-09 22:32 . 2012-01-09 22:32 -------- d-----w- c:\documents and settings\All Users\Application Data\ParetoLogic
2012-01-09 20:48 . 2012-01-09 20:48 -------- d-----w- c:\documents and settings\Domino\Local Settings\Application Data\ESET
2012-01-09 20:48 . 2012-01-09 20:48 -------- d-----w- c:\documents and settings\Domino\Application Data\ESET
2012-01-09 20:46 . 2012-01-09 20:46 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\ESET
2012-01-09 20:45 . 2012-01-09 20:45 -------- d-----w- c:\program files\ESET
2012-01-09 18:01 . 2012-01-09 18:01 -------- d-----w- C:\rsit
2012-01-09 18:01 . 2012-01-09 18:01 -------- d-----w- c:\program files\trend micro
2012-01-09 17:32 . 2012-01-09 17:35 -------- d-----w- c:\documents and settings\Administrator
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-23 13:25 . 2006-02-28 12:00 1859584 ----a-w- c:\windows\system32\win32k.sys
2011-11-04 19:20 . 2006-02-28 12:00 916992 ----a-w- c:\windows\system32\wininet.dll
2011-11-04 19:20 . 2006-02-28 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2011-11-04 19:20 . 2006-02-28 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-11-04 11:23 . 2006-02-28 12:00 385024 ----a-w- c:\windows\system32\html.iec
2011-11-01 16:07 . 2006-02-28 12:00 1288704 ----a-w- c:\windows\system32\ole32.dll
2011-10-28 05:31 . 2006-02-28 12:00 33280 ----a-w- c:\windows\system32\csrsrv.dll
2011-10-25 13:33 . 2006-02-28 12:00 2192768 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-10-25 12:52 . 2004-08-03 22:59 2069376 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-10-18 11:13 . 2006-02-28 12:00 186880 ----a-w- c:\windows\system32\encdec.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-01-09_19.55.05 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-07-14 11:09 . 2011-11-08 13:46 46080 c:\windows\system32\tzchange.exe
- 2008-07-14 11:09 . 2011-07-08 13:49 46080 c:\windows\system32\tzchange.exe
- 2006-02-28 12:00 . 2011-08-22 23:48 66560 c:\windows\system32\mshtmled.dll
+ 2006-02-28 12:00 . 2011-11-04 19:20 66560 c:\windows\system32\mshtmled.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 55296 c:\windows\system32\msfeedsbs.dll
- 2010-12-07 13:38 . 2011-08-22 23:48 55296 c:\windows\system32\msfeedsbs.dll
+ 2006-02-28 12:00 . 2011-11-04 19:20 25600 c:\windows\system32\jsproxy.dll
- 2006-02-28 12:00 . 2011-08-22 23:48 25600 c:\windows\system32\jsproxy.dll
+ 2011-08-04 08:20 . 2011-08-04 08:20 61936 c:\windows\system32\drivers\epfwtdi.sys
+ 2011-08-09 08:37 . 2011-08-09 08:37 39824 c:\windows\system32\drivers\epfwndis.sys
- 2010-12-07 13:40 . 2011-08-22 23:48 12800 c:\windows\system32\dllcache\xpshims.dll
+ 2010-12-07 13:40 . 2011-11-04 19:20 12800 c:\windows\system32\dllcache\xpshims.dll
+ 2010-09-09 14:16 . 2011-11-04 19:20 66560 c:\windows\system32\dllcache\mshtmled.dll
- 2010-09-09 14:16 . 2011-08-22 23:48 66560 c:\windows\system32\dllcache\mshtmled.dll
+ 2010-12-07 13:40 . 2011-11-04 19:20 55296 c:\windows\system32\dllcache\msfeedsbs.dll
- 2010-12-07 13:40 . 2011-08-22 23:48 55296 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 43520 c:\windows\system32\dllcache\licmgr10.dll
- 2010-12-07 13:38 . 2011-08-22 23:48 43520 c:\windows\system32\dllcache\licmgr10.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 25600 c:\windows\system32\dllcache\jsproxy.dll
- 2010-12-07 13:38 . 2011-08-22 23:48 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2009-12-14 07:08 . 2011-10-28 05:31 33280 c:\windows\system32\dllcache\csrsrv.dll
- 2009-12-14 07:08 . 2011-04-26 11:07 33280 c:\windows\system32\dllcache\csrsrv.dll
+ 2012-01-09 20:46 . 2012-01-09 20:46 10134 c:\windows\Installer\{1C4E4D18-B59E-448C-85B2-605E8741EE07}\callmsi.exe
+ 2012-01-09 20:43 . 2011-08-22 23:48 12800 c:\windows\ie8updates\KB2618444-IE8\xpshims.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 66560 c:\windows\ie8updates\KB2618444-IE8\mshtmled.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 55296 c:\windows\ie8updates\KB2618444-IE8\msfeedsbs.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 43520 c:\windows\ie8updates\KB2618444-IE8\licmgr10.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 25600 c:\windows\ie8updates\KB2618444-IE8\jsproxy.dll
+ 2006-02-28 12:00 . 2011-11-04 19:20 105984 c:\windows\system32\url.dll
- 2006-02-28 12:00 . 2011-08-22 23:48 105984 c:\windows\system32\url.dll
+ 2006-02-28 12:00 . 2011-11-04 19:20 206848 c:\windows\system32\occache.dll
- 2006-02-28 12:00 . 2011-08-22 23:48 206848 c:\windows\system32\occache.dll
- 2006-02-28 12:00 . 2011-08-22 23:48 611840 c:\windows\system32\mstime.dll
+ 2006-02-28 12:00 . 2011-11-04 19:20 611840 c:\windows\system32\mstime.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 602112 c:\windows\system32\msfeeds.dll
- 2010-12-07 13:38 . 2011-08-22 23:48 602112 c:\windows\system32\msfeeds.dll
+ 2006-02-28 12:00 . 2011-11-04 19:20 184320 c:\windows\system32\iepeers.dll
- 2006-02-28 12:00 . 2011-08-22 23:48 184320 c:\windows\system32\iepeers.dll
+ 2006-02-28 12:00 . 2011-11-04 19:20 387584 c:\windows\system32\iedkcs32.dll
- 2006-02-28 12:00 . 2011-08-22 23:48 387584 c:\windows\system32\iedkcs32.dll
- 2006-02-28 12:00 . 2011-08-22 11:56 174080 c:\windows\system32\ie4uinit.exe
+ 2006-02-28 12:00 . 2011-11-04 11:24 174080 c:\windows\system32\ie4uinit.exe
- 2008-09-29 15:55 . 2011-10-16 05:09 109400 c:\windows\system32\FNTCACHE.DAT
+ 2008-09-29 15:55 . 2012-01-09 20:47 109400 c:\windows\system32\FNTCACHE.DAT
+ 2011-08-04 08:20 . 2011-08-04 08:20 147480 c:\windows\system32\drivers\epfw.sys
+ 2011-08-04 08:20 . 2011-08-04 08:20 118104 c:\windows\system32\drivers\ehdrv.sys
+ 2011-08-09 13:24 . 2011-08-09 13:24 154136 c:\windows\system32\drivers\eamon.sys
+ 2008-06-23 15:09 . 2011-11-04 19:20 916992 c:\windows\system32\dllcache\wininet.dll
- 2010-12-07 13:38 . 2011-08-22 23:48 105984 c:\windows\system32\dllcache\url.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 105984 c:\windows\system32\dllcache\url.dll
- 2010-12-07 13:38 . 2011-08-22 23:48 206848 c:\windows\system32\dllcache\occache.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 206848 c:\windows\system32\dllcache\occache.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 611840 c:\windows\system32\dllcache\mstime.dll
- 2010-12-07 13:38 . 2011-08-22 23:48 611840 c:\windows\system32\dllcache\mstime.dll
+ 2010-12-07 13:40 . 2011-11-04 19:20 602112 c:\windows\system32\dllcache\msfeeds.dll
- 2010-12-07 13:40 . 2011-08-22 23:48 602112 c:\windows\system32\dllcache\msfeeds.dll
+ 2010-12-07 13:40 . 2011-11-04 19:20 247808 c:\windows\system32\dllcache\ieproxy.dll
- 2010-12-07 13:40 . 2011-08-22 23:48 247808 c:\windows\system32\dllcache\ieproxy.dll
- 2010-09-09 14:16 . 2011-08-22 23:48 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2010-09-09 14:16 . 2011-11-04 19:20 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2010-12-07 13:40 . 2011-11-04 19:20 743424 c:\windows\system32\dllcache\iedvtool.dll
- 2010-12-07 13:40 . 2011-08-22 23:48 743424 c:\windows\system32\dllcache\iedvtool.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 387584 c:\windows\system32\dllcache\iedkcs32.dll
- 2010-12-07 13:38 . 2011-08-22 23:48 387584 c:\windows\system32\dllcache\iedkcs32.dll
- 2010-12-07 13:38 . 2011-08-22 11:56 174080 c:\windows\system32\dllcache\ie4uinit.exe
+ 2010-12-07 13:38 . 2011-11-04 11:24 174080 c:\windows\system32\dllcache\ie4uinit.exe
- 2011-02-09 13:53 . 2011-02-09 13:53 186880 c:\windows\system32\dllcache\encdec.dll
+ 2011-02-09 13:53 . 2011-10-18 11:13 186880 c:\windows\system32\dllcache\encdec.dll
+ 2012-01-09 20:46 . 2012-01-09 20:46 105624 c:\windows\Installer\{1C4E4D18-B59E-448C-85B2-605E8741EE07}\egui.exe
+ 2012-01-09 20:43 . 2011-08-22 23:48 916480 c:\windows\ie8updates\KB2618444-IE8\wininet.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 105984 c:\windows\ie8updates\KB2618444-IE8\url.dll
+ 2012-01-09 20:43 . 2010-07-05 13:16 382840 c:\windows\ie8updates\KB2618444-IE8\spuninst\updspapi.dll
+ 2012-01-09 20:43 . 2010-07-05 13:15 231288 c:\windows\ie8updates\KB2618444-IE8\spuninst\spuninst.exe
+ 2012-01-09 20:43 . 2011-08-22 23:48 206848 c:\windows\ie8updates\KB2618444-IE8\occache.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 611840 c:\windows\ie8updates\KB2618444-IE8\mstime.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 602112 c:\windows\ie8updates\KB2618444-IE8\msfeeds.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 247808 c:\windows\ie8updates\KB2618444-IE8\ieproxy.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 184320 c:\windows\ie8updates\KB2618444-IE8\iepeers.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 743424 c:\windows\ie8updates\KB2618444-IE8\iedvtool.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 387584 c:\windows\ie8updates\KB2618444-IE8\iedkcs32.dll
+ 2012-01-09 20:43 . 2011-08-22 11:56 174080 c:\windows\ie8updates\KB2618444-IE8\ie4uinit.exe
- 2006-02-28 12:00 . 2011-08-22 23:48 1212416 c:\windows\system32\urlmon.dll
+ 2006-02-28 12:00 . 2011-11-04 19:20 1212416 c:\windows\system32\urlmon.dll
+ 2006-02-28 12:00 . 2011-11-04 19:20 5978112 c:\windows\system32\mshtml.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 2000384 c:\windows\system32\iertutil.dll
- 2010-12-07 13:38 . 2011-08-22 23:48 2000384 c:\windows\system32\iertutil.dll
+ 2009-02-09 11:13 . 2011-11-23 13:25 1859584 c:\windows\system32\dllcache\win32k.sys
+ 2008-06-26 08:15 . 2011-11-04 19:20 1212416 c:\windows\system32\dllcache\urlmon.dll
- 2008-06-26 08:15 . 2011-08-22 23:48 1212416 c:\windows\system32\dllcache\urlmon.dll
+ 2010-07-16 12:05 . 2011-11-01 16:07 1288704 c:\windows\system32\dllcache\ole32.dll
+ 2009-03-11 16:38 . 2011-10-25 13:33 2192768 c:\windows\system32\dllcache\ntoskrnl.exe
- 2009-03-11 16:38 . 2010-12-09 13:38 2192768 c:\windows\system32\dllcache\ntoskrnl.exe
+ 2009-03-11 16:38 . 2011-10-25 12:52 2027008 c:\windows\system32\dllcache\ntkrpamp.exe
- 2009-03-11 16:38 . 2010-12-09 13:07 2027008 c:\windows\system32\dllcache\ntkrpamp.exe
+ 2009-03-11 16:38 . 2011-10-25 12:52 2069376 c:\windows\system32\dllcache\ntkrnlpa.exe
- 2009-03-11 16:38 . 2010-12-09 13:07 2069376 c:\windows\system32\dllcache\ntkrnlpa.exe
+ 2009-03-11 16:38 . 2011-10-25 13:37 2148864 c:\windows\system32\dllcache\ntkrnlmp.exe
- 2009-03-11 16:38 . 2010-12-09 13:42 2148864 c:\windows\system32\dllcache\ntkrnlmp.exe
+ 2008-06-23 15:09 . 2011-11-04 19:20 5978112 c:\windows\system32\dllcache\mshtml.dll
+ 2010-12-07 13:40 . 2011-11-04 19:20 2000384 c:\windows\system32\dllcache\iertutil.dll
- 2010-12-07 13:40 . 2011-08-22 23:48 2000384 c:\windows\system32\dllcache\iertutil.dll
+ 2012-01-09 20:46 . 2012-01-09 20:46 1045504 c:\windows\Installer\879a2.msi
+ 2012-01-09 20:43 . 2011-08-22 23:48 1212416 c:\windows\ie8updates\KB2618444-IE8\urlmon.dll
+ 2012-01-09 20:43 . 2011-10-03 08:35 5971456 c:\windows\ie8updates\KB2618444-IE8\mshtml.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 2000384 c:\windows\ie8updates\KB2618444-IE8\iertutil.dll
- 2009-03-11 16:38 . 2010-12-09 13:38 2192768 c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2009-03-11 16:38 . 2011-10-25 13:33 2192768 c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2009-03-11 16:38 . 2011-10-25 12:52 2027008 c:\windows\Driver Cache\i386\ntkrpamp.exe
- 2009-03-11 16:38 . 2010-12-09 13:07 2027008 c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2009-03-11 16:38 . 2011-10-25 12:52 2069376 c:\windows\Driver Cache\i386\ntkrnlpa.exe
- 2009-03-11 16:38 . 2010-12-09 13:07 2069376 c:\windows\Driver Cache\i386\ntkrnlpa.exe
- 2009-03-11 16:38 . 2010-12-09 13:42 2148864 c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2009-03-11 16:38 . 2011-10-25 13:37 2148864 c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2011-04-16 20:08 . 2012-01-09 20:42 52988224 c:\windows\system32\MRT.exe
- 2010-12-07 13:38 . 2011-08-23 15:48 11081728 c:\windows\system32\ieframe.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 11081728 c:\windows\system32\ieframe.dll
+ 2010-12-07 13:40 . 2011-11-04 19:20 11081728 c:\windows\system32\dllcache\ieframe.dll
- 2010-12-07 13:40 . 2011-08-23 15:48 11081728 c:\windows\system32\dllcache\ieframe.dll
+ 2012-01-09 20:43 . 2011-08-23 15:48 11081728 c:\windows\ie8updates\KB2618444-IE8\ieframe.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NBJ"="c:\program files\Ahead\Nero BackItUp\NBJ.exe" [2004-11-30 1945600]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\Apoint2K\Apoint.exe" [2007-07-21 159744]
"LManager"="c:\progra~1\LAUNCH~1\LManager.exe" [2007-07-16 768520]
"RTHDCPL"="RTHDCPL.EXE" [2007-07-05 16380416]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2005-11-11 1236992]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-09-11 143360]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-09-11 172032]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-09-11 143360]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2004-11-02 32768]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-05-27 413696]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 3080264]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\Domino\Start Menu\Programs\Startup\
OpenOffice.org 3.0.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2008-10-13 393216]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2004-12-14 29696]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
.
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [4.8.2011 9:20 118104]
R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [9.1.2012 21:48 116608]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [22.9.2011 12:03 974944]
S1 SASKUTIL;SASKUTIL;\??\c:\program files\SUPERAntiSpyware\SASKUTIL.sys --> c:\program files\SUPERAntiSpyware\SASKUTIL.sys [?]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - 55667433
*Deregistered* - 55667433
.
Contents of the 'Scheduled Tasks' folder
.
2012-01-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1417001333-1202660629-839522115-1004Core.job
- c:\documents and settings\Domino\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-12-03 19:52]
.
2012-01-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1417001333-1202660629-839522115-1004UA.job
- c:\documents and settings\Domino\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-12-03 19:52]
.
2012-01-09 c:\windows\Tasks\ParetoLogic Registration3.job
- c:\program files\Common Files\ParetoLogic\UUS3\UUS3.dll [2011-03-29 23:17]
.
2012-01-09 c:\windows\Tasks\ParetoLogic Update Version3.job
- c:\program files\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe [2011-03-29 23:17]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.sk/
uInternet Connection Wizard,ShellNext = iexplore
TCP: DhcpNameServer = 172.16.0.254 192.168.91.237
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-01-10 15:57
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(1080)
c:\windows\System32\BCMLogon.dll
c:\windows\system32\igfxdev.dll
.
- - - - - - - > 'explorer.exe'(1660)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Completion time: 2012-01-10 15:59:26
ComboFix-quarantined-files.txt 2012-01-10 14:59
.
Pre-Run: 7 571 595 264 bytes free
Post-Run: 7 610 810 368 voľných bajtov
.
- - End Of File - - EC933BA010A07D89120BB90AAE728385
ComboFix 12-01-09.07 - Domino 10.01.2012 15:53:54.2.1 - x86
Systém Microsoft Windows XP Home Edition 5.1.2600.3.1250.421.1033.18.1014.586 [GMT 1:00]
Running from: c:\documents and settings\Domino\My Documents\Downloads\ComboFix.exe
AV: ESET Smart Security 5.0 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *Enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
* Resident AV is active
.
.
.
((((((((((((((((((((((((( Files Created from 2011-12-10 to 2012-01-10 )))))))))))))))))))))))))))))))
.
.
2012-01-09 22:33 . 2012-01-09 22:33 -------- d-----w- c:\documents and settings\Domino\Application Data\DriverCure
2012-01-09 22:33 . 2012-01-09 22:33 -------- d-----w- c:\documents and settings\Domino\Application Data\ParetoLogic
2012-01-09 22:32 . 2012-01-09 22:32 -------- d-----w- c:\program files\Common Files\ParetoLogic
2012-01-09 22:32 . 2012-01-09 22:32 -------- d-----w- c:\documents and settings\All Users\Application Data\ParetoLogic
2012-01-09 20:48 . 2012-01-09 20:48 -------- d-----w- c:\documents and settings\Domino\Local Settings\Application Data\ESET
2012-01-09 20:48 . 2012-01-09 20:48 -------- d-----w- c:\documents and settings\Domino\Application Data\ESET
2012-01-09 20:46 . 2012-01-09 20:46 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\ESET
2012-01-09 20:45 . 2012-01-09 20:45 -------- d-----w- c:\program files\ESET
2012-01-09 18:01 . 2012-01-09 18:01 -------- d-----w- C:\rsit
2012-01-09 18:01 . 2012-01-09 18:01 -------- d-----w- c:\program files\trend micro
2012-01-09 17:32 . 2012-01-09 17:35 -------- d-----w- c:\documents and settings\Administrator
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-23 13:25 . 2006-02-28 12:00 1859584 ----a-w- c:\windows\system32\win32k.sys
2011-11-04 19:20 . 2006-02-28 12:00 916992 ----a-w- c:\windows\system32\wininet.dll
2011-11-04 19:20 . 2006-02-28 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2011-11-04 19:20 . 2006-02-28 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-11-04 11:23 . 2006-02-28 12:00 385024 ----a-w- c:\windows\system32\html.iec
2011-11-01 16:07 . 2006-02-28 12:00 1288704 ----a-w- c:\windows\system32\ole32.dll
2011-10-28 05:31 . 2006-02-28 12:00 33280 ----a-w- c:\windows\system32\csrsrv.dll
2011-10-25 13:33 . 2006-02-28 12:00 2192768 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-10-25 12:52 . 2004-08-03 22:59 2069376 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-10-18 11:13 . 2006-02-28 12:00 186880 ----a-w- c:\windows\system32\encdec.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-01-09_19.55.05 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-07-14 11:09 . 2011-11-08 13:46 46080 c:\windows\system32\tzchange.exe
- 2008-07-14 11:09 . 2011-07-08 13:49 46080 c:\windows\system32\tzchange.exe
- 2006-02-28 12:00 . 2011-08-22 23:48 66560 c:\windows\system32\mshtmled.dll
+ 2006-02-28 12:00 . 2011-11-04 19:20 66560 c:\windows\system32\mshtmled.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 55296 c:\windows\system32\msfeedsbs.dll
- 2010-12-07 13:38 . 2011-08-22 23:48 55296 c:\windows\system32\msfeedsbs.dll
+ 2006-02-28 12:00 . 2011-11-04 19:20 25600 c:\windows\system32\jsproxy.dll
- 2006-02-28 12:00 . 2011-08-22 23:48 25600 c:\windows\system32\jsproxy.dll
+ 2011-08-04 08:20 . 2011-08-04 08:20 61936 c:\windows\system32\drivers\epfwtdi.sys
+ 2011-08-09 08:37 . 2011-08-09 08:37 39824 c:\windows\system32\drivers\epfwndis.sys
- 2010-12-07 13:40 . 2011-08-22 23:48 12800 c:\windows\system32\dllcache\xpshims.dll
+ 2010-12-07 13:40 . 2011-11-04 19:20 12800 c:\windows\system32\dllcache\xpshims.dll
+ 2010-09-09 14:16 . 2011-11-04 19:20 66560 c:\windows\system32\dllcache\mshtmled.dll
- 2010-09-09 14:16 . 2011-08-22 23:48 66560 c:\windows\system32\dllcache\mshtmled.dll
+ 2010-12-07 13:40 . 2011-11-04 19:20 55296 c:\windows\system32\dllcache\msfeedsbs.dll
- 2010-12-07 13:40 . 2011-08-22 23:48 55296 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 43520 c:\windows\system32\dllcache\licmgr10.dll
- 2010-12-07 13:38 . 2011-08-22 23:48 43520 c:\windows\system32\dllcache\licmgr10.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 25600 c:\windows\system32\dllcache\jsproxy.dll
- 2010-12-07 13:38 . 2011-08-22 23:48 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2009-12-14 07:08 . 2011-10-28 05:31 33280 c:\windows\system32\dllcache\csrsrv.dll
- 2009-12-14 07:08 . 2011-04-26 11:07 33280 c:\windows\system32\dllcache\csrsrv.dll
+ 2012-01-09 20:46 . 2012-01-09 20:46 10134 c:\windows\Installer\{1C4E4D18-B59E-448C-85B2-605E8741EE07}\callmsi.exe
+ 2012-01-09 20:43 . 2011-08-22 23:48 12800 c:\windows\ie8updates\KB2618444-IE8\xpshims.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 66560 c:\windows\ie8updates\KB2618444-IE8\mshtmled.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 55296 c:\windows\ie8updates\KB2618444-IE8\msfeedsbs.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 43520 c:\windows\ie8updates\KB2618444-IE8\licmgr10.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 25600 c:\windows\ie8updates\KB2618444-IE8\jsproxy.dll
+ 2006-02-28 12:00 . 2011-11-04 19:20 105984 c:\windows\system32\url.dll
- 2006-02-28 12:00 . 2011-08-22 23:48 105984 c:\windows\system32\url.dll
+ 2006-02-28 12:00 . 2011-11-04 19:20 206848 c:\windows\system32\occache.dll
- 2006-02-28 12:00 . 2011-08-22 23:48 206848 c:\windows\system32\occache.dll
- 2006-02-28 12:00 . 2011-08-22 23:48 611840 c:\windows\system32\mstime.dll
+ 2006-02-28 12:00 . 2011-11-04 19:20 611840 c:\windows\system32\mstime.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 602112 c:\windows\system32\msfeeds.dll
- 2010-12-07 13:38 . 2011-08-22 23:48 602112 c:\windows\system32\msfeeds.dll
+ 2006-02-28 12:00 . 2011-11-04 19:20 184320 c:\windows\system32\iepeers.dll
- 2006-02-28 12:00 . 2011-08-22 23:48 184320 c:\windows\system32\iepeers.dll
+ 2006-02-28 12:00 . 2011-11-04 19:20 387584 c:\windows\system32\iedkcs32.dll
- 2006-02-28 12:00 . 2011-08-22 23:48 387584 c:\windows\system32\iedkcs32.dll
- 2006-02-28 12:00 . 2011-08-22 11:56 174080 c:\windows\system32\ie4uinit.exe
+ 2006-02-28 12:00 . 2011-11-04 11:24 174080 c:\windows\system32\ie4uinit.exe
- 2008-09-29 15:55 . 2011-10-16 05:09 109400 c:\windows\system32\FNTCACHE.DAT
+ 2008-09-29 15:55 . 2012-01-09 20:47 109400 c:\windows\system32\FNTCACHE.DAT
+ 2011-08-04 08:20 . 2011-08-04 08:20 147480 c:\windows\system32\drivers\epfw.sys
+ 2011-08-04 08:20 . 2011-08-04 08:20 118104 c:\windows\system32\drivers\ehdrv.sys
+ 2011-08-09 13:24 . 2011-08-09 13:24 154136 c:\windows\system32\drivers\eamon.sys
+ 2008-06-23 15:09 . 2011-11-04 19:20 916992 c:\windows\system32\dllcache\wininet.dll
- 2010-12-07 13:38 . 2011-08-22 23:48 105984 c:\windows\system32\dllcache\url.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 105984 c:\windows\system32\dllcache\url.dll
- 2010-12-07 13:38 . 2011-08-22 23:48 206848 c:\windows\system32\dllcache\occache.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 206848 c:\windows\system32\dllcache\occache.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 611840 c:\windows\system32\dllcache\mstime.dll
- 2010-12-07 13:38 . 2011-08-22 23:48 611840 c:\windows\system32\dllcache\mstime.dll
+ 2010-12-07 13:40 . 2011-11-04 19:20 602112 c:\windows\system32\dllcache\msfeeds.dll
- 2010-12-07 13:40 . 2011-08-22 23:48 602112 c:\windows\system32\dllcache\msfeeds.dll
+ 2010-12-07 13:40 . 2011-11-04 19:20 247808 c:\windows\system32\dllcache\ieproxy.dll
- 2010-12-07 13:40 . 2011-08-22 23:48 247808 c:\windows\system32\dllcache\ieproxy.dll
- 2010-09-09 14:16 . 2011-08-22 23:48 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2010-09-09 14:16 . 2011-11-04 19:20 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2010-12-07 13:40 . 2011-11-04 19:20 743424 c:\windows\system32\dllcache\iedvtool.dll
- 2010-12-07 13:40 . 2011-08-22 23:48 743424 c:\windows\system32\dllcache\iedvtool.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 387584 c:\windows\system32\dllcache\iedkcs32.dll
- 2010-12-07 13:38 . 2011-08-22 23:48 387584 c:\windows\system32\dllcache\iedkcs32.dll
- 2010-12-07 13:38 . 2011-08-22 11:56 174080 c:\windows\system32\dllcache\ie4uinit.exe
+ 2010-12-07 13:38 . 2011-11-04 11:24 174080 c:\windows\system32\dllcache\ie4uinit.exe
- 2011-02-09 13:53 . 2011-02-09 13:53 186880 c:\windows\system32\dllcache\encdec.dll
+ 2011-02-09 13:53 . 2011-10-18 11:13 186880 c:\windows\system32\dllcache\encdec.dll
+ 2012-01-09 20:46 . 2012-01-09 20:46 105624 c:\windows\Installer\{1C4E4D18-B59E-448C-85B2-605E8741EE07}\egui.exe
+ 2012-01-09 20:43 . 2011-08-22 23:48 916480 c:\windows\ie8updates\KB2618444-IE8\wininet.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 105984 c:\windows\ie8updates\KB2618444-IE8\url.dll
+ 2012-01-09 20:43 . 2010-07-05 13:16 382840 c:\windows\ie8updates\KB2618444-IE8\spuninst\updspapi.dll
+ 2012-01-09 20:43 . 2010-07-05 13:15 231288 c:\windows\ie8updates\KB2618444-IE8\spuninst\spuninst.exe
+ 2012-01-09 20:43 . 2011-08-22 23:48 206848 c:\windows\ie8updates\KB2618444-IE8\occache.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 611840 c:\windows\ie8updates\KB2618444-IE8\mstime.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 602112 c:\windows\ie8updates\KB2618444-IE8\msfeeds.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 247808 c:\windows\ie8updates\KB2618444-IE8\ieproxy.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 184320 c:\windows\ie8updates\KB2618444-IE8\iepeers.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 743424 c:\windows\ie8updates\KB2618444-IE8\iedvtool.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 387584 c:\windows\ie8updates\KB2618444-IE8\iedkcs32.dll
+ 2012-01-09 20:43 . 2011-08-22 11:56 174080 c:\windows\ie8updates\KB2618444-IE8\ie4uinit.exe
- 2006-02-28 12:00 . 2011-08-22 23:48 1212416 c:\windows\system32\urlmon.dll
+ 2006-02-28 12:00 . 2011-11-04 19:20 1212416 c:\windows\system32\urlmon.dll
+ 2006-02-28 12:00 . 2011-11-04 19:20 5978112 c:\windows\system32\mshtml.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 2000384 c:\windows\system32\iertutil.dll
- 2010-12-07 13:38 . 2011-08-22 23:48 2000384 c:\windows\system32\iertutil.dll
+ 2009-02-09 11:13 . 2011-11-23 13:25 1859584 c:\windows\system32\dllcache\win32k.sys
+ 2008-06-26 08:15 . 2011-11-04 19:20 1212416 c:\windows\system32\dllcache\urlmon.dll
- 2008-06-26 08:15 . 2011-08-22 23:48 1212416 c:\windows\system32\dllcache\urlmon.dll
+ 2010-07-16 12:05 . 2011-11-01 16:07 1288704 c:\windows\system32\dllcache\ole32.dll
+ 2009-03-11 16:38 . 2011-10-25 13:33 2192768 c:\windows\system32\dllcache\ntoskrnl.exe
- 2009-03-11 16:38 . 2010-12-09 13:38 2192768 c:\windows\system32\dllcache\ntoskrnl.exe
+ 2009-03-11 16:38 . 2011-10-25 12:52 2027008 c:\windows\system32\dllcache\ntkrpamp.exe
- 2009-03-11 16:38 . 2010-12-09 13:07 2027008 c:\windows\system32\dllcache\ntkrpamp.exe
+ 2009-03-11 16:38 . 2011-10-25 12:52 2069376 c:\windows\system32\dllcache\ntkrnlpa.exe
- 2009-03-11 16:38 . 2010-12-09 13:07 2069376 c:\windows\system32\dllcache\ntkrnlpa.exe
+ 2009-03-11 16:38 . 2011-10-25 13:37 2148864 c:\windows\system32\dllcache\ntkrnlmp.exe
- 2009-03-11 16:38 . 2010-12-09 13:42 2148864 c:\windows\system32\dllcache\ntkrnlmp.exe
+ 2008-06-23 15:09 . 2011-11-04 19:20 5978112 c:\windows\system32\dllcache\mshtml.dll
+ 2010-12-07 13:40 . 2011-11-04 19:20 2000384 c:\windows\system32\dllcache\iertutil.dll
- 2010-12-07 13:40 . 2011-08-22 23:48 2000384 c:\windows\system32\dllcache\iertutil.dll
+ 2012-01-09 20:46 . 2012-01-09 20:46 1045504 c:\windows\Installer\879a2.msi
+ 2012-01-09 20:43 . 2011-08-22 23:48 1212416 c:\windows\ie8updates\KB2618444-IE8\urlmon.dll
+ 2012-01-09 20:43 . 2011-10-03 08:35 5971456 c:\windows\ie8updates\KB2618444-IE8\mshtml.dll
+ 2012-01-09 20:43 . 2011-08-22 23:48 2000384 c:\windows\ie8updates\KB2618444-IE8\iertutil.dll
- 2009-03-11 16:38 . 2010-12-09 13:38 2192768 c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2009-03-11 16:38 . 2011-10-25 13:33 2192768 c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2009-03-11 16:38 . 2011-10-25 12:52 2027008 c:\windows\Driver Cache\i386\ntkrpamp.exe
- 2009-03-11 16:38 . 2010-12-09 13:07 2027008 c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2009-03-11 16:38 . 2011-10-25 12:52 2069376 c:\windows\Driver Cache\i386\ntkrnlpa.exe
- 2009-03-11 16:38 . 2010-12-09 13:07 2069376 c:\windows\Driver Cache\i386\ntkrnlpa.exe
- 2009-03-11 16:38 . 2010-12-09 13:42 2148864 c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2009-03-11 16:38 . 2011-10-25 13:37 2148864 c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2011-04-16 20:08 . 2012-01-09 20:42 52988224 c:\windows\system32\MRT.exe
- 2010-12-07 13:38 . 2011-08-23 15:48 11081728 c:\windows\system32\ieframe.dll
+ 2010-12-07 13:38 . 2011-11-04 19:20 11081728 c:\windows\system32\ieframe.dll
+ 2010-12-07 13:40 . 2011-11-04 19:20 11081728 c:\windows\system32\dllcache\ieframe.dll
- 2010-12-07 13:40 . 2011-08-23 15:48 11081728 c:\windows\system32\dllcache\ieframe.dll
+ 2012-01-09 20:43 . 2011-08-23 15:48 11081728 c:\windows\ie8updates\KB2618444-IE8\ieframe.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NBJ"="c:\program files\Ahead\Nero BackItUp\NBJ.exe" [2004-11-30 1945600]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\Apoint2K\Apoint.exe" [2007-07-21 159744]
"LManager"="c:\progra~1\LAUNCH~1\LManager.exe" [2007-07-16 768520]
"RTHDCPL"="RTHDCPL.EXE" [2007-07-05 16380416]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2005-11-11 1236992]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-09-11 143360]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-09-11 172032]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-09-11 143360]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2004-11-02 32768]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-05-27 413696]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 3080264]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\Domino\Start Menu\Programs\Startup\
OpenOffice.org 3.0.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2008-10-13 393216]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2004-12-14 29696]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
.
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [4.8.2011 9:20 118104]
R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [9.1.2012 21:48 116608]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [22.9.2011 12:03 974944]
S1 SASKUTIL;SASKUTIL;\??\c:\program files\SUPERAntiSpyware\SASKUTIL.sys --> c:\program files\SUPERAntiSpyware\SASKUTIL.sys [?]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - 55667433
*Deregistered* - 55667433
.
Contents of the 'Scheduled Tasks' folder
.
2012-01-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1417001333-1202660629-839522115-1004Core.job
- c:\documents and settings\Domino\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-12-03 19:52]
.
2012-01-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1417001333-1202660629-839522115-1004UA.job
- c:\documents and settings\Domino\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-12-03 19:52]
.
2012-01-09 c:\windows\Tasks\ParetoLogic Registration3.job
- c:\program files\Common Files\ParetoLogic\UUS3\UUS3.dll [2011-03-29 23:17]
.
2012-01-09 c:\windows\Tasks\ParetoLogic Update Version3.job
- c:\program files\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe [2011-03-29 23:17]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.sk/
uInternet Connection Wizard,ShellNext = iexplore
TCP: DhcpNameServer = 172.16.0.254 192.168.91.237
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-01-10 15:57
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(1080)
c:\windows\System32\BCMLogon.dll
c:\windows\system32\igfxdev.dll
.
- - - - - - - > 'explorer.exe'(1660)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Completion time: 2012-01-10 15:59:26
ComboFix-quarantined-files.txt 2012-01-10 14:59
.
Pre-Run: 7 571 595 264 bytes free
Post-Run: 7 610 810 368 voľných bajtov
.
- - End Of File - - EC933BA010A07D89120BB90AAE728385
-
Rudy
- Site Admin
- Příspěvky: 119515
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomale pc pls kontrolu logu
Ještě dočistíme. Přesuňte ComboFix na plochu. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkaz ze skriptu.Driver::
55667433
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?