Po reinstalaci win xp - neskutečně pomalý(start,i postartu)

Příspěvekod **memphisto** » 06 zář 2013 16:58

Jsi psal, že ti nejde TDDS stáhnout... Možná měli jen výpadek na serveru...

Reklama

f.dominik · Příspěvekod **f.dominik** » 06 zář 2013 17:01

Nene stahl jsem ho a spustil, TDSSKiller se spustil vyskocilo okno instaling (20%,40%,80%) pak se pc resetoval ale log jsem nenasel.

Příspěvekod **jaro3** » 06 zář 2013 17:21

není na C:\TDSSKiller. 2.8.16.0_(datum)_log.txt ?

+
Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

f.dominik · Příspěvekod **f.dominik** » 06 zář 2013 17:39

17:31:27.0093 1968 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
17:31:28.0264 1968 ============================================================
17:31:28.0264 1968 Current date / time: 2013/09/06 17:31:28.0264
17:31:28.0264 1968 SystemInfo:
17:31:28.0264 1968
17:31:28.0264 1968 OS Version: 5.1.2600 ServicePack: 3.0
17:31:28.0264 1968 Product type: Workstation
17:31:28.0264 1968 ComputerName: DOMINIK
17:31:28.0264 1968 UserName: Dominator
17:31:28.0264 1968 Windows directory: C:\WINDOWS
17:31:28.0264 1968 System windows directory: C:\WINDOWS
17:31:28.0264 1968 Processor architecture: Intel x86
17:31:28.0264 1968 Number of processors: 1
17:31:28.0264 1968 Page size: 0x1000
17:31:28.0264 1968 Boot type: Normal boot
17:31:28.0264 1968 ============================================================
17:32:00.0130 1968 Drive \Device\Harddisk0\DR0 - Size: 0x9516AE000 (37.27 Gb), SectorSize: 0x200, Cylinders: 0x1301, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
17:32:00.0250 1968 ============================================================
17:32:00.0250 1968 \Device\Harddisk0\DR0:
17:32:00.0260 1968 MBR partitions:
17:32:00.0260 1968 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4A852C1
17:32:00.0260 1968 ============================================================
17:32:00.0381 1968 C: <-> \Device\Harddisk0\DR0\Partition1
17:32:00.0381 1968 ============================================================
17:32:00.0381 1968 Initialize success
17:32:00.0381 1968 ============================================================
17:33:02.0610 2540 ============================================================
17:33:02.0610 2540 Scan started
17:33:02.0610 2540 Mode: Manual;
17:33:02.0610 2540 ============================================================
17:33:04.0403 2540 ================ Scan system memory ========================
17:33:04.0433 2540 System memory - ok
17:33:04.0453 2540 ================ Scan services =============================
17:33:05.0044 2540 Abiosdsk - ok
17:33:05.0124 2540 abp480n5 - ok
17:33:05.0214 2540 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:33:05.0354 2540 ACPI - ok
17:33:05.0434 2540 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
17:33:05.0544 2540 ACPIEC - ok
17:33:05.0614 2540 adpu160m - ok
17:33:05.0915 2540 [ 9243229DFCCC99B5441750EBA49F1B14 ] AdvancedSystemCareService6 C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
17:33:06.0145 2540 AdvancedSystemCareService6 - ok
17:33:06.0245 2540 [ 8D499B1276012EB907E7A9E0F4D8FDA4 ] AFD C:\WINDOWS\System32\drivers\afd.sys
17:33:07.0006 2540 AFD - ok
17:33:07.0056 2540 Aha154x - ok
17:33:07.0127 2540 aic78u2 - ok
17:33:07.0177 2540 aic78xx - ok
17:33:07.0307 2540 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
17:33:07.0337 2540 Alerter - ok
17:33:07.0417 2540 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
17:33:07.0467 2540 ALG - ok
17:33:07.0507 2540 AliIde - ok
17:33:07.0607 2540 [ 3980814F8027D27EA003E2E3D9D4F604 ] AmdK7 C:\WINDOWS\system32\DRIVERS\amdk7.sys
17:33:07.0848 2540 AmdK7 - ok
17:33:07.0898 2540 amsint - ok
17:33:08.0018 2540 [ 6B8E7A90E576D4FE308F97C69060A171 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
17:33:08.0158 2540 AppMgmt - ok
17:33:08.0228 2540 asc - ok
17:33:08.0288 2540 asc3350p - ok
17:33:08.0328 2540 asc3550 - ok
17:33:09.0189 2540 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
17:33:09.0730 2540 aspnet_state - ok
17:33:09.0820 2540 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:33:10.0301 2540 AsyncMac - ok
17:33:10.0401 2540 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
17:33:10.0461 2540 atapi - ok
17:33:10.0541 2540 Atdisk - ok
17:33:10.0632 2540 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:33:10.0882 2540 Atmarpc - ok
17:33:10.0962 2540 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
17:33:11.0142 2540 AudioSrv - ok
17:33:11.0232 2540 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
17:33:11.0383 2540 audstub - ok
17:33:11.0513 2540 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
17:33:11.0713 2540 Beep - ok
17:33:11.0883 2540 [ 3AEDE727580F0A7C3929DD6526145759 ] BITS C:\WINDOWS\system32\qmgr.dll
17:33:12.0524 2540 BITS - ok
17:33:12.0654 2540 [ 39CE94B2B33771A3D95C70F41847F3F9 ] Browser C:\WINDOWS\System32\browser.dll
17:33:12.0695 2540 Browser - ok
17:33:12.0775 2540 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
17:33:12.0955 2540 cbidf2k - ok
17:33:13.0005 2540 cd20xrnt - ok
17:33:13.0095 2540 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
17:33:13.0275 2540 Cdaudio - ok
17:33:13.0375 2540 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
17:33:13.0406 2540 Cdfs - ok
17:33:13.0506 2540 [ 4B0A100EAF5C49EF3CCA8C641431EACC ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:33:13.0876 2540 Cdrom - ok
17:33:13.0916 2540 Changer - ok
17:33:14.0056 2540 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
17:33:14.0076 2540 CiSvc - ok
17:33:14.0147 2540 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
17:33:14.0167 2540 ClipSrv - ok
17:33:14.0387 2540 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:33:14.0707 2540 clr_optimization_v2.0.50727_32 - ok
17:33:14.0818 2540 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:33:15.0438 2540 clr_optimization_v4.0.30319_32 - ok
17:33:15.0489 2540 CmdIde - ok
17:33:15.0539 2540 COMSysApp - ok
17:33:15.0629 2540 Cpqarray - ok
17:33:15.0699 2540 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
17:33:15.0709 2540 CryptSvc - ok
17:33:15.0749 2540 dac2w2k - ok
17:33:15.0789 2540 dac960nt - ok
17:33:15.0969 2540 [ C0BD34A62508BA68F146E22CE45919F9 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
17:33:16.0009 2540 DcomLaunch - ok
17:33:16.0089 2540 [ EB737F46D7D494C7760A932C9B6491A4 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
17:33:16.0119 2540 Dhcp - ok
17:33:16.0190 2540 [ 47B6AAEC570F2C11D8BAD80A064D8ED1 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
17:33:16.0290 2540 Disk - ok
17:33:16.0340 2540 dmadmin - ok
17:33:16.0630 2540 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
17:33:17.0291 2540 dmboot - ok
17:33:17.0391 2540 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
17:33:17.0511 2540 dmio - ok
17:33:17.0612 2540 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
17:33:17.0692 2540 dmload - ok
17:33:17.0762 2540 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
17:33:17.0942 2540 dmserver - ok
17:33:18.0032 2540 [ 38AAD7E982198CB4F642BB60E59511F1 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
17:33:18.0313 2540 Dnscache - ok
17:33:18.0383 2540 [ AACFC38E9D085D58F9F933CFD6AF1D2B ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
17:33:19.0264 2540 Dot3svc - ok
17:33:19.0314 2540 dpti2o - ok
17:33:19.0404 2540 [ B327281012B48BD73F587799F9F29BE2 ] DumpDrv C:\WINDOWS\system32\drivers\DumpDrv.sys
17:33:19.0474 2540 DumpDrv - ok
17:33:19.0554 2540 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
17:33:19.0765 2540 EapHost - ok
17:33:19.0845 2540 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
17:33:20.0075 2540 ERSvc - ok
17:33:20.0175 2540 [ 4F40D16B2D5ED9E48A193CE468912FED ] Eventlog C:\WINDOWS\system32\services.exe
17:33:20.0245 2540 Eventlog - ok
17:33:20.0346 2540 [ BE68EA4457E2E5717231CF91BE5448E0 ] EventSystem C:\WINDOWS\system32\es.dll
17:33:20.0366 2540 EventSystem - ok
17:33:20.0456 2540 [ 4D893323DAE445E34A4C9038B0551BC9 ] exFat C:\WINDOWS\system32\drivers\exFat.sys
17:33:21.0257 2540 exFat - ok
17:33:21.0357 2540 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
17:33:21.0657 2540 Fastfat - ok
17:33:21.0768 2540 [ 54A6BF743E0517528A5064CEAEB40EA7 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
17:33:21.0798 2540 FastUserSwitchingCompatibility - ok
17:33:21.0868 2540 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
17:33:22.0008 2540 Fdc - ok
17:33:22.0108 2540 [ E9648254056BCE81A85380C0C3647DC4 ] FETNDIS C:\WINDOWS\system32\DRIVERS\fetnd5.sys
17:33:22.0258 2540 FETNDIS - ok
17:33:22.0439 2540 [ AFFE9A80079E7091DCD429D45CE2049B ] ffire C:\WINDOWS\system32\DRIVERS\ffire.sys
17:33:22.0619 2540 ffire - ok
17:33:22.0739 2540 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
17:33:22.0979 2540 Fips - ok
17:33:23.0079 2540 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
17:33:23.0320 2540 Flpydisk - ok
17:33:23.0430 2540 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
17:33:23.0650 2540 FltMgr - ok
17:33:23.0740 2540 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
17:33:24.0051 2540 FontCache3.0.0.0 - ok
17:33:24.0141 2540 [ 30D42943A54704EF13E2562911DBFCEA ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:33:24.0241 2540 Fs_Rec - ok
17:33:24.0291 2540 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:33:24.0471 2540 Ftdisk - ok
17:33:24.0552 2540 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:33:24.0712 2540 Gpc - ok
17:33:24.0862 2540 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
17:33:24.0902 2540 gupdate - ok
17:33:24.0932 2540 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
17:33:24.0932 2540 gupdatem - ok
17:33:25.0042 2540 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
17:33:25.0493 2540 helpsvc - ok
17:33:25.0623 2540 [ 00E25EE90166B3E1BE6E74AEBF858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
17:33:25.0663 2540 HidServ - ok
17:33:25.0763 2540 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:33:25.0823 2540 hidusb - ok
17:33:25.0934 2540 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
17:33:26.0254 2540 hkmsvc - ok
17:33:26.0294 2540 hpn - ok
17:33:26.0424 2540 [ 970178E8E003EB1481293830069624B9 ] HSFHWBS2 C:\WINDOWS\system32\DRIVERS\HSFBS2S2.sys
17:33:26.0885 2540 HSFHWBS2 - ok
17:33:27.0245 2540 [ EBB354438A4C5A3327FB97306260714A ] HSF_DP C:\WINDOWS\system32\DRIVERS\HSFDPSP2.sys
17:33:27.0866 2540 HSF_DP - ok
17:33:28.0017 2540 [ 937031C085718C1C04A9C0864625EC6B ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
17:33:28.0237 2540 HTTP - ok
17:33:28.0317 2540 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
17:33:28.0487 2540 HTTPFilter - ok
17:33:28.0647 2540 i2omgmt - ok
17:33:28.0688 2540 i2omp - ok
17:33:28.0758 2540 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:33:29.0018 2540 i8042prt - ok
17:33:29.0358 2540 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:33:30.0220 2540 idsvc - ok
17:33:30.0310 2540 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
17:33:30.0510 2540 Imapi - ok
17:33:30.0610 2540 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
17:33:31.0131 2540 ImapiService - ok
17:33:31.0221 2540 ini910u - ok
17:33:31.0291 2540 IntelIde - ok
17:33:31.0401 2540 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
17:33:31.0642 2540 Ip6Fw - ok
17:33:31.0712 2540 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:33:31.0962 2540 IpFilterDriver - ok
17:33:32.0072 2540 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:33:32.0243 2540 IpInIp - ok
17:33:32.0323 2540 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:33:32.0413 2540 IpNat - ok
17:33:32.0513 2540 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:33:32.0723 2540 IPSec - ok
17:33:32.0783 2540 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
17:33:32.0964 2540 IRENUM - ok
17:33:33.0064 2540 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:33:33.0344 2540 isapnp - ok
17:33:33.0504 2540 [ 1834C96FB1F9280BCF6DDFA6DE8338BF ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
17:33:33.0605 2540 JavaQuickStarterService - ok
17:33:33.0675 2540 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:33:33.0865 2540 Kbdclass - ok
17:33:33.0965 2540 [ 86C8F23616C6C6E5B2776901C17B945B ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
17:33:34.0045 2540 kbdhid - ok
17:33:34.0165 2540 [ C6EBF1D6AD71DF30DB49B8D3287E1368 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
17:33:34.0416 2540 KSecDD - ok
17:33:34.0556 2540 [ 21920AC69594AB021237054FA728FE46 ] LanmanServer C:\WINDOWS\System32\srvsvc.dll
17:33:34.0606 2540 LanmanServer - ok
17:33:34.0696 2540 [ 9A2E7EE3989AAC0079E9D23555545D52 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
17:33:34.0796 2540 lanmanworkstation - ok
17:33:34.0846 2540 lbrtfdc - ok
17:33:34.0926 2540 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
17:33:35.0137 2540 LmHosts - ok
17:33:35.0267 2540 [ 0DB7527DB188C7D967A37BB51BBF3963 ] MBAMSwissArmy C:\WINDOWS\system32\drivers\mbamswissarmy.sys
17:33:35.0327 2540 MBAMSwissArmy - ok
17:33:35.0427 2540 [ 195741AEE20369980796B557358CD774 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
17:33:35.0487 2540 mdmxsdk - ok
17:33:35.0587 2540 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
17:33:35.0748 2540 Messenger - ok
17:33:35.0838 2540 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
17:33:35.0908 2540 mnmdd - ok
17:33:36.0028 2540 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
17:33:36.0769 2540 mnmsrvc - ok
17:33:36.0869 2540 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
17:33:36.0909 2540 Modem - ok
17:33:36.0989 2540 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:33:37.0240 2540 Mouclass - ok
17:33:37.0310 2540 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:33:37.0410 2540 mouhid - ok
17:33:37.0460 2540 [ 1A1FAA5102466F418494E94FF9B0B091 ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
17:33:37.0891 2540 MountMgr - ok
17:33:38.0021 2540 [ 24406D75B40F0F6B3C1AC7031D734565 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
17:33:38.0191 2540 MpFilter - ok
17:33:38.0692 2540 MpKsld77f095c - ok
17:33:38.0722 2540 mraid35x - ok
17:33:38.0822 2540 [ 6A7C4AC5B52155115DEE97995C1CF157 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:33:39.0303 2540 MRxDAV - ok
17:33:39.0453 2540 [ FB7DFD15D760AD339837A470F0E780D3 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:33:40.0094 2540 MRxSmb - ok
17:33:40.0174 2540 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
17:33:40.0625 2540 MSDTC - ok
17:33:40.0775 2540 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
17:33:41.0145 2540 Msfs - ok
17:33:41.0195 2540 MSIServer - ok
17:33:41.0356 2540 [ 3EA6A1A744D79328AE7E2C6FAE4C4420 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:33:41.0416 2540 MsMpSvc - ok
17:33:41.0526 2540 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:33:41.0616 2540 mssmbios - ok
17:33:41.0756 2540 [ 6546FE6639499FA4BEF180BDF08266A1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
17:33:42.0157 2540 Mup - ok
17:33:42.0327 2540 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
17:33:43.0579 2540 napagent - ok
17:33:43.0719 2540 [ B5B1080D35974C0E718D64280761BCD5 ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
17:33:44.0060 2540 NDIS - ok
17:33:44.0170 2540 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:33:44.0460 2540 NdisTapi - ok
17:33:44.0560 2540 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:33:44.0691 2540 Ndisuio - ok
17:33:44.0771 2540 [ B053A8411045FD0664B389A090CB2BBC ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:33:45.0001 2540 NdisWan - ok
17:33:45.0071 2540 [ 6215023940CFD3702B46ABC304E1D45A ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
17:33:45.0602 2540 NDProxy - ok
17:33:45.0762 2540 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
17:33:45.0892 2540 NetBIOS - ok
17:33:46.0022 2540 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
17:33:46.0293 2540 NetBT - ok
17:33:46.0363 2540 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
17:33:47.0424 2540 NetDDE - ok
17:33:47.0465 2540 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
17:33:47.0475 2540 NetDDEdsdm - ok
17:33:47.0545 2540 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
17:33:47.0575 2540 Netlogon - ok
17:33:47.0685 2540 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
17:33:47.0755 2540 Netman - ok
17:33:47.0845 2540 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:33:48.0426 2540 NetTcpPortSharing - ok
17:33:48.0556 2540 [ 0D594D828829E1BC727B870899376B19 ] Nla C:\WINDOWS\System32\mswsock.dll
17:33:48.0666 2540 Nla - ok
17:33:48.0836 2540 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
17:33:49.0107 2540 Npfs - ok
17:33:49.0357 2540 [ AE8CAD8F28DB13B515A68510A539B0B8 ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
17:33:49.0988 2540 Ntfs - ok
17:33:50.0058 2540 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
17:33:50.0058 2540 NtLmSsp - ok
17:33:50.0269 2540 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
17:33:50.0649 2540 NtmsSvc - ok
17:33:50.0729 2540 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
17:33:50.0819 2540 Null - ok
17:33:51.0130 2540 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
17:33:51.0821 2540 nv - ok
17:33:51.0911 2540 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:33:52.0011 2540 NwlnkFlt - ok
17:33:52.0071 2540 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:33:52.0151 2540 NwlnkFwd - ok
17:33:52.0261 2540 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
17:33:52.0462 2540 Parport - ok
17:33:52.0532 2540 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
17:33:52.0622 2540 PartMgr - ok
17:33:52.0712 2540 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
17:33:52.0962 2540 ParVdm - ok
17:33:53.0022 2540 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
17:33:53.0213 2540 PCI - ok
17:33:53.0283 2540 PCIDump - ok
17:33:53.0353 2540 PCIIde - ok
17:33:53.0433 2540 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
17:33:53.0463 2540 Pcmcia - ok
17:33:53.0513 2540 PDCOMP - ok
17:33:53.0553 2540 PDFRAME - ok
17:33:53.0603 2540 PDRELI - ok
17:33:53.0643 2540 PDRFRAME - ok
17:33:53.0683 2540 perc2 - ok
17:33:53.0734 2540 perc2hib - ok
17:33:53.0904 2540 [ 4F40D16B2D5ED9E48A193CE468912FED ] PlugPlay C:\WINDOWS\system32\services.exe
17:33:53.0904 2540 PlugPlay - ok
17:33:53.0974 2540 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
17:33:53.0974 2540 PolicyAgent - ok
17:33:54.0054 2540 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:33:54.0224 2540 PptpMiniport - ok
17:33:54.0304 2540 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
17:33:54.0304 2540 ProtectedStorage - ok
17:33:54.0394 2540 [ D8E11D311785F89F1D70A28B0E879127 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
17:33:54.0535 2540 PSched - ok
17:33:54.0605 2540 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:33:54.0705 2540 Ptilink - ok
17:33:54.0755 2540 ql1080 - ok
17:33:54.0795 2540 Ql10wnt - ok
17:33:54.0835 2540 ql12160 - ok
17:33:54.0885 2540 ql1240 - ok
17:33:54.0935 2540 ql1280 - ok
17:33:55.0015 2540 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:33:55.0035 2540 RasAcd - ok
17:33:55.0095 2540 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
17:33:55.0426 2540 RasAuto - ok
17:33:55.0486 2540 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:33:55.0716 2540 Rasl2tp - ok
17:33:55.0937 2540 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
17:33:55.0957 2540 RasMan - ok
17:33:56.0037 2540 [ 2C9D4620A0FD35DE1828370B392F6E2D ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:33:56.0147 2540 RasPppoe - ok
17:33:56.0227 2540 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
17:33:56.0317 2540 Raspti - ok
17:33:56.0417 2540 [ 77050C6615F6EB5402F832B27FD695E0 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:33:56.0668 2540 Rdbss - ok
17:33:56.0738 2540 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:33:56.0788 2540 RDPCDD - ok
17:33:56.0918 2540 [ 47EA20320E3D6FDC7B7BB22B2B881CA6 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
17:33:57.0359 2540 rdpdr - ok
17:33:57.0479 2540 [ E8E3107243B16A549B88D145EC051B06 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
17:33:57.0509 2540 RDPWD - ok
17:33:57.0619 2540 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
17:33:58.0080 2540 RDSessMgr - ok
17:33:58.0150 2540 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
17:33:58.0350 2540 redbook - ok
17:33:58.0440 2540 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
17:33:58.0921 2540 RemoteAccess - ok
17:33:59.0011 2540 [ 8F31505484A190D5B22274708799F4EC ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
17:33:59.0121 2540 RemoteRegistry - ok
17:33:59.0191 2540 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
17:33:59.0422 2540 RpcLocator - ok
17:33:59.0512 2540 [ C0BD34A62508BA68F146E22CE45919F9 ] RpcSs C:\WINDOWS\system32\rpcss.dll
17:33:59.0522 2540 RpcSs - ok
17:33:59.0582 2540 [ 743D7D59767073A617B1DCC6C546F234 ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys
17:33:59.0722 2540 rspndr - ok
17:33:59.0822 2540 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
17:33:59.0962 2540 RSVP - ok
17:34:00.0023 2540 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
17:34:00.0023 2540 SamSs - ok
17:34:00.0123 2540 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
17:34:00.0373 2540 SCardSvr - ok
17:34:00.0473 2540 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
17:34:00.0714 2540 Schedule - ok
17:34:00.0804 2540 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:34:00.0954 2540 Secdrv - ok
17:34:01.0044 2540 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
17:34:01.0134 2540 seclogon - ok
17:34:01.0214 2540 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
17:34:01.0224 2540 SENS - ok
17:34:01.0264 2540 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
17:34:01.0385 2540 serenum - ok
17:34:01.0475 2540 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
17:34:01.0645 2540 Serial - ok
17:34:01.0875 2540 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
17:34:01.0965 2540 Sfloppy - ok
17:34:02.0146 2540 [ 65EACFE3182AFEE8D222D0B17FE05EDA ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
17:34:02.0236 2540 SharedAccess - ok
17:34:02.0316 2540 [ 54A6BF743E0517528A5064CEAEB40EA7 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
17:34:02.0316 2540 ShellHWDetection - ok
17:34:02.0366 2540 Simbad - ok
17:34:02.0496 2540 Sparrow - ok
17:34:02.0586 2540 [ CB1090BCA0E7B40D0B5B4E4D66531809 ] Spooler C:\WINDOWS\system32\spoolsv.exe
17:34:04.0379 2540 Spooler - ok
17:34:04.0449 2540 [ 94610C8653635E4459316A0050D55CE7 ] SR C:\WINDOWS\system32\DRIVERS\sr.sys
17:34:04.0639 2540 SR - ok
17:34:04.0759 2540 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
17:34:04.0769 2540 srservice - ok
17:34:04.0890 2540 [ 422E4508508015C7D12F40BF9763F158 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
17:34:04.0950 2540 Srv - ok
17:34:05.0050 2540 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
17:34:05.0060 2540 SSDPSRV - ok
17:34:05.0180 2540 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
17:34:05.0761 2540 stisvc - ok
17:34:05.0841 2540 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
17:34:05.0891 2540 swenum - ok
17:34:05.0951 2540 SwPrv - ok
17:34:05.0991 2540 symc810 - ok
17:34:06.0041 2540 symc8xx - ok
17:34:06.0091 2540 sym_hi - ok
17:34:06.0141 2540 sym_u3 - ok
17:34:06.0221 2540 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
17:34:06.0422 2540 SysmonLog - ok
17:34:06.0522 2540 [ AF2A883CC63318A8BDA168BDD7AC80D9 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
17:34:06.0542 2540 TapiSrv - ok
17:34:06.0652 2540 [ 367DE8E5F638C091F49273144274F629 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:34:06.0852 2540 Tcpip - ok
17:34:06.0912 2540 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
17:34:06.0943 2540 TDPIPE - ok
17:34:07.0013 2540 [ C0578456F29E5F26285F81B7B71FE57D ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
17:34:07.0023 2540 TDTCP - ok
17:34:07.0103 2540 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
17:34:07.0343 2540 TermDD - ok
17:34:07.0413 2540 [ 0E43A7CF302D85273FC86F5FCA9A1909 ] TermService C:\WINDOWS\System32\termsrv.dll
17:34:07.0523 2540 TermService - ok
17:34:07.0573 2540 [ 54A6BF743E0517528A5064CEAEB40EA7 ] Themes C:\WINDOWS\System32\shsvcs.dll
17:34:07.0573 2540 Themes - ok
17:34:07.0644 2540 [ CD0CC7B167D78043A41C98D4921EFB54 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
17:34:07.0894 2540 TlntSvr - ok
17:34:07.0944 2540 TosIde - ok
17:34:08.0014 2540 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
17:34:08.0114 2540 TrkWks - ok
17:34:08.0214 2540 TrueSight - ok
17:34:08.0284 2540 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
17:34:08.0435 2540 Udfs - ok
17:34:08.0505 2540 ultra - ok
17:34:08.0675 2540 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
17:34:08.0865 2540 Update - ok
17:34:08.0965 2540 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
17:34:09.0436 2540 upnphost - ok
17:34:09.0516 2540 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
17:34:09.0777 2540 UPS - ok
17:34:09.0837 2540 [ C18D6C74953621346DF6B0A11F80C1CC ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:34:09.0917 2540 usbccgp - ok
17:34:10.0007 2540 [ 52674B5DBEE499342A599C7771ABECAA ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:34:10.0097 2540 usbehci - ok
17:34:10.0187 2540 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:34:10.0347 2540 usbhub - ok
17:34:10.0418 2540 [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:34:10.0488 2540 usbstor - ok
17:34:10.0568 2540 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:34:10.0638 2540 usbuhci - ok
17:34:10.0718 2540 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
17:34:10.0808 2540 VgaSave - ok
17:34:10.0898 2540 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
17:34:11.0028 2540 viaagp - ok
17:34:11.0088 2540 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
17:34:11.0349 2540 ViaIde - ok
17:34:11.0449 2540 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
17:34:11.0539 2540 VolSnap - ok
17:34:11.0659 2540 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
17:34:12.0160 2540 VSS - ok
17:34:12.0250 2540 [ DF2E8EA96391126977DA1B8AB6FC39FC ] W32Time C:\WINDOWS\system32\w32time.dll
17:34:12.0280 2540 W32Time - ok
17:34:12.0380 2540 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:34:12.0511 2540 Wanarp - ok
17:34:12.0561 2540 WDICA - ok
17:34:12.0641 2540 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
17:34:13.0031 2540 WebClient - ok
17:34:13.0192 2540 [ 1225EBEA76AAC3C84DF6C54FE5E5D8BE ] winachsf C:\WINDOWS\system32\DRIVERS\HSFCXTS2.sys
17:34:13.0332 2540 winachsf - ok
17:34:13.0492 2540 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
17:34:13.0542 2540 winmgmt - ok
17:34:13.0782 2540 [ 4D34CEDD74BDBF2B6A935EAE3BF80543 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
17:34:14.0463 2540 WinRM - ok
17:34:14.0584 2540 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
17:34:14.0704 2540 WmdmPmSN - ok
17:34:14.0904 2540 [ 4E68A735673CE17152329428524BA1C3 ] Wmi C:\WINDOWS\System32\advapi32.dll
17:34:14.0984 2540 Wmi - ok
17:34:15.0084 2540 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
17:34:15.0104 2540 WmiApSrv - ok
17:34:15.0465 2540 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
17:34:16.0456 2540 WMPNetworkSvc - ok
17:34:16.0596 2540 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
17:34:16.0616 2540 wscsvc - ok
17:34:16.0666 2540 WSearch - ok
17:34:16.0747 2540 [ 02E4055488047729B333F99D93877038 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
17:34:16.0777 2540 wuauserv - ok
17:34:16.0857 2540 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
17:34:17.0317 2540 WudfPf - ok
17:34:17.0368 2540 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
17:34:17.0518 2540 WudfRd - ok
17:34:17.0588 2540 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
17:34:17.0668 2540 WudfSvc - ok
17:34:17.0828 2540 [ F345FF726D92D58ABE5B0AEE08D29DF1 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
17:34:17.0948 2540 WZCSVC - ok
17:34:18.0069 2540 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
17:34:18.0259 2540 xmlprov - ok
17:34:18.0299 2540 ================ Scan global ===============================
17:34:18.0399 2540 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
17:34:18.0489 2540 [ 990864D32638714B63056A61D93CF42E ] C:\WINDOWS\system32\winsrv.dll
17:34:18.0589 2540 [ 990864D32638714B63056A61D93CF42E ] C:\WINDOWS\system32\winsrv.dll
17:34:18.0649 2540 [ 4F40D16B2D5ED9E48A193CE468912FED ] C:\WINDOWS\system32\services.exe
17:34:18.0649 2540 [Global] - ok
17:34:18.0679 2540 ================ Scan MBR ==================================
17:34:18.0739 2540 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
17:34:19.0651 2540 \Device\Harddisk0\DR0 - ok
17:34:19.0671 2540 ================ Scan VBR ==================================
17:34:19.0701 2540 [ 3830A1E92F7AEE5E929768EB78918CA7 ] \Device\Harddisk0\DR0\Partition1
17:34:19.0711 2540 \Device\Harddisk0\DR0\Partition1 - ok
17:34:19.0731 2540 ============================================================
17:34:19.0761 2540 Scan finished
17:34:19.0761 2540 ============================================================
17:34:19.0811 2548 Detected object count: 0
17:34:19.0811 2548 Actual detected object count: 0
17:35:00.0409 0532 Deinitialize success

Příspěvekod **memphisto** » 06 zář 2013 19:03

Dodej i ten Combofix

f.dominik · Příspěvekod **f.dominik** » 06 zář 2013 19:13

ComboFix 13-09-06.01 - Dominator 06.09.2013 18:22:50.1.1 - x86
Spuštěný z: c:\documents and settings\Dominator\Plocha\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Dominator\Plocha\Internet Explorer.lnk
c:\windows\system32\structuredqueryschematrivial.bin
c:\windows\system32\TZLog.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-08-06 do 2013-09-06 )))))))))))))))))))))))))))))))
.
.
2013-09-05 19:15 . 2013-09-05 19:15 -------- d-----w- c:\windows\ERUNT
2013-09-05 14:24 . 2013-09-05 19:40 -------- d-----w- C:\AdwCleaner
2013-09-04 20:13 . 2013-09-04 20:48 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2013-09-04 20:12 . 2013-04-04 12:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-09-04 20:12 . 2013-09-04 20:13 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-09-04 18:48 . 2013-09-04 18:48 -------- d-----w- c:\program files\Trend Micro
2013-09-04 18:13 . 2013-09-04 18:13 -------- d-----w- c:\program files\FlashFire
2013-09-04 16:52 . 2013-09-04 16:52 -------- d-----w- c:\windows\system32\MRT
2013-09-04 16:50 . 2013-09-04 17:05 -------- d-----w- C:\31367a1cc5e6b51f1cd4
2013-09-04 13:02 . 2013-09-04 13:02 -------- d-----w- C:\255b5e304671afb905fbb5c37b1f
2013-09-03 17:26 . 2012-01-11 19:07 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2013-09-03 17:26 . 2012-01-11 19:07 3072 ------w- c:\windows\system32\iacenc.dll
2013-09-03 16:32 . 2013-09-03 16:32 -------- d-----w- c:\windows\system32\config\systemprofile\Data aplikací\IObit
2013-09-03 16:08 . 2013-09-03 16:08 -------- d-----w- C:\Temp
2013-09-03 15:21 . 2013-04-17 18:22 23360 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
2013-09-03 14:55 . 2013-05-02 15:28 238872 ------w- c:\windows\system32\MpSigStub.exe
2013-09-03 14:38 . 2013-09-03 14:41 -------- d-----w- c:\program files\Microsoft Security Client
2013-09-03 14:32 . 2001-08-17 19:59 3072 ----a-w- c:\windows\system32\drivers\audstub.sys
2013-09-03 14:32 . 2008-04-14 06:51 21504 ----a-w- c:\windows\system32\hidserv.dll
2013-09-03 14:31 . 2008-04-14 05:44 58496 ----a-w- c:\windows\system32\drivers\redbook.sys
2013-09-03 14:31 . 2008-04-13 20:04 1897408 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2013-09-03 14:31 . 2008-04-14 06:51 4274816 ----a-w- c:\windows\system32\nv4_disp.dll
2013-09-03 14:30 . 2001-08-17 18:13 27165 ----a-w- c:\windows\system32\drivers\fetnd5.sys
2013-09-03 14:30 . 2008-04-14 06:52 75264 ----a-w- c:\windows\system32\usbui.dll
2013-09-03 14:30 . 2008-04-13 22:06 42240 ----a-w- c:\windows\system32\drivers\VIAAGP.SYS
2013-09-03 14:30 . 2008-04-14 06:51 86016 ----a-w- c:\windows\system32\mdmxsdk.dll
2013-09-03 14:30 . 2008-04-14 06:51 32285 ----a-w- c:\windows\system32\HSFCISP2.dll
2013-09-03 14:30 . 2008-04-13 21:53 11868 ----a-w- c:\windows\system32\drivers\mdmxsdk.sys
2013-09-03 14:30 . 2008-04-13 21:53 1041536 ----a-w- c:\windows\system32\drivers\HSFDPSP2.sys
2013-09-03 14:30 . 2008-04-13 21:53 685056 ----a-w- c:\windows\system32\drivers\HSFCXTS2.sys
2013-09-03 14:30 . 2008-04-13 21:53 220032 ----a-w- c:\windows\system32\drivers\HSFBS2S2.sys
2013-09-03 14:26 . 2013-09-03 13:41 -------- d--h--w- c:\documents and settings\Default User.WINDOWS
2013-09-03 14:26 . 2013-09-03 13:17 -------- d-----w- c:\documents and settings\All Users.WINDOWS
2013-09-03 14:20 . 2013-09-03 14:23 -------- d-----w- c:\windows\L2Schemas
2013-09-03 14:20 . 2013-09-03 14:22 -------- d-----w- c:\windows\PeerNet
2013-09-03 14:20 . 2013-09-03 14:22 -------- d-----w- c:\windows\system32\cs
2013-09-03 14:20 . 2013-09-03 14:21 -------- d-----w- c:\windows\ehome
2013-09-03 14:20 . 2013-09-03 14:20 -------- d-----w- c:\windows\Provisioning
2013-09-03 14:20 . 2013-09-03 12:48 -------- d-----w- c:\windows\system32\drivers\UMDF
2013-09-03 14:20 . 2013-09-03 12:48 -------- d-----w- c:\windows\system32\cs-cz
2013-09-03 13:48 . 2013-09-03 13:48 -------- d-----w- c:\program files\GUM85.tmp
2013-09-03 13:46 . 2013-09-03 13:50 -------- d-----w- c:\program files\Google
2013-09-03 13:46 . 2013-09-03 13:46 -------- d-----w- c:\program files\GUM82.tmp
2013-09-03 13:42 . 2013-09-03 12:04 221184 ----a-w- c:\windows\system32\wmpns.dll
2013-09-03 13:42 . 2013-09-05 19:39 -------- d-----w- c:\documents and settings\Dominator
2013-09-03 13:38 . 2013-09-03 15:02 -------- d-sh--w- c:\documents and settings\LocalService.NT AUTHORITY
2013-09-03 13:36 . 2013-09-03 13:26 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2013-09-03 13:35 . 2001-10-24 10:25 7168 -c--a-w- c:\windows\system32\dllcache\EXCH_snprfdll.dll
2013-09-03 13:35 . 2001-10-24 10:25 12288 -c--a-w- c:\windows\system32\dllcache\EXCH_smtpctrs.dll
2013-09-03 13:34 . 2001-10-24 10:25 26112 -c--a-w- c:\windows\system32\dllcache\EXCH_seos.dll
2013-09-03 13:34 . 2001-10-24 10:25 57856 -c--a-w- c:\windows\system32\dllcache\EXCH_scripto.dll
2013-09-03 13:34 . 2001-10-24 10:25 23040 -c--a-w- c:\windows\system32\dllcache\EXCH_regtrace.exe
2013-09-03 13:34 . 2001-10-24 10:24 38912 -c--a-w- c:\windows\system32\dllcache\EXCH_ntfsdrv.dll
2013-09-03 13:32 . 2013-09-03 11:35 42496 -c--a-w- c:\windows\system32\dllcache\davcdata.exe
2013-09-03 13:31 . 2013-09-03 11:41 68608 -c--a-w- c:\windows\system32\dllcache\isatq.dll
2013-09-03 13:29 . 2013-09-03 13:29 73728 ----a-w- c:\windows\system32\javacpl.cpl
2013-09-03 13:29 . 2013-09-03 13:29 411368 ----a-w- c:\windows\system32\deployJava1.dll
2013-09-03 13:29 . 2013-09-03 13:29 -------- d-----w- c:\program files\Java
2013-09-03 13:14 . 2013-09-03 13:14 -------- d-----w- c:\program files\Windows Media Connect 2
2013-09-03 13:14 . 2013-09-03 12:04 204288 ----a-w- c:\program files\Windows Media Player\wmpnscfg.exe
2013-09-03 13:14 . 2013-09-03 12:04 198144 ----a-w- c:\program files\Windows Media Player\wmpnssci.dll
2013-09-03 13:14 . 2013-09-03 12:04 913920 ----a-w- c:\program files\Windows Media Player\wmpnetwk.exe
2013-09-03 13:14 . 2013-09-03 12:04 1669120 ----a-w- c:\program files\Windows Media Player\wmsetsdk.exe
2013-09-03 13:14 . 2013-09-03 12:04 36864 ----a-w- c:\program files\Windows Media Player\wmpshare.exe
2013-09-03 13:14 . 2013-09-03 12:04 25600 ----a-w- c:\program files\Windows Media Player\wmpenc.exe
2013-09-03 13:14 . 2013-09-03 11:41 410928 ----a-w- c:\program files\Windows Media Player\LegitLibM.dll
2013-09-03 13:14 . 2013-09-03 12:04 241664 ----a-w- c:\program files\Windows Media Player\wmlaunch.exe
2013-09-03 13:14 . 2013-09-03 12:04 493568 ----a-w- c:\program files\Windows Media Player\wmdbexport.exe
2013-09-03 13:13 . 2013-09-03 11:39 99840 -c--a-w- c:\windows\system32\dllcache\helphost.exe
2013-09-03 13:13 . 2013-09-03 11:39 7168 -c--a-w- c:\windows\system32\dllcache\hcappres.dll
2013-09-03 13:13 . 2013-09-03 11:31 21504 -c--a-w- c:\windows\system32\dllcache\brpinfo.dll
2013-09-03 13:13 . 2013-09-03 11:31 11264 -c--a-w- c:\windows\system32\dllcache\atrace.dll
2013-09-03 13:13 . 2013-09-03 11:31 11264 ----a-w- c:\windows\system32\atrace.dll
2013-09-03 13:13 . 2013-09-03 11:47 12288 ----a-w- c:\windows\system32\nmevtmsg.dll
2013-09-03 13:13 . 2013-09-03 11:43 118784 ----a-w- c:\windows\system32\msg723.acm
2013-09-03 13:13 . 2013-09-03 11:30 64512 -c--a-w- c:\windows\system32\dllcache\acctres.dll
2013-09-03 13:13 . 2013-09-03 11:30 64512 ----a-w- c:\windows\system32\acctres.dll
2013-09-03 13:11 . 2013-09-03 11:53 45568 ----a-w- c:\windows\system32\safrslv.dll
2013-09-03 13:08 . 2013-09-06 15:52 -------- d-sh--w- c:\documents and settings\NetworkService.NT AUTHORITY
2013-09-03 12:54 . 2013-09-03 13:31 -------- d-----w- c:\windows\system32\wbem\AutoRecover
2013-09-03 12:52 . 2010-03-18 11:16 771424 ----a-w- c:\windows\system32\msvcr100_clr0400.dll
2013-09-03 12:51 . 2013-09-03 12:51 -------- d-----w- c:\program files\Microsoft.NET
2013-09-03 12:51 . 2010-03-18 14:47 17760 ----a-w- c:\windows\system32\aspnet_counters.dll
2013-09-03 12:51 . 2013-09-04 15:27 -------- d-----w- c:\windows\system32\XPSViewer
2013-09-03 12:51 . 2013-09-03 12:51 -------- d-----w- c:\program files\MSBuild
2013-09-03 12:51 . 2008-07-29 20:10 26112 ----a-w- c:\windows\system32\TsWpfWrp.exe
2013-09-03 12:51 . 2010-03-18 08:09 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2013-09-03 12:51 . 2008-07-29 18:59 781344 ----a-w- c:\windows\system32\PresentationNative_v0300.dll
2013-09-03 12:51 . 2006-08-24 14:15 150808 ----a-w- c:\windows\system32\rgb9rast_2.dll
2013-09-03 12:51 . 2010-03-18 08:09 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2013-09-03 12:50 . 2008-07-29 18:59 105016 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-09-03 12:50 . 2008-07-29 18:24 97800 ----a-w- c:\windows\system32\infocardapi.dll
2013-09-03 12:50 . 2008-07-29 18:24 622080 ----a-w- c:\windows\system32\icardagt.exe
2013-09-03 12:50 . 2008-07-29 18:24 37384 ----a-w- c:\windows\system32\infocardcpl.cpl
2013-09-03 12:50 . 2008-07-29 18:24 11264 ----a-w- c:\windows\system32\icardres.dll
2013-09-03 12:50 . 2013-09-03 12:50 -------- d-----w- c:\program files\Reference Assemblies
2013-09-03 12:50 . 2010-03-18 11:16 70472 ----a-w- c:\windows\system32\dxva2.dll
2013-09-03 12:50 . 2010-03-18 11:16 486216 ----a-w- c:\windows\system32\evr.dll
2013-09-03 12:50 . 2005-09-23 12:29 626688 ----a-w- c:\windows\system32\msvcr80.dll
2013-09-03 12:50 . 2005-09-23 12:29 548864 ----a-w- c:\windows\system32\msvcp80.dll
2013-09-03 12:50 . 2005-09-23 12:29 479232 ----a-w- c:\windows\system32\msvcm80.dll
2013-09-03 12:49 . 2009-11-11 18:06 1130824 ----a-w- c:\windows\system32\dfshim.dll
2013-09-03 12:49 . 2010-03-18 08:09 49488 ----a-w- c:\windows\system32\netfxperf.dll
2013-09-03 12:49 . 2008-07-25 14:16 83968 ----a-w- c:\windows\system32\mscories.dll
2013-09-03 12:49 . 2009-09-23 22:30 156488 ----a-w- c:\windows\system32\mscorier.dll
2013-09-03 12:49 . 2010-03-18 08:09 297808 ----a-w- c:\windows\system32\mscoree.dll
2013-09-03 12:47 . 2013-09-03 12:05 528216 ----a-w- c:\windows\system32\XAudio2_6.dll
2013-09-03 12:46 . 2013-09-03 12:46 -------- d-----w- c:\windows\system32\winrm
2013-09-03 12:45 . 2013-09-03 11:56 138752 ----a-w- c:\windows\system32\sndvol32.exe
2013-09-03 12:45 . 2013-09-03 11:39 44544 ----a-w- c:\windows\system32\hticons.dll
2013-09-03 12:45 . 2013-09-03 11:31 73216 -c--a-w- c:\windows\system32\dllcache\avwav.dll
2013-09-03 12:45 . 2013-09-03 11:31 73216 ----a-w- c:\windows\system32\avwav.dll
2013-09-03 12:45 . 2013-09-03 11:31 228864 -c--a-w- c:\windows\system32\dllcache\avtapi.dll
2013-09-03 12:45 . 2013-09-03 11:31 228864 ----a-w- c:\windows\system32\avtapi.dll
2013-09-03 12:45 . 2013-09-03 11:31 16384 -c--a-w- c:\windows\system32\dllcache\avmeter.dll
2013-09-03 12:45 . 2013-09-03 11:31 16384 ----a-w- c:\windows\system32\avmeter.dll
2013-09-03 12:45 . 2013-09-03 12:03 35328 ----a-w- c:\windows\system32\winchat.exe
2013-09-03 12:45 . 2013-09-03 11:39 670720 -c--a-w- c:\windows\system32\dllcache\getuname.dll
2013-09-03 12:45 . 2013-09-03 11:39 670720 ----a-w- c:\windows\system32\getuname.dll
2013-09-03 12:45 . 2013-09-03 11:32 80896 -c--a-w- c:\windows\system32\dllcache\charmap.exe
2013-09-03 12:45 . 2013-09-03 11:32 80896 ----a-w- c:\windows\system32\charmap.exe
2013-09-03 12:05 . 2013-09-03 12:05 707 ----a-w- c:\windows\_default.pif
2013-09-03 12:04 . 2013-09-03 12:04 629760 ----a-w- c:\windows\system32\wpd_ci.dll
2013-09-03 12:03 . 2013-09-03 12:03 1442816 ----a-w- c:\windows\system32\winntbbu.dll
2013-09-03 12:01 . 2013-09-03 12:01 13312 ----a-w- c:\windows\system32\win87em.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-09-03 12:03 . 2013-09-03 12:45 35328 ----a-w- c:\windows\system32\winchat.exe
2013-09-03 12:01 . 2013-09-03 12:01 236544 ----a-w- c:\windows\system32\webcheck.dll
2013-09-03 12:00 . 2013-09-03 13:11 150528 ----a-w- c:\windows\pchealth\UploadLB\Binaries\UploadM.exe
2013-09-03 12:00 . 2013-09-03 12:00 279040 ----a-w- c:\windows\help\TSHOOT.dll
2013-09-03 12:00 . 2013-09-03 12:00 3374640 ----a-w- c:\windows\help\Tours\mmTour\tour.exe
2013-09-03 11:58 . 2013-09-03 11:58 14848 ----a-w- c:\windows\system32\svchost.exe
2013-09-03 11:58 . 2013-09-03 11:58 33280 ----a-w- c:\windows\help\sstub.dll
2013-09-03 11:58 . 2013-09-03 13:12 726590 ----a-w- c:\windows\srchasst\srchui.dll
2013-09-03 11:58 . 2013-09-03 13:12 58434 ----a-w- c:\windows\srchasst\srchctls.dll
2013-09-03 11:58 . 2013-09-03 12:48 28672 ----a-w- c:\windows\system32\srchadmin.dll.mui
2013-09-03 11:58 . 2013-09-03 12:48 301568 ----a-w- c:\windows\system32\srchadmin.dll
2013-09-03 11:57 . 2009-11-27 17:25 17920 ----a-w- c:\windows\system32\msyuv.dll
2013-09-03 11:57 . 2009-11-27 16:29 48128 ----a-w- c:\windows\system32\iyuv_32.dll
2013-09-03 11:57 . 2008-04-22 17:10 483328 ----a-w- c:\windows\system32\wzcsvc.dll
2013-09-03 11:57 . 2008-04-14 06:53 23552 ----a-w- c:\windows\system32\wdmaud.drv
2013-09-03 11:57 . 2008-04-14 06:52 52736 ----a-w- c:\windows\system32\wzcsapi.dll
2013-09-03 11:57 . 2008-04-14 06:51 35328 ----a-w- c:\windows\system32\pid.dll
2013-09-03 11:57 . 2008-04-14 06:51 15360 ----a-w- c:\windows\system32\pjlmon.dll
2013-09-03 11:57 . 2008-04-14 06:51 20992 ----a-w- c:\windows\system32\hid.dll
2013-09-03 11:57 . 2008-04-14 06:51 51200 ----a-w- c:\windows\system32\dmutil.dll
2013-09-03 11:57 . 2008-04-14 06:51 49152 ----a-w- c:\windows\system32\cnbjmon.dll
2013-09-03 11:57 . 2008-04-14 06:10 80000 ----a-w- c:\windows\system32\drivers\parport.sys
2013-09-03 11:57 . 2008-04-14 06:10 46592 ----a-w- c:\windows\system32\drivers\p3.sys
2013-09-03 11:57 . 2008-04-14 05:56 40576 ----a-w- c:\windows\system32\drivers\crusoe.sys
2013-09-03 11:57 . 2008-04-14 05:41 39680 ----a-w- c:\windows\system32\drivers\processr.sys
2013-09-03 11:57 . 2008-04-14 05:38 41600 ----a-w- c:\windows\system32\drivers\amdk7.sys
2013-09-03 11:57 . 2008-04-14 05:38 41216 ----a-w- c:\windows\system32\drivers\amdk6.sys
2013-09-03 11:57 . 2008-04-14 05:36 30080 ----a-w- c:\windows\system32\drivers\modem.sys
2013-09-03 11:57 . 2008-04-13 22:46 141056 ----a-w- c:\windows\system32\drivers\ks.sys
2013-09-03 11:57 . 2008-04-13 22:26 12288 ----a-w- c:\windows\system32\drivers\tunmp.sys
2013-09-03 11:57 . 2008-04-13 22:26 14592 ----a-w- c:\windows\system32\drivers\ndisuio.sys
2013-09-03 11:57 . 2008-04-13 22:21 61824 ----a-w- c:\windows\system32\drivers\nic1394.sys
2013-09-03 11:57 . 2008-04-13 22:21 60800 ----a-w- c:\windows\system32\drivers\arp1394.sys
2013-09-03 11:57 . 2008-04-13 22:16 25344 ----a-w- c:\windows\system32\drivers\sonydcam.sys
2013-09-03 11:57 . 2008-04-13 22:15 15872 ----a-w- c:\windows\system32\drivers\usbintel.sys
2013-09-03 11:57 . 2008-04-13 22:15 25728 ----a-w- c:\windows\system32\drivers\usbcamd2.sys
2013-09-03 11:57 . 2008-04-13 22:15 25600 ----a-w- c:\windows\system32\drivers\usbcamd.sys
2013-09-03 11:57 . 2008-04-13 22:15 49408 ----a-w- c:\windows\system32\drivers\stream.sys
2013-09-03 11:57 . 2008-04-13 22:09 4352 ----a-w- c:\windows\system32\drivers\swenum.sys
2013-09-03 11:57 . 2008-04-13 22:06 15488 ----a-w- c:\windows\system32\drivers\mssmbios.sys
2013-09-03 11:57 . 2008-04-13 22:06 63744 ----a-w- c:\windows\system32\drivers\mf.sys
2013-09-03 11:56 . 2013-09-03 11:56 34816 ----a-w- c:\windows\help\sniffpol.dll
2013-09-03 11:52 . 2013-09-03 11:52 79872 ----a-w- c:\windows\system32\raschap.dll
2013-09-03 11:50 . 2013-09-03 13:11 38400 ----a-w- c:\windows\pchealth\HelpCtr\Binaries\pchsvc.dll
2013-09-03 11:50 . 2013-09-03 13:11 102912 ----a-w- c:\windows\pchealth\HelpCtr\Binaries\pchshell.dll
2013-09-03 11:47 . 2013-09-03 13:13 35328 ----a-w- c:\windows\pchealth\HelpCtr\Binaries\notiflag.exe
2013-09-03 11:43 . 2013-09-03 13:11 378880 ----a-w- c:\windows\pchealth\HelpCtr\Binaries\msinfo.dll
2013-09-03 11:43 . 2013-09-03 13:12 3166208 ----a-w- c:\windows\srchasst\msgr3en.dll
2013-09-03 11:43 . 2013-09-03 11:43 518944 ----a-w- c:\windows\system32\msexch40.dll
2013-09-03 11:43 . 2013-09-03 13:11 171008 ----a-w- c:\windows\pchealth\HelpCtr\Binaries\msconfig.exe
2013-09-03 11:39 . 2013-09-03 13:11 18432 ----a-w- c:\windows\pchealth\HelpCtr\Binaries\HscUpd.exe
2013-09-03 11:39 . 2013-09-03 13:13 99840 ----a-w- c:\windows\pchealth\HelpCtr\Binaries\HelpHost.exe
2013-09-03 11:39 . 2013-09-03 13:11 769024 ----a-w- c:\windows\pchealth\HelpCtr\Binaries\HelpCtr.exe
2013-09-03 11:39 . 2013-09-03 13:11 744448 ----a-w- c:\windows\pchealth\HelpCtr\Binaries\HelpSvc.exe
2013-09-03 11:39 . 2013-09-03 13:13 7168 ----a-w- c:\windows\pchealth\HelpCtr\Binaries\HCAppRes.dll
2013-09-03 11:37 . 2009-11-27 16:29 8704 ----a-w- c:\windows\system32\tsbyuv.dll
2013-09-03 11:37 . 2001-10-24 10:25 77891 ----a-w- c:\windows\system32\usrmlnka.exe
2013-09-03 11:37 . 2001-10-24 10:25 69700 ----a-w- c:\windows\system32\usrshuta.exe
2013-09-03 11:37 . 2001-10-24 10:25 56320 ----a-w- c:\windows\system32\dvdplay.exe
2013-09-03 11:37 . 2001-10-24 10:25 13824 ----a-w- c:\windows\system32\wowfaxui.dll
2013-09-03 11:37 . 2001-10-24 10:25 86073 ----a-w- c:\windows\system32\usrfaxa.dll
2013-09-03 11:37 . 2001-10-24 10:25 8192 ----a-w- c:\windows\system32\streamci.dll
2013-09-03 11:37 . 2001-10-24 10:25 77890 ----a-w- c:\windows\system32\usrdpa.dll
2013-09-03 11:37 . 2001-10-24 10:25 77883 ----a-w- c:\windows\system32\usrrtosa.dll
2013-09-03 11:37 . 2001-10-24 10:25 72192 ----a-w- c:\windows\system32\sprio800.dll
2013-09-03 11:37 . 2001-10-24 10:25 70656 ----a-w- c:\windows\system32\sprio600.dll
2013-09-03 11:37 . 2001-10-24 10:25 69699 ----a-w- c:\windows\system32\usrcoina.dll
2013-09-03 11:37 . 2001-10-24 10:25 61500 ----a-w- c:\windows\system32\usrcntra.dll
2013-09-03 11:37 . 2001-10-24 10:25 53305 ----a-w- c:\windows\system32\usrlbva.dll
2013-09-03 11:37 . 2001-10-24 10:25 49211 ----a-w- c:\windows\system32\usrvpa.dll
2013-09-03 11:37 . 2001-10-24 10:25 49211 ----a-w- c:\windows\system32\usrsdpia.dll
2013-09-03 11:37 . 2001-10-24 10:25 49209 ----a-w- c:\windows\system32\usrv80a.dll
2013-09-03 11:37 . 2001-10-24 10:25 45116 ----a-w- c:\windows\system32\usrvoica.dll
2013-09-03 11:37 . 2001-10-24 10:25 41019 ----a-w- c:\windows\system32\usrsvpia.dll
2013-09-03 11:37 . 2001-10-24 10:25 323641 ----a-w- c:\windows\system32\usrdtea.dll
2013-09-03 11:37 . 2001-10-24 10:25 102457 ----a-w- c:\windows\system32\usrv42a.dll
2013-09-03 11:37 . 2001-10-24 10:25 69632 ----a-w- c:\windows\system32\spnike.dll
2013-09-03 11:37 . 2001-10-24 10:25 157696 ----a-w- c:\windows\system32\paqsp.dll
2013-09-03 11:37 . 2001-10-24 10:24 147968 ----a-w- c:\windows\system32\mdwmdmsp.dll
2013-09-03 11:37 . 2001-10-24 10:24 3200 ----a-w- c:\windows\system32\wowfax.dll
2013-09-03 11:37 . 2001-10-24 09:55 12160 ----a-w- c:\windows\system32\drivers\fsvga.sys
2013-09-03 11:37 . 2001-10-24 09:54 12160 ----a-w- c:\windows\system32\drivers\mouhid.sys
2013-09-03 11:37 . 2001-10-24 09:53 262528 ----a-w- c:\windows\system32\drivers\cinemst2.sys
2013-09-03 11:37 . 2001-08-18 04:37 61508 ----a-w- c:\windows\system32\usrprbda.exe
2013-09-03 11:37 . 2001-08-17 20:06 21376 ----a-w- c:\windows\system32\drivers\tsbvcap.sys
2013-09-03 11:37 . 2001-08-17 20:02 58112 ----a-w- c:\windows\system32\drivers\vdmindvd.sys
2013-09-03 11:37 . 2001-08-17 20:01 51712 ----a-w- c:\windows\system32\drivers\tosdvd.sys
2013-09-03 11:37 . 2001-08-17 19:52 18688 ----a-w- c:\windows\system32\drivers\cdaudio.sys
2013-09-03 11:37 . 2001-08-17 19:24 12032 ----a-w- c:\windows\system32\drivers\riodrv.sys
2013-09-03 11:37 . 2001-08-17 19:24 12032 ----a-w- c:\windows\system32\drivers\rio8drv.sys
2013-09-03 11:37 . 2001-08-17 19:24 12032 ----a-w- c:\windows\system32\drivers\nikedrv.sys
2013-09-03 11:37 . 2001-08-17 19:24 11776 ----a-w- c:\windows\system32\drivers\cpqdap01.sys
2013-09-03 11:31 . 2013-09-03 13:13 21504 ----a-w- c:\windows\pchealth\HelpCtr\Binaries\brpinfo.dll
2013-09-03 11:31 . 2013-09-03 11:31 152576 ----a-w- c:\windows\help\bnts.dll
2013-09-03 11:31 . 2013-09-03 11:31 601088 ----a-w- c:\windows\system32\autochk.exe
2013-09-03 11:30 . 2013-09-03 11:30 116224 ----a-w- c:\windows\apppatch\AcXtrnal.dll
2013-09-03 11:30 . 2013-09-03 11:30 245248 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-09-03 11:30 . 2013-09-03 11:30 471552 ----a-w- c:\windows\apppatch\AcLayers.dll
2013-09-03 11:30 . 2013-09-03 11:30 1852928 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-09-03 11:30 . 2013-09-03 11:30 141312 ----a-w- c:\windows\apppatch\AcLua.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[-] 2013-09-03 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\system32\drivers\atapi.sys
.
[-] 2013-09-03 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\asyncmac.sys
[-] 2013-09-03 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\system32\drivers\asyncmac.sys
.
[-] 2013-09-03 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\dllcache\beep.sys
[-] 2013-09-03 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\drivers\beep.sys
.
[-] 2008-04-14 . 1B6162FE7F66B1A71A4B70F941C4AA9B . 24576 . . [5.1.2600.5512] . . c:\windows\system32\drivers\kbdclass.sys
.
[-] 2013-09-03 . B5B1080D35974C0E718D64280761BCD5 . 182912 . . [5.1.2600.5588] . . c:\windows\system32\dllcache\ndis.sys
[-] 2013-09-03 . B5B1080D35974C0E718D64280761BCD5 . 182912 . . [5.1.2600.5588] . . c:\windows\system32\drivers\ndis.sys
.
[-] 2013-09-03 . AE8CAD8F28DB13B515A68510A539B0B8 . 576512 . . [5.1.2600.5782] . . c:\windows\system32\dllcache\ntfs.sys
[-] 2013-09-03 . AE8CAD8F28DB13B515A68510A539B0B8 . 576512 . . [5.1.2600.5782] . . c:\windows\system32\drivers\ntfs.sys
.
[-] 2013-09-03 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\dllcache\null.sys
[-] 2013-09-03 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\drivers\null.sys
.
[-] 2013-09-03 . 367DE8E5F638C091F49273144274F629 . 361600 . . [5.1.2600.5649] . . c:\windows\system32\dllcache\tcpip.sys
[-] 2013-09-03 . 367DE8E5F638C091F49273144274F629 . 361600 . . [5.1.2600.5649] . . c:\windows\system32\drivers\tcpip.sys
[-] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\SoftwareDistribution\Download\fe608cd8d2b8f77abaee7a69a696bcf7\SP3QFE\tcpip.sys
[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\SoftwareDistribution\Download\fe608cd8d2b8f77abaee7a69a696bcf7\SP3GDR\tcpip.sys
.
[-] 2013-09-03 . 39CE94B2B33771A3D95C70F41847F3F9 . 78336 . . [5.1.2600.5574] . . c:\windows\system32\browser.dll
[-] 2013-09-03 . 39CE94B2B33771A3D95C70F41847F3F9 . 78336 . . [5.1.2600.5574] . . c:\windows\system32\dllcache\browser.dll
[-] 2012-07-06 . 89E739BBA5F636297EA5B5F811189E06 . 78336 . . [5.1.2600.6260] . . c:\windows\SoftwareDistribution\Download\51b2c1b53ce24ec9466d326e8e32bda5\SP3GDR\browser.dll
[-] 2012-07-06 . 218B3BBB1FAD634A84FB1A1BB030D956 . 78336 . . [5.1.2600.6260] . . c:\windows\SoftwareDistribution\Download\51b2c1b53ce24ec9466d326e8e32bda5\SP3QFE\browser.dll
.
[-] 2013-09-03 . ED0A176354487CEED65B80A7148AB739 . 13312 . . [5.1.2600.5512] . . c:\windows\system32\lsass.exe
[-] 2013-09-03 . ED0A176354487CEED65B80A7148AB739 . 13312 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\lsass.exe
.
[-] 2013-09-03 . 72E1E9E2977BE08BDEEDB6D8FD9D4D40 . 198144 . . [5.1.2600.5512] . . c:\windows\system32\netman.dll
[-] 2013-09-03 . 72E1E9E2977BE08BDEEDB6D8FD9D4D40 . 198144 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\netman.dll
.
[-] 2013-09-03 11:34 . E7B375DFFB68A16659CA66474A280C47 . 806912 . . [2001.12.4414.700] . . c:\windows\system32\comres.dll
[-] 2013-09-03 11:34 . E7B375DFFB68A16659CA66474A280C47 . 806912 . . [2001.12.4414.700] . . c:\windows\system32\dllcache\comres.dll
.
[-] 2013-09-03 . 3AEDE727580F0A7C3929DD6526145759 . 408576 . . [6.7.2600.5796] . . c:\windows\system32\qmgr.dll
[-] 2013-09-03 . 3AEDE727580F0A7C3929DD6526145759 . 408576 . . [6.7.2600.5796] . . c:\windows\system32\bits\qmgr.dll
[-] 2013-09-03 . 3AEDE727580F0A7C3929DD6526145759 . 408576 . . [6.7.2600.5796] . . c:\windows\system32\dllcache\qmgr.dll
.
[-] 2013-09-03 . C0BD34A62508BA68F146E22CE45919F9 . 401408 . . [5.1.2600.5755] . . c:\windows\system32\rpcss.dll
[-] 2013-09-03 . C0BD34A62508BA68F146E22CE45919F9 . 401408 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\rpcss.dll
.
[-] 2013-09-03 . 4F40D16B2D5ED9E48A193CE468912FED . 111104 . . [5.1.2600.5922] . . c:\windows\system32\services.exe
[-] 2013-09-03 . 4F40D16B2D5ED9E48A193CE468912FED . 111104 . . [5.1.2600.5922] . . c:\windows\system32\dllcache\services.exe
.
[-] 2013-09-03 . CB1090BCA0E7B40D0B5B4E4D66531809 . 57856 . . [5.1.2600.5512] . . c:\windows\system32\spoolsv.exe
[-] 2013-09-03 . CB1090BCA0E7B40D0B5B4E4D66531809 . 57856 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\spoolsv.exe
[-] 2010-08-17 . 258DD5D4283FD9F9A7166BE9AE45CE73 . 58880 . . [5.1.2600.6024] . . c:\windows\SoftwareDistribution\Download\f6c525d95e98af6721a0244324b98925\SP3QFE\spoolsv.exe
[-] 2010-08-17 . 60784F891563FB1B767F70117FC2428F . 58880 . . [5.1.2600.6024] . . c:\windows\SoftwareDistribution\Download\f6c525d95e98af6721a0244324b98925\SP3GDR\spoolsv.exe
.
[-] 2013-09-03 . 4212BABCC4408B052193DABAD9A691AB . 509440 . . [5.1.2600.5788] . . c:\windows\system32\winlogon.exe
[-] 2013-09-03 . 4212BABCC4408B052193DABAD9A691AB . 509440 . . [5.1.2600.5788] . . c:\windows\system32\dllcache\winlogon.exe
.
[-] 2013-09-03 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ipsec.sys
[-] 2013-09-03 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ipsec.sys
.
[-] 2013-09-03 . 4F993463DC5F3F80D77A3D34D7BFBFED . 617472 . . [5.82] . . c:\windows\system32\comctl32.dll
[-] 2013-09-03 . 4F993463DC5F3F80D77A3D34D7BFBFED . 617472 . . [5.82] . . c:\windows\system32\dllcache\comctl32.dll
[-] 2013-09-03 . AEF3D788DBF40C7C4D204EA45EB0C505 . 921088 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a\comctl32.dll
[-] 2013-09-03 . 066FE6E93EBD781CF4FF9478D1C96C79 . 1054208 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5705_x-ww_36cfed49\comctl32.dll
[-] 2010-08-23 . E145ADD7DAEF759C4F5FB80A180A9C30 . 617472 . . [5.82] . . c:\windows\SoftwareDistribution\Download\91c0d00449fe57ed4a4c0c930c390f2f\SP3QFE\comctl32.dll
[-] 2010-08-23 . 8A72A30FDC803DC06755D3B36D966F31 . 1054208 . . [6.0] . . c:\windows\SoftwareDistribution\Download\91c0d00449fe57ed4a4c0c930c390f2f\asms\60\msft\windows\common\controls\comctl32.dll
[-] 2010-08-23 . 8A72A30FDC803DC06755D3B36D966F31 . 1054208 . . [6.0] . . c:\windows\SoftwareDistribution\Download\91c0d00449fe57ed4a4c0c930c390f2f\SP3QFE\asms\60\msft\windows\common\controls\comctl32.dll
.
[-] 2013-09-03 . F3AB0933CBD166D271992F411C27CCAF . 62464 . . [5.1.2600.5512] . . c:\windows\system32\cryptsvc.dll
[-] 2013-09-03 . F3AB0933CBD166D271992F411C27CCAF . 62464 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cryptsvc.dll
.
[-] 2013-09-03 11:38 . BE68EA4457E2E5717231CF91BE5448E0 . 253952 . . [2001.12.4414.706] . . c:\windows\system32\es.dll
[-] 2013-09-03 11:38 . BE68EA4457E2E5717231CF91BE5448E0 . 253952 . . [2001.12.4414.706] . . c:\windows\system32\dllcache\es.dll
.
[-] 2013-09-03 . 6C60CA8AC7470AC01CFD3D24C7283CD1 . 110080 . . [5.1.2600.5512] . . c:\windows\system32\imm32.dll
[-] 2013-09-03 . 6C60CA8AC7470AC01CFD3D24C7283CD1 . 110080 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\imm32.dll
.
[-] 2013-09-03 . 0D8F61460F84139BBE5E391D8DE18D9A . 990208 . . [5.1.2600.5781] . . c:\windows\system32\kernel32.dll
[-] 2013-09-03 . 0D8F61460F84139BBE5E391D8DE18D9A . 990208 . . [5.1.2600.5781] . . c:\windows\system32\dllcache\kernel32.dll
[-] 2012-10-03 . C067B66AE1C6E0C6F26509D084D3DE7F . 988672 . . [5.1.2600.6293] . . c:\windows\SoftwareDistribution\Download\d1caaea9eabd831c37615e9f72dfb345\SP3GDR\kernel32.dll
[-] 2012-10-03 . 2894EA9D89C83F65331E06AB94FB6225 . 990208 . . [5.1.2600.6293] . . c:\windows\SoftwareDistribution\Download\d1caaea9eabd831c37615e9f72dfb345\SP3QFE\kernel32.dll
.
[-] 2013-09-03 . 7FDE9FC15765E02B23E1756930165AD1 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\linkinfo.dll
[-] 2013-09-03 . 7FDE9FC15765E02B23E1756930165AD1 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\linkinfo.dll
.
[-] 2013-09-03 . C66BA7BD13C8FB8BEC4863B88641C763 . 22016 . . [5.1.2600.5512] . . c:\windows\system32\lpk.dll
[-] 2013-09-03 . C66BA7BD13C8FB8BEC4863B88641C763 . 22016 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\lpk.dll
.
[-] 2013-09-03 . 3F88F981AA7BC20744E0D2C699F500EF . 5953024 . . [8.00.6001.23019] . . c:\windows\system32\mshtml.dll
[-] 2013-09-03 . 3F88F981AA7BC20744E0D2C699F500EF . 5953024 . . [8.00.6001.23019] . . c:\windows\system32\dllcache\mshtml.dll
[-] 2013-07-26 . DAA7A967B7C40381F64D82F76FC1FF59 . 6017536 . . [8.00.6001.23515] . . c:\windows\SoftwareDistribution\Download\f8583a5df0fd92e1000715e8ca7bf082\SP3QFE\mshtml.dll
.
[-] 2013-09-03 . 711287C9E4D8A3187AF79B6CF20148D1 . 343040 . . [7.0.2600.5701] . . c:\windows\system32\msvcrt.dll
[-] 2013-09-03 . 711287C9E4D8A3187AF79B6CF20148D1 . 343040 . . [7.0.2600.5701] . . c:\windows\system32\dllcache\msvcrt.dll
[-] 2013-09-03 . 4200BE3808F6406DBE45A7B88DAE5035 . 322560 . . [7.0.2600.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.0.0_x-ww_2726e76a\msvcrt.dll
[-] 2013-09-03 . B94060543EAE86DE658355D925FA732C . 343040 . . [7.0.2600.5701] . . c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.2600.5701_x-ww_40d12c25\msvcrt.dll
.
[-] 2013-09-03 . 0D594D828829E1BC727B870899376B19 . 247296 . . [5.1.2600.5649] . . c:\windows\system32\mswsock.dll
[-] 2013-09-03 . 0D594D828829E1BC727B870899376B19 . 247296 . . [5.1.2600.5649] . . c:\windows\system32\dllcache\mswsock.dll
[-] 2008-06-20 . B6CEC406351EA5EF131416D5F52D006F . 247296 . . [5.1.2600.5625] . . c:\windows\SoftwareDistribution\Download\fe608cd8d2b8f77abaee7a69a696bcf7\SP3QFE\mswsock.dll
[-] 2008-06-20 . 39EE7C3BFBC64BA87CC8CF67386E814C . 247296 . . [5.1.2600.5625] . . c:\windows\SoftwareDistribution\Download\fe608cd8d2b8f77abaee7a69a696bcf7\SP3GDR\mswsock.dll
.
[-] 2013-09-03 . 6A5A974D868AE2F9AC96DC14F221A5EF . 407552 . . [5.1.2600.5755] . . c:\windows\system32\netlogon.dll
[-] 2013-09-03 . 6A5A974D868AE2F9AC96DC14F221A5EF . 407552 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\netlogon.dll
.
[-] 2013-09-03 . 9FA69781CAA7A1DA981A24F240A61A60 . 17408 . . [6.00.2900.5512] . . c:\windows\system32\powrprof.dll
[-] 2013-09-03 . 9FA69781CAA7A1DA981A24F240A61A60 . 17408 . . [6.00.2900.5512] . . c:\windows\system32\dllcache\powrprof.dll
.
[-] 2013-09-03 . 830CE8951C71F361D7D2F38416CC8BC1 . 185856 . . [5.1.2600.5512] . . c:\windows\system32\scecli.dll
[-] 2013-09-03 . 830CE8951C71F361D7D2F38416CC8BC1 . 185856 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\scecli.dll
.
[-] 2013-09-03 . 5EE949255BABC0B17C09DDB2E59E3878 . 5120 . . [5.1.2600.5512] . . c:\windows\system32\sfc.dll
[-] 2013-09-03 . 5EE949255BABC0B17C09DDB2E59E3878 . 5120 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\sfc.dll
.
[-] 2013-09-03 . 67E38B4A549833E02D4D1617B5DBC318 . 14848 . . [5.1.2600.5689] . . c:\windows\system32\svchost.exe
[-] 2013-09-03 . 67E38B4A549833E02D4D1617B5DBC318 . 14848 . . [5.1.2600.5689] . . c:\windows\system32\dllcache\svchost.exe
.
[-] 2013-09-03 . AF2A883CC63318A8BDA168BDD7AC80D9 . 249856 . . [5.1.2600.5654] . . c:\windows\system32\tapisrv.dll
[-] 2013-09-03 . AF2A883CC63318A8BDA168BDD7AC80D9 . 249856 . . [5.1.2600.5654] . . c:\windows\system32\dllcache\tapisrv.dll
.
[-] 2013-09-03 . A88D1807EF5370F4313C58D137D6F7B4 . 578560 . . [5.1.2600.5577] . . c:\windows\system32\user32.dll
[-] 2013-09-03 . A88D1807EF5370F4313C58D137D6F7B4 . 578560 . . [5.1.2600.5577] . . c:\windows\system32\dllcache\user32.dll
.
[-] 2013-09-03 . 7DC1830F22E7D275B438127B68030239 . 26112 . . [5.1.2600.5512] . . c:\windows\system32\userinit.exe
[-] 2013-09-03 . 7DC1830F22E7D275B438127B68030239 . 26112 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\userinit.exe
.
[-] 2013-09-03 . 72064DA077E9D6912F39438D97CC0C60 . 919040 . . [8.00.6001.23014] . . c:\windows\system32\wininet.dll
[-] 2013-09-03 . 72064DA077E9D6912F39438D97CC0C60 . 919040 . . [8.00.6001.23014] . . c:\windows\system32\dllcache\wininet.dll
[-] 2013-07-26 . 8C0D78203582B26DA604934949741ABB . 920064 . . [8.00.6001.23515] . . c:\windows\SoftwareDistribution\Download\f8583a5df0fd92e1000715e8ca7bf082\SP3QFE\wininet.dll
.
[-] 2013-09-03 . 951D473917C51F21496D914CF6E5DDD1 . 82432 . . [5.1.2600.5512] . . c:\windows\system32\ws2_32.dll
[-] 2013-09-03 . 951D473917C51F21496D914CF6E5DDD1 . 82432 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ws2_32.dll
.
[-] 2013-09-03 . 859F7735F199C90403340183A3DDFB78 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\ws2help.dll
[-] 2013-09-03 . 859F7735F199C90403340183A3DDFB78 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ws2help.dll
.
[-] 2013-09-03 . 8AB626E4E4B289646E11311E66FB0B88 . 1034240 . . [6.00.2900.5634] . . c:\windows\explorer.exe
[-] 2013-09-03 . 8AB626E4E4B289646E11311E66FB0B88 . 1034240 . . [6.00.2900.5634] . . c:\windows\system32\dllcache\explorer.exe
.
[-] 2013-09-03 . FDEB1D02CAE38665CBF114F44E6B997E . 147968 . . [5.1.2600.5512] . . c:\windows\regedit.exe
[-] 2013-09-03 . FDEB1D02CAE38665CBF114F44E6B997E . 147968 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\regedit.exe
.
[-] 2013-09-03 . 924A03096E662D7B413CF46706B809AC . 1288192 . . [5.1.2600.5692] . . c:\windows\system32\ole32.dll
[-] 2013-09-03 . 924A03096E662D7B413CF46706B809AC . 1288192 . . [5.1.2600.5692] . . c:\windows\system32\dllcache\ole32.dll
[-] 2011-11-01 . ED9B683C7A8BBAAAB9B377197D20832C . 1288192 . . [5.1.2600.6168] . . c:\windows\SoftwareDistribution\Download\f646014abed9e3c7a093f9010610b00f\SP3GDR\ole32.dll
[-] 2011-11-01 . B5EEF42BC72418EECC3DD3D93B2B5F34 . 1288704 . . [5.1.2600.6168] . . c:\windows\SoftwareDistribution\Download\f646014abed9e3c7a093f9010610b00f\SP3QFE\ole32.dll
[-] 2010-07-16 . 6D1A3A355CA2AC64D2D5BAEC25C16427 . 1287680 . . [5.1.2600.6010] . . c:\windows\SoftwareDistribution\Download\70eb2b0acdab79da474eb19525899a3a\SP3GDR\ole32.dll
[-] 2010-07-16 . C85BE0CF9C91EB64CECA1D639D71D4CC . 1288704 . . [5.1.2600.6010] . . c:\windows\SoftwareDistribution\Download\70eb2b0acdab79da474eb19525899a3a\SP3QFE\ole32.dll
.
[-] 2013-09-03 . F5B6A143739B894BF4F488CFFC3D3015 . 406016 . . [1.0420.2600.5512] . . c:\windows\system32\usp10.dll
[-] 2013-09-03 . F5B6A143739B894BF4F488CFFC3D3015 . 406016 . . [1.0420.2600.5512] . . c:\windows\system32\dllcache\usp10.dll
[-] 2013-07-10 . 8D8BC6DBA3BD9EB29B1590D5C567B77C . 406016 . . [1.0420.2600.6421] . . c:\windows\SoftwareDistribution\Download\c8e51218575ba34a7040b99586ee81fb\SP3QFE\usp10.dll
.
.
[-] 2013-09-03 . A756B8F0F7BAFBA6DFE39F7D169F2519 . 15360 . . [5.1.2600.5512] . . c:\windows\system32\ctfmon.exe
[-] 2013-09-03 . A756B8F0F7BAFBA6DFE39F7D169F2519 . 15360 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ctfmon.exe
.
[-] 2013-09-03 . 54A6BF743E0517528A5064CEAEB40EA7 . 135168 . . [6.00.2900.5853] . . c:\windows\system32\shsvcs.dll
[-] 2013-09-03 . 54A6BF743E0517528A5064CEAEB40EA7 . 135168 . . [6.00.2900.5853] . . c:\windows\system32\dllcache\shsvcs.dll
.
[-] 2013-09-03 . 627551A1011199BCE013D0F4B6CACECF . 4608 . . [5.1.2600.5512] . . c:\windows\system32\msimg32.dll
[-] 2013-09-03 . 627551A1011199BCE013D0F4B6CACECF . 4608 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\msimg32.dll
.
[-] 2013-09-03 . 35B91147124F64AC8081A2EDB9EA4DEE . 171008 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll
[-] 2013-09-03 . 35B91147124F64AC8081A2EDB9EA4DEE . 171008 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\srsvc.dll
.
[-] 2013-09-03 . 278A14BEDEF58687EAF8BEC056A78D8B . 13824 . . [5.1.2600.5512] . . c:\windows\system32\wscntfy.exe
[-] 2013-09-03 . 278A14BEDEF58687EAF8BEC056A78D8B . 13824 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\wscntfy.exe
.
[-] 2013-09-03 . EAA4BB9EDB3FB10CF8979FE65E63658F . 129024 . . [5.1.2600.5512] . . c:\windows\system32\xmlprov.dll
[-] 2013-09-03 . EAA4BB9EDB3FB10CF8979FE65E63658F . 129024 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\xmlprov.dll
.
[-] 2013-09-03 . AAD43A0B688335A38807CEEAC70DD3EE . 710144 . . [5.1.2600.5755] . . c:\windows\$NtUninstallKB2393802$\ntdll.dll
[-] 2010-12-09 . AB5CE6ECA795C0AAD55D6584293D7B51 . 713216 . . [5.1.2600.6055] . . c:\windows\SoftwareDistribution\Download\12a74340a66b7d58c4c319d3d76434da\SP3QFE\ntdll.dll
[-] 2010-12-09 . AB5CE6ECA795C0AAD55D6584293D7B51 . 713216 . . [5.1.2600.6055] . . c:\windows\system32\ntdll.dll
[-] 2010-12-09 . AB5CE6ECA795C0AAD55D6584293D7B51 . 713216 . . [5.1.2600.6055] . . c:\windows\system32\dllcache\ntdll.dll
[-] 2010-12-09 . 0A12141F94F9C7A478AF490454320E97 . 713216 . . [5.1.2600.6055] . . c:\windows\SoftwareDistribution\Download\12a74340a66b7d58c4c319d3d76434da\SP3GDR\ntdll.dll
.
[-] 2013-09-03 . 33A7D78E77D319522054625FD07B27AD . 177152 . . [5.1.2600.5768] . . c:\windows\system32\MSCTFIME.IME
[-] 2013-09-03 . 33A7D78E77D319522054625FD07B27AD . 177152 . . [5.1.2600.5768] . . c:\windows\system32\dllcache\msctfime.ime
.
[-] 2013-09-03 . 2EE99F67C930931EB404DADCE57E976E . 56320 . . [5.1.2600.5512] . . c:\windows\system32\eventlog.dll
[-] 2013-09-03 . 2EE99F67C930931EB404DADCE57E976E . 56320 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\eventlog.dll
.
[-] 2013-09-03 . 8F41FD1CC693054347C6FB7B0E618B07 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
.
[-] 2013-09-03 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ipsec.sys
[-] 2013-09-03 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ipsec.sys
.
[-] 2013-09-03 . 8F31505484A190D5B22274708799F4EC . 59904 . . [5.1.2600.5512] . . c:\windows\system32\regsvc.dll
[-] 2013-09-03 . 8F31505484A190D5B22274708799F4EC . 59904 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\regsvc.dll
.
[-] 2013-09-03 . 3FF232A7731621B8902D81D42418C93C . 192512 . . [5.1.2600.5512] . . c:\windows\system32\schedsvc.dll
[-] 2013-09-03 . 3FF232A7731621B8902D81D42418C93C . 192512 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\schedsvc.dll
.
[-] 2013-09-03 . BECD5271DC4E3B7C3D035F790FCBC1E5 . 71680 . . [5.1.2600.5512] . . c:\windows\system32\ssdpsrv.dll
[-] 2013-09-03 . BECD5271DC4E3B7C3D035F790FCBC1E5 . 71680 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ssdpsrv.dll
.
[-] 2013-09-03 . 0E43A7CF302D85273FC86F5FCA9A1909 . 297472 . . [5.1.2600.5815] . . c:\windows\system32\termsrv.dll
[-] 2013-09-03 . 0E43A7CF302D85273FC86F5FCA9A1909 . 297472 . . [5.1.2600.5815] . . c:\windows\system32\dllcache\termsrv.dll
.
[-] 2013-09-03 . 5FB6576F86C47C3CD3CE86E6F6D4EFE9 . 345088 . . [5.1.2600.5589] . . c:\windows\system32\hnetcfg.dll
[-] 2013-09-03 . 5FB6576F86C47C3CD3CE86E6F6D4EFE9 . 345088 . . [5.1.2600.5589] . . c:\windows\system32\dllcache\hnetcfg.dll
.
[-] 2013-09-03 . 6B8E7A90E576D4FE308F97C69060A171 . 171008 . . [5.1.2600.5512] . . c:\windows\system32\appmgmts.dll
[-] 2013-09-03 . 6B8E7A90E576D4FE308F97C69060A171 . 171008 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\appmgmts.dll
.
[-] 2013-09-03 . AFDFF022A01F0B11C776F0860C3B282F . 11776 . . [5.1.2600.0] . . c:\windows\system32\drivers\acpiec.sys
.
[-] 2013-09-03 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ip6fw.sys
[-] 2013-09-03 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ip6fw.sys
.
[-] 2013-09-03 11:43 . 7C3351F60B759D5D917E68342AE3307C . 927504 . . [4.1.0.61] . . c:\windows\system32\mfc40u.dll
[-] 2013-09-03 11:43 . 7C3351F60B759D5D917E68342AE3307C . 927504 . . [4.1.0.61] . . c:\windows\system32\dllcache\mfc40u.dll
[-] 2010-09-18 07:18 . 2BC3ED47ACB42F664D5D1D247F2553AA . 953856 . . [4.1.6151] . . c:\windows\SoftwareDistribution\Download\da9806174d8a9f6201610644d0773fd9\SP3QFE\mfc40u.dll
[-] 2010-09-18 06:53 . 9BB005DF755C4EDE048221DFD4A28A87 . 953856 . . [4.1.6151] . . c:\windows\SoftwareDistribution\Download\da9806174d8a9f6201610644d0773fd9\SP3GDR\mfc40u.dll
.
[-] 2013-09-03 . 221CD1C815B8A6B79389C3F5D1018DE8 . 33792 . . [5.1.2600.5512] . . c:\windows\system32\msgsvc.dll
[-] 2013-09-03 . 221CD1C815B8A6B79389C3F5D1018DE8 . 33792 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\msgsvc.dll
.
[-] 2013-09-03 11:44 . C51B4A5C05A5475708E3C81C7765B71D . 27136 . . [11.0.5721.5145] . . c:\windows\system32\mspmsnsv.dll
[-] 2013-09-03 11:44 . C51B4A5C05A5475708E3C81C7765B71D . 27136 . . [11.0.5721.5145] . . c:\windows\system32\dllcache\mspmsnsv.dll
.
[-] 2013-09-03 . DCC3D91A3DEDBBA9ECFFA6028D872CF5 . 2069120 . . [5.1.2600.5938] . . c:\windows\$NtUninstallKB2393802$\ntkrnlpa.exe
[-] 2013-07-04 . 44943B0F2B635BFEC8E0964EC84D27FC . 2072320 . . [5.1.2600.6419] . . c:\windows\SoftwareDistribution\Download\b3816a4a9b91d1c6d8b0b7f38c693941\SP3QFE\ntkrnlpa.exe
[-] 2012-04-11 . 1425572D094BF586C6898F90B2956A21 . 2071296 . . [5.1.2600.6206] . . c:\windows\SoftwareDistribution\Download\491cb576c5065ef182ff20f18654e8f4\SP3GDR\ntkrnlpa.exe
[-] 2012-04-11 . A016212FC91A7E9BA251D3C8BCFB4791 . 2071296 . . [5.1.2600.6206] . . c:\windows\SoftwareDistribution\Download\491cb576c5065ef182ff20f18654e8f4\SP3QFE\ntkrnlpa.exe
[-] 2010-12-09 . 40D176442F70573DBA0E05A7E40D3EBB . 2071552 . . [5.1.2600.6055] . . c:\windows\Driver Cache\i386\ntkrnlpa.exe
[-] 2010-12-09 . 40D176442F70573DBA0E05A7E40D3EBB . 2071552 . . [5.1.2600.6055] . . c:\windows\SoftwareDistribution\Download\12a74340a66b7d58c4c319d3d76434da\SP3QFE\ntkrnlpa.exe
[-] 2010-12-09 . 40D176442F70573DBA0E05A7E40D3EBB . 2071552 . . [5.1.2600.6055] . . c:\windows\system32\ntkrnlpa.exe
[-] 2010-12-09 . 40D176442F70573DBA0E05A7E40D3EBB . 2071552 . . [5.1.2600.6055] . . c:\windows\system32\dllcache\ntkrnlpa.exe
[-] 2010-12-09 . 4FE7B81BEDE8D37C9E3D95C99A56A34E . 2071552 . . [5.1.2600.6055] . . c:\windows\SoftwareDistribution\Download\12a74340a66b7d58c4c319d3d76434da\SP3GDR\ntkrnlpa.exe
.
[-] 2013-09-03 11:48 . 023DD70573D644F3D9C8B1258A7BFD08 . 435712 . . [5.1.2400.5512] . . c:\windows\system32\ntmssvc.dll
[-] 2013-09-03 11:48 . 023DD70573D644F3D9C8B1258A7BFD08 . 435712 . . [5.1.2400.5512] . . c:\windows\system32\dllcache\ntmssvc.dll
.
[-] 2013-09-03 . 651BD90DCEE5B7BDC74A2EB7C9266F9E . 186368 . . [5.1.2600.5512] . . c:\windows\system32\upnphost.dll
[-] 2013-09-03 . 651BD90DCEE5B7BDC74A2EB7C9266F9E . 186368 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\upnphost.dll
.
[-] 2013-09-03 . 8E009E7AC012823845D5F39A77F4A27F . 367616 . . [5.3.2600.5512] . . c:\windows\system32\dsound.dll
[-] 2013-09-03 . 8E009E7AC012823845D5F39A77F4A27F . 367616 . . [5.3.2600.5512] . . c:\windows\system32\dllcache\dsound.dll
.
[-] 2013-09-03 . 017025E9C4A84ED6DBDCDA1FDBCD8846 . 1689088 . . [5.03.2600.5601] . . c:\windows\system32\d3d9.dll
[-] 2013-09-03 . 017025E9C4A84ED6DBDCDA1FDBCD8846 . 1689088 . . [5.03.2600.5601] . . c:\windows\system32\dllcache\d3d9.dll
.
[-] 2013-09-03 . EDAD701F01FFD9B5799B8FCF1CF6BDA7 . 279552 . . [5.03.2600.5512] . . c:\windows\system32\ddraw.dll
[-] 2013-09-03 . EDAD701F01FFD9B5799B8FCF1CF6BDA7 . 279552 . . [5.03.2600.5512] . . c:\windows\system32\dllcache\ddraw.dll
.
[-] 2013-09-03 11:49 . 16C195EBC0A3EC35C48D0C2D9A346BAB . 84992 . . [5.1.2600.5512] . . c:\windows\system32\olepro32.dll
[-] 2013-09-03 11:49 . 16C195EBC0A3EC35C48D0C2D9A346BAB . 84992 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\olepro32.dll
.
[-] 2013-09-03 . 1682285F7C0934C764A0EBBC568153CA . 39936 . . [5.1.2600.5512] . . c:\windows\system32\perfctrs.dll
[-] 2013-09-03 . 1682285F7C0934C764A0EBBC568153CA . 39936 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\perfctrs.dll
.
[-] 2013-09-03 . 614F8186BDAB926E3B1D8927A4161B54 . 18944 . . [5.1.2600.5512] . . c:\windows\system32\version.dll
[-] 2013-09-03 . 614F8186BDAB926E3B1D8927A4161B54 . 18944 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\version.dll
.
[-] 2013-09-03 . 6B2312D847BA95F4E858CB4C3B5F51E1 . 2192256 . . [5.1.2600.5938] . . c:\windows\$NtUninstallKB2393802$\ntoskrnl.exe
[-] 2013-07-04 . D5B0470E7E1470C033EC4BB21F52770F . 2195712 . . [5.1.2600.6419] . . c:\windows\SoftwareDistribution\Download\b3816a4a9b91d1c6d8b0b7f38c693941\SP3QFE\ntoskrnl.exe
[-] 2012-04-11 . 4F74AF900C37B74B87D1167D2B09756B . 2194816 . . [5.1.2600.6206] . . c:\windows\SoftwareDistribution\Download\491cb576c5065ef182ff20f18654e8f4\SP3GDR\ntoskrnl.exe
[-] 2012-04-11 . 818751F31F07EA8723E17B017113BED8 . 2194816 . . [5.1.2600.6206] . . c:\windows\SoftwareDistribution\Download\491cb576c5065ef182ff20f18654e8f4\SP3QFE\ntoskrnl.exe
[-] 2010-12-09 . 8D222D8EF9B1951296F822583A044542 . 2194944 . . [5.1.2600.6055] . . c:\windows\Driver Cache\i386\ntoskrnl.exe
[-] 2010-12-09 . 8D222D8EF9B1951296F822583A044542 . 2194944 . . [5.1.2600.6055] . . c:\windows\SoftwareDistribution\Download\12a74340a66b7d58c4c319d3d76434da\SP3QFE\ntoskrnl.exe
[-] 2010-12-09 . 8D222D8EF9B1951296F822583A044542 . 2194944 . . [5.1.2600.6055] . . c:\windows\system32\ntoskrnl.exe
[-] 2010-12-09 . 8D222D8EF9B1951296F822583A044542 . 2194944 . . [5.1.2600.6055] . . c:\windows\system32\dllcache\ntoskrnl.exe
[-] 2010-12-09 . B6C5D4CBB22EEF31FAFBB76C2C6F3D99 . 2194944 . . [5.1.2600.6055] . . c:\windows\SoftwareDistribution\Download\12a74340a66b7d58c4c319d3d76434da\SP3GDR\ntoskrnl.exe
.
[-] 2013-09-03 . 35B91147124F64AC8081A2EDB9EA4DEE . 171008 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll
[-] 2013-09-03 . 35B91147124F64AC8081A2EDB9EA4DEE . 171008 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\srsvc.dll
.
[-] 2013-09-03 . DF2E8EA96391126977DA1B8AB6FC39FC . 177152 . . [5.1.2600.5635] . . c:\windows\system32\w32time.dll
[-] 2013-09-03 . DF2E8EA96391126977DA1B8AB6FC39FC . 177152 . . [5.1.2600.5635] . . c:\windows\system32\dllcache\w32time.dll
.
[-] 2013-09-03 . C1CDD9275F6A115BB0AE1D55D8D27BA6 . 334336 . . [5.1.2600.5512] . . c:\windows\system32\wiaservc.dll
[-] 2013-09-03 . C1CDD9275F6A115BB0AE1D55D8D27BA6 . 334336 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\wiaservc.dll
.
[-] 2013-09-03 . 160A1500DDBE42F8793E3AD341E4BEC4 . 18944 . . [5.1.2600.5512] . . c:\windows\system32\midimap.dll
[-] 2013-09-03 . 160A1500DDBE42F8793E3AD341E4BEC4 . 18944 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\midimap.dll
.
[-] 2013-09-03 . B26098F3DC08D841DE3D79C38ACCB807 . 7680 . . [5.1.2600.5512] . . c:\windows\system32\rasadhlp.dll
[-] 2013-09-03 . B26098F3DC08D841DE3D79C38ACCB807 . 7680 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\rasadhlp.dll
.
[-] 2013-09-03 . 8DBCEA7B495024A29FEF59B5FE709DAC . 19456 . . [5.1.2600.5512] . . c:\windows\system32\wshtcpip.dll
[-] 2013-09-03 . 8DBCEA7B495024A29FEF59B5FE709DAC . 19456 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\wshtcpip.dll
.
c:\windows\System32\ksuser.dll ... chybí !!
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 6"="c:\program files\IObit\Advanced SystemCare 6\ASCTray.exe" [2013-04-18 491840]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-07-18 995184]
"DWPersistentQueuedReporting"="c:\program files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE" [2007-02-25 437160]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2013-09-03 15360]
"KB976002-v5"="advpack.dll" [2013-09-03 128512]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2013-09-03 304128]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
.
R0 ffire;FlashFire;c:\windows\system32\drivers\ffire.sys [15.7.2009 21:39 10624]
R1 MpKsld77f095c;MpKsld77f095c;c:\documents and settings\All Users.WINDOWS\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{9D547789-565D-4E9D-936B-E06694CB69DB}\MpKsld77f095c.sys [6.9.2013 17:19 29904]
S1 DumpDrv;Crash Dump Driver;c:\windows\system32\drivers\dumpdrv.sys [3.9.2013 13:38 9472]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [4.9.2013 22:13 40776]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - 07454799
*NewlyCreated* - MPKSLD77F095C
*Deregistered* - 07454799
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-09-03 13:59 1177552 ----a-w- c:\program files\Google\Chrome\Application\29.0.1547.62\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-09-06 c:\windows\Tasks\ASC6_PerformanceMonitor.job
- c:\program files\IObit\Advanced SystemCare 6\Monitor.exe [2013-09-03 15:44]
.
2013-09-06 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-09-03 13:46]
.
2013-09-06 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-09-03 13:46]
c:\windows\Tasks\Microsoft Antimalware Scheduled Scan.job
c:\windows\Tasks\MpIdleTask.job
.
.
------- Doplňkový sken -------
.
TCP: DhcpNameServer = 192.168.100.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Notify-RailNotification - (no file)
AddRemove-{0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2487367 - c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe
AddRemove-{0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2656351 - c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe
AddRemove-{0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2742595 - c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe
AddRemove-{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2604121 - c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe
AddRemove-{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2656351 - c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe
AddRemove-{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2729449 - c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe
AddRemove-{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2742595 - c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe
AddRemove-{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2789642 - c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe
AddRemove-{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2804576 - c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe
AddRemove-{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2832407 - c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe
AddRemove-{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2840628v2 - c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-09-06 18:42
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Celkový čas: 2013-09-06 18:55:31
ComboFix-quarantined-files.txt 2013-09-06 16:55
.
Před spuštěním: Volných bajtů: 27 088 441 344
Po spuštění: Volných bajtů: 27 063 263 232
.
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - C59102EA14A662020EB144F388B7DC98
413FC2A0C716421B3158746D63736515

f.dominik · Příspěvekod **f.dominik** » 06 zář 2013 20:30

Dalsi ukoly?:-)

Příspěvekod **jaro3** » 07 zář 2013 10:18

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
c:\windows\_default.pif

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/

Stáhni si Memtest:

Do políčka vlož největší velikost Tvé jednotlivé paměti RAM (256,512 nebo 1024,2048) dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.

Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.

f.dominik · Příspěvekod **f.dominik** » 07 zář 2013 10:41

Ikdyz jsem odkryl ty skryte soubory v ty slozce (windows) mam jen _default.bat to .pif tam nemam

Příspěvekod **memphisto** » 07 zář 2013 11:10

Zkus nbatvrdo nakopírovat tu cestu do okýnka pro test

f.dominik · Příspěvekod **f.dominik** » 07 zář 2013 13:42

Ztracim nadeji,kaslu na to uz mi nejde zapnout ani windows a jelikot uz u sebe nemam cd-rom win xp uz windows nenahodim nejde to spustit ani v nouzovem rezimu.. Aledekuju Vam za vase rady:-)

Příspěvekod **memphisto** » 07 zář 2013 17:17

Ono taky ty problémy nemusí být způsobeny jenom viry, ale taky můžeš mít vadný disk. Tam si potom reinstalem Windows nepomůžeš...

Po reinstalaci win xp - neskutečně pomalý(start,i postartu) Vyřešeno

Re: Po reinstalaci win xp - neskutečně pomalý(start,i postar

Re: Po reinstalaci win xp - neskutečně pomalý(start,i postar

Re: Po reinstalaci win xp - neskutečně pomalý(start,i postar

Re: Po reinstalaci win xp - neskutečně pomalý(start,i postar

Re: Po reinstalaci win xp - neskutečně pomalý(start,i postar

Re: Po reinstalaci win xp - neskutečně pomalý(start,i postar

Re: Po reinstalaci win xp - neskutečně pomalý(start,i postar

Re: Po reinstalaci win xp - neskutečně pomalý(start,i postar

Re: Po reinstalaci win xp - neskutečně pomalý(start,i postar

Re: Po reinstalaci win xp - neskutečně pomalý(start,i postar

Re: Po reinstalaci win xp - neskutečně pomalý(start,i postar

Re: Po reinstalaci win xp - neskutečně pomalý(start,i postar

Kdo je online