Terminál Fórum - Téma megtekintése

Megválaszolatlan hozzászólások | Aktív témák

Pontos idő: szomb. máj. 18, 2024 0:30

STELL Segit

Moderátorok: Wiki, Moderátorok

Oldal: 6 / 16

[ 774 hozzászólás ]

Oldal Előző 1 ... 3, 4, 5, 6, 7, 8, 9 ... 16 Következő

Nyomtatóbarát verzió

Előző téma | Következő téma

STELL Segit

Szerző	Üzenet
stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit Telepitsd le a geprol ezt a féket, Lavasoft Ad-Aware Ez mar csak a Muzeumba valo. Nevezd att a combofix ikonjat uninstall es futtasd, klik,ok,ok,ok, A combofix letelepitodik a geprol, es ird meg mi a hejzet a geppel.
csüt. jan. 24, 2013 15:11

dori0227 ezüst tag Csatlakozott: pén. jan. 18, 2013 22:27 Hozzászólások: 57	Re: STELL Segit ComboFix 13-01-24.01 - Anita 013.01.24. 14:50:47.2.1 - x86 Microsoft Windows XP Professional 5.1.2600.3.1250.36.1038.18.512.255 [GMT 1:00] Running from: c:\documents and settings\Anita\Asztal\ComboFix.exe Command switches used :: c:\documents and settings\Anita\Asztal\CFScript.txt . FILE :: "c:\documents and settings\All Users\Start Menu\Programs\Indítópult\Exif Launcher S.lnk" "c:\windows\Tasks\Ad-Aware Update (Weekly).job" . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Legacy_99662118 . . ((((((((((((((((((((((((( Files Created from 2012-12-24 to 2013-01-24 ))))))))))))))))))))))))))))))) . . 2013-01-18 18:41 . 2013-01-18 18:41 -------- d-----w- c:\windows\l2schemas 2013-01-18 18:41 . 2013-01-18 18:41 -------- d-----w- c:\windows\system32\hu 2013-01-18 18:41 . 2013-01-18 18:41 -------- d-----w- c:\windows\system32\bits 2013-01-18 17:34 . 2013-01-18 17:34 223128 ----a-w- c:\windows\system32\drivers\dtscsi.sys 2013-01-18 17:34 . 2013-01-18 17:34 -------- d-----w- c:\program files\DAEMON Tools 2013-01-18 16:50 . 2013-01-18 16:50 367437 ----a-w- c:\windows\Need For Speed_ Underground 2 Eltávolító.exe 2013-01-18 16:41 . 2013-01-18 16:42 -------- d-----w- c:\documents and settings\Anita\Local Settings\Application Data\NFS Underground 2 2013-01-18 16:41 . 2013-01-18 16:41 -------- d-----w- c:\program files\Common Files\DirectX 2013-01-18 16:31 . 2013-01-18 16:31 -------- d-----w- c:\program files\EA GAMES 2013-01-16 15:17 . 2013-01-16 15:17 -------- d-----w- c:\documents and settings\Anita\Application Data\Malwarebytes 2013-01-16 15:17 . 2013-01-16 15:17 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2013-01-16 15:17 . 2013-01-16 15:17 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2013-01-16 15:17 . 2011-12-10 14:24 20464 ----a-w- c:\windows\system32\drivers\mbam.sys . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-01-18 16:26 . 2009-06-06 13:20 428088 ----a-w- c:\windows\system32\drivers\sptd.sys . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "H/PC Connection Agent"="c:\progra~1\MI3AA1~1\wcescomm.exe" [2006-11-13 1289000] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Domino"="c:\windows\Domino.exe" [2006-08-18 49152] "BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] . c:\documents and settings\All Users\Start Menu\Programs\Indítópult\ Exif Launcher S.lnk - c:\program files\FinePixViewerS\QuickDCF2.exe [2009-9-6 303104] . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service] @="Service" . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Indítópult^PCSuiteForNokiaN-Gage Detect.lnk] path=c:\documents and settings\All Users\Start Menu\Programs\Indítópult\PCSuiteForNokiaN-Gage Detect.lnk backup=c:\windows\pss\PCSuiteForNokiaN-Gage Detect.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Indítópult^PCSuiteForNokiaN-Gage TS.lnk] path=c:\documents and settings\All Users\Start Menu\Programs\Indítópult\PCSuiteForNokiaN-Gage TS.lnk backup=c:\windows\pss\PCSuiteForNokiaN-Gage TS.lnkCommon Startup . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationAgent] 2008-04-14 16:02 110592 ----a-w- c:\windows\system32\bthprops.cpl . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate] 2010-09-16 20:04 1164584 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] 2010-04-16 21:11 3872080 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nokia Tray Application] 2002-10-22 06:52 598016 ----a-w- c:\program files\Common Files\Nokia\NCLTools\NclTray.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ServiceLayer] 2002-10-16 06:43 69632 ----a-w- c:\program files\Common Files\Nokia\Services\ServiceLayer.exe . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\ASUS\\AsusUpdate\\Update.exe"= "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "c:\program files\Microsoft ActiveSync\rapimgr.exe"= c:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager "c:\program files\Microsoft ActiveSync\wcescomm.exe"= c:\program files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager "c:\program files\Microsoft ActiveSync\WCESMgr.exe"= c:\program files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application "c:\\Program Files\\Messenger\\msmsgs.exe"= "c:\\Program Files\\Intuwave\\Shared\\mRouterRunTime\\mRouterRuntime.exe"= "c:\\Program Files\\iMesh Applications\\iMesh\\iMesh.exe"= "c:\\windows\\temp\\nula.exe"= NVIDIA Monitoring "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service . R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2010.02.24. 17:20 64288] R0 sptd;sptd;\SystemRoot\\SystemRoot\System32\Drivers\sptd.sys --> \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [?] S3 ASUSHWIO;ASUSHWIO;\??\c:\windows\system32\drivers\ASUSHWIO.sys --> c:\windows\system32\drivers\ASUSHWIO.sys [?] S3 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [2009.11.12. 11:48 1355968] . --- Other Services/Drivers In Memory --- . NewlyCreated - WS2IFSL . [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2013-01-12 15:26 1606760 ----a-w- c:\program files\Google\Chrome\Application\24.0.1312.52\Installer\setup.exe . Contents of the 'Scheduled Tasks' folder . 2013-01-16 c:\windows\Tasks\Ad-Aware Update (Weekly).job - c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-11-12 15:19] . 2013-01-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-11-11 14:21] . 2013-01-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-11-11 14:21] . . ------- Supplementary Scan ------- . uStart Page = hxxp://www.startlap.hu/ uSearchURL,(Default) = hxxp://toolbar.ask.com/toolbarv/askRedi ... t=&gc=1&q=%s IE: E&xportálás a Microsoft Excel programba - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 IE: Free YouTube Download - c:\documents and settings\Anita\Application Data\DVDVideoSoftIEHelpers\freeyoutubedownload.htm IE: Free YouTube to MP3 Converter - c:\documents and settings\Anita\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm TCP: DhcpNameServer = 213.46.246.54 213.46.246.53 FF - ProfilePath - c:\documents and settings\Anita\Application Data\Mozilla\Firefox\Profiles\eiu80pma.default\ FF - prefs.js: browser.search.selectedEngine - Yahoo FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: Java Console: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b} FF - Ext: Free YouTube Download (Free Studio) Menu: {ACAA314B-EEBA-48e4-AD47-84E31C44796C} - %profile%\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension . . ************************************************************************ . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2013-01-24 14:58 Windows 5.1.2600 Szervizcsomag 3 NTFS . scanning hidden processes ... . scanning hidden autostart entries ... . scanning hidden files ... . scan completed successfully hidden files: 0 . ********************************************************************** . --------------------- DLLs Loaded Under Running Processes --------------------- . - - - - - - - > 'winlogon.exe'(540) c:\windows\system32\Ati2evxx.dll . - - - - - - - > 'explorer.exe'(3784) c:\windows\system32\WININET.dll c:\windows\system32\webcheck.dll . ------------------------ Other Running Processes ------------------------ . c:\windows\system32\Ati2evxx.exe c:\windows\system32\Ati2evxx.exe c:\windows\system32\LEXBCES.EXE c:\windows\system32\LEXPPS.EXE c:\windows\system32\rundll32.exe c:\progra~1\MI3AA1~1\rapimgr.exe c:\program files\Java\jre6\bin\jqs.exe c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe c:\program files\Analog Devices\SoundMAX\SMAgent.exe c:\windows\system32\wscntfy.exe . ************************************************************************ . Completion time: 2013-01-24 15:01:36 - machine was rebooted ComboFix-quarantined-files.txt 2013-01-24 14:01 ComboFix2.txt 2013-01-24 13:24 . Pre-Run: 7 983 288 320 bájt szabad Post-Run: 7 904 063 488 bájt szabad . - - End Of File - - 517743CEE558FB0CACCEAF3C76AFA678
csüt. jan. 24, 2013 15:02

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit aha, no ok, akkor csináld amit kell.
csüt. jan. 24, 2013 14:45

dori0227 ezüst tag Csatlakozott: pén. jan. 18, 2013 22:27 Hozzászólások: 57	Re: STELL Segit hát az egy versenyautós játék
csüt. jan. 24, 2013 14:43

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit Ez mi a csoda lenne?? c:\windows\Need For Speed_ Underground 2 Eltávolító.exe Kinyitunk - Notepadot (Jegyzetfüzetet)igy: Start>futtatás>beírod: notepad és bemásolod- a Kód: címszó alatt található zöld textet(Kód: szó nélkül), aztán a notepadba beillesztett textet elmentjük scriptnek az asztalra , úgy:- Fájl>Mentés Másként>Fájlnév>CFScript.txt>Fájl típusa>Minden fájl>Mentés.(Ásztálra),.Kész, az astalon lévő CFScript txt húzzunk rá a ComboFix ikonnyara. Es mostan megcsinalod eztett: A naplojat majd tedd ide. Kód: KILLALL:: Registry:: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"=- "Adobe Reader Speed Launcher"=- "DAEMON Tools"=- "Smapp"=- File:: c:\documents and settings\All Users\Start Menu\Programs\Indítópult\Exif Launcher S.lnk c:\windows\Tasks\Ad-Aware Update (Weekly).job Driver:: 99662118 DDS:: uSearchURL,(Default) = hxxp://toolbar.ask.com/toolbarv/askRedi ... t=&gc=1&q=%s ClearJavaCache::
csüt. jan. 24, 2013 14:39

dori0227 ezüst tag Csatlakozott: pén. jan. 18, 2013 22:27 Hozzászólások: 57	Re: STELL Segit ComboFix 13-01-24.01 - Anita 013.01.24. 14:14:52.1.1 - x86 Microsoft Windows XP Professional 5.1.2600.3.1250.36.1038.18.512.264 [GMT 1:00] Running from: c:\documents and settings\Anita\Asztal\ComboFix.exe . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\documents and settings\Anita\WINDOWS c:\windows\msmqinst.log c:\windows\unin0411.exe . . ((((((((((((((((((((((((( Files Created from 2012-12-24 to 2013-01-24 ))))))))))))))))))))))))))))))) . . 2013-01-18 18:41 . 2013-01-18 18:41 -------- d-----w- c:\windows\l2schemas 2013-01-18 18:41 . 2013-01-18 18:41 -------- d-----w- c:\windows\system32\hu 2013-01-18 18:41 . 2013-01-18 18:41 -------- d-----w- c:\windows\system32\bits 2013-01-18 17:34 . 2013-01-18 17:34 223128 ----a-w- c:\windows\system32\drivers\dtscsi.sys 2013-01-18 17:34 . 2013-01-18 17:34 -------- d-----w- c:\program files\DAEMON Tools 2013-01-18 16:50 . 2013-01-18 16:50 367437 ----a-w- c:\windows\Need For Speed_ Underground 2 Eltávolító.exe 2013-01-18 16:41 . 2013-01-18 16:42 -------- d-----w- c:\documents and settings\Anita\Local Settings\Application Data\NFS Underground 2 2013-01-18 16:41 . 2013-01-18 16:41 -------- d-----w- c:\program files\Common Files\DirectX 2013-01-18 16:31 . 2013-01-18 16:31 -------- d-----w- c:\program files\EA GAMES 2013-01-16 15:17 . 2013-01-16 15:17 -------- d-----w- c:\documents and settings\Anita\Application Data\Malwarebytes 2013-01-16 15:17 . 2013-01-16 15:17 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2013-01-16 15:17 . 2013-01-16 15:17 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2013-01-16 15:17 . 2011-12-10 14:24 20464 ----a-w- c:\windows\system32\drivers\mbam.sys . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-01-18 16:26 . 2009-06-06 13:20 428088 ----a-w- c:\windows\system32\drivers\sptd.sys . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "H/PC Connection Agent"="c:\progra~1\MI3AA1~1\wcescomm.exe" [2006-11-13 1289000] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Smapp"="c:\program files\Analog Devices\SoundMAX\SMTray.exe" [2003-05-05 143360] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-06-06 148888] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792] "Domino"="c:\windows\Domino.exe" [2006-08-18 49152] "DAEMON Tools"="c:\program files\DAEMON Tools\daemon.exe" [2005-11-08 128920] "BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] . c:\documents and settings\All Users\Start Menu\Programs\Indítópult\ Exif Launcher S.lnk - c:\program files\FinePixViewerS\QuickDCF2.exe [2009-9-6 303104] . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service] @="Service" . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Indítópult^PCSuiteForNokiaN-Gage Detect.lnk] path=c:\documents and settings\All Users\Start Menu\Programs\Indítópult\PCSuiteForNokiaN-Gage Detect.lnk backup=c:\windows\pss\PCSuiteForNokiaN-Gage Detect.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Indítópult^PCSuiteForNokiaN-Gage TS.lnk] path=c:\documents and settings\All Users\Start Menu\Programs\Indítópult\PCSuiteForNokiaN-Gage TS.lnk backup=c:\windows\pss\PCSuiteForNokiaN-Gage TS.lnkCommon Startup . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationAgent] 2008-04-14 16:02 110592 ----a-w- c:\windows\system32\bthprops.cpl . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate] 2010-09-16 20:04 1164584 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] 2010-04-16 21:11 3872080 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nokia Tray Application] 2002-10-22 06:52 598016 ----a-w- c:\program files\Common Files\Nokia\NCLTools\NclTray.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ServiceLayer] 2002-10-16 06:43 69632 ----a-w- c:\program files\Common Files\Nokia\Services\ServiceLayer.exe . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\ASUS\\AsusUpdate\\Update.exe"= "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "c:\program files\Microsoft ActiveSync\rapimgr.exe"= c:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager "c:\program files\Microsoft ActiveSync\wcescomm.exe"= c:\program files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager "c:\program files\Microsoft ActiveSync\WCESMgr.exe"= c:\program files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application "c:\\Program Files\\Messenger\\msmsgs.exe"= "c:\\Program Files\\Intuwave\\Shared\\mRouterRunTime\\mRouterRuntime.exe"= "c:\\Program Files\\iMesh Applications\\iMesh\\iMesh.exe"= "c:\\windows\\temp\\nula.exe"= NVIDIA Monitoring "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service . R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2010.02.24. 17:20 64288] R0 sptd;sptd;\SystemRoot\\SystemRoot\System32\Drivers\sptd.sys --> \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [?] S3 ASUSHWIO;ASUSHWIO;\??\c:\windows\system32\drivers\ASUSHWIO.sys --> c:\windows\system32\drivers\ASUSHWIO.sys [?] . --- Other Services/Drivers In Memory --- . NewlyCreated - 99662118 Deregistered - 99662118 . [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2013-01-12 15:26 1606760 ----a-w- c:\program files\Google\Chrome\Application\24.0.1312.52\Installer\setup.exe . Contents of the 'Scheduled Tasks' folder . 2013-01-16 c:\windows\Tasks\Ad-Aware Update (Weekly).job - c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-11-12 15:19] . 2013-01-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-11-11 14:21] . 2013-01-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-11-11 14:21] . . ------- Supplementary Scan ------- . uStart Page = hxxp://www.startlap.hu/ uSearchURL,(Default) = hxxp://toolbar.ask.com/toolbarv/askRedi ... t=&gc=1&q=%s IE: E&xportálás a Microsoft Excel programba - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 IE: Free YouTube Download - c:\documents and settings\Anita\Application Data\DVDVideoSoftIEHelpers\freeyoutubedownload.htm IE: Free YouTube to MP3 Converter - c:\documents and settings\Anita\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm TCP: DhcpNameServer = 213.46.246.54 213.46.246.53 FF - ProfilePath - c:\documents and settings\Anita\Application Data\Mozilla\Firefox\Profiles\eiu80pma.default\ FF - prefs.js: browser.search.selectedEngine - Yahoo FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: Java Console: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b} FF - Ext: Free YouTube Download (Free Studio) Menu: {ACAA314B-EEBA-48e4-AD47-84E31C44796C} - %profile%\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension . - - - - ORPHANS REMOVED - - - - . Toolbar-Locked - (no file) MSConfigStartUp-DAEMON Tools Lite - c:\program files\DAEMON Tools Lite\daemon.exe . . . ************************************************************************ . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2013-01-24 14:21 Windows 5.1.2600 Szervizcsomag 3 NTFS . scanning hidden processes ... . scanning hidden autostart entries ... . scanning hidden files ... . scan completed successfully hidden files: 0 . ************************************************************************ . --------------------- DLLs Loaded Under Running Processes --------------------- . - - - - - - - > 'winlogon.exe'(540) c:\windows\system32\Ati2evxx.dll . Completion time: 2013-01-24 14:24:06 ComboFix-quarantined-files.txt 2013-01-24 13:24 . Pre-Run: 8 041 889 792 bájt szabad Post-Run: 8 003 698 688 bájt szabad . WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons UnsupportedDebug="do not select this" /debug multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional - magyar" /noexecute=optin /fastdetect . - - End Of File - - 19552B7FE885DEF3A58690C4238A709B
csüt. jan. 24, 2013 14:25

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit ok, johet a combofix, vard ki a naplojat, es tedd ide.
csüt. jan. 24, 2013 13:18

dori0227 ezüst tag Csatlakozott: pén. jan. 18, 2013 22:27 Hozzászólások: 57	Re: STELL Segit 3:14:33.0546 3808 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35 13:14:33.0750 3808 ============================================================ 13:14:33.0750 3808 Current date / time: 2013/01/24 13:14:33.0750 13:14:33.0750 3808 SystemInfo: 13:14:33.0750 3808 13:14:33.0750 3808 OS Version: 5.1.2600 ServicePack: 3.0 13:14:33.0750 3808 Product type: Workstation 13:14:33.0750 3808 ComputerName: ANCSA 13:14:33.0750 3808 UserName: Anita 13:14:33.0750 3808 Windows directory: C:\WINDOWS 13:14:33.0750 3808 System windows directory: C:\WINDOWS 13:14:33.0750 3808 Processor architecture: Intel x86 13:14:33.0750 3808 Number of processors: 1 13:14:33.0750 3808 Page size: 0x1000 13:14:33.0750 3808 Boot type: Normal boot 13:14:33.0750 3808 ============================================================ 13:14:34.0312 3808 Drive \Device\Harddisk0\DR0 - Size: 0x3A38A25E00 (232.88 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054 13:14:34.0312 3808 ============================================================ 13:14:34.0312 3808 \Device\Harddisk0\DR0: 13:14:34.0312 3808 MBR partitions: 13:14:34.0312 3808 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A962B1 13:14:34.0312 3808 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3A9632F, BlocksNum 0x9C41AD8 13:14:34.0328 3808 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xD6D7E46, BlocksNum 0xFAE887A 13:14:34.0328 3808 ============================================================ 13:14:34.0343 3808 C: <-> \Device\Harddisk0\DR0\Partition1 13:14:34.0375 3808 D: <-> \Device\Harddisk0\DR0\Partition2 13:14:34.0406 3808 E: <-> \Device\Harddisk0\DR0\Partition3 13:14:34.0406 3808 ============================================================ 13:14:34.0406 3808 Initialize success 13:14:34.0406 3808 ============================================================ 13:14:38.0531 3836 ============================================================ 13:14:38.0531 3836 Scan started 13:14:38.0531 3836 Mode: Manual; 13:14:38.0531 3836 ============================================================ 13:14:38.0953 3836 ================ Scan system memory ======================== 13:14:38.0953 3836 System memory - ok 13:14:38.0968 3836 ================ Scan services ============================= 13:14:39.0093 3836 Abiosdsk - ok 13:14:39.0109 3836 abp480n5 - ok 13:14:39.0156 3836 [ 5482FF197E59B4CA97CCB1B4740A2949 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys 13:14:39.0156 3836 ACPI - ok 13:14:39.0187 3836 [ 582C901174A7F0733C6FE41C37C9A80B ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys 13:14:39.0187 3836 ACPIEC - ok 13:14:39.0203 3836 adpu160m - ok 13:14:39.0234 3836 [ 11C04B17ED2ABBB4833694BCD644AC90 ] aeaudio C:\WINDOWS\system32\drivers\aeaudio.sys 13:14:39.0250 3836 aeaudio - ok 13:14:39.0265 3836 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys 13:14:39.0281 3836 aec - ok 13:14:39.0312 3836 [ 7E775010EF291DA96AD17CA4B17137D7 ] AFD C:\WINDOWS\System32\drivers\afd.sys 13:14:39.0328 3836 AFD - ok 13:14:39.0343 3836 Aha154x - ok 13:14:39.0343 3836 aic78u2 - ok 13:14:39.0359 3836 aic78xx - ok 13:14:39.0406 3836 [ 30A9D14627F79DA00907FD78472F2A2E ] Alerter C:\WINDOWS\system32\alrsvc.dll 13:14:39.0406 3836 Alerter - ok 13:14:39.0437 3836 [ 2AC9E97D0E32250098EFC9AC937CA097 ] ALG C:\WINDOWS\System32\alg.exe 13:14:39.0437 3836 ALG - ok 13:14:39.0453 3836 AliIde - ok 13:14:39.0468 3836 amsint - ok 13:14:39.0500 3836 [ 0326A8C356DD42048F61CA6128D0B32F ] AppMgmt C:\WINDOWS\System32\appmgmts.dll 13:14:39.0500 3836 AppMgmt - ok 13:14:39.0562 3836 [ 275521A350A6F770FEA954D5B8B2D35B ] AR5211 C:\WINDOWS\system32\DRIVERS\ar5211.sys 13:14:39.0562 3836 AR5211 - ok 13:14:39.0578 3836 asc - ok 13:14:39.0593 3836 asc3350p - ok 13:14:39.0609 3836 asc3550 - ok 13:14:39.0703 3836 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe 13:14:39.0718 3836 aspnet_state - ok 13:14:39.0734 3836 ASUSHWIO - ok 13:14:39.0765 3836 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys 13:14:39.0765 3836 AsyncMac - ok 13:14:39.0812 3836 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys 13:14:39.0812 3836 atapi - ok 13:14:39.0828 3836 Atdisk - ok 13:14:39.0859 3836 [ A2EAEB497CA29ECAEAF0DF66AD85C57D ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe 13:14:39.0875 3836 Ati HotKey Poller - ok 13:14:39.0906 3836 [ 312A17DFF710A0F4E6D4DD1D52EAD1A8 ] ATI Smart C:\WINDOWS\system32\ati2sgag.exe 13:14:39.0906 3836 ATI Smart - ok 13:14:39.0968 3836 [ 492BD2A5F65F218D4EDE5764A3BB67E9 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys 13:14:40.0000 3836 ati2mtag - ok 13:14:40.0046 3836 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys 13:14:40.0046 3836 Atmarpc - ok 13:14:40.0078 3836 [ 8C5F1FBD05F9ACCB319234F52ABD58A6 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll 13:14:40.0078 3836 AudioSrv - ok 13:14:40.0109 3836 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys 13:14:40.0109 3836 audstub - ok 13:14:40.0140 3836 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys 13:14:40.0140 3836 Beep - ok 13:14:40.0171 3836 [ 15C6AF3ABC00614E6D0031A9C0C4650D ] BITS C:\WINDOWS\system32\qmgr.dll 13:14:40.0187 3836 BITS - ok 13:14:40.0203 3836 BlueletAudio - ok 13:14:40.0234 3836 [ C95FDB8CE9CC31632C044293DC0DDC49 ] Browser C:\WINDOWS\System32\browser.dll 13:14:40.0234 3836 Browser - ok 13:14:40.0265 3836 [ B279426E3C0C344893ED78A613A73BDE ] BthEnum C:\WINDOWS\system32\DRIVERS\BthEnum.sys 13:14:40.0281 3836 BthEnum - ok 13:14:40.0296 3836 [ 80602B8746D3738F5886CE3D67EF06B6 ] BthPan C:\WINDOWS\system32\DRIVERS\bthpan.sys 13:14:40.0296 3836 BthPan - ok 13:14:40.0343 3836 [ 3EFFD361BA52380246B7A073F73AEC1F ] BTHPORT C:\WINDOWS\system32\Drivers\BTHport.sys 13:14:40.0343 3836 BTHPORT - ok 13:14:40.0375 3836 [ 3C5503F3FD99640872CCA0DB0133B86A ] BthServ C:\WINDOWS\System32\bthserv.dll 13:14:40.0390 3836 BthServ - ok 13:14:40.0406 3836 [ 61364CD71EF63B0F038B7E9DF00F1EFA ] BTHUSB C:\WINDOWS\system32\Drivers\BTHUSB.sys 13:14:40.0406 3836 BTHUSB - ok 13:14:40.0437 3836 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys 13:14:40.0437 3836 cbidf2k - ok 13:14:40.0468 3836 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 13:14:40.0484 3836 CCDECODE - ok 13:14:40.0484 3836 cd20xrnt - ok 13:14:40.0515 3836 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys 13:14:40.0515 3836 Cdaudio - ok 13:14:40.0546 3836 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys 13:14:40.0546 3836 Cdfs - ok 13:14:40.0562 3836 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys 13:14:40.0578 3836 Cdrom - ok 13:14:40.0578 3836 Changer - ok 13:14:40.0625 3836 [ 02F5DEACF251E36FD49CF7988FF13A51 ] CiSvc C:\WINDOWS\system32\cisvc.exe 13:14:40.0625 3836 CiSvc - ok 13:14:40.0640 3836 [ B2E62EC6450E0ECE720D3FEF32FCF10C ] ClipSrv C:\WINDOWS\system32\clipsrv.exe 13:14:40.0640 3836 ClipSrv - ok 13:14:40.0671 3836 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 13:14:40.0718 3836 clr_optimization_v2.0.50727_32 - ok 13:14:40.0734 3836 CmdIde - ok 13:14:40.0750 3836 COMSysApp - ok 13:14:40.0765 3836 Cpqarray - ok 13:14:40.0812 3836 [ 13CB7FC794D005D60712FDD9F1362235 ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll 13:14:40.0812 3836 CryptSvc - ok 13:14:40.0828 3836 dac2w2k - ok 13:14:40.0843 3836 dac960nt - ok 13:14:40.0875 3836 [ 293D96B9A523C8D3A5F3EE448405388E ] DcomLaunch C:\WINDOWS\system32\rpcss.dll 13:14:40.0890 3836 DcomLaunch - ok 13:14:40.0921 3836 [ 88A08B697755D99FFCF229E3E773B21E ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll 13:14:40.0921 3836 Dhcp - ok 13:14:40.0953 3836 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys 13:14:40.0953 3836 Disk - ok 13:14:40.0968 3836 dmadmin - ok 13:14:41.0000 3836 [ AE717BE311722CEEBD9A27B57757A123 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys 13:14:41.0015 3836 dmboot - ok 13:14:41.0031 3836 [ 66B7462AD4844052D4A6CBEA3AA486A0 ] dmio C:\WINDOWS\system32\drivers\dmio.sys 13:14:41.0031 3836 dmio - ok 13:14:41.0062 3836 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys 13:14:41.0062 3836 dmload - ok 13:14:41.0109 3836 [ EB86919019E3A7FCE1DED4F89EB32E54 ] dmserver C:\WINDOWS\System32\dmserver.dll 13:14:41.0109 3836 dmserver - ok 13:14:41.0125 3836 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys 13:14:41.0125 3836 DMusic - ok 13:14:41.0156 3836 [ A8E952263DED30FD5BD91E085A95FF98 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll 13:14:41.0156 3836 Dnscache - ok 13:14:41.0187 3836 [ CDED26AA86A41D839CF00E96614C3B9F ] Dot3svc C:\WINDOWS\System32\dot3svc.dll 13:14:41.0187 3836 Dot3svc - ok 13:14:41.0203 3836 dpti2o - ok 13:14:41.0250 3836 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys 13:14:41.0250 3836 drmkaud - ok 13:14:41.0281 3836 [ 6461E57BB51A848AAE26F52427B7CF9E ] dtscsi C:\WINDOWS\System32\Drivers\dtscsi.sys 13:14:41.0281 3836 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\dtscsi.sys. md5: 6461E57BB51A848AAE26F52427B7CF9E 13:14:41.0281 3836 dtscsi ( LockedFile.Multi.Generic ) - warning 13:14:41.0281 3836 dtscsi - detected LockedFile.Multi.Generic (1) 13:14:41.0328 3836 [ D5E22253A2B7329A93631282FD336615 ] EapHost C:\WINDOWS\System32\eapsvc.dll 13:14:41.0328 3836 EapHost - ok 13:14:41.0359 3836 [ BF7E7D1F855ED30A0D754B72C2304123 ] ERSvc C:\WINDOWS\System32\ersvc.dll 13:14:41.0359 3836 ERSvc - ok 13:14:41.0390 3836 [ 9CEDBFBE08BC1C4F35F74B8F96E0289A ] Eventlog C:\WINDOWS\system32\services.exe 13:14:41.0390 3836 Eventlog - ok 13:14:41.0437 3836 [ A881F33B3188F5A38AA19043663E2F32 ] EventSystem C:\WINDOWS\system32\es.dll 13:14:41.0437 3836 EventSystem - ok 13:14:41.0453 3836 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys 13:14:41.0468 3836 Fastfat - ok 13:14:41.0500 3836 [ B5AD66D523FB3F5F0BAB3D8B623B5A51 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll 13:14:41.0500 3836 FastUserSwitchingCompatibility - ok 13:14:41.0531 3836 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys 13:14:41.0531 3836 Fdc - ok 13:14:41.0562 3836 [ 0986FCA8FD7A56D9F1628FE6EF321090 ] Fips C:\WINDOWS\system32\drivers\Fips.sys 13:14:41.0562 3836 Fips - ok 13:14:41.0593 3836 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys 13:14:41.0593 3836 Flpydisk - ok 13:14:41.0609 3836 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys 13:14:41.0625 3836 FltMgr - ok 13:14:41.0671 3836 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe 13:14:41.0671 3836 FontCache3.0.0.0 - ok 13:14:41.0703 3836 [ C6EE3A87FE609D3E1DB9DBD072A248DE ] fssfltr C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys 13:14:41.0703 3836 fssfltr - ok 13:14:41.0781 3836 [ 45B52394F9624237F33A8A3D73C0B221 ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe 13:14:41.0812 3836 fsssvc - ok 13:14:41.0828 3836 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys 13:14:41.0828 3836 Fs_Rec - ok 13:14:41.0843 3836 [ 44225407F69666099C4D4C6BC9CD804D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys 13:14:41.0859 3836 Ftdisk - ok 13:14:41.0859 3836 [ 065639773D8B03F33577F6CDAEA21063 ] gameenum C:\WINDOWS\system32\DRIVERS\gameenum.sys 13:14:41.0875 3836 gameenum - ok 13:14:41.0890 3836 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys 13:14:41.0906 3836 Gpc - ok 13:14:41.0953 3836 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe 13:14:41.0953 3836 gupdate - ok 13:14:41.0968 3836 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe 13:14:41.0984 3836 gupdatem - ok 13:14:42.0031 3836 [ 744A3119989A6B2930CDF66A759D65CD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll 13:14:42.0031 3836 helpsvc - ok 13:14:42.0046 3836 HidServ - ok 13:14:42.0078 3836 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys 13:14:42.0078 3836 HidUsb - ok 13:14:42.0125 3836 [ 1322F13BBC291ADC31B5DCA438747175 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll 13:14:42.0125 3836 hkmsvc - ok 13:14:42.0140 3836 hpn - ok 13:14:42.0171 3836 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys 13:14:42.0187 3836 HTTP - ok 13:14:42.0203 3836 [ 08B50881BAFB64EA335D33C365E5C66D ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll 13:14:42.0203 3836 HTTPFilter - ok 13:14:42.0250 3836 [ 07853191B1BDEE5B39BE4CFCFE3B9AD4 ] hwdatacard C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys 13:14:42.0250 3836 hwdatacard - ok 13:14:42.0265 3836 i2omgmt - ok 13:14:42.0281 3836 i2omp - ok 13:14:42.0312 3836 [ D7947ECF17544CED478BD969939DB349 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys 13:14:42.0312 3836 i8042prt - ok 13:14:42.0375 3836 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 13:14:42.0390 3836 idsvc - ok 13:14:42.0406 3836 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys 13:14:42.0406 3836 Imapi - ok 13:14:42.0437 3836 [ 82911FEAED2529008424DA1D51A6651B ] ImapiService C:\WINDOWS\system32\imapi.exe 13:14:42.0437 3836 ImapiService - ok 13:14:42.0453 3836 ini910u - ok 13:14:42.0484 3836 IntelIde - ok 13:14:42.0515 3836 [ 5182797825B78FABA84F7A82603E212D ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys 13:14:42.0515 3836 intelppm - ok 13:14:42.0531 3836 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys 13:14:42.0531 3836 Ip6Fw - ok 13:14:42.0578 3836 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 13:14:42.0578 3836 IpFilterDriver - ok 13:14:42.0593 3836 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys 13:14:42.0593 3836 IpInIp - ok 13:14:42.0625 3836 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys 13:14:42.0625 3836 IpNat - ok 13:14:42.0671 3836 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys 13:14:42.0671 3836 IPSec - ok 13:14:42.0703 3836 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys 13:14:42.0703 3836 IRENUM - ok 13:14:42.0718 3836 [ 3685529CAA2B14C9632E85E265BA293B ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys 13:14:42.0734 3836 isapnp - ok 13:14:42.0781 3836 [ 890369AED0DDE1A98F09F7DC239CA2BD ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe 13:14:42.0781 3836 JavaQuickStarterService - ok 13:14:42.0828 3836 [ 51D3342D1A0C19605095405352BB009B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys 13:14:42.0828 3836 Kbdclass - ok 13:14:42.0859 3836 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys 13:14:42.0859 3836 kmixer - ok 13:14:42.0906 3836 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys 13:14:42.0906 3836 KSecDD - ok 13:14:42.0937 3836 [ 087418FA9583BEE3CEBCB80DEA4D3CDE ] lanmanserver C:\WINDOWS\System32\srvsvc.dll 13:14:42.0937 3836 lanmanserver - ok 13:14:42.0984 3836 [ 41FED582870A61667E3A4724049EAB4F ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll 13:14:42.0984 3836 lanmanworkstation - ok 13:14:43.0062 3836 [ 6DF2BE94D712753FB8D87495469B5262 ] Lavasoft Ad-Aware Service C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe 13:14:43.0093 3836 Lavasoft Ad-Aware Service - ok 13:14:43.0125 3836 [ 713CD5267ABFB86FE90A72E384E82A38 ] Lbd C:\WINDOWS\system32\DRIVERS\Lbd.sys 13:14:43.0125 3836 Lbd - ok 13:14:43.0140 3836 lbrtfdc - ok 13:14:43.0171 3836 [ 2B7005BD9E0966CCCF70AE9A5B9D2427 ] LexBceS C:\WINDOWS\system32\LEXBCES.EXE 13:14:43.0187 3836 LexBceS - ok 13:14:43.0218 3836 [ 5B56B702C586E0ECAB3F73D3A8B804F4 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll 13:14:43.0218 3836 LmHosts - ok 13:14:43.0250 3836 [ 05C44A00BC1F84AC9B959E0389B9F7F1 ] Messenger C:\WINDOWS\System32\msgsvc.dll 13:14:43.0250 3836 Messenger - ok 13:14:43.0265 3836 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys 13:14:43.0265 3836 mnmdd - ok 13:14:43.0296 3836 [ EB005CB40470CE2980AFFED53FE0C84F ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe 13:14:43.0312 3836 mnmsrvc - ok 13:14:43.0328 3836 [ 226B93EB15B1C819FA021A5167C5809D ] Modem C:\WINDOWS\system32\drivers\Modem.sys 13:14:43.0328 3836 Modem - ok 13:14:43.0359 3836 [ 705CAC1902DCD3E3181A199D7AD40D13 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys 13:14:43.0359 3836 Mouclass - ok 13:14:43.0390 3836 [ 6A79CB27D0E608A45638CD9468269A3E ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys 13:14:43.0390 3836 mouhid - ok 13:14:43.0406 3836 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys 13:14:43.0406 3836 MountMgr - ok 13:14:43.0421 3836 mraid35x - ok 13:14:43.0437 3836 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys 13:14:43.0453 3836 MRxDAV - ok 13:14:43.0484 3836 [ F3AEFB11ABC521122B67095044169E98 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 13:14:43.0500 3836 MRxSmb - ok 13:14:43.0531 3836 [ 95468A97BB0CABCA3BAA14D2F25ADF58 ] MSDTC C:\WINDOWS\system32\msdtc.exe 13:14:43.0531 3836 MSDTC - ok 13:14:43.0578 3836 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys 13:14:43.0578 3836 Msfs - ok 13:14:43.0593 3836 MSIServer - ok 13:14:43.0625 3836 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys 13:14:43.0625 3836 MSKSSRV - ok 13:14:43.0640 3836 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys 13:14:43.0640 3836 MSPCLOCK - ok 13:14:43.0671 3836 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys 13:14:43.0671 3836 MSPQM - ok 13:14:43.0687 3836 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys 13:14:43.0687 3836 mssmbios - ok 13:14:43.0718 3836 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys 13:14:43.0718 3836 MSTEE - ok 13:14:43.0734 3836 [ 2F625D11385B1A94360BFC70AAEFDEE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys 13:14:43.0734 3836 Mup - ok 13:14:43.0765 3836 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 13:14:43.0765 3836 NABTSFEC - ok 13:14:43.0812 3836 [ BA626DD0478F59E6D841B5BA136F7851 ] napagent C:\WINDOWS\System32\qagentrt.dll 13:14:43.0812 3836 napagent - ok 13:14:43.0843 3836 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys 13:14:43.0859 3836 NDIS - ok 13:14:43.0875 3836 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys 13:14:43.0875 3836 NdisIP - ok 13:14:43.0906 3836 [ 1AB3D00C991AB086E69DB84B6C0ED78F ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys 13:14:43.0906 3836 NdisTapi - ok 13:14:43.0921 3836 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys 13:14:43.0921 3836 Ndisuio - ok 13:14:43.0937 3836 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys 13:14:43.0937 3836 NdisWan - ok 13:14:43.0968 3836 [ 6215023940CFD3702B46ABC304E1D45A ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys 13:14:43.0968 3836 NDProxy - ok 13:14:43.0984 3836 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys 13:14:44.0000 3836 NetBIOS - ok 13:14:44.0015 3836 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys 13:14:44.0015 3836 NetBT - ok 13:14:44.0046 3836 [ 760DCA57A43EE12A544D3C4C172944F1 ] NetDDE C:\WINDOWS\system32\netdde.exe 13:14:44.0062 3836 NetDDE - ok 13:14:44.0062 3836 [ 760DCA57A43EE12A544D3C4C172944F1 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe 13:14:44.0078 3836 NetDDEdsdm - ok 13:14:44.0109 3836 [ 21844F6DA13ECE4737D0B7524EDEB6EC ] Netlogon C:\WINDOWS\system32\lsass.exe 13:14:44.0109 3836 Netlogon - ok 13:14:44.0125 3836 [ B27FCDC1175C84CCCEC8A543B9A2099A ] Netman C:\WINDOWS\System32\netman.dll 13:14:44.0140 3836 Netman - ok 13:14:44.0171 3836 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 13:14:44.0187 3836 NetTcpPortSharing - ok 13:14:44.0218 3836 [ CF16F63E9FFB002BA14C788030323F78 ] Nla C:\WINDOWS\System32\mswsock.dll 13:14:44.0218 3836 Nla - ok 13:14:44.0265 3836 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys 13:14:44.0265 3836 Npfs - ok 13:14:44.0296 3836 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys 13:14:44.0312 3836 Ntfs - ok 13:14:44.0328 3836 [ 21844F6DA13ECE4737D0B7524EDEB6EC ] NtLmSsp C:\WINDOWS\system32\lsass.exe 13:14:44.0328 3836 NtLmSsp - ok 13:14:44.0375 3836 [ 7BCAB6A25F1DCAB6057B94AFD308703D ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll 13:14:44.0390 3836 NtmsSvc - ok 13:14:44.0406 3836 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys 13:14:44.0421 3836 Null - ok 13:14:44.0437 3836 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 13:14:44.0437 3836 NwlnkFlt - ok 13:14:44.0453 3836 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 13:14:44.0453 3836 NwlnkFwd - ok 13:14:44.0562 3836 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 13:14:44.0578 3836 odserv - ok 13:14:44.0609 3836 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 13:14:44.0609 3836 ose - ok 13:14:44.0656 3836 [ 632F154061074A9A1B75ECBBA89D8D42 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys 13:14:44.0656 3836 Parport - ok 13:14:44.0671 3836 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys 13:14:44.0671 3836 PartMgr - ok 13:14:44.0687 3836 [ 4DF92A889E7FE15ED3834D288A0271F5 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys 13:14:44.0687 3836 ParVdm - ok 13:14:44.0703 3836 [ B4A9C91CFDD5C68E2E48C0754E3A88F9 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys 13:14:44.0703 3836 PCI - ok 13:14:44.0718 3836 PCIDump - ok 13:14:44.0734 3836 [ FBF3CC42488FD2CE49F9427240CD5809 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys 13:14:44.0734 3836 PCIIde - ok 13:14:44.0781 3836 [ 3DEFB381B9CDCA9D4375BD37A3C0189B ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys 13:14:44.0781 3836 Pcmcia - ok 13:14:44.0796 3836 PDCOMP - ok 13:14:44.0812 3836 PDFRAME - ok 13:14:44.0828 3836 PDRELI - ok 13:14:44.0843 3836 PDRFRAME - ok 13:14:44.0843 3836 perc2 - ok 13:14:44.0859 3836 perc2hib - ok 13:14:44.0906 3836 [ 9CEDBFBE08BC1C4F35F74B8F96E0289A ] PlugPlay C:\WINDOWS\system32\services.exe 13:14:44.0906 3836 PlugPlay - ok 13:14:44.0937 3836 [ 21844F6DA13ECE4737D0B7524EDEB6EC ] PolicyAgent C:\WINDOWS\system32\lsass.exe 13:14:44.0937 3836 PolicyAgent - ok 13:14:44.0953 3836 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys 13:14:44.0953 3836 PptpMiniport - ok 13:14:44.0968 3836 [ 21844F6DA13ECE4737D0B7524EDEB6EC ] ProtectedStorage C:\WINDOWS\system32\lsass.exe 13:14:44.0968 3836 ProtectedStorage - ok 13:14:44.0984 3836 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys 13:14:45.0000 3836 PSched - ok 13:14:45.0015 3836 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys 13:14:45.0031 3836 Ptilink - ok 13:14:45.0062 3836 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys 13:14:45.0062 3836 PxHelp20 - ok 13:14:45.0078 3836 ql1080 - ok 13:14:45.0093 3836 Ql10wnt - ok 13:14:45.0109 3836 ql12160 - ok 13:14:45.0109 3836 ql1240 - ok 13:14:45.0125 3836 ql1280 - ok 13:14:45.0156 3836 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys 13:14:45.0156 3836 RasAcd - ok 13:14:45.0171 3836 [ 99056DEDCECD84C97199DF04B0C2A06C ] RasAuto C:\WINDOWS\System32\rasauto.dll 13:14:45.0187 3836 RasAuto - ok 13:14:45.0203 3836 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 13:14:45.0203 3836 Rasl2tp - ok 13:14:45.0250 3836 [ 06BDE13F36B12B0732160815D4DEE293 ] RasMan C:\WINDOWS\System32\rasmans.dll 13:14:45.0250 3836 RasMan - ok 13:14:45.0281 3836 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys 13:14:45.0281 3836 RasPppoe - ok 13:14:45.0281 3836 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys 13:14:45.0296 3836 Raspti - ok 13:14:45.0312 3836 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys 13:14:45.0312 3836 Rdbss - ok 13:14:45.0328 3836 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 13:14:45.0328 3836 RDPCDD - ok 13:14:45.0359 3836 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys 13:14:45.0359 3836 rdpdr - ok 13:14:45.0390 3836 [ 6728E45B66F93C08F11DE2E316FC70DD ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys 13:14:45.0390 3836 RDPWD - ok 13:14:45.0437 3836 [ 021ECF2D4CF03FF4F6F7FB55BCE980B7 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe 13:14:45.0437 3836 RDSessMgr - ok 13:14:45.0468 3836 [ 3C706FD765482112C3A6D42E1D7B58BB ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys 13:14:45.0468 3836 redbook - ok 13:14:45.0500 3836 [ 48330A8AF52D0FBFA8ED9B25AF882EB1 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll 13:14:45.0500 3836 RemoteAccess - ok 13:14:45.0546 3836 [ 523A1FAFA0B72C5D865E0C15149C3CE1 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll 13:14:45.0546 3836 RemoteRegistry - ok 13:14:45.0578 3836 [ 851C30DF2807FCFA21E4C681A7D6440E ] RFCOMM C:\WINDOWS\system32\DRIVERS\rfcomm.sys 13:14:45.0578 3836 RFCOMM - ok 13:14:45.0609 3836 [ A60D90C4E394F350D0FE26976839E10B ] RpcLocator C:\WINDOWS\system32\locator.exe 13:14:45.0609 3836 RpcLocator - ok 13:14:45.0640 3836 [ 293D96B9A523C8D3A5F3EE448405388E ] RpcSs C:\WINDOWS\system32\rpcss.dll 13:14:45.0640 3836 RpcSs - ok 13:14:45.0671 3836 [ F11743652869182B2A0AD40EE16E914C ] RSVP C:\WINDOWS\system32\rsvp.exe 13:14:45.0687 3836 RSVP - ok 13:14:45.0703 3836 [ 21844F6DA13ECE4737D0B7524EDEB6EC ] SamSs C:\WINDOWS\system32\lsass.exe 13:14:45.0703 3836 SamSs - ok 13:14:45.0750 3836 [ 47A1586F642C33B2300D8AC9822EC5E6 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe 13:14:45.0750 3836 SCardSvr - ok 13:14:45.0781 3836 [ 2E1B2DF1ABE710E2928AE095A2416CA2 ] Schedule C:\WINDOWS\system32\schedsvc.dll 13:14:45.0781 3836 Schedule - ok 13:14:45.0859 3836 [ 271077B91D7AD1B616F8AFDFE8E3F981 ] SeaPort C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 13:14:45.0859 3836 SeaPort - ok 13:14:45.0890 3836 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys 13:14:45.0890 3836 Secdrv - ok 13:14:45.0921 3836 [ D437DE698F9301BAF0FC451A4FEA79EB ] seclogon C:\WINDOWS\System32\seclogon.dll 13:14:45.0921 3836 seclogon - ok 13:14:45.0937 3836 [ D92F5928E1C76FA421CD469CCD599855 ] SENS C:\WINDOWS\system32\sens.dll 13:14:45.0937 3836 SENS - ok 13:14:45.0968 3836 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys 13:14:45.0968 3836 serenum - ok 13:14:46.0000 3836 [ 87DF40B4DB611EFBDF74C9B3ECCAB417 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys 13:14:46.0000 3836 Serial - ok 13:14:46.0031 3836 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys 13:14:46.0031 3836 Sfloppy - ok 13:14:46.0078 3836 [ 0D9AF293975F4565A53DB8876E0304CD ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll 13:14:46.0093 3836 SharedAccess - ok 13:14:46.0109 3836 [ B5AD66D523FB3F5F0BAB3D8B623B5A51 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll 13:14:46.0125 3836 ShellHWDetection - ok 13:14:46.0125 3836 Simbad - ok 13:14:46.0156 3836 [ 61CA562DEF09A782D26B3E7EDEC5369A ] sisagp C:\WINDOWS\system32\DRIVERS\SISAGPX.sys 13:14:46.0156 3836 sisagp - ok 13:14:46.0187 3836 [ 065533F24037CCC7EEE3EA8647C9EF20 ] SiSide C:\WINDOWS\system32\DRIVERS\siside.sys 13:14:46.0187 3836 SiSide - ok 13:14:46.0203 3836 [ 6225224B8E846AC230F8D9B343635910 ] sisidex C:\WINDOWS\system32\drivers\sisidex.sys 13:14:46.0203 3836 sisidex - ok 13:14:46.0234 3836 [ 438F242896175D430DC8940A5E61EDE0 ] SISNIC C:\WINDOWS\system32\DRIVERS\sisnic.sys 13:14:46.0234 3836 SISNIC - ok 13:14:46.0250 3836 [ 596D4A7052002D2BD344D8937DA6F66D ] sisperf C:\WINDOWS\system32\drivers\sisperf.sys 13:14:46.0250 3836 sisperf - ok 13:14:46.0281 3836 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys 13:14:46.0281 3836 SLIP - ok 13:14:46.0328 3836 [ BF208C85119770E6A9B6577019A3D810 ] smwdm C:\WINDOWS\system32\drivers\smwdm.sys 13:14:46.0343 3836 smwdm - ok 13:14:46.0390 3836 [ 3978F082274F723AD5A0A8058C2417DD ] SoundMAX Agent Service (default) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe 13:14:46.0390 3836 SoundMAX Agent Service (default) - ok 13:14:46.0406 3836 Sparrow - ok 13:14:46.0437 3836 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys 13:14:46.0437 3836 splitter - ok 13:14:46.0453 3836 [ 75090D3AC252ED03C85B20BF9663F8DE ] Spooler C:\WINDOWS\system32\spoolsv.exe 13:14:46.0468 3836 Spooler - ok 13:14:46.0500 3836 [ F42EFEFB765235F24B24E1D2B6F99F46 ] sptd C:\WINDOWS\System32\Drivers\sptd.sys 13:14:46.0500 3836 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\sptd.sys. md5: F42EFEFB765235F24B24E1D2B6F99F46 13:14:46.0515 3836 sptd ( LockedFile.Multi.Generic ) - warning 13:14:46.0515 3836 sptd - detected LockedFile.Multi.Generic (1) 13:14:46.0531 3836 [ 38E904FB6139945822B929EAF2570CA5 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys 13:14:46.0531 3836 sr - ok 13:14:46.0562 3836 [ 58B62B642DEB5D9BC712269BF33073FA ] srservice C:\WINDOWS\system32\srsvc.dll 13:14:46.0562 3836 srservice - ok 13:14:46.0593 3836 [ 89220B427890AA1DFFD1A02648AE51C3 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys 13:14:46.0609 3836 Srv - ok 13:14:46.0625 3836 [ 05EF84F349B5718ACFC7F166C9ED8349 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll 13:14:46.0640 3836 SSDPSRV - ok 13:14:46.0656 3836 [ 68DD74D33B4B0EC3221024BF17649404 ] stisvc C:\WINDOWS\system32\wiaservc.dll 13:14:46.0671 3836 stisvc - ok 13:14:46.0687 3836 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys 13:14:46.0687 3836 streamip - ok 13:14:46.0703 3836 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys 13:14:46.0703 3836 swenum - ok 13:14:46.0734 3836 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys 13:14:46.0750 3836 swmidi - ok 13:14:46.0750 3836 SwPrv - ok 13:14:46.0781 3836 symc810 - ok 13:14:46.0781 3836 symc8xx - ok 13:14:46.0812 3836 sym_hi - ok 13:14:46.0812 3836 sym_u3 - ok 13:14:46.0843 3836 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys 13:14:46.0843 3836 sysaudio - ok 13:14:46.0875 3836 [ 5C95E044E50EE133A1F9CD7A20C642ED ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe 13:14:46.0875 3836 SysmonLog - ok 13:14:46.0921 3836 [ DC7489BBF629FA7E8EB1BE6A96EC5366 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll 13:14:46.0921 3836 TapiSrv - ok 13:14:46.0953 3836 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys 13:14:46.0968 3836 Tcpip - ok 13:14:46.0984 3836 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys 13:14:46.0984 3836 TDPIPE - ok 13:14:47.0015 3836 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys 13:14:47.0015 3836 TDTCP - ok 13:14:47.0046 3836 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys 13:14:47.0046 3836 TermDD - ok 13:14:47.0078 3836 [ 9BA79E5A12285E988FE65D26643B2930 ] TermService C:\WINDOWS\System32\termsrv.dll 13:14:47.0093 3836 TermService - ok 13:14:47.0109 3836 [ B5AD66D523FB3F5F0BAB3D8B623B5A51 ] Themes C:\WINDOWS\System32\shsvcs.dll 13:14:47.0109 3836 Themes - ok 13:14:47.0156 3836 [ 944938E466C084C8959A3C0ED67F6DB3 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe 13:14:47.0156 3836 TlntSvr - ok 13:14:47.0171 3836 TosIde - ok 13:14:47.0203 3836 [ 95D39C8DAB384C298A0FCAE9D11E70CD ] TrkWks C:\WINDOWS\system32\trkwks.dll 13:14:47.0203 3836 TrkWks - ok 13:14:47.0234 3836 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys 13:14:47.0234 3836 Udfs - ok 13:14:47.0250 3836 ultra - ok 13:14:47.0296 3836 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys 13:14:47.0296 3836 Update - ok 13:14:47.0328 3836 [ 720F67B91A60BAA415BC42FB5502A6B1 ] upnphost C:\WINDOWS\System32\upnphost.dll 13:14:47.0328 3836 upnphost - ok 13:14:47.0359 3836 [ 29677A815EDAEA1AFDDCB0706C5252D2 ] UPS C:\WINDOWS\System32\ups.exe 13:14:47.0359 3836 UPS - ok 13:14:47.0390 3836 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys 13:14:47.0390 3836 usbccgp - ok 13:14:47.0406 3836 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys 13:14:47.0406 3836 usbehci - ok 13:14:47.0421 3836 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys 13:14:47.0421 3836 usbhub - ok 13:14:47.0453 3836 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys 13:14:47.0453 3836 usbohci - ok 13:14:47.0468 3836 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys 13:14:47.0468 3836 usbprint - ok 13:14:47.0500 3836 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys 13:14:47.0500 3836 usbscan - ok 13:14:47.0515 3836 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 13:14:47.0515 3836 USBSTOR - ok 13:14:47.0531 3836 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys 13:14:47.0531 3836 VgaSave - ok 13:14:47.0562 3836 ViaIde - ok 13:14:47.0578 3836 [ 9946CFCC7E445E1D846DB748299724EB ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys 13:14:47.0578 3836 VolSnap - ok 13:14:47.0609 3836 [ 0E732B7FEBD8E568C299F7B7844A58D2 ] VSS C:\WINDOWS\System32\vssvc.exe 13:14:47.0625 3836 VSS - ok 13:14:47.0640 3836 [ 0064029A603FCAAE6FE923A36BE93D86 ] W32Time C:\WINDOWS\system32\w32time.dll 13:14:47.0656 3836 W32Time - ok 13:14:47.0671 3836 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys 13:14:47.0687 3836 Wanarp - ok 13:14:47.0687 3836 WDICA - ok 13:14:47.0718 3836 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys 13:14:47.0718 3836 wdmaud - ok 13:14:47.0734 3836 [ FF0BFDF40334A24D5C3334004966B505 ] WebClient C:\WINDOWS\System32\webclnt.dll 13:14:47.0750 3836 WebClient - ok 13:14:47.0812 3836 [ C0434C31A059EB92FF378DF3E60B9967 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll 13:14:47.0812 3836 winmgmt - ok 13:14:47.0859 3836 [ EC1D2905DC8C632DAC910B03D1FA4108 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll 13:14:47.0859 3836 WmdmPmSN - ok 13:14:47.0906 3836 [ D628387B5EC88CA0F75BA6BC146CE778 ] Wmi C:\WINDOWS\System32\advapi32.dll 13:14:47.0921 3836 Wmi - ok 13:14:47.0937 3836 [ 74A8863A5D168AF325FE7744359374C6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe 13:14:47.0953 3836 WmiApSrv - ok 13:14:47.0984 3836 [ BC50F125804F7E5E2CCBCB2E008C57CE ] wscsvc C:\WINDOWS\system32\wscsvc.dll 13:14:48.0000 3836 wscsvc - ok 13:14:48.0015 3836 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 13:14:48.0015 3836 WSTCODEC - ok 13:14:48.0046 3836 [ 92F33CF2ED203160B68C16C51074D531 ] wuauserv C:\WINDOWS\system32\wuauserv.dll 13:14:48.0062 3836 wuauserv - ok 13:14:48.0109 3836 [ 2158A38F056E1C10DC7FB4277C8E6DAB ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll 13:14:48.0125 3836 WZCSVC - ok 13:14:48.0156 3836 [ D14BDA868A9D712EE9C0DA009031B1D6 ] xmlprov C:\WINDOWS\System32\xmlprov.dll 13:14:48.0156 3836 xmlprov - ok 13:14:48.0234 3836 [ 782DEE3B71C22AEAF2253276D754FADE ] ZSMC211 C:\WINDOWS\system32\Drivers\ZS211.sys 13:14:48.0265 3836 ZSMC211 - ok 13:14:48.0296 3836 ================ Scan global =============================== 13:14:48.0328 3836 [ 44F685AF7F4EDED2277C9E398B55F2BB ] C:\WINDOWS\system32\basesrv.dll 13:14:48.0359 3836 [ DFDA0E3F27200FCB07AECD21C78B41B9 ] C:\WINDOWS\system32\winsrv.dll 13:14:48.0390 3836 [ DFDA0E3F27200FCB07AECD21C78B41B9 ] C:\WINDOWS\system32\winsrv.dll 13:14:48.0406 3836 [ 9CEDBFBE08BC1C4F35F74B8F96E0289A ] C:\WINDOWS\system32\services.exe 13:14:48.0406 3836 [Global] - ok 13:14:48.0406 3836 ================ Scan MBR ================================== 13:14:48.0421 3836 [ 186A4159D7661245314A7A933981403E ] \Device\Harddisk0\DR0 13:14:48.0562 3836 \Device\Harddisk0\DR0 - ok 13:14:48.0562 3836 ================ Scan VBR ================================== 13:14:48.0578 3836 [ 8EAD5FC0725F781E23E5940DA14713B8 ] \Device\Harddisk0\DR0\Partition1 13:14:48.0578 3836 \Device\Harddisk0\DR0\Partition1 - ok 13:14:48.0593 3836 [ 0186E9DD4ACB9EB7E8CEAD33BB879EA2 ] \Device\Harddisk0\DR0\Partition2 13:14:48.0593 3836 \Device\Harddisk0\DR0\Partition2 - ok 13:14:48.0625 3836 [ 81A72401BCA5839BC4CB14B2F6538A9D ] \Device\Harddisk0\DR0\Partition3 13:14:48.0625 3836 \Device\Harddisk0\DR0\Partition3 - ok 13:14:48.0625 3836 ============================================================ 13:14:48.0625 3836 Scan finished 13:14:48.0625 3836 ============================================================ 13:14:48.0656 3828 Detected object count: 2 13:14:48.0656 3828 Actual detected object count: 2 13:14:57.0625 3828 dtscsi ( LockedFile.Multi.Generic ) - skipped by user 13:14:57.0625 3828 dtscsi ( LockedFile.Multi.Generic ) - User select action: Skip 13:14:57.0625 3828 sptd ( LockedFile.Multi.Generic ) - skipped by user 13:14:57.0625 3828 sptd ( LockedFile.Multi.Generic ) - User select action: Skip 13:15:08.0125 3804 Deinitialize success
csüt. jan. 24, 2013 13:15

dori0227 ezüst tag Csatlakozott: pén. jan. 18, 2013 22:27 Hozzászólások: 57	Re: STELL Segit # AdwCleaner v2.107 - Logfile created 01/24/2013 at 13:00:53 # Updated 21/01/2013 by Xplode # Operating system : Microsoft Windows XP Szervizcsomag 3 (32 bits) # User : Anita - ANCSA # Boot Mode : Normal # Running from : C:\Documents and Settings\Anita\Dokumentumok\Downloads\adwcleaner (1).exe # Option [Delete] *** [Services] * * [Files / Folders] * * [Registry] * * [Internet Browsers] * -\\ Internet Explorer v8.0.6001.18702 [OK] Registry is clean. -\\ Mozilla Firefox v3.6.13 (hu) File : C:\Documents and Settings\Anita\Application Data\Mozilla\Firefox\Profiles\eiu80pma.default\prefs.js [OK] File is clean. -\\ Google Chrome v24.0.1312.52 File : C:\Documents and Settings\Anita\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences [OK] File is clean. *********************** AdwCleaner[S1].txt - [27323 octets] - [24/01/2013 12:03:26] AdwCleaner[S2].txt - [953 octets] - [24/01/2013 13:00:53] ########## EOF - C:\AdwCleaner[S2].txt - [1012 octets] ##########
csüt. jan. 24, 2013 13:06

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit ok, Fojtasd Tovabb...
csüt. jan. 24, 2013 12:59

dori0227 ezüst tag Csatlakozott: pén. jan. 18, 2013 22:27 Hozzászólások: 57	Re: STELL Segit Rkill 2.4.6 by Lawrence Abrams (Grinler) http://www.bleepingcomputer.com/ Copyright 2008-2013 BleepingComputer.com More Information about Rkill can be found at this link: http://www.bleepingcomputer.com/forums/topic308364.html Program started at: 01/24/2013 12:52:52 PM in x86 mode. Windows Version: Microsoft Windows XP Szervizcsomag 3 Checking for Windows services to stop: * No malware services found to stop. Checking for processes to terminate: * No malware processes found to kill. Checking Registry for malware related settings: * No issues found in the Registry. Resetting .EXE, .COM, & .BAT associations in the Windows Registry. Performing miscellaneous checks: * No issues found. Checking Windows Service Integrity: * No issues found. Searching for Missing Digital Signatures: * C:\WINDOWS\System32\drivers\mqac.sys [NoSig] +-> C:\WINDOWS\$hf_mig$\KB971032\SP2QFE\mqac.sys : 91 776 : 06/22/2009 01:30 PM : 9229e191fe206628be17d1e67a5faed9 [Pos Repl] +-> C:\WINDOWS\$NtUninstallKB971032$\mqac.sys : 72 960 : 08/03/2004 10:58 PM : db07b0088cdfd20c2a22e675120ede34 [Pos Repl] +-> C:\WINDOWS\ServicePackFiles\i386\mqac.sys : 92 544 : 04/13/2008 08:39 PM : 70c14f5cca5cf73f8a645c73a01d8726 [Pos Repl] +-> C:\WINDOWS\SoftwareDistribution\Download\8d62dd536d224feaa86a4bbbe6d45b57\mqac.sys : 92 544 : 04/13/2008 08:39 PM : 70c14f5cca5cf73f8a645c73a01d8726 [Pos Repl] +-> C:\WINDOWS\SoftwareDistribution\Download\cc445fa272fa04e059cb30e037ff23b0\backup\mqac.sys : 72 960 : 08/03/2004 10:58 PM : db07b0088cdfd20c2a22e675120ede34 [Pos Repl] +-> C:\WINDOWS\system32\dllcache\mqac.sys : 91 776 : 06/22/2009 01:48 PM : eee50bf24caeedb515a8f3b22756d3bb [Pos Repl] Checking HOSTS File: * HOSTS file entries found: 127.0.0.1 localhost Program finished at: 01/24/2013 12:53:56 PM Execution time: 0 hours(s), 1 minute(s), and 3 seconds(s)
csüt. jan. 24, 2013 12:54

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit Az mindegy lehet exe is, de ide tettem probald letolteni http://leteckaposta.cz/298899125
csüt. jan. 24, 2013 12:51

dori0227 ezüst tag Csatlakozott: pén. jan. 18, 2013 22:27 Hozzászólások: 57	Re: STELL Segit az RKILL.exe nem jó? az RKILL.scr-t nem tölti le semmit sem csinál
csüt. jan. 24, 2013 12:49

dori0227 ezüst tag Csatlakozott: pén. jan. 18, 2013 22:27 Hozzászólások: 57	Re: STELL Segit RKILL-t nem tudom letölteni nem csinál semmit a linkkel hiába másolom be. tölt egy darabig és fehér üres oldal marad
csüt. jan. 24, 2013 12:46

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit Ok, Ezt az AVAS5-AV programot szed le, telepitsd le errol a gyengecske geprol, majd ha kitiszticsuk, akkor majd fel rakod az ingyenes AVIRAT. 1:Es fojtatod igy. Tolds le az RKILL programot, Futtatod, a naplojat tedd ide. http://download.bleepingcomputer.com/grinler/rkill.scr 2:Tolds le az TFCleanert>>Futtatod>>varjal meg kinem pucolja a geppet, eltarthat 5, percig is, ha lefutt es nem restartolja a gepet, akkor restartold kezzel, http://oldtimer.geekstogo.com/TFC.exe 3:Ujbol Futtasd le az ADWCLEANET, a naplojat tedd ide. 4:Aztan kikapcsolni a rendszervisszaalitasat, restart, es kapcsold be vissza. 5:Futtatod az TDSSKILLERT, a naplojat tedd ide. http://www.viruskasino.com/2010/12/odst ... kitov.html 6:Futtatod az Combofixet a naplojat tedd ide. http://www.bleepingcomputer.com/combofi ... t-combofix Na egyelore emyit.
csüt. jan. 24, 2013 12:32

dori0227 ezüst tag Csatlakozott: pén. jan. 18, 2013 22:27 Hozzászólások: 57	Re: STELL Segit # AdwCleaner v2.107 - Logfile created 01/24/2013 at 12:03:26 # Updated 21/01/2013 by Xplode # Operating system : Microsoft Windows XP Szervizcsomag 3 (32 bits) # User : Anita - ANCSA # Boot Mode : Normal # Running from : C:\Documents and Settings\Anita\Dokumentumok\Downloads\adwcleaner.exe # Option [Delete] *** [Services] * * [Files / Folders] * File Deleted : C:\Documents and Settings\Anita\Application Data\Mozilla\Firefox\Profiles\eiu80pma.default\searchplugins\Conduit.xml File Deleted : C:\Documents and Settings\Anita\Application Data\Mozilla\Firefox\Profiles\eiu80pma.default\searchplugins\daemon-search.xml File Deleted : C:\Documents and Settings\Anita\Application Data\Mozilla\Firefox\Profiles\eiu80pma.default\searchplugins\SearchquWebSearch.xml File Deleted : C:\Program Files\Mozilla FireFox\Components\AskSearch.js File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\SearchquWebSearch.xml Folder Deleted : C:\Documents and Settings\Anita\Application Data\Mozilla\Firefox\Profiles\eiu80pma.default\Conduit Folder Deleted : C:\Documents and Settings\Anita\Application Data\Mozilla\Firefox\Profiles\eiu80pma.default\ConduitEngine Folder Deleted : C:\Documents and Settings\Anita\Application Data\Mozilla\Firefox\Profiles\eiu80pma.default\CT2269050 Folder Deleted : C:\Documents and Settings\Anita\Application Data\Mozilla\Firefox\Profiles\eiu80pma.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5} Folder Deleted : C:\Documents and Settings\Anita\Application Data\Mozilla\Firefox\Profiles\eiu80pma.default\extensions\{99079a25-328f-4bd4-be04-00955acaa0a7} Folder Deleted : C:\Documents and Settings\Anita\Application Data\Mozilla\Firefox\Profiles\eiu80pma.default\extensions\engine@conduit.com Folder Deleted : C:\Documents and Settings\Anita\Application Data\Mozilla\Firefox\Profiles\eiu80pma.default\Searchqutoolbar Folder Deleted : C:\Documents and Settings\Anita\Application Data\PriceGong Folder Deleted : C:\Documents and Settings\Anita\Application Data\Search Settings Folder Deleted : C:\Documents and Settings\Anita\Application Data\searchquband Folder Deleted : C:\Documents and Settings\Anita\Application Data\Searchqutoolbar Folder Deleted : C:\Documents and Settings\Anita\Local Settings\Application Data\Conduit Folder Deleted : C:\Documents and Settings\Anita\Local Settings\Application Data\Ilivid Player Folder Deleted : C:\Program Files\AskSearch Folder Deleted : C:\Program Files\Conduit Folder Deleted : C:\Program Files\DAEMON Tools Toolbar Folder Deleted : C:\Program Files\Ilivid Folder Deleted : C:\Program Files\VVSN Folder Deleted : C:\Program Files\Windows iLivid Toolbar * [Registry] * Data Deleted : HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~1\WI371A~1\Datamngr\datamngr.dll Data Deleted : HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~1\WI371A~1\Datamngr\IEBHO.dll Key Deleted : HKCU\Software\AppDataLow\AskSA Key Deleted : HKCU\Software\Conduit Key Deleted : HKCU\Software\DataMngr Key Deleted : HKCU\Software\DataMngr_Toolbar Key Deleted : HKCU\Software\ilivid Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8A96AF9E-4074-43B7-BEA3-87217BDA7406} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{201F27D4-3704-41D6-89C1-AA35E39143ED} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3041D03E-FD4B-44E0-B742-2D9B88305F98} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{474597C5-AB09-49D6-A4D5-2E8D7341384E} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99079A25-328F-4BD4-BE04-00955ACAA0A7} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F3FEE66E-E034-436A-86E4-9690573BEE8A} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{201F27D4-3704-41D6-89C1-AA35E39143ED} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041D03E-FD4B-44E0-B742-2D9B88305F98} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{474597C5-AB09-49D6-A4D5-2E8D7341384E} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C94E154B-1459-4A47-966B-4B843BEFC7DB} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F3FEE66E-E034-436A-86E4-9690573BEE8A} Key Deleted : HKCU\Software\PriceGong Key Deleted : HKCU\Software\searchqutoolbar Key Deleted : HKLM\Software\AskBarDis Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FC41815-FA4C-4F8B-B143-2C045C8EA2FC} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{21493C1F-D071-496A-9C27-450578888291} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{403A885F-CB00-40C1-BDC1-EB09053194F7} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{55C1727F-5535-4C2A-9601-8C2458608B48} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{A7DDCBDE-5C86-415c-8A37-763AE183E7E4} Key Deleted : HKLM\SOFTWARE\Classes\AppID\DiscoveryHelper.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\GIFAnimator.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\IMTrProgress.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\IMWeb.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\WMHelper.DLL Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{27BF8F8D-58B8-D41C-F913-B7EEB57EF6F6} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3BF72F68-72D8-461D-A884-329D936C5581} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{78E9D883-93CD-4072-BEF3-38EE581E2839} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{83AC1413-FCE4-4A46-9DD5-4F31F306E71F} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C94E154B-1459-4A47-966B-4B843BEFC7DB} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B} Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine Key Deleted : HKLM\SOFTWARE\Classes\DiscoveryHelper.iMesh6Discovery Key Deleted : HKLM\SOFTWARE\Classes\DiscoveryHelper.iMesh6Discovery.1 Key Deleted : HKLM\SOFTWARE\Classes\imweb.imwebcontrol Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B37B4BA6-334E-72C1-B57E-6AFE8F8A5AF3} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B77AD4AC-C1C2-B293-7737-71E13A11FFEA} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CA1CE38C-F04C-471F-B9F3-083C58165C10} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E773F2CF-5E6E-FF2B-81A1-AC581A26B2B2} Key Deleted : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard Key Deleted : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard.1 Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2269050 Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{403A885F-CB00-40C1-BDC1-EB09053194F7} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{55C1727F-5535-4C2A-9601-8C2458608B48} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{96F7FABC-5789-EFA4-B6ED-1272F4C1D27B} Key Deleted : HKLM\Software\Conduit Key Deleted : HKLM\Software\DataMngr Key Deleted : HKLM\Software\ilivid Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99079A25-328F-4BD4-BE04-00955ACAA0A7} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8A96AF9E-4074-43B7-BEA3-87217BDA7406} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Ask Toolbar_is1 Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Ask.com Search Assistant Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ilivid Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Searchqu 406 MediaBar Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{474597C5-AB09-49D6-A4D5-2E8D7341384E} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079A25-328F-4BD4-BE04-00955ACAA0A7} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{872F3C0B-4462-424C-BB9F-74C6899B9F92} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ilivid Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Searchqu 406 MediaBar Key Deleted : HKLM\Software\SearchquMediabarTb Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{C94E154B-1459-4A47-966B-4B843BEFC7DB}] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [DataMngr] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [VVSN] * [Internet Browsers] * -\\ Internet Explorer v8.0.6001.18702 Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search - Default_Search_URL] = hxxp://toolbar.ask.com/toolbarv/askRedi ... t=&gc=1&q= --> hxxp://www.google.com -\\ Mozilla Firefox v3.6.13 (hu) File : C:\Documents and Settings\Anita\Application Data\Mozilla\Firefox\Profiles\eiu80pma.default\prefs.js Deleted : user_pref("CT2269050..clientLogIsEnabled", false); Deleted : user_pref("CT2269050..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...] Deleted : user_pref("CT2269050..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...] Deleted : user_pref("CT2269050.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx"); Deleted : user_pref("CT2269050.CTID", "CT2269050"); Deleted : user_pref("CT2269050.CurrentServerDate", "17-1-2013"); Deleted : user_pref("CT2269050.DialogsAlignMode", "LTR"); Deleted : user_pref("CT2269050.DialogsGetterLastCheckTime", "Fri Dec 28 2012 17:27:17 GMT+0100"); Deleted : user_pref("CT2269050.DownloadReferralCookieData", ""); Deleted : user_pref("CT2269050.EMailNotifierPollDate", "Thu Jan 17 2013 20:36:41 GMT+0100"); Deleted : user_pref("CT2269050.FirstServerDate", "16-3-2011"); Deleted : user_pref("CT2269050.FirstTime", true); Deleted : user_pref("CT2269050.FirstTimeFF3", true); Deleted : user_pref("CT2269050.FirstTimeSettingsDone", true); Deleted : user_pref("CT2269050.FixPageNotFoundErrors", true); Deleted : user_pref("CT2269050.GroupingServerCheckInterval", 1440); Deleted : user_pref("CT2269050.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/"); Deleted : user_pref("CT2269050.Initialize", true); Deleted : user_pref("CT2269050.InitializeCommonPrefs", true); Deleted : user_pref("CT2269050.InstallationAndCookieDataSentCount", 3); Deleted : user_pref("CT2269050.InstallationType", "UnknownIntegration"); Deleted : user_pref("CT2269050.InstalledDate", "Wed Mar 16 2011 18:53:23 GMT+0100"); Deleted : user_pref("CT2269050.InvalidateCache", false); Deleted : user_pref("CT2269050.IsGrouping", false); Deleted : user_pref("CT2269050.IsMulticommunity", false); Deleted : user_pref("CT2269050.IsOpenThankYouPage", false); Deleted : user_pref("CT2269050.IsOpenUninstallPage", false); Deleted : user_pref("CT2269050.LanguagePackLastCheckTime", "Thu Jan 17 2013 17:50:09 GMT+0100"); Deleted : user_pref("CT2269050.LanguagePackReloadIntervalMM", 1440); Deleted : user_pref("CT2269050.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...] Deleted : user_pref("CT2269050.LastLogin_2.7.2.0", "Wed Mar 16 2011 18:53:26 GMT+0100"); Deleted : user_pref("CT2269050.LastLogin_3.3.3.2", "Thu Jan 17 2013 17:50:09 GMT+0100"); Deleted : user_pref("CT2269050.LatestVersion", "3.16.0.3"); Deleted : user_pref("CT2269050.Locale", "en"); Deleted : user_pref("CT2269050.LoginCache", 4); Deleted : user_pref("CT2269050.MCDetectTooltipHeight", "83"); Deleted : user_pref("CT2269050.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1"); Deleted : user_pref("CT2269050.MCDetectTooltipWidth", "295"); Deleted : user_pref("CT2269050.RadioIsPodcast", false); Deleted : user_pref("CT2269050.RadioLastCheckTime", "Thu Jan 17 2013 17:50:26 GMT+0100"); Deleted : user_pref("CT2269050.RadioLastUpdateIPServer", "3"); Deleted : user_pref("CT2269050.RadioLastUpdateServer", "129132338014870000"); Deleted : user_pref("CT2269050.RadioMediaID", "12473383"); Deleted : user_pref("CT2269050.RadioMediaType", "Media Player"); Deleted : user_pref("CT2269050.RadioMenuSelectedID", "EBRadioMenu_CT226905012473383"); Deleted : user_pref("CT2269050.RadioStationName", "Hotmix%20108"); Deleted : user_pref("CT2269050.RadioStationURL", "hxxp://67.202.67.18:8082"); Deleted : user_pref("CT2269050.SavedHomepage", "hxxp://go.microsoft.com/fwlink/?LinkId=69157"); Deleted : user_pref("CT2269050.SearchEngine", "Search\|\|hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER[...] Deleted : user_pref("CT2269050.SearchFromAddressBarIsInit", true); Deleted : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT226[...] Deleted : user_pref("CT2269050.SearchInNewTabEnabled", true); Deleted : user_pref("CT2269050.SearchInNewTabIntervalMM", 1440); Deleted : user_pref("CT2269050.SearchInNewTabLastCheckTime", "Thu Jan 17 2013 17:50:14 GMT+0100"); Deleted : user_pref("CT2269050.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...] Deleted : user_pref("CT2269050.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usa[...] Deleted : user_pref("CT2269050.ServiceMapLastCheckTime", "Fri May 06 2011 19:49:38 GMT+0200"); Deleted : user_pref("CT2269050.SettingsCheckIntervalMin", 120); Deleted : user_pref("CT2269050.SettingsLastCheckTime", "Thu Jan 17 2013 17:49:55 GMT+0100"); Deleted : user_pref("CT2269050.SettingsLastUpdate", "1358431897"); Deleted : user_pref("CT2269050.ThirdPartyComponentsInterval", 504); Deleted : user_pref("CT2269050.ThirdPartyComponentsLastCheck", "Fri Dec 28 2012 17:27:13 GMT+0100"); Deleted : user_pref("CT2269050.ThirdPartyComponentsLastUpdate", "1331805997"); Deleted : user_pref("CT2269050.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2269050"); Deleted : user_pref("CT2269050.UserID", "UN00779968837473998"); Deleted : user_pref("CT2269050.ValidationData_Search", 0); Deleted : user_pref("CT2269050.ValidationData_Toolbar", 2); Deleted : user_pref("CT2269050.WeatherNetwork", ""); Deleted : user_pref("CT2269050.WeatherPollDate", "Thu Jan 17 2013 20:26:43 GMT+0100"); Deleted : user_pref("CT2269050.WeatherUnit", "C"); Deleted : user_pref("CT2269050.alertChannelId", "666138"); Deleted : user_pref("CT2269050.backendstorage./9b+7e.x305", "2423"); Deleted : user_pref("CT2269050.backendstorage./9b+7e/x305", "2423"); Deleted : user_pref("CT2269050.backendstorage./9b+7e06cg5el;8i:k", "247E2D2F226A7473727272797978797D242F4B4947[...] Deleted : user_pref("CT2269050.backendstorage./9b+7e0x305", "2423"); Deleted : user_pref("CT2269050.backendstorage./9b+7e2x305", "2423"); Deleted : user_pref("CT2269050.backendstorage./9b+7e8x305", "2423"); Deleted : user_pref("CT2269050.backendstorage./9b+7e:x305", "2423"); Deleted : user_pref("CT2269050.backendstorage./9b+7e;x305", "2423"); Deleted : user_pref("CT2269050.backendstorage./9b+7e<x305", "2423"); Deleted : user_pref("CT2269050.backendstorage./9b+7e=x305", "2423"); Deleted : user_pref("CT2269050.backendstorage./9b+7e>x305", "2423"); Deleted : user_pref("CT2269050.backendstorage./9b+7eax305", "2423"); Deleted : user_pref("CT2269050.backendstorage./9b+7ebe3g=;d9n9=d", "372C2D326975762E3A3C7B3A39434A494841434B26[...] Deleted : user_pref("CT2269050.backendstorage./9b+7ecx305", "2423"); Deleted : user_pref("CT2269050.backendstorage./9b-0?3g>d", "676B6B6A716C6C6F7A7348444720784B20782550237E252A22[...] Deleted : user_pref("CT2269050.backendstorage./9b-0?3g@6:5;", ""); Deleted : user_pref("CT2269050.backendstorage./9b-3=3eccja=f>", "247E333D2C452F4135276F297B7E7D21202F26313E424[...] Deleted : user_pref("CT2269050.backendstorage./9b/>01=9a6k6<im;krie@pdawm", "6A696B7273747576"); Deleted : user_pref("CT2269050.backendstorage./9b3=>@44i48?", "372C2D326975763342363341484778213F3E484F4E4D464[...] Deleted : user_pref("CT2269050.backendstorage./9b5ba==9cjag", "6D6B71696F7243437A44717647747B777A7E7A7951"); Deleted : user_pref("CT2269050.backendstorage./9b6b11g4c56b>f;p;anr@p", "6E6D6C6C6C7373727074777972"); Deleted : user_pref("CT2269050.backendstorage./9b9643g3/9e", "6A"); Deleted : user_pref("CT2269050.backendstorage./9b;45>:bi9i7ie", "2B2E2C3D"); Deleted : user_pref("CT2269050.backendstorage./9b<:222h64<", "393F352F3E"); Deleted : user_pref("CT2269050.backendstorage./9b<:222h64<l8daj", "6D7070707673737975702A7975727A7A752121"); Deleted : user_pref("CT2269050.backendstorage./9b=+03eh8h8j?:", "4443"); Deleted : user_pref("CT2269050.backendstorage./9b?+e2a52d8", "372C2D326975762E3A3C7B3A39434A494841434B26514649[...] Deleted : user_pref("CT2269050.backendstorage./9b?b0d:8aj62<h", "6D"); Deleted : user_pref("CT2269050.backendstorage./9ba@0<0bi6a7gn:6@l?", "6E6B"); Deleted : user_pref("CT2269050.backendstorage.cbcountry_001", "4855"); Deleted : user_pref("CT2269050.backendstorage.cbfirsttime", "53756E204A756E20323420323031322031373A34333A32332[...] Deleted : user_pref("CT2269050.backendstorage.ct2269050isadsdisabled", "66616C7365"); Deleted : user_pref("CT2269050.backendstorage.shoppingapp.gk.exipres", "5475652053657020313820323031322031383A[...] Deleted : user_pref("CT2269050.backendstorage.shoppingapp.gk.geolocation", "68756E67617279"); Deleted : user_pref("CT2269050.backendstorage.url_history0001", "6A6176617363726970743A646F63756D656E742E666F7[...] Deleted : user_pref("CT2269050.clientLogIsEnabled", false); Deleted : user_pref("CT2269050.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asm[...] Deleted : user_pref("CT2269050.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...] Deleted : user_pref("CT2269050.globalFirstTimeInfoLastCheckTime", "Thu Jan 17 2013 17:50:16 GMT+0100"); Deleted : user_pref("CT2269050.isAppTrackingManagerOn", false); Deleted : user_pref("CT2269050.myStuffEnabled", true); Deleted : user_pref("CT2269050.myStuffPublihserMinWidth", 400); Deleted : user_pref("CT2269050.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...] Deleted : user_pref("CT2269050.myStuffServiceIntervalMM", 1440); Deleted : user_pref("CT2269050.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...] Deleted : user_pref("CT2269050.toolbarAppMetaDataLastCheckTime", "Thu Jan 17 2013 17:50:16 GMT+0100"); Deleted : user_pref("CT2269050.toolbarContextMenuLastCheckTime", "Fri May 06 2011 19:50:17 GMT+0200"); Deleted : user_pref("CT2269050.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Reg[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /905414/HU", "\"0\"")[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2269050", [...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... tenApps&lo[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... erApps&loc[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... redApps&lo[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... lbar&local[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-se ... ?ver=3.3.3[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... kg?ver=2.7.[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/toolbar/", "\"63440294476430[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... r=FF&lut=0", "63[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... ut=3/13/20[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit. ... /CT2269050[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... =EB_LOCALE",[...] Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"86a[...] Deleted : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine"); Deleted : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com"); Deleted : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine"); Deleted : user_pref("CommunityToolbar.IsEngineShown", true); Deleted : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true); Deleted : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine"); Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com"); Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine"); Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://search.yahoo.com/search?fr=greent[...] Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT2269050,ConduitEngine"); Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT2269050"); Deleted : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Tue Jul 17 2012 09:50:06 GMT+02[...] Deleted : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440); Deleted : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Thu Jan 17 2013 17:50:12 GMT+0100"); Deleted : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com"); Deleted : user_pref("CommunityToolbar.alert.locale", "en"); Deleted : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440); Deleted : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Thu Jan 17 2013 17:50:00 GMT+0100"); Deleted : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1313487611"); Deleted : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20); Deleted : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com"); Deleted : user_pref("CommunityToolbar.alert.showTrayIcon", false); Deleted : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300); Deleted : user_pref("CommunityToolbar.alert.userId", "95dcd36a-f9cf-49e8-8311-41f4cc587f35"); Deleted : user_pref("CommunityToolbar.globalUserId", "aafee2c9-926b-4390-8e65-b5f9cc1628c5"); Deleted : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true); Deleted : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true); Deleted : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2269050"); Deleted : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Fri Dec 28 2012 17:34:39 GMT+0100"); Deleted : user_pref("ConduitEngine.CTID", "ConduitEngine"); Deleted : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Wed Jan 16 2013 15:54:53 GMT+0100"); Deleted : user_pref("ConduitEngine.FirstServerDate", "05/06/2011 20"); Deleted : user_pref("ConduitEngine.FirstTime", true); Deleted : user_pref("ConduitEngine.FirstTimeFF3", true); Deleted : user_pref("ConduitEngine.HasUserGlobalKeys", true); Deleted : user_pref("ConduitEngine.Initialize", true); Deleted : user_pref("ConduitEngine.InitializeCommonPrefs", true); Deleted : user_pref("ConduitEngine.InstalledDate", "Sun Jun 24 2012 17:43:36 GMT+0200"); Deleted : user_pref("ConduitEngine.IsMulticommunity", false); Deleted : user_pref("ConduitEngine.IsOpenThankYouPage", false); Deleted : user_pref("ConduitEngine.IsOpenUninstallPage", true); Deleted : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Thu Jan 17 2013 17:50:13 GMT+0100"); Deleted : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Thu Jan 17 2013 17:50:14 GMT+0100"); Deleted : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true); Deleted : user_pref("ConduitEngine.SettingsLastCheckTime", "Thu Jan 17 2013 17:50:13 GMT+0100"); Deleted : user_pref("ConduitEngine.UserID", "UN86892591577781548"); Deleted : user_pref("ConduitEngine.componentAlertEnabled", false); Deleted : user_pref("ConduitEngine.engineLocale", "hu"); Deleted : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Thu Jan 17 2013 17:50:12 GMT+0100"); Deleted : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Thu Jan 17 2013 17:50:13 GMT+0100"); Deleted : user_pref("ConduitEngine.initDone", true); Deleted : user_pref("ConduitEngine.isAppTrackingManagerOn", false); Deleted : user_pref("ConduitEngine.usagesFlag", 1); Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&Sea[...] Deleted : user_pref("browser.search.order.1", "Web Search"); Deleted : user_pref("browser.startup.homepage", "hxxp://www.searchqu.com/406"); Deleted : user_pref("extensions.snipit.askTbInstalled", true); Deleted : user_pref("extensions.snipit.chromeURL", "hxxp://toolbar.ask.com/toolbarv/askRedirect?o=13165&gct=&g[...] Deleted : user_pref("keyword.URL", "hxxp://www.searchqu.com/web?src=ffb&systemid=406&q="); Deleted : user_pref("startup.homepage_override_url", "hxxp://www.ask.com/?o=13166&l=dis"); -\\ Google Chrome v24.0.1312.52 File : C:\Documents and Settings\Anita\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences [OK] File is clean. *********************** AdwCleaner[S1].txt - [27192 octets] - [24/01/2013 12:03:26] ########## EOF - C:\AdwCleaner[S1].txt - [27253 octets] ##########
csüt. jan. 24, 2013 12:22

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit Igen mert a gep telle va Adwareval, es csak 512 mb az RAM. Na pontosan csinald azt amit irok, es masat nem 1: Letoltod az ADWcleanert, futtatod, es klik a DELETE gombra a naplojat tedd ide. http://www.viruskasino.com/2012/09/adwcleaner.html
csüt. jan. 24, 2013 11:42

dori0227 ezüst tag Csatlakozott: pén. jan. 18, 2013 22:27 Hozzászólások: 57	Re: STELL Segit Szia Stell! Megcsináltam az RSIT-et. nagyon lassú a gép és rettentően hangosan zúg.
csüt. jan. 24, 2013 10:38

dori0227 ezüst tag Csatlakozott: pén. jan. 18, 2013 22:27 Hozzászólások: 57	Re: STELL Segit Logfile of random's system information tool 1.09 (written by random/random) Run by Anita at 2013-01-24 10:33:52 Microsoft Windows XP Professional Szervizcsomag 3 System drive C: has 4 GB (14%) free of 30 GB Total RAM: 512 MB (29% free) ======Scheduled tasks folder====== C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job C:\WINDOWS\tasks\avast! Emergency Update.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job =========Mozilla firefox========= ProfilePath - C:\Documents and Settings\Anita\Application Data\Mozilla\Firefox\Profiles\eiu80pma.default prefs.js - "browser.search.useDBForOrder" - true prefs.js - "browser.startup.homepage" - "http://www.searchqu.com/406" prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13, jqs@sun.com:1.0, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, wtxpcom@mybrowserbar.com:4.7, youtubedownloader@mybrowserbar.com:4.7, {872b5b88-9db5-4310-bdd0-ac189557e5f5}:2.7.2.0, {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.4, {1FD91A9C-410C-4090-BBCC-55D3450EF433}:1.0, engine@conduit.com:3.3.3.2, {99079a25-328f-4bd4-be04-00955acaa0a7}:4.1.0.01, wrc@avast.com:7.0.1474, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.13" prefs.js - "keyword.URL" - "http://www.searchqu.com/web?src=ffb&systemid=406&q=" "jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff "{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ "wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 10 "Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer] "Description"=Adobe Shockwave Player "Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0] "Description"=DivX Plus Web Player "Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416] "Description"=WLPG Install MIME type "Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5] "Description"=Windows Presentation Foundation plug-in for Mozilla browsers "Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3] "Description"=Google Update "Path"=C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9] "Description"=Google Update "Path"=C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll C:\Program Files\Mozilla Firefox\extensions\ {972ce4c6-7e08-4474-a285-3208198ce6fd} {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} C:\Program Files\Mozilla Firefox\components\ AskSearch.js browser.xpt browserdirprovider.dll brwsrcmp.dll components.list compreg.dat FeedConverter.js FeedProcessor.js FeedWriter.js fuelApplication.js GPSDGeolocationProvider.js jsconsole-clhandler.js NetworkGeolocationProvider.js nsAddonRepository.js nsBadCertHandler.js nsBlocklistService.js nsBrowserContentHandler.js nsBrowserGlue.js nsContentDispatchChooser.js nsContentPrefService.js nsDefaultCLH.js nsDownloadManagerUI.js nsExtensionManager.js nsFormAutoComplete.js nsHandlerService.js nsHelperAppDlg.js nsINIProcessor.js nsLivemarkService.js nsLoginInfo.js nsLoginManager.js nsLoginManagerPrompter.js nsMicrosummaryService.js nsPlacesAutoComplete.js nsPlacesDBFlush.js nsPlacesTransactionsService.js nsPrivateBrowsingService.js nsProxyAutoConfig.js nsSafebrowsingApplication.js nsSearchService.js nsSearchSuggestions.js nsSessionStartup.js nsSessionStore.js nsSetDefaultBrowser.js nsSidebar.js nsTaggingService.js nsTryToClose.js nsUpdateService.js nsUpdateServiceStub.js nsUpdateTimerManager.js nsUrlClassifierLib.js nsUrlClassifierListManager.js nsURLFormatter.js nsWebHandlerApp.js pluginGlue.js storage-Legacy.js storage-mozStorage.js txEXSLTRegExFunctions.js WebContentConverter.js xpti.dat C:\Program Files\Mozilla Firefox\plugins\ npdeploytk.dll npnul32.dll NPOFF12.DLL nppdf32.dll C:\Program Files\Mozilla Firefox\searchplugins\ creativecommons.xml eBay-en-GB.xml google.xml iMeshWebSearch.xml polymeta.xml SearchquWebSearch.xml sztaki-en-hu.xml vatera.xml wikipedia-hu.xml yahoo.xml C:\Documents and Settings\Anita\Application Data\Mozilla\Firefox\Profiles\eiu80pma.default\extensions\ engine@conduit.com {20a82645-c095-46ed-80e3-08825760534b} {872b5b88-9db5-4310-bdd0-ac189557e5f5} {99079a25-328f-4bd4-be04-00955acaa0a7} {ACAA314B-EEBA-48e4-AD47-84E31C44796C} C:\Documents and Settings\Anita\Application Data\Mozilla\Firefox\Profiles\eiu80pma.default\searchplugins\ bing.xml conduit.xml daemon-search.xml iMeshWebSearch.xml SearchquWebSearch.xml ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}] Adobe PDF Reader hivatkozássúgó - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{474597C5-AB09-49d6-A4D5-2E8D7341384E}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}] Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-10-30 1227736] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live bejelentkezési segítség - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}] Searchqu Toolbar - C:\PROGRA~1\WI371A~1\ToolBar\searchqudtx.dll [2011-03-02 88976] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}] UrlHelper Class - C:\PROGRA~1\WI371A~1\Datamngr\IEBHO.dll [2011-03-24 722840] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-06-06 35840] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}] Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-06-06 73728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872] {99079a25-328f-4bd4-be04-00955acaa0a7} - Searchqu Toolbar - C:\PROGRA~1\WI371A~1\ToolBar\searchqudtx.dll [2011-03-02 88976] {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-10-30 1227736] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Smapp"=C:\Program Files\Analog Devices\SoundMAX\SMTray.exe [2003-05-05 143360] "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-06-06 148888] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792] "Domino"=C:\WINDOWS\Domino.exe [2006-08-18 49152] "avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2012-10-30 4297136] "DATAMNGR"=C:\PROGRA~1\WI371A~1\Datamngr\DATAMN~1.EXE [2011-03-24 1115536] "DAEMON Tools"=C:\Program Files\DAEMON Tools\daemon.exe [2005-11-08 128920] "VVSN"=C:\Program Files\VVSN\VVSN.exe [2005-10-25 107520] "BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent [] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] "H/PC Connection Agent"=C:\PROGRA~1\MI3AA1~1\wcescomm.exe [2006-11-13 1289000] "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2010-04-16 3872080] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationAgent] bthprops.cpl,,BluetoothAuthenticationAgent [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\daemon.exe -autorun [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2010-09-16 1164584] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2010-04-16 3872080] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nokia Tray Application] C:\Program Files\Common Files\Nokia\NCLTools\NclTray.exe [2002-10-22 598016] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ServiceLayer] C:\Program Files\Common Files\Nokia\Services\ServiceLayer.exe [2002-10-16 69632] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Indítópult^PCSuiteForNokiaN-Gage Detect.lnk] C:\PROGRA~1\Nokia\PCSUIT~1\CONNMN~1.EXE [2003-07-03 192512] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Indítópult^PCSuiteForNokiaN-Gage TS.lnk] C:\PROGRA~1\Nokia\PCSUIT~1\ECTASK~1.EXE [2003-07-03 258112] C:\Documents and Settings\All Users\Start Menu\Programs\Indítópult Exif Launcher S.lnk - C:\Program Files\FinePixViewerS\QuickDCF2.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\PROGRA~1\WI371A~1\Datamngr\datamngr.dll C:\PROGRA~1\WI371A~1\Datamngr\IEBHO.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent] C:\WINDOWS\system32\Ati2evxx.dll [2006-05-03 61440] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=157 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe::enabled:@xpsp2res.dll,-22019" "C:\Program Files\ASUS\AsusUpdate\Update.exe"="C:\Program Files\ASUS\AsusUpdate\Update.exe::Enabled:ASUS Update" "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE::Enabled:Microsoft Office Outlook" "C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager" "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager" "C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application" "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe::Enabled:Windows Messenger" "C:\Program Files\Intuwave\Shared\mRouterRunTime\mRouterRuntime.exe"="C:\Program Files\Intuwave\Shared\mRouterRunTime\mRouterRuntime.exe::Enabled:mRouterRuntime" "C:\Program Files\iMesh Applications\iMesh\iMesh.exe"="C:\Program Files\iMesh Applications\iMesh\iMesh.exe::Enabled:iMesh" "C:\Documents and Settings\Anita\Asztal\PHOTO18022010.JPG(2).exe"="C:\Documents and Settings\Anita\Asztal\PHOTO18022010.JPG(2).exe::Enabled:Userinit" "C:\windows\temp\nula.exe"="NVIDIA Monitoring::Enabled:(null)" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe::Enabled:Windows Live Messenger" "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe::Enabled:Windows Live Sync" "C:\Program Files\Windows iLivid Toolbar\ToolBar\dtUser.exe"="C:\Program Files\Windows iLivid Toolbar\ToolBar\dtUser.exe::Enabled:DTX broker" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe::Enabled:@xpsp3res.dll,-20000" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe::enabled:@xpsp2res.dll,-22019" "C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager" "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager" "C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe::Enabled:Windows Live Messenger" "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe::Enabled:Windows Live Sync" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe::Enabled:@xpsp3res.dll,-20000" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "midimapper"=midimap.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msadpcm"=msadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.trspch"=tssoft32.acm "vidc.cvid"=iccvid.dll "VIDC.I420"=msh263.drv "vidc.iv31"=ir32_32.dll "vidc.iv32"=ir32_32.dll "vidc.iv41"=ir41_32.ax "VIDC.IYUV"=iyuv_32.dll "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVU9"=tsbyuv.dll "VIDC.YVYU"=msyuv.dll "wavemapper"=msacm32.drv "msacm.msg723"=msg723.acm "vidc.M263"=msh263.drv "vidc.M261"=msh261.drv "msacm.msaudio1"=msaud32.acm "msacm.sl_anet"=sl_anet.acm "msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax "vidc.iv50"=ir50_32.dll "msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "MIDI1"=SYNCOR11.DLL "msacm.siren"=sirenacm.dll "MSVideo8"=VfWWDM32.dll "VIDC.WMV3"=wmv9vcm.dll "vidc.DIVX"=DivX.dll "vidc.yv12"=DivX.dll "wave1"=wdmaud.drv "mixer1"=wdmaud.drv ======List of files/folders created in the last 1 month====== 2013-01-24 10:34:20 ----D---- C:\Program Files\trend micro 2013-01-24 10:33:52 ----D---- C:\rsit 2013-01-18 20:13:19 ----A---- C:\WINDOWS\OEWABLog.txt 2013-01-18 20:12:06 ----D---- C:\WINDOWS\Prefetch 2013-01-18 20:09:37 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$ 2013-01-18 20:09:21 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$ 2013-01-18 20:08:56 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$ 2013-01-18 20:08:40 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$ 2013-01-18 20:08:25 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$ 2013-01-18 20:08:10 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$ 2013-01-18 20:07:55 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$ 2013-01-18 20:07:40 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$ 2013-01-18 20:07:24 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$ 2013-01-18 20:07:08 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$ 2013-01-18 20:06:51 ----HDC---- C:\WINDOWS\$NtUninstallKB978251$ 2013-01-18 20:06:34 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$ 2013-01-18 20:06:18 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$ 2013-01-18 20:05:55 ----HDC---- C:\WINDOWS\$NtUninstallKB977165$ 2013-01-18 20:05:30 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$ 2013-01-18 20:05:15 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$ 2013-01-18 20:04:59 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$ 2013-01-18 20:04:43 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$ 2013-01-18 20:04:28 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$ 2013-01-18 20:04:12 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$ 2013-01-18 20:03:57 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$ 2013-01-18 20:03:40 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$ 2013-01-18 20:03:25 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$ 2013-01-18 20:03:11 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$ 2013-01-18 20:02:54 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$ 2013-01-18 20:02:39 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$ 2013-01-18 20:02:24 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$ 2013-01-18 20:02:06 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$ 2013-01-18 20:01:50 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$ 2013-01-18 20:01:33 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$ 2013-01-18 20:01:13 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$ 2013-01-18 20:00:58 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$ 2013-01-18 20:00:43 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$ 2013-01-18 20:00:28 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$ 2013-01-18 20:00:07 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$ 2013-01-18 19:59:51 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$ 2013-01-18 19:59:35 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$ 2013-01-18 19:59:20 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$ 2013-01-18 19:59:05 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$ 2013-01-18 19:58:45 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$ 2013-01-18 19:58:29 ----HDC---- C:\WINDOWS\$NtUninstallKB968537$ 2013-01-18 19:58:12 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$ 2013-01-18 19:57:54 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$ 2013-01-18 19:57:37 ----HDC---- C:\WINDOWS\$NtUninstallKB961503$ 2013-01-18 19:57:23 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$ 2013-01-18 19:57:08 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$ 2013-01-18 19:56:53 ----HDC---- C:\WINDOWS\$NtUninstallKB961371$ 2013-01-18 19:56:32 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$ 2013-01-18 19:56:16 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$ 2013-01-18 19:56:02 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$ 2013-01-18 19:55:45 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$ 2013-01-18 19:55:30 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$ 2013-01-18 19:55:15 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$ 2013-01-18 19:55:00 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$ 2013-01-18 19:54:46 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$ 2013-01-18 19:54:31 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$ 2013-01-18 19:54:16 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$ 2013-01-18 19:54:02 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$ 2013-01-18 19:53:47 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$ 2013-01-18 19:53:21 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$ 2013-01-18 19:53:02 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$ 2013-01-18 19:52:44 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_1$ 2013-01-18 19:52:30 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$ 2013-01-18 19:52:15 ----HDC---- C:\WINDOWS\$NtUninstallKB974112_1$ 2013-01-18 19:52:01 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$ 2013-01-18 19:51:45 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$ 2013-01-18 19:51:31 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$ 2013-01-18 19:51:14 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$ 2013-01-18 19:50:58 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$ 2013-01-18 19:50:42 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$ 2013-01-18 19:50:27 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$ 2013-01-18 19:50:12 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$ 2013-01-18 19:49:58 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$ 2013-01-18 19:49:42 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$ 2013-01-18 19:49:27 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$ 2013-01-18 19:49:12 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$ 2013-01-18 19:48:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$ 2013-01-18 19:45:30 ----A---- C:\WINDOWS\setuplog.txt 2013-01-18 19:41:25 ----D---- C:\WINDOWS\l2schemas 2013-01-18 19:41:24 ----D---- C:\WINDOWS\system32\hu 2013-01-18 19:41:24 ----D---- C:\WINDOWS\system32\bits 2013-01-18 19:30:40 ----D---- C:\WINDOWS\network diagnostic 2013-01-18 19:20:00 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$ 2013-01-18 18:34:57 ----D---- C:\Program Files\VVSN 2013-01-18 18:34:37 ----A---- C:\WINDOWS\system32\drivers\dtscsi.sys 2013-01-18 18:34:36 ----D---- C:\Program Files\DAEMON Tools 2013-01-18 17:50:52 ----A---- C:\WINDOWS\Need For Speed_ Underground 2 Eltávolító.exe 2013-01-18 17:41:27 ----D---- C:\Program Files\Common Files\DirectX 2013-01-18 17:31:58 ----D---- C:\Program Files\EA GAMES 2013-01-16 16:17:19 ----D---- C:\Documents and Settings\Anita\Application Data\Malwarebytes 2013-01-16 16:17:07 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2013-01-16 16:17:05 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2013-01-16 16:17:05 ----A---- C:\WINDOWS\system32\drivers\mbam.sys ======List of files/folders modified in the last 1 month====== 2013-01-24 10:34:25 ----D---- C:\WINDOWS\Temp 2013-01-24 10:34:20 ----RD---- C:\Program Files 2013-01-24 10:29:08 ----D---- C:\WINDOWS 2013-01-24 10:28:32 ----D---- C:\WINDOWS\system32 2013-01-20 18:51:08 ----D---- C:\WINDOWS\system32\CatRoot2 2013-01-20 18:51:08 ----A---- C:\WINDOWS\SchedLgU.Txt 2013-01-20 14:30:23 ----HD---- C:\WINDOWS\inf 2013-01-20 14:27:23 ----D---- C:\WINDOWS\Help 2013-01-20 14:25:22 ----RSHDC---- C:\WINDOWS\system32\dllcache 2013-01-18 20:13:18 ----D---- C:\WINDOWS\Debug 2013-01-18 20:11:42 ----D---- C:\WINDOWS\system32\wbem 2013-01-18 20:11:42 ----D---- C:\WINDOWS\system32\Setup 2013-01-18 20:11:42 ----D---- C:\WINDOWS\AppPatch 2013-01-18 20:11:41 ----RSD---- C:\WINDOWS\Fonts 2013-01-18 20:11:38 ----D---- C:\WINDOWS\system32\drivers 2013-01-18 20:10:46 ----D---- C:\WINDOWS\system32\CatRoot 2013-01-18 20:07:27 ----D---- C:\Program Files\Outlook Express 2013-01-18 20:05:01 ----D---- C:\Program Files\Movie Maker 2013-01-18 19:54:35 ----D---- C:\WINDOWS\security 2013-01-18 19:49:43 ----D---- C:\Program Files\Messenger 2013-01-18 19:49:28 ----D---- C:\WINDOWS\WinSxS 2013-01-18 19:42:49 ----D---- C:\Program Files\Windows Media Player 2013-01-18 19:42:18 ----D---- C:\WINDOWS\ehome 2013-01-18 19:42:11 ----D---- C:\WINDOWS\system32\inetsrv 2013-01-18 19:42:09 ----D---- C:\WINDOWS\ime 2013-01-18 19:41:30 ----D---- C:\WINDOWS\system32\hu-HU 2013-01-18 19:41:29 ----D---- C:\WINDOWS\system32\usmt 2013-01-18 19:41:26 ----D---- C:\Program Files\Internet Explorer 2013-01-18 19:41:25 ----SHD---- C:\WINDOWS\Installer 2013-01-18 19:41:24 ----D---- C:\WINDOWS\PeerNet 2013-01-18 19:35:37 ----D---- C:\WINDOWS\ServicePackFiles 2013-01-18 19:35:15 ----D---- C:\WINDOWS\system32\Restore 2013-01-18 19:35:15 ----D---- C:\WINDOWS\system32\npp 2013-01-18 19:35:12 ----D---- C:\WINDOWS\msagent 2013-01-18 19:35:10 ----D---- C:\WINDOWS\srchasst 2013-01-18 19:35:08 ----D---- C:\Program Files\NetMeeting 2013-01-18 19:35:06 ----D---- C:\WINDOWS\system32\Com 2013-01-18 19:35:01 ----D---- C:\Program Files\Windows NT 2013-01-18 19:34:55 ----D---- C:\Program Files\Common Files\System 2013-01-18 19:33:59 ----D---- C:\WINDOWS\system32\oobe 2013-01-18 19:33:56 ----D---- C:\WINDOWS\system 2013-01-18 19:27:25 ----D---- C:\WINDOWS\system32\ReinstallBackups 2013-01-18 17:41:27 ----D---- C:\Program Files\Common Files 2013-01-18 17:30:53 ----D---- C:\Documents and Settings\Anita\Application Data\DAEMON Tools Lite 2013-01-18 17:26:32 ----D---- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite 2013-01-17 18:26:29 ----D---- C:\Program Files\Mozilla Firefox 2013-01-16 18:13:36 ----SD---- C:\WINDOWS\Tasks 2013-01-16 18:09:00 ----SHD---- C:\Config.Msi 2013-01-16 18:08:58 ----D---- C:\Program Files\Microsoft Office ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 Lbd;Lbd; C:\WINDOWS\system32\DRIVERS\Lbd.sys [2009-11-12 64288] R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648] R0 sisagp;SiS AGP Filter; C:\WINDOWS\system32\DRIVERS\SISAGPX.sys [2003-07-18 36992] R0 SiSide;SiSide; C:\WINDOWS\system32\DRIVERS\siside.sys [2002-10-21 6016] R0 sisidex;sisidex; C:\WINDOWS\system32\drivers\sisidex.sys [2002-10-17 49024] R0 sisperf;Add Performance Filter Driver; C:\WINDOWS\system32\drivers\sisperf.sys [2002-08-20 9472] R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2013-01-18 428088] R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-10-30 25256] R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2012-10-30 35928] R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-10-30 738504] R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-10-30 361032] R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-10-30 54232] R1 intelppm;Intel processzor illesztőprogramja; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576] R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-10-30 21256] R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-10-30 97608] R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-08-05 54752] R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816] R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-05-03 1540608] R3 dtscsi;dtscsi; C:\WINDOWS\System32\Drivers\dtscsi.sys [2013-01-18 223128] R3 SISNIC;SiS PCI Fast Ethernet Adapter Driver; C:\WINDOWS\system32\DRIVERS\sisnic.sys [2003-04-10 32256] R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-08-29 578304] S3 AR5211;TP-LINK Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2007-03-27 543712] S3 ASUSHWIO;ASUSHWIO; \??\C:\WINDOWS\system32\drivers\ASUSHWIO.sys [] S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [] S3 BthEnum;Bluetooth enumerátor szolgáltatás; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024] S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120] S3 BTHPORT;Bluetooth-portillesztőprogram; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272512] S3 BTHUSB;Bluetooth-rádió USB illesztőprogramja; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944] S3 CCDECODE;Feliratdekódoló; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 HidUsb;Microsoft HID osztályú illesztőprogram; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys [2008-03-17 101376] S3 mouhid;Egér HID-illesztőprogram; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160] S3 MSTEE;Microsoft Streaming Tee/Sink - Sink átalakító; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 NABTSFEC;NABTS/FEC VBI kodek; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Microsoft TV-/videokapcsolat; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 RFCOMM;Bluetooth-eszköz (RFCOMM protokoll TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136] S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 usbccgp;Microsoft USB általános szülő-illesztőprogram; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 usbprint;Microsoft USB PRINTER osztály; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856] S3 usbscan;USB-képolvasó illesztőprogramja; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] S3 USBSTOR;USB háttértár illesztőprogramja; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S3 WSTCODEC;World Standard Teletext kodek; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S3 ZSMC211;ZSMC USB PC Camera (ZS211); C:\WINDOWS\System32\Drivers\ZS211.sys [2007-06-08 1534464] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-05-03 413696] R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2012-10-30 44808] R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-06-06 152984] R2 LexBceS;LexBce Server; C:\WINDOWS\system32\LEXBCES.EXE [2003-02-25 303104] R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512] R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056] S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2006-05-03 520192] S2 gupdate;Google frissítési szolgáltatás (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-11-11 135664] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 fsssvc;Windows Live Családbiztonság szolgáltatás; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-04-28 704872] S3 gupdatem;Google frissítés Szolgáltatás (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-11-11 135664] S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2011-08-03 1355968] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF-----------------
csüt. jan. 24, 2013 10:36

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit Ok, majd tedd ide az RSIT naplóját. http://www.viruskasino.com/2011/01/ako-zacat.html
szer. jan. 23, 2013 12:19

dori0227 ezüst tag Csatlakozott: pén. jan. 18, 2013 22:27 Hozzászólások: 57	Re: STELL Segit szia. holnap megyek át a délelőtti órákban.
szer. jan. 23, 2013 10:57

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit dori0227 írta: Szia Stell. Egyik ismerősömnek nagyon vírusos a gépe. ő nem igazán ért hozzá. megbeszéltük hogy jövő héten elmegyek és segítek kitisztítani. megkérhetlek hogy segíts? jövő héten melyik nap olyan hogy sokáig gépnél leszel? akkor mennék el hozzá. Szia. Nekem mindegy, írd ide hogy mikor és itt leszek, ha valami közbe jön akkor ide írom.
szomb. jan. 19, 2013 8:21

dori0227 ezüst tag Csatlakozott: pén. jan. 18, 2013 22:27 Hozzászólások: 57	Re: STELL Segit Szia Stell. Egyik ismerősömnek nagyon vírusos a gépe. ő nem igazán ért hozzá. megbeszéltük hogy jövő héten elmegyek és segítek kitisztítani. megkérhetlek hogy segíts? jövő héten melyik nap olyan hogy sokáig gépnél leszel? akkor mennék el hozzá.
pén. jan. 18, 2013 22:30

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit Nincsen mit koszonnod,,, mar nem maradt ott sok szemet, csak valami feleslegesen futto programok, lezart registry kulcsok, es mas antivirus maradvanyok, ha valami problem lesz, es lesz batorsagod, akkor irjal es majd kiirtjuk ezeket a felesleges dolgokat mashogy UDV
kedd jan. 08, 2013 15:58

Orsik88 ezüst tag Csatlakozott: kedd jan. 08, 2013 11:40 Hozzászólások: 15	Re: STELL Segit Hát igen, nekünk nehéz ..nem értünk hozzá..és megijedünk, ha nem ugy sikerül..de köszönök mindent, még így is gyorsabb mint volt, hogy nem sikerült végig megcsinálnom
kedd jan. 08, 2013 15:42

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit Idézet: Ne haragudj, csináltam egy rendszer visszaállítást, mert teljesen össze kavarodott a rendszerem..bár nem tudom miket futtattunk le...talán jobb le ha majd ujra telepítjük..Most az a baj, hogy már a panda vírusírtót sem tudom leszedni, mert különböző fájlok hiányoznak a gépemről! Igen ez van . ha ossze vissza telepitel mindenfele virusirtokat, nemszabad egy gepre mas virusirtot telepiteni, csak mindig a sajatot hasznalni, igen ezt latom a magyar forumokon ahol a sok hozzanemerto pc tudosok irjak ezeket a buta tanacsokat, kitudjuk tisztitani, de ahogy gondolod, ujra is rakhatod a gepet, Ha akkarod akkor hagyd ki az Regedit lepest, es csinald azt amit irtam a combofixel, vagy ahogy akkarod.
kedd jan. 08, 2013 15:31

Orsik88 ezüst tag Csatlakozott: kedd jan. 08, 2013 11:40 Hozzászólások: 15	Re: STELL Segit Ahh..ez így nekem nem fog menni, de köszönöm az eddigi segítséget. Most fut rajta az essentials,a tűzfal jó, a defender jó..és ahozzáférésem az régi mappákhoz ismét meg van..
kedd jan. 08, 2013 15:29

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit Figyelmesen olvasd amit irok. 1: AZ Avast beírta magát a BOOt vizgalatba, ezt kijavitod igy Idézet: [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk \0aswBoot.exe /M:1beb5cd0c6 Vigyaz pontosan ezt csinald.,,ha valamit nem tudsz akkor irni. Kinyitod az redszerleirot>.bilentyuk logo WIN+R>>beirod regedit* Megtalalod ezt a kulcsot +HKEY_LOCAL_MACHINE +system +currentcontrolset +control KLIK>>session manager es kitorlod ,,*autocheck autochk \0aswBoot.exe /M:1beb5cd0c6** hogy csak ez maradjon ott autocheck autochk * kepp: Ha ez meglesz akkor tovabb. Kinyitunk - Notepadot (Jegyzetfüzetet)igy: Start>futtatás>beírod: notepad és bemásolod- a Kód: címszó alatt található zöld textet(Kód: szó nélkül), aztán a notepadba beillesztett textet elmentjük scriptnek az asztalra , úgy:- Fájl>Mentés Másként>Fájlnév>CFScript.txt>Fájl típusa>Minden fájl>Mentés.(Ásztálra),.Kész, az astalon lévő CFScript txt húzzunk rá a ComboFix ikonnyara. Es mostan megcsinalod eztett: A combofix maga elindul es lehet hogy restartol es befejezi a scent.Az naplojat tedd ide. Kód: KILLALL:: Registry:: [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "avast5"=- "DivXUpdate"=- "Adobe Reader Speed Launcher"=- "Adobe ARM"=- "SunJavaUpdateSched"=- [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools Lite"=- "Facebook Update"=- [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "Google Update"=- Driver:: 68910368 RegLock:: [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings] ClearJavaCache::
kedd jan. 08, 2013 15:21

Orsik88 ezüst tag Csatlakozott: kedd jan. 08, 2013 11:40 Hozzászólások: 15	Re: STELL Segit Ne haragudj, csináltam egy rendszer visszaállítást, mert teljesen össze kavarodott a rendszerem..bár nem tudom miket futtattunk le...talán jobb le ha majd ujra telepítjük..Most az a baj, hogy már a panda vírusírtót sem tudom leszedni, mert különböző fájlok hiányoznak a gépemről!
kedd jan. 08, 2013 15:15

Orsik88 ezüst tag Csatlakozott: kedd jan. 08, 2013 11:40 Hozzászólások: 15	Re: STELL Segit ComboFix 13-01-06.01 - HOME 013.01.08. 14:35:12.1.1 - x86 Microsoft Windows 7 Ultimate 6.1.7601.1.1250.36.1038.18.2012.1328 [GMT 1:00] Running from: c:\users\HOME\Downloads\ComboFix.exe AV: Microsoft Security Essentials Enabled/Updated {B140BF4E-23BB-4198-90AB-A51A4C60A69C} SP: Microsoft Security Essentials Enabled/Updated {0A215EAA-0581-4E16-AA1B-9E6837E7EC21} SP: Windows Defender Disabled/Updated {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\programdata\4c813da7dcedb30faf155621cb481da5_c c:\windows\pkunzip.pif c:\windows\pkzip.pif c:\windows\system32\DEBUG.log . . ((((((((((((((((((((((((( Files Created from 2012-12-08 to 2013-01-08 ))))))))))))))))))))))))))))))) . . 2013-01-08 13:42 . 2013-01-08 13:42 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-01-08 13:20 . 2013-01-08 13:20 29904 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DCEDB092-373E-47C1-A944-D64F384D93CF}\MpKsl401601ed.sys 2013-01-08 12:57 . 2013-01-08 12:57 -------- d-----w- C:\_OTL 2013-01-08 11:54 . 2013-01-08 11:54 -------- d-----w- c:\program files\trend micro 2013-01-08 11:54 . 2013-01-08 11:54 -------- d-----w- C:\rsit 2013-01-08 10:06 . 2013-01-08 10:06 740840 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{A4CE7DCD-973E-45E7-9456-BFA269A02351}\gapaengine.dll 2013-01-08 10:06 . 2012-11-08 09:00 6812136 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DCEDB092-373E-47C1-A944-D64F384D93CF}\mpengine.dll 2013-01-08 10:03 . 2013-01-08 10:03 -------- d-----w- c:\program files\Microsoft Security Client 2013-01-08 09:44 . 2013-01-08 09:44 -------- d-----w- c:\windows\system32\Wat 2013-01-08 09:39 . 2012-11-19 00:04 6812136 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0FFD8073-1F31-4E03-82CE-E7A9BD11BD1F}\mpengine.dll 2013-01-08 09:31 . 2012-12-16 14:13 295424 ----a-w- c:\windows\system32\atmfd.dll 2013-01-08 09:31 . 2012-12-16 14:13 34304 ----a-w- c:\windows\system32\atmlib.dll 2013-01-08 09:31 . 2010-09-30 06:47 70656 ----a-w- c:\windows\system32\fontsub.dll 2013-01-08 09:10 . 2012-07-26 03:39 526952 ----a-w- c:\windows\system32\drivers\Wdf01000.sys 2013-01-08 09:10 . 2012-07-26 03:39 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys 2013-01-08 09:10 . 2012-07-26 02:46 9728 ----a-w- c:\windows\system32\Wdfres.dll 2013-01-08 09:09 . 2012-07-26 03:20 73216 ----a-w- c:\windows\system32\WUDFSvc.dll 2013-01-08 09:09 . 2012-07-26 03:20 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll 2013-01-08 09:09 . 2012-07-26 02:33 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys 2013-01-08 09:09 . 2012-07-26 02:32 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys 2013-01-08 09:09 . 2012-07-26 03:21 196608 ----a-w- c:\windows\system32\WUDFHost.exe 2013-01-08 09:09 . 2012-07-26 03:20 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll 2013-01-08 09:09 . 2012-07-26 03:20 613888 ----a-w- c:\windows\system32\WUDFx.dll 2013-01-08 09:08 . 2012-03-01 05:46 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys 2013-01-08 09:08 . 2012-03-01 05:33 159232 ----a-w- c:\windows\system32\imagehlp.dll 2013-01-08 09:08 . 2012-03-01 05:29 5120 ----a-w- c:\windows\system32\wmi.dll 2013-01-08 09:08 . 2010-02-11 07:10 293376 ----a-w- c:\windows\system32\browserchoice.exe 2013-01-08 09:05 . 2013-01-08 09:05 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help 2013-01-08 08:56 . 2013-01-08 08:56 -------- d-----w- c:\program files\MSXML 4.0 2013-01-07 22:14 . 2013-01-07 22:14 -------- d-----w- c:\programdata\Panda Software 2013-01-07 08:20 . 2012-02-11 05:43 492032 ----a-w- c:\windows\system32\win32spl.dll 2013-01-07 08:20 . 2012-02-11 05:37 317440 ----a-w- c:\windows\system32\spoolsv.exe 2013-01-07 08:20 . 2012-11-22 02:56 2345984 ----a-w- c:\windows\system32\win32k.sys 2013-01-07 08:20 . 2012-08-22 17:16 712048 ----a-w- c:\windows\system32\drivers\ndis.sys 2013-01-07 08:20 . 2012-07-04 19:45 33280 ----a-w- c:\windows\system32\drivers\RNDISMP.sys 2013-01-07 08:19 . 2011-04-29 02:46 310272 ----a-w- c:\windows\system32\drivers\srv2.sys 2013-01-07 08:19 . 2011-04-29 02:46 311808 ----a-w- c:\windows\system32\drivers\srv.sys 2013-01-07 08:19 . 2011-04-29 02:46 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys 2013-01-07 08:19 . 2011-04-25 02:18 338944 ----a-w- c:\windows\system32\drivers\afd.sys 2013-01-07 08:19 . 2011-11-17 05:38 1288472 ----a-w- c:\windows\system32\ntdll.dll 2013-01-07 08:19 . 2012-08-24 16:57 172544 ----a-w- c:\windows\system32\wintrust.dll 2013-01-07 08:17 . 2011-10-01 04:37 708608 ----a-w- c:\program files\Common Files\System\wab32.dll 2013-01-07 08:17 . 2011-03-03 05:38 132608 ----a-w- c:\windows\system32\dnsrslvr.dll 2013-01-07 08:17 . 2011-03-03 05:36 28672 ----a-w- c:\windows\system32\dnscacheugc.exe 2013-01-07 08:17 . 2012-06-02 04:36 140288 ----a-w- c:\windows\system32\cryptsvc.dll 2013-01-07 08:17 . 2012-06-02 04:36 1159680 ----a-w- c:\windows\system32\crypt32.dll 2013-01-07 08:17 . 2012-06-02 04:36 103936 ----a-w- c:\windows\system32\cryptnet.dll 2013-01-07 08:15 . 2012-03-31 04:29 936960 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll 2013-01-07 08:14 . 2011-02-12 05:35 191488 ----a-w- c:\windows\system32\FXSCOVER.exe 2013-01-07 08:13 . 2011-03-12 11:23 870912 ----a-w- c:\windows\system32\XpsPrint.dll 2013-01-07 08:13 . 2011-10-26 04:28 38912 ----a-w- c:\windows\system32\csrsrv.dll 2013-01-07 08:13 . 2011-02-24 05:38 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll 2013-01-07 08:13 . 2010-12-23 05:54 642048 ----a-w- c:\windows\system32\CPFilters.dll 2013-01-07 08:13 . 2010-12-23 05:54 850944 ----a-w- c:\windows\system32\sbe.dll 2013-01-07 08:13 . 2010-12-23 05:50 199680 ----a-w- c:\windows\system32\mpg2splt.ax 2013-01-07 08:13 . 2011-10-26 04:32 514560 ----a-w- c:\windows\system32\qdvd.dll 2013-01-07 08:13 . 2011-10-26 04:32 1328128 ----a-w- c:\windows\system32\quartz.dll 2013-01-07 08:13 . 2012-08-10 23:56 542208 ----a-w- c:\windows\system32\kerberos.dll 2013-01-07 08:13 . 2011-02-25 05:30 2616320 ----a-w- c:\windows\explorer.exe 2013-01-07 08:12 . 2012-08-30 17:12 3968880 ----a-w- c:\windows\system32\ntkrnlpa.exe 2013-01-07 08:12 . 2012-08-30 17:12 3914096 ----a-w- c:\windows\system32\ntoskrnl.exe 2013-01-07 08:12 . 2012-04-07 11:26 2342400 ----a-w- c:\windows\system32\msi.dll 2013-01-07 08:12 . 2012-08-02 16:57 490496 ----a-w- c:\windows\system32\d3d10level9.dll 2013-01-07 08:12 . 2011-11-17 05:35 314880 ----a-w- c:\windows\system32\webio.dll 2013-01-07 08:12 . 2011-11-17 05:34 100352 ----a-w- c:\windows\system32\sspicli.dll 2013-01-07 08:12 . 2011-11-17 05:32 1038848 ----a-w- c:\windows\system32\lsasrv.dll 2013-01-07 08:12 . 2011-11-17 05:29 22528 ----a-w- c:\windows\system32\lsass.exe 2013-01-07 08:12 . 2011-11-17 05:34 15872 ----a-w- c:\windows\system32\sspisrv.dll 2013-01-07 08:12 . 2011-11-17 05:34 22016 ----a-w- c:\windows\system32\secur32.dll 2013-01-07 08:10 . 2011-02-23 04:47 69632 ----a-w- c:\windows\system32\drivers\bowser.sys 2013-01-07 08:10 . 2011-04-09 05:56 123904 ----a-w- c:\windows\system32\poqexec.exe 2013-01-07 08:10 . 2011-04-22 19:14 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys 2013-01-07 08:10 . 2012-11-09 04:42 2048 ----a-w- c:\windows\system32\tzres.dll 2013-01-07 07:56 . 2011-02-03 05:54 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys 2013-01-07 07:43 . 2012-02-17 05:34 826880 ----a-w- c:\windows\system32\rdpcore.dll 2013-01-07 07:43 . 2012-02-17 04:13 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys 2013-01-07 07:33 . 2012-06-02 22:19 45080 ----a-w- c:\windows\system32\wups2.dll 2013-01-07 07:33 . 2012-06-02 22:19 53784 ----a-w- c:\windows\system32\wuauclt.exe 2013-01-07 07:33 . 2012-06-02 22:19 1933848 ----a-w- c:\windows\system32\wuaueng.dll 2013-01-07 07:33 . 2012-06-02 22:12 2422272 ----a-w- c:\windows\system32\wucltux.dll 2013-01-07 07:33 . 2012-06-02 22:19 35864 ----a-w- c:\windows\system32\wups.dll 2013-01-07 07:33 . 2012-06-02 22:19 577048 ----a-w- c:\windows\system32\wuapi.dll 2013-01-07 07:33 . 2012-06-02 22:12 88576 ----a-w- c:\windows\system32\wudriver.dll 2013-01-07 07:33 . 2012-06-02 14:19 171904 ----a-w- c:\windows\system32\wuwebv.dll 2013-01-07 07:33 . 2012-06-02 14:12 33792 ----a-w- c:\windows\system32\wuapp.exe . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-10-16 07:39 . 2013-01-07 08:17 561664 ----a-w- c:\windows\apppatch\AcLayers.dll . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2009-04-23 691656] "Facebook Update"="c:\users\HOME\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2012-07-12 138096] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-10-13 138008] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-10-13 171288] "Persistence"="c:\windows\system32\igfxpers.exe" [2011-10-13 172824] "PlusService"="c:\program files\Yuna Software\Messenger Plus!\PlusService.exe" [2012-02-27 801792] "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-09-12 947176] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk \0aswBoot.exe /M:1beb5cd0c6 . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] @="Service" . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "Google Update"="c:\users\HOME\AppData\Local\Google\Update\GoogleUpdate.exe" /c . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" /nogui "DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" . R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x] R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [x] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x] R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x] R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x] R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x] R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x] R3 WatAdminSvc;Windows aktiválási technológiák szolgáltatás;c:\windows\system32\Wat\WatAdminSvc.exe [x] S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x] S1 MpKsl401601ed;MpKsl401601ed;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DCEDB092-373E-47C1-A944-D64F384D93CF}\MpKsl401601ed.sys [x] S2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x] S3 NisSrv;Microsoft Hálózatfelügyelet;c:\program files\Microsoft Security Client\NisSrv.exe [x] S3 RTL8167;Realtek 8167 NT-illesztőprogram;c:\windows\system32\DRIVERS\Rt86win7.sys [x] S3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL3.SYS [x] S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV3.SYS [x] S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT3.SYS [x] . . --- Other Services/Drivers In Memory --- . NewlyCreated* - 68910368 NewlyCreated - MPKSL401601ED Deregistered - 68910368 . Contents of the 'Scheduled Tasks' folder . 2012-07-12 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1074485599-1199041760-1399786194-1000Core1cd604749026028.job - c:\users\HOME\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-04-13 15:59] . 2013-01-08 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1074485599-1199041760-1399786194-1000UA.job - c:\users\HOME\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-04-13 15:59] . 2013-01-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2012-03-05 13:06] . 2013-01-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2012-03-05 13:06] . 2013-01-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1074485599-1199041760-1399786194-1000Core.job - c:\users\HOME\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-09 15:37] . 2013-01-08 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1074485599-1199041760-1399786194-1000UA.job - c:\users\HOME\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-09 15:37] . . ------- Supplementary Scan ------- . uStart Page = hxxp://www.google.com uSearchAssistant = hxxp://www.bing.com/search?q={searchTerms} IE: E&xportálás a Microsoft Excel programba - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 TCP: DhcpNameServer = 192.168.1.1 . . ------- File Associations ------- . .scr=AutoCADScriptFile . - - - - ORPHANS REMOVED - - - - . WebBrowser-{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - (no file) WebBrowser-{C0FBA15F-7424-4DF0-8195-CAC3D6CFA44B} - (no file) WebBrowser-{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5} - (no file) . . . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Completion time: 2013-01-08 14:45:22 ComboFix-quarantined-files.txt 2013-01-08 13:45 . Pre-Run: 58 174 918 656 bájt szabad Post-Run: 57 571 876 864 bájt szabad . - - End Of File - - 85CC5DF515CA36ABF7E714E98CF65C4A
kedd jan. 08, 2013 14:46

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit Idézet: Úgy tudom megnyitni őket, hogy a könyvtáron keresztül..a mappára egyáltalán nem tudok kattolni Ok, meglassuk, mit add a combofix.. Ok, az TDSS Rootkitet nem talált, Meg futtasd Az Combofixet, letölteni tedd az ASZTALRA, es ha valamit kiir, csak mindig OK<OK< OK, aztan bejon a kek ablak, es fogg futni egesz STAGE 50, Aztan várjál meg kinyilik a naploja, tedd ide. http://www.bleepingcomputer.com/combofi ... t-combofix
kedd jan. 08, 2013 14:30

Orsik88 ezüst tag Csatlakozott: kedd jan. 08, 2013 11:40 Hozzászólások: 15	Re: STELL Segit Úgy tudom megnyitni őket, hogy a könyvtáron keresztül..a mappára egyáltalán nem tudok kattolni
kedd jan. 08, 2013 14:28

Orsik88 ezüst tag Csatlakozott: kedd jan. 08, 2013 11:40 Hozzászólások: 15	Re: STELL Segit 14:20:24.0484 4088 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll 14:20:24.0493 4088 WinDefend - ok 14:20:24.0509 4088 WinHttpAutoProxySvc - ok 14:20:24.0573 4088 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 14:20:24.0576 4088 Winmgmt - ok 14:20:24.0641 4088 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll 14:20:24.0659 4088 WinRM - ok 14:20:24.0753 4088 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 14:20:24.0755 4088 WinUsb - ok 14:20:24.0800 4088 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll 14:20:24.0812 4088 Wlansvc - ok 14:20:24.0944 4088 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 14:20:24.0963 4088 wlidsvc - ok 14:20:24.0995 4088 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 14:20:24.0995 4088 WmiAcpi - ok 14:20:25.0037 4088 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 14:20:25.0039 4088 wmiApSrv - ok 14:20:25.0133 4088 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe 14:20:25.0146 4088 WMPNetworkSvc - ok 14:20:25.0181 4088 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll 14:20:25.0214 4088 WPCSvc - ok 14:20:25.0243 4088 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 14:20:25.0247 4088 WPDBusEnum - ok 14:20:25.0285 4088 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 14:20:25.0288 4088 ws2ifsl - ok 14:20:25.0307 4088 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll 14:20:25.0311 4088 wscsvc - ok 14:20:25.0324 4088 WSearch - ok 14:20:25.0412 4088 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll 14:20:25.0439 4088 wuauserv - ok 14:20:25.0480 4088 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 14:20:25.0481 4088 WudfPf - ok 14:20:25.0521 4088 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 14:20:25.0523 4088 WUDFRd - ok 14:20:25.0572 4088 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 14:20:25.0576 4088 wudfsvc - ok 14:20:25.0614 4088 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll 14:20:25.0620 4088 WwanSvc - ok 14:20:25.0669 4088 ================ Scan global =============================== 14:20:25.0714 4088 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll 14:20:25.0758 4088 [ 93F86C5CCC37D70EA09CE5E76F3E4338 ] C:\Windows\system32\winsrv.dll 14:20:25.0773 4088 [ 93F86C5CCC37D70EA09CE5E76F3E4338 ] C:\Windows\system32\winsrv.dll 14:20:25.0819 4088 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll 14:20:25.0861 4088 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe 14:20:25.0868 4088 [Global] - ok 14:20:25.0872 4088 ================ Scan MBR ================================== 14:20:25.0891 4088 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 14:20:26.0270 4088 \Device\Harddisk0\DR0 - ok 14:20:26.0274 4088 ================ Scan VBR ================================== 14:20:26.0278 4088 [ 96DF79F09AC315B29F783DFC5194000D ] \Device\Harddisk0\DR0\Partition1 14:20:26.0280 4088 \Device\Harddisk0\DR0\Partition1 - ok 14:20:26.0298 4088 [ 13E7641A3947F87A9FEA6B1221DB1F19 ] \Device\Harddisk0\DR0\Partition2 14:20:26.0300 4088 \Device\Harddisk0\DR0\Partition2 - ok 14:20:26.0332 4088 [ 2773C3FB571D678CC14ABF427E591687 ] \Device\Harddisk0\DR0\Partition3 14:20:26.0334 4088 \Device\Harddisk0\DR0\Partition3 - ok 14:20:26.0337 4088 ============================================================ 14:20:26.0337 4088 Scan finished 14:20:26.0337 4088 ============================================================ 14:20:26.0355 1700 Detected object count: 1 14:20:26.0355 1700 Actual detected object count: 1 14:20:41.0085 1700 sptd ( LockedFile.Multi.Generic ) - skipped by user 14:20:41.0085 1700 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
kedd jan. 08, 2013 14:24

Orsik88 ezüst tag Csatlakozott: kedd jan. 08, 2013 11:40 Hozzászólások: 15	Re: STELL Segit 14:19:55.0392 0720 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35 14:19:55.0602 0720 ============================================================ 14:19:55.0603 0720 ============================================================ 14:19:58.0176 0720 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050 14:19:58.0178 0720 ============================================================ 14:19:58.0178 0720 \Device\Harddisk0\DR0: 14:19:58.0179 0720 MBR partitions: 14:19:58.0179 0720 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000 14:19:58.0179 0720 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xC31E000 14:19:58.0179 0720 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xC350800, BlocksNum 0x190DD000 14:19:58.0179 0720 ============================================================ 14:19:58.0235 0720 C: <-> \Device\Harddisk0\DR0\Partition2 14:19:58.0276 0720 D: <-> \Device\Harddisk0\DR0\Partition3 14:19:58.0276 0720 ============================================================ 14:19:58.0276 0720 Initialize success 14:19:58.0276 0720 ============================================================ 14:20:01.0352 4088 ============================================================ 14:20:01.0352 4088 Scan started 14:20:01.0352 4088 Mode: Manual; 14:20:01.0352 4088 ============================================================ 14:20:02.0469 4088 ================ Scan system memory ======================== 14:20:02.0469 4088 System memory - ok 14:20:02.0473 4088 ================ Scan services ============================= 14:20:02.0720 4088 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys 14:20:02.0722 4088 1394ohci - ok 14:20:02.0760 4088 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys 14:20:02.0765 4088 ACPI - ok 14:20:02.0804 4088 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 14:20:02.0805 4088 AcpiPmi - ok 14:20:02.0874 4088 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 14:20:02.0881 4088 adp94xx - ok 14:20:02.0911 4088 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\drivers\adpahci.sys 14:20:02.0916 4088 adpahci - ok 14:20:02.0941 4088 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 14:20:02.0944 4088 adpu320 - ok 14:20:02.0993 4088 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 14:20:02.0994 4088 AeLookupSvc - ok 14:20:03.0049 4088 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys 14:20:03.0054 4088 AFD - ok 14:20:03.0077 4088 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys 14:20:03.0079 4088 agp440 - ok 14:20:03.0157 4088 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\drivers\djsvs.sys 14:20:03.0159 4088 aic78xx - ok 14:20:03.0191 4088 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe 14:20:03.0193 4088 ALG - ok 14:20:03.0229 4088 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys 14:20:03.0231 4088 aliide - ok 14:20:03.0253 4088 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys 14:20:03.0255 4088 amdagp - ok 14:20:03.0283 4088 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys 14:20:03.0284 4088 amdide - ok 14:20:03.0354 4088 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 14:20:03.0356 4088 AmdK8 - ok 14:20:03.0398 4088 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys 14:20:03.0400 4088 AmdPPM - ok 14:20:03.0448 4088 [ E7F4D42D8076EC60E21715CD11743A0D ] amdsata C:\Windows\system32\drivers\amdsata.sys 14:20:03.0450 4088 amdsata - ok 14:20:03.0501 4088 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 14:20:03.0504 4088 amdsbs - ok 14:20:03.0535 4088 [ 146459D2B08BFDCBFA856D9947043C81 ] amdxata C:\Windows\system32\drivers\amdxata.sys 14:20:03.0536 4088 amdxata - ok 14:20:03.0594 4088 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys 14:20:03.0596 4088 AppID - ok 14:20:03.0645 4088 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll 14:20:03.0646 4088 AppIDSvc - ok 14:20:03.0669 4088 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll 14:20:03.0670 4088 Appinfo - ok 14:20:03.0754 4088 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll 14:20:03.0757 4088 AppMgmt - ok 14:20:03.0799 4088 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\drivers\arc.sys 14:20:03.0801 4088 arc - ok 14:20:03.0826 4088 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\drivers\arcsas.sys 14:20:03.0828 4088 arcsas - ok 14:20:03.0887 4088 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 14:20:03.0888 4088 AsyncMac - ok 14:20:03.0902 4088 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys 14:20:03.0903 4088 atapi - ok 14:20:03.0945 4088 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 14:20:03.0952 4088 AudioEndpointBuilder - ok 14:20:03.0968 4088 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll 14:20:03.0972 4088 Audiosrv - ok 14:20:04.0106 4088 [ 7CC8CD6F86054C563E47E7F063CE7A61 ] Autodesk Licensing Service C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe 14:20:07.0898 4088 Autodesk Licensing Service - ok 14:20:07.0948 4088 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll 14:20:07.0962 4088 AxInstSV - ok 14:20:08.0015 4088 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\drivers\bxvbdx.sys 14:20:08.0021 4088 b06bdrv - ok 14:20:08.0063 4088 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys 14:20:08.0067 4088 b57nd60x - ok 14:20:08.0186 4088 [ EB7C2DADF52F50F69F198C14C3556DC1 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys 14:20:08.0201 4088 BCM43XX - ok 14:20:08.0234 4088 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll 14:20:08.0236 4088 BDESVC - ok 14:20:08.0278 4088 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys 14:20:08.0279 4088 Beep - ok 14:20:08.0316 4088 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll 14:20:08.0323 4088 BFE - ok 14:20:08.0368 4088 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll 14:20:08.0380 4088 BITS - ok 14:20:08.0401 4088 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 14:20:08.0402 4088 blbdrive - ok 14:20:08.0461 4088 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 14:20:08.0463 4088 bowser - ok 14:20:08.0484 4088 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 14:20:08.0485 4088 BrFiltLo - ok 14:20:08.0504 4088 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 14:20:08.0506 4088 BrFiltUp - ok 14:20:08.0549 4088 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll 14:20:08.0551 4088 Browser - ok 14:20:08.0615 4088 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys 14:20:08.0620 4088 Brserid - ok 14:20:08.0640 4088 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 14:20:08.0642 4088 BrSerWdm - ok 14:20:08.0654 4088 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 14:20:08.0655 4088 BrUsbMdm - ok 14:20:08.0679 4088 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 14:20:08.0680 4088 BrUsbSer - ok 14:20:08.0781 4088 [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys 14:20:08.0782 4088 BthEnum - ok 14:20:08.0807 4088 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys 14:20:08.0809 4088 BTHMODEM - ok 14:20:08.0828 4088 [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys 14:20:08.0830 4088 BthPan - ok 14:20:08.0852 4088 [ 195C41CC67E9E1CEDD960CCB74925920 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys 14:20:08.0857 4088 BTHPORT - ok 14:20:08.0909 4088 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll 14:20:08.0918 4088 bthserv - ok 14:20:08.0940 4088 [ 43B3206DD654E783AA7E4EAD340A43B8 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys 14:20:08.0957 4088 BTHUSB - ok 14:20:08.0985 4088 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 14:20:08.0989 4088 cdfs - ok 14:20:09.0068 4088 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 14:20:09.0075 4088 cdrom - ok 14:20:09.0121 4088 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll 14:20:09.0126 4088 CertPropSvc - ok 14:20:09.0146 4088 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\drivers\circlass.sys 14:20:09.0155 4088 circlass - ok 14:20:09.0185 4088 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys 14:20:09.0192 4088 CLFS - ok 14:20:09.0317 4088 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 14:20:09.0319 4088 clr_optimization_v2.0.50727_32 - ok 14:20:09.0341 4088 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 14:20:09.0343 4088 CmBatt - ok 14:20:09.0408 4088 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys 14:20:09.0409 4088 cmdide - ok 14:20:09.0470 4088 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys 14:20:09.0479 4088 CNG - ok 14:20:09.0545 4088 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 14:20:09.0546 4088 Compbatt - ok 14:20:09.0606 4088 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys 14:20:09.0607 4088 CompositeBus - ok 14:20:09.0625 4088 COMSysApp - ok 14:20:09.0654 4088 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 14:20:09.0657 4088 crcdisk - ok 14:20:09.0722 4088 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll 14:20:09.0726 4088 CryptSvc - ok 14:20:09.0765 4088 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys 14:20:09.0770 4088 CSC - ok 14:20:09.0803 4088 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll 14:20:09.0810 4088 CscService - ok 14:20:09.0858 4088 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll 14:20:09.0864 4088 DcomLaunch - ok 14:20:09.0896 4088 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll 14:20:09.0904 4088 defragsvc - ok 14:20:09.0941 4088 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 14:20:09.0942 4088 DfsC - ok 14:20:09.0985 4088 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll 14:20:09.0989 4088 Dhcp - ok 14:20:10.0032 4088 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys 14:20:10.0033 4088 discache - ok 14:20:10.0074 4088 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\drivers\disk.sys 14:20:10.0088 4088 Disk - ok 14:20:10.0121 4088 [ 2A958EF85DB1B61FFCA65044FA4BCE9E ] dmvsc C:\Windows\system32\drivers\dmvsc.sys 14:20:10.0138 4088 dmvsc - ok 14:20:10.0180 4088 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll 14:20:10.0216 4088 Dnscache - ok 14:20:10.0289 4088 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll 14:20:10.0293 4088 dot3svc - ok 14:20:10.0312 4088 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll 14:20:10.0317 4088 DPS - ok 14:20:10.0361 4088 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 14:20:10.0365 4088 drmkaud - ok 14:20:10.0404 4088 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 14:20:10.0413 4088 DXGKrnl - ok 14:20:10.0452 4088 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll 14:20:10.0454 4088 EapHost - ok 14:20:10.0534 4088 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\drivers\evbdx.sys 14:20:10.0574 4088 ebdrv - ok 14:20:10.0609 4088 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe 14:20:10.0612 4088 EFS - ok 14:20:10.0686 4088 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 14:20:10.0696 4088 ehRecvr - ok 14:20:10.0721 4088 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe 14:20:10.0724 4088 ehSched - ok 14:20:10.0786 4088 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\drivers\elxstor.sys 14:20:10.0797 4088 elxstor - ok 14:20:10.0822 4088 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys 14:20:10.0841 4088 ErrDev - ok 14:20:10.0899 4088 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll 14:20:10.0902 4088 EventSystem - ok 14:20:10.0923 4088 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys 14:20:10.0925 4088 exfat - ok 14:20:10.0948 4088 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys 14:20:10.0951 4088 fastfat - ok 14:20:10.0995 4088 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe 14:20:11.0002 4088 Fax - ok 14:20:11.0021 4088 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\drivers\fdc.sys 14:20:11.0023 4088 fdc - ok 14:20:11.0040 4088 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll 14:20:11.0043 4088 fdPHost - ok 14:20:11.0063 4088 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll 14:20:11.0065 4088 FDResPub - ok 14:20:11.0085 4088 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 14:20:11.0087 4088 FileInfo - ok 14:20:11.0103 4088 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 14:20:11.0105 4088 Filetrace - ok 14:20:11.0205 4088 [ D60EF46DC0E757FE5EB579DB95B88954 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe 14:20:11.0218 4088 FLEXnet Licensing Service - ok 14:20:11.0248 4088 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 14:20:11.0249 4088 flpydisk - ok 14:20:11.0281 4088 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 14:20:11.0285 4088 FltMgr - ok 14:20:11.0331 4088 [ FA6C66E4364D7DA57AADE5DCC03BB999 ] FontCache C:\Windows\system32\FntCache.dll 14:20:11.0342 4088 FontCache - ok 14:20:11.0426 4088 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 14:20:11.0428 4088 FontCache3.0.0.0 - ok 14:20:11.0455 4088 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 14:20:11.0457 4088 FsDepends - ok 14:20:11.0503 4088 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 14:20:11.0505 4088 Fs_Rec - ok 14:20:11.0557 4088 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 14:20:11.0560 4088 fvevol - ok 14:20:11.0616 4088 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 14:20:11.0618 4088 gagp30kx - ok 14:20:11.0665 4088 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll 14:20:11.0674 4088 gpsvc - ok 14:20:11.0806 4088 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe 14:20:11.0808 4088 gupdate - ok 14:20:11.0836 4088 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe 14:20:11.0838 4088 gupdatem - ok 14:20:11.0859 4088 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 14:20:11.0860 4088 hcw85cir - ok 14:20:11.0909 4088 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 14:20:11.0913 4088 HdAudAddService - ok 14:20:11.0937 4088 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 14:20:11.0940 4088 HDAudBus - ok 14:20:11.0966 4088 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 14:20:11.0967 4088 HidBatt - ok 14:20:11.0987 4088 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\drivers\hidbth.sys 14:20:11.0990 4088 HidBth - ok 14:20:12.0033 4088 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\drivers\hidir.sys 14:20:12.0036 4088 HidIr - ok 14:20:12.0061 4088 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll 14:20:12.0063 4088 hidserv - ok 14:20:12.0100 4088 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 14:20:12.0101 4088 HidUsb - ok 14:20:12.0130 4088 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll 14:20:12.0134 4088 hkmsvc - ok 14:20:12.0153 4088 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll 14:20:12.0157 4088 HomeGroupListener - ok 14:20:12.0204 4088 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 14:20:12.0209 4088 HomeGroupProvider - ok 14:20:12.0237 4088 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 14:20:12.0238 4088 HpSAMD - ok 14:20:12.0265 4088 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys 14:20:12.0271 4088 HTTP - ok 14:20:12.0293 4088 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 14:20:12.0295 4088 hwpolicy - ok 14:20:12.0320 4088 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 14:20:12.0322 4088 i8042prt - ok 14:20:12.0377 4088 [ A3CAE5D281DB4CFF7CFF8233507EE5AD ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 14:20:12.0382 4088 iaStorV - ok 14:20:12.0451 4088 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 14:20:12.0462 4088 idsvc - ok 14:20:12.0662 4088 [ AA1636107C0C05A881BFBCE41142C70F ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys 14:20:12.0827 4088 igfx - ok 14:20:12.0875 4088 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\drivers\iirsp.sys 14:20:12.0876 4088 iirsp - ok 14:20:12.0932 4088 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll 14:20:12.0941 4088 IKEEXT - ok 14:20:12.0964 4088 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys 14:20:12.0967 4088 intelide - ok 14:20:13.0003 4088 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 14:20:13.0004 4088 intelppm - ok 14:20:13.0022 4088 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll 14:20:13.0025 4088 IPBusEnum - ok 14:20:13.0054 4088 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 14:20:13.0056 4088 IpFilterDriver - ok 14:20:13.0104 4088 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 14:20:13.0112 4088 iphlpsvc - ok 14:20:13.0133 4088 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 14:20:13.0135 4088 IPMIDRV - ok 14:20:13.0161 4088 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys 14:20:13.0163 4088 IPNAT - ok 14:20:13.0198 4088 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys 14:20:13.0199 4088 IRENUM - ok 14:20:13.0220 4088 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys 14:20:13.0222 4088 isapnp - ok 14:20:13.0263 4088 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 14:20:13.0267 4088 iScsiPrt - ok 14:20:13.0305 4088 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 14:20:13.0306 4088 kbdclass - ok 14:20:13.0371 4088 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys 14:20:13.0372 4088 kbdhid - ok 14:20:13.0400 4088 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe 14:20:13.0402 4088 KeyIso - ok 14:20:13.0440 4088 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 14:20:13.0441 4088 KSecDD - ok 14:20:13.0460 4088 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 14:20:13.0464 4088 KSecPkg - ok 14:20:13.0517 4088 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll 14:20:13.0523 4088 KtmRm - ok 14:20:13.0567 4088 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll 14:20:13.0572 4088 LanmanServer - ok 14:20:13.0610 4088 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 14:20:13.0614 4088 LanmanWorkstation - ok 14:20:13.0674 4088 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 14:20:13.0675 4088 lltdio - ok 14:20:13.0715 4088 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll 14:20:13.0720 4088 lltdsvc - ok 14:20:13.0748 4088 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll 14:20:13.0751 4088 lmhosts - ok 14:20:13.0793 4088 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 14:20:13.0796 4088 LSI_FC - ok 14:20:13.0824 4088 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 14:20:13.0826 4088 LSI_SAS - ok 14:20:13.0855 4088 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 14:20:13.0859 4088 LSI_SAS2 - ok 14:20:13.0884 4088 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 14:20:13.0886 4088 LSI_SCSI - ok 14:20:13.0926 4088 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys 14:20:13.0927 4088 luafv - ok 14:20:13.0963 4088 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 14:20:13.0966 4088 Mcx2Svc - ok 14:20:14.0053 4088 [ 7CF1B716372B89568AE4C0FE769F5869 ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe 14:20:14.0058 4088 MDM - ok 14:20:14.0080 4088 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\drivers\megasas.sys 14:20:14.0081 4088 megasas - ok 14:20:14.0113 4088 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 14:20:14.0116 4088 MegaSR - ok 14:20:14.0159 4088 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll 14:20:14.0162 4088 MMCSS - ok 14:20:14.0181 4088 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys 14:20:14.0182 4088 Modem - ok 14:20:14.0218 4088 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 14:20:14.0219 4088 monitor - ok 14:20:14.0251 4088 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 14:20:14.0253 4088 mouclass - ok 14:20:14.0276 4088 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 14:20:14.0282 4088 mouhid - ok 14:20:14.0318 4088 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 14:20:14.0320 4088 mountmgr - ok 14:20:14.0387 4088 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys 14:20:14.0390 4088 MpFilter - ok 14:20:14.0420 4088 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys 14:20:14.0422 4088 mpio - ok 14:20:14.0565 4088 [ A69630D039C38018689190234F866D77 ] MpKsl401601ed c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DCEDB092-373E-47C1-A944-D64F384D93CF}\MpKsl401601ed.sys 14:20:14.0566 4088 MpKsl401601ed - ok 14:20:14.0599 4088 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 14:20:14.0601 4088 mpsdrv - ok 14:20:14.0646 4088 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll 14:20:14.0654 4088 MpsSvc - ok 14:20:14.0680 4088 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 14:20:14.0682 4088 MRxDAV - ok 14:20:14.0734 4088 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 14:20:14.0736 4088 mrxsmb - ok 14:20:14.0758 4088 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 14:20:14.0761 4088 mrxsmb10 - ok 14:20:14.0786 4088 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 14:20:14.0788 4088 mrxsmb20 - ok 14:20:14.0820 4088 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys 14:20:14.0821 4088 msahci - ok 14:20:14.0855 4088 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys 14:20:14.0858 4088 msdsm - ok 14:20:14.0891 4088 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe 14:20:14.0896 4088 MSDTC - ok 14:20:14.0930 4088 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys 14:20:14.0931 4088 Msfs - ok 14:20:14.0953 4088 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 14:20:14.0954 4088 mshidkmdf - ok 14:20:14.0975 4088 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 14:20:14.0976 4088 msisadrv - ok 14:20:15.0023 4088 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 14:20:15.0026 4088 MSiSCSI - ok 14:20:15.0039 4088 msiserver - ok 14:20:15.0073 4088 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 14:20:15.0108 4088 MSKSSRV - ok 14:20:15.0291 4088 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe 14:20:15.0291 4088 MsMpSvc - ok 14:20:15.0340 4088 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 14:20:15.0341 4088 MSPCLOCK - ok 14:20:15.0364 4088 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 14:20:15.0365 4088 MSPQM - ok 14:20:15.0398 4088 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 14:20:15.0401 4088 MsRPC - ok 14:20:15.0434 4088 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 14:20:15.0435 4088 mssmbios - ok 14:20:15.0458 4088 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 14:20:15.0485 4088 MSTEE - ok 14:20:15.0528 4088 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 14:20:15.0529 4088 MTConfig - ok 14:20:15.0556 4088 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys 14:20:15.0557 4088 Mup - ok 14:20:15.0591 4088 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll 14:20:15.0599 4088 napagent - ok 14:20:15.0648 4088 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 14:20:15.0652 4088 NativeWifiP - ok 14:20:15.0707 4088 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys 14:20:15.0715 4088 NDIS - ok 14:20:15.0752 4088 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 14:20:15.0753 4088 NdisCap - ok 14:20:15.0829 4088 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 14:20:15.0861 4088 NdisTapi - ok 14:20:15.0998 4088 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 14:20:16.0026 4088 Ndisuio - ok 14:20:16.0052 4088 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 14:20:16.0054 4088 NdisWan - ok 14:20:16.0080 4088 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 14:20:16.0081 4088 NDProxy - ok 14:20:16.0182 4088 [ B90E093E7A7250906F1054418B5339C0 ] Nero BackItUp Scheduler 4.0 C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe 14:20:16.0194 4088 Nero BackItUp Scheduler 4.0 - ok 14:20:16.0238 4088 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 14:20:16.0240 4088 NetBIOS - ok 14:20:16.0272 4088 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 14:20:16.0275 4088 NetBT - ok 14:20:16.0304 4088 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe 14:20:16.0306 4088 Netlogon - ok 14:20:16.0356 4088 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll 14:20:16.0362 4088 Netman - ok 14:20:16.0391 4088 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll 14:20:16.0403 4088 netprofm - ok 14:20:16.0436 4088 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 14:20:16.0439 4088 NetTcpPortSharing - ok 14:20:16.0492 4088 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 14:20:16.0494 4088 nfrd960 - ok 14:20:16.0530 4088 [ 2CD24A6AF497D0E9B9BF3DA924ED05E6 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys 14:20:16.0532 4088 NisDrv - ok 14:20:16.0598 4088 [ 3B846434055F80D9E89D0742F3ADAD34 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe 14:20:16.0602 4088 NisSrv - ok 14:20:16.0660 4088 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\Windows\System32\nlasvc.dll 14:20:16.0665 4088 NlaSvc - ok 14:20:16.0687 4088 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys 14:20:16.0690 4088 Npfs - ok 14:20:16.0726 4088 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll 14:20:16.0729 4088 nsi - ok 14:20:16.0750 4088 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 14:20:16.0751 4088 nsiproxy - ok 14:20:16.0824 4088 [ 0D87503986BB3DFED58E343FE39DDE13 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 14:20:16.0838 4088 Ntfs - ok 14:20:16.0870 4088 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys 14:20:16.0870 4088 Null - ok 14:20:16.0898 4088 [ AF2EEC9580C1D32FB7EAF105D9784061 ] nvraid C:\Windows\system32\drivers\nvraid.sys 14:20:16.0902 4088 nvraid - ok 14:20:16.0930 4088 [ 9283C58EBAA2618F93482EB5DABCEC82 ] nvstor C:\Windows\system32\drivers\nvstor.sys 14:20:16.0933 4088 nvstor - ok 14:20:16.0958 4088 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 14:20:16.0960 4088 nv_agp - ok 14:20:17.0031 4088 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 14:20:17.0037 4088 odserv - ok 14:20:17.0059 4088 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 14:20:17.0061 4088 ohci1394 - ok 14:20:17.0113 4088 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 14:20:17.0116 4088 ose - ok 14:20:17.0155 4088 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 14:20:17.0161 4088 p2pimsvc - ok 14:20:17.0194 4088 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll 14:20:17.0200 4088 p2psvc - ok 14:20:17.0221 4088 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\drivers\parport.sys 14:20:17.0223 4088 Parport - ok 14:20:17.0275 4088 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys 14:20:17.0276 4088 partmgr - ok 14:20:17.0303 4088 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\drivers\parvdm.sys 14:20:17.0306 4088 Parvdm - ok 14:20:17.0343 4088 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll 14:20:17.0348 4088 PcaSvc - ok 14:20:17.0373 4088 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys 14:20:17.0376 4088 pci - ok 14:20:17.0404 4088 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys 14:20:17.0406 4088 pciide - ok 14:20:17.0440 4088 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 14:20:17.0444 4088 pcmcia - ok 14:20:17.0482 4088 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys 14:20:17.0484 4088 pcw - ok 14:20:17.0534 4088 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys 14:20:17.0542 4088 PEAUTH - ok 14:20:17.0593 4088 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll 14:20:17.0608 4088 PeerDistSvc - ok 14:20:17.0688 4088 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll 14:20:17.0711 4088 pla - ok 14:20:17.0782 4088 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll 14:20:17.0788 4088 PlugPlay - ok 14:20:17.0809 4088 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 14:20:17.0814 4088 PNRPAutoReg - ok 14:20:17.0839 4088 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 14:20:17.0843 4088 PNRPsvc - ok 14:20:17.0879 4088 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 14:20:17.0885 4088 PolicyAgent - ok 14:20:17.0920 4088 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll 14:20:17.0926 4088 Power - ok 14:20:17.0974 4088 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 14:20:17.0976 4088 PptpMiniport - ok 14:20:17.0997 4088 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\drivers\processr.sys 14:20:17.0999 4088 Processor - ok 14:20:18.0061 4088 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll 14:20:18.0065 4088 ProfSvc - ok 14:20:18.0092 4088 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe 14:20:18.0094 4088 ProtectedStorage - ok 14:20:18.0126 4088 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys 14:20:18.0128 4088 Psched - ok 14:20:18.0174 4088 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 14:20:18.0190 4088 ql2300 - ok 14:20:18.0223 4088 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 14:20:18.0225 4088 ql40xx - ok 14:20:18.0278 4088 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll 14:20:18.0284 4088 QWAVE - ok 14:20:18.0305 4088 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 14:20:18.0307 4088 QWAVEdrv - ok 14:20:18.0344 4088 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 14:20:18.0345 4088 RasAcd - ok 14:20:18.0381 4088 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 14:20:18.0383 4088 RasAgileVpn - ok 14:20:18.0401 4088 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll 14:20:18.0405 4088 RasAuto - ok 14:20:18.0424 4088 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 14:20:18.0426 4088 Rasl2tp - ok 14:20:18.0471 4088 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll 14:20:18.0477 4088 RasMan - ok 14:20:18.0503 4088 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 14:20:18.0505 4088 RasPppoe - ok 14:20:18.0524 4088 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 14:20:18.0526 4088 RasSstp - ok 14:20:18.0552 4088 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 14:20:18.0556 4088 rdbss - ok 14:20:18.0583 4088 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 14:20:18.0584 4088 rdpbus - ok 14:20:18.0600 4088 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 14:20:18.0601 4088 RDPCDD - ok 14:20:18.0653 4088 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys 14:20:18.0656 4088 RDPDR - ok 14:20:18.0699 4088 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 14:20:18.0700 4088 RDPENCDD - ok 14:20:18.0733 4088 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 14:20:18.0734 4088 RDPREFMP - ok 14:20:18.0791 4088 [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 14:20:18.0792 4088 RdpVideoMiniport - ok 14:20:18.0831 4088 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 14:20:18.0834 4088 RDPWD - ok 14:20:18.0865 4088 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 14:20:18.0868 4088 rdyboost - ok 14:20:18.0905 4088 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll 14:20:18.0908 4088 RemoteAccess - ok 14:20:18.0951 4088 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll 14:20:18.0955 4088 RemoteRegistry - ok 14:20:19.0007 4088 [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys 14:20:19.0009 4088 RFCOMM - ok 14:20:19.0043 4088 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 14:20:19.0046 4088 RpcEptMapper - ok 14:20:19.0066 4088 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe 14:20:19.0068 4088 RpcLocator - ok 14:20:19.0098 4088 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll 14:20:19.0103 4088 RpcSs - ok 14:20:19.0145 4088 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 14:20:19.0147 4088 rspndr - ok 14:20:19.0181 4088 [ 7DFD48E24479B68B258D8770121155A0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys 14:20:19.0184 4088 RTL8167 - ok 14:20:19.0284 4088 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys 14:20:19.0314 4088 s3cap - ok 14:20:19.0340 4088 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe 14:20:19.0342 4088 SamSs - ok 14:20:19.0401 4088 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 14:20:19.0404 4088 sbp2port - ok 14:20:19.0445 4088 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll 14:20:19.0450 4088 SCardSvr - ok 14:20:19.0479 4088 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 14:20:19.0485 4088 scfilter - ok 14:20:19.0520 4088 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll 14:20:19.0532 4088 Schedule - ok 14:20:19.0565 4088 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll 14:20:19.0566 4088 SCPolicySvc - ok 14:20:19.0602 4088 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys 14:20:19.0621 4088 sdbus - ok 14:20:19.0645 4088 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll 14:20:19.0650 4088 SDRSVC - ok 14:20:19.0690 4088 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys 14:20:19.0692 4088 secdrv - ok 14:20:19.0709 4088 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll 14:20:19.0713 4088 seclogon - ok 14:20:19.0741 4088 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll 14:20:19.0744 4088 SENS - ok 14:20:19.0774 4088 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll 14:20:19.0778 4088 SensrSvc - ok 14:20:19.0802 4088 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\drivers\serenum.sys 14:20:19.0803 4088 Serenum - ok 14:20:19.0828 4088 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\drivers\serial.sys 14:20:19.0832 4088 Serial - ok 14:20:19.0855 4088 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\drivers\sermouse.sys 14:20:19.0857 4088 sermouse - ok 14:20:19.0901 4088 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll 14:20:19.0919 4088 SessionEnv - ok 14:20:19.0963 4088 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys 14:20:19.0964 4088 sffdisk - ok 14:20:19.0975 4088 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 14:20:19.0978 4088 sffp_mmc - ok 14:20:20.0005 4088 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys 14:20:20.0006 4088 sffp_sd - ok 14:20:20.0020 4088 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 14:20:20.0021 4088 sfloppy - ok 14:20:20.0096 4088 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll 14:20:20.0101 4088 SharedAccess - ok 14:20:20.0135 4088 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 14:20:20.0178 4088 ShellHWDetection - ok 14:20:20.0198 4088 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys 14:20:20.0214 4088 sisagp - ok 14:20:20.0253 4088 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 14:20:20.0273 4088 SiSRaid2 - ok 14:20:20.0296 4088 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 14:20:20.0300 4088 SiSRaid4 - ok 14:20:20.0403 4088 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe 14:20:20.0406 4088 SkypeUpdate - ok 14:20:20.0447 4088 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys 14:20:20.0449 4088 Smb - ok 14:20:20.0489 4088 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 14:20:20.0493 4088 SNMPTRAP - ok 14:20:20.0515 4088 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys 14:20:20.0517 4088 spldr - ok 14:20:20.0578 4088 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe 14:20:20.0584 4088 Spooler - ok 14:20:20.0673 4088 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe 14:20:20.0711 4088 sppsvc - ok 14:20:20.0744 4088 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll 14:20:20.0749 4088 sppuinotify - ok 14:20:20.0825 4088 [ D15DA1BA189770D93EEA2D7E18F95AF9 ] sptd C:\Windows\system32\Drivers\sptd.sys 14:20:20.0825 4088 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: D15DA1BA189770D93EEA2D7E18F95AF9 14:20:20.0836 4088 sptd ( LockedFile.Multi.Generic ) - warning 14:20:20.0836 4088 sptd - detected LockedFile.Multi.Generic (1) 14:20:20.0896 4088 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys 14:20:20.0901 4088 srv - ok 14:20:20.0927 4088 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 14:20:20.0932 4088 srv2 - ok 14:20:20.0959 4088 [ E00FDFAFF025E94F9821153750C35A6D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS 14:20:20.0962 4088 SrvHsfHDA - ok 14:20:20.0998 4088 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS 14:20:21.0012 4088 SrvHsfV92 - ok 14:20:21.0045 4088 [ BC0C7EA89194C299F051C24119000E17 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS 14:20:21.0055 4088 SrvHsfWinac - ok 14:20:21.0091 4088 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 14:20:21.0094 4088 srvnet - ok 14:20:21.0165 4088 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 14:20:21.0170 4088 SSDPSRV - ok 14:20:21.0190 4088 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll 14:20:21.0194 4088 SstpSvc - ok 14:20:21.0229 4088 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\drivers\stexstor.sys 14:20:21.0230 4088 stexstor - ok 14:20:21.0281 4088 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll 14:20:21.0289 4088 StiSvc - ok 14:20:21.0326 4088 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys 14:20:21.0328 4088 storflt - ok 14:20:21.0371 4088 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys 14:20:21.0374 4088 storvsc - ok 14:20:21.0411 4088 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 14:20:21.0412 4088 swenum - ok 14:20:21.0440 4088 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll 14:20:21.0447 4088 swprv - ok 14:20:21.0470 4088 [ F2AD8960812FD111E20E84659EF19D43 ] Synth3dVsc C:\Windows\system32\drivers\synth3dvsc.sys 14:20:21.0472 4088 Synth3dVsc - ok 14:20:21.0561 4088 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll 14:20:21.0577 4088 SysMain - ok 14:20:21.0603 4088 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll 14:20:21.0607 4088 TabletInputService - ok 14:20:21.0638 4088 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll 14:20:21.0644 4088 TapiSrv - ok 14:20:21.0670 4088 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll 14:20:21.0674 4088 TBS - ok 14:20:21.0739 4088 [ E23A56F843E2AEBBB209D0ACCA73C640 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 14:20:21.0755 4088 Tcpip - ok 14:20:21.0796 4088 [ E23A56F843E2AEBBB209D0ACCA73C640 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 14:20:21.0805 4088 TCPIP6 - ok 14:20:21.0854 4088 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 14:20:21.0855 4088 tcpipreg - ok 14:20:21.0892 4088 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 14:20:21.0893 4088 TDPIPE - ok 14:20:21.0936 4088 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 14:20:21.0938 4088 TDTCP - ok 14:20:21.0954 4088 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 14:20:21.0956 4088 tdx - ok 14:20:21.0979 4088 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 14:20:21.0980 4088 TermDD - ok 14:20:22.0012 4088 [ 052306FD76793D5D5AB5D9891FD1ADBB ] terminpt C:\Windows\system32\drivers\terminpt.sys 14:20:22.0014 4088 terminpt - ok 14:20:22.0055 4088 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll 14:20:22.0067 4088 TermService - ok 14:20:22.0092 4088 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll 14:20:22.0098 4088 Themes - ok 14:20:22.0116 4088 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll 14:20:22.0119 4088 THREADORDER - ok 14:20:22.0155 4088 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll 14:20:22.0160 4088 TrkWks - ok 14:20:22.0210 4088 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 14:20:22.0214 4088 TrustedInstaller - ok 14:20:22.0246 4088 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 14:20:22.0247 4088 tssecsrv - ok 14:20:22.0268 4088 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 14:20:22.0269 4088 TsUsbFlt - ok 14:20:22.0301 4088 [ 01246F0BAAD7B68EC0F472AA41E33282 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 14:20:22.0304 4088 TsUsbGD - ok 14:20:22.0329 4088 [ 045ACB987C650D8186C6B4A692223860 ] tsusbhub C:\Windows\system32\drivers\tsusbhub.sys 14:20:22.0331 4088 tsusbhub - ok 14:20:22.0378 4088 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 14:20:22.0379 4088 tunnel - ok 14:20:22.0405 4088 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\drivers\uagp35.sys 14:20:22.0407 4088 uagp35 - ok 14:20:22.0430 4088 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys 14:20:22.0434 4088 udfs - ok 14:20:22.0477 4088 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe 14:20:22.0483 4088 UI0Detect - ok 14:20:22.0510 4088 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 14:20:22.0515 4088 uliagpkx - ok 14:20:22.0546 4088 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\DRIVERS\umbus.sys 14:20:22.0548 4088 umbus - ok 14:20:22.0569 4088 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\drivers\umpass.sys 14:20:22.0570 4088 UmPass - ok 14:20:22.0610 4088 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll 14:20:22.0615 4088 UmRdpService - ok 14:20:22.0642 4088 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll 14:20:22.0649 4088 upnphost - ok 14:20:22.0675 4088 [ 7E72E7D7E0757D59481D530FD2B0BFAE ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 14:20:22.0676 4088 usbccgp - ok 14:20:22.0705 4088 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys 14:20:22.0707 4088 usbcir - ok 14:20:22.0730 4088 [ CFBCE999C057D78979A181C9C60F208E ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 14:20:22.0732 4088 usbehci - ok 14:20:22.0759 4088 [ 9D22AAD9AC6A07C691A1113E5F860868 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 14:20:22.0764 4088 usbhub - ok 14:20:22.0791 4088 [ A6FB7957EA7AFB1165991E54CE934B74 ] usbohci C:\Windows\system32\drivers\usbohci.sys 14:20:22.0793 4088 usbohci - ok 14:20:22.0824 4088 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 14:20:22.0825 4088 usbprint - ok 14:20:22.0881 4088 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 14:20:22.0883 4088 usbscan - ok 14:20:22.0912 4088 [ BF63EBFC6979FEFB2BC03DF7989A0C1A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 14:20:22.0915 4088 USBSTOR - ok 14:20:22.0934 4088 [ 78780C3EBCE17405B1CCD07A3A8A7D72 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys 14:20:22.0935 4088 usbuhci - ok 14:20:22.0976 4088 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys 14:20:22.0979 4088 usbvideo - ok 14:20:23.0008 4088 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll 14:20:23.0016 4088 UxSms - ok 14:20:23.0036 4088 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe 14:20:23.0038 4088 VaultSvc - ok 14:20:23.0075 4088 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 14:20:23.0077 4088 vdrvroot - ok 14:20:23.0108 4088 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe 14:20:23.0116 4088 vds - ok 14:20:23.0159 4088 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 14:20:23.0161 4088 vga - ok 14:20:23.0179 4088 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys 14:20:23.0180 4088 VgaSave - ok 14:20:23.0193 4088 VGPU - ok 14:20:23.0228 4088 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 14:20:23.0231 4088 vhdmp - ok 14:20:23.0264 4088 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys 14:20:23.0266 4088 viaagp - ok 14:20:23.0289 4088 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\drivers\viac7.sys 14:20:23.0290 4088 ViaC7 - ok 14:20:23.0312 4088 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys 14:20:23.0313 4088 viaide - ok 14:20:23.0352 4088 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys 14:20:23.0355 4088 vmbus - ok 14:20:23.0378 4088 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys 14:20:23.0381 4088 VMBusHID - ok 14:20:23.0399 4088 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys 14:20:23.0401 4088 volmgr - ok 14:20:23.0429 4088 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 14:20:23.0433 4088 volmgrx - ok 14:20:23.0456 4088 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys 14:20:23.0461 4088 volsnap - ok 14:20:23.0497 4088 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 14:20:23.0500 4088 vsmraid - ok 14:20:23.0558 4088 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe 14:20:23.0574 4088 VSS - ok 14:20:23.0592 4088 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 14:20:23.0593 4088 vwifibus - ok 14:20:23.0629 4088 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 14:20:23.0631 4088 vwififlt - ok 14:20:23.0662 4088 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll 14:20:23.0669 4088 W32Time - ok 14:20:23.0714 4088 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\drivers\wacompen.sys 14:20:23.0716 4088 WacomPen - ok 14:20:23.0746 4088 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 14:20:23.0749 4088 WANARP - ok 14:20:23.0759 4088 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 14:20:23.0760 4088 Wanarpv6 - ok 14:20:23.0857 4088 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe 14:20:23.0874 4088 WatAdminSvc - ok 14:20:23.0934 4088 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe 14:20:23.0951 4088 wbengine - ok 14:20:23.0978 4088 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 14:20:23.0983 4088 WbioSrvc - ok 14:20:24.0015 4088 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll 14:20:24.0023 4088 wcncsvc - ok 14:20:24.0051 4088 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 14:20:24.0055 4088 WcsPlugInService - ok 14:20:24.0095 4088 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\drivers\wd.sys 14:20:24.0096 4088 Wd - ok 14:20:24.0147 4088 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 14:20:24.0154 4088 Wdf01000 - ok 14:20:24.0180 4088 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll 14:20:24.0184 4088 WdiServiceHost - ok 14:20:24.0197 4088 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll 14:20:24.0200 4088 WdiSystemHost - ok 14:20:24.0232 4088 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll 14:20:24.0237 4088 WebClient - ok 14:20:24.0256 4088 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll 14:20:24.0263 4088 Wecsvc - ok 14:20:24.0285 4088 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll 14:20:24.0292 4088 wercplsupport - ok 14:20:24.0334 4088 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll 14:20:24.0338 4088 WerSvc - ok 14:20:24.0373 4088 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 14:20:24.0375 4088 WfpLwf - ok 14:20:24.0410 4088 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys 14:20:24.0411 4088 WIMMount - ok
kedd jan. 08, 2013 14:23

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit ha jobb klikelsz a kepre es futtatod mint rendszergazda akko is?? ha igen akkor meglassuk ha nem e Rootkit csinalja eztet, csak csinald amit irok, mert latok ott valami akasztást is.
kedd jan. 08, 2013 14:19

Orsik88 ezüst tag Csatlakozott: kedd jan. 08, 2013 11:40 Hozzászólások: 15	Re: STELL Segit közbe egy kérdés..miért van megtagadva a hozzáférés pl egy képek mappához??
kedd jan. 08, 2013 14:16

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit ok, 1:Futtasd le az TDSSKILLERT, http://www.viruskasino.com/2010/12/odst ... kitov.html Naplojat tedd ide,
kedd jan. 08, 2013 14:14

Orsik88 ezüst tag Csatlakozott: kedd jan. 08, 2013 11:40 Hozzászólások: 15	Re: STELL Segit All processes killed ========== FILES ========== < ipconfig /flushdns /c > Windows IP konfigur ci˘ A DNS-felold si gyorsˇt˘t r kirˇt‚se sikeresen megt”rt‚nt. C:\Users\HOME\Downloads\cmd.bat deleted successfully. C:\Users\HOME\Downloads\cmd.txt deleted successfully. ========== COMMANDS ========== C:\Windows\System32\drivers\etc\Hosts moved successfully. HOSTS file reset successfully [EMPTYTEMP] User: All Users User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes ->Flash cache emptied: 56475 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: HOME ->Temp folder emptied: 3059660 bytes ->Temporary Internet Files folder emptied: 7739643 bytes ->Java cache emptied: 34381053 bytes ->Google Chrome cache emptied: 38157826 bytes ->Flash cache emptied: 57161 bytes User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 1257588 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 81,00 mb Restore point Set: OTL Restore Point [EMPTYFLASH] User: All Users User: Default ->Flash cache emptied: 0 bytes User: Default User ->Flash cache emptied: 0 bytes User: HOME ->Flash cache emptied: 0 bytes User: Public Total Flash Files Cleaned = 0,00 mb OTL by OldTimer - Version 3.2.69.0 log created on 01082013_135751
kedd jan. 08, 2013 14:12

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit Futtatni kellet, de nezd meg itt, ha nincsen e itt C:\_OTL\MovedFiles\ ..txt
kedd jan. 08, 2013 14:11

Orsik88 ezüst tag Csatlakozott: kedd jan. 08, 2013 11:40 Hozzászólások: 15	Re: STELL Segit ennek nincs meg a naplója, valószínű valamit nem jól csináltam..újraindítás után feldobta h futtassam megint, de azt kinyomtam...
kedd jan. 08, 2013 14:08

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit Tolds le az asztalra, es futtasd http://oldtimer.geekstogo.com/OTL.exe Pipazd be ALLUSERS az ablakjaba Customscan masold be ezt a textet: es klik az RUNFIX gombra. Kód: :Files ipconfig /flushdns /c :Commands [resethosts] [emptytemp] [clearallrestorepoints] [EMPTYFLASH] [start explorer] [Reboot] a restart utan a naplojat tedd ide.
kedd jan. 08, 2013 13:55

Orsik88 ezüst tag Csatlakozott: kedd jan. 08, 2013 11:40 Hozzászólások: 15	Re: STELL Segit RogueKiller V8.4.2 [Jan 6 2013] by Tigzy mail : tigzyRK<at>gmail<dot>com Feedback : http://www.geekstogo.com/forum/files/fi ... guekiller/ Website : http://tigzy.geekstogo.com/roguekiller.php Blog : http://tigzyrk.blogspot.com/ Operating System : Windows 7 (6.1.7601 Service Pack 1) 32 bits version Started in : Normal mode User : HOME [Admin rights] Mode : Remove -- Date : 01/08/2013 13:32:21 ¤¤¤ Bad processes : 1 ¤¤¤ [SUSP PATH] FacebookMessenger.exe -- C:\Users\HOME\AppData\Local\Facebook\Messenger\2.1.4651.0\FacebookMessenger.exe -> KILLED [TermProc] ¤¤¤ Registry Entries : 5 ¤¤¤ [STARTUP][SUSP PATH] Facebook Messenger.lnk @HOME : C:\Users\HOME\AppData\Local\Facebook\Messenger\2.1.4651.0\FacebookMessenger.exe -> DELETED [HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> REPLACED (2) [HJ] HKLM\[...]\System : EnableLUA (0) -> REPLACED (1) [HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0) [HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0) ¤¤¤ Particular Files / Folders: ¤¤¤ ¤¤¤ Driver : [LOADED] ¤¤¤ IRP[IRP_MJ_CREATE] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84E371F8) IRP[IRP_MJ_CLOSE] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84E371F8) IRP[IRP_MJ_DEVICE_CONTROL] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84E371F8) IRP[IRP_MJ_INTERNAL_DEVICE_CONTROL] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84E371F8) IRP[IRP_MJ_POWER] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84E371F8) IRP[IRP_MJ_SYSTEM_CONTROL] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84E371F8) IRP[IRP_MJ_PNP] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84E371F8) ¤¤¤ HOSTS File: ¤¤¤ --> C:\Windows\system32\drivers\etc\hosts ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: SAMSUNG HM321HI ATA Device +++++ --- User --- [MBR] 793bfa89bdf470d1701813de5c415cd4 [BSP] e99e5aff8f5c1ff4ce7ede5bbcfa7a34 : Windows 7/8 MBR Code Partition table: 0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 \| Size: 100 Mo 1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 \| Size: 99900 Mo 2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 204802048 \| Size: 205242 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive1: SD Memory Card +++++ --- User --- [MBR] e1081c0feb0c15b931ef016b4c9f1ce1 [BSP] df4f83c1f72e36823a12b0dfc7617313 : MBR Code unknown Partition table: 0 - [XXXXXX] FAT32 (0x0b) [VISIBLE] Offset (sectors): 8192 \| Size: 3776 Mo Error reading LL1 MBR! Error reading LL2 MBR! Finished : << RKreport[2]_D_01082013_02d1332.txt >> RKreport[1]_S_01082013_02d1332.txt ; RKreport[2]_D_01082013_02d1332.txt
kedd jan. 08, 2013 13:37

Orsik88 ezüst tag Csatlakozott: kedd jan. 08, 2013 11:40 Hozzászólások: 15	Re: STELL Segit # AdwCleaner v2.105 - Logfile created 01/08/2013 at 13:17:59 # Updated 08/01/2013 by Xplode # Operating system : Windows 7 Ultimate Service Pack 1 (32 bits) # User : HOME - HOME-PC # Boot Mode : Normal # Running from : C:\Users\HOME\Downloads\adwcleaner.exe # Option [Delete] *** [Services] * * [Files / Folders] * Deleted on reboot : C:\Program Files\BrowserCompanion File Deleted : C:\END File Deleted : C:\user.js File Deleted : C:\Windows\system32\conduitEngine.tmp Folder Deleted : C:\Program Files\Conduit Folder Deleted : C:\Program Files\ConduitEngine Folder Deleted : C:\Program Files\DAEMON Tools Toolbar Folder Deleted : C:\Program Files\QuestBasic Folder Deleted : C:\Program Files\RelevantKnowledge Folder Deleted : C:\ProgramData\Ask Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge Folder Deleted : C:\ProgramData\QuestBasic Folder Deleted : C:\Users\HOME\AppData\Local\Conduit Folder Deleted : C:\Users\HOME\AppData\LocalLow\bbrs_002.tb Folder Deleted : C:\Users\HOME\AppData\LocalLow\Conduit Folder Deleted : C:\Users\HOME\AppData\LocalLow\ConduitEngine Folder Deleted : C:\Users\HOME\AppData\LocalLow\Funmoods Folder Deleted : C:\Users\HOME\AppData\LocalLow\PriceGong * [Registry] * Key Deleted : HKCU\Software\AppDataLow\Software\Conduit Key Deleted : HKCU\Software\AppDataLow\Software\conduitEngine Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar Key Deleted : HKCU\Software\AppDataLow\Toolbar Key Deleted : HKCU\Software\Blabbers Key Deleted : HKCU\Software\BrowserCompanion Key Deleted : HKCU\Software\Conduit Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{86F14831-D88C-4BC8-B871-C8FB24D95D9B} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00CBB66B-1D3B-46D3-9577-323A336ACB50} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31AD400D-1B06-4E33-A59A-90C2C140CBA0} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{963B125B-8B21-49A2-A3A8-E37092276531} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847} Key Deleted : HKCU\Software\Softonic Key Deleted : HKCU\Software\SweetIM Key Deleted : HKLM\Software\BrowserCompanion Key Deleted : HKLM\SOFTWARE\Classes\AppID\{20EDC024-43C5-423E-B7F5-FD93523E0D9F} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{373ED12D-B306-43AC-9485-A7C5133DC34C} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{ED6535E7-F778-48A5-A060-549D30024511} Key Deleted : HKLM\SOFTWARE\Classes\AppID\tdataprotocol.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\updatebho.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\wit4ie.DLL Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00CBB66B-1D3B-46D3-9577-323A336ACB50} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{963B125B-8B21-49A2-A3A8-E37092276531} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{817923CB-4744-4216-B250-CF7EDA8F1767} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9F0C17EB-EF2C-4278-9136-2D547656BC03} Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\base64 Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\chrome Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\prox Key Deleted : HKLM\SOFTWARE\Classes\tdataprotocol.CTData Key Deleted : HKLM\SOFTWARE\Classes\tdataprotocol.CTData.1 Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT1750559 Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2786678 Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2905285 Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{830B56CB-FD22-44AA-9887-7898F4F4158D} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{8830DDF0-3042-404D-A62C-384A85E34833} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{955B782E-CDC8-4CEE-B6F6-AD7D541A8D8A} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8} Key Deleted : HKLM\SOFTWARE\Classes\updatebho.TimerBHO Key Deleted : HKLM\SOFTWARE\Classes\updatebho.TimerBHO.1 Key Deleted : HKLM\SOFTWARE\Classes\wit4ie.WitBHO Key Deleted : HKLM\SOFTWARE\Classes\wit4ie.WitBHO.2 Key Deleted : HKLM\Software\Conduit Key Deleted : HKLM\Software\conduitEngine Key Deleted : HKLM\Software\dlQUE Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\fdloijijlkoblmigdofommgnheckmaki Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mkndcbhcgphcfkkddanakjiepeknbgle Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E0BCC67-8558-448E-8761-5D737BC56111} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00CBB66B-1D3B-46D3-9577-323A336ACB50} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{963B125B-8B21-49A2-A3A8-E37092276531} Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BrowserCompanion Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\QuestBasic Key Deleted : HKLM\Software\QuestBasic Key Deleted : HKLM\Software\SweetIM Key Deleted : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{86F14831-D88C-4BC8-B871-C8FB24D95D9B} Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{30F9B915-B755-4826-820B-08FBA6BD249D}] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{30F9B915-B755-4826-820B-08FBA6BD249D}] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Browser companion helper] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{3C5F0F00-683D-4847-89C8-E7AF64FD1CFB}] * [Internet Browsers] * -\\ Internet Explorer v8.0.7601.17514 Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.conduit.com?SearchSource= ... =CT1750559 --> hxxp://www.google.com -\\ Google Chrome v23.0.1271.97 File : C:\Users\HOME\AppData\Local\Google\Chrome\User Data\Default\Preferences [OK] File is clean. *********************** AdwCleaner[S1].txt - [9442 octets] - [08/01/2013 13:17:59] ########## EOF - C:\AdwCleaner[S1].txt - [9502 octets] ##########
kedd jan. 08, 2013 13:36

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit 1:Ezt a vacak Spybot - Search & Destroy <,Telepitsd le a geprol. 2:Futtasd le az ADWcleanert KLIK DELETE gombra aztan OK,OK a gep restarto es add naplot, tedd ide, Itt van a blogomban alink az ADWcleanera. http://www.viruskasino.com/2012/09/adwcleaner.html 3:Futtasd le az RogueKiller programot, Futtatni es klik AZ DELETE gombra Az naplojat tedd ide http://www.viruskasino.com/2010/12/prog ... ogueKiller Aztan megnezem a naplokat es ugy folytassuk.
kedd jan. 08, 2013 13:11

Orsik88 ezüst tag Csatlakozott: kedd jan. 08, 2013 11:40 Hozzászólások: 15	Re: STELL Segit Logfile of random's system information tool 1.09 (written by random/random) Run by HOME at 2013-01-08 12:54:11 Microsoft Windows 7 Ultimate Service Pack 1 System drive C: has 55 GB (56%) free of 100 GB Total RAM: 2012 MB (42% free) HijackThis download failed ======Scheduled tasks folder====== C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1074485599-1199041760-1399786194-1000Core1cd604749026028.job C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1074485599-1199041760-1399786194-1000UA.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1074485599-1199041760-1399786194-1000Core.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1074485599-1199041760-1399786194-1000UA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00cbb66b-1d3b-46d3-9577-323a336acb50}] Browser Companion Helper - C:\Program Files\BrowserCompanion\jsloader.dll [2011-12-16 225584] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-03-26 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] Conduit Engine - C:\Program Files\ConduitEngine\prxConduitEngine.dll [2011-03-28 176936] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java(tm) Plug-In SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-07-05 453544] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}] Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{963B125B-8B21-49A2-A3A8-E37092276531}] Browser Companion Helper Verifier - C:\Program Files\BrowserCompanion\updatebhoWin32.dll [2011-12-16 141104] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-07-05 157616] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files\ConduitEngine\prxConduitEngine.dll [2011-03-28 176936] {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240] {ae07101b-46d4-4a98-af68-0333ea26e113} [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-10-13 138008] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-10-13 171288] "Persistence"=C:\Windows\system32\igfxpers.exe [2011-10-13 172824] "Browser companion helper"=C:\Program Files\BrowserCompanion\BCHelper.exe [2011-12-16 187696] "PlusService"=C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe [2012-02-27 801792] "MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2012-09-12 947176] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2009-04-23 691656] "Facebook Update"=C:\Users\HOME\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12 138096] C:\Users\HOME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup Facebook Messenger.lnk - C:\Users\HOME\AppData\Local\Facebook\Messenger\2.1.4651.0\FacebookMessenger.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2011-10-13 228864] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=0 "ConsentPromptBehaviorUser"=3 "EnableLUA"=0 "EnableUIADesktopToggle"=0 "PromptOnSecureDesktop"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "MSVideo8"=VfWWDM32.dll "VIDC.FMVC"=fmcodec.dll "VIDC.XVID"=xvidvfw.dll "msacm.ac3acm"=ac3acm.acm "msacm.lameacm"=lameACM.acm "VIDC.FFDS"=ff_vfw.dll "msacm.siren"=sirenacm.dll "vidc.VP60"=C:\Windows\system32\vp6vfw.dll "vidc.VP61"=C:\Windows\system32\vp6vfw.dll ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* .scr - open - C:\Windows\system32\notepad.exe "%1" .scr - install - .scr - config - ======List of files/folders created in the last 1 month====== 2013-01-08 12:54:13 ----D---- C:\Program Files\trend micro 2013-01-08 12:54:11 ----D---- C:\rsit 2013-01-08 11:03:21 ----D---- C:\Program Files\Microsoft Security Client 2013-01-08 11:02:39 ----D---- C:\0e58ea43ca1813218bffe9dc7f04e6 2013-01-08 11:01:52 ----A---- C:\Windows\RAVTC.TMP 2013-01-08 11:00:15 ----N---- C:\Windows\PAVSHRB.INI 2013-01-08 10:44:47 ----D---- C:\Windows\system32\Wat 2013-01-08 10:31:30 ----A---- C:\Windows\system32\fontsub.dll 2013-01-08 10:31:30 ----A---- C:\Windows\system32\atmlib.dll 2013-01-08 10:31:30 ----A---- C:\Windows\system32\atmfd.dll 2013-01-08 10:10:06 ----A---- C:\Windows\system32\Wdfres.dll 2013-01-08 10:10:06 ----A---- C:\Windows\system32\drivers\WdfLdr.sys 2013-01-08 10:10:06 ----A---- C:\Windows\system32\drivers\Wdf01000.sys 2013-01-08 10:09:15 ----A---- C:\Windows\system32\WUDFSvc.dll 2013-01-08 10:09:15 ----A---- C:\Windows\system32\WUDFPlatform.dll 2013-01-08 10:09:15 ----A---- C:\Windows\system32\drivers\WUDFRd.sys 2013-01-08 10:09:15 ----A---- C:\Windows\system32\drivers\WUDFPf.sys 2013-01-08 10:09:14 ----A---- C:\Windows\system32\WUDFHost.exe 2013-01-08 10:09:14 ----A---- C:\Windows\system32\WUDFCoinstaller.dll 2013-01-08 10:09:13 ----A---- C:\Windows\system32\WUDFx.dll 2013-01-08 10:08:49 ----A---- C:\Windows\system32\wmi.dll 2013-01-08 10:08:49 ----A---- C:\Windows\system32\imagehlp.dll 2013-01-08 10:08:49 ----A---- C:\Windows\system32\drivers\fs_rec.sys 2013-01-08 10:08:26 ----A---- C:\Windows\system32\browserchoice.exe 2013-01-08 09:56:13 ----D---- C:\Program Files\MSXML 4.0 2013-01-07 23:14:27 ----D---- C:\ProgramData\Panda Software 2013-01-07 09:20:23 ----A---- C:\Windows\system32\win32spl.dll 2013-01-07 09:20:23 ----A---- C:\Windows\system32\spoolsv.exe 2013-01-07 09:20:20 ----A---- C:\Windows\system32\win32k.sys 2013-01-07 09:20:16 ----A---- C:\Windows\system32\drivers\RNDISMP.sys 2013-01-07 09:20:16 ----A---- C:\Windows\system32\drivers\ndis.sys 2013-01-07 09:19:12 ----A---- C:\Windows\system32\drivers\srv2.sys 2013-01-07 09:19:11 ----A---- C:\Windows\system32\drivers\srvnet.sys 2013-01-07 09:19:11 ----A---- C:\Windows\system32\drivers\srv.sys 2013-01-07 09:19:07 ----A---- C:\Windows\system32\drivers\afd.sys 2013-01-07 09:19:05 ----A---- C:\Windows\system32\ntdll.dll 2013-01-07 09:19:01 ----A---- C:\Windows\system32\wintrust.dll 2013-01-07 09:18:54 ----A---- C:\Windows\system32\KernelBase.dll 2013-01-07 09:18:54 ----A---- C:\Windows\system32\kernel32.dll 2013-01-07 09:18:53 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2013-01-07 09:18:53 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2013-01-07 09:18:53 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2013-01-07 09:18:53 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2013-01-07 09:18:53 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2013-01-07 09:18:53 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2013-01-07 09:18:53 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2013-01-07 09:18:53 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2013-01-07 09:18:53 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2013-01-07 09:18:53 ----A---- C:\Windows\system32\winsrv.dll 2013-01-07 09:18:53 ----A---- C:\Windows\system32\conhost.exe 2013-01-07 09:18:52 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2013-01-07 09:18:52 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2013-01-07 09:18:52 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2013-01-07 09:18:52 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2013-01-07 09:18:52 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2013-01-07 09:18:52 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2013-01-07 09:18:52 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-01-07 09:18:52 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2013-01-07 09:18:52 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2013-01-07 09:18:52 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2013-01-07 09:18:52 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2013-01-07 09:18:52 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2013-01-07 09:18:52 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2013-01-07 09:18:52 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2013-01-07 09:18:52 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2013-01-07 09:18:52 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2013-01-07 09:18:52 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2013-01-07 09:18:52 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2013-01-07 09:18:52 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2013-01-07 09:18:27 ----A---- C:\Windows\system32\xmllite.dll 2013-01-07 09:18:25 ----A---- C:\Windows\system32\dpnet.dll 2013-01-07 09:18:17 ----A---- C:\Windows\system32\vbscript.dll 2013-01-07 09:17:18 ----A---- C:\Windows\system32\dnsrslvr.dll 2013-01-07 09:17:18 ----A---- C:\Windows\system32\dnscacheugc.exe 2013-01-07 09:17:18 ----A---- C:\Windows\system32\dnsapi.dll 2013-01-07 09:17:10 ----A---- C:\Windows\system32\cryptsvc.dll 2013-01-07 09:17:10 ----A---- C:\Windows\system32\cryptnet.dll 2013-01-07 09:17:10 ----A---- C:\Windows\system32\crypt32.dll 2013-01-07 09:16:44 ----A---- C:\Windows\system32\OxpsConverter.exe 2013-01-07 09:16:36 ----A---- C:\Windows\system32\psisdecd.dll 2013-01-07 09:16:26 ----A---- C:\Windows\system32\rdpcorets.dll 2013-01-07 09:16:25 ----A---- C:\Windows\system32\drivers\rdpwd.sys 2013-01-07 09:16:22 ----A---- C:\Windows\system32\schannel.dll 2013-01-07 09:16:22 ----A---- C:\Windows\system32\ncrypt.dll 2013-01-07 09:16:22 ----A---- C:\Windows\system32\drivers\ksecpkg.sys 2013-01-07 09:16:22 ----A---- C:\Windows\system32\drivers\cng.sys 2013-01-07 09:16:21 ----A---- C:\Windows\system32\drivers\ksecdd.sys 2013-01-07 09:16:18 ----A---- C:\Windows\system32\msxml6.dll 2013-01-07 09:16:17 ----A---- C:\Windows\system32\msxml3r.dll 2013-01-07 09:16:17 ----A---- C:\Windows\system32\msxml3.dll 2013-01-07 09:16:14 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys 2013-01-07 09:16:14 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys 2013-01-07 09:16:14 ----A---- C:\Windows\system32\drivers\mrxsmb.sys 2013-01-07 09:16:11 ----A---- C:\Windows\system32\oleaut32.dll 2013-01-07 09:16:11 ----A---- C:\Windows\system32\oleacc.dll 2013-01-07 09:15:37 ----A---- C:\Windows\system32\drivers\ntfs.sys 2013-01-07 09:15:35 ----A---- C:\Windows\system32\inetcomm.dll 2013-01-07 09:15:25 ----A---- C:\Windows\system32\ncsi.dll 2013-01-07 09:15:25 ----A---- C:\Windows\system32\iphlpsvc.dll 2013-01-07 09:15:25 ----A---- C:\Windows\system32\drivers\tcpip.sys 2013-01-07 09:15:25 ----A---- C:\Windows\system32\drivers\netio.sys 2013-01-07 09:15:24 ----A---- C:\Windows\system32\nlasvc.dll 2013-01-07 09:15:24 ----A---- C:\Windows\system32\nlaapi.dll 2013-01-07 09:15:24 ----A---- C:\Windows\system32\netevent.dll 2013-01-07 09:15:24 ----A---- C:\Windows\system32\netcorehc.dll 2013-01-07 09:15:24 ----A---- C:\Windows\system32\drivers\tcpipreg.sys 2013-01-07 09:15:24 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS 2013-01-07 09:15:09 ----A---- C:\Windows\system32\packager.dll 2013-01-07 09:15:04 ----A---- C:\Windows\system32\cdosys.dll 2013-01-07 09:14:50 ----A---- C:\Windows\system32\FXSCOVER.exe 2013-01-07 09:14:48 ----A---- C:\Windows\system32\srcore.dll 2013-01-07 09:14:44 ----A---- C:\Windows\system32\EncDec.dll 2013-01-07 09:14:40 ----A---- C:\Windows\system32\netapi32.dll 2013-01-07 09:14:40 ----A---- C:\Windows\system32\browser.dll 2013-01-07 09:14:40 ----A---- C:\Windows\system32\browcli.dll 2013-01-07 09:14:30 ----A---- C:\Windows\system32\prevhost.exe 2013-01-07 09:14:22 ----A---- C:\Windows\system32\tquery.dll 2013-01-07 09:14:22 ----A---- C:\Windows\system32\mssrch.dll 2013-01-07 09:14:21 ----A---- C:\Windows\system32\SearchIndexer.exe 2013-01-07 09:14:20 ----A---- C:\Windows\system32\SearchProtocolHost.exe 2013-01-07 09:14:20 ----A---- C:\Windows\system32\SearchFilterHost.exe 2013-01-07 09:14:20 ----A---- C:\Windows\system32\mssvp.dll 2013-01-07 09:14:20 ----A---- C:\Windows\system32\mssph.dll 2013-01-07 09:14:19 ----A---- C:\Windows\system32\mssphtb.dll 2013-01-07 09:14:19 ----A---- C:\Windows\system32\msscntrs.dll 2013-01-07 09:14:15 ----A---- C:\Windows\system32\umpnpmgr.dll 2013-01-07 09:14:04 ----A---- C:\Windows\system32\mshtml.dll 2013-01-07 09:13:58 ----A---- C:\Windows\system32\XpsPrint.dll 2013-01-07 09:13:55 ----A---- C:\Windows\system32\jscript.dll 2013-01-07 09:13:53 ----A---- C:\Windows\system32\csrsrv.dll 2013-01-07 09:13:51 ----A---- C:\Windows\system32\XpsGdiConverter.dll 2013-01-07 09:13:48 ----A---- C:\Windows\system32\CPFilters.dll 2013-01-07 09:13:47 ----A---- C:\Windows\system32\sbe.dll 2013-01-07 09:13:43 ----A---- C:\Windows\system32\quartz.dll 2013-01-07 09:13:43 ----A---- C:\Windows\system32\qdvd.dll 2013-01-07 09:13:13 ----A---- C:\Windows\system32\kerberos.dll 2013-01-07 09:13:06 ----A---- C:\Windows\explorer.exe 2013-01-07 09:12:35 ----A---- C:\Windows\system32\ntkrnlpa.exe 2013-01-07 09:12:34 ----A---- C:\Windows\system32\ntoskrnl.exe 2013-01-07 09:12:28 ----A---- C:\Windows\system32\msi.dll 2013-01-07 09:12:22 ----A---- C:\Windows\system32\d3d10level9.dll 2013-01-07 09:12:09 ----A---- C:\Windows\system32\webio.dll 2013-01-07 09:12:09 ----A---- C:\Windows\system32\sspicli.dll 2013-01-07 09:12:09 ----A---- C:\Windows\system32\lsass.exe 2013-01-07 09:12:09 ----A---- C:\Windows\system32\lsasrv.dll 2013-01-07 09:12:08 ----A---- C:\Windows\system32\sspisrv.dll 2013-01-07 09:12:08 ----A---- C:\Windows\system32\secur32.dll 2013-01-07 09:11:59 ----A---- C:\Windows\system32\odbctrac.dll 2013-01-07 09:11:59 ----A---- C:\Windows\system32\odbcjt32.dll 2013-01-07 09:11:59 ----A---- C:\Windows\system32\odbccu32.dll 2013-01-07 09:11:59 ----A---- C:\Windows\system32\odbccr32.dll 2013-01-07 09:11:59 ----A---- C:\Windows\system32\odbccp32.dll 2013-01-07 09:11:53 ----A---- C:\Windows\system32\d3d10_1.dll 2013-01-07 09:11:50 ----A---- C:\Windows\system32\rdrmemptylst.exe 2013-01-07 09:11:50 ----A---- C:\Windows\system32\rdpwsx.dll 2013-01-07 09:11:50 ----A---- C:\Windows\system32\rdpcorekmts.dll 2013-01-07 09:11:46 ----A---- C:\Windows\system32\msvcrt.dll 2013-01-07 09:11:42 ----A---- C:\Windows\system32\drivers\partmgr.sys 2013-01-07 09:11:39 ----A---- C:\Windows\system32\profsvc.dll 2013-01-07 09:11:37 ----A---- C:\Windows\system32\synceng.dll 2013-01-07 09:11:34 ----A---- C:\Windows\system32\localspl.dll 2013-01-07 09:11:28 ----A---- C:\Windows\system32\ntshrui.dll 2013-01-07 09:11:24 ----A---- C:\Windows\system32\DWrite.dll 2013-01-07 09:11:15 ----A---- C:\Windows\system32\dhcpcsvc6.dll 2013-01-07 09:11:15 ----A---- C:\Windows\system32\dhcpcore6.dll 2013-01-07 09:11:02 ----A---- C:\Windows\system32\mfc42.dll 2013-01-07 09:11:01 ----A---- C:\Windows\system32\mfc42u.dll 2013-01-07 09:10:59 ----A---- C:\Windows\system32\drivers\bowser.sys 2013-01-07 09:10:51 ----A---- C:\Windows\system32\shell32.dll 2013-01-07 09:10:44 ----A---- C:\Windows\system32\poqexec.exe 2013-01-07 09:10:42 ----A---- C:\Windows\system32\drivers\Diskdump.sys 2013-01-07 09:10:35 ----A---- C:\Windows\system32\tzres.dll 2013-01-07 08:56:15 ----A---- C:\Windows\system32\drivers\dxgmms1.sys 2013-01-07 08:43:04 ----A---- C:\Windows\system32\rdpcore.dll 2013-01-07 08:43:04 ----A---- C:\Windows\system32\drivers\tdtcp.sys 2013-01-07 08:33:56 ----A---- C:\Windows\system32\wups2.dll 2013-01-07 08:33:55 ----A---- C:\Windows\system32\wucltux.dll 2013-01-07 08:33:55 ----A---- C:\Windows\system32\wuaueng.dll 2013-01-07 08:33:55 ----A---- C:\Windows\system32\wuauclt.exe 2013-01-07 08:33:40 ----A---- C:\Windows\system32\wups.dll 2013-01-07 08:33:40 ----A---- C:\Windows\system32\wudriver.dll 2013-01-07 08:33:40 ----A---- C:\Windows\system32\wuapi.dll 2013-01-07 08:33:27 ----A---- C:\Windows\system32\wuwebv.dll 2013-01-07 08:33:27 ----A---- C:\Windows\system32\wuapp.exe 2013-01-06 18:46:14 ----A---- C:\Windows\system32\SYSTOOLS.DLL 2013-01-06 18:46:14 ----A---- C:\Windows\system32\PavSHook.dll 2013-01-06 18:46:14 ----A---- C:\Windows\system32\PavLspHook.dll 2013-01-06 18:46:14 ----A---- C:\Windows\system32\drivers\neti1644.sys 2013-01-06 18:46:13 ----D---- C:\Program Files\Panda Security 2013-01-06 18:45:51 ----D---- C:\Program Files\Common Files\Panda Security ======List of files/folders modified in the last 1 month====== 2013-01-08 12:54:13 ----RD---- C:\Program Files 2013-01-08 12:53:50 ----D---- C:\Windows\Temp 2013-01-08 11:20:05 ----D---- C:\Windows\system32\config 2013-01-08 11:07:09 ----D---- C:\Windows\Prefetch 2013-01-08 11:05:02 ----SHD---- C:\System Volume Information 2013-01-08 11:03:44 ----D---- C:\Windows 2013-01-08 11:03:35 ----SHD---- C:\Windows\Installer 2013-01-08 11:03:35 ----SHD---- C:\Config.Msi 2013-01-08 11:03:25 ----D---- C:\Windows\system32\drivers 2013-01-08 11:03:25 ----D---- C:\Windows\system32\catroot 2013-01-08 11:03:24 ----SD---- C:\ProgramData\Microsoft 2013-01-08 11:02:18 ----D---- C:\Windows\winsxs 2013-01-08 11:02:00 ----D---- C:\Program Files\Common Files 2013-01-08 11:01:49 ----HD---- C:\ProgramData 2013-01-08 11:01:49 ----D---- C:\Windows\System32 2013-01-08 11:01:05 ----D---- C:\Windows\system32\drivers\etc 2013-01-08 11:01:01 ----D---- C:\Windows\system32\DriverStore 2013-01-08 11:01:01 ----D---- C:\Windows\inf 2013-01-08 10:54:48 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-01-08 10:54:47 ----D---- C:\Users\HOME\AppData\Roaming\uTorrent 2013-01-08 10:54:47 ----D---- C:\Users\HOME\AppData\Roaming\Media Player Classic 2013-01-08 10:54:47 ----D---- C:\Users\HOME\AppData\Roaming\DAEMON Tools Lite 2013-01-08 10:54:44 ----D---- C:\Windows\Microsoft.NET 2013-01-08 10:54:41 ----RSD---- C:\Windows\assembly 2013-01-08 10:54:19 ----D---- C:\Windows\Panther 2013-01-08 10:44:56 ----D---- C:\Windows\system32\hu-HU 2013-01-08 10:44:55 ----RSD---- C:\Windows\Fonts 2013-01-08 10:44:55 ----D---- C:\Windows\ehome 2013-01-08 10:44:55 ----D---- C:\Windows\AppPatch 2013-01-08 10:44:55 ----D---- C:\Program Files\Common Files\System 2013-01-08 10:44:54 ----D---- C:\Program Files\Windows Journal 2013-01-08 10:44:53 ----D---- C:\Windows\system32\migration 2013-01-08 10:44:53 ----D---- C:\Windows\PolicyDefinitions 2013-01-08 10:44:51 ----D---- C:\Windows\system32\wbem 2013-01-08 10:44:51 ----D---- C:\Windows\system32\drivers\hu-HU 2013-01-08 10:19:49 ----D---- C:\ProgramData\Microsoft Help 2013-01-08 10:08:54 ----D---- C:\Windows\system32\catroot2 2013-01-08 10:04:54 ----D---- C:\Program Files\Common Files\microsoft shared 2013-01-08 10:04:50 ----D---- C:\Program Files\Microsoft Works 2013-01-08 10:03:17 ----A---- C:\Windows\win.ini 2013-01-08 10:01:35 ----D---- C:\Users\HOME\AppData\Roaming\Skype 2013-01-08 10:01:28 ----D---- C:\ProgramData\Skype 2013-01-08 10:01:18 ----RD---- C:\Program Files\Skype 2013-01-08 09:55:37 ----D---- C:\Windows\SoftwareDistribution 2013-01-07 11:11:10 ----D---- C:\Windows\rescache 2013-01-06 22:35:48 ----D---- C:\Program Files\Internet Explorer 2013-01-06 18:46:13 ----HD---- C:\Program Files\InstallShield Installation Information 2013-01-06 18:44:52 ----D---- C:\ProgramData\DivX 2013-01-06 18:44:51 ----D---- C:\Program Files\DivX 2013-01-06 18:44:50 ----D---- C:\Program Files\Common Files\PX Storage Engine 2013-01-06 18:43:59 ----D---- C:\ProgramData\MFAData 2012-12-26 20:33:43 ----D---- C:\Users\HOME\AppData\Roaming\Mobipocket 2012-12-24 13:02:57 ----D---- C:\Windows\system32\Tasks 2012-12-16 11:24:49 ----SD---- C:\Users\HOME\AppData\Roaming\Microsoft ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2012-08-30 193552] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440] R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-12-09 721904] R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096] R1 MpKsl3f230943;MpKsl3f230943; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DCEDB092-373E-47C1-A944-D64F384D93CF}\MpKsl3f230943.sys [2013-01-08 29904] R1 ShldDrv;Panda File Shield Driver; C:\Windows\System32\DRIVERS\ShlDrv51.sys [] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128] R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-30 99272] R2 PavProc;Panda Process Protection Driver; \??\C:\Windows\system32\DRIVERS\PavProc.sys [] R3 BCM43XX;Broadcom 802.11 hálózati adapter illesztőprogramja; C:\Windows\system32\DRIVERS\bcmwl6.sys [2009-07-13 1131008] R3 BthEnum;Bluetooth enumerálási szolgáltatás; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816] R3 BthPan;Bluetooth-eszköz (személyes hálózat); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696] R3 BTHUSB;Bluetooth-rádió USB illesztőprogramja; C:\Windows\System32\Drivers\BTHUSB.sys [2010-11-20 60416] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2011-10-13 9037312] R3 RFCOMM;Bluetooth-eszköz (RFCOMM protokoll TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536] R3 RTL8167;Realtek 8167 NT-illesztőprogram; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776] R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-20 84992] R3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360] R3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992] R3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504] R4 NETIMFLT01060044;PANDA NDIS IM Filter Miniport v1.6.0.44; C:\Windows\system32\DRIVERS\neti1644.sys [2010-09-01 201032] R4 WNMFLT;Wifi Monitor Filter Plugin; \??\C:\Windows\system32\Drivers\WNMFLT.SYS [] S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys [2009-07-14 8704] S3 ab6naphv;ab6naphv; C:\Windows\system32\drivers\ab6naphv.sys [] S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720] S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888] S3 BTHPORT;Bluetooth-portillesztőprogram; C:\Windows\System32\Drivers\BTHport.sys [2010-11-20 393216] S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368] S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872] S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632] S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304] S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032] S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-20 77184] S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2010-11-20 25600] S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264] S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-20 112640] S3 usbscan;USB képolvasó-illesztőprogram; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840] S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys [] S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328] S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736] S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360] S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920] S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872] R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2012-09-12 20472] R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-20 935208] R2 PavPrSrv;Panda Process Protection Service; C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe [] R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536] R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2012-09-12 287824] S2 gupdate;Google frissítési szolgáltatás (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-03-05 136176] S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-07-13 160944] S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2012-10-17 77944] S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2012-10-14 1045256] S3 gupdatem;Google frissítés Szolgáltatás (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-03-05 136176] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-01-08 1343400] -----------------EOF----------------- Results of screen317's Security Check version 0.99.56 Windows 7 Service Pack 1 x86 (UAC is disabled!) Internet Explorer 8 Out of date! ``````````````Antivirus/Firewall Check:`````````````` Microsoft Security Essentials Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Spybot - Search & Destroy CCleaner JavaFX 2.1.1 Java(TM) 6 Update 30 Java(TM) 7 Update 5 Java version out of Date! Adobe Reader 9 Adobe Reader out of Date! Google Chrome 21.0.1180.83 Google Chrome 21.0.1180.89 Google Chrome 22.0.1229.79 Google Chrome 22.0.1229.92 Google Chrome 22.0.1229.94 Google Chrome 23.0.1271.64 Google Chrome 23.0.1271.91 Google Chrome 23.0.1271.95 Google Chrome 23.0.1271.97 ````````Process Check: objlist.exe by Laurent```````` Microsoft Security Essentials MSMpEng.exe Microsoft Security Essentials msseces.exe Spybot Teatimer.exe is disabled! `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log``````````````````````
kedd jan. 08, 2013 13:03

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit Tedd ide az RSIT naplojat. Futtatod, klik CONTINUE, es vard meg a naplojat es tedd ide. log.txt http://images.malwareremoval.com/random/RSIT.exe 2: http://screen317.spywareinfoforum.org/SecurityCheck.exe Futtasd es tedd ide a naplojat,checkup.txt,
kedd jan. 08, 2013 12:49

Orsik88 ezüst tag Csatlakozott: kedd jan. 08, 2013 11:40 Hozzászólások: 15	Re: STELL Segit win7 32 bites
kedd jan. 08, 2013 12:43

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit UDV Az eredeti rendszer??? Milyen a Rendszer?/xp??win7??32\64 Bit??
kedd jan. 08, 2013 12:38

Orsik88 ezüst tag Csatlakozott: kedd jan. 08, 2013 11:40 Hozzászólások: 15	Re: STELL Segit Szia! Szeretnék egy kis segítséget kérni tőled. A problémám annyi volt, hogy a gépem az elmúlt időbe nagyon lelassult, fagyott a net, programok és beépített eszközöket elindítása sem ment csak akkor ha újra indítottam az egész rendszert. Avast vírusírtás semmi, AVG semmi, Panda semmi..Mos MSEssentialst tettem fel.Megcsináltam egy rendszer tisztítást..kikapcsoltam a windows updates (ugyanis kb minden bekapcsolásnál volt vmi frissítési kis 'baki'..és mindig hibaüzenetek jöttek fel, itt arra gondoltam h nem eredeti rendszer meg stb...nem szükségesek a frissítések..nem tudom, hogy ezt jól tette e, hogy kikapcsoltam? )..Mostmár működik a tűzfalam rendesen, viszont a Defendert lehetetlen elindítani. Ez nem tudom, hogy az essentials használattal függ össze, vagy mégiscsak valami vírus lenne? Mivel érdemes keresni a fentieken kívül? Nagyon köszi előre is a segítséget! Orsi
kedd jan. 08, 2013 12:06

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Re: STELL Segit Nincsen mit üdv.
hétf. jan. 07, 2013 19:19
Hozzászólások megjelenítése: Rendezés

Oldal: 6 / 16

[ 774 hozzászólás ]

Oldal Előző 1 ... 3, 4, 5, 6, 7, 8, 9 ... 16 Következő

Ki van itt

Jelenlévő fórumozók: nincs regisztrált felhasználó valamint 7 vendég

Nem nyithatsz témákat ebben a fórumban.
Nem válaszolhatsz egy témára ebben a fórumban.
Nem szerkesztheted a hozzászólásaidat ebben a fórumban.
Nem törölheted a hozzászólásaidat ebben a fórumban.

Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group.
Designed by ST Software for PTF.
Magyar fordítás © Magyar phpBB Közösség