Megválaszolatlan hozzászólások | Aktív témák Pontos idő: csüt. márc. 28, 2024 22:15



Hozzászólás a témához  [ 13 hozzászólás ] 
pityu71 gondja 
Szerző Üzenet
vas-tag

Csatlakozott: hétf. dec. 05, 2011 19:34
Hozzászólások: 9
Hozzászólás Re: pityu71 gondja
http://kepkezelo.com/images/0nt3nsm2yiqi9pdgkud6.jpg


csüt. dec. 08, 2011 15:32
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: pityu71 gondja
alitsd be kiíratás 256kb .
es adj ide egy screenshotot hogy lassam hogy van bealitva.


csüt. dec. 08, 2011 9:36
Profil Privát üzenet küldése Honlap
vas-tag

Csatlakozott: hétf. dec. 05, 2011 19:34
Hozzászólások: 9
Hozzászólás Re: pityu71 gondja
Beállítottam a memóriakép típusát,kettő választás van /kiíratás 256kb vagy kernel/beállítottam kernel-re.


csüt. dec. 08, 2011 7:58
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: pityu71 gondja
Alitsd be igy
A memóriakép típusának beállítása
http://support.microsoft.com/kb/315263/hu
es ha kapsz, BlueScreent, akkor mar nem lesz ures.


szer. dec. 07, 2011 19:49
Profil Privát üzenet küldése Honlap
vas-tag

Csatlakozott: hétf. dec. 05, 2011 19:34
Hozzászólások: 9
Hozzászólás Re: pityu71 gondja
rejtett mappák bekapcsolva,C:\Windows\Minidump-a mappa üres.


szer. dec. 07, 2011 19:22
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: pityu71 gondja
kapcsold be a rejtet mappak, fajlok megjeleniteset, es talald meg az
C:\Windows\Minidump
a tartalmat csomagold be es tedd fel valahova, a linket tedd ide.


szer. dec. 07, 2011 11:32
Profil Privát üzenet küldése Honlap
vas-tag

Csatlakozott: hétf. dec. 05, 2011 19:34
Hozzászólások: 9
Hozzászólás Re: pityu71 gondja
Bekapcsolás után,mikor a win7 elindulna egy pillanatra BlueScreenWiev,gép újraindul,képernyőn szöveg /indítási javítás-normál módu indítás/ normálmódu indításután rendben elindul.


szer. dec. 07, 2011 9:21
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: pityu71 gondja
ok, most ird le hogy viselkedik a gep,


szer. dec. 07, 2011 8:06
Profil Privát üzenet küldése Honlap
vas-tag

Csatlakozott: hétf. dec. 05, 2011 19:34
Hozzászólások: 9
Hozzászólás Re: pityu71 gondja
ComboFix 11-12-06.01 - pityu 011.12.07. 7:42.2.1 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.36.1038.18.2813.1942 [GMT 1:00]
Running from: c:\users\pityu\Desktop\ComboFix.exe
Command switches used :: c:\users\pityu\Desktop\CFScript.txt
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
FW: FireWall *Enabled* {CE40CCC0-8ADB-6D67-25A0-C5B6438E4B57}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_ESGIGUARD
-------\Service_esgiguard
-------\Service_MEMSWEEP2
.
.
((((((((((((((((((((((((( Files Created from 2011-11-07 to 2011-12-07 )))))))))))))))))))))))))))))))
.
.
2011-12-05 16:47 . 2011-12-05 16:47 -------- d-----w- C:\found.000
2011-12-04 14:57 . 2011-02-19 06:37 1135104 ----a-w- c:\windows\system32\FntCache.dll
2011-12-04 14:57 . 2011-02-19 05:32 1074176 ----a-w- c:\windows\SysWow64\DWrite.dll
2011-12-04 14:57 . 2011-02-19 06:37 1540608 ----a-w- c:\windows\system32\DWrite.dll
2011-12-04 14:57 . 2011-02-19 06:36 902656 ----a-w- c:\windows\system32\d2d1.dll
2011-12-04 14:57 . 2011-02-19 05:32 739840 ----a-w- c:\windows\SysWow64\d2d1.dll
2011-12-04 12:28 . 2010-03-04 04:40 184832 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2011-12-04 12:28 . 2010-03-04 04:32 243712 ----a-w- c:\windows\system32\drivers\ks.sys
2011-12-04 12:19 . 2010-10-27 05:16 1739176 ----a-w- c:\windows\system32\ntdll.dll
2011-12-04 12:19 . 2010-10-27 04:40 1293120 ----a-w- c:\windows\SysWow64\ntdll.dll
2011-12-04 12:05 . 2011-12-04 12:05 -------- d-----w- c:\windows\SysWow64\Wat
2011-12-04 12:05 . 2011-12-04 12:05 -------- d-----w- c:\windows\system32\Wat
2011-12-04 11:55 . 2010-09-14 06:45 367104 ----a-w- c:\windows\system32\wcncsvc.dll
2011-12-04 11:55 . 2010-09-14 06:07 276992 ----a-w- c:\windows\SysWow64\wcncsvc.dll
2011-12-04 11:43 . 2009-09-10 06:28 311808 ----a-w- c:\windows\system32\msv1_0.dll
2011-12-04 11:43 . 2009-09-10 05:52 257024 ----a-w- c:\windows\SysWow64\msv1_0.dll
2011-12-04 11:23 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2011-12-04 10:42 . 2011-12-04 10:42 -------- d-----w- c:\programdata\Malwarebytes
2011-12-04 10:42 . 2011-08-31 16:00 25416 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-12-03 22:25 . 2011-07-09 04:30 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2011-12-03 22:23 . 2011-04-09 05:56 123904 ----a-w- c:\windows\SysWow64\poqexec.exe
2011-12-03 22:22 . 2009-09-03 07:04 1320960 ----a-w- c:\windows\SysWow64\CertEnroll.dll
2011-12-03 22:21 . 2011-02-24 06:30 476160 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2011-12-03 22:21 . 2011-02-24 05:32 288256 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2011-12-03 22:21 . 2011-09-29 16:24 1897328 ----a-w- c:\windows\system32\drivers\tcpip.sys
2011-12-03 22:21 . 2010-08-21 06:36 340992 ----a-w- c:\windows\system32\schannel.dll
2011-12-03 22:21 . 2010-08-21 05:36 224256 ----a-w- c:\windows\SysWow64\schannel.dll
2011-12-03 22:21 . 2010-08-21 05:33 530432 ----a-w- c:\windows\SysWow64\comctl32.dll
2011-12-03 22:21 . 2010-08-21 06:31 633856 ----a-w- c:\windows\system32\comctl32.dll
2011-12-03 22:20 . 2011-03-12 11:31 442880 ----a-w- c:\windows\SysWow64\XpsPrint.dll
2011-12-03 22:20 . 2011-03-12 12:03 662528 ----a-w- c:\windows\system32\XpsPrint.dll
2011-12-03 22:20 . 2009-10-28 06:24 389632 ----a-w- c:\windows\system32\winlogon.exe
2011-12-03 22:20 . 2011-03-11 05:40 1164288 ----a-w- c:\windows\SysWow64\mfc42u.dll
2011-12-03 22:20 . 2011-03-11 05:40 1137664 ----a-w- c:\windows\SysWow64\mfc42.dll
2011-12-03 22:20 . 2011-03-11 06:19 1395712 ----a-w- c:\windows\system32\mfc42.dll
2011-12-03 22:20 . 2011-03-11 06:19 1359872 ----a-w- c:\windows\system32\mfc42u.dll
2011-12-03 22:20 . 2010-06-19 06:53 52224 ----a-w- c:\windows\system32\rtutils.dll
2011-12-03 22:20 . 2010-06-19 06:23 37376 ----a-w- c:\windows\SysWow64\rtutils.dll
2011-12-03 22:17 . 2011-08-17 04:26 465408 ----a-w- c:\windows\SysWow64\psisdecd.dll
2011-12-03 22:16 . 2009-08-29 07:50 46592 ----a-w- c:\windows\system32\msasn1.dll
2011-12-03 22:15 . 2011-08-27 05:40 861184 ----a-w- c:\windows\system32\oleaut32.dll
2011-12-03 19:39 . 2011-12-03 19:39 -------- d-----w- c:\program files (x86)\Microsoft.NET
2011-12-03 19:38 . 2009-11-25 19:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll
2011-12-03 19:38 . 2009-11-25 19:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll
2011-12-03 19:38 . 2009-11-25 19:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll
2011-12-03 19:38 . 2009-11-25 19:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
2011-12-03 19:38 . 2009-11-25 19:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe
2011-12-03 19:38 . 2009-11-25 19:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
2011-12-03 19:38 . 2009-11-25 19:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2011-12-03 19:38 . 2009-11-25 19:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
2011-12-03 19:38 . 2009-11-25 19:47 444752 ----a-w- c:\windows\system32\mscoree.dll
2011-12-03 19:38 . 2009-11-25 19:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
2011-12-03 10:43 . 2011-12-03 12:21 -------- d-----w- c:\windows\89A072791DB3485AB1DF584DF86774B9.TMP
2011-12-03 10:43 . 2011-12-03 10:43 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2011-11-19 15:09 . 2011-05-12 13:03 6144 ------w- c:\windows\system32\589E.tmp
2011-11-19 15:09 . 2011-05-12 13:03 6144 ------w- c:\windows\system32\EFEC.tmp
2011-11-18 17:48 . 2011-11-18 17:48 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll
2011-11-18 17:48 . 2011-11-18 17:48 1700352 ----a-w- c:\windows\SysWow64\gdiplus.dll
2011-11-18 17:48 . 2011-11-18 17:48 1060864 ----a-w- c:\windows\SysWow64\mfc71.dll
2011-11-18 16:30 . 2011-10-11 13:53 27760 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2011-11-18 16:30 . 2011-10-11 13:53 97312 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-11-18 16:30 . 2011-10-11 13:53 139512 ----a-w- c:\windows\system32\drivers\avfwot.sys
2011-11-18 16:30 . 2011-10-11 13:53 130760 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-11-18 16:30 . 2011-10-11 13:53 113768 ----a-w- c:\windows\system32\drivers\avfwim.sys
2011-11-18 16:30 . 2011-11-18 16:30 -------- d-----w- c:\programdata\Avira
2011-11-18 16:30 . 2011-11-18 16:30 -------- d-----w- c:\program files (x86)\Avira
2011-11-18 16:28 . 2011-12-05 18:22 -------- d-sh--w- c:\windows\Installer
2011-11-18 08:52 . 2011-10-18 00:27 8570192 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{45E62651-82DF-4EBE-99E7-D74A4347BF9E}\mpengine.dll
2011-11-18 08:52 . 2011-05-24 17:14 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-11-18 08:38 . 2010-01-09 07:19 139264 ----a-w- c:\windows\system32\cabview.dll
2011-11-18 08:38 . 2010-01-09 06:52 132608 ----a-w- c:\windows\SysWow64\cabview.dll
2011-11-18 08:38 . 2009-12-29 08:03 220672 ----a-w- c:\windows\system32\wintrust.dll
2011-11-18 08:38 . 2009-12-29 06:55 172032 ----a-w- c:\windows\SysWow64\wintrust.dll
2011-11-18 08:34 . 2011-12-06 19:13 -------- d-----w- c:\users\pityu
2011-11-18 08:34 . 2011-11-18 08:34 -------- d-sh--we c:\users\Default\Sablonok
2011-11-18 08:34 . 2011-11-18 08:34 -------- d-sh--we c:\users\Default\Dokumentumok
2011-11-18 08:34 . 2011-11-18 08:34 -------- d-sh--we c:\programdata\Sablonok
2011-11-18 08:34 . 2011-11-18 08:34 -------- d-sh--we c:\programdata\Dokumentumok
2011-11-18 08:34 . 2011-11-18 08:34 -------- d-sh--we c:\programdata\Asztal
2011-11-18 08:34 . 2011-11-18 08:34 -------- d-----w- C:\Recovery
2011-11-18 08:17 . 2011-12-04 12:24 -------- d-----w- c:\windows\Panther
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((( SnapShot@2011-12-06_18.19.32 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-11-18 16:34 . 2011-12-07 06:39 18652 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2011-12-07 06:39 34812 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2011-11-18 16:26 . 2011-12-07 06:39 6260 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2835234930-1064886221-2232043522-1000_UserData.bin
- 2011-12-06 18:03 . 2011-12-06 18:03 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-12-07 06:48 . 2011-12-07 06:48 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2011-12-06 18:03 . 2011-12-06 18:03 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-12-07 06:48 . 2011-12-07 06:48 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2009-07-14 12:46 . 2011-12-07 06:42 679072 c:\windows\system32\perfh00E.dat
- 2009-07-14 12:46 . 2011-12-06 18:08 679072 c:\windows\system32\perfh00E.dat
+ 2009-07-14 02:36 . 2011-12-07 06:42 650126 c:\windows\system32\perfh009.dat
- 2009-07-14 02:36 . 2011-12-06 18:08 650126 c:\windows\system32\perfh009.dat
+ 2009-07-14 12:46 . 2011-12-07 06:42 167910 c:\windows\system32\perfc00E.dat
- 2009-07-14 12:46 . 2011-12-06 18:08 167910 c:\windows\system32\perfc00E.dat
- 2009-07-14 02:36 . 2011-12-06 18:08 119890 c:\windows\system32\perfc009.dat
+ 2009-07-14 02:36 . 2011-12-07 06:42 119890 c:\windows\system32\perfc009.dat
- 2009-07-14 05:01 . 2011-12-06 16:53 229236 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 05:01 . 2011-12-07 06:48 229236 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2011-12-05 12:00 . 2011-12-07 06:48 230004 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2835234930-1064886221-2232043522-1000-8192.dat
- 2011-12-05 12:00 . 2011-12-06 16:53 230004 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2835234930-1064886221-2232043522-1000-8192.dat
- 2009-07-14 02:34 . 2011-12-06 16:19 10223616 c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT
+ 2009-07-14 02:34 . 2011-12-06 19:22 10223616 c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1475072]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2011-10-11 258512]
"Malwarebytes' Anti-Malware"="d:\mbam telepített\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 SRS_AE_Service;SRS Audio Essentials;c:\windows\system32\drivers\SRS_AE_amd64.sys [x]
R3 WatAdminSvc;Windows aktiválási technológiák szolgáltatás;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S1 avfwot;avfwot;c:\windows\system32\DRIVERS\avfwot.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AntiVirFirewallService;Avira FireWall;c:\program files (x86)\Avira\AntiVir Desktop\avfwsvc.exe [2011-10-11 616400]
S2 AntiVirMailService;Avira Mail Protection;c:\program files (x86)\Avira\AntiVir Desktop\avmailc.exe [2011-10-11 342480]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2011-10-11 86224]
S2 AntiVirWebService;Avira Web Protection;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [2011-10-11 463824]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 MBAMService;MBAMService;d:\mbam telepített\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
S3 avfwim;AvFw Packet Filter Miniport;c:\windows\system32\DRIVERS\avfwim.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 SiSGbeLH;SiS191/SiS190 Ethernet-eszköz NDIS 6.0 illesztőprogramja;c:\windows\system32\DRIVERS\SiSG664.sys [x]
.
.
Contents of the 'Scheduled Tasks' folder
.
2011-12-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2835234930-1064886221-2232043522-1000Core.job
- c:\users\pityu\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-18 17:46]
.
2011-12-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2835234930-1064886221-2232043522-1000UA.job
- c:\users\pityu\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-18 17:46]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"combofix"="c:\combofix\CF28972.3XE" [2009-07-14 344576]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: LastPass - file://d:\lastpass telepített\context.html?cmd=lastpass
IE: LastPass Fill Forms - file://d:\lastpass telepített\context.html?cmd=fillforms
LSP: c:\program files (x86)\Avira\AntiVir Desktop\avsda.dll
TCP: DhcpNameServer = 79.121.0.2 192.168.0.1
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
.
**************************************************************************
.
Completion time: 2011-12-07 07:54:20 - machine was rebooted
ComboFix-quarantined-files.txt 2011-12-07 06:54
ComboFix2.txt 2011-12-06 18:22
.
Pre-Run: 44 478 066 688 bájt szabad
Post-Run: 44 282 441 728 bájt szabad
.
- - End Of File - - 9B854875ED83F2807DB11E2C4D87EFB4


szer. dec. 07, 2011 7:59
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: pityu71 gondja
d:\chrome let÷ltúsei\ComboFix.exe
:arrow: A combofixet tedd at az asztalra.

Telepítsd le a geprol az c:\program files\Enigma Software Group\SpyHunter
Vírus ijesztő programot.

Script készítés:
Kinyitunk - Notepadot (Jegyzetfüzetet)igy: Start>futtatás>beírod: notepad
és bemásolod- a Kód: címszó alatt található zöld textet(Kód: szó nélkül), aztán a notepadba beillesztett textet elmentjük scriptnek az asztalra , úgy:- Fájl>Mentés Másként>Fájlnév>CFScript.txt>Fájl típusa>Minden fájl>Mentés.(Ásztálra),.Kész, az astalon lévő CFScript txt húzzunk rá a ComboFix ikonnyara. Es mostan megcsinalod eztett:
Kép
A combofix maga elindul es lehet hogy restartol es befejezi a scent.Amit majd ad ted ide.
Kód:
KILLALL::
Driver::
MEMSWEEP2
esgiguard
Folder::
c:\program files\Enigma Software Group\SpyHunter
Rootkit::
c:\windows\system32\589E.tmp
Registry::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\MEMSWEEP2]
"ImagePath"=-


kedd dec. 06, 2011 19:49
Profil Privát üzenet küldése Honlap
vas-tag

Csatlakozott: hétf. dec. 05, 2011 19:34
Hozzászólások: 9
Hozzászólás Re: pityu71 gondja
ComboFix 11-12-06.01 - pityu 011.12.06. 19:13:48.1.1 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.36.1038.18.2813.1983 [GMT 1:00]
Running from: d:\chrome let÷ltúsei\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
FW: FireWall *Enabled* {CE40CCC0-8ADB-6D67-25A0-C5B6438E4B57}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((( Files Created from 2011-11-06 to 2011-12-06 )))))))))))))))))))))))))))))))
.
.
2011-12-06 18:19 . 2011-12-06 18:19 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-12-05 16:47 . 2011-12-05 16:47 -------- d-----w- C:\found.000
2011-12-04 14:57 . 2011-02-19 06:37 1135104 ----a-w- c:\windows\system32\FntCache.dll
2011-12-04 14:57 . 2011-02-19 05:32 1074176 ----a-w- c:\windows\SysWow64\DWrite.dll
2011-12-04 14:57 . 2011-02-19 06:37 1540608 ----a-w- c:\windows\system32\DWrite.dll
2011-12-04 14:57 . 2011-02-19 06:36 902656 ----a-w- c:\windows\system32\d2d1.dll
2011-12-04 14:57 . 2011-02-19 05:32 739840 ----a-w- c:\windows\SysWow64\d2d1.dll
2011-12-04 12:28 . 2010-03-04 04:40 184832 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2011-12-04 12:28 . 2010-03-04 04:32 243712 ----a-w- c:\windows\system32\drivers\ks.sys
2011-12-04 12:19 . 2010-10-27 05:16 1739176 ----a-w- c:\windows\system32\ntdll.dll
2011-12-04 12:19 . 2010-10-27 04:40 1293120 ----a-w- c:\windows\SysWow64\ntdll.dll
2011-12-04 12:05 . 2011-12-04 12:05 -------- d-----w- c:\windows\SysWow64\Wat
2011-12-04 12:05 . 2011-12-04 12:05 -------- d-----w- c:\windows\system32\Wat
2011-12-04 11:55 . 2010-09-14 06:45 367104 ----a-w- c:\windows\system32\wcncsvc.dll
2011-12-04 11:55 . 2010-09-14 06:07 276992 ----a-w- c:\windows\SysWow64\wcncsvc.dll
2011-12-04 11:43 . 2009-09-10 06:28 311808 ----a-w- c:\windows\system32\msv1_0.dll
2011-12-04 11:43 . 2009-09-10 05:52 257024 ----a-w- c:\windows\SysWow64\msv1_0.dll
2011-12-04 11:23 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2011-12-04 10:42 . 2011-12-04 10:42 -------- d-----w- c:\programdata\Malwarebytes
2011-12-04 10:42 . 2011-08-31 16:00 25416 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-12-03 22:25 . 2011-07-09 04:30 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2011-12-03 22:23 . 2011-04-09 05:56 123904 ----a-w- c:\windows\SysWow64\poqexec.exe
2011-12-03 22:22 . 2009-09-03 07:04 1320960 ----a-w- c:\windows\SysWow64\CertEnroll.dll
2011-12-03 22:21 . 2011-02-24 06:30 476160 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2011-12-03 22:21 . 2011-02-24 05:32 288256 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2011-12-03 22:21 . 2011-09-29 16:24 1897328 ----a-w- c:\windows\system32\drivers\tcpip.sys
2011-12-03 22:21 . 2010-08-21 06:36 340992 ----a-w- c:\windows\system32\schannel.dll
2011-12-03 22:21 . 2010-08-21 05:36 224256 ----a-w- c:\windows\SysWow64\schannel.dll
2011-12-03 22:21 . 2010-08-21 05:33 530432 ----a-w- c:\windows\SysWow64\comctl32.dll
2011-12-03 22:21 . 2010-08-21 06:31 633856 ----a-w- c:\windows\system32\comctl32.dll
2011-12-03 22:20 . 2011-03-12 11:31 442880 ----a-w- c:\windows\SysWow64\XpsPrint.dll
2011-12-03 22:20 . 2011-03-12 12:03 662528 ----a-w- c:\windows\system32\XpsPrint.dll
2011-12-03 22:20 . 2009-10-28 06:24 389632 ----a-w- c:\windows\system32\winlogon.exe
2011-12-03 22:20 . 2011-03-11 05:40 1164288 ----a-w- c:\windows\SysWow64\mfc42u.dll
2011-12-03 22:20 . 2011-03-11 05:40 1137664 ----a-w- c:\windows\SysWow64\mfc42.dll
2011-12-03 22:20 . 2011-03-11 06:19 1395712 ----a-w- c:\windows\system32\mfc42.dll
2011-12-03 22:20 . 2011-03-11 06:19 1359872 ----a-w- c:\windows\system32\mfc42u.dll
2011-12-03 22:20 . 2010-06-19 06:53 52224 ----a-w- c:\windows\system32\rtutils.dll
2011-12-03 22:20 . 2010-06-19 06:23 37376 ----a-w- c:\windows\SysWow64\rtutils.dll
2011-12-03 22:17 . 2011-08-17 04:26 465408 ----a-w- c:\windows\SysWow64\psisdecd.dll
2011-12-03 22:16 . 2009-08-29 07:50 46592 ----a-w- c:\windows\system32\msasn1.dll
2011-12-03 22:15 . 2011-08-27 05:40 861184 ----a-w- c:\windows\system32\oleaut32.dll
2011-12-03 19:39 . 2011-12-03 19:39 -------- d-----w- c:\program files (x86)\Microsoft.NET
2011-12-03 19:38 . 2009-11-25 19:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll
2011-12-03 19:38 . 2009-11-25 19:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll
2011-12-03 19:38 . 2009-11-25 19:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll
2011-12-03 19:38 . 2009-11-25 19:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
2011-12-03 19:38 . 2009-11-25 19:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe
2011-12-03 19:38 . 2009-11-25 19:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
2011-12-03 19:38 . 2009-11-25 19:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2011-12-03 19:38 . 2009-11-25 19:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
2011-12-03 19:38 . 2009-11-25 19:47 444752 ----a-w- c:\windows\system32\mscoree.dll
2011-12-03 19:38 . 2009-11-25 19:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
2011-12-03 10:43 . 2011-12-03 12:21 -------- d-----w- c:\windows\89A072791DB3485AB1DF584DF86774B9.TMP
2011-12-03 10:43 . 2011-12-03 10:43 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2011-11-19 15:09 . 2011-05-12 13:03 6144 ------w- c:\windows\system32\589E.tmp
2011-11-19 15:09 . 2011-05-12 13:03 6144 ------w- c:\windows\system32\EFEC.tmp
2011-11-18 17:48 . 2011-11-18 17:48 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll
2011-11-18 17:48 . 2011-11-18 17:48 1700352 ----a-w- c:\windows\SysWow64\gdiplus.dll
2011-11-18 17:48 . 2011-11-18 17:48 1060864 ----a-w- c:\windows\SysWow64\mfc71.dll
2011-11-18 16:30 . 2011-10-11 13:53 27760 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2011-11-18 16:30 . 2011-10-11 13:53 97312 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-11-18 16:30 . 2011-10-11 13:53 139512 ----a-w- c:\windows\system32\drivers\avfwot.sys
2011-11-18 16:30 . 2011-10-11 13:53 130760 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-11-18 16:30 . 2011-10-11 13:53 113768 ----a-w- c:\windows\system32\drivers\avfwim.sys
2011-11-18 16:30 . 2011-11-18 16:30 -------- d-----w- c:\programdata\Avira
2011-11-18 16:30 . 2011-11-18 16:30 -------- d-----w- c:\program files (x86)\Avira
2011-11-18 16:28 . 2011-12-05 18:22 -------- d-sh--w- c:\windows\Installer
2011-11-18 08:52 . 2011-10-18 00:27 8570192 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{45E62651-82DF-4EBE-99E7-D74A4347BF9E}\mpengine.dll
2011-11-18 08:52 . 2011-05-24 17:14 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-11-18 08:38 . 2010-01-09 07:19 139264 ----a-w- c:\windows\system32\cabview.dll
2011-11-18 08:38 . 2010-01-09 06:52 132608 ----a-w- c:\windows\SysWow64\cabview.dll
2011-11-18 08:38 . 2009-12-29 08:03 220672 ----a-w- c:\windows\system32\wintrust.dll
2011-11-18 08:38 . 2009-12-29 06:55 172032 ----a-w- c:\windows\SysWow64\wintrust.dll
2011-11-18 08:34 . 2011-12-05 16:13 -------- d-----w- c:\users\pityu
2011-11-18 08:34 . 2011-11-18 08:34 -------- d-sh--we c:\users\Default\Sablonok
2011-11-18 08:34 . 2011-11-18 08:34 -------- d-sh--we c:\users\Default\Dokumentumok
2011-11-18 08:34 . 2011-11-18 08:34 -------- d-sh--we c:\programdata\Sablonok
2011-11-18 08:34 . 2011-11-18 08:34 -------- d-sh--we c:\programdata\Dokumentumok
2011-11-18 08:34 . 2011-11-18 08:34 -------- d-sh--we c:\programdata\Asztal
2011-11-18 08:34 . 2011-11-18 08:34 -------- d-----w- C:\Recovery
2011-11-18 08:17 . 2011-12-04 12:24 -------- d-----w- c:\windows\Panther
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1475072]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2011-10-11 258512]
"Malwarebytes' Anti-Malware"="d:\mbam telepített\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 esgiguard;esgiguard;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
R3 MEMSWEEP2;MEMSWEEP2;c:\windows\system32\589E.tmp [x]
R3 SRS_AE_Service;SRS Audio Essentials;c:\windows\system32\drivers\SRS_AE_amd64.sys [x]
R3 WatAdminSvc;Windows aktiválási technológiák szolgáltatás;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S1 avfwot;avfwot;c:\windows\system32\DRIVERS\avfwot.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AntiVirFirewallService;Avira FireWall;c:\program files (x86)\Avira\AntiVir Desktop\avfwsvc.exe [2011-10-11 616400]
S2 AntiVirMailService;Avira Mail Protection;c:\program files (x86)\Avira\AntiVir Desktop\avmailc.exe [2011-10-11 342480]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2011-10-11 86224]
S2 AntiVirWebService;Avira Web Protection;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [2011-10-11 463824]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 MBAMService;MBAMService;d:\mbam telepített\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
S3 avfwim;AvFw Packet Filter Miniport;c:\windows\system32\DRIVERS\avfwim.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 SiSGbeLH;SiS191/SiS190 Ethernet-eszköz NDIS 6.0 illesztőprogramja;c:\windows\system32\DRIVERS\SiSG664.sys [x]
.
.
Contents of the 'Scheduled Tasks' folder
.
2011-12-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2835234930-1064886221-2232043522-1000Core.job
- c:\users\pityu\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-18 17:46]
.
2011-12-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2835234930-1064886221-2232043522-1000UA.job
- c:\users\pityu\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-18 17:46]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: LastPass - file://d:\lastpass telepített\context.html?cmd=lastpass
IE: LastPass Fill Forms - file://d:\lastpass telepített\context.html?cmd=fillforms
LSP: c:\program files (x86)\Avira\AntiVir Desktop\avsda.dll
TCP: DhcpNameServer = 79.121.0.2 192.168.0.1
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\MEMSWEEP2]
"ImagePath"="\??\c:\windows\system32\589E.tmp"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2011-12-06 19:22:18
ComboFix-quarantined-files.txt 2011-12-06 18:22
.
Pre-Run: 44 662 325 248 bájt szabad
Post-Run: 44 537 184 256 bájt szabad
.
- - End Of File - - C31D842B6F139FF45792FF342CD1B6FF


kedd dec. 06, 2011 19:27
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: pityu71 gondja
Ok, meg futtasd le az Combofixet. a naplojat tedd ide
http://www.virus-stell.com/2010/04/combofix.html


kedd dec. 06, 2011 18:45
Profil Privát üzenet küldése Honlap
vas-tag

Csatlakozott: hétf. dec. 05, 2011 19:34
Hozzászólások: 9
Hozzászólás pityu71 gondja
17:35:49.0402 3728 TDSS rootkit removing tool 2.6.21.0 Nov 24 2011 12:32:44
17:35:51.0414 3728 ============================================================
17:35:51.0414 3728 Current date / time: 2011/12/06 17:35:51.0414
17:35:51.0414 3728 SystemInfo:
17:35:51.0414 3728
17:35:51.0414 3728 OS Version: 6.1.7600 ServicePack: 0.0
17:35:51.0414 3728 Product type: Workstation
17:35:51.0414 3728 ComputerName: PITYU-PC
17:35:51.0414 3728 UserName: pityu
17:35:51.0414 3728 Windows directory: C:\Windows
17:35:51.0414 3728 System windows directory: C:\Windows
17:35:51.0414 3728 Running under WOW64
17:35:51.0414 3728 Processor architecture: Intel x64
17:35:51.0414 3728 Number of processors: 1
17:35:51.0414 3728 Page size: 0x1000
17:35:51.0414 3728 Boot type: Normal boot
17:35:51.0414 3728 ============================================================
17:35:51.0898 3728 Initialize success
17:35:58.0481 3868 ============================================================
17:35:58.0481 3868 Scan started
17:35:58.0481 3868 Mode: Manual; SigCheck; TDLFS;
17:35:58.0481 3868 ============================================================
17:35:58.0918 3868 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
17:35:59.0090 3868 1394ohci - ok
17:35:59.0152 3868 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
17:35:59.0183 3868 ACPI - ok
17:35:59.0214 3868 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
17:35:59.0480 3868 AcpiPmi - ok
17:35:59.0573 3868 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
17:35:59.0636 3868 adp94xx - ok
17:35:59.0651 3868 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
17:35:59.0698 3868 adpahci - ok
17:35:59.0714 3868 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
17:35:59.0823 3868 adpu320 - ok
17:35:59.0916 3868 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\Windows\system32\drivers\afd.sys
17:36:00.0291 3868 AFD - ok
17:36:00.0322 3868 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
17:36:00.0369 3868 aliide - ok
17:36:00.0384 3868 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
17:36:00.0416 3868 amdide - ok
17:36:00.0447 3868 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
17:36:00.0572 3868 AmdK8 - ok
17:36:00.0603 3868 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
17:36:00.0712 3868 AmdPPM - ok
17:36:00.0759 3868 amdsata (7a4b413614c055935567cf88a9734d38) C:\Windows\system32\DRIVERS\amdsata.sys
17:36:00.0790 3868 amdsata - ok
17:36:00.0821 3868 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
17:36:00.0852 3868 amdsbs - ok
17:36:00.0868 3868 amdxata (b4ad0cacbab298671dd6f6ef7e20679d) C:\Windows\system32\DRIVERS\amdxata.sys
17:36:00.0884 3868 amdxata - ok
17:36:00.0993 3868 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
17:36:01.0133 3868 AppID - ok
17:36:01.0164 3868 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
17:36:01.0196 3868 arc - ok
17:36:01.0227 3868 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
17:36:01.0242 3868 arcsas - ok
17:36:01.0289 3868 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
17:36:01.0414 3868 AsyncMac - ok
17:36:01.0430 3868 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
17:36:01.0445 3868 atapi - ok
17:36:01.0539 3868 athr (e857eee6b92aaa473ebb3465add8f7e7) C:\Windows\system32\DRIVERS\athrx.sys
17:36:01.0664 3868 athr - ok
17:36:01.0726 3868 avfwim (886ceddeb9e347f7c37263ca234eae65) C:\Windows\system32\DRIVERS\avfwim.sys
17:36:01.0804 3868 avfwim - ok
17:36:01.0851 3868 avfwot (10ce27cb8e47feb48f557e0cd8d1874d) C:\Windows\system32\DRIVERS\avfwot.sys
17:36:01.0882 3868 avfwot - ok
17:36:01.0913 3868 avgntflt (aa8f79a1bdfc03b3bc70c44ab00589b4) C:\Windows\system32\DRIVERS\avgntflt.sys
17:36:01.0929 3868 avgntflt - ok
17:36:01.0960 3868 avipbb (d959309ececca73fc79f8ef8521346b2) C:\Windows\system32\DRIVERS\avipbb.sys
17:36:01.0991 3868 avipbb - ok
17:36:02.0007 3868 avkmgr (248db59fc86de44d2779f4c7fb1a567d) C:\Windows\system32\DRIVERS\avkmgr.sys
17:36:02.0022 3868 avkmgr - ok
17:36:02.0116 3868 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
17:36:02.0178 3868 b06bdrv - ok
17:36:02.0210 3868 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
17:36:02.0288 3868 b57nd60a - ok
17:36:02.0334 3868 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
17:36:02.0381 3868 Beep - ok
17:36:02.0428 3868 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
17:36:02.0475 3868 blbdrive - ok
17:36:02.0522 3868 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
17:36:02.0600 3868 bowser - ok
17:36:02.0615 3868 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:36:02.0662 3868 BrFiltLo - ok
17:36:02.0678 3868 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:36:02.0709 3868 BrFiltUp - ok
17:36:02.0740 3868 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
17:36:02.0802 3868 Brserid - ok
17:36:02.0818 3868 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
17:36:02.0865 3868 BrSerWdm - ok
17:36:02.0880 3868 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
17:36:02.0927 3868 BrUsbMdm - ok
17:36:02.0943 3868 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
17:36:02.0974 3868 BrUsbSer - ok
17:36:03.0005 3868 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
17:36:03.0052 3868 BTHMODEM - ok
17:36:03.0099 3868 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
17:36:03.0146 3868 cdfs - ok
17:36:03.0177 3868 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
17:36:03.0224 3868 cdrom - ok
17:36:03.0270 3868 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
17:36:03.0302 3868 circlass - ok
17:36:03.0364 3868 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
17:36:03.0380 3868 CLFS - ok
17:36:03.0458 3868 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
17:36:03.0489 3868 CmBatt - ok
17:36:03.0520 3868 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
17:36:03.0536 3868 cmdide - ok
17:36:03.0582 3868 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys
17:36:03.0645 3868 CNG - ok
17:36:03.0676 3868 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
17:36:03.0692 3868 Compbatt - ok
17:36:03.0738 3868 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
17:36:03.0770 3868 CompositeBus - ok
17:36:03.0816 3868 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
17:36:03.0832 3868 crcdisk - ok
17:36:03.0926 3868 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
17:36:03.0988 3868 DfsC - ok
17:36:04.0019 3868 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
17:36:04.0097 3868 discache - ok
17:36:04.0160 3868 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
17:36:04.0191 3868 Disk - ok
17:36:04.0300 3868 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
17:36:04.0331 3868 drmkaud - ok
17:36:04.0394 3868 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
17:36:04.0503 3868 DXGKrnl - ok
17:36:04.0628 3868 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
17:36:05.0891 3868 ebdrv - ok
17:36:06.0063 3868 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
17:36:07.0186 3868 elxstor - ok
17:36:07.0280 3868 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
17:36:07.0326 3868 ErrDev - ok
17:36:07.0404 3868 esgiguard - ok
17:36:07.0467 3868 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
17:36:07.0514 3868 exfat - ok
17:36:07.0545 3868 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
17:36:07.0623 3868 fastfat - ok
17:36:07.0670 3868 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
17:36:07.0716 3868 fdc - ok
17:36:07.0748 3868 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
17:36:07.0763 3868 FileInfo - ok
17:36:07.0794 3868 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
17:36:07.0857 3868 Filetrace - ok
17:36:07.0872 3868 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
17:36:07.0888 3868 flpydisk - ok
17:36:07.0919 3868 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
17:36:07.0950 3868 FltMgr - ok
17:36:07.0997 3868 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
17:36:08.0028 3868 FsDepends - ok
17:36:08.0044 3868 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
17:36:08.0060 3868 Fs_Rec - ok
17:36:08.0122 3868 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
17:36:08.0138 3868 fvevol - ok
17:36:08.0184 3868 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
17:36:08.0200 3868 gagp30kx - ok
17:36:08.0231 3868 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
17:36:08.0294 3868 hcw85cir - ok
17:36:08.0356 3868 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
17:36:08.0418 3868 HdAudAddService - ok
17:36:08.0450 3868 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
17:36:08.0481 3868 HDAudBus - ok
17:36:08.0496 3868 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
17:36:08.0528 3868 HidBatt - ok
17:36:08.0543 3868 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
17:36:08.0606 3868 HidBth - ok
17:36:08.0621 3868 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
17:36:08.0652 3868 HidIr - ok
17:36:08.0684 3868 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
17:36:08.0715 3868 HidUsb - ok
17:36:08.0777 3868 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
17:36:08.0793 3868 HpSAMD - ok
17:36:08.0824 3868 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
17:36:08.0902 3868 HTTP - ok
17:36:08.0918 3868 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
17:36:08.0933 3868 hwpolicy - ok
17:36:08.0949 3868 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
17:36:08.0980 3868 i8042prt - ok
17:36:09.0011 3868 iaStorV (d83efb6fd45df9d55e9a1afc63640d50) C:\Windows\system32\DRIVERS\iaStorV.sys
17:36:09.0042 3868 iaStorV - ok
17:36:09.0074 3868 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
17:36:09.0105 3868 iirsp - ok
17:36:09.0136 3868 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
17:36:09.0152 3868 intelide - ok
17:36:09.0167 3868 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
17:36:09.0198 3868 intelppm - ok
17:36:09.0230 3868 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:36:09.0292 3868 IpFilterDriver - ok
17:36:09.0308 3868 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
17:36:09.0354 3868 IPMIDRV - ok
17:36:09.0370 3868 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
17:36:09.0432 3868 IPNAT - ok
17:36:09.0464 3868 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
17:36:09.0526 3868 IRENUM - ok
17:36:09.0542 3868 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
17:36:09.0573 3868 isapnp - ok
17:36:09.0620 3868 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
17:36:09.0651 3868 iScsiPrt - ok
17:36:09.0682 3868 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
17:36:09.0713 3868 kbdclass - ok
17:36:09.0729 3868 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
17:36:09.0760 3868 kbdhid - ok
17:36:09.0791 3868 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys
17:36:09.0807 3868 KSecDD - ok
17:36:09.0869 3868 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys
17:36:09.0885 3868 KSecPkg - ok
17:36:09.0916 3868 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
17:36:09.0963 3868 ksthunk - ok
17:36:10.0041 3868 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
17:36:10.0134 3868 lltdio - ok
17:36:10.0166 3868 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
17:36:10.0197 3868 LSI_FC - ok
17:36:10.0228 3868 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
17:36:10.0259 3868 LSI_SAS - ok
17:36:10.0275 3868 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:36:10.0306 3868 LSI_SAS2 - ok
17:36:10.0322 3868 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:36:10.0353 3868 LSI_SCSI - ok
17:36:10.0368 3868 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
17:36:10.0431 3868 luafv - ok
17:36:10.0524 3868 MBAMProtector (23a854450dab5c9b7a42ab9be6f2e4bd) C:\Windows\system32\drivers\mbam.sys
17:36:10.0540 3868 MBAMProtector - ok
17:36:10.0602 3868 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
17:36:10.0618 3868 megasas - ok
17:36:10.0634 3868 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
17:36:10.0680 3868 MegaSR - ok
17:36:10.0727 3868 MEMSWEEP2 (f9ce67e9e0226079b59107b649851f96) C:\Windows\system32\589E.tmp
17:36:10.0774 3868 MEMSWEEP2 ( UnsignedFile.Multi.Generic ) - warning
17:36:10.0774 3868 MEMSWEEP2 - detected UnsignedFile.Multi.Generic (1)
17:36:10.0805 3868 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
17:36:10.0852 3868 Modem - ok
17:36:10.0883 3868 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
17:36:10.0914 3868 monitor - ok
17:36:10.0930 3868 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
17:36:10.0946 3868 mouclass - ok
17:36:10.0977 3868 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
17:36:10.0992 3868 mouhid - ok
17:36:11.0024 3868 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
17:36:11.0039 3868 mountmgr - ok
17:36:11.0055 3868 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
17:36:11.0086 3868 mpio - ok
17:36:11.0117 3868 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
17:36:11.0180 3868 mpsdrv - ok
17:36:11.0211 3868 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
17:36:11.0242 3868 MRxDAV - ok
17:36:11.0289 3868 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:36:11.0351 3868 mrxsmb - ok
17:36:11.0398 3868 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:36:11.0460 3868 mrxsmb10 - ok
17:36:11.0476 3868 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:36:11.0507 3868 mrxsmb20 - ok
17:36:11.0538 3868 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
17:36:11.0554 3868 msahci - ok
17:36:11.0570 3868 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
17:36:11.0601 3868 msdsm - ok
17:36:11.0632 3868 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
17:36:11.0694 3868 Msfs - ok
17:36:11.0741 3868 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
17:36:11.0819 3868 mshidkmdf - ok
17:36:11.0850 3868 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
17:36:11.0866 3868 msisadrv - ok
17:36:11.0913 3868 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
17:36:11.0975 3868 MSKSSRV - ok
17:36:12.0022 3868 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
17:36:12.0084 3868 MSPCLOCK - ok
17:36:12.0100 3868 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
17:36:12.0162 3868 MSPQM - ok
17:36:12.0194 3868 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
17:36:12.0225 3868 MsRPC - ok
17:36:12.0256 3868 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
17:36:12.0272 3868 mssmbios - ok
17:36:12.0287 3868 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
17:36:12.0350 3868 MSTEE - ok
17:36:12.0365 3868 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
17:36:12.0396 3868 MTConfig - ok
17:36:12.0428 3868 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
17:36:12.0443 3868 Mup - ok
17:36:12.0506 3868 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
17:36:12.0568 3868 NativeWifiP - ok
17:36:12.0615 3868 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
17:36:12.0646 3868 NDIS - ok
17:36:12.0677 3868 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
17:36:12.0724 3868 NdisCap - ok
17:36:12.0755 3868 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
17:36:12.0818 3868 NdisTapi - ok
17:36:12.0849 3868 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
17:36:12.0896 3868 Ndisuio - ok
17:36:12.0911 3868 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
17:36:12.0974 3868 NdisWan - ok
17:36:12.0989 3868 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
17:36:13.0052 3868 NDProxy - ok
17:36:13.0114 3868 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
17:36:13.0176 3868 NetBIOS - ok
17:36:13.0208 3868 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
17:36:13.0270 3868 NetBT - ok
17:36:13.0348 3868 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
17:36:13.0364 3868 nfrd960 - ok
17:36:13.0410 3868 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
17:36:13.0457 3868 Npfs - ok
17:36:13.0488 3868 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
17:36:13.0535 3868 nsiproxy - ok
17:36:13.0613 3868 Ntfs (356698a13c4630d5b31c37378d469196) C:\Windows\system32\drivers\Ntfs.sys
17:36:13.0722 3868 Ntfs - ok
17:36:13.0738 3868 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
17:36:13.0800 3868 Null - ok
17:36:13.0816 3868 nvraid (3e38712941e9bb4ddbee00affe3fed3d) C:\Windows\system32\DRIVERS\nvraid.sys
17:36:13.0847 3868 nvraid - ok
17:36:13.0878 3868 nvstor (477dc4d6deb99be37084c9ac6d013da1) C:\Windows\system32\DRIVERS\nvstor.sys
17:36:13.0910 3868 nvstor - ok
17:36:13.0925 3868 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
17:36:13.0956 3868 nv_agp - ok
17:36:13.0988 3868 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
17:36:14.0034 3868 ohci1394 - ok
17:36:14.0066 3868 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
17:36:14.0081 3868 Parport - ok
17:36:14.0112 3868 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
17:36:14.0144 3868 partmgr - ok
17:36:14.0175 3868 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
17:36:14.0206 3868 pci - ok
17:36:14.0222 3868 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
17:36:14.0237 3868 pciide - ok
17:36:14.0268 3868 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
17:36:14.0300 3868 pcmcia - ok
17:36:14.0315 3868 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
17:36:14.0346 3868 pcw - ok
17:36:14.0378 3868 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
17:36:14.0471 3868 PEAUTH - ok
17:36:14.0612 3868 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
17:36:14.0674 3868 PptpMiniport - ok
17:36:14.0705 3868 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
17:36:14.0736 3868 Processor - ok
17:36:14.0783 3868 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
17:36:14.0846 3868 Psched - ok
17:36:14.0908 3868 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
17:36:14.0970 3868 ql2300 - ok
17:36:14.0986 3868 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
17:36:15.0017 3868 ql40xx - ok
17:36:15.0048 3868 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
17:36:15.0095 3868 QWAVEdrv - ok
17:36:15.0111 3868 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
17:36:15.0173 3868 RasAcd - ok
17:36:15.0220 3868 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
17:36:15.0282 3868 RasAgileVpn - ok
17:36:15.0314 3868 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:36:15.0360 3868 Rasl2tp - ok
17:36:15.0392 3868 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
17:36:15.0454 3868 RasPppoe - ok
17:36:15.0485 3868 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
17:36:15.0532 3868 RasSstp - ok
17:36:15.0563 3868 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
17:36:15.0626 3868 rdbss - ok
17:36:15.0641 3868 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
17:36:15.0688 3868 rdpbus - ok
17:36:15.0704 3868 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:36:15.0750 3868 RDPCDD - ok
17:36:15.0782 3868 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
17:36:15.0828 3868 RDPENCDD - ok
17:36:15.0860 3868 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
17:36:15.0891 3868 RDPREFMP - ok
17:36:15.0938 3868 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
17:36:15.0984 3868 RDPWD - ok
17:36:16.0016 3868 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
17:36:16.0047 3868 rdyboost - ok
17:36:16.0109 3868 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
17:36:16.0187 3868 rspndr - ok
17:36:16.0218 3868 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
17:36:16.0234 3868 sbp2port - ok
17:36:16.0265 3868 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
17:36:16.0312 3868 scfilter - ok
17:36:16.0359 3868 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
17:36:16.0406 3868 secdrv - ok
17:36:16.0452 3868 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
17:36:16.0468 3868 Serenum - ok
17:36:16.0499 3868 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
17:36:16.0530 3868 Serial - ok
17:36:16.0546 3868 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
17:36:16.0577 3868 sermouse - ok
17:36:16.0624 3868 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
17:36:16.0655 3868 sffdisk - ok
17:36:16.0686 3868 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
17:36:16.0718 3868 sffp_mmc - ok
17:36:16.0733 3868 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
17:36:16.0749 3868 sffp_sd - ok
17:36:16.0780 3868 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
17:36:16.0796 3868 sfloppy - ok
17:36:16.0858 3868 SiSGbeLH (1bc348cf6baa90ec8e533ef6e6a69933) C:\Windows\system32\DRIVERS\SiSG664.sys
17:36:16.0905 3868 SiSGbeLH - ok
17:36:16.0936 3868 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:36:16.0967 3868 SiSRaid2 - ok
17:36:16.0983 3868 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
17:36:17.0014 3868 SiSRaid4 - ok
17:36:17.0045 3868 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
17:36:17.0092 3868 Smb - ok
17:36:17.0139 3868 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
17:36:17.0154 3868 spldr - ok
17:36:17.0248 3868 SRS_AE_Service (46be3584fe0f72d3430e669225accb40) C:\Windows\system32\drivers\SRS_AE_amd64.sys
17:36:17.0310 3868 SRS_AE_Service - ok
17:36:17.0373 3868 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
17:36:17.0466 3868 srv - ok
17:36:17.0529 3868 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
17:36:17.0576 3868 srv2 - ok
17:36:17.0607 3868 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
17:36:17.0638 3868 srvnet - ok
17:36:17.0700 3868 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
17:36:17.0716 3868 stexstor - ok
17:36:17.0747 3868 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
17:36:17.0763 3868 swenum - ok
17:36:17.0919 3868 Tcpip (e3bc79d71197b528574592a57a98e0c5) C:\Windows\system32\drivers\tcpip.sys
17:36:18.0012 3868 Suspicious file (Forged): C:\Windows\system32\drivers\tcpip.sys. Real md5: e3bc79d71197b528574592a57a98e0c5, Fake md5: f18f56efc0bfb9c87ba01c37b27f4da5
17:36:18.0028 3868 Tcpip ( ForgedFile.Multi.Generic ) - warning
17:36:18.0028 3868 Tcpip - detected ForgedFile.Multi.Generic (1)
17:36:18.0184 3868 TCPIP6 (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\DRIVERS\tcpip.sys
17:36:18.0231 3868 TCPIP6 - ok
17:36:18.0293 3868 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
17:36:18.0340 3868 tcpipreg - ok
17:36:18.0371 3868 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
17:36:18.0418 3868 TDPIPE - ok
17:36:18.0434 3868 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
17:36:18.0496 3868 TDTCP - ok
17:36:18.0527 3868 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
17:36:18.0590 3868 tdx - ok
17:36:18.0621 3868 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
17:36:18.0636 3868 TermDD - ok
17:36:18.0699 3868 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:36:18.0761 3868 tssecsrv - ok
17:36:18.0808 3868 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
17:36:18.0855 3868 tunnel - ok
17:36:18.0886 3868 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
17:36:18.0902 3868 uagp35 - ok
17:36:18.0933 3868 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
17:36:19.0011 3868 udfs - ok
17:36:19.0058 3868 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
17:36:19.0073 3868 uliagpkx - ok
17:36:19.0104 3868 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
17:36:19.0167 3868 umbus - ok
17:36:19.0182 3868 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
17:36:19.0214 3868 UmPass - ok
17:36:19.0229 3868 usbccgp (b26afb54a534d634523c4fb66765b026) C:\Windows\system32\DRIVERS\usbccgp.sys
17:36:19.0260 3868 usbccgp - ok
17:36:19.0292 3868 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
17:36:19.0338 3868 usbcir - ok
17:36:19.0354 3868 usbehci (2ea4aff7be7eb4632e3aa8595b0803b5) C:\Windows\system32\DRIVERS\usbehci.sys
17:36:19.0385 3868 usbehci - ok
17:36:19.0416 3868 usbhub (4c9042b8df86c1e8e6240c218b99b39b) C:\Windows\system32\DRIVERS\usbhub.sys
17:36:19.0479 3868 usbhub - ok
17:36:19.0510 3868 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys
17:36:19.0526 3868 usbohci - ok
17:36:19.0572 3868 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
17:36:19.0604 3868 usbprint - ok
17:36:19.0619 3868 USBSTOR (080d3820da6c046be82fc8b45a893e83) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:36:19.0635 3868 USBSTOR - ok
17:36:19.0666 3868 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys
17:36:19.0682 3868 usbuhci - ok
17:36:19.0760 3868 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
17:36:19.0806 3868 usbvideo - ok
17:36:19.0853 3868 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
17:36:19.0869 3868 vdrvroot - ok
17:36:19.0900 3868 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
17:36:19.0916 3868 vga - ok
17:36:19.0947 3868 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
17:36:19.0994 3868 VgaSave - ok
17:36:20.0025 3868 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
17:36:20.0056 3868 vhdmp - ok
17:36:20.0087 3868 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
17:36:20.0103 3868 viaide - ok
17:36:20.0134 3868 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
17:36:20.0150 3868 volmgr - ok
17:36:20.0181 3868 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
17:36:20.0212 3868 volmgrx - ok
17:36:20.0228 3868 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
17:36:20.0259 3868 volsnap - ok
17:36:20.0306 3868 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
17:36:20.0321 3868 vsmraid - ok
17:36:20.0352 3868 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
17:36:20.0399 3868 vwifibus - ok
17:36:20.0430 3868 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
17:36:20.0477 3868 vwififlt - ok
17:36:20.0508 3868 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
17:36:20.0540 3868 WacomPen - ok
17:36:20.0571 3868 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
17:36:20.0649 3868 WANARP - ok
17:36:20.0664 3868 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
17:36:20.0711 3868 Wanarpv6 - ok
17:36:20.0774 3868 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
17:36:20.0789 3868 Wd - ok
17:36:20.0836 3868 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
17:36:20.0883 3868 Wdf01000 - ok
17:36:20.0961 3868 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
17:36:21.0008 3868 WfpLwf - ok
17:36:21.0039 3868 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
17:36:21.0054 3868 WIMMount - ok
17:36:21.0132 3868 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
17:36:21.0164 3868 WmiAcpi - ok
17:36:21.0226 3868 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
17:36:21.0273 3868 ws2ifsl - ok
17:36:21.0335 3868 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
17:36:21.0382 3868 WudfPf - ok
17:36:21.0413 3868 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:36:21.0460 3868 WUDFRd - ok
17:36:21.0522 3868 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
17:36:21.0647 3868 \Device\Harddisk0\DR0 - ok
17:36:21.0663 3868 Boot (0x1200) (af136fa86784fe569f91b4ab9ca6e115) \Device\Harddisk0\DR0\Partition0
17:36:21.0663 3868 \Device\Harddisk0\DR0\Partition0 - ok
17:36:21.0694 3868 Boot (0x1200) (20843341a503cb68c16748bbe23d4fe7) \Device\Harddisk0\DR0\Partition1
17:36:21.0710 3868 \Device\Harddisk0\DR0\Partition1 - ok
17:36:21.0725 3868 Boot (0x1200) (655b58f144e5d3065c964ea07f9b2f94) \Device\Harddisk0\DR0\Partition2
17:36:21.0725 3868 \Device\Harddisk0\DR0\Partition2 - ok
17:36:21.0756 3868 Boot (0x1200) (2014b581f3fdc0b4b8e8008885bbb56c) \Device\Harddisk0\DR0\Partition3
17:36:21.0756 3868 \Device\Harddisk0\DR0\Partition3 - ok
17:36:21.0772 3868 ============================================================
17:36:21.0772 3868 Scan finished
17:36:21.0772 3868 ============================================================
17:36:21.0788 2308 Detected object count: 2
17:36:21.0788 2308 Actual detected object count: 2
17:36:44.0080 2308 MEMSWEEP2 ( UnsignedFile.Multi.Generic ) - skipped by user
17:36:44.0080 2308 MEMSWEEP2 ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:36:44.0080 2308 Tcpip ( ForgedFile.Multi.Generic ) - skipped by user
17:36:44.0080 2308 Tcpip ( ForgedFile.Multi.Generic ) - User select action: Skip


kedd dec. 06, 2011 17:38
Profil Privát üzenet küldése
Hozzászólások megjelenítése:  Rendezés  
Hozzászólás a témához   [ 13 hozzászólás ] 

Ki van itt

Jelenlévő fórumozók: nincs regisztrált felhasználó valamint 8 vendég


Nem nyithatsz témákat ebben a fórumban.
Nem válaszolhatsz egy témára ebben a fórumban.
Nem szerkesztheted a hozzászólásaidat ebben a fórumban.
Nem törölheted a hozzászólásaidat ebben a fórumban.

Keresés:
Ugrás:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group.
Designed by ST Software for PTF.
Magyar fordítás © Magyar phpBB Közösség