Megválaszolatlan hozzászólások | Aktív témák Pontos idő: pén. márc. 29, 2024 11:52



Hozzászólás a témához  [ 78 hozzászólás ]  Oldal Előző  1, 2
Feladatkezelő nem érhető el Rendszergazdaként 
Szerző Üzenet
arany tag

Csatlakozott: csüt. nov. 05, 2009 15:10
Hozzászólások: 116
Tartózkodási hely: Hungary
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
HÜHA!!!!
Azt csináltam amit írtál... C:\ gyökérkövtárban 12 mappa ATI-tól a WINDOWS-ig és két külön fájl egy user JSript Script File és egy Boot.bak fájl.
Asztalon ott van az uninstall.exe nevű combofix tigrises icon (tudom ez csak az Installer program). Ugye ezt jobb klikk >>> Törlés-el törölhetem???

DE ami a gond:

1. A restart utáni bejelentkezésnél még mindig volt fekete ablakban Recovery Console vagy Windows

2. Mozilla Firefoxot indítottam >>> vmiért nem volt alapértelmezett és az oldalatok furcsa formátumban jött be.

Most mi legyen?


pén. feb. 24, 2012 16:21
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
Ok, hagyd ugy,
Tolds le ezt a programot az Asztalra
http://tharifas.sweb.cz/T-Cleaner.exe
Futtasd, midig ha kerdez nyod az A-bilemtyut es utana mindig ENTER, ez kiviszi komplet a combofixet, es akonzolat is amit a combofix felrakot, utana he lefut a program restart, es ird meg mi van, mi a helyzet,


pén. feb. 24, 2012 15:55
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. nov. 05, 2009 15:10
Hozzászólások: 116
Tartózkodási hely: Hungary
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
Áhhh ... Hülyeséget csináltam ezzel... az Asztalon a Combofix Installerje van uninstall.exe névvel amire én 2x klikk >>> így most újra feltelepítettem a Combofix-et , Ugye??? Csak azt nem tudom HOVÁ??? :oops:
Sry... Most mit csináljak?


pén. feb. 24, 2012 15:52
Profil Privát üzenet küldése
arany tag

Csatlakozott: csüt. nov. 05, 2009 15:10
Hozzászólások: 116
Tartózkodási hely: Hungary
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
OK megcsináltam.... itt van a restart utáni naplója:

De van egy kis gond... A restartnál még mindig úgy indult a Windows, hogy felugrott a fekete ablakban, hogy Recovery Console vagy Windows XP Home Edition.... Ez nem azért van mert még mindig a gépen van a Combofix?????

Mielőtt ezt a RUNFIX-elést csináltam az OTL-el a C:\Documentums and Settings\.......\ Letöltésekben lévő uninstall.exe-t kivág >>> Asztalra beillesztettem (mert az előtt a Letöltések mappában klikkeltem rá 2x és akkor az Asztalon lévő icont eltüntette, úgy hogy üres szinezéssel az Asztalon hagyta, amit jobb klikk törléssel töröltem).... és most itt klikkeltem rá 2x >>> aztán felugró ablakban klikk Futtatás >>> Adott egy ComboFix.txt a C:\ gyökér könyvtárba...... Qoobox mappám már nincs.... de az Aszatalon ott van a Combofix icon uninstall.exe névvel.
Meg akarod nézni azt a ComboFix.txt naplót is??? :oops:

All processes killed
========== OTL ==========
Prefs.js: "Ask.com" removed from browser.search.defaultengine
Prefs.js: wrc@avast.com:20110101 removed from extensions.enabledItems
Prefs.js: engine@conduit.com:3.2.5.2 removed from extensions.enabledItems
C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml moved successfully.
Registry value HKEY_USERS\S-1-5-21-606747145-1972579041-682003330-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
Starting removal of ActiveX control {7530BFB8-7293-4D34-9923-61A11451AFC5}
C:\WINDOWS\Downloaded Program Files\OnlineScanner.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
C:\Qoobox\Quarantine\Registry_backups folder moved successfully.
C:\Qoobox\Quarantine\C\WINDOWS\Tasks folder moved successfully.
C:\Qoobox\Quarantine\C\WINDOWS\system32\config\systemprofile\Application Data\ATI folder moved successfully.
C:\Qoobox\Quarantine\C\WINDOWS\system32\config\systemprofile\Application Data folder moved successfully.
C:\Qoobox\Quarantine\C\WINDOWS\system32\config\systemprofile folder moved successfully.
C:\Qoobox\Quarantine\C\WINDOWS\system32\config folder moved successfully.
C:\Qoobox\Quarantine\C\WINDOWS\system32 folder moved successfully.
C:\Qoobox\Quarantine\C\WINDOWS folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\HyperCam Toolbar folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\facemoods.com\facemoods\1.4.17.11\bh folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\facemoods.com\facemoods\1.4.17.11 folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\facemoods.com\facemoods folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\facemoods.com folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files folder moved successfully.
C:\Qoobox\Quarantine\C\Documents and Settings\nagy\WINDOWS folder moved successfully.
C:\Qoobox\Quarantine\C\Documents and Settings\nagy\Start Menu folder moved successfully.
C:\Qoobox\Quarantine\C\Documents and Settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\include_files folder moved successfully.
C:\Qoobox\Quarantine\C\Documents and Settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache folder moved successfully.
C:\Qoobox\Quarantine\C\Documents and Settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E} folder moved successfully.
C:\Qoobox\Quarantine\C\Documents and Settings\nagy\Application Data\Toolbar4 folder moved successfully.
C:\Qoobox\Quarantine\C\Documents and Settings\nagy\Application Data\facemoods.com folder moved successfully.
C:\Qoobox\Quarantine\C\Documents and Settings\nagy\Application Data\EurekaLog folder moved successfully.
C:\Qoobox\Quarantine\C\Documents and Settings\nagy\Application Data\ATI folder moved successfully.
C:\Qoobox\Quarantine\C\Documents and Settings\nagy\Application Data folder moved successfully.
C:\Qoobox\Quarantine\C\Documents and Settings\nagy folder moved successfully.
C:\Qoobox\Quarantine\C\Documents and Settings\All Users\Application Data\TEMP folder moved successfully.
C:\Qoobox\Quarantine\C\Documents and Settings\All Users\Application Data\ATI\ACE folder moved successfully.
C:\Qoobox\Quarantine\C\Documents and Settings\All Users\Application Data\ATI folder moved successfully.
C:\Qoobox\Quarantine\C\Documents and Settings\All Users\Application Data folder moved successfully.
C:\Qoobox\Quarantine\C\Documents and Settings\All Users folder moved successfully.
C:\Qoobox\Quarantine\C\Documents and Settings folder moved successfully.
C:\Qoobox\Quarantine\C folder moved successfully.
C:\Qoobox\Quarantine folder moved successfully.
Folder move failed. C:\Qoobox\BackEnv scheduled to be moved on reboot.
C:\Qoobox folder moved successfully.
C:\WINDOWS\002845_.tmp deleted successfully.
C:\WINDOWS\003074_.tmp deleted successfully.
C:\WINDOWS\003078_.tmp deleted successfully.
C:\WINDOWS\003097_.tmp deleted successfully.
C:\WINDOWS\003110_.tmp deleted successfully.
C:\WINDOWS\11AE680750D24F5982B32C3E695E94C2.TMP\WiseCustomCalla.dll deleted successfully.
C:\WINDOWS\11AE680750D24F5982B32C3E695E94C2.TMP folder deleted successfully.
C:\WINDOWS\1C4551A64743409391E41477CD655043.TMP\WiseCustomCalla.dll deleted successfully.
C:\WINDOWS\1C4551A64743409391E41477CD655043.TMP folder deleted successfully.
C:\WINDOWS\8AAB4176A747493AA42CB63CFADFD8E3.TMP\WiseCustomCalla.dll deleted successfully.
C:\WINDOWS\8AAB4176A747493AA42CB63CFADFD8E3.TMP folder deleted successfully.
C:\WINDOWS\95FC26FB19FD4A96BBB1B1062E8648F5.TMP\WiseCustomCalla.dll deleted successfully.
C:\WINDOWS\95FC26FB19FD4A96BBB1B1062E8648F5.TMP folder deleted successfully.
C:\WINDOWS\SET101.tmp deleted successfully.
C:\WINDOWS\SET21.tmp deleted successfully.
C:\WINDOWS\SET3.tmp deleted successfully.
C:\WINDOWS\SET4.tmp deleted successfully.
C:\WINDOWS\SET40.tmp deleted successfully.
C:\WINDOWS\SET41.tmp deleted successfully.
C:\WINDOWS\SET43.tmp deleted successfully.
C:\WINDOWS\SET44.tmp deleted successfully.
C:\WINDOWS\SET4F.tmp deleted successfully.
C:\WINDOWS\SET50.tmp deleted successfully.
C:\WINDOWS\SET7A.tmp deleted successfully.
C:\WINDOWS\SET7B.tmp deleted successfully.
C:\WINDOWS\SET8.tmp deleted successfully.
C:\WINDOWS\SET87.tmp deleted successfully.
C:\WINDOWS\SET8A.tmp deleted successfully.
C:\WINDOWS\SET8D.tmp deleted successfully.
C:\WINDOWS\SET90.tmp deleted successfully.
C:\WINDOWS\SET98.tmp deleted successfully.
C:\WINDOWS\SET99.tmp deleted successfully.
C:\WINDOWS\SET9C.tmp deleted successfully.
C:\WINDOWS\SET9E.tmp deleted successfully.
C:\WINDOWS\SETA8.tmp deleted successfully.
C:\WINDOWS\SETC6.tmp deleted successfully.
C:\WINDOWS\SETC7.tmp deleted successfully.
C:\WINDOWS\SETC9.tmp deleted successfully.
C:\WINDOWS\SETCA.tmp deleted successfully.
C:\WINDOWS\SETD3.tmp deleted successfully.
C:\WINDOWS\SETD6.tmp deleted successfully.
C:\WINDOWS\System32\ConduitEngine.tmp deleted successfully.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
File C:\Documents and Settings\nagy\Asztal\Combo.lnk not found.
C:\Documents and Settings\nagy\Asztal\Parancsikon - tdsskiller.lnk moved successfully.
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP konfiguráció
A DNS-feloldási gyorsítótár kiürítése sikeresen megtörtént.
C:\Documents and Settings\nagy\Asztal\cmd.bat deleted successfully.
C:\Documents and Settings\nagy\Asztal\cmd.txt deleted successfully.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
Restore points cleared and new OTL Restore Point set!

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 56502 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32835 bytes

User: nagy
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32835 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 75103109 bytes
->Google Chrome cache emptied: 594288 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 57402 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32835 bytes

User: Rendszergazda
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 16384 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 72,00 mb


OTL by OldTimer - Version 3.2.33.2 log created on 02242012_152035

Files\Folders moved on Reboot...
File\Folder C:\Qoobox\BackEnv not found!
C:\WINDOWS\temp\Perflib_Perfdata_668.dat moved successfully.

Registry entries deleted on Reboot...


pén. feb. 24, 2012 15:46
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
Ok, Most Futtasd az OTL exe programot, a bealitasait hagyd ugy ahogy van,,,, de,,,,most az also ablakjabba, MASOLD be ezt a scriptet,
es most RAKLIKELSZ az RUNFIX gombra., a restart utan a naplojat tedd ide.

Kód:
:OTL
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..extensions.enabledItems: wrc@avast.com:20110101
FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.2.5.2
[2011.12.18 21:56:24 | 000,002,310 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
O3 - HKU\S-1-5-21-606747145-1972579041-682003330-1004\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
[2012.02.23 19:40:53 | 000,000,000 | ---D | C] -- C:\Qoobox
[37 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2012.02.23 19:40:23 | 000,000,914 | ---- | M] () -- C:\Documents and Settings\nagy\Asztal\Combo.lnk
[2012.02.23 17:51:15 | 000,000,924 | ---- | M] () -- C:\Documents and Settings\nagy\Asztal\Parancsikon - tdsskiller.lnk
:Files
ipconfig /flushdns /c
:Commands
[purity]
[resethosts]
[clearallrestorepoints]
[emptytemp]
[start explorer]
[Reboot]


pén. feb. 24, 2012 15:02
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. nov. 05, 2009 15:10
Hozzászólások: 116
Tartózkodási hely: Hungary
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
Itt van a OTL.Txt második fele is:


========== Files - Modified Within 30 Days ==========

[2012.02.24 14:08:46 | 000,000,390 | -H-- | M] () -- C:\WINDOWS\tasks\MpIdleTask.job
[2012.02.24 13:45:19 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2012.02.24 13:06:12 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2012.02.24 13:01:09 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.02.24 11:38:05 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012.02.23 19:44:53 | 000,000,348 | RHS- | M] () -- C:\boot.ini
[2012.02.23 19:40:23 | 000,000,914 | ---- | M] () -- C:\Documents and Settings\nagy\Asztal\Combo.lnk
[2012.02.23 17:51:15 | 000,000,924 | ---- | M] () -- C:\Documents and Settings\nagy\Asztal\Parancsikon - tdsskiller.lnk
[2012.02.23 17:23:35 | 000,000,213 | ---- | M] () -- C:\Documents and Settings\nagy\Asztal\Team Fortress 2.url
[2012.02.23 16:53:36 | 000,000,438 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{64CE30E5-8EF3-4AF5-A6FD-331EBF42E3A3}.job
[2012.02.23 16:49:50 | 000,000,820 | ---- | M] () -- C:\Documents and Settings\nagy\Application Data\Microsoft\Internet Explorer\Quick Launch\Az Internet Explorer böngésző indítása.lnk
[2012.02.23 13:41:58 | 000,001,912 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2012.02.23 13:41:08 | 000,001,374 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.02.23 11:17:33 | 000,000,789 | ---- | M] () -- C:\Documents and Settings\All Users\Asztal\Malwarebytes Anti-Malware.lnk
[2012.02.23 07:55:03 | 000,146,808 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.02.23 05:50:54 | 000,002,282 | ---- | M] () -- C:\Documents and Settings\nagy\Asztal\Google Chrome.lnk
[2012.02.23 05:50:54 | 000,002,260 | ---- | M] () -- C:\Documents and Settings\nagy\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012.02.23 04:55:06 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2012.02.23 01:14:05 | 000,641,938 | ---- | M] () -- C:\WINDOWS\System32\perfh00E.dat
[2012.02.23 01:14:04 | 000,602,332 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.02.23 01:14:04 | 000,181,312 | ---- | M] () -- C:\WINDOWS\System32\perfc00E.dat
[2012.02.23 01:14:04 | 000,123,162 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.02.23 00:53:20 | 000,000,287 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2012.02.23 00:49:43 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2012.02.23 00:49:43 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2012.02.23 00:49:33 | 000,004,249 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2012.02.23 00:47:33 | 000,023,652 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2012.02.23 00:45:54 | 000,000,232 | ---- | M] () -- C:\Boot.bak
[2012.02.22 23:35:16 | 000,002,832 | ---- | M] () -- C:\WINDOWS\setupapi.old
[2012.02.22 19:18:24 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\All Users\Asztal\Skype.lnk
[2012.02.22 17:37:24 | 000,141,824 | ---- | M] () -- C:\Documents and Settings\nagy\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.02.22 16:43:10 | 019,357,696 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\atioglxx.dll
[2012.02.22 16:43:03 | 007,490,560 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys
[2012.02.22 16:42:51 | 000,026,112 | ---- | M] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\Ati2mdxx.exe
[2012.02.22 16:42:47 | 005,334,656 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\WINDOWS\System32\ati3duag.dll
[2012.02.22 16:42:37 | 000,118,784 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\atibtmon.exe
[2012.02.22 16:42:34 | 000,155,648 | ---- | M] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\Oemdspif.dll
[2012.02.22 16:42:30 | 000,192,512 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2evxx.dll
[2012.02.22 16:42:30 | 000,045,056 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\ATIODCLI.exe
[2012.02.22 16:42:26 | 000,884,736 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2cqag.dll
[2012.02.22 16:42:23 | 000,024,064 | ---- | M] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\ativcoxx.dll
[2012.02.22 16:42:21 | 000,887,724 | ---- | M] () -- C:\WINDOWS\System32\ativva6x.dat
[2012.02.22 16:42:15 | 000,043,520 | ---- | M] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\ati2edxx.dll
[2012.02.22 16:42:08 | 000,057,344 | ---- | M] (Advanced Micro Devices Inc.) -- C:\WINDOWS\System32\aticalrt.dll
[2012.02.22 16:41:54 | 000,294,912 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\ATIODE.exe
[2012.02.22 16:41:48 | 000,608,507 | ---- | M] () -- C:\WINDOWS\System32\atiicdxx.dat
[2012.02.22 16:41:40 | 000,212,992 | ---- | M] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\atipdlxx.dll
[2012.02.22 16:41:28 | 000,000,003 | ---- | M] () -- C:\WINDOWS\System32\ativva5x.dat
[2012.02.22 16:41:25 | 000,100,368 | ---- | M] (Advanced Micro Devices) -- C:\WINDOWS\System32\drivers\AtihdXP3.sys
[2012.02.22 16:41:19 | 000,311,296 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\atiiiexx.dll
[2012.02.22 16:41:16 | 000,304,640 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvag.dll
[2012.02.22 16:41:14 | 000,466,944 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\ATIDEMGX.dll
[2012.02.22 16:41:11 | 000,233,472 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\atiadlxx.dll
[2012.02.22 16:41:09 | 007,376,896 | ---- | M] (Advanced Micro Devices Inc.) -- C:\WINDOWS\System32\aticaldd.dll
[2012.02.22 16:41:07 | 000,053,248 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2erec.dll
[2012.02.22 16:41:04 | 002,097,056 | ---- | M] () -- C:\WINDOWS\System32\ativvaxx.cap
[2012.02.22 16:41:03 | 000,053,248 | ---- | M] ( ATI Technologies Inc.) -- C:\WINDOWS\System32\ATIDDC.DLL
[2012.02.22 16:40:56 | 000,956,160 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\WINDOWS\System32\ativvamv.dll
[2012.02.22 16:40:43 | 000,806,912 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\atikvmag.dll
[2012.02.22 16:40:42 | 003,307,776 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\WINDOWS\System32\ativvaxx.dll
[2012.02.22 16:40:41 | 000,159,744 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\atiapfxx.exe
[2012.02.22 16:40:41 | 000,053,248 | ---- | M] (Advanced Micro Devices Inc.) -- C:\WINDOWS\System32\aticalcl.dll
[2012.02.22 16:40:39 | 000,219,080 | ---- | M] () -- C:\WINDOWS\System32\atiapfxx.blb
[2012.02.22 16:40:39 | 000,036,338 | ---- | M] () -- C:\WINDOWS\atiogl.xml
[2012.02.22 16:40:38 | 000,602,112 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\atiok3x2.dll
[2012.02.22 16:40:38 | 000,065,024 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\WINDOWS\System32\atimpc32.dll
[2012.02.22 16:40:38 | 000,065,024 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\WINDOWS\System32\amdpcom32.dll
[2012.02.22 16:40:38 | 000,017,408 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\atitvo32.dll
[2012.02.21 20:55:06 | 000,214,520 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2012.02.21 20:54:38 | 000,137,464 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2012.02.21 20:54:29 | 000,214,520 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.ex0
[2012.02.21 19:51:10 | 000,001,769 | ---- | M] () -- C:\WINDOWS\Language_trs.ini
[2012.02.14 16:22:02 | 000,000,609 | ---- | M] () -- C:\Documents and Settings\nagy\Asztal\Pro Evolution Soccer 6.lnk
[2012.02.14 14:43:30 | 000,000,601 | ---- | M] () -- C:\Documents and Settings\All Users\Asztal\Call of Duty(R) 2 Singleplayer.lnk
[2012.02.14 14:43:30 | 000,000,601 | ---- | M] () -- C:\Documents and Settings\All Users\Asztal\Call of Duty(R) 2 Multiplayer.lnk
[2012.02.14 14:43:22 | 000,000,282 | ---- | M] () -- C:\WINDOWS\game.ini
[2012.02.06 15:12:57 | 000,000,687 | ---- | M] () -- C:\Documents and Settings\All Users\Asztal\CCleaner.lnk
[2012.02.03 10:29:56 | 000,042,392 | ---- | M] () -- C:\WINDOWS\System32\xfcodec.dll
[2012.01.29 05:10:42 | 000,237,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[37 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012.02.24 11:37:52 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2012.02.23 19:44:53 | 000,000,232 | ---- | C] () -- C:\Boot.bak
[2012.02.23 19:44:49 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2012.02.23 19:43:02 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2012.02.23 19:43:02 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2012.02.23 19:43:02 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2012.02.23 19:43:02 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2012.02.23 19:43:01 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2012.02.23 19:40:23 | 000,000,914 | ---- | C] () -- C:\Documents and Settings\nagy\Asztal\Combo.lnk
[2012.02.23 17:51:15 | 000,000,924 | ---- | C] () -- C:\Documents and Settings\nagy\Asztal\Parancsikon - tdsskiller.lnk
[2012.02.23 16:53:36 | 000,000,438 | -H-- | C] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{64CE30E5-8EF3-4AF5-A6FD-331EBF42E3A3}.job
[2012.02.23 13:46:44 | 000,000,424 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2012.02.23 13:46:44 | 000,000,390 | -H-- | C] () -- C:\WINDOWS\tasks\MpIdleTask.job
[2012.02.23 13:41:26 | 000,001,685 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Security Essentials.lnk
[2012.02.23 11:17:33 | 000,000,789 | ---- | C] () -- C:\Documents and Settings\All Users\Asztal\Malwarebytes Anti-Malware.lnk
[2012.02.23 08:46:46 | 000,000,797 | ---- | C] () -- C:\Documents and Settings\nagy\Start Menu\Programs\Windows Media Player.lnk
[2012.02.23 04:35:33 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta
[2012.02.23 04:35:33 | 000,001,776 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf
[2012.02.23 04:35:33 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css
[2012.02.23 04:35:33 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js
[2012.02.23 04:35:32 | 000,669,448 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm
[2012.02.23 04:35:32 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav
[2012.02.23 04:35:32 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav
[2012.02.23 04:35:32 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav
[2012.02.23 04:35:32 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv
[2012.02.23 04:35:32 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav
[2012.02.23 04:35:32 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav
[2012.02.23 04:35:32 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav
[2012.02.23 04:35:32 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav
[2012.02.23 04:35:32 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav
[2012.02.23 04:35:32 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav
[2012.02.23 04:35:32 | 000,072,890 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm
[2012.02.23 04:35:32 | 000,058,222 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf
[2012.02.23 04:35:32 | 000,034,548 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf
[2012.02.23 04:35:32 | 000,027,909 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm
[2012.02.23 04:35:32 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif
[2012.02.23 04:35:32 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif
[2012.02.23 04:35:32 | 000,013,540 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf
[2012.02.23 04:35:32 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif
[2012.02.23 04:35:32 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif
[2012.02.23 04:35:32 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif
[2012.02.23 04:35:32 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif
[2012.02.23 04:35:32 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif
[2012.02.23 04:35:32 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif
[2012.02.23 04:35:32 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif
[2012.02.23 04:35:32 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif
[2012.02.23 04:35:32 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif
[2012.02.23 04:35:32 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js
[2012.02.23 04:35:32 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif
[2012.02.23 04:35:32 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif
[2012.02.23 04:35:32 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif
[2012.02.23 04:35:32 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif
[2012.02.23 04:35:32 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif
[2012.02.23 04:35:32 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif
[2012.02.23 04:35:32 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif
[2012.02.23 04:35:31 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv
[2012.02.23 04:35:31 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv
[2012.02.23 04:35:31 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv
[2012.02.23 04:35:31 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv
[2012.02.23 04:35:31 | 000,184,181 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz
[2012.02.23 04:35:31 | 000,083,190 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm
[2012.02.23 04:35:31 | 000,066,202 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz
[2012.02.23 04:35:31 | 000,036,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf
[2012.02.23 04:35:31 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip
[2012.02.23 04:35:31 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css
[2012.02.23 04:35:31 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm
[2012.02.23 04:35:31 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js
[2012.02.23 04:35:31 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js
[2012.02.23 04:35:31 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif
[2012.02.23 04:35:31 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif
[2012.02.23 04:35:31 | 000,001,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf
[2012.02.23 04:35:31 | 000,001,476 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl
[2012.02.23 04:35:31 | 000,001,475 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl
[2012.02.23 04:35:31 | 000,001,474 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl
[2012.02.23 04:35:31 | 000,001,461 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl
[2012.02.23 04:35:31 | 000,001,452 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl
[2012.02.23 04:35:31 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif
[2012.02.23 04:35:31 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif
[2012.02.23 04:35:31 | 000,001,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl
[2012.02.23 04:35:31 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm
[2012.02.23 04:35:31 | 000,001,047 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl
[2012.02.23 04:35:31 | 000,001,043 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl
[2012.02.23 04:35:31 | 000,001,042 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl
[2012.02.23 04:35:31 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif
[2012.02.23 04:35:31 | 000,000,802 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl
[2012.02.23 04:35:31 | 000,000,800 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl
[2012.02.23 04:35:31 | 000,000,787 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl
[2012.02.23 04:35:31 | 000,000,783 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl
[2012.02.23 04:35:31 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif
[2012.02.23 04:35:31 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif
[2012.02.23 04:35:31 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl
[2012.02.23 04:35:31 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif
[2012.02.23 04:35:31 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif
[2012.02.23 04:35:31 | 000,000,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl
[2012.02.23 04:35:31 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif
[2012.02.23 04:35:31 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip
[2012.02.23 00:51:47 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2012.02.23 00:51:27 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2012.02.23 00:51:20 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2012.02.23 00:51:19 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2012.02.23 00:51:17 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2012.02.23 00:51:12 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2012.02.23 00:51:07 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2012.02.23 00:50:52 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2012.02.23 00:48:44 | 000,000,791 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Movie Maker.lnk
[2012.02.23 00:31:46 | 001,013,957 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2012.02.23 00:31:46 | 000,809,684 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2012.02.23 00:31:46 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2012.02.23 00:31:46 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2012.02.23 00:31:46 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2012.02.23 00:31:46 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2012.02.23 00:31:46 | 000,007,407 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2012.02.22 23:35:11 | 000,002,832 | ---- | C] () -- C:\WINDOWS\setupapi.old
[2012.02.21 19:51:10 | 000,001,769 | ---- | C] () -- C:\WINDOWS\Language_trs.ini
[2012.02.15 09:55:20 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012.02.14 16:22:02 | 000,000,609 | ---- | C] () -- C:\Documents and Settings\nagy\Asztal\Pro Evolution Soccer 6.lnk
[2012.02.14 14:43:30 | 000,000,601 | ---- | C] () -- C:\Documents and Settings\All Users\Asztal\Call of Duty(R) 2 Singleplayer.lnk
[2012.02.14 14:43:30 | 000,000,601 | ---- | C] () -- C:\Documents and Settings\All Users\Asztal\Call of Duty(R) 2 Multiplayer.lnk
[2012.02.14 14:43:22 | 000,000,282 | ---- | C] () -- C:\WINDOWS\game.ini
[2012.02.03 10:29:56 | 000,042,392 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll
[2011.12.29 11:50:29 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\nagy\Application Data\steam_md4.dat
[2011.12.05 22:04:00 | 000,059,904 | ---- | C] () -- C:\WINDOWS\System32\OpenVideo.dll
[2011.12.05 22:03:52 | 000,054,784 | ---- | C] () -- C:\WINDOWS\System32\OVDecode.dll
[2011.04.23 00:51:11 | 000,688,128 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2011.04.23 00:51:11 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2010.09.11 15:51:46 | 001,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll
[2010.06.18 13:14:29 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\nagy\Application Data\PnkBstrK.sys
[2010.05.06 16:17:50 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat

========== LOP Check ==========

[2007.12.05 17:02:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ACD Systems
[2010.09.19 08:30:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2011.12.18 21:56:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Babylon
[2011.11.08 07:43:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BioWare
[2008.04.23 20:57:30 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2011.01.18 21:36:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Codemasters
[2012.02.21 20:43:58 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2010.01.10 18:14:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2009.11.30 00:07:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts
[2011.12.18 21:55:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\InstallMate
[2011.01.18 22:06:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\KONAMI
[2010.07.22 22:54:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LAG
[2010.08.06 16:47:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PMB Files
[2011.09.09 23:47:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Premium
[2009.06.14 18:47:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\salvation
[2010.07.23 01:59:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Solidshield
[2010.06.24 13:36:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Souptoys
[2009.03.27 18:49:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
[2009.03.31 20:05:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[2007.12.30 16:40:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\ACD Systems
[2009.06.24 10:49:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\ArcticLine
[2011.12.18 21:56:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\Babylon
[2011.01.28 02:49:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2008.09.27 15:22:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\DAEMON Tools
[2011.07.02 15:55:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\DAEMON Tools Lite
[2009.03.22 18:10:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\Disney Interactive Studios
[2009.03.31 20:07:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\dp3d
[2012.02.23 09:00:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\ElevatedDiagnostics
[2011.12.31 22:11:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\GameRanger
[2009.02.11 10:18:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\Leadertech
[2010.08.06 18:30:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\LolClient
[2009.08.10 20:15:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\MysteryStudio
[2010.02.21 08:17:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\Opera
[2011.10.26 17:09:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\Solveig Multimedia
[2011.09.09 16:18:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\Sony
[2008.11.21 19:28:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\Souptoys
[2009.03.19 18:16:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\Super-Cow
[2011.12.24 16:14:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\TeamViewer
[2009.03.03 10:11:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\temp
[2012.02.24 09:50:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\TS3Client
[2011.01.22 01:49:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\TuxPaint
[2011.01.18 21:28:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\Ubisoft
[2012.02.22 22:05:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\nagy\Application Data\uTorrent
[2012.02.24 13:06:12 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
[2012.02.24 14:08:46 | 000,000,390 | -H-- | M] () -- C:\WINDOWS\Tasks\MpIdleTask.job
[2012.02.23 16:53:36 | 000,000,438 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{64CE30E5-8EF3-4AF5-A6FD-331EBF42E3A3}.job

========== Purity Check ==========



< End of report >


pén. feb. 24, 2012 14:51
Profil Privát üzenet küldése
arany tag

Csatlakozott: csüt. nov. 05, 2009 15:10
Hozzászólások: 116
Tartózkodási hely: Hungary
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
Igen megvan az OTL.Txt.....Másodjára küldöm... az első felét :hm: :hihi:

OTL logfile created on: 2012.02.24. 14:06:41 - Run 1
OTL by OldTimer - Version 3.2.33.2 Folder = C:\Documents and Settings\nagy\Dokumentumok\Letöltések
Windows XP Home Edition Szervizcsomag 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040E | Country: Magyarország | Language: HUN | Date Format: yyyy.MM.dd.

2,00 Gb Total Physical Memory | 1,23 Gb Available Physical Memory | 61,40% Memory free
3,85 Gb Paging File | 3,31 Gb Available in Paging File | 86,14% Paging File free
Paging file location(s): c:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,65 Gb Total Space | 5,77 Gb Free Space | 5,90% Space Free | Partition Type: NTFS
Drive E: | 200,43 Gb Total Space | 84,46 Gb Free Space | 42,14% Space Free | Partition Type: NTFS

Computer Name: ATI | User Name: nagy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012.02.24 14:00:06 | 000,583,680 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\nagy\Dokumentumok\Letöltések\OTL.exe
PRC - [2012.02.21 06:42:00 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011.06.15 15:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011.04.27 15:39:26 | 000,228,520 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MpCmdRun.exe
PRC - [2011.04.27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2009.06.12 15:59:58 | 000,122,880 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\system32\UAService7.exe
PRC - [2008.04.14 09:02:18 | 001,035,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (No Company Name) ==========

MOD - [2012.02.21 06:41:58 | 001,911,768 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012.02.16 22:32:09 | 011,817,472 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\29bdc8352d3c26e3c572ea60639dec3b\System.Web.ni.dll
MOD - [2012.02.16 22:30:14 | 000,971,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\94a40f415bfa947e251888bbe88bb973\System.Configuration.ni.dll
MOD - [2012.02.16 16:48:35 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\77e1279cbf4eecfb0284b63316fe43fe\System.Xml.ni.dll
MOD - [2012.02.16 16:48:31 | 012,430,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\ad99ac6b5666edb8ee742dd64f9578af\System.Windows.Forms.ni.dll
MOD - [2012.02.16 16:48:20 | 001,587,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\9351cf29bb1ba951e45a9b3b0edab937\System.Drawing.ni.dll
MOD - [2012.02.16 16:44:15 | 007,953,408 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\9e3803cd2a11f056291862e306a8e2b2\System.ni.dll
MOD - [2012.02.16 16:43:34 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
MOD - [2011.12.29 03:30:12 | 000,025,600 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\d86a3346c3d90ff12d0df9d7726f3ece\Accessibility.ni.dll
MOD - [2011.12.25 19:03:31 | 011,490,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll
MOD - [2011.12.05 21:45:14 | 000,270,336 | ---- | M] () -- c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
MOD - [2010.03.16 12:22:12 | 000,014,848 | ---- | M] () -- c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AxInterop.WBOCXLib.dll
MOD - [2009.03.31 23:16:41 | 000,434,176 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_hu_b77a5c561934e089\System.Windows.Forms.resources.dll
MOD - [2009.03.31 23:16:37 | 000,315,392 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_hu_b77a5c561934e089\mscorlib.resources.dll
MOD - [2009.02.27 17:59:24 | 000,311,296 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.HUN
MOD - [2007.09.20 17:34:58 | 000,129,024 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2012.02.23 14:25:54 | 000,489,256 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011.04.27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2009.06.12 15:59:58 | 000,122,880 | ---- | M] (Sony DADC Austria AG.) [Auto | Running] -- C:\WINDOWS\system32\UAService7.exe -- (UserAccess7) SecuROM User Access Service (V7)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | Unknown | Running] -- -- (MpKsle676962e)
DRV - File not found [Kernel | On_Demand | Running] -- -- (catchme)
DRV - [2012.02.24 13:01:26 | 000,029,904 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\MpKsl88d458bb.sys -- (MpKsl88d458bb)
DRV - [2012.02.22 16:43:03 | 007,490,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2012.02.22 16:41:25 | 000,100,368 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtihdXP3.sys -- (AtiHDAudioService)
DRV - [2011.12.19 14:12:00 | 000,104,752 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV - [2010.07.23 00:35:49 | 000,281,760 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2010.07.23 00:35:49 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2008.03.24 16:17:38 | 000,137,344 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hwpsgt.sys -- (hwpsgt)
DRV - [2008.03.24 16:17:38 | 000,009,472 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lemsgt.sys -- (lemsgt)
DRV - [2007.08.07 01:15:07 | 000,033,052 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2007.07.20 18:40:10 | 000,084,992 | R--- | M] (ATI Research Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2007.03.27 03:21:06 | 004,395,008 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007.03.15 15:12:02 | 000,038,656 | R--- | M] (Attansic Technology corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\atl01_xp.sys -- (AtcL001)
DRV - [2006.04.07 14:26:08 | 000,088,960 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2005.11.03 15:40:07 | 000,063,488 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV - [2005.08.10 13:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2005.05.16 14:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2004.08.13 19:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2004.03.19 17:11:22 | 000,090,968 | ---- | M] (VM) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbVM31b.sys -- (ZSMC301b)
DRV - [2003.04.19 00:32:04 | 000,004,736 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\tandpl.sys -- (tandpl)
DRV - [2003.03.02 17:44:26 | 000,007,552 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\enodpl.sys -- (enodpl)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========



IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-606747145-1972579041-682003330-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.hu/
IE - HKU\S-1-5-21-606747145-1972579041-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-606747145-1972579041-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Yahoo"
FF - prefs.js..browser.search.defaultthis.engineName: "Softonic-Hungary_ Customized Web Search"
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=937811&ilc=12"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.hu/"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {ca0849e8-2c76-42ae-9abe-34e14d337acf}:1.94
FF - prefs.js..extensions.enabledItems: {EF522540-89F5-46b9-B6FE-1829E2B572C6}:5.0
FF - prefs.js..extensions.enabledItems: {05f6a7ea-896b-11da-8bde-f66bad1e3fff}:3.5.20090705
FF - prefs.js..extensions.enabledItems: ietab@ip.cn:1.95.20100933
FF - prefs.js..extensions.enabledItems: {5e5ab302-7f65-44cd-8211-c1d4caaccea3}:3.2.5.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: wrc@avast.com:20110101
FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.2.5.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {75656794-AB59-4712-BFBC-5D816D56F3BC}:1.1.7
FF - prefs.js..network.proxy.no_proxies_on: "*.local"


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Documents and Settings\nagy\Local Settings\Application Data\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Documents and Settings\nagy\Local Settings\Application Data\Google\Update\1.2.183.29\npGoogleOneClick8.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\m3ffxtbr@mywebsearch.com: C:\Program Files\MyWebSearch\bar\2.bin
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.02.22 21:59:01 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.02.22 22:08:48 | 000,000,000 | ---D | M]

[2009.11.23 18:25:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\nagy\Application Data\Mozilla\Extensions
[2012.02.23 03:16:00 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\nagy\Application Data\Mozilla\Firefox\Profiles\mm64lt8n.default\extensions
[2010.05.02 11:14:30 | 000,000,000 | ---D | M] (Locator) -- C:\Documents and Settings\nagy\Application Data\Mozilla\Firefox\Profiles\mm64lt8n.default\extensions\{05f6a7ea-896b-11da-8bde-f66bad1e3fff}
[2010.05.10 12:09:20 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\nagy\Application Data\Mozilla\Firefox\Profiles\mm64lt8n.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011.03.27 14:48:00 | 000,000,000 | ---D | M] (XfireXO) -- C:\Documents and Settings\nagy\Application Data\Mozilla\Firefox\Profiles\mm64lt8n.default\extensions\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}
[2011.06.26 03:32:28 | 000,000,000 | ---D | M] ("BabelFish") -- C:\Documents and Settings\nagy\Application Data\Mozilla\Firefox\Profiles\mm64lt8n.default\extensions\{ca0849e8-2c76-42ae-9abe-34e14d337acf}
[2011.11.09 19:52:28 | 000,002,401 | ---- | M] () -- C:\Documents and Settings\nagy\Application Data\Mozilla\Firefox\Profiles\mm64lt8n.default\searchplugins\askcom.xml
[2011.08.01 14:57:42 | 000,000,937 | ---- | M] () -- C:\Documents and Settings\nagy\Application Data\Mozilla\Firefox\Profiles\mm64lt8n.default\searchplugins\conduit.xml
[2011.03.13 10:05:40 | 000,002,374 | ---- | M] () -- C:\Documents and Settings\nagy\Application Data\Mozilla\Firefox\Profiles\mm64lt8n.default\searchplugins\search.xml
[2012.02.13 12:57:27 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
() (No name found) -- C:\DOCUMENTS AND SETTINGS\NAGY\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\MM64LT8N.DEFAULT\EXTENSIONS\{EF522540-89F5-46B9-B6FE-1829E2B572C6}.XPI
[2012.02.21 06:42:00 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.10.03 05:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011.12.18 21:56:24 | 000,002,310 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2011.12.23 10:39:46 | 000,000,980 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-hu.xml
[2011.11.06 15:16:10 | 000,002,046 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fcmdSrch.xml
[2011.12.23 10:39:46 | 000,001,628 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\sztaki-en-hu.xml
[2011.12.23 10:39:46 | 000,000,974 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\vatera.xml
[2011.12.23 10:39:46 | 000,001,189 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-hu.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\nagy\Local Settings\Application Data\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\nagy\Local Settings\Application Data\Google\Chrome\Application\17.0.963.56\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\nagy\Local Settings\Application Data\Google\Chrome\Application\17.0.963.56\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\nagy\Local Settings\Application Data\Google\Chrome\Application\17.0.963.56\pdf.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U29 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Windows Genuine Advantage (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll
CHR - plugin: QuickTime Plug-in 7.5.5 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.5.5 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.5.5 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.5.5 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.5.5 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.5.5 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.5.5 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Facebook Video Calling Plugin (Enabled) = C:\Documents and Settings\nagy\Local Settings\Application Data\Facebook\Video\Skype\npFacebookVideoCalling.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\nagy\Local Settings\Application Data\Google\Update\1.2.183.29\npGoogleOneClick8.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: Facecons = C:\Documents and Settings\nagy\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\oiabdeiamlolpdknhnpflnijogclooij\1.0_0\

O1 HOSTS File: ([2012.02.24 13:45:19 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (SMTTB2009 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\HyperCam Toolbar\tbcore3.dll ()
O3 - HKU\S-1-5-21-606747145-1972579041-682003330-1004\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O4 - HKLM..\Run: [ATICustomerCare] C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [StartCCC] c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Indítópult\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Indítópult\Symantec Fax Starter Edition Port.lnk = C:\Program Files\Microsoft Office\Office\1038\OLFSNT40.EXE (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-606747145-1972579041-682003330-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-606747145-1972579041-682003330-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-606747145-1972579041-682003330-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-606747145-1972579041-682003330-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupda ... 7376602625 (WUWebControl Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/sh ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{44C9B6FD-FB4B-4735-8DB8-6BCAE7757616}: DhcpNameServer = 192.168.0.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Jelenlegi saját honlap) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\nagy\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\nagy\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.01.10 15:45:47 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (sprestrt)
O34 - HKLM BootExecute: (sprestrt)
O34 - HKLM BootExecute: (sprestrt)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012.02.24 13:00:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2012.02.23 21:06:03 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\nagy\Recent
[2012.02.23 19:44:46 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2012.02.23 19:43:02 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2012.02.23 19:43:02 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2012.02.23 19:43:01 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2012.02.23 19:43:01 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2012.02.23 19:40:53 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012.02.23 19:40:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\nagy\Start Menu\Programs\Felügyeleti eszközök
[2012.02.23 16:37:36 | 000,602,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2012.02.23 16:37:36 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2012.02.23 16:37:34 | 002,000,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2012.02.23 16:37:34 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2012.02.23 16:37:32 | 011,082,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2012.02.23 13:41:22 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2012.02.23 11:17:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012.02.23 11:17:29 | 000,020,464 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012.02.23 11:17:29 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012.02.23 09:00:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\nagy\Application Data\ElevatedDiagnostics
[2012.02.23 07:39:11 | 000,272,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2012.02.23 07:39:06 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2012.02.23 07:38:43 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll
[2012.02.23 07:38:43 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll
[2012.02.23 07:37:58 | 000,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys
[2012.02.23 07:37:56 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys
[2012.02.23 07:37:51 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll
[2012.02.23 07:37:21 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll
[2012.02.23 07:37:17 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys
[2012.02.23 07:37:16 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll
[2012.02.23 07:36:03 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2012.02.23 07:35:35 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys
[2012.02.23 07:35:00 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll
[2012.02.23 07:34:36 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll
[2012.02.23 07:34:08 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe
[2012.02.23 07:33:58 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2012.02.23 07:33:44 | 000,758,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll
[2012.02.23 07:33:03 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys
[2012.02.23 07:32:37 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2012.02.23 07:32:33 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll
[2012.02.23 07:31:29 | 001,859,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys
[2012.02.23 07:30:49 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe
[2012.02.23 05:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\windowspowershell
[2012.02.23 04:41:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2012.02.23 04:35:34 | 001,372,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll
[2012.02.23 04:35:34 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll
[2012.02.23 04:35:31 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm
[2012.02.23 04:35:31 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm
[2012.02.23 04:35:31 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm
[2012.02.23 04:33:45 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe
[2012.02.23 04:29:19 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2012.02.23 02:39:37 | 000,000,000 | ---D | C] -- C:\Program Files\ReImageCompanion
[2012.02.23 02:39:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\nagy\AppData
[2012.02.23 00:52:17 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime
[2012.02.23 00:52:16 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime
[2012.02.23 00:52:16 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime
[2012.02.23 00:52:16 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime
[2012.02.23 00:52:15 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime
[2012.02.23 00:52:15 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime
[2012.02.23 00:52:15 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll
[2012.02.23 00:52:15 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys
[2012.02.23 00:52:13 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll
[2012.02.23 00:52:13 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll
[2012.02.23 00:52:13 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll
[2012.02.23 00:52:08 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll
[2012.02.23 00:52:08 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime
[2012.02.23 00:52:07 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2012.02.23 00:52:06 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime
[2012.02.23 00:52:06 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe
[2012.02.23 00:52:06 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe
[2012.02.23 00:52:06 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll
[2012.02.23 00:52:05 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll
[2012.02.23 00:52:05 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys
[2012.02.23 00:52:05 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys
[2012.02.23 00:52:05 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys
[2012.02.23 00:52:03 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll
[2012.02.23 00:52:02 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll
[2012.02.23 00:52:01 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll
[2012.02.23 00:52:00 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll
[2012.02.23 00:52:00 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll
[2012.02.23 00:52:00 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll
[2012.02.23 00:52:00 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll
[2012.02.23 00:51:59 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll
[2012.02.23 00:51:59 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll
[2012.02.23 00:51:59 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll
[2012.02.23 00:51:59 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll
[2012.02.23 00:51:59 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll
[2012.02.23 00:51:59 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll
[2012.02.23 00:51:59 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll
[2012.02.23 00:51:59 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll
[2012.02.23 00:51:59 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll
[2012.02.23 00:51:59 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll
[2012.02.23 00:51:57 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll
[2012.02.23 00:51:55 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll
[2012.02.23 00:51:54 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2012.02.23 00:51:53 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2012.02.23 00:51:53 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2012.02.23 00:51:52 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime
[2012.02.23 00:51:51 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2012.02.23 00:51:51 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2012.02.23 00:51:50 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2012.02.23 00:51:49 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime
[2012.02.23 00:51:49 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2012.02.23 00:51:48 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll
[2012.02.23 00:51:48 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll
[2012.02.23 00:51:48 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll
[2012.02.23 00:51:47 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime
[2012.02.23 00:51:47 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime
[2012.02.23 00:51:47 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe
[2012.02.23 00:51:47 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll
[2012.02.23 00:51:47 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll
[2012.02.23 00:51:46 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll
[2012.02.23 00:51:46 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll
[2012.02.23 00:51:46 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll
[2012.02.23 00:51:46 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll
[2012.02.23 00:51:43 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll
[2012.02.23 00:51:40 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll
[2012.02.23 00:51:36 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex
[2012.02.23 00:51:36 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll
[2012.02.23 00:51:31 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys
[2012.02.23 00:51:31 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll
[2012.02.23 00:51:30 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll
[2012.02.23 00:51:27 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll
[2012.02.23 00:51:26 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll
[2012.02.23 00:51:26 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll
[2012.02.23 00:51:26 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll
[2012.02.23 00:51:26 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll
[2012.02.23 00:51:26 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll
[2012.02.23 00:51:26 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll
[2012.02.23 00:51:26 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll
[2012.02.23 00:51:26 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll
[2012.02.23 00:51:25 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll
[2012.02.23 00:51:25 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll
[2012.02.23 00:51:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll
[2012.02.23 00:51:25 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll
[2012.02.23 00:51:25 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll
[2012.02.23 00:51:24 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll
[2012.02.23 00:51:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll
[2012.02.23 00:51:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll
[2012.02.23 00:51:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll
[2012.02.23 00:51:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll
[2012.02.23 00:51:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll
[2012.02.23 00:51:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll
[2012.02.23 00:51:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll
[2012.02.23 00:51:24 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll
[2012.02.23 00:51:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll
[2012.02.23 00:51:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll
[2012.02.23 00:51:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll
[2012.02.23 00:51:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll
[2012.02.23 00:51:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll
[2012.02.23 00:51:23 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll
[2012.02.23 00:51:23 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll
[2012.02.23 00:51:22 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll
[2012.02.23 00:51:22 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll
[2012.02.23 00:51:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll
[2012.02.23 00:51:20 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll
[2012.02.23 00:51:20 | 000,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll
[2012.02.23 00:51:20 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll
[2012.02.23 00:51:20 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe
[2012.02.23 00:51:19 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe
[2012.02.23 00:51:19 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll
[2012.02.23 00:51:19 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe
[2012.02.23 00:51:19 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe
[2012.02.23 00:51:19 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe
[2012.02.23 00:51:19 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe
[2012.02.23 00:51:19 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll
[2012.02.23 00:51:19 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe
[2012.02.23 00:51:18 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll
[2012.02.23 00:51:18 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll
[2012.02.23 00:51:18 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll
[2012.02.23 00:51:18 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime
[2012.02.23 00:51:18 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe
[2012.02.23 00:51:18 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll
[2012.02.23 00:51:18 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe
[2012.02.23 00:51:18 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe
[2012.02.23 00:51:17 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll
[2012.02.23 00:51:17 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime
[2012.02.23 00:51:17 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll
[2012.02.23 00:51:14 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll
[2012.02.23 00:51:09 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll
[2012.02.23 00:51:07 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll
[2012.02.23 00:51:04 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll
[2012.02.23 00:51:04 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll
[2012.02.23 00:51:04 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe
[2012.02.23 00:51:03 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll
[2012.02.23 00:51:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll
[2012.02.23 00:51:02 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll
[2012.02.23 00:51:02 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2012.02.23 00:51:01 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys
[2012.02.23 00:51:00 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2012.02.23 00:51:00 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2012.02.23 00:51:00 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2012.02.23 00:50:56 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime
[2012.02.23 00:50:54 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe
[2012.02.23 00:50:54 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2012.02.23 00:50:53 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe
[2012.02.23 00:50:52 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll
[2012.02.23 00:50:52 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll
[2012.02.23 00:50:52 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll
[2012.02.23 00:50:52 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll
[2012.02.23 00:50:52 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime
[2012.02.23 00:50:51 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll
[2012.02.23 00:50:51 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime
[2012.02.23 00:50:51 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2012.02.23 00:50:51 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2012.02.23 00:50:51 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2012.02.23 00:50:51 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2012.02.23 00:50:50 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2012.02.23 00:50:49 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll
[2012.02.23 00:50:49 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll
[2012.02.23 00:50:36 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll
[2012.02.23 00:50:31 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll
[2012.02.23 00:50:26 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll
[2012.02.23 00:50:21 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll
[2012.02.23 00:48:32 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe
[2012.02.23 00:32:04 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2012.02.23 00:32:04 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2012.02.23 00:32:04 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2012.02.23 00:32:04 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2012.02.22 22:08:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Catalyst Control Center
[2012.02.22 22:08:40 | 000,000,000 | ---D | C] -- C:\Program Files\AMD APP
[2012.02.22 22:06:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\nagy\Start Menu\Programs\KONAMI
[2012.02.22 18:38:34 | 000,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe
[2012.02.22 18:38:33 | 001,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll
[2012.02.22 18:38:33 | 000,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll
[2012.02.22 18:38:33 | 000,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll
[2012.02.22 18:38:33 | 000,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll
[2012.02.22 18:38:33 | 000,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe
[2012.02.22 18:38:32 | 002,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll
[2012.02.22 18:38:32 | 000,780,885 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll
[2012.02.22 18:38:32 | 000,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe
[2012.02.22 18:38:32 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe
[2012.02.22 18:38:32 | 000,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll
[2012.02.22 18:38:31 | 001,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll
[2012.02.22 18:38:31 | 000,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll
[2012.02.22 18:38:31 | 000,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll
[2012.02.22 18:38:31 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe
[2012.02.22 18:38:31 | 000,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll
[2012.02.22 18:38:31 | 000,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll
[2012.02.22 18:38:30 | 000,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll
[2012.02.22 18:38:30 | 000,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll
[2012.02.22 18:38:29 | 001,041,491 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll
[2012.02.22 18:38:29 | 000,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll
[2012.02.22 18:38:28 | 000,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll
[2012.02.22 18:38:28 | 000,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe
[2012.02.22 18:38:28 | 000,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll
[2012.02.22 18:38:28 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe
[2012.02.22 18:38:28 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe
[2012.02.22 18:38:27 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe
[2012.02.22 18:38:27 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe
[2012.02.22 18:38:26 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll
[2012.02.22 18:38:26 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll
[2012.02.22 18:38:26 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll
[2012.02.22 18:38:26 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll
[2012.02.22 18:38:26 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll
[2012.02.22 18:38:26 | 000,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll
[2012.02.22 18:38:25 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll
[2012.02.22 18:38:25 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll
[2012.02.22 18:38:25 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe
[2012.02.22 18:38:25 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe
[2012.02.22 18:38:24 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll
[2012.02.22 18:38:24 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll
[2012.02.22 18:38:24 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe
[2012.02.22 18:38:24 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe
[2012.02.22 18:38:23 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe
[2012.02.22 18:38:23 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe
[2012.02.22 18:38:23 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe
[2012.02.22 18:38:23 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe
[2012.02.22 18:38:23 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe
[2012.02.22 18:38:23 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe
[2012.02.22 18:38:22 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe
[2012.02.22 18:38:22 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe
[2012.02.22 18:38:22 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe
[2012.02.22 18:38:22 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe
[2012.02.22 16:45:15 | 000,100,368 | ---- | C] (Advanced Micro Devices) -- C:\WINDOWS\System32\drivers\AtihdXP3.sys
[2012.02.21 20:43:58 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2012.02.21 19:51:40 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\WINDOWS\System32\CSVer.dll
[2012.02.21 19:39:51 | 000,069,632 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\Alcmtr.exe
[2012.02.21 19:35:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\nagy\Application Data\Download Manager
[2012.02.10 06:42:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Spigot
[2012.02.08 13:36:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\PCHealth
[2012.01.29 16:38:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\nagy\Application Data\DivX
[2012.01.29 02:09:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DivX Shared
[2012.01.29 02:08:46 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
[2012.01.29 02:08:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\DivX
[2012.01.26 00:42:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NortonInstaller
[37 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]


pén. feb. 24, 2012 14:48
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
A QOOBOX az renben van, majd ki torlom evvel, csak hogy eppen a masik log kellet, mert ez az
Extras.txt

Es volt meg egy az OTL.TXT
Tehat ezt tedd ide, ha nincsen meg akkor futtasd es ezt tedd ide.


pén. feb. 24, 2012 14:38
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. nov. 05, 2009 15:10
Hozzászólások: 116
Tartózkodási hely: Hungary
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
OTS 2 db naplója itt van - még fent volt a Combofix, nem gond?:

Ésss ... most már törlődött a Combofix is csak egy Qoobox mappa maradt, benne a text fájlok megy Quarantine mappa...

Jó lesz így, vagy kell még egy scannelés az OTS-el? Várok a válaszodig ... :oops:

OTL Extras logfile created on: 2012.02.24. 14:06:41 - Run 1
OTL by OldTimer - Version 3.2.33.2 Folder = C:\Documents and Settings\nagy\Dokumentumok\Letöltések
Windows XP Home Edition Szervizcsomag 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040E | Country: Magyarország | Language: HUN | Date Format: yyyy.MM.dd.

2,00 Gb Total Physical Memory | 1,23 Gb Available Physical Memory | 61,40% Memory free
3,85 Gb Paging File | 3,31 Gb Available in Paging File | 86,14% Paging File free
Paging file location(s): c:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,65 Gb Total Space | 5,77 Gb Free Space | 5,90% Space Free | Partition Type: NTFS
Drive E: | 200,43 Gb Total Space | 84,46 Gb Free Space | 42,14% Space Free | Partition Type: NTFS

Computer Name: ATI | User Name: nagy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-606747145-1972579041-682003330-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office\msohtmed.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Opera\Opera.exe" "%1" (Opera Software)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [ACDBrowse] -- "C:\Program Files\ACD Systems\ACDSee\5.0\ACDSee5.exe" "%1" (ACD Systems, Ltd.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"UpdatesDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"58945:TCP" = 58945:TCP:*:Enabled:Pando Media Booster
"58945:UDP" = 58945:UDP:*:Enabled:Pando Media Booster

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"3389:TCP" = 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
"58945:TCP" = 58945:TCP:*:Enabled:Pando Media Booster
"58945:UDP" = 58945:UDP:*:Enabled:Pando Media Booster
"8394:TCP" = 8394:TCP:*:Enabled:League of Legends Launcher
"8394:UDP" = 8394:UDP:*:Enabled:League of Legends Launcher

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\WINDOWS\system32\dplaysvr.exe" = C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper -- (Microsoft Corporation)
"C:\Program Files\Java\jre6\bin\java.exe" = C:\Program Files\Java\jre6\bin\java.exe:*:Disabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"E:\PC GAMES\2K Games\Gearbox Software\Borderlands\Binaries\Borderlands.exe" = E:\PC GAMES\2K Games\Gearbox Software\Borderlands\Binaries\Borderlands.exe:*:Enabled:Borderlands -- (Take-Two Interactive Software, Inc.)
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"E:\PC GAMES\Codemasters\Worms 4 Mayhem\WORMS 4 MAYHEM.EXE" = E:\PC GAMES\Codemasters\Worms 4 Mayhem\WORMS 4 MAYHEM.EXE:*:Enabled:Worms 4 Mayhem -- (Team 17 Ltd)
"C:\WINDOWS\system32\usmt\migwiz.exe" = C:\WINDOWS\system32\usmt\migwiz.exe:*:Enabled:Fájlok és beállítások átvitele varázsló -- (Microsoft Corporation)
"C:\Program Files\Steam\SteamApps\feketelovag21\team fortress 2\hl2.exe" = C:\Program Files\Steam\SteamApps\feketelovag21\team fortress 2\hl2.exe:*:Enabled:hl2 -- ()
"E:\PC GAMES\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe" = E:\PC GAMES\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) -- ()
"C:\Program Files\Xfire\Xfire.exe" = C:\Program Files\Xfire\Xfire.exe:*:Enabled:Xfire -- (Xfire Inc.)
"E:\PC GAMES\Activision\Call of Duty 2\CoD2MP_s.exe" = E:\PC GAMES\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s -- ()
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
"E:\PC GAMES\EA Sports\FIFA 11\Game\fifa.exe" = E:\PC GAMES\EA Sports\FIFA 11\Game\fifa.exe:*:Enabled:FIFA 11 -- (Electronic Arts)
"C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"C:\Program Files\Steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe" = C:\Program Files\Steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe:*:Enabled:Call of Duty: Modern Warfare 2 - Multiplayer -- ()
"E:\PC GAMES\Dead Island\deadislandgame.exe" = E:\PC GAMES\Dead Island\deadislandgame.exe:*:Enabled:DeadIsland -- (Techland)
"C:\Program Files\Steam\steamapps\common\call of duty black ops\BlackOps.exe" = C:\Program Files\Steam\steamapps\common\call of duty black ops\BlackOps.exe:*:Enabled:Call of Duty: Black Ops -- ()
"C:\Program Files\Steam\steamapps\common\call of duty black ops\BlackOpsMP.exe" = C:\Program Files\Steam\steamapps\common\call of duty black ops\BlackOpsMP.exe:*:Enabled:Call of Duty: Black Ops - Multiplayer -- ()
"C:\Program Files\Steam\steamapps\common\spiral knights\java_vm\bin\javaw.exe" = C:\Program Files\Steam\steamapps\common\spiral knights\java_vm\bin\javaw.exe:*:Enabled:Spiral Knights -- (Sun Microsystems, Inc.)
"E:\PC GAMES\AlterIW\iw4mp.dat" = E:\PC GAMES\AlterIW\iw4mp.dat:*:Enabled:iw4mp -- ()
"C:\Documents and Settings\nagy\Application Data\GameRanger\GameRanger\GameRanger.exe" = C:\Documents and Settings\nagy\Application Data\GameRanger\GameRanger\GameRanger.exe:*:Enabled:GameRanger -- (GameRanger Technologies)
"C:\Program Files\Steam\steamapps\common\call of duty modern warfare 3\iw5mp_server.exe" = C:\Program Files\Steam\steamapps\common\call of duty modern warfare 3\iw5mp_server.exe:*:Enabled:Call of Duty: Modern Warfare 3 - Dedicated Server -- ()
"C:\Program Files\Steam\steamapps\common\call of duty modern warfare 3\iw5sp.exe" = C:\Program Files\Steam\steamapps\common\call of duty modern warfare 3\iw5sp.exe:*:Enabled:Call of Duty: Modern Warfare 3 -- ()
"C:\Program Files\Steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe" = C:\Program Files\Steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe:*:Enabled:Call of Duty: Modern Warfare 3 - Multiplayer -- ()
"C:\Program Files\Steam\steamapps\common\left 4 dead 2\left4dead2.exe" = C:\Program Files\Steam\steamapps\common\left 4 dead 2\left4dead2.exe:*:Enabled:Left 4 Dead 2 -- ()
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\Documents and Settings\nagy\Local Settings\Application Data\Facebook\Video\Skype\FacebookVideoCalling.exe" = C:\Documents and Settings\nagy\Local Settings\Application Data\Facebook\Video\Skype\FacebookVideoCalling.exe:*:Disabled:Facebook Video Calling Plugin -- (Skype Limited)
"C:\Program Files\Steam\steamapps\common\amd driver updater, xp, 32 bit\Setup.exe" = C:\Program Files\Steam\steamapps\common\amd driver updater, xp, 32 bit\Setup.exe:*:Enabled:AMD Driver Updater, XP, 32 bit -- (Advanced Micro Devices, Inc.)
"C:\Program Files\Microsoft Security Client\msseces.exe" = C:\Program Files\Microsoft Security Client\msseces.exe:*:Enabled:Microsoft Security Essentials -- (Microsoft Corporation)
"C:\Program Files\Steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe" = C:\Program Files\Steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe:*:Enabled:Call of Duty: Modern Warfare 2 -- ()


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001040E-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Professional
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}" = Microsoft Games for Windows - LIVE Redistributable
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{05BFB060-4F22-4710-B0A2-2801A1B606C5}" = Microsoft Antimalware
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}" = ATI Catalyst Registration
"{1D14373E-7970-4F2F-A467-ACA4F0EA21E3}" = Google Earth
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F61E0B1-1AB8-F15E-07C4-46D100A1D3F7}" = Borderlands
"{1F698102-5739-441E-96F0-74F4EA540F06}" = Attansic Ethernet Utility
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live feltöltőeszköz
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java(TM) 6 Update 29
"{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}" = Microsoft Games for Windows - LIVE
"{2ECA81CA-D932-4AD3-AD59-BF5CCF099C83}" = Catalyst Control Center - Branding
"{318AB667-3230-41B5-A617-CB3BF748D371}" = iTunes
"{34E4301B-A0D0-4CAD-AB09-0A14248FD9E0}" = Windows Live Essentials
"{350C940e-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35CB6715-41F8-4F99-8881-6FC75BF054B0}" = Oblivion
"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}" = FIFA 11
"{40719211-D09A-11DF-BA30-0013D3D69929}" = MSVCRT Redists
"{45E7C481-3EF4-4FCB-AF0B-19F70D618F0C}" = Worms 4 Mayhem
"{487744FA-8AED-4258-A9F5-5181B954D28B}" = Microsoft Antimalware Service HU-HU Language Pack
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client HU-HU Language Pack
"{5380C741-5656-387C-9FB0-3E45D07F864A}" = Microsoft .NET Framework 3.5 Language Pack SP1 - hun
"{54B6DC7D-8C5B-4DFB-BC15-C010A3326B2B}" = Microsoft Security Client
"{587178E7-B1DF-494E-9838-FA4DD36E873C}" = ASUSUpdate
"{5FEEB4D3-31F1-FF10-5F61-A988CD44CA59}" = CCC Help Hungarian
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{624E54D0-E4F4-434F-9EF6-D4D066EE4348}" = Facebook Video Calling 1.1.1.1
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{792A669E-71A6-9210-2C06-3FCF0DDFC4C5}" = Catalyst Control Center Localization All
"{79449B16-5C47-4C4D-87CE-7E141572C8EE}" = Windows Live bejelentkezési segéd
"{7B4A5C13-069F-4AFE-AE57-C497B4E33C7E}" = Call of Duty(R) 2 Patch 1.3
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}" = ATI AVIVO Codecs
"{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}" = Bonjour
"{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}" = The Lord of the Rings FREE Trial
"{8FC113D5-64A6-40EE-9A39-DAB4650457A8}" = Microsoft .NET Framework 1.1 Hungarian Language Pack
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{90120000-0020-040E-0000-0000000FF1CE}" = Kompatibilitási csomag a 2007-es Office rendszerhez
"{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9773450C-E2F3-46C3-9464-1D7EDE5EFB63}" = Pro Evolution Soccer 2011
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C2B41C5-919A-7037-F5E8-42A5E90873B8}" = Catalyst Control Center Graphics Previews Common
"{9CF4A37B-A8C4-44D7-8C53-13B9D9594BB2}" = Paint.NET v3.5.8
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A25FF1C0-80B6-4B8B-A551-DC525697A408}" = AMD APP SDK Runtime
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A6991E11-AF13-652B-5736-C8800EF5527B}" = Catalyst Control Center
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AC76BA86-7AD7-1038-7B44-A93000000001}" = Adobe Reader 9.3.3 - Hungarian
"{ADD24D05-DDEA-39CB-0E92-AA371AEE2894}" = Catalyst Control Center InstallProxy
"{AF5E8D43-49AD-4BE7-A941-2BB0A8CACA62}" = ACDSee 5.0 Standard
"{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}" = Adobe AIR
"{B2420CAA-ADC1-8581-938A-2B25C22EF17A}" = ccc-utility
"{B2F4835F-346A-35FF-9B5F-1360B559310E}" = Microsoft .NET Framework 4 Extended HUN Language Pack
"{B35E52B3-BFC7-3680-9D0A-19C8512638DB}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - HUN
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C4186C0D-FB9F-5D83-21FB-A737A13EFAE6}" = AMD Catalyst Install Manager
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D0A05794-48C2-4424-A15A-9F20FCFDD374}" = Call of Duty(R) 2
"{D2C2B2A0-F37E-43CC-9E94-FC52F6D20C43}" = Windows Live Messenger
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.4.4 Game
"{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas
"{D5B60174-B7A9-3D80-94C7-F9BADEAD9C67}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - HUN
"{D8DD8617-10CF-4D94-B997-53994EF53A66}" = Look 312P
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{EBB794ED-D282-4334-92FB-254481EFF514}" = Pro Evolution Soccer 6
"{EC4455AB-F155-4CC1-A4C5-88F3777F9886}" = Apple Mobile Device Support
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F69E83CF-B440-43F8-89E6-6EA80712109B}" = Windows Live Communications Platform
"{F958CA02-BB40-4007-894B-258729456EE4}" = QuickTime
"{FD031145-2925-3FEF-9A4E-64047AAD8951}" = Microsoft .NET Framework 4 Client Profile HUN Language Pack
"8AD51A41BEE6AF46CD7481F4460B914727172F64" = Windows illesztőprogram-csomag - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"AutoHotkey" = AutoHotkey 1.1.00.00
"CCleaner" = CCleaner
"Coda" = Coda codec pack
"DivX Setup" = DivX Setup
"EAX Unified" = EAX Unified
"Facecons" = Facecons
"FIFA 10-DVD5" = FIFA 10-DVD5
"Freez Screen Video Capture v1.2_is1" = Freez Screen Video Capture v1.2
"HyperCam 2" = HyperCam 2
"HyperCam 3" = HyperCam 3
"HyperCam Toolbar" = HyperCam Toolbar
"ie8" = Windows Internet Explorer 8
"InstallShield_{050C1C8E-4A4D-4C2F-B9AE-67E60EE91B7F}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.3 Patch
"InstallShield_{3BD633E0-4BF8-4499-9149-88F0767D449C}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch
"InstallShield_{8503C901-85D7-4262-88D2-8D8B2A7B08B8}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Multiplayer Patch
"InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}" = Call of Duty(R) 2
"InstallShield_{E03B44A3-9237-4B55-B7A5-DB1DD46920D3}" = Wolfenstein(TM) 1.1 Patch
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"InstallShield_{E5141379-B2D9-4BBC-BB2A-5805541571DD}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.2 Patch
"InstallShield_{EBB794ED-D282-4334-92FB-254481EFF514}" = Pro Evolution Soccer 6
"Magic ISO Maker v5.5 (build 0272)" = Magic ISO Maker v5.5 (build 0272)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware 1.60.1.1000 verzió
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - hun" = Nyelvi csomag a Microsoft .NET-keretrendszer 3.5 1. szervizcsomagjához – HUN
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile HUN Language Pack" = A Microsoft .NET-keretrendszer 4-es verziójához tartozó ügyfélprofil HUN nyelvi csomagja
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended HUN Language Pack" = A kiterjesztett Microsoft .NET-keretrendszer 4 HUN nyelvi csomagja
"Microsoft Security Client" = Microsoft Security Essentials
"Mozilla Firefox 10.0.2 (x86 hu)" = Mozilla Firefox 10.0.2 (x86 hu)
"MuOnline.HU Season3" = MuOnline.HU Season3
"MyDefrag v4.2.8_is1" = MyDefrag v4.2.8
"OpenAL" = OpenAL
"Opera 11.61.1250" = Opera 11.61
"PowerISO" = PowerISO
"Rage_is1" = Rage
"SCAR Divi 3.22_is1" = SCAR Divi CDE 3.22
"SCAR Divi 3.29.02_is1" = SCAR Divi CDE 3.29.02
"Steam App 10180" = Call of Duty: Modern Warfare 2
"Steam App 10190" = Call of Duty: Modern Warfare 2 - Multiplayer
"Steam App 220" = Half-Life 2
"Steam App 340" = Half-Life 2: Lost Coast
"Steam App 380" = Half-Life 2: Episode One
"Steam App 400" = Portal
"Steam App 420" = Half-Life 2: Episode Two
"Steam App 42680" = Call of Duty: Modern Warfare 3
"Steam App 42690" = Call of Duty: Modern Warfare 3 - Multiplayer
"Steam App 42700" = Call of Duty: Black Ops
"Steam App 42710" = Call of Duty: Black Ops - Multiplayer
"Steam App 42750" = Call of Duty: Modern Warfare 3 - Dedicated Server
"Steam App 440" = Team Fortress 2
"Steam App 550" = Left 4 Dead 2
"Steam App 99900" = Spiral Knights
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"The KMPlayer" = The KMPlayer (remove only)
"Tux Paint_is1" = Tux Paint 0.9.21
"Winamp" = Winamp
"Wincmd" = Windows Commander (Remove or Repair)
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiváló
"WinZip" = WinZip
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"WMV9_VCM" = Microsoft Windows Media Video 9 VCM
"Xbox_360_CC_Driver" = Xbox 360 Controller for Windows
"XfireXO Toolbar" = XfireXO Toolbar

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-606747145-1972579041-682003330-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"GameRanger" = GameRanger
"Google Chrome" = Google Chrome
"uTorrent" = µTorrent

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 2012.02.23. 8:54:57 | Computer Name = ATI | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 0, P2 moaccapability, P3 3.0.8402.0, P4
1, P5 1, P6 unspecified, P7 unspecified, P8 NIL, P9 NIL, P10 NIL.

Error - 2012.02.23. 8:59:36 | Computer Name = ATI | Source = Application Error | ID = 1000
Description = Hibás alkalmazás: iexplore.exe, verzió: 6.0.2900.5512, hibás modul:
urlmon.dll, verzió: 6.0.2900.6182, memóriacím: 0x000040e6.

Error - 2012.02.23. 9:00:38 | Computer Name = ATI | Source = Application Error | ID = 1000
Description = Hibás alkalmazás: iexplore.exe, verzió: 6.0.2900.5512, hibás modul:
urlmon.dll, verzió: 6.0.2900.6182, memóriacím: 0x000040e6.

Error - 2012.02.23. 9:01:08 | Computer Name = ATI | Source = Application Error | ID = 1001
Description = Hibasor: -1458953818.

Error - 2012.02.23. 9:01:38 | Computer Name = ATI | Source = Application Error | ID = 1000
Description = Hibás alkalmazás: iexplore.exe, verzió: 6.0.2900.5512, hibás modul:
urlmon.dll, verzió: 6.0.2900.6182, memóriacím: 0x000040e6.

Error - 2012.02.23. 9:01:54 | Computer Name = ATI | Source = Application Error | ID = 1001
Description = Hibasor: -1458953818.

Error - 2012.02.23. 11:31:51 | Computer Name = ATI | Source = Application Error | ID = 1000
Description = Hibás alkalmazás: iexplore.exe, verzió: 6.0.2900.5512, hibás modul:
urlmon.dll, verzió: 6.0.2900.6182, memóriacím: 0x000040e6.

Error - 2012.02.23. 11:33:28 | Computer Name = ATI | Source = Application Error | ID = 1000
Description = Hibás alkalmazás: iexplore.exe, verzió: 6.0.2900.5512, hibás modul:
urlmon.dll, verzió: 6.0.2900.6182, memóriacím: 0x000040e6.

Error - 2012.02.23. 14:42:25 | Computer Name = ATI | Source = MPSampleSubmission | ID = 5000
Description = EventType avsubmit, P1 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094),
P2 1.1.8101.0, P3 1.121.253.0, P4 1.121.253.0, P5 200015b3e9679dd8_9cca347a4659301f89105a5433539e9cad150c69,
P6 NIL, P7 NIL, P8 NIL, P9 NIL, P10 NIL.

Error - 2012.02.24. 5:17:03 | Computer Name = ATI | Source = Application Error | ID = 1000
Description = Hibás alkalmazás: iw4mp.exe, verzió: 0.0.0.0, hibás modul: iw4mp.exe,
verzió: 0.0.0.0, memóriacím: 0x002be365.

[ System Events ]
Error - 2012.02.24. 7:53:13 | Computer Name = ATI | Source = Service Control Manager | ID = 7034
Description = A(z) Bonjour Service szolgáltatás váratlanul leállt. Ez a(z) 1. alkalommal
fordult elő.

Error - 2012.02.24. 7:53:13 | Computer Name = ATI | Source = Service Control Manager | ID = 7034
Description = A(z) PnkBstrA szolgáltatás váratlanul leállt. Ez a(z) 1. alkalommal
fordult elő.

Error - 2012.02.24. 7:53:13 | Computer Name = ATI | Source = Service Control Manager | ID = 7034
Description = A(z) WMI teljesítményadapter szolgáltatás váratlanul leállt. Ez a(z)
1. alkalommal fordult elő.

Error - 2012.02.24. 7:53:13 | Computer Name = ATI | Source = Service Control Manager | ID = 7031
Description = A(z) Apple Mobile Device szolgáltatás váratlanul leállt. Ez a(z) 1.
alkalommal fordult elő. 60000 milliszekundumon belül a következő ellenintézkedés
történik: A szolgáltatás újraindítása.

Error - 2012.02.24. 7:53:13 | Computer Name = ATI | Source = Service Control Manager | ID = 7034
Description = A(z) SecuROM User Access Service (V7) szolgáltatás váratlanul leállt.
Ez a(z) 1. alkalommal fordult elő.

Error - 2012.02.24. 7:53:13 | Computer Name = ATI | Source = Service Control Manager | ID = 7034
Description = A(z) Alkalmazási réteg átjárószolgáltatása szolgáltatás váratlanul
leállt. Ez a(z) 1. alkalommal fordult elő.

Error - 2012.02.24. 7:53:13 | Computer Name = ATI | Source = Service Control Manager | ID = 7031
Description = A(z) Microsoft Antimalware Service szolgáltatás váratlanul leállt.
Ez a(z) 1. alkalommal fordult elő. 15000 milliszekundumon belül a következő ellenintézkedés
történik: A szolgáltatás újraindítása.

Error - 2012.02.24. 7:53:13 | Computer Name = ATI | Source = Service Control Manager | ID = 7034
Description = A(z) Nyomtatásisor-kezelő szolgáltatás váratlanul leállt. Ez a(z)
1. alkalommal fordult elő.

Error - 2012.02.24. 7:53:13 | Computer Name = ATI | Source = Service Control Manager | ID = 7034
Description = A(z) SNMP szolgáltatás szolgáltatás váratlanul leállt. Ez a(z) 1.
alkalommal fordult elő.

Error - 2012.02.24. 7:53:13 | Computer Name = ATI | Source = Service Control Manager | ID = 7034
Description = A(z) Java Quick Starter szolgáltatás váratlanul leállt. Ez a(z) 1.
alkalommal fordult elő.


< End of report >


pén. feb. 24, 2012 14:32
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
Itt van az ikonja
c:\documents and settings\nagy\Dokumentumok\Letöltések\ComboFix.exe

Jobb klik erre es klik atnevezes>> es ird be uninstall.exe>.ENTER
es futtasd ujbol


pén. feb. 24, 2012 14:02
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. nov. 05, 2009 15:10
Hozzászólások: 116
Tartózkodási hely: Hungary
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
???
Combofix-el kapcsolatban azt csináltam amit írtál, még se telepítődött le??
Asztali ikonját átneveztem és futtattam (2x klikk az átnevezett asztali ikonra >>> Futtatás )
Csinált megint log.txt itt van, most mit rontottam el?

ComboFix 12-02-22.01 - nagy 012.02.24. 13:37:02.9.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.36.1038.18.2047.1462 [GMT 1:00]
Running from: c:\documents and settings\nagy\Dokumentumok\Letöltések\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\ATI
c:\documents and settings\All Users\Application Data\ATI\ACE\Profiles.xml
c:\documents and settings\nagy\Application Data\ATI
.
.
((((((((((((((((((((((((( Files Created from 2012-01-24 to 2012-02-24 )))))))))))))))))))))))))))))))
.
.
2012-02-24 12:01 . 2012-02-24 12:01 29904 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\MpKsl88d458bb.sys
2012-02-24 11:11 . 2012-02-24 11:11 29904 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\MpKsle676962e.sys
2012-02-23 16:42 . 2012-02-20 00:05 6552120 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-02-23 16:42 . 2012-02-20 00:05 6552120 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\mpengine.dll
2012-02-23 15:37 . 2011-08-16 10:45 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2012-02-23 15:37 . 2011-12-17 19:42 602112 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2012-02-23 15:37 . 2011-12-17 19:42 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2012-02-23 15:37 . 2011-12-17 19:42 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2012-02-23 15:37 . 2011-12-17 19:42 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2012-02-23 15:37 . 2011-12-17 19:42 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2012-02-23 15:37 . 2011-12-17 19:42 2000384 -c----w- c:\windows\system32\dllcache\iertutil.dll
2012-02-23 15:37 . 2011-12-18 13:42 11082240 -c----w- c:\windows\system32\dllcache\ieframe.dll
2012-02-23 12:41 . 2012-02-23 12:41 -------- d-----w- c:\program files\Microsoft Security Client
2012-02-23 10:17 . 2012-02-23 10:17 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-02-23 10:17 . 2011-12-10 14:24 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-02-23 08:00 . 2012-02-23 08:00 -------- d-----w- c:\documents and settings\nagy\Application Data\ElevatedDiagnostics
2012-02-23 06:39 . 2008-06-14 17:36 272512 -c----w- c:\windows\system32\dllcache\bthport.sys
2012-02-23 06:39 . 2011-07-15 13:29 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2012-02-23 06:38 . 2010-08-27 08:03 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2012-02-23 06:38 . 2009-10-15 16:33 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2012-02-23 06:37 . 2011-06-24 14:10 139656 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2012-02-23 06:37 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2012-02-23 06:37 . 2008-05-01 14:36 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2012-02-23 06:37 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2012-02-23 06:37 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2012-02-23 06:37 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2012-02-23 06:37 . 2009-06-21 21:48 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2012-02-23 06:36 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2012-02-23 06:35 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2012-02-23 06:35 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2012-02-23 06:35 . 2009-03-06 14:22 285184 -c----w- c:\windows\system32\dllcache\pdh.dll
2012-02-23 06:35 . 2009-02-09 11:26 111104 -c----w- c:\windows\system32\dllcache\services.exe
2012-02-23 06:35 . 2009-02-09 10:54 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2012-02-23 06:35 . 2009-02-09 10:54 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2012-02-23 06:35 . 2009-02-09 10:54 684544 -c----w- c:\windows\system32\dllcache\advapi32.dll
2012-02-23 06:35 . 2009-02-09 10:54 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2012-02-23 06:35 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2012-02-23 06:34 . 2010-06-14 07:43 1172480 -c----w- c:\windows\system32\dllcache\msxml3.dll
2012-02-23 06:34 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2012-02-23 06:33 . 2008-10-15 16:37 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll
2012-02-23 06:33 . 2011-04-30 03:01 758784 -c--a-w- c:\windows\system32\dllcache\vgx.dll
2012-02-23 06:33 . 2010-12-09 15:15 724992 -c----w- c:\windows\system32\dllcache\ntdll.dll
2012-02-23 06:33 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2012-02-23 06:32 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2012-02-23 06:32 . 2010-08-16 08:45 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2012-02-23 06:31 . 2012-01-12 17:20 1859968 -c----w- c:\windows\system32\dllcache\win32k.sys
2012-02-23 06:30 . 2009-12-17 07:42 345088 -c----w- c:\windows\system32\dllcache\mspaint.exe
2012-02-23 06:30 . 2010-07-16 11:58 220672 -c----w- c:\windows\system32\dllcache\wordpad.exe
2012-02-23 03:35 . 2009-07-31 09:05 1372672 -c----w- c:\windows\system32\dllcache\msxml6.dll
2012-02-23 03:35 . 2008-04-14 07:41 89600 -c----w- c:\windows\system32\dllcache\msxml6r.dll
2012-02-23 03:33 . 2008-04-14 08:02 294912 -c----w- c:\windows\system32\dllcache\dlimport.exe
2012-02-23 01:39 . 2012-02-23 02:56 -------- d-----w- c:\program files\ReImageCompanion
2012-02-23 01:39 . 2012-02-23 01:39 -------- d-----w- c:\documents and settings\nagy\AppData
2012-02-22 23:51 . 2006-03-02 12:00 30208 -c--a-w- c:\windows\system32\dllcache\sm87w.dll
2012-02-22 23:50 . 2006-03-02 12:00 57399 -c--a-w- c:\windows\system32\dllcache\cplexe.exe
2012-02-22 23:48 . 2006-03-02 12:00 16384 -c--a-w- c:\windows\system32\dllcache\isignup.exe
2012-02-22 23:48 . 2006-03-02 12:00 16384 ----a-w- c:\program files\Internet Explorer\Connection Wizard\isignup.exe
2012-02-22 23:32 . 2006-03-02 12:00 24661 -c--a-w- c:\windows\system32\dllcache\spxcoins.dll
2012-02-22 23:32 . 2006-03-02 12:00 24661 ----a-w- c:\windows\system32\spxcoins.dll
2012-02-22 23:32 . 2006-03-02 12:00 13312 -c--a-w- c:\windows\system32\dllcache\irclass.dll
2012-02-22 23:32 . 2006-03-02 12:00 13312 ----a-w- c:\windows\system32\irclass.dll
2012-02-22 21:08 . 2012-02-22 21:08 -------- d-----w- c:\program files\AMD APP
2012-02-22 15:45 . 2012-02-22 15:41 100368 ----a-w- c:\windows\system32\drivers\AtihdXP3.sys
2012-02-21 19:43 . 2012-02-21 19:43 -------- d--h--w- c:\documents and settings\All Users\Application Data\Common Files
2012-02-21 18:51 . 2009-08-18 12:44 53248 ----a-w- c:\windows\system32\CSVer.dll
2012-02-21 18:39 . 2005-05-04 01:43 69632 ----a-w- c:\windows\Alcmtr.exe
2012-02-21 18:35 . 2012-02-21 18:37 -------- d-----w- c:\documents and settings\nagy\Application Data\Download Manager
2012-02-15 08:55 . 2012-01-11 19:07 3072 ----a-w- c:\windows\system32\iacenc.dll
2012-02-10 05:42 . 2012-02-13 11:57 -------- d-----w- c:\program files\Common Files\Spigot
2012-02-08 12:36 . 2012-02-08 12:36 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\PCHealth
2012-02-03 09:29 . 2012-02-03 09:29 42392 ----a-w- c:\windows\system32\xfcodec.dll
2012-01-29 15:38 . 2012-01-29 15:38 -------- d-----w- c:\documents and settings\nagy\Application Data\DivX
2012-01-29 01:09 . 2012-01-30 13:15 -------- d-----w- c:\program files\Common Files\DivX Shared
2012-01-29 01:08 . 2012-01-30 13:15 -------- d-----w- c:\program files\DivX
2012-01-29 01:08 . 2012-01-30 13:15 -------- d-----w- c:\documents and settings\All Users\Application Data\DivX
2012-01-25 23:42 . 2012-01-25 23:42 -------- d-----w- c:\documents and settings\All Users\Application Data\NortonInstaller
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-22 15:43 . 2009-02-25 21:30 19357696 ----a-w- c:\windows\system32\atioglxx.dll
2012-02-22 15:43 . 2007-09-29 03:05 7490560 ----a-w- c:\windows\system32\drivers\ati2mtag.sys
2012-02-22 15:42 . 2007-09-29 02:58 26112 ----a-w- c:\windows\system32\Ati2mdxx.exe
2012-02-22 15:42 . 2007-09-29 02:47 5334656 ----a-w- c:\windows\system32\ati3duag.dll
2012-02-22 15:42 . 2010-03-22 00:09 118784 ----a-w- c:\windows\system32\atibtmon.exe
2012-02-22 15:42 . 2007-09-29 02:58 155648 ----a-w- c:\windows\system32\Oemdspif.dll
2012-02-22 15:42 . 2007-09-29 02:57 192512 ----a-w- c:\windows\system32\ati2evxx.dll
2012-02-22 15:42 . 2007-07-20 02:19 45056 ----a-w- c:\windows\system32\ATIODCLI.exe
2012-02-22 15:42 . 2007-09-29 02:14 884736 ----a-w- c:\windows\system32\ati2cqag.dll
2012-02-22 15:42 . 2001-11-09 15:01 24064 ----a-w- c:\windows\system32\ativcoxx.dll
2012-02-22 15:42 . 2007-09-29 02:58 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2012-02-22 15:42 . 2009-02-25 20:32 57344 ----a-w- c:\windows\system32\aticalrt.dll
2012-02-22 15:41 . 2007-07-20 02:19 294912 ----a-w- c:\windows\system32\ATIODE.exe
2012-02-22 15:41 . 2007-09-29 02:58 212992 ----a-w- c:\windows\system32\atipdlxx.dll
2012-02-22 15:41 . 2007-12-04 17:34 311296 ----a-w- c:\windows\system32\atiiiexx.dll
2012-02-22 15:41 . 2007-09-29 03:06 304640 ----a-w- c:\windows\system32\ati2dvag.dll
2012-02-22 15:41 . 2007-12-04 17:34 466944 ----a-w- c:\windows\system32\ATIDEMGX.dll
2012-02-22 15:41 . 2009-02-25 20:38 233472 ----a-w- c:\windows\system32\atiadlxx.dll
2012-02-22 15:41 . 2009-02-25 20:30 7376896 ----a-w- c:\windows\system32\aticaldd.dll
2012-02-22 15:41 . 2007-09-29 02:19 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2012-02-22 15:41 . 2007-09-29 02:55 53248 ----a-w- c:\windows\system32\ATIDDC.DLL
2012-02-22 15:40 . 2007-09-29 02:56 643072 ----a-w- c:\windows\system32\ati2evxx.exe
2012-02-22 15:40 . 2011-07-24 13:56 956160 ----a-w- c:\windows\system32\ativvamv.dll
2012-02-22 15:40 . 2007-09-29 02:22 806912 ----a-w- c:\windows\system32\atikvmag.dll
2012-02-22 15:40 . 2007-09-29 02:36 3307776 ----a-w- c:\windows\system32\ativvaxx.dll
2012-02-22 15:40 . 2010-03-22 00:09 159744 ----a-w- c:\windows\system32\atiapfxx.exe
2012-02-22 15:40 . 2009-02-25 20:32 53248 ----a-w- c:\windows\system32\aticalcl.dll
2012-02-22 15:40 . 2010-03-22 00:09 65024 ----a-w- c:\windows\system32\atimpc32.dll
2012-02-22 15:40 . 2009-02-25 20:44 65024 ----a-w- c:\windows\system32\amdpcom32.dll
2012-02-22 15:40 . 2007-09-29 02:47 602112 ----a-w- c:\windows\system32\atiok3x2.dll
2012-02-22 15:40 . 2007-09-29 02:20 17408 ----a-w- c:\windows\system32\atitvo32.dll
2012-02-21 19:55 . 2010-06-18 18:05 214520 ----a-w- c:\windows\system32\PnkBstrB.xtr
2012-02-21 19:55 . 2009-04-04 17:28 214520 ----a-w- c:\windows\system32\PnkBstrB.exe
2012-02-21 19:54 . 2009-04-04 17:28 137464 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2012-02-21 19:54 . 2009-04-04 17:28 214520 ----a-w- c:\windows\system32\PnkBstrB.ex0
2012-01-29 04:10 . 2011-09-04 09:50 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-01-12 17:20 . 2006-03-02 12:00 1859968 ----a-w- c:\windows\system32\win32k.sys
2011-12-19 13:12 . 2011-12-19 13:12 104752 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2011-12-19 13:11 . 2012-01-09 18:22 158512 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2011-12-19 13:11 . 2012-01-09 18:22 91440 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2011-12-17 19:42 . 2006-03-02 12:00 916992 ----a-w- c:\windows\system32\wininet.dll
2011-12-17 19:42 . 2006-03-02 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2011-12-17 19:42 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-12-16 12:23 . 2006-03-02 12:00 385024 ------w- c:\windows\system32\html.iec
2011-12-05 21:04 . 2011-12-05 21:04 59904 ----a-w- c:\windows\system32\OpenVideo.dll
2011-12-05 21:03 . 2011-12-05 21:03 54784 ----a-w- c:\windows\system32\OVDecode.dll
2011-12-05 21:03 . 2011-12-05 21:03 14499328 ----a-w- c:\windows\system32\amdocl.dll
2011-12-05 21:02 . 2011-12-05 21:02 44032 ----a-w- c:\windows\system32\OpenCL.dll
2011-12-04 13:31 . 2011-06-26 06:40 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
1999-06-22 06:35 . 1999-06-22 06:35 99840 ----a-w- c:\program files\Common Files\IRAABOUT.DLL
1998-12-09 00:53 . 1998-12-09 00:53 70144 ----a-w- c:\program files\Common Files\IRAMDMTR.DLL
1998-12-09 00:53 . 1998-12-09 00:53 48640 ----a-w- c:\program files\Common Files\IRALPTTR.DLL
1998-12-09 00:53 . 1998-12-09 00:53 31744 ----a-w- c:\program files\Common Files\IRAWEBTR.DLL
1998-12-09 00:53 . 1998-12-09 00:53 186368 ----a-w- c:\program files\Common Files\IRAREG.DLL
1998-12-09 00:53 . 1998-12-09 00:53 17920 ----a-w- c:\program files\Common Files\IRASRIAL.DLL
2012-02-21 05:42 . 2011-03-23 12:50 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-02-23_18.51.25 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-02-24 12:01 . 2012-02-24 12:01 16384 c:\windows\temp\Perflib_Perfdata_668.dat
+ 2012-02-24 12:01 . 2012-02-24 12:01 16384 c:\windows\temp\Perflib_Perfdata_28c.dat
- 2006-03-02 12:00 . 2008-04-14 08:02 75776 c:\windows\system32\strmfilt.dll
+ 2006-03-02 12:00 . 2009-10-21 05:40 75776 c:\windows\system32\strmfilt.dll
+ 2006-03-02 12:00 . 2010-08-27 05:54 99840 c:\windows\system32\srvsvc.dll
+ 2006-03-02 12:00 . 2009-10-21 05:40 25088 c:\windows\system32\httpapi.dll
+ 2009-10-21 05:40 . 2009-10-21 05:40 75776 c:\windows\system32\dllcache\strmfilt.dll
+ 2010-08-27 05:54 . 2010-08-27 05:54 99840 c:\windows\system32\dllcache\srvsvc.dll
+ 2009-10-21 05:40 . 2009-10-21 05:40 25088 c:\windows\system32\dllcache\httpapi.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 18296 c:\windows\ie8updates\KB2544521-IE8\spmsg.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 26488 c:\windows\ie8updates\KB2544521-IE8\spcustom.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 18296 c:\windows\ie8updates\KB2510531-IE8\spmsg.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 26488 c:\windows\ie8updates\KB2510531-IE8\spcustom.dll
+ 2006-03-02 12:00 . 2011-03-04 06:36 420864 c:\windows\system32\vbscript.dll
+ 2006-03-02 12:00 . 2011-03-04 06:36 726528 c:\windows\system32\jscript.dll
- 2006-03-02 12:00 . 2009-03-08 03:33 726528 c:\windows\system32\jscript.dll
+ 2006-03-02 12:00 . 2009-10-20 16:20 265728 c:\windows\system32\drivers\http.sys
+ 2011-03-04 06:44 . 2011-03-04 06:36 420864 c:\windows\system32\dllcache\vbscript.dll
+ 2011-03-04 06:44 . 2011-03-04 06:36 726528 c:\windows\system32\dllcache\jscript.dll
- 2011-03-04 06:44 . 2009-03-08 03:33 726528 c:\windows\system32\dllcache\jscript.dll
+ 2009-10-20 16:20 . 2009-10-20 16:20 265728 c:\windows\system32\dllcache\http.sys
+ 2012-02-24 10:37 . 2010-07-05 13:19 398200 c:\windows\ie8updates\KB2544521-IE8\updspapi.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 761208 c:\windows\ie8updates\KB2544521-IE8\update.exe
+ 2012-02-24 10:37 . 2010-07-05 13:19 233848 c:\windows\ie8updates\KB2544521-IE8\spuninst.exe
+ 2011-04-14 07:37 . 2009-03-08 03:33 420352 c:\windows\ie8updates\KB2510531-IE8\vbscript.dll
- 2011-04-14 07:37 . 2010-03-10 06:17 420352 c:\windows\ie8updates\KB2510531-IE8\vbscript.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 398200 c:\windows\ie8updates\KB2510531-IE8\updspapi.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 761208 c:\windows\ie8updates\KB2510531-IE8\update.exe
+ 2012-02-24 10:37 . 2010-07-05 13:19 233848 c:\windows\ie8updates\KB2510531-IE8\spuninst.exe
- 2011-04-14 07:37 . 2009-12-09 05:55 726528 c:\windows\ie8updates\KB2510531-IE8\jscript.dll
+ 2011-04-14 07:37 . 2009-03-08 03:33 726528 c:\windows\ie8updates\KB2510531-IE8\jscript.dll
+ 2009-10-20 16:20 . 2009-10-20 16:20 265728 c:\windows\Driver Cache\i386\http.sys
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATICustomerCare"="c:\program files\ATI\ATICustomerCare\ATICustomerCare.exe" [2010-03-04 311296]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-12-05 98304]
"RTHDCPL"="RTHDCPL.EXE" [2007-03-21 16126464]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 997920]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-02-26 437160]
.
c:\documents and settings\All Users\Start Menu\Programs\Indítópult\
Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [1999-2-17 65588]
Symantec Fax Starter Edition Port.lnk - c:\program files\Microsoft Office\Office\1038\OLFSNT40.EXE [1999-6-22 46080]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sprestrt\0sprestrt\0sprestrt
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2008-11-20 12:20 290088 ----a-w- c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
2007-08-07 00:05 200704 ----a-w- c:\program files\PowerISO\PWRISOVM.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\WINDOWS\\system32\\dplaysvr.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"e:\\PC GAMES\\2K Games\\Gearbox Software\\Borderlands\\Binaries\\Borderlands.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"e:\\PC GAMES\\Codemasters\\Worms 4 Mayhem\\WORMS 4 MAYHEM.EXE"=
"c:\\WINDOWS\\system32\\usmt\\migwiz.exe"=
"c:\\Program Files\\Steam\\SteamApps\\feketelovag21\\team fortress 2\\hl2.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"e:\\PC GAMES\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"=
"c:\\Program Files\\Xfire\\Xfire.exe"=
"e:\\PC GAMES\\Activision\\Call of Duty 2\\CoD2MP_s.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"e:\\PC GAMES\\EA Sports\\FIFA 11\\Game\\fifa.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 2\\iw4mp.exe"=
"e:\\PC GAMES\\Dead Island\\deadislandgame.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty black ops\\BlackOps.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty black ops\\BlackOpsMP.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\spiral knights\\java_vm\\bin\\javaw.exe"=
"e:\\PC GAMES\\AlterIW\\iw4mp.dat"=
"c:\\Documents and Settings\\nagy\\Application Data\\GameRanger\\GameRanger\\GameRanger.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 3\\iw5mp_server.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 3\\iw5sp.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 3\\iw5mp.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\left 4 dead 2\\left4dead2.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Documents and Settings\\nagy\\Local Settings\\Application Data\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\amd driver updater, xp, 32 bit\\Setup.exe"=
"c:\\Program Files\\Microsoft Security Client\\msseces.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 2\\iw4sp.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
"58945:TCP"= 58945:TCP:Pando Media Booster
"58945:UDP"= 58945:UDP:Pando Media Booster
"8394:TCP"= 8394:TCP:League of Legends Launcher
"8394:UDP"= 8394:UDP:League of Legends Launcher
.
R1 MpKsl88d458bb;MpKsl88d458bb;c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\MpKsl88d458bb.sys [2012.02.24. 13:01 29904]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\atl01_xp.sys [2007.12.04. 18:30 38656]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdXP3.sys [2012.02.22. 16:45 100368]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010.03.18. 13:16 130384]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\drivers\VBoxNetAdp.sys [2011.12.19. 14:12 104752]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys --> c:\windows\system32\DRIVERS\VBoxNetFlt.sys [?]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010.03.18. 13:16 753504]
S4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys --> c:\windows\system32\Drivers\sptd.sys [?]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - MPKSL88D458BB
.
Contents of the 'Scheduled Tasks' folder
.
2012-02-24 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2011-04-27 14:39]
.
2012-02-24 c:\windows\Tasks\MpIdleTask.job
- c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2011-04-27 14:39]
.
2012-02-23 c:\windows\Tasks\User_Feed_Synchronization-{64CE30E5-8EF3-4AF5-A6FD-331EBF42E3A3}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.hu/
uInternet Settings,ProxyOverride = *.local
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\documents and settings\nagy\Application Data\Mozilla\Firefox\Profiles\mm64lt8n.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.hu/
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-02-24 13:45
Windows 5.1.2600 Szervizcsomag 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-606747145-1972579041-682003330-1004\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(780)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
Completion time: 2012-02-24 13:47:06
ComboFix-quarantined-files.txt 2012-02-24 12:47
ComboFix2.txt 2012-02-24 12:06
ComboFix3.txt 2012-02-24 11:16
ComboFix4.txt 2012-02-23 18:53
.
Pre-Run: 6 176 542 720 bájt szabad
Post-Run: 6 154 227 712 bájt szabad
.
- - End Of File - - 865E2C95A62ECB6EABC69B50E933C676


pén. feb. 24, 2012 13:55
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
Igen, az ingyenesek kozzul, talan az AVG a legrosszabb megoldas,
Az MSE, hagyhatod, de tuzfallat kell telepitened, nekem az PCTOOLS tuzfall tetszik a legjobban,

Ok meg ki pucoljuk a gepet.
1:Nevezd att a combofix ikonjat uninstall
Es futtasd, a combofix letelepitodig a geprol,.


2:Tolds le az asztalra az OTL exe programot,
http://oldtimer.geekstogo.com/OTL.exe
Futtasd>>
-bepipazni
-Scan all users.
-Lop check.
-Purity check.
-v sekciobaExtra Registry>bepotyozni>Use SafeList-es klik RUNSCAN
-5-10 perc mulva add logot tedd ide
-OTL.txt (az asztalon lesz). Tedd ide a naplokat.


pén. feb. 24, 2012 13:29
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. nov. 05, 2009 15:10
Hozzászólások: 116
Tartózkodási hely: Hungary
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
Ha a MSE-t is leszedjük nem lesz AV programom... :wink: Ezt egy informatikus barátom ajánlotta, mikor nyáron a Steam egyik játékának indítása kezdett problémázni a gépen lévő Avast-tal?! ... Pedig én nagyon elégedett voltam vele :) Nem jó az MSE??? A fiam informatikus haverja ajánlotta ezt az AVG internet Security 2012-t .... de könyörgöm az milyen AV + FW progi, ami keygen-nel kell feltelepíteni?! :wink: a torrentekből ismerős.... lehet, hogy régi módi vagyok, de a Windows-nak meg a védelemnek nem kéne mindig frankónak lennie???
Na itt a log.txt:

ComboFix 12-02-22.01 - nagy 012.02.24. 12:53:15.8.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.36.1038.18.2047.1388 [GMT 1:00]
Running from: c:\documents and settings\nagy\Dokumentumok\Letöltések\ComboFix.exe
Command switches used :: c:\documents and settings\nagy\Asztal\CFScript.txt
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
FILE ::
"c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004Core.job"
"c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004UA.job"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004Core.job"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004UA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\ATI
c:\documents and settings\All Users\Application Data\ATI\ACE\Profiles.xml
c:\documents and settings\nagy\Application Data\ATI
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004Core.job
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004UA.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004UA.job
.
.
((((((((((((((((((((((((( Files Created from 2012-01-24 to 2012-02-24 )))))))))))))))))))))))))))))))
.
.
2012-02-24 12:02 . 2012-02-24 12:02 -------- d-----w- c:\documents and settings\All Users\Application Data\ATI
2012-02-24 12:02 . 2012-02-24 12:02 -------- d-----w- c:\documents and settings\nagy\Application Data\ATI
2012-02-24 12:01 . 2012-02-24 12:01 29904 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\MpKsl88d458bb.sys
2012-02-24 11:11 . 2012-02-24 11:11 29904 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\MpKsle676962e.sys
2012-02-23 16:42 . 2012-02-20 00:05 6552120 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-02-23 16:42 . 2012-02-20 00:05 6552120 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\mpengine.dll
2012-02-23 15:37 . 2011-08-16 10:45 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2012-02-23 15:37 . 2011-12-17 19:42 602112 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2012-02-23 15:37 . 2011-12-17 19:42 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2012-02-23 15:37 . 2011-12-17 19:42 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2012-02-23 15:37 . 2011-12-17 19:42 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2012-02-23 15:37 . 2011-12-17 19:42 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2012-02-23 15:37 . 2011-12-17 19:42 2000384 -c----w- c:\windows\system32\dllcache\iertutil.dll
2012-02-23 15:37 . 2011-12-18 13:42 11082240 -c----w- c:\windows\system32\dllcache\ieframe.dll
2012-02-23 12:41 . 2012-02-23 12:41 -------- d-----w- c:\program files\Microsoft Security Client
2012-02-23 10:17 . 2012-02-23 10:17 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-02-23 10:17 . 2011-12-10 14:24 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-02-23 08:00 . 2012-02-23 08:00 -------- d-----w- c:\documents and settings\nagy\Application Data\ElevatedDiagnostics
2012-02-23 06:39 . 2008-06-14 17:36 272512 -c----w- c:\windows\system32\dllcache\bthport.sys
2012-02-23 06:39 . 2011-07-15 13:29 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2012-02-23 06:38 . 2010-08-27 08:03 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2012-02-23 06:38 . 2009-10-15 16:33 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2012-02-23 06:37 . 2011-06-24 14:10 139656 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2012-02-23 06:37 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2012-02-23 06:37 . 2008-05-01 14:36 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2012-02-23 06:37 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2012-02-23 06:37 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2012-02-23 06:37 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2012-02-23 06:37 . 2009-06-21 21:48 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2012-02-23 06:36 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2012-02-23 06:35 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2012-02-23 06:35 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2012-02-23 06:35 . 2009-03-06 14:22 285184 -c----w- c:\windows\system32\dllcache\pdh.dll
2012-02-23 06:35 . 2009-02-09 11:26 111104 -c----w- c:\windows\system32\dllcache\services.exe
2012-02-23 06:35 . 2009-02-09 10:54 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2012-02-23 06:35 . 2009-02-09 10:54 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2012-02-23 06:35 . 2009-02-09 10:54 684544 -c----w- c:\windows\system32\dllcache\advapi32.dll
2012-02-23 06:35 . 2009-02-09 10:54 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2012-02-23 06:35 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2012-02-23 06:34 . 2010-06-14 07:43 1172480 -c----w- c:\windows\system32\dllcache\msxml3.dll
2012-02-23 06:34 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2012-02-23 06:33 . 2008-10-15 16:37 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll
2012-02-23 06:33 . 2011-04-30 03:01 758784 -c--a-w- c:\windows\system32\dllcache\vgx.dll
2012-02-23 06:33 . 2010-12-09 15:15 724992 -c----w- c:\windows\system32\dllcache\ntdll.dll
2012-02-23 06:33 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2012-02-23 06:32 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2012-02-23 06:32 . 2010-08-16 08:45 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2012-02-23 06:31 . 2012-01-12 17:20 1859968 -c----w- c:\windows\system32\dllcache\win32k.sys
2012-02-23 06:30 . 2009-12-17 07:42 345088 -c----w- c:\windows\system32\dllcache\mspaint.exe
2012-02-23 06:30 . 2010-07-16 11:58 220672 -c----w- c:\windows\system32\dllcache\wordpad.exe
2012-02-23 03:35 . 2009-07-31 09:05 1372672 -c----w- c:\windows\system32\dllcache\msxml6.dll
2012-02-23 03:35 . 2008-04-14 07:41 89600 -c----w- c:\windows\system32\dllcache\msxml6r.dll
2012-02-23 03:33 . 2008-04-14 08:02 294912 -c----w- c:\windows\system32\dllcache\dlimport.exe
2012-02-23 01:39 . 2012-02-23 02:56 -------- d-----w- c:\program files\ReImageCompanion
2012-02-23 01:39 . 2012-02-23 01:39 -------- d-----w- c:\documents and settings\nagy\AppData
2012-02-22 23:51 . 2006-03-02 12:00 30208 -c--a-w- c:\windows\system32\dllcache\sm87w.dll
2012-02-22 23:50 . 2006-03-02 12:00 57399 -c--a-w- c:\windows\system32\dllcache\cplexe.exe
2012-02-22 23:48 . 2006-03-02 12:00 16384 -c--a-w- c:\windows\system32\dllcache\isignup.exe
2012-02-22 23:48 . 2006-03-02 12:00 16384 ----a-w- c:\program files\Internet Explorer\Connection Wizard\isignup.exe
2012-02-22 23:32 . 2006-03-02 12:00 24661 -c--a-w- c:\windows\system32\dllcache\spxcoins.dll
2012-02-22 23:32 . 2006-03-02 12:00 24661 ----a-w- c:\windows\system32\spxcoins.dll
2012-02-22 23:32 . 2006-03-02 12:00 13312 -c--a-w- c:\windows\system32\dllcache\irclass.dll
2012-02-22 23:32 . 2006-03-02 12:00 13312 ----a-w- c:\windows\system32\irclass.dll
2012-02-22 21:08 . 2012-02-22 21:08 -------- d-----w- c:\program files\AMD APP
2012-02-22 15:45 . 2012-02-22 15:41 100368 ----a-w- c:\windows\system32\drivers\AtihdXP3.sys
2012-02-21 19:43 . 2012-02-21 19:43 -------- d--h--w- c:\documents and settings\All Users\Application Data\Common Files
2012-02-21 18:51 . 2009-08-18 12:44 53248 ----a-w- c:\windows\system32\CSVer.dll
2012-02-21 18:39 . 2005-05-04 01:43 69632 ----a-w- c:\windows\Alcmtr.exe
2012-02-21 18:35 . 2012-02-21 18:37 -------- d-----w- c:\documents and settings\nagy\Application Data\Download Manager
2012-02-15 08:55 . 2012-01-11 19:07 3072 ----a-w- c:\windows\system32\iacenc.dll
2012-02-10 05:42 . 2012-02-13 11:57 -------- d-----w- c:\program files\Common Files\Spigot
2012-02-08 12:36 . 2012-02-08 12:36 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\PCHealth
2012-02-03 09:29 . 2012-02-03 09:29 42392 ----a-w- c:\windows\system32\xfcodec.dll
2012-01-29 15:38 . 2012-01-29 15:38 -------- d-----w- c:\documents and settings\nagy\Application Data\DivX
2012-01-29 01:09 . 2012-01-30 13:15 -------- d-----w- c:\program files\Common Files\DivX Shared
2012-01-29 01:08 . 2012-01-30 13:15 -------- d-----w- c:\program files\DivX
2012-01-29 01:08 . 2012-01-30 13:15 -------- d-----w- c:\documents and settings\All Users\Application Data\DivX
2012-01-25 23:42 . 2012-01-25 23:42 -------- d-----w- c:\documents and settings\All Users\Application Data\NortonInstaller
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-22 15:43 . 2009-02-25 21:30 19357696 ----a-w- c:\windows\system32\atioglxx.dll
2012-02-22 15:43 . 2007-09-29 03:05 7490560 ----a-w- c:\windows\system32\drivers\ati2mtag.sys
2012-02-22 15:42 . 2007-09-29 02:58 26112 ----a-w- c:\windows\system32\Ati2mdxx.exe
2012-02-22 15:42 . 2007-09-29 02:47 5334656 ----a-w- c:\windows\system32\ati3duag.dll
2012-02-22 15:42 . 2010-03-22 00:09 118784 ----a-w- c:\windows\system32\atibtmon.exe
2012-02-22 15:42 . 2007-09-29 02:58 155648 ----a-w- c:\windows\system32\Oemdspif.dll
2012-02-22 15:42 . 2007-09-29 02:57 192512 ----a-w- c:\windows\system32\ati2evxx.dll
2012-02-22 15:42 . 2007-07-20 02:19 45056 ----a-w- c:\windows\system32\ATIODCLI.exe
2012-02-22 15:42 . 2007-09-29 02:14 884736 ----a-w- c:\windows\system32\ati2cqag.dll
2012-02-22 15:42 . 2001-11-09 15:01 24064 ----a-w- c:\windows\system32\ativcoxx.dll
2012-02-22 15:42 . 2007-09-29 02:58 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2012-02-22 15:42 . 2009-02-25 20:32 57344 ----a-w- c:\windows\system32\aticalrt.dll
2012-02-22 15:41 . 2007-07-20 02:19 294912 ----a-w- c:\windows\system32\ATIODE.exe
2012-02-22 15:41 . 2007-09-29 02:58 212992 ----a-w- c:\windows\system32\atipdlxx.dll
2012-02-22 15:41 . 2007-12-04 17:34 311296 ----a-w- c:\windows\system32\atiiiexx.dll
2012-02-22 15:41 . 2007-09-29 03:06 304640 ----a-w- c:\windows\system32\ati2dvag.dll
2012-02-22 15:41 . 2007-12-04 17:34 466944 ----a-w- c:\windows\system32\ATIDEMGX.dll
2012-02-22 15:41 . 2009-02-25 20:38 233472 ----a-w- c:\windows\system32\atiadlxx.dll
2012-02-22 15:41 . 2009-02-25 20:30 7376896 ----a-w- c:\windows\system32\aticaldd.dll
2012-02-22 15:41 . 2007-09-29 02:19 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2012-02-22 15:41 . 2007-09-29 02:55 53248 ----a-w- c:\windows\system32\ATIDDC.DLL
2012-02-22 15:40 . 2007-09-29 02:56 643072 ----a-w- c:\windows\system32\ati2evxx.exe
2012-02-22 15:40 . 2011-07-24 13:56 956160 ----a-w- c:\windows\system32\ativvamv.dll
2012-02-22 15:40 . 2007-09-29 02:22 806912 ----a-w- c:\windows\system32\atikvmag.dll
2012-02-22 15:40 . 2007-09-29 02:36 3307776 ----a-w- c:\windows\system32\ativvaxx.dll
2012-02-22 15:40 . 2010-03-22 00:09 159744 ----a-w- c:\windows\system32\atiapfxx.exe
2012-02-22 15:40 . 2009-02-25 20:32 53248 ----a-w- c:\windows\system32\aticalcl.dll
2012-02-22 15:40 . 2010-03-22 00:09 65024 ----a-w- c:\windows\system32\atimpc32.dll
2012-02-22 15:40 . 2009-02-25 20:44 65024 ----a-w- c:\windows\system32\amdpcom32.dll
2012-02-22 15:40 . 2007-09-29 02:47 602112 ----a-w- c:\windows\system32\atiok3x2.dll
2012-02-22 15:40 . 2007-09-29 02:20 17408 ----a-w- c:\windows\system32\atitvo32.dll
2012-02-21 19:55 . 2010-06-18 18:05 214520 ----a-w- c:\windows\system32\PnkBstrB.xtr
2012-02-21 19:55 . 2009-04-04 17:28 214520 ----a-w- c:\windows\system32\PnkBstrB.exe
2012-02-21 19:54 . 2009-04-04 17:28 137464 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2012-02-21 19:54 . 2009-04-04 17:28 214520 ----a-w- c:\windows\system32\PnkBstrB.ex0
2012-01-29 04:10 . 2011-09-04 09:50 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-01-12 17:20 . 2006-03-02 12:00 1859968 ----a-w- c:\windows\system32\win32k.sys
2011-12-19 13:12 . 2011-12-19 13:12 104752 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2011-12-19 13:11 . 2012-01-09 18:22 158512 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2011-12-19 13:11 . 2012-01-09 18:22 91440 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2011-12-17 19:42 . 2006-03-02 12:00 916992 ----a-w- c:\windows\system32\wininet.dll
2011-12-17 19:42 . 2006-03-02 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2011-12-17 19:42 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-12-16 12:23 . 2006-03-02 12:00 385024 ------w- c:\windows\system32\html.iec
2011-12-05 21:04 . 2011-12-05 21:04 59904 ----a-w- c:\windows\system32\OpenVideo.dll
2011-12-05 21:03 . 2011-12-05 21:03 54784 ----a-w- c:\windows\system32\OVDecode.dll
2011-12-05 21:03 . 2011-12-05 21:03 14499328 ----a-w- c:\windows\system32\amdocl.dll
2011-12-05 21:02 . 2011-12-05 21:02 44032 ----a-w- c:\windows\system32\OpenCL.dll
2011-12-04 13:31 . 2011-06-26 06:40 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
1999-06-22 06:35 . 1999-06-22 06:35 99840 ----a-w- c:\program files\Common Files\IRAABOUT.DLL
1998-12-09 00:53 . 1998-12-09 00:53 70144 ----a-w- c:\program files\Common Files\IRAMDMTR.DLL
1998-12-09 00:53 . 1998-12-09 00:53 48640 ----a-w- c:\program files\Common Files\IRALPTTR.DLL
1998-12-09 00:53 . 1998-12-09 00:53 31744 ----a-w- c:\program files\Common Files\IRAWEBTR.DLL
1998-12-09 00:53 . 1998-12-09 00:53 186368 ----a-w- c:\program files\Common Files\IRAREG.DLL
1998-12-09 00:53 . 1998-12-09 00:53 17920 ----a-w- c:\program files\Common Files\IRASRIAL.DLL
2012-02-21 05:42 . 2011-03-23 12:50 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-02-23_18.51.25 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-02-24 12:01 . 2012-02-24 12:01 16384 c:\windows\temp\Perflib_Perfdata_668.dat
+ 2012-02-24 12:01 . 2012-02-24 12:01 16384 c:\windows\temp\Perflib_Perfdata_28c.dat
- 2006-03-02 12:00 . 2008-04-14 08:02 75776 c:\windows\system32\strmfilt.dll
+ 2006-03-02 12:00 . 2009-10-21 05:40 75776 c:\windows\system32\strmfilt.dll
+ 2006-03-02 12:00 . 2010-08-27 05:54 99840 c:\windows\system32\srvsvc.dll
+ 2006-03-02 12:00 . 2009-10-21 05:40 25088 c:\windows\system32\httpapi.dll
+ 2009-10-21 05:40 . 2009-10-21 05:40 75776 c:\windows\system32\dllcache\strmfilt.dll
+ 2010-08-27 05:54 . 2010-08-27 05:54 99840 c:\windows\system32\dllcache\srvsvc.dll
+ 2009-10-21 05:40 . 2009-10-21 05:40 25088 c:\windows\system32\dllcache\httpapi.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 18296 c:\windows\ie8updates\KB2544521-IE8\spmsg.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 26488 c:\windows\ie8updates\KB2544521-IE8\spcustom.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 18296 c:\windows\ie8updates\KB2510531-IE8\spmsg.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 26488 c:\windows\ie8updates\KB2510531-IE8\spcustom.dll
+ 2006-03-02 12:00 . 2011-03-04 06:36 420864 c:\windows\system32\vbscript.dll
+ 2006-03-02 12:00 . 2011-03-04 06:36 726528 c:\windows\system32\jscript.dll
- 2006-03-02 12:00 . 2009-03-08 03:33 726528 c:\windows\system32\jscript.dll
+ 2006-03-02 12:00 . 2009-10-20 16:20 265728 c:\windows\system32\drivers\http.sys
+ 2011-03-04 06:44 . 2011-03-04 06:36 420864 c:\windows\system32\dllcache\vbscript.dll
+ 2011-03-04 06:44 . 2011-03-04 06:36 726528 c:\windows\system32\dllcache\jscript.dll
- 2011-03-04 06:44 . 2009-03-08 03:33 726528 c:\windows\system32\dllcache\jscript.dll
+ 2009-10-20 16:20 . 2009-10-20 16:20 265728 c:\windows\system32\dllcache\http.sys
+ 2012-02-24 10:37 . 2010-07-05 13:19 398200 c:\windows\ie8updates\KB2544521-IE8\updspapi.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 761208 c:\windows\ie8updates\KB2544521-IE8\update.exe
+ 2012-02-24 10:37 . 2010-07-05 13:19 233848 c:\windows\ie8updates\KB2544521-IE8\spuninst.exe
+ 2011-04-14 07:37 . 2009-03-08 03:33 420352 c:\windows\ie8updates\KB2510531-IE8\vbscript.dll
- 2011-04-14 07:37 . 2010-03-10 06:17 420352 c:\windows\ie8updates\KB2510531-IE8\vbscript.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 398200 c:\windows\ie8updates\KB2510531-IE8\updspapi.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 761208 c:\windows\ie8updates\KB2510531-IE8\update.exe
+ 2012-02-24 10:37 . 2010-07-05 13:19 233848 c:\windows\ie8updates\KB2510531-IE8\spuninst.exe
- 2011-04-14 07:37 . 2009-12-09 05:55 726528 c:\windows\ie8updates\KB2510531-IE8\jscript.dll
+ 2011-04-14 07:37 . 2009-03-08 03:33 726528 c:\windows\ie8updates\KB2510531-IE8\jscript.dll
+ 2009-10-20 16:20 . 2009-10-20 16:20 265728 c:\windows\Driver Cache\i386\http.sys
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATICustomerCare"="c:\program files\ATI\ATICustomerCare\ATICustomerCare.exe" [2010-03-04 311296]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-12-05 98304]
"RTHDCPL"="RTHDCPL.EXE" [2007-03-21 16126464]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 997920]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-02-26 437160]
.
c:\documents and settings\All Users\Start Menu\Programs\Indítópult\
Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [1999-2-17 65588]
Symantec Fax Starter Edition Port.lnk - c:\program files\Microsoft Office\Office\1038\OLFSNT40.EXE [1999-6-22 46080]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sprestrt\0sprestrt\0sprestrt
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2008-11-20 12:20 290088 ----a-w- c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
2007-08-07 00:05 200704 ----a-w- c:\program files\PowerISO\PWRISOVM.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\WINDOWS\\system32\\dplaysvr.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"e:\\PC GAMES\\2K Games\\Gearbox Software\\Borderlands\\Binaries\\Borderlands.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"e:\\PC GAMES\\Codemasters\\Worms 4 Mayhem\\WORMS 4 MAYHEM.EXE"=
"c:\\WINDOWS\\system32\\usmt\\migwiz.exe"=
"c:\\Program Files\\Steam\\SteamApps\\feketelovag21\\team fortress 2\\hl2.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"e:\\PC GAMES\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"=
"c:\\Program Files\\Xfire\\Xfire.exe"=
"e:\\PC GAMES\\Activision\\Call of Duty 2\\CoD2MP_s.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"e:\\PC GAMES\\EA Sports\\FIFA 11\\Game\\fifa.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 2\\iw4mp.exe"=
"e:\\PC GAMES\\Dead Island\\deadislandgame.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty black ops\\BlackOps.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty black ops\\BlackOpsMP.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\spiral knights\\java_vm\\bin\\javaw.exe"=
"e:\\PC GAMES\\AlterIW\\iw4mp.dat"=
"c:\\Documents and Settings\\nagy\\Application Data\\GameRanger\\GameRanger\\GameRanger.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 3\\iw5mp_server.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 3\\iw5sp.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 3\\iw5mp.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\left 4 dead 2\\left4dead2.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Documents and Settings\\nagy\\Local Settings\\Application Data\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\amd driver updater, xp, 32 bit\\Setup.exe"=
"c:\\Program Files\\Microsoft Security Client\\msseces.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 2\\iw4sp.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
"58945:TCP"= 58945:TCP:Pando Media Booster
"58945:UDP"= 58945:UDP:Pando Media Booster
"8394:TCP"= 8394:TCP:League of Legends Launcher
"8394:UDP"= 8394:UDP:League of Legends Launcher
.
R1 MpKsl88d458bb;MpKsl88d458bb;c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\MpKsl88d458bb.sys [2012.02.24. 13:01 29904]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\atl01_xp.sys [2007.12.04. 18:30 38656]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdXP3.sys [2012.02.22. 16:45 100368]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010.03.18. 13:16 130384]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\drivers\VBoxNetAdp.sys [2011.12.19. 14:12 104752]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys --> c:\windows\system32\DRIVERS\VBoxNetFlt.sys [?]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010.03.18. 13:16 753504]
S4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys --> c:\windows\system32\Drivers\sptd.sys [?]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - MPKSL88D458BB
.
Contents of the 'Scheduled Tasks' folder
.
2012-02-24 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2011-04-27 14:39]
.
2012-02-24 c:\windows\Tasks\MpIdleTask.job
- c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2011-04-27 14:39]
.
2012-02-23 c:\windows\Tasks\User_Feed_Synchronization-{64CE30E5-8EF3-4AF5-A6FD-331EBF42E3A3}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.hu/
uInternet Settings,ProxyOverride = *.local
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\documents and settings\nagy\Application Data\Mozilla\Firefox\Profiles\mm64lt8n.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.hu/
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-02-24 13:02
Windows 5.1.2600 Szervizcsomag 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-606747145-1972579041-682003330-1004\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(780)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
- - - - - - - > 'explorer.exe'(3428)
c:\windows\system32\WININET.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\program files\Microsoft Security Client\Antimalware\MsMpEng.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\System32\snmp.exe
c:\windows\system32\UAService7.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\RTHDCPL.EXE
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
.
**************************************************************************
.
Completion time: 2012-02-24 13:06:53 - machine was rebooted
ComboFix-quarantined-files.txt 2012-02-24 12:06
ComboFix2.txt 2012-02-24 11:16
ComboFix3.txt 2012-02-23 18:53
.
Pre-Run: 5 702 373 376 bájt szabad
Post-Run: 5 681 266 688 bájt szabad
.
- - End Of File - - 6B39FB0490BC1AC00906BD6D791D23E4


pén. feb. 24, 2012 13:22
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
Kinyitunk - Notepadot (Jegyzetfüzetet)igy: Start>futtatás>beírod: notepad
és bemásolod- a Kód: címszó alatt található zöld textet(Kód: szó nélkül), aztán a notepadba beillesztett textet elmentjük scriptnek az asztalra , úgy:- Fájl>Mentés Másként>Fájlnév>CFScript.txt>Fájl típusa>Minden fájl>Mentés.(Ásztálra),.Kész, az astalon lévő CFScript txt húzzunk rá a ComboFix ikonnyara. Es mostan megcsinalod eztett:
Kép
A combofix maga elindul es lehet hogy restartol es befejezi a scent.Amit majd ad ted ide.
Kód:
KILLALL::
SecCenter::
{8decf618-9569-4340-b34a-d78d28969b66}
File::
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004Core.job
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004UA.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004UA.job


pén. feb. 24, 2012 12:47
Profil Privát üzenet küldése Honlap
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
az AVG Firewall-t, leszedjuk, az combofixel....
es az Microsoft Security Essentials--is szedjuk le?????


pén. feb. 24, 2012 12:40
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. nov. 05, 2009 15:10
Hozzászólások: 116
Tartózkodási hely: Hungary
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
Szia!

Megcsináltam amit írtál >>> ide teszem a log.txt-t:
( csak mellékesen a mai bekapcsolásnál a Windows indítása előtt fekete képernyőn bejött, hogy Recovery Console vagy Windows XP Home Edition - magyar, meg F8 lenyomásánál Normál módban indítottam a Windows >>> Gondolom ez azért van mert fent van a gépen a Combofix

Miután végzett most újra indította a gépet és ahogy írta nem nyúltam hozzá manuálisan... szóval itt van....
ja még vmi az elején olvastam, hogy fent van még az AVG Firewall - bár elérhetetlen - jó lenne ha le tudnák szedni teljesen, mert nem kell, csak a fiam rakta fel... én meg azt hittem, hogy sikerült leszednem tökéletesen... ezzel **** egy ideig az MSE.

ComboFix 12-02-22.01 - nagy 012.02.24. 12:01:13.7.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.36.1038.18.2047.1414 [GMT 1:00]
Running from: c:\documents and settings\nagy\Dokumentumok\Letöltések\ComboFix.exe
Command switches used :: c:\documents and settings\nagy\Asztal\CFScript.txt
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
FW: AVG Firewall *Disabled* {8decf618-9569-4340-b34a-d78d28969b66}
.
FILE ::
"c:\windows\003129_.tmp"
"c:\windows\SET141.tmp"
"c:\windows\SET144.tmp"
"c:\windows\SET150.tmp"
"c:\windows\SET17B.tmp"
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\ATI
c:\documents and settings\All Users\Application Data\ATI\ACE\Profiles.xml
c:\documents and settings\nagy\Application Data\ATI
c:\windows\003129_.tmp
c:\windows\SET141.tmp
c:\windows\SET144.tmp
c:\windows\SET150.tmp
c:\windows\SET17B.tmp
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_41452817
-------\Legacy_48427722
.
.
((((((((((((((((((((((((( Files Created from 2012-01-24 to 2012-02-24 )))))))))))))))))))))))))))))))
.
.
2012-02-24 11:12 . 2012-02-24 11:12 -------- d-----w- c:\documents and settings\All Users\Application Data\ATI
2012-02-24 11:12 . 2012-02-24 11:12 -------- d-----w- c:\documents and settings\nagy\Application Data\ATI
2012-02-24 11:11 . 2012-02-24 11:11 29904 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\MpKsle676962e.sys
2012-02-24 10:50 . 2012-02-24 10:50 29904 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\MpKsl63bea58f.sys
2012-02-23 16:42 . 2012-02-20 00:05 6552120 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-02-23 16:42 . 2012-02-20 00:05 6552120 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\mpengine.dll
2012-02-23 15:37 . 2011-08-16 10:45 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2012-02-23 15:37 . 2011-12-17 19:42 602112 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2012-02-23 15:37 . 2011-12-17 19:42 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2012-02-23 15:37 . 2011-12-17 19:42 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2012-02-23 15:37 . 2011-12-17 19:42 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2012-02-23 15:37 . 2011-12-17 19:42 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2012-02-23 15:37 . 2011-12-17 19:42 2000384 -c----w- c:\windows\system32\dllcache\iertutil.dll
2012-02-23 15:37 . 2011-12-18 13:42 11082240 -c----w- c:\windows\system32\dllcache\ieframe.dll
2012-02-23 12:41 . 2012-02-23 12:41 -------- d-----w- c:\program files\Microsoft Security Client
2012-02-23 10:17 . 2012-02-23 10:17 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-02-23 10:17 . 2011-12-10 14:24 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-02-23 08:00 . 2012-02-23 08:00 -------- d-----w- c:\documents and settings\nagy\Application Data\ElevatedDiagnostics
2012-02-23 06:39 . 2008-06-14 17:36 272512 -c----w- c:\windows\system32\dllcache\bthport.sys
2012-02-23 06:39 . 2011-07-15 13:29 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2012-02-23 06:38 . 2010-08-27 08:03 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2012-02-23 06:38 . 2009-10-15 16:33 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2012-02-23 06:37 . 2011-06-24 14:10 139656 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2012-02-23 06:37 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2012-02-23 06:37 . 2008-05-01 14:36 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2012-02-23 06:37 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2012-02-23 06:37 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2012-02-23 06:37 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2012-02-23 06:37 . 2009-06-21 21:48 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2012-02-23 06:36 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2012-02-23 06:35 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2012-02-23 06:35 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2012-02-23 06:35 . 2009-03-06 14:22 285184 -c----w- c:\windows\system32\dllcache\pdh.dll
2012-02-23 06:35 . 2009-02-09 11:26 111104 -c----w- c:\windows\system32\dllcache\services.exe
2012-02-23 06:35 . 2009-02-09 10:54 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2012-02-23 06:35 . 2009-02-09 10:54 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2012-02-23 06:35 . 2009-02-09 10:54 684544 -c----w- c:\windows\system32\dllcache\advapi32.dll
2012-02-23 06:35 . 2009-02-09 10:54 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2012-02-23 06:35 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2012-02-23 06:34 . 2010-06-14 07:43 1172480 -c----w- c:\windows\system32\dllcache\msxml3.dll
2012-02-23 06:34 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2012-02-23 06:33 . 2008-10-15 16:37 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll
2012-02-23 06:33 . 2011-04-30 03:01 758784 -c--a-w- c:\windows\system32\dllcache\vgx.dll
2012-02-23 06:33 . 2010-12-09 15:15 724992 -c----w- c:\windows\system32\dllcache\ntdll.dll
2012-02-23 06:33 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2012-02-23 06:32 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2012-02-23 06:32 . 2010-08-16 08:45 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2012-02-23 06:31 . 2012-01-12 17:20 1859968 -c----w- c:\windows\system32\dllcache\win32k.sys
2012-02-23 06:30 . 2009-12-17 07:42 345088 -c----w- c:\windows\system32\dllcache\mspaint.exe
2012-02-23 06:30 . 2010-07-16 11:58 220672 -c----w- c:\windows\system32\dllcache\wordpad.exe
2012-02-23 03:35 . 2009-07-31 09:05 1372672 -c----w- c:\windows\system32\dllcache\msxml6.dll
2012-02-23 03:35 . 2008-04-14 07:41 89600 -c----w- c:\windows\system32\dllcache\msxml6r.dll
2012-02-23 03:33 . 2008-04-14 08:02 294912 -c----w- c:\windows\system32\dllcache\dlimport.exe
2012-02-23 01:39 . 2012-02-23 02:56 -------- d-----w- c:\program files\ReImageCompanion
2012-02-23 01:39 . 2012-02-23 01:39 -------- d-----w- c:\documents and settings\nagy\AppData
2012-02-22 23:51 . 2006-03-02 12:00 30208 -c--a-w- c:\windows\system32\dllcache\sm87w.dll
2012-02-22 23:50 . 2006-03-02 12:00 57399 -c--a-w- c:\windows\system32\dllcache\cplexe.exe
2012-02-22 23:48 . 2006-03-02 12:00 16384 -c--a-w- c:\windows\system32\dllcache\isignup.exe
2012-02-22 23:48 . 2006-03-02 12:00 16384 ----a-w- c:\program files\Internet Explorer\Connection Wizard\isignup.exe
2012-02-22 23:32 . 2006-03-02 12:00 24661 -c--a-w- c:\windows\system32\dllcache\spxcoins.dll
2012-02-22 23:32 . 2006-03-02 12:00 24661 ----a-w- c:\windows\system32\spxcoins.dll
2012-02-22 23:32 . 2006-03-02 12:00 13312 -c--a-w- c:\windows\system32\dllcache\irclass.dll
2012-02-22 23:32 . 2006-03-02 12:00 13312 ----a-w- c:\windows\system32\irclass.dll
2012-02-22 21:08 . 2012-02-22 21:08 -------- d-----w- c:\program files\AMD APP
2012-02-22 15:45 . 2012-02-22 15:41 100368 ----a-w- c:\windows\system32\drivers\AtihdXP3.sys
2012-02-21 19:43 . 2012-02-21 19:43 -------- d--h--w- c:\documents and settings\All Users\Application Data\Common Files
2012-02-21 18:51 . 2009-08-18 12:44 53248 ----a-w- c:\windows\system32\CSVer.dll
2012-02-21 18:39 . 2005-05-04 01:43 69632 ----a-w- c:\windows\Alcmtr.exe
2012-02-21 18:35 . 2012-02-21 18:37 -------- d-----w- c:\documents and settings\nagy\Application Data\Download Manager
2012-02-15 08:55 . 2012-01-11 19:07 3072 ----a-w- c:\windows\system32\iacenc.dll
2012-02-10 05:42 . 2012-02-13 11:57 -------- d-----w- c:\program files\Common Files\Spigot
2012-02-08 12:36 . 2012-02-08 12:36 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\PCHealth
2012-02-03 09:29 . 2012-02-03 09:29 42392 ----a-w- c:\windows\system32\xfcodec.dll
2012-01-29 15:38 . 2012-01-29 15:38 -------- d-----w- c:\documents and settings\nagy\Application Data\DivX
2012-01-29 01:09 . 2012-01-30 13:15 -------- d-----w- c:\program files\Common Files\DivX Shared
2012-01-29 01:08 . 2012-01-30 13:15 -------- d-----w- c:\program files\DivX
2012-01-29 01:08 . 2012-01-30 13:15 -------- d-----w- c:\documents and settings\All Users\Application Data\DivX
2012-01-25 23:42 . 2012-01-25 23:42 -------- d-----w- c:\documents and settings\All Users\Application Data\NortonInstaller
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-22 15:43 . 2009-02-25 21:30 19357696 ----a-w- c:\windows\system32\atioglxx.dll
2012-02-22 15:43 . 2007-09-29 03:05 7490560 ----a-w- c:\windows\system32\drivers\ati2mtag.sys
2012-02-22 15:42 . 2007-09-29 02:58 26112 ----a-w- c:\windows\system32\Ati2mdxx.exe
2012-02-22 15:42 . 2007-09-29 02:47 5334656 ----a-w- c:\windows\system32\ati3duag.dll
2012-02-22 15:42 . 2010-03-22 00:09 118784 ----a-w- c:\windows\system32\atibtmon.exe
2012-02-22 15:42 . 2007-09-29 02:58 155648 ----a-w- c:\windows\system32\Oemdspif.dll
2012-02-22 15:42 . 2007-09-29 02:57 192512 ----a-w- c:\windows\system32\ati2evxx.dll
2012-02-22 15:42 . 2007-07-20 02:19 45056 ----a-w- c:\windows\system32\ATIODCLI.exe
2012-02-22 15:42 . 2007-09-29 02:14 884736 ----a-w- c:\windows\system32\ati2cqag.dll
2012-02-22 15:42 . 2001-11-09 15:01 24064 ----a-w- c:\windows\system32\ativcoxx.dll
2012-02-22 15:42 . 2007-09-29 02:58 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2012-02-22 15:42 . 2009-02-25 20:32 57344 ----a-w- c:\windows\system32\aticalrt.dll
2012-02-22 15:41 . 2007-07-20 02:19 294912 ----a-w- c:\windows\system32\ATIODE.exe
2012-02-22 15:41 . 2007-09-29 02:58 212992 ----a-w- c:\windows\system32\atipdlxx.dll
2012-02-22 15:41 . 2007-12-04 17:34 311296 ----a-w- c:\windows\system32\atiiiexx.dll
2012-02-22 15:41 . 2007-09-29 03:06 304640 ----a-w- c:\windows\system32\ati2dvag.dll
2012-02-22 15:41 . 2007-12-04 17:34 466944 ----a-w- c:\windows\system32\ATIDEMGX.dll
2012-02-22 15:41 . 2009-02-25 20:38 233472 ----a-w- c:\windows\system32\atiadlxx.dll
2012-02-22 15:41 . 2009-02-25 20:30 7376896 ----a-w- c:\windows\system32\aticaldd.dll
2012-02-22 15:41 . 2007-09-29 02:19 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2012-02-22 15:41 . 2007-09-29 02:55 53248 ----a-w- c:\windows\system32\ATIDDC.DLL
2012-02-22 15:40 . 2007-09-29 02:56 643072 ----a-w- c:\windows\system32\ati2evxx.exe
2012-02-22 15:40 . 2011-07-24 13:56 956160 ----a-w- c:\windows\system32\ativvamv.dll
2012-02-22 15:40 . 2007-09-29 02:22 806912 ----a-w- c:\windows\system32\atikvmag.dll
2012-02-22 15:40 . 2007-09-29 02:36 3307776 ----a-w- c:\windows\system32\ativvaxx.dll
2012-02-22 15:40 . 2010-03-22 00:09 159744 ----a-w- c:\windows\system32\atiapfxx.exe
2012-02-22 15:40 . 2009-02-25 20:32 53248 ----a-w- c:\windows\system32\aticalcl.dll
2012-02-22 15:40 . 2010-03-22 00:09 65024 ----a-w- c:\windows\system32\atimpc32.dll
2012-02-22 15:40 . 2009-02-25 20:44 65024 ----a-w- c:\windows\system32\amdpcom32.dll
2012-02-22 15:40 . 2007-09-29 02:47 602112 ----a-w- c:\windows\system32\atiok3x2.dll
2012-02-22 15:40 . 2007-09-29 02:20 17408 ----a-w- c:\windows\system32\atitvo32.dll
2012-02-21 19:55 . 2010-06-18 18:05 214520 ----a-w- c:\windows\system32\PnkBstrB.xtr
2012-02-21 19:55 . 2009-04-04 17:28 214520 ----a-w- c:\windows\system32\PnkBstrB.exe
2012-02-21 19:54 . 2009-04-04 17:28 137464 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2012-02-21 19:54 . 2009-04-04 17:28 214520 ----a-w- c:\windows\system32\PnkBstrB.ex0
2012-01-29 04:10 . 2011-09-04 09:50 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-01-12 17:20 . 2006-03-02 12:00 1859968 ----a-w- c:\windows\system32\win32k.sys
2011-12-19 13:12 . 2011-12-19 13:12 104752 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2011-12-19 13:11 . 2012-01-09 18:22 158512 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2011-12-19 13:11 . 2012-01-09 18:22 91440 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2011-12-17 19:42 . 2006-03-02 12:00 916992 ----a-w- c:\windows\system32\wininet.dll
2011-12-17 19:42 . 2006-03-02 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2011-12-17 19:42 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-12-16 12:23 . 2006-03-02 12:00 385024 ------w- c:\windows\system32\html.iec
2011-12-05 21:04 . 2011-12-05 21:04 59904 ----a-w- c:\windows\system32\OpenVideo.dll
2011-12-05 21:03 . 2011-12-05 21:03 54784 ----a-w- c:\windows\system32\OVDecode.dll
2011-12-05 21:03 . 2011-12-05 21:03 14499328 ----a-w- c:\windows\system32\amdocl.dll
2011-12-05 21:02 . 2011-12-05 21:02 44032 ----a-w- c:\windows\system32\OpenCL.dll
2011-12-04 13:31 . 2011-06-26 06:40 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
1999-06-22 06:35 . 1999-06-22 06:35 99840 ----a-w- c:\program files\Common Files\IRAABOUT.DLL
1998-12-09 00:53 . 1998-12-09 00:53 70144 ----a-w- c:\program files\Common Files\IRAMDMTR.DLL
1998-12-09 00:53 . 1998-12-09 00:53 48640 ----a-w- c:\program files\Common Files\IRALPTTR.DLL
1998-12-09 00:53 . 1998-12-09 00:53 31744 ----a-w- c:\program files\Common Files\IRAWEBTR.DLL
1998-12-09 00:53 . 1998-12-09 00:53 186368 ----a-w- c:\program files\Common Files\IRAREG.DLL
1998-12-09 00:53 . 1998-12-09 00:53 17920 ----a-w- c:\program files\Common Files\IRASRIAL.DLL
2012-02-21 05:42 . 2011-03-23 12:50 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-02-23_18.51.25 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-02-24 11:11 . 2012-02-24 11:11 16384 c:\windows\temp\Perflib_Perfdata_480.dat
+ 2012-02-24 11:11 . 2012-02-24 11:11 16384 c:\windows\temp\Perflib_Perfdata_234.dat
- 2006-03-02 12:00 . 2008-04-14 08:02 75776 c:\windows\system32\strmfilt.dll
+ 2006-03-02 12:00 . 2009-10-21 05:40 75776 c:\windows\system32\strmfilt.dll
+ 2006-03-02 12:00 . 2010-08-27 05:54 99840 c:\windows\system32\srvsvc.dll
+ 2006-03-02 12:00 . 2009-10-21 05:40 25088 c:\windows\system32\httpapi.dll
+ 2009-10-21 05:40 . 2009-10-21 05:40 75776 c:\windows\system32\dllcache\strmfilt.dll
+ 2010-08-27 05:54 . 2010-08-27 05:54 99840 c:\windows\system32\dllcache\srvsvc.dll
+ 2009-10-21 05:40 . 2009-10-21 05:40 25088 c:\windows\system32\dllcache\httpapi.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 18296 c:\windows\ie8updates\KB2544521-IE8\spmsg.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 26488 c:\windows\ie8updates\KB2544521-IE8\spcustom.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 18296 c:\windows\ie8updates\KB2510531-IE8\spmsg.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 26488 c:\windows\ie8updates\KB2510531-IE8\spcustom.dll
+ 2006-03-02 12:00 . 2011-03-04 06:36 420864 c:\windows\system32\vbscript.dll
+ 2006-03-02 12:00 . 2011-03-04 06:36 726528 c:\windows\system32\jscript.dll
- 2006-03-02 12:00 . 2009-03-08 03:33 726528 c:\windows\system32\jscript.dll
+ 2006-03-02 12:00 . 2009-10-20 16:20 265728 c:\windows\system32\drivers\http.sys
+ 2011-03-04 06:44 . 2011-03-04 06:36 420864 c:\windows\system32\dllcache\vbscript.dll
+ 2011-03-04 06:44 . 2011-03-04 06:36 726528 c:\windows\system32\dllcache\jscript.dll
- 2011-03-04 06:44 . 2009-03-08 03:33 726528 c:\windows\system32\dllcache\jscript.dll
+ 2009-10-20 16:20 . 2009-10-20 16:20 265728 c:\windows\system32\dllcache\http.sys
+ 2012-02-24 10:37 . 2010-07-05 13:19 398200 c:\windows\ie8updates\KB2544521-IE8\updspapi.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 761208 c:\windows\ie8updates\KB2544521-IE8\update.exe
+ 2012-02-24 10:37 . 2010-07-05 13:19 233848 c:\windows\ie8updates\KB2544521-IE8\spuninst.exe
+ 2011-04-14 07:37 . 2009-03-08 03:33 420352 c:\windows\ie8updates\KB2510531-IE8\vbscript.dll
- 2011-04-14 07:37 . 2010-03-10 06:17 420352 c:\windows\ie8updates\KB2510531-IE8\vbscript.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 398200 c:\windows\ie8updates\KB2510531-IE8\updspapi.dll
+ 2012-02-24 10:37 . 2010-07-05 13:19 761208 c:\windows\ie8updates\KB2510531-IE8\update.exe
+ 2012-02-24 10:37 . 2010-07-05 13:19 233848 c:\windows\ie8updates\KB2510531-IE8\spuninst.exe
- 2011-04-14 07:37 . 2009-12-09 05:55 726528 c:\windows\ie8updates\KB2510531-IE8\jscript.dll
+ 2011-04-14 07:37 . 2009-03-08 03:33 726528 c:\windows\ie8updates\KB2510531-IE8\jscript.dll
+ 2009-10-20 16:20 . 2009-10-20 16:20 265728 c:\windows\Driver Cache\i386\http.sys
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATICustomerCare"="c:\program files\ATI\ATICustomerCare\ATICustomerCare.exe" [2010-03-04 311296]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-12-05 98304]
"RTHDCPL"="RTHDCPL.EXE" [2007-03-21 16126464]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 997920]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-02-26 437160]
.
c:\documents and settings\All Users\Start Menu\Programs\Indítópult\
Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [1999-2-17 65588]
Symantec Fax Starter Edition Port.lnk - c:\program files\Microsoft Office\Office\1038\OLFSNT40.EXE [1999-6-22 46080]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sprestrt\0sprestrt\0sprestrt
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2008-11-20 12:20 290088 ----a-w- c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
2007-08-07 00:05 200704 ----a-w- c:\program files\PowerISO\PWRISOVM.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\WINDOWS\\system32\\dplaysvr.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"e:\\PC GAMES\\2K Games\\Gearbox Software\\Borderlands\\Binaries\\Borderlands.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"e:\\PC GAMES\\Codemasters\\Worms 4 Mayhem\\WORMS 4 MAYHEM.EXE"=
"c:\\WINDOWS\\system32\\usmt\\migwiz.exe"=
"c:\\Program Files\\Steam\\SteamApps\\feketelovag21\\team fortress 2\\hl2.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"e:\\PC GAMES\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"=
"c:\\Program Files\\Xfire\\Xfire.exe"=
"e:\\PC GAMES\\Activision\\Call of Duty 2\\CoD2MP_s.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"e:\\PC GAMES\\EA Sports\\FIFA 11\\Game\\fifa.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 2\\iw4mp.exe"=
"e:\\PC GAMES\\Dead Island\\deadislandgame.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty black ops\\BlackOps.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty black ops\\BlackOpsMP.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\spiral knights\\java_vm\\bin\\javaw.exe"=
"e:\\PC GAMES\\AlterIW\\iw4mp.dat"=
"c:\\Documents and Settings\\nagy\\Application Data\\GameRanger\\GameRanger\\GameRanger.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 3\\iw5mp_server.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 3\\iw5sp.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 3\\iw5mp.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\left 4 dead 2\\left4dead2.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Documents and Settings\\nagy\\Local Settings\\Application Data\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\amd driver updater, xp, 32 bit\\Setup.exe"=
"c:\\Program Files\\Microsoft Security Client\\msseces.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 2\\iw4sp.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
"58945:TCP"= 58945:TCP:Pando Media Booster
"58945:UDP"= 58945:UDP:Pando Media Booster
"8394:TCP"= 8394:TCP:League of Legends Launcher
"8394:UDP"= 8394:UDP:League of Legends Launcher
.
R1 MpKsle676962e;MpKsle676962e;c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\MpKsle676962e.sys [2012.02.24. 12:11 29904]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\atl01_xp.sys [2007.12.04. 18:30 38656]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdXP3.sys [2012.02.22. 16:45 100368]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010.03.18. 13:16 130384]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\drivers\VBoxNetAdp.sys [2011.12.19. 14:12 104752]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys --> c:\windows\system32\DRIVERS\VBoxNetFlt.sys [?]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010.03.18. 13:16 753504]
S4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys --> c:\windows\system32\Drivers\sptd.sys [?]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - MPKSLE676962E
.
Contents of the 'Scheduled Tasks' folder
.
2012-02-23 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004Core.job
- c:\documents and settings\nagy\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [2011-11-22 15:26]
.
2012-02-24 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004UA.job
- c:\documents and settings\nagy\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [2011-11-22 15:26]
.
2010-06-27 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004Core.job
- c:\documents and settings\nagy\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-01-24 14:32]
.
2010-06-27 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004UA.job
- c:\documents and settings\nagy\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-01-24 14:32]
.
2012-02-24 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2011-04-27 14:39]
.
2012-02-24 c:\windows\Tasks\MpIdleTask.job
- c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2011-04-27 14:39]
.
2012-02-23 c:\windows\Tasks\User_Feed_Synchronization-{64CE30E5-8EF3-4AF5-A6FD-331EBF42E3A3}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.hu/
uInternet Settings,ProxyOverride = *.local
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\documents and settings\nagy\Application Data\Mozilla\Firefox\Profiles\mm64lt8n.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.hu/
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-02-24 12:11
Windows 5.1.2600 Szervizcsomag 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-606747145-1972579041-682003330-1004\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(780)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
- - - - - - - > 'explorer.exe'(204)
c:\windows\system32\WININET.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\program files\Microsoft Security Client\Antimalware\MsMpEng.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\System32\snmp.exe
c:\windows\system32\UAService7.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\RTHDCPL.EXE
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
.
**************************************************************************
.
Completion time: 2012-02-24 12:16:40 - machine was rebooted
ComboFix-quarantined-files.txt 2012-02-24 11:16
ComboFix2.txt 2012-02-23 18:53
.
Pre-Run: 5 805 830 144 bájt szabad
Post-Run: 5 691 744 256 bájt szabad
.
- - End Of File - - 4509B2A4AD0C3A91A1BB7DFADAC79B5E


pén. feb. 24, 2012 12:29
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
csak csinald azt amit irok, es rendbe teszuk,

Kinyitunk - Notepadot (Jegyzetfüzetet)igy: Start>futtatás>beírod: notepad
és bemásolod- a Kód: címszó alatt található zöld textet(Kód: szó nélkül), aztán a notepadba beillesztett textet elmentjük scriptnek az asztalra , úgy:- Fájl>Mentés Másként>Fájlnév>CFScript.txt>Fájl típusa>Minden fájl>Mentés.(Ásztálra),.Kész, az astalon lévő CFScript txt húzzunk rá a ComboFix ikonnyara. Es mostan megcsinalod eztett:
Kép
A combofix maga elindul es lehet hogy restartol es befejezi a scent.a naplojat tedd ide.

Kód:
KILLALL::
File::
c:\windows\003129_.tmp
c:\windows\SET17B.tmp
c:\windows\SET150.tmp
c:\windows\SET144.tmp
c:\windows\SET141.tmp
Registry::
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{5e5ab302-7f65-44cd-8211-c1d4caaccea3}"=-
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B2A44031-7EAD-434C-AC9E-7F1DA176BA8C}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{5e5ab302-7f65-44cd-8211-c1d4caaccea3}"=-
[-HKEY_CLASSES_ROOT\clsid\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{5E5AB302-7F65-44CD-8211-C1D4CAACCEA3}"=-
[-HKEY_CLASSES_ROOT\clsid\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"tscuninstall"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"23520:TCP"=-
Driver::
41452817
48427722
DDS::
IE: Translate this web page with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm
IE: Translate with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm
Extra::
FireFox::
FF - ProfilePath - c:\documents and settings\nagy\Application Data\Mozilla\Firefox\Profiles\mm64lt8n.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as ... ource=3&q={searchTerms}
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=green ... =937811&p=
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=100888
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.id - 204de013000000000000001d60d45885
FF - user.js: extensions.BabylonToolbar_i.hardId - 204de013000000000000001d60d45885
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15326
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1721:56
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
ClearJavaCache::


pén. feb. 24, 2012 8:46
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. nov. 05, 2009 15:10
Hozzászólások: 116
Tartózkodási hely: Hungary
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
Rendben és köszönöm!

Amúgy nekem is itt a család - a két fiam :)

Holnap vagyok délelőttől, mert ebben a télvízi időkben megint nincs sok melóm az építőiparban!

Nézlek majd... jelentkezz pls, hogy mit kell még tenni... mert azért nem jól zakatol a vas még... :(
Lehet, hogy már tényleg megérett az újratelepítésre... vmi komolyabb op.rendszerrel? meg ez az E:\ directory egy rakás szemét... minden ide van kirakva... csomagolva telepítve... csoda, hogy még megy a gép?! ;)
Csak a C.\-t szerettem volna tisztán tartani, meg a frankó programokat ott hagyni... de már a Steam-es játékok miatt nagyon tele van, alig van szabad terület rajta... és az gondolom a Windows-nak se jó?
Szóval legközelebb, ha telepítünk, a particionálásnal a C:q-re többet teszünk...

Még egyszer kösz, kellemes pihenést! :)
Holnap várom a jelentkezésed!


csüt. feb. 23, 2012 20:54
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
Ok, igen, a gep komolyan meg van fertozve, az combofix mar kiolt egy csommo fertozest de meg van ot egy csommo, de ma mar, nem, mert, unepelunk, es nincsen anyi idom,tehat csak holnap folytassuk, ok,
Ma mar vegzek szia, csak nyugodtan dolgoz a geppen, mar rosszab nem lehet. :lol:
Udv


csüt. feb. 23, 2012 20:28
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. nov. 05, 2009 15:10
Hozzászólások: 116
Tartózkodási hely: Hungary
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
LOOOOOL :)

Imádom a humorod :)

Nem tudom miért nem ezt tettem ide ?!
Ime:

ComboFix 12-02-22.01 - nagy 012.02.23. 19:47:00.6.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.36.1038.18.2047.1079 [GMT 1:00]
Running from: c:\documents and settings\nagy\Dokumentumok\Letöltések\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
FW: AVG Firewall *Disabled* {8decf618-9569-4340-b34a-d78d28969b66}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\ATI
c:\documents and settings\All Users\Application Data\ATI\ACE\Profiles.xml
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\nagy\Application Data\ATI
c:\documents and settings\nagy\Application Data\EurekaLog
c:\documents and settings\nagy\Application Data\facemoods.com
c:\documents and settings\nagy\Application Data\nagylog.dat
c:\documents and settings\nagy\Application Data\Toolbar4
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache\0a4f35b626016d8cd6d5731fa5e2aad7
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache\0b64ffa009d9e3d1236fb2b575bd953d
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache\0d53f0a9a42a5167b78657f1fc9488f1
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache\1df1df47b49e8b3090bc211048795c5a
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache\27c746d432b7a753a0af8d7c033b46fe
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache\2b4ad282984708f7b89800e17a257476
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache\2cc60d08b36af576b11419505050cc6e
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache\2f51f062108c7f20a67770bbdf546004
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache\31dca3ca44f44956ffde9959067d1093
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache\521788680d3595d05d274f3713057765
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache\593abe4ad021a7ca3002ccb2dca1969d
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache\757a20d7a75ae93435ac64a6095eab39
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache\7afabe4e3af1a66103f629a38d90558a
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache\9956734e872eec3ea3e17f52e84dc6cc
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache\9d810aab3f7bcbacb07c241f8d726714
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache\9fc2051aee76f9ef060973477300788d
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache\c48c9e27c16419ab995d48b077a802ff
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache\d1a2c0b23b2d4e91acf26940533c64f0
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\cache\dcd16c0f4842bc19d648b261e3cf263d
c:\documents and settings\nagy\Application Data\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\include_files\1e6d0a92883b25f29523edfaccfcde3b
c:\documents and settings\nagy\Start Menu\Internet Explorer.lnk
c:\documents and settings\nagy\WINDOWS
c:\program files\facemoods.com
c:\program files\facemoods.com\facemoods\1.4.17.11\bh\facemoods.dll
c:\program files\facemoods.com\facemoods\1.4.17.11\facemoods.crx
c:\program files\facemoods.com\facemoods\1.4.17.11\facemoods.png
c:\program files\facemoods.com\facemoods\1.4.17.11\facemoodsApp.dll
c:\program files\facemoods.com\facemoods\1.4.17.11\facemoodsEng.dll
c:\program files\facemoods.com\facemoods\1.4.17.11\facemoodssrv.exe
c:\program files\facemoods.com\facemoods\1.4.17.11\facemoodsTlbr.dll
c:\program files\facemoods.com\facemoods\1.4.17.11\uninstall.exe
c:\program files\HyperCam Toolbar\tbHElper.dll
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\system32\_000127_.tmp.dll
c:\windows\system32\config\systemprofile\Application Data\ATI
c:\windows\system32\SET599.tmp
c:\windows\system32\SET5A4.tmp
c:\windows\system32\tmp2A9A.tmp
c:\windows\system32\tmp2A9B.tmp
c:\windows\system32\tmpCB.tmp
c:\windows\system32\tmpCC.tmp
c:\windows\system32\tmpF9.tmp
c:\windows\system32\tmpFA.tmp
.
.
((((((((((((((((((((((((( Files Created from 2012-01-23 to 2012-02-23 )))))))))))))))))))))))))))))))
.
.
2012-02-23 16:53 . 2012-02-23 16:53 29904 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\MpKslbd6bbb49.sys
2012-02-23 16:42 . 2012-02-20 00:05 6552120 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-02-23 16:42 . 2012-02-20 00:05 6552120 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\mpengine.dll
2012-02-23 15:37 . 2011-08-16 10:45 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2012-02-23 15:37 . 2011-12-17 19:42 602112 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2012-02-23 15:37 . 2011-12-17 19:42 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2012-02-23 15:37 . 2011-12-17 19:42 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2012-02-23 15:37 . 2011-12-17 19:42 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2012-02-23 15:37 . 2011-12-17 19:42 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2012-02-23 15:37 . 2011-12-17 19:42 2000384 -c----w- c:\windows\system32\dllcache\iertutil.dll
2012-02-23 15:37 . 2011-12-18 13:42 11082240 -c----w- c:\windows\system32\dllcache\ieframe.dll
2012-02-23 12:41 . 2012-02-23 12:41 -------- d-----w- c:\program files\Microsoft Security Client
2012-02-23 10:17 . 2012-02-23 10:17 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-02-23 10:17 . 2011-12-10 14:24 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-02-23 08:00 . 2012-02-23 08:00 -------- d-----w- c:\documents and settings\nagy\Application Data\ElevatedDiagnostics
2012-02-23 06:39 . 2008-06-14 17:36 272512 -c----w- c:\windows\system32\dllcache\bthport.sys
2012-02-23 06:39 . 2011-07-15 13:29 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2012-02-23 06:38 . 2010-08-27 08:03 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2012-02-23 06:38 . 2009-10-15 16:33 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2012-02-23 06:37 . 2011-06-24 14:10 139656 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2012-02-23 06:37 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2012-02-23 06:37 . 2008-05-01 14:36 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2012-02-23 06:37 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2012-02-23 06:37 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2012-02-23 06:37 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2012-02-23 06:37 . 2009-06-21 21:48 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2012-02-23 06:36 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2012-02-23 06:35 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2012-02-23 06:35 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2012-02-23 06:35 . 2009-03-06 14:22 285184 -c----w- c:\windows\system32\dllcache\pdh.dll
2012-02-23 06:35 . 2009-02-09 11:26 111104 -c----w- c:\windows\system32\dllcache\services.exe
2012-02-23 06:35 . 2009-02-09 10:54 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2012-02-23 06:35 . 2009-02-09 10:54 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2012-02-23 06:35 . 2009-02-09 10:54 684544 -c----w- c:\windows\system32\dllcache\advapi32.dll
2012-02-23 06:35 . 2009-02-09 10:54 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2012-02-23 06:35 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2012-02-23 06:34 . 2010-06-14 07:43 1172480 -c----w- c:\windows\system32\dllcache\msxml3.dll
2012-02-23 06:34 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2012-02-23 06:33 . 2008-10-15 16:37 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll
2012-02-23 06:33 . 2009-03-08 03:33 759296 -c--a-w- c:\windows\system32\dllcache\VGX.dll
2012-02-23 06:33 . 2010-12-09 15:15 724992 -c----w- c:\windows\system32\dllcache\ntdll.dll
2012-02-23 06:33 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2012-02-23 06:32 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2012-02-23 06:32 . 2010-08-16 08:45 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2012-02-23 06:31 . 2012-01-12 17:20 1859968 -c----w- c:\windows\system32\dllcache\win32k.sys
2012-02-23 06:30 . 2009-12-17 07:42 345088 -c----w- c:\windows\system32\dllcache\mspaint.exe
2012-02-23 06:30 . 2010-07-16 11:58 220672 -c----w- c:\windows\system32\dllcache\wordpad.exe
2012-02-23 03:35 . 2009-07-31 09:05 1372672 -c----w- c:\windows\system32\dllcache\msxml6.dll
2012-02-23 03:35 . 2008-04-14 07:41 89600 -c----w- c:\windows\system32\dllcache\msxml6r.dll
2012-02-23 03:33 . 2008-04-14 08:02 294912 -c----w- c:\windows\system32\dllcache\dlimport.exe
2012-02-23 03:31 . 2006-12-28 11:01 19569 ----a-w- c:\windows\003129_.tmp
2012-02-23 01:39 . 2012-02-23 02:56 -------- d-----w- c:\program files\ReImageCompanion
2012-02-23 01:39 . 2012-02-23 01:39 -------- d-----w- c:\documents and settings\nagy\AppData
2012-02-22 23:51 . 2006-03-02 12:00 30208 -c--a-w- c:\windows\system32\dllcache\sm87w.dll
2012-02-22 23:50 . 2006-03-02 12:00 57399 -c--a-w- c:\windows\system32\dllcache\cplexe.exe
2012-02-22 23:48 . 2006-03-02 12:00 16384 -c--a-w- c:\windows\system32\dllcache\isignup.exe
2012-02-22 23:48 . 2006-03-02 12:00 16384 ----a-w- c:\program files\Internet Explorer\Connection Wizard\isignup.exe
2012-02-22 23:32 . 2006-03-02 12:00 24661 -c--a-w- c:\windows\system32\dllcache\spxcoins.dll
2012-02-22 23:32 . 2006-03-02 12:00 24661 ----a-w- c:\windows\system32\spxcoins.dll
2012-02-22 23:32 . 2006-03-02 12:00 13312 -c--a-w- c:\windows\system32\dllcache\irclass.dll
2012-02-22 23:32 . 2006-03-02 12:00 13312 ----a-w- c:\windows\system32\irclass.dll
2012-02-22 23:31 . 2006-03-02 12:00 14573 ----a-r- c:\windows\SET17B.tmp
2012-02-22 23:31 . 2006-03-02 12:00 14043 ----a-r- c:\windows\SET150.tmp
2012-02-22 23:31 . 2006-03-02 12:00 1086058 ----a-r- c:\windows\SET144.tmp
2012-02-22 23:31 . 2006-03-02 12:00 1013957 ----a-r- c:\windows\SET141.tmp
2012-02-22 21:08 . 2012-02-22 21:08 -------- d-----w- c:\program files\AMD APP
2012-02-22 15:45 . 2012-02-22 15:41 100368 ----a-w- c:\windows\system32\drivers\AtihdXP3.sys
2012-02-21 19:43 . 2012-02-21 19:43 -------- d--h--w- c:\documents and settings\All Users\Application Data\Common Files
2012-02-21 18:51 . 2009-08-18 12:44 53248 ----a-w- c:\windows\system32\CSVer.dll
2012-02-21 18:39 . 2005-05-04 01:43 69632 ----a-w- c:\windows\Alcmtr.exe
2012-02-21 18:35 . 2012-02-21 18:37 -------- d-----w- c:\documents and settings\nagy\Application Data\Download Manager
2012-02-15 08:55 . 2012-01-11 19:07 3072 ----a-w- c:\windows\system32\iacenc.dll
2012-02-10 05:42 . 2012-02-13 11:57 -------- d-----w- c:\program files\Common Files\Spigot
2012-02-08 12:36 . 2012-02-08 12:36 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\PCHealth
2012-02-03 09:29 . 2012-02-03 09:29 42392 ----a-w- c:\windows\system32\xfcodec.dll
2012-01-29 15:38 . 2012-01-29 15:38 -------- d-----w- c:\documents and settings\nagy\Application Data\DivX
2012-01-29 01:09 . 2012-01-30 13:15 -------- d-----w- c:\program files\Common Files\DivX Shared
2012-01-29 01:08 . 2012-01-30 13:15 -------- d-----w- c:\program files\DivX
2012-01-29 01:08 . 2012-01-30 13:15 -------- d-----w- c:\documents and settings\All Users\Application Data\DivX
2012-01-25 23:42 . 2012-01-25 23:42 -------- d-----w- c:\documents and settings\All Users\Application Data\NortonInstaller
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-22 15:43 . 2009-02-25 21:30 19357696 ----a-w- c:\windows\system32\atioglxx.dll
2012-02-22 15:43 . 2007-09-29 03:05 7490560 ----a-w- c:\windows\system32\drivers\ati2mtag.sys
2012-02-22 15:42 . 2007-09-29 02:58 26112 ----a-w- c:\windows\system32\Ati2mdxx.exe
2012-02-22 15:42 . 2007-09-29 02:47 5334656 ----a-w- c:\windows\system32\ati3duag.dll
2012-02-22 15:42 . 2010-03-22 00:09 118784 ----a-w- c:\windows\system32\atibtmon.exe
2012-02-22 15:42 . 2007-09-29 02:58 155648 ----a-w- c:\windows\system32\Oemdspif.dll
2012-02-22 15:42 . 2007-09-29 02:57 192512 ----a-w- c:\windows\system32\ati2evxx.dll
2012-02-22 15:42 . 2007-07-20 02:19 45056 ----a-w- c:\windows\system32\ATIODCLI.exe
2012-02-22 15:42 . 2007-09-29 02:14 884736 ----a-w- c:\windows\system32\ati2cqag.dll
2012-02-22 15:42 . 2001-11-09 15:01 24064 ----a-w- c:\windows\system32\ativcoxx.dll
2012-02-22 15:42 . 2007-09-29 02:58 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2012-02-22 15:42 . 2009-02-25 20:32 57344 ----a-w- c:\windows\system32\aticalrt.dll
2012-02-22 15:41 . 2007-07-20 02:19 294912 ----a-w- c:\windows\system32\ATIODE.exe
2012-02-22 15:41 . 2007-09-29 02:58 212992 ----a-w- c:\windows\system32\atipdlxx.dll
2012-02-22 15:41 . 2007-12-04 17:34 311296 ----a-w- c:\windows\system32\atiiiexx.dll
2012-02-22 15:41 . 2007-09-29 03:06 304640 ----a-w- c:\windows\system32\ati2dvag.dll
2012-02-22 15:41 . 2007-12-04 17:34 466944 ----a-w- c:\windows\system32\ATIDEMGX.dll
2012-02-22 15:41 . 2009-02-25 20:38 233472 ----a-w- c:\windows\system32\atiadlxx.dll
2012-02-22 15:41 . 2009-02-25 20:30 7376896 ----a-w- c:\windows\system32\aticaldd.dll
2012-02-22 15:41 . 2007-09-29 02:19 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2012-02-22 15:41 . 2007-09-29 02:55 53248 ----a-w- c:\windows\system32\ATIDDC.DLL
2012-02-22 15:40 . 2007-09-29 02:56 643072 ----a-w- c:\windows\system32\ati2evxx.exe
2012-02-22 15:40 . 2011-07-24 13:56 956160 ----a-w- c:\windows\system32\ativvamv.dll
2012-02-22 15:40 . 2007-09-29 02:22 806912 ----a-w- c:\windows\system32\atikvmag.dll
2012-02-22 15:40 . 2007-09-29 02:36 3307776 ----a-w- c:\windows\system32\ativvaxx.dll
2012-02-22 15:40 . 2010-03-22 00:09 159744 ----a-w- c:\windows\system32\atiapfxx.exe
2012-02-22 15:40 . 2009-02-25 20:32 53248 ----a-w- c:\windows\system32\aticalcl.dll
2012-02-22 15:40 . 2010-03-22 00:09 65024 ----a-w- c:\windows\system32\atimpc32.dll
2012-02-22 15:40 . 2009-02-25 20:44 65024 ----a-w- c:\windows\system32\amdpcom32.dll
2012-02-22 15:40 . 2007-09-29 02:47 602112 ----a-w- c:\windows\system32\atiok3x2.dll
2012-02-22 15:40 . 2007-09-29 02:20 17408 ----a-w- c:\windows\system32\atitvo32.dll
2012-02-21 19:55 . 2010-06-18 18:05 214520 ----a-w- c:\windows\system32\PnkBstrB.xtr
2012-02-21 19:55 . 2009-04-04 17:28 214520 ----a-w- c:\windows\system32\PnkBstrB.exe
2012-02-21 19:54 . 2009-04-04 17:28 137464 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2012-02-21 19:54 . 2009-04-04 17:28 214520 ----a-w- c:\windows\system32\PnkBstrB.ex0
2012-01-29 04:10 . 2011-09-04 09:50 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-01-12 17:20 . 2006-03-02 12:00 1859968 ----a-w- c:\windows\system32\win32k.sys
2011-12-19 13:12 . 2011-12-19 13:12 104752 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2011-12-19 13:11 . 2012-01-09 18:22 158512 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2011-12-19 13:11 . 2012-01-09 18:22 91440 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2011-12-17 19:42 . 2006-03-02 12:00 916992 ----a-w- c:\windows\system32\wininet.dll
2011-12-17 19:42 . 2006-03-02 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2011-12-17 19:42 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-12-16 12:23 . 2006-03-02 12:00 385024 ------w- c:\windows\system32\html.iec
2011-12-05 21:04 . 2011-12-05 21:04 59904 ----a-w- c:\windows\system32\OpenVideo.dll
2011-12-05 21:03 . 2011-12-05 21:03 54784 ----a-w- c:\windows\system32\OVDecode.dll
2011-12-05 21:03 . 2011-12-05 21:03 14499328 ----a-w- c:\windows\system32\amdocl.dll
2011-12-05 21:02 . 2011-12-05 21:02 44032 ----a-w- c:\windows\system32\OpenCL.dll
2011-12-04 13:31 . 2011-06-26 06:40 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-11-25 21:57 . 2006-03-02 12:00 293888 ----a-w- c:\windows\system32\winsrv.dll
1999-06-22 06:35 . 1999-06-22 06:35 99840 ----a-w- c:\program files\Common Files\IRAABOUT.DLL
1998-12-09 00:53 . 1998-12-09 00:53 70144 ----a-w- c:\program files\Common Files\IRAMDMTR.DLL
1998-12-09 00:53 . 1998-12-09 00:53 48640 ----a-w- c:\program files\Common Files\IRALPTTR.DLL
1998-12-09 00:53 . 1998-12-09 00:53 31744 ----a-w- c:\program files\Common Files\IRAWEBTR.DLL
1998-12-09 00:53 . 1998-12-09 00:53 186368 ----a-w- c:\program files\Common Files\IRAREG.DLL
1998-12-09 00:53 . 1998-12-09 00:53 17920 ----a-w- c:\program files\Common Files\IRASRIAL.DLL
2012-02-21 05:42 . 2011-03-23 12:50 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{5e5ab302-7f65-44cd-8211-c1d4caaccea3}"= "c:\program files\XfireXO\prxtbXfi2.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}]
2011-05-09 09:49 176936 ----a-w- c:\program files\XfireXO\prxtbXfi2.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B2A44031-7EAD-434C-AC9E-7F1DA176BA8C}]
2011-08-01 12:51 167424 ----a-w- c:\program files\Facecons\Facecons.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{5e5ab302-7f65-44cd-8211-c1d4caaccea3}"= "c:\program files\XfireXO\prxtbXfi2.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{5E5AB302-7F65-44CD-8211-C1D4CAACCEA3}"= "c:\program files\XfireXO\prxtbXfi2.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATICustomerCare"="c:\program files\ATI\ATICustomerCare\ATICustomerCare.exe" [2010-03-04 311296]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-12-05 98304]
"RTHDCPL"="RTHDCPL.EXE" [2007-03-21 16126464]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 997920]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-02-26 437160]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"tscuninstall"="c:\windows\system32\tscupgrd.exe" [2006-03-02 44544]
.
c:\documents and settings\All Users\Start Menu\Programs\Indítópult\
Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [1999-2-17 65588]
Symantec Fax Starter Edition Port.lnk - c:\program files\Microsoft Office\Office\1038\OLFSNT40.EXE [1999-6-22 46080]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sprestrt\0sprestrt\0sprestrt
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-01-03 07:37 843712 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2010-06-20 02:04 35760 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
2011-11-22 15:26 137536 ----atw- c:\documents and settings\nagy\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2010-01-24 14:32 135664 ----atw- c:\documents and settings\nagy\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2008-11-20 12:20 290088 ----a-w- c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
2007-08-07 00:05 200704 ----a-w- c:\program files\PowerISO\PWRISOVM.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2011-10-13 09:45 19550344 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2011-06-09 12:06 254696 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
2007-10-10 05:28 36352 ----a-w- c:\program files\Winamp\winampa.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\WINDOWS\\system32\\dplaysvr.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"e:\\PC GAMES\\2K Games\\Gearbox Software\\Borderlands\\Binaries\\Borderlands.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"e:\\PC GAMES\\Codemasters\\Worms 4 Mayhem\\WORMS 4 MAYHEM.EXE"=
"c:\\WINDOWS\\system32\\usmt\\migwiz.exe"=
"c:\\Program Files\\Steam\\SteamApps\\feketelovag21\\team fortress 2\\hl2.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"e:\\PC GAMES\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"=
"c:\\Program Files\\Xfire\\Xfire.exe"=
"e:\\PC GAMES\\Activision\\Call of Duty 2\\CoD2MP_s.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"e:\\PC GAMES\\EA Sports\\FIFA 11\\Game\\fifa.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 2\\iw4mp.exe"=
"e:\\PC GAMES\\Dead Island\\deadislandgame.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty black ops\\BlackOps.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty black ops\\BlackOpsMP.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\spiral knights\\java_vm\\bin\\javaw.exe"=
"e:\\PC GAMES\\AlterIW\\iw4mp.dat"=
"c:\\Documents and Settings\\nagy\\Application Data\\GameRanger\\GameRanger\\GameRanger.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 3\\iw5mp_server.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 3\\iw5sp.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 3\\iw5mp.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\left 4 dead 2\\left4dead2.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Documents and Settings\\nagy\\Local Settings\\Application Data\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\amd driver updater, xp, 32 bit\\Setup.exe"=
"c:\\Program Files\\Microsoft Security Client\\msseces.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 2\\iw4sp.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
"23520:TCP"= 23520:TCP:.
"58945:TCP"= 58945:TCP:Pando Media Booster
"58945:UDP"= 58945:UDP:Pando Media Booster
"8394:TCP"= 8394:TCP:League of Legends Launcher
"8394:UDP"= 8394:UDP:League of Legends Launcher
.
R1 MpKslbd6bbb49;MpKslbd6bbb49;c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\MpKslbd6bbb49.sys [2012.02.23. 17:53 29904]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\atl01_xp.sys [2007.12.04. 18:30 38656]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdXP3.sys [2012.02.22. 16:45 100368]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010.03.18. 13:16 130384]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\drivers\VBoxNetAdp.sys [2011.12.19. 14:12 104752]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys --> c:\windows\system32\DRIVERS\VBoxNetFlt.sys [?]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010.03.18. 13:16 753504]
S4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys --> c:\windows\system32\Drivers\sptd.sys [?]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - 41452817
*NewlyCreated* - 48427722
*NewlyCreated* - MPKSLBD6BBB49
*Deregistered* - 41452817
*Deregistered* - 48427722
.
Contents of the 'Scheduled Tasks' folder
.
2012-02-23 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004Core.job
- c:\documents and settings\nagy\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [2011-11-22 15:26]
.
2012-02-23 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004UA.job
- c:\documents and settings\nagy\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [2011-11-22 15:26]
.
2010-06-27 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004Core.job
- c:\documents and settings\nagy\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-01-24 14:32]
.
2010-06-27 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-606747145-1972579041-682003330-1004UA.job
- c:\documents and settings\nagy\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-01-24 14:32]
.
2012-02-23 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2011-04-27 14:39]
.
2012-02-23 c:\windows\Tasks\MpIdleTask.job
- c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2011-04-27 14:39]
.
2012-02-23 c:\windows\Tasks\User_Feed_Synchronization-{64CE30E5-8EF3-4AF5-A6FD-331EBF42E3A3}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.hu/
uInternet Settings,ProxyOverride = *.local
IE: Translate this web page with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm
IE: Translate with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\documents and settings\nagy\Application Data\Mozilla\Firefox\Profiles\mm64lt8n.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as ... ource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.hu/
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=green ... =937811&p=
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=100888
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.id - 204de013000000000000001d60d45885
FF - user.js: extensions.BabylonToolbar_i.hardId - 204de013000000000000001d60d45885
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15326
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1721:56
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
- - - - ORPHANS REMOVED - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
MSConfigStartUp-facemoods - c:\program files\facemoods.com\facemoods\1.4.17.11\facemoodssrv.exe
AddRemove-Adobe Acrobat Reader 3.02 - c:\acrobat3\Reader\DeIsL1.isu
AddRemove-facemoods - c:\program files\facemoods.com\facemoods\1.4.17.11\uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-02-23 19:51
Windows 5.1.2600 Szervizcsomag 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-606747145-1972579041-682003330-1004\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(776)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
Completion time: 2012-02-23 19:53:52
ComboFix-quarantined-files.txt 2012-02-23 18:53
.
Pre-Run: 6 107 475 968 bájt szabad
Post-Run: 6 284 046 336 bájt szabad
.
WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition - magyar" /noexecute=optin /fastdetect /usepmtimer
.
- - End Of File - - 11743AB19DAA8C9EB066AF1DCE57D82E


csüt. feb. 23, 2012 20:22
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
:D Te csak ne kuldozges sehova semmit se,
Idézet:
MSE-nek küldtem még ismeretlent C:\32788R22FWJFW\iexplore.exe

Ez a combofixhez tartozi, es nem a TDSSKILLER naplojat, hanem a C:\combofix.txt, naplojat tedd ide.


csüt. feb. 23, 2012 20:07
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. nov. 05, 2009 15:10
Hozzászólások: 116
Tartózkodási hely: Hungary
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
MSE-nek küldtem még ismeretlent C:\32788R22FWJFW\iexplore.exe :)

Vmi konzolt nem talált a Combofix >>> install .....

DE mi van, hogy nem látom C:\WINDOWS\system32 mappát???? hol van ?

Az E:\-n futnak ezek a scar progig, botok, meg nem is tudom még mik .... FPS gamek hack-jei

Na itt a log.txt:

17:53:25.0890 0896 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
17:53:26.0078 0896 ============================================================
17:53:26.0078 0896 Current date / time: 2012/02/23 17:53:26.0078
17:53:26.0078 0896 SystemInfo:
17:53:26.0078 0896
17:53:26.0078 0896 OS Version: 5.1.2600 ServicePack: 3.0
17:53:26.0078 0896 Product type: Workstation
17:53:26.0078 0896 ComputerName: ATI
17:53:26.0078 0896 UserName: nagy
17:53:26.0078 0896 Windows directory: C:\WINDOWS
17:53:26.0078 0896 System windows directory: C:\WINDOWS
17:53:26.0078 0896 Processor architecture: Intel x86
17:53:26.0078 0896 Number of processors: 2
17:53:26.0078 0896 Page size: 0x1000
17:53:26.0078 0896 Boot type: Normal boot
17:53:26.0078 0896 ============================================================
17:53:27.0875 0896 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
17:53:27.0890 0896 \Device\Harddisk0\DR0:
17:53:27.0890 0896 MBR used
17:53:27.0890 0896 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC34F28D
17:53:27.0906 0896 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xC34F30B, BlocksNum 0x190DA4F5
17:53:28.0000 0896 Initialize success
17:53:28.0000 0896 ============================================================
17:53:33.0640 1132 ============================================================
17:53:33.0640 1132 Scan started
17:53:33.0640 1132 Mode: Manual;
17:53:33.0640 1132 ============================================================
17:53:34.0296 1132 Abiosdsk - ok
17:53:34.0296 1132 abp480n5 - ok
17:53:34.0359 1132 ACPI (5482ff197e59b4ca97ccb1b4740a2949) C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:53:34.0359 1132 ACPI - ok
17:53:34.0375 1132 ACPIEC (582c901174a7f0733c6fe41c37c9a80b) C:\WINDOWS\system32\drivers\ACPIEC.sys
17:53:34.0375 1132 ACPIEC - ok
17:53:34.0390 1132 adpu160m - ok
17:53:34.0437 1132 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
17:53:34.0437 1132 aec - ok
17:53:34.0468 1132 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
17:53:34.0468 1132 AFD - ok
17:53:34.0484 1132 Aha154x - ok
17:53:34.0500 1132 aic78u2 - ok
17:53:34.0500 1132 aic78xx - ok
17:53:34.0515 1132 AliIde - ok
17:53:34.0531 1132 amsint - ok
17:53:34.0562 1132 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
17:53:34.0562 1132 Arp1394 - ok
17:53:34.0578 1132 asc - ok
17:53:34.0578 1132 asc3350p - ok
17:53:34.0593 1132 asc3550 - ok
17:53:34.0609 1132 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:53:34.0609 1132 AsyncMac - ok
17:53:34.0640 1132 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
17:53:34.0640 1132 atapi - ok
17:53:34.0671 1132 AtcL001 (19f277bc4ce5689f20f347a6b8aa8c42) C:\WINDOWS\system32\DRIVERS\atl01_xp.sys
17:53:34.0671 1132 AtcL001 - ok
17:53:34.0687 1132 Atdisk - ok
17:53:34.0859 1132 ati2mtag (0997918a56a6e09ddf7bdfc0ebe8a99d) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
17:53:34.0937 1132 ati2mtag - ok
17:53:34.0984 1132 AtiHDAudioService (bd9ca8136738040d3257363ed12be693) C:\WINDOWS\system32\drivers\AtihdXP3.sys
17:53:34.0984 1132 AtiHDAudioService - ok
17:53:35.0015 1132 AtiHdmiService (dc6957811ff95f2dd3004361b20d8d3f) C:\WINDOWS\system32\drivers\AtiHdmi.sys
17:53:35.0015 1132 AtiHdmiService - ok
17:53:35.0046 1132 atksgt (f0d933b42cd0594048e4d5200ae9e417) C:\WINDOWS\system32\DRIVERS\atksgt.sys
17:53:35.0046 1132 atksgt - ok
17:53:35.0093 1132 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:53:35.0093 1132 Atmarpc - ok
17:53:35.0109 1132 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
17:53:35.0109 1132 audstub - ok
17:53:35.0140 1132 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
17:53:35.0140 1132 Beep - ok
17:53:35.0187 1132 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
17:53:35.0187 1132 cbidf2k - ok
17:53:35.0203 1132 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
17:53:35.0218 1132 CCDECODE - ok
17:53:35.0218 1132 cd20xrnt - ok
17:53:35.0250 1132 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
17:53:35.0250 1132 Cdaudio - ok
17:53:35.0281 1132 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
17:53:35.0281 1132 Cdfs - ok
17:53:35.0312 1132 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:53:35.0312 1132 Cdrom - ok
17:53:35.0328 1132 Changer - ok
17:53:35.0343 1132 CmdIde - ok
17:53:35.0343 1132 Cpqarray - ok
17:53:35.0359 1132 dac2w2k - ok
17:53:35.0375 1132 dac960nt - ok
17:53:35.0406 1132 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
17:53:35.0406 1132 Disk - ok
17:53:35.0484 1132 dmboot (ae717be311722ceebd9a27b57757a123) C:\WINDOWS\system32\drivers\dmboot.sys
17:53:35.0500 1132 dmboot - ok
17:53:35.0562 1132 dmio (66b7462ad4844052d4a6cbea3aa486a0) C:\WINDOWS\system32\drivers\dmio.sys
17:53:35.0562 1132 dmio - ok
17:53:35.0593 1132 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
17:53:35.0593 1132 dmload - ok
17:53:35.0625 1132 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
17:53:35.0625 1132 DMusic - ok
17:53:35.0640 1132 dpti2o - ok
17:53:35.0656 1132 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
17:53:35.0656 1132 drmkaud - ok
17:53:35.0687 1132 enodpl (b4556f3d468c8dcb0b259d9d866cd4c4) C:\WINDOWS\system32\drivers\enodpl.sys
17:53:35.0703 1132 enodpl - ok
17:53:35.0750 1132 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
17:53:35.0765 1132 Fastfat - ok
17:53:35.0781 1132 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
17:53:35.0781 1132 Fdc - ok
17:53:35.0812 1132 Fips (0986fca8fd7a56d9f1628fe6ef321090) C:\WINDOWS\system32\drivers\Fips.sys
17:53:35.0812 1132 Fips - ok
17:53:35.0843 1132 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
17:53:35.0843 1132 Flpydisk - ok
17:53:35.0906 1132 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
17:53:35.0906 1132 FltMgr - ok
17:53:35.0937 1132 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:53:35.0937 1132 Fs_Rec - ok
17:53:35.0968 1132 Ftdisk (44225407f69666099c4d4c6bc9cd804d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:53:35.0968 1132 Ftdisk - ok
17:53:36.0000 1132 GEARAspiWDM (ab8a6a87d9d7255c3884d5b9541a6e80) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
17:53:36.0000 1132 GEARAspiWDM - ok
17:53:36.0031 1132 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:53:36.0046 1132 Gpc - ok
17:53:36.0078 1132 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
17:53:36.0078 1132 HDAudBus - ok
17:53:36.0125 1132 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:53:36.0125 1132 hidusb - ok
17:53:36.0140 1132 hpn - ok
17:53:36.0203 1132 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
17:53:36.0218 1132 HTTP - ok
17:53:36.0250 1132 hwdatacard (200ab8daf659c7324601fcc824d7f910) C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys
17:53:36.0250 1132 hwdatacard - ok
17:53:36.0281 1132 hwpsgt (a439ebd90afdb1f516c875b9b317832f) C:\WINDOWS\system32\DRIVERS\hwpsgt.sys
17:53:36.0296 1132 hwpsgt - ok
17:53:36.0296 1132 i2omgmt - ok
17:53:36.0312 1132 i2omp - ok
17:53:36.0343 1132 i8042prt (d7947ecf17544ced478bd969939db349) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:53:36.0343 1132 i8042prt - ok
17:53:36.0390 1132 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
17:53:36.0390 1132 Imapi - ok
17:53:36.0406 1132 ini910u - ok
17:53:36.0515 1132 IntcAzAudAddService (cbddab14249b2f05407fc09ab8fffb88) C:\WINDOWS\system32\drivers\RtkHDAud.sys
17:53:36.0562 1132 IntcAzAudAddService - ok
17:53:36.0578 1132 IntelIde - ok
17:53:36.0609 1132 intelppm (5182797825b78faba84f7a82603e212d) C:\WINDOWS\system32\DRIVERS\intelppm.sys
17:53:36.0609 1132 intelppm - ok
17:53:36.0640 1132 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
17:53:36.0640 1132 Ip6Fw - ok
17:53:36.0687 1132 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:53:36.0687 1132 IpFilterDriver - ok
17:53:36.0734 1132 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:53:36.0734 1132 IpInIp - ok
17:53:36.0765 1132 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:53:36.0765 1132 IpNat - ok
17:53:36.0812 1132 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:53:36.0812 1132 IPSec - ok
17:53:36.0843 1132 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
17:53:36.0843 1132 IRENUM - ok
17:53:36.0875 1132 isapnp (3685529caa2b14c9632e85e265ba293b) C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:53:36.0875 1132 isapnp - ok
17:53:36.0906 1132 Kbdclass (51d3342d1a0c19605095405352bb009b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:53:36.0906 1132 Kbdclass - ok
17:53:36.0921 1132 kbdhid (eb1720313b4fd571654926a80e610c20) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
17:53:36.0937 1132 kbdhid - ok
17:53:36.0968 1132 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
17:53:36.0968 1132 kmixer - ok
17:53:37.0000 1132 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
17:53:37.0000 1132 KSecDD - ok
17:53:37.0015 1132 lbrtfdc - ok
17:53:37.0046 1132 lemsgt (057da656166893842dd401c25a058c4e) C:\WINDOWS\system32\DRIVERS\lemsgt.sys
17:53:37.0046 1132 lemsgt - ok
17:53:37.0078 1132 lirsgt (f8a7212d0864ef5e9185fb95e6623f4d) C:\WINDOWS\system32\DRIVERS\lirsgt.sys
17:53:37.0078 1132 lirsgt - ok
17:53:37.0093 1132 mcdbus - ok
17:53:37.0125 1132 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
17:53:37.0125 1132 mnmdd - ok
17:53:37.0156 1132 Modem (226b93eb15b1c819fa021a5167c5809d) C:\WINDOWS\system32\drivers\Modem.sys
17:53:37.0156 1132 Modem - ok
17:53:37.0187 1132 Mouclass (705cac1902dcd3e3181a199d7ad40d13) C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:53:37.0187 1132 Mouclass - ok
17:53:37.0218 1132 mouhid (6a79cb27d0e608a45638cd9468269a3e) C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:53:37.0218 1132 mouhid - ok
17:53:37.0265 1132 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
17:53:37.0265 1132 MountMgr - ok
17:53:37.0296 1132 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
17:53:37.0296 1132 MpFilter - ok
17:53:37.0390 1132 MpKslbd6bbb49 (a69630d039c38018689190234f866d77) C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\MpKslbd6bbb49.sys
17:53:37.0390 1132 MpKslbd6bbb49 - ok
17:53:37.0390 1132 mraid35x - ok
17:53:37.0453 1132 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:53:37.0453 1132 MRxDAV - ok
17:53:37.0500 1132 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:53:37.0500 1132 MRxSmb - ok
17:53:37.0546 1132 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
17:53:37.0546 1132 Msfs - ok
17:53:37.0578 1132 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:53:37.0578 1132 MSKSSRV - ok
17:53:37.0593 1132 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:53:37.0593 1132 MSPCLOCK - ok
17:53:37.0625 1132 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
17:53:37.0625 1132 MSPQM - ok
17:53:37.0656 1132 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:53:37.0656 1132 mssmbios - ok
17:53:37.0687 1132 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
17:53:37.0687 1132 MSTEE - ok
17:53:37.0718 1132 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
17:53:37.0718 1132 MTsensor - ok
17:53:37.0750 1132 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
17:53:37.0750 1132 Mup - ok
17:53:37.0781 1132 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
17:53:37.0781 1132 NABTSFEC - ok
17:53:37.0828 1132 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
17:53:37.0828 1132 NDIS - ok
17:53:37.0859 1132 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
17:53:37.0859 1132 NdisIP - ok
17:53:37.0890 1132 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:53:37.0890 1132 NdisTapi - ok
17:53:37.0921 1132 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:53:37.0921 1132 Ndisuio - ok
17:53:37.0968 1132 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:53:37.0968 1132 NdisWan - ok
17:53:38.0000 1132 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
17:53:38.0000 1132 NDProxy - ok
17:53:38.0031 1132 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
17:53:38.0031 1132 NetBIOS - ok
17:53:38.0078 1132 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
17:53:38.0078 1132 NetBT - ok
17:53:38.0125 1132 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
17:53:38.0125 1132 NIC1394 - ok
17:53:38.0171 1132 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
17:53:38.0171 1132 Npfs - ok
17:53:38.0218 1132 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
17:53:38.0234 1132 Ntfs - ok
17:53:38.0250 1132 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
17:53:38.0250 1132 Null - ok
17:53:38.0281 1132 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:53:38.0281 1132 NwlnkFlt - ok
17:53:38.0312 1132 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:53:38.0312 1132 NwlnkFwd - ok
17:53:38.0343 1132 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
17:53:38.0343 1132 ohci1394 - ok
17:53:38.0390 1132 Parport (632f154061074a9a1b75ecbba89d8d42) C:\WINDOWS\system32\drivers\Parport.sys
17:53:38.0390 1132 Parport - ok
17:53:38.0421 1132 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
17:53:38.0421 1132 PartMgr - ok
17:53:38.0453 1132 ParVdm (4df92a889e7fe15ed3834d288a0271f5) C:\WINDOWS\system32\drivers\ParVdm.sys
17:53:38.0453 1132 ParVdm - ok
17:53:38.0484 1132 PCI (b4a9c91cfdd5c68e2e48c0754e3a88f9) C:\WINDOWS\system32\DRIVERS\pci.sys
17:53:38.0484 1132 PCI - ok
17:53:38.0484 1132 PCIDump - ok
17:53:38.0515 1132 PCIIde (fbf3cc42488fd2ce49f9427240cd5809) C:\WINDOWS\system32\DRIVERS\pciide.sys
17:53:38.0515 1132 PCIIde - ok
17:53:38.0562 1132 Pcmcia (3defb381b9cdca9d4375bd37a3c0189b) C:\WINDOWS\system32\drivers\Pcmcia.sys
17:53:38.0562 1132 Pcmcia - ok
17:53:38.0578 1132 PDCOMP - ok
17:53:38.0593 1132 PDFRAME - ok
17:53:38.0593 1132 PDRELI - ok
17:53:38.0609 1132 PDRFRAME - ok
17:53:38.0625 1132 perc2 - ok
17:53:38.0625 1132 perc2hib - ok
17:53:38.0687 1132 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:53:38.0687 1132 PptpMiniport - ok
17:53:38.0718 1132 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
17:53:38.0718 1132 PSched - ok
17:53:38.0750 1132 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:53:38.0750 1132 Ptilink - ok
17:53:38.0765 1132 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
17:53:38.0781 1132 PxHelp20 - ok
17:53:38.0781 1132 ql1080 - ok
17:53:38.0796 1132 Ql10wnt - ok
17:53:38.0812 1132 ql12160 - ok
17:53:38.0812 1132 ql1240 - ok
17:53:38.0828 1132 ql1280 - ok
17:53:38.0859 1132 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:53:38.0859 1132 RasAcd - ok
17:53:38.0875 1132 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:53:38.0875 1132 Rasl2tp - ok
17:53:38.0906 1132 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:53:38.0906 1132 RasPppoe - ok
17:53:39.0093 1132 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
17:53:39.0093 1132 Raspti - ok
17:53:39.0140 1132 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:53:39.0140 1132 Rdbss - ok
17:53:39.0171 1132 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:53:39.0171 1132 RDPCDD - ok
17:53:39.0218 1132 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
17:53:39.0218 1132 RDPWD - ok
17:53:39.0281 1132 redbook (3c706fd765482112c3a6d42e1d7b58bb) C:\WINDOWS\system32\DRIVERS\redbook.sys
17:53:39.0281 1132 redbook - ok
17:53:39.0312 1132 SCDEmu (612a3d69e603dbbe5c3c1079186a0393) C:\WINDOWS\system32\drivers\SCDEmu.sys
17:53:39.0312 1132 SCDEmu - ok
17:53:39.0328 1132 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:53:39.0328 1132 Secdrv - ok
17:53:39.0359 1132 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
17:53:39.0375 1132 serenum - ok
17:53:39.0390 1132 Serial (87df40b4db611efbdf74c9b3eccab417) C:\WINDOWS\system32\DRIVERS\serial.sys
17:53:39.0406 1132 Serial - ok
17:53:39.0437 1132 sfdrv01 (4c0d673281178cb496011a2e28571fc8) C:\WINDOWS\system32\drivers\sfdrv01.sys
17:53:39.0468 1132 sfdrv01 - ok
17:53:39.0484 1132 sfhlp02 (15be2b5e4dc5b8623cf167720682abc9) C:\WINDOWS\system32\drivers\sfhlp02.sys
17:53:39.0500 1132 sfhlp02 - ok
17:53:39.0515 1132 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
17:53:39.0515 1132 Sfloppy - ok
17:53:39.0546 1132 sfvfs02 (d5a7e09d2c6a702809e49190d52adc9f) C:\WINDOWS\system32\drivers\sfvfs02.sys
17:53:39.0562 1132 sfvfs02 - ok
17:53:39.0578 1132 Simbad - ok
17:53:39.0593 1132 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
17:53:39.0593 1132 SLIP - ok
17:53:39.0703 1132 sony_ssm.sys - ok
17:53:39.0718 1132 Sparrow - ok
17:53:39.0750 1132 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
17:53:39.0750 1132 splitter - ok
17:53:39.0750 1132 sptd - ok
17:53:39.0796 1132 sr (38e904fb6139945822b929eaf2570ca5) C:\WINDOWS\system32\DRIVERS\sr.sys
17:53:39.0796 1132 sr - ok
17:53:39.0828 1132 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
17:53:39.0843 1132 Srv - ok
17:53:39.0859 1132 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
17:53:39.0875 1132 streamip - ok
17:53:39.0890 1132 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
17:53:39.0890 1132 swenum - ok
17:53:39.0921 1132 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
17:53:39.0937 1132 swmidi - ok
17:53:39.0937 1132 symc810 - ok
17:53:39.0953 1132 symc8xx - ok
17:53:39.0968 1132 sym_hi - ok
17:53:39.0968 1132 sym_u3 - ok
17:53:40.0000 1132 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
17:53:40.0015 1132 sysaudio - ok
17:53:40.0046 1132 tandpl (126d7b3b4c7b724491c604060e1f4e14) C:\WINDOWS\system32\drivers\tandpl.sys
17:53:40.0062 1132 tandpl - ok
17:53:40.0109 1132 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:53:40.0109 1132 Tcpip - ok
17:53:40.0140 1132 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
17:53:40.0140 1132 TDPIPE - ok
17:53:40.0171 1132 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
17:53:40.0171 1132 TDTCP - ok
17:53:40.0218 1132 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
17:53:40.0218 1132 TermDD - ok
17:53:40.0234 1132 TosIde - ok
17:53:40.0265 1132 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
17:53:40.0265 1132 Udfs - ok
17:53:40.0265 1132 ultra - ok
17:53:40.0328 1132 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
17:53:40.0328 1132 Update - ok
17:53:40.0359 1132 USBAAPL (c1ca131f4e3ed63d6bc89a35ffad4cda) C:\WINDOWS\system32\Drivers\usbaapl.sys
17:53:40.0359 1132 USBAAPL - ok
17:53:40.0390 1132 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:53:40.0390 1132 usbccgp - ok
17:53:40.0421 1132 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:53:40.0437 1132 usbehci - ok
17:53:40.0453 1132 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:53:40.0453 1132 usbhub - ok
17:53:40.0484 1132 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
17:53:40.0484 1132 usbscan - ok
17:53:40.0515 1132 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:53:40.0515 1132 USBSTOR - ok
17:53:40.0546 1132 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:53:40.0546 1132 usbuhci - ok
17:53:40.0578 1132 VBoxNetAdp (226cd9e42be28a84ec56430fbb57224f) C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys
17:53:40.0578 1132 VBoxNetAdp - ok
17:53:40.0593 1132 VBoxNetFlt - ok
17:53:40.0625 1132 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
17:53:40.0625 1132 VgaSave - ok
17:53:40.0640 1132 ViaIde - ok
17:53:40.0671 1132 VolSnap (9946cfcc7e445e1d846db748299724eb) C:\WINDOWS\system32\drivers\VolSnap.sys
17:53:40.0671 1132 VolSnap - ok
17:53:40.0703 1132 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:53:40.0703 1132 Wanarp - ok
17:53:40.0718 1132 WDICA - ok
17:53:40.0765 1132 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
17:53:40.0765 1132 wdmaud - ok
17:53:40.0812 1132 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
17:53:40.0812 1132 WSTCODEC - ok
17:53:40.0828 1132 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
17:53:40.0843 1132 WudfPf - ok
17:53:40.0843 1132 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
17:53:40.0843 1132 WudfRd - ok
17:53:40.0890 1132 xnacc (a668f64fe42b3b0d8d87ecad14963b00) C:\WINDOWS\system32\DRIVERS\xnacc.sys
17:53:40.0921 1132 xnacc - ok
17:53:40.0968 1132 ZSMC301b (1e41295eac56589efd9dc3ca14bf3fec) C:\WINDOWS\system32\Drivers\usbVM31b.sys
17:53:40.0968 1132 ZSMC301b - ok
17:53:40.0984 1132 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
17:53:41.0140 1132 \Device\Harddisk0\DR0 - ok
17:53:41.0140 1132 Boot (0x1200) (7b049e2c301d82fb79229dcfc30eaeee) \Device\Harddisk0\DR0\Partition0
17:53:41.0140 1132 \Device\Harddisk0\DR0\Partition0 - ok
17:53:41.0156 1132 Boot (0x1200) (1eb5c5633b61fc0bf02fd5bdb9b00e15) \Device\Harddisk0\DR0\Partition1
17:53:41.0156 1132 \Device\Harddisk0\DR0\Partition1 - ok
17:53:41.0156 1132 ============================================================
17:53:41.0156 1132 Scan finished
17:53:41.0156 1132 ============================================================
17:53:41.0171 2732 Detected object count: 0
17:53:41.0171 2732 Actual detected object count: 0
18:00:03.0531 2540 ============================================================
18:00:03.0531 2540 Scan started
18:00:03.0531 2540 Mode: Manual;
18:00:03.0531 2540 ============================================================
18:00:03.0937 2540 Abiosdsk - ok
18:00:03.0953 2540 abp480n5 - ok
18:00:04.0000 2540 ACPI (5482ff197e59b4ca97ccb1b4740a2949) C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:00:04.0000 2540 ACPI - ok
18:00:04.0031 2540 ACPIEC (582c901174a7f0733c6fe41c37c9a80b) C:\WINDOWS\system32\drivers\ACPIEC.sys
18:00:04.0031 2540 ACPIEC - ok
18:00:04.0046 2540 adpu160m - ok
18:00:04.0109 2540 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
18:00:04.0109 2540 aec - ok
18:00:04.0140 2540 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
18:00:04.0140 2540 AFD - ok
18:00:04.0156 2540 Aha154x - ok
18:00:04.0156 2540 aic78u2 - ok
18:00:04.0171 2540 aic78xx - ok
18:00:04.0187 2540 AliIde - ok
18:00:04.0203 2540 amsint - ok
18:00:04.0234 2540 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
18:00:04.0234 2540 Arp1394 - ok
18:00:04.0250 2540 asc - ok
18:00:04.0265 2540 asc3350p - ok
18:00:04.0265 2540 asc3550 - ok
18:00:04.0312 2540 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:00:04.0312 2540 AsyncMac - ok
18:00:04.0343 2540 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
18:00:04.0343 2540 atapi - ok
18:00:04.0375 2540 AtcL001 (19f277bc4ce5689f20f347a6b8aa8c42) C:\WINDOWS\system32\DRIVERS\atl01_xp.sys
18:00:04.0375 2540 AtcL001 - ok
18:00:04.0375 2540 Atdisk - ok
18:00:04.0546 2540 ati2mtag (0997918a56a6e09ddf7bdfc0ebe8a99d) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
18:00:04.0593 2540 ati2mtag - ok
18:00:04.0625 2540 AtiHDAudioService (bd9ca8136738040d3257363ed12be693) C:\WINDOWS\system32\drivers\AtihdXP3.sys
18:00:04.0625 2540 AtiHDAudioService - ok
18:00:04.0671 2540 AtiHdmiService (dc6957811ff95f2dd3004361b20d8d3f) C:\WINDOWS\system32\drivers\AtiHdmi.sys
18:00:04.0671 2540 AtiHdmiService - ok
18:00:04.0703 2540 atksgt (f0d933b42cd0594048e4d5200ae9e417) C:\WINDOWS\system32\DRIVERS\atksgt.sys
18:00:04.0703 2540 atksgt - ok
18:00:04.0734 2540 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:00:04.0734 2540 Atmarpc - ok
18:00:04.0750 2540 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
18:00:04.0765 2540 audstub - ok
18:00:04.0781 2540 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
18:00:04.0781 2540 Beep - ok
18:00:04.0812 2540 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
18:00:04.0812 2540 cbidf2k - ok
18:00:04.0843 2540 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
18:00:04.0843 2540 CCDECODE - ok
18:00:04.0859 2540 cd20xrnt - ok
18:00:04.0890 2540 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
18:00:04.0890 2540 Cdaudio - ok
18:00:04.0921 2540 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
18:00:04.0921 2540 Cdfs - ok
18:00:04.0953 2540 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:00:04.0953 2540 Cdrom - ok
18:00:04.0953 2540 Changer - ok
18:00:04.0968 2540 CmdIde - ok
18:00:04.0984 2540 Cpqarray - ok
18:00:05.0000 2540 dac2w2k - ok
18:00:05.0000 2540 dac960nt - ok
18:00:05.0031 2540 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
18:00:05.0031 2540 Disk - ok
18:00:05.0125 2540 dmboot (ae717be311722ceebd9a27b57757a123) C:\WINDOWS\system32\drivers\dmboot.sys
18:00:05.0125 2540 dmboot - ok
18:00:05.0187 2540 dmio (66b7462ad4844052d4a6cbea3aa486a0) C:\WINDOWS\system32\drivers\dmio.sys
18:00:05.0187 2540 dmio - ok
18:00:05.0218 2540 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
18:00:05.0218 2540 dmload - ok
18:00:05.0250 2540 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
18:00:05.0250 2540 DMusic - ok
18:00:05.0265 2540 dpti2o - ok
18:00:05.0296 2540 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
18:00:05.0296 2540 drmkaud - ok
18:00:05.0328 2540 enodpl (b4556f3d468c8dcb0b259d9d866cd4c4) C:\WINDOWS\system32\drivers\enodpl.sys
18:00:05.0328 2540 enodpl - ok
18:00:05.0390 2540 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
18:00:05.0390 2540 Fastfat - ok
18:00:05.0421 2540 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
18:00:05.0421 2540 Fdc - ok
18:00:05.0437 2540 Fips (0986fca8fd7a56d9f1628fe6ef321090) C:\WINDOWS\system32\drivers\Fips.sys
18:00:05.0437 2540 Fips - ok
18:00:05.0468 2540 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
18:00:05.0468 2540 Flpydisk - ok
18:00:05.0515 2540 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
18:00:05.0515 2540 FltMgr - ok
18:00:05.0546 2540 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:00:05.0546 2540 Fs_Rec - ok
18:00:05.0578 2540 Ftdisk (44225407f69666099c4d4c6bc9cd804d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:00:05.0578 2540 Ftdisk - ok
18:00:05.0609 2540 GEARAspiWDM (ab8a6a87d9d7255c3884d5b9541a6e80) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
18:00:05.0609 2540 GEARAspiWDM - ok
18:00:05.0656 2540 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:00:05.0656 2540 Gpc - ok
18:00:05.0687 2540 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:00:05.0687 2540 HDAudBus - ok
18:00:05.0718 2540 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:00:05.0718 2540 hidusb - ok
18:00:05.0734 2540 hpn - ok
18:00:05.0812 2540 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
18:00:05.0812 2540 HTTP - ok
18:00:05.0843 2540 hwdatacard (200ab8daf659c7324601fcc824d7f910) C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys
18:00:05.0843 2540 hwdatacard - ok
18:00:05.0875 2540 hwpsgt (a439ebd90afdb1f516c875b9b317832f) C:\WINDOWS\system32\DRIVERS\hwpsgt.sys
18:00:05.0875 2540 hwpsgt - ok
18:00:05.0890 2540 i2omgmt - ok
18:00:05.0906 2540 i2omp - ok
18:00:05.0937 2540 i8042prt (d7947ecf17544ced478bd969939db349) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:00:05.0937 2540 i8042prt - ok
18:00:05.0984 2540 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
18:00:05.0984 2540 Imapi - ok
18:00:06.0000 2540 ini910u - ok
18:00:06.0109 2540 IntcAzAudAddService (cbddab14249b2f05407fc09ab8fffb88) C:\WINDOWS\system32\drivers\RtkHDAud.sys
18:00:06.0140 2540 IntcAzAudAddService - ok
18:00:06.0140 2540 IntelIde - ok
18:00:06.0187 2540 intelppm (5182797825b78faba84f7a82603e212d) C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:00:06.0187 2540 intelppm - ok
18:00:06.0218 2540 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
18:00:06.0218 2540 Ip6Fw - ok
18:00:06.0265 2540 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:00:06.0265 2540 IpFilterDriver - ok
18:00:06.0312 2540 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:00:06.0312 2540 IpInIp - ok
18:00:06.0343 2540 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:00:06.0343 2540 IpNat - ok
18:00:06.0390 2540 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:00:06.0390 2540 IPSec - ok
18:00:06.0421 2540 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
18:00:06.0421 2540 IRENUM - ok
18:00:06.0453 2540 isapnp (3685529caa2b14c9632e85e265ba293b) C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:00:06.0453 2540 isapnp - ok
18:00:06.0484 2540 Kbdclass (51d3342d1a0c19605095405352bb009b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:00:06.0484 2540 Kbdclass - ok
18:00:06.0500 2540 kbdhid (eb1720313b4fd571654926a80e610c20) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:00:06.0500 2540 kbdhid - ok
18:00:06.0531 2540 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
18:00:06.0546 2540 kmixer - ok
18:00:06.0562 2540 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
18:00:06.0562 2540 KSecDD - ok
18:00:06.0578 2540 lbrtfdc - ok
18:00:06.0609 2540 lemsgt (057da656166893842dd401c25a058c4e) C:\WINDOWS\system32\DRIVERS\lemsgt.sys
18:00:06.0609 2540 lemsgt - ok
18:00:06.0640 2540 lirsgt (f8a7212d0864ef5e9185fb95e6623f4d) C:\WINDOWS\system32\DRIVERS\lirsgt.sys
18:00:06.0640 2540 lirsgt - ok
18:00:06.0656 2540 mcdbus - ok
18:00:06.0687 2540 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
18:00:06.0687 2540 mnmdd - ok
18:00:06.0718 2540 Modem (226b93eb15b1c819fa021a5167c5809d) C:\WINDOWS\system32\drivers\Modem.sys
18:00:06.0718 2540 Modem - ok
18:00:06.0750 2540 Mouclass (705cac1902dcd3e3181a199d7ad40d13) C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:00:06.0750 2540 Mouclass - ok
18:00:06.0781 2540 mouhid (6a79cb27d0e608a45638cd9468269a3e) C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:00:06.0781 2540 mouhid - ok
18:00:06.0828 2540 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
18:00:06.0828 2540 MountMgr - ok
18:00:06.0859 2540 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
18:00:06.0859 2540 MpFilter - ok
18:00:06.0937 2540 MpKslbd6bbb49 (a69630d039c38018689190234f866d77) C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\MpKslbd6bbb49.sys
18:00:06.0937 2540 MpKslbd6bbb49 - ok
18:00:06.0953 2540 mraid35x - ok
18:00:07.0000 2540 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:00:07.0000 2540 MRxDAV - ok
18:00:07.0046 2540 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:00:07.0046 2540 MRxSmb - ok
18:00:07.0078 2540 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
18:00:07.0078 2540 Msfs - ok
18:00:07.0109 2540 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:00:07.0125 2540 MSKSSRV - ok
18:00:07.0140 2540 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:00:07.0140 2540 MSPCLOCK - ok
18:00:07.0171 2540 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
18:00:07.0171 2540 MSPQM - ok
18:00:07.0203 2540 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:00:07.0203 2540 mssmbios - ok
18:00:07.0234 2540 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
18:00:07.0234 2540 MSTEE - ok
18:00:07.0250 2540 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
18:00:07.0250 2540 MTsensor - ok
18:00:07.0281 2540 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
18:00:07.0296 2540 Mup - ok
18:00:07.0328 2540 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
18:00:07.0328 2540 NABTSFEC - ok
18:00:07.0375 2540 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
18:00:07.0375 2540 NDIS - ok
18:00:07.0406 2540 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
18:00:07.0406 2540 NdisIP - ok
18:00:07.0437 2540 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:00:07.0437 2540 NdisTapi - ok
18:00:07.0468 2540 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:00:07.0468 2540 Ndisuio - ok
18:00:07.0500 2540 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:00:07.0500 2540 NdisWan - ok
18:00:07.0531 2540 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
18:00:07.0531 2540 NDProxy - ok
18:00:07.0562 2540 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
18:00:07.0562 2540 NetBIOS - ok
18:00:07.0609 2540 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
18:00:07.0609 2540 NetBT - ok
18:00:07.0656 2540 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
18:00:07.0656 2540 NIC1394 - ok
18:00:07.0687 2540 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
18:00:07.0687 2540 Npfs - ok
18:00:07.0718 2540 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
18:00:07.0718 2540 Ntfs - ok
18:00:07.0734 2540 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
18:00:07.0734 2540 Null - ok
18:00:07.0765 2540 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:00:07.0765 2540 NwlnkFlt - ok
18:00:07.0796 2540 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:00:07.0796 2540 NwlnkFwd - ok
18:00:07.0828 2540 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
18:00:07.0828 2540 ohci1394 - ok
18:00:07.0875 2540 Parport (632f154061074a9a1b75ecbba89d8d42) C:\WINDOWS\system32\drivers\Parport.sys
18:00:07.0875 2540 Parport - ok
18:00:07.0906 2540 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
18:00:07.0906 2540 PartMgr - ok
18:00:07.0937 2540 ParVdm (4df92a889e7fe15ed3834d288a0271f5) C:\WINDOWS\system32\drivers\ParVdm.sys
18:00:07.0937 2540 ParVdm - ok
18:00:07.0968 2540 PCI (b4a9c91cfdd5c68e2e48c0754e3a88f9) C:\WINDOWS\system32\DRIVERS\pci.sys
18:00:07.0968 2540 PCI - ok
18:00:07.0984 2540 PCIDump - ok
18:00:08.0000 2540 PCIIde (fbf3cc42488fd2ce49f9427240cd5809) C:\WINDOWS\system32\DRIVERS\pciide.sys
18:00:08.0000 2540 PCIIde - ok
18:00:08.0046 2540 Pcmcia (3defb381b9cdca9d4375bd37a3c0189b) C:\WINDOWS\system32\drivers\Pcmcia.sys
18:00:08.0046 2540 Pcmcia - ok
18:00:08.0062 2540 PDCOMP - ok
18:00:08.0078 2540 PDFRAME - ok
18:00:08.0078 2540 PDRELI - ok
18:00:08.0093 2540 PDRFRAME - ok
18:00:08.0109 2540 perc2 - ok
18:00:08.0125 2540 perc2hib - ok
18:00:08.0171 2540 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:00:08.0171 2540 PptpMiniport - ok
18:00:08.0203 2540 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
18:00:08.0203 2540 PSched - ok
18:00:08.0234 2540 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:00:08.0234 2540 Ptilink - ok
18:00:08.0265 2540 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:00:08.0265 2540 PxHelp20 - ok
18:00:08.0265 2540 ql1080 - ok
18:00:08.0281 2540 Ql10wnt - ok
18:00:08.0296 2540 ql12160 - ok
18:00:08.0296 2540 ql1240 - ok
18:00:08.0312 2540 ql1280 - ok
18:00:08.0343 2540 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:00:08.0343 2540 RasAcd - ok
18:00:08.0359 2540 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:00:08.0359 2540 Rasl2tp - ok
18:00:08.0390 2540 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:00:08.0390 2540 RasPppoe - ok
18:00:08.0421 2540 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
18:00:08.0421 2540 Raspti - ok
18:00:08.0468 2540 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:00:08.0468 2540 Rdbss - ok
18:00:08.0484 2540 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:00:08.0484 2540 RDPCDD - ok
18:00:08.0531 2540 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
18:00:08.0531 2540 RDPWD - ok
18:00:08.0578 2540 redbook (3c706fd765482112c3a6d42e1d7b58bb) C:\WINDOWS\system32\DRIVERS\redbook.sys
18:00:08.0578 2540 redbook - ok
18:00:08.0609 2540 SCDEmu (612a3d69e603dbbe5c3c1079186a0393) C:\WINDOWS\system32\drivers\SCDEmu.sys
18:00:08.0609 2540 SCDEmu - ok
18:00:08.0640 2540 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:00:08.0640 2540 Secdrv - ok
18:00:08.0671 2540 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
18:00:08.0671 2540 serenum - ok
18:00:08.0703 2540 Serial (87df40b4db611efbdf74c9b3eccab417) C:\WINDOWS\system32\DRIVERS\serial.sys
18:00:08.0703 2540 Serial - ok
18:00:08.0734 2540 sfdrv01 (4c0d673281178cb496011a2e28571fc8) C:\WINDOWS\system32\drivers\sfdrv01.sys
18:00:08.0734 2540 sfdrv01 - ok
18:00:08.0765 2540 sfhlp02 (15be2b5e4dc5b8623cf167720682abc9) C:\WINDOWS\system32\drivers\sfhlp02.sys
18:00:08.0765 2540 sfhlp02 - ok
18:00:08.0796 2540 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
18:00:08.0796 2540 Sfloppy - ok
18:00:08.0812 2540 sfvfs02 (d5a7e09d2c6a702809e49190d52adc9f) C:\WINDOWS\system32\drivers\sfvfs02.sys
18:00:08.0812 2540 sfvfs02 - ok
18:00:08.0828 2540 Simbad - ok
18:00:08.0843 2540 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
18:00:08.0843 2540 SLIP - ok
18:00:08.0953 2540 sony_ssm.sys - ok
18:00:08.0953 2540 Sparrow - ok
18:00:08.0984 2540 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
18:00:08.0984 2540 splitter - ok
18:00:09.0000 2540 sptd - ok
18:00:09.0046 2540 sr (38e904fb6139945822b929eaf2570ca5) C:\WINDOWS\system32\DRIVERS\sr.sys
18:00:09.0046 2540 sr - ok
18:00:09.0078 2540 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
18:00:09.0078 2540 Srv - ok
18:00:09.0125 2540 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
18:00:09.0125 2540 streamip - ok
18:00:09.0140 2540 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
18:00:09.0140 2540 swenum - ok
18:00:09.0187 2540 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
18:00:09.0187 2540 swmidi - ok
18:00:09.0187 2540 symc810 - ok
18:00:09.0203 2540 symc8xx - ok
18:00:09.0218 2540 sym_hi - ok
18:00:09.0234 2540 sym_u3 - ok
18:00:09.0265 2540 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
18:00:09.0265 2540 sysaudio - ok
18:00:09.0296 2540 tandpl (126d7b3b4c7b724491c604060e1f4e14) C:\WINDOWS\system32\drivers\tandpl.sys
18:00:09.0296 2540 tandpl - ok
18:00:09.0328 2540 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:00:09.0328 2540 Tcpip - ok
18:00:09.0375 2540 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
18:00:09.0375 2540 TDPIPE - ok
18:00:09.0406 2540 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
18:00:09.0406 2540 TDTCP - ok
18:00:09.0437 2540 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
18:00:09.0437 2540 TermDD - ok
18:00:09.0453 2540 TosIde - ok
18:00:09.0484 2540 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
18:00:09.0484 2540 Udfs - ok
18:00:09.0500 2540 ultra - ok
18:00:09.0562 2540 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
18:00:09.0562 2540 Update - ok
18:00:09.0593 2540 USBAAPL (c1ca131f4e3ed63d6bc89a35ffad4cda) C:\WINDOWS\system32\Drivers\usbaapl.sys
18:00:09.0593 2540 USBAAPL - ok
18:00:09.0640 2540 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:00:09.0640 2540 usbccgp - ok
18:00:09.0671 2540 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:00:09.0671 2540 usbehci - ok
18:00:09.0703 2540 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:00:09.0703 2540 usbhub - ok
18:00:09.0718 2540 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:00:09.0718 2540 usbscan - ok
18:00:09.0750 2540 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:00:09.0750 2540 USBSTOR - ok
18:00:09.0781 2540 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:00:09.0781 2540 usbuhci - ok
18:00:09.0812 2540 VBoxNetAdp (226cd9e42be28a84ec56430fbb57224f) C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys
18:00:09.0812 2540 VBoxNetAdp - ok
18:00:09.0828 2540 VBoxNetFlt - ok
18:00:09.0859 2540 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
18:00:09.0859 2540 VgaSave - ok
18:00:09.0875 2540 ViaIde - ok
18:00:09.0906 2540 VolSnap (9946cfcc7e445e1d846db748299724eb) C:\WINDOWS\system32\drivers\VolSnap.sys
18:00:09.0906 2540 VolSnap - ok
18:00:09.0937 2540 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:00:09.0937 2540 Wanarp - ok
18:00:09.0953 2540 WDICA - ok
18:00:10.0000 2540 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
18:00:10.0000 2540 wdmaud - ok
18:00:10.0046 2540 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
18:00:10.0046 2540 WSTCODEC - ok
18:00:10.0078 2540 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
18:00:10.0078 2540 WudfPf - ok
18:00:10.0093 2540 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
18:00:10.0093 2540 WudfRd - ok
18:00:10.0140 2540 xnacc (a668f64fe42b3b0d8d87ecad14963b00) C:\WINDOWS\system32\DRIVERS\xnacc.sys
18:00:10.0140 2540 xnacc - ok
18:00:10.0171 2540 ZSMC301b (1e41295eac56589efd9dc3ca14bf3fec) C:\WINDOWS\system32\Drivers\usbVM31b.sys
18:00:10.0171 2540 ZSMC301b - ok
18:00:10.0187 2540 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
18:00:10.0328 2540 \Device\Harddisk0\DR0 - ok
18:00:10.0328 2540 Boot (0x1200) (7b049e2c301d82fb79229dcfc30eaeee) \Device\Harddisk0\DR0\Partition0
18:00:10.0328 2540 \Device\Harddisk0\DR0\Partition0 - ok
18:00:10.0343 2540 Boot (0x1200) (1eb5c5633b61fc0bf02fd5bdb9b00e15) \Device\Harddisk0\DR0\Partition1
18:00:10.0343 2540 \Device\Harddisk0\DR0\Partition1 - ok
18:00:10.0343 2540 ============================================================
18:00:10.0343 2540 Scan finished
18:00:10.0343 2540 ============================================================
18:00:10.0359 0692 Detected object count: 0
18:00:10.0359 0692 Actual detected object count: 0
18:03:37.0843 2696 Deinitialize success


csüt. feb. 23, 2012 20:00
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
Ok, Rootkit fertozest nincsen,, de futtasd le a combofixet, es meglatom mi van,
http://www.virus-stell.com/2010/04/combofix.html


csüt. feb. 23, 2012 19:34
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. nov. 05, 2009 15:10
Hozzászólások: 116
Tartózkodási hely: Hungary
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
Arra emlékszem régen is, hogy mindig igazad volt :)

És igen ez WIN XP Home Edition SP3, és most már feltelepítettem az IE8-at is.

Itt van:

17:53:25.0890 0896 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
17:53:26.0078 0896 ============================================================
17:53:26.0078 0896 Current date / time: 2012/02/23 17:53:26.0078
17:53:26.0078 0896 SystemInfo:
17:53:26.0078 0896
17:53:26.0078 0896 OS Version: 5.1.2600 ServicePack: 3.0
17:53:26.0078 0896 Product type: Workstation
17:53:26.0078 0896 ComputerName: ATI
17:53:26.0078 0896 UserName: nagy
17:53:26.0078 0896 Windows directory: C:\WINDOWS
17:53:26.0078 0896 System windows directory: C:\WINDOWS
17:53:26.0078 0896 Processor architecture: Intel x86
17:53:26.0078 0896 Number of processors: 2
17:53:26.0078 0896 Page size: 0x1000
17:53:26.0078 0896 Boot type: Normal boot
17:53:26.0078 0896 ============================================================
17:53:27.0875 0896 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
17:53:27.0890 0896 \Device\Harddisk0\DR0:
17:53:27.0890 0896 MBR used
17:53:27.0890 0896 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC34F28D
17:53:27.0906 0896 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xC34F30B, BlocksNum 0x190DA4F5
17:53:28.0000 0896 Initialize success
17:53:28.0000 0896 ============================================================
17:53:33.0640 1132 ============================================================
17:53:33.0640 1132 Scan started
17:53:33.0640 1132 Mode: Manual;
17:53:33.0640 1132 ============================================================
17:53:34.0296 1132 Abiosdsk - ok
17:53:34.0296 1132 abp480n5 - ok
17:53:34.0359 1132 ACPI (5482ff197e59b4ca97ccb1b4740a2949) C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:53:34.0359 1132 ACPI - ok
17:53:34.0375 1132 ACPIEC (582c901174a7f0733c6fe41c37c9a80b) C:\WINDOWS\system32\drivers\ACPIEC.sys
17:53:34.0375 1132 ACPIEC - ok
17:53:34.0390 1132 adpu160m - ok
17:53:34.0437 1132 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
17:53:34.0437 1132 aec - ok
17:53:34.0468 1132 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
17:53:34.0468 1132 AFD - ok
17:53:34.0484 1132 Aha154x - ok
17:53:34.0500 1132 aic78u2 - ok
17:53:34.0500 1132 aic78xx - ok
17:53:34.0515 1132 AliIde - ok
17:53:34.0531 1132 amsint - ok
17:53:34.0562 1132 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
17:53:34.0562 1132 Arp1394 - ok
17:53:34.0578 1132 asc - ok
17:53:34.0578 1132 asc3350p - ok
17:53:34.0593 1132 asc3550 - ok
17:53:34.0609 1132 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:53:34.0609 1132 AsyncMac - ok
17:53:34.0640 1132 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
17:53:34.0640 1132 atapi - ok
17:53:34.0671 1132 AtcL001 (19f277bc4ce5689f20f347a6b8aa8c42) C:\WINDOWS\system32\DRIVERS\atl01_xp.sys
17:53:34.0671 1132 AtcL001 - ok
17:53:34.0687 1132 Atdisk - ok
17:53:34.0859 1132 ati2mtag (0997918a56a6e09ddf7bdfc0ebe8a99d) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
17:53:34.0937 1132 ati2mtag - ok
17:53:34.0984 1132 AtiHDAudioService (bd9ca8136738040d3257363ed12be693) C:\WINDOWS\system32\drivers\AtihdXP3.sys
17:53:34.0984 1132 AtiHDAudioService - ok
17:53:35.0015 1132 AtiHdmiService (dc6957811ff95f2dd3004361b20d8d3f) C:\WINDOWS\system32\drivers\AtiHdmi.sys
17:53:35.0015 1132 AtiHdmiService - ok
17:53:35.0046 1132 atksgt (f0d933b42cd0594048e4d5200ae9e417) C:\WINDOWS\system32\DRIVERS\atksgt.sys
17:53:35.0046 1132 atksgt - ok
17:53:35.0093 1132 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:53:35.0093 1132 Atmarpc - ok
17:53:35.0109 1132 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
17:53:35.0109 1132 audstub - ok
17:53:35.0140 1132 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
17:53:35.0140 1132 Beep - ok
17:53:35.0187 1132 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
17:53:35.0187 1132 cbidf2k - ok
17:53:35.0203 1132 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
17:53:35.0218 1132 CCDECODE - ok
17:53:35.0218 1132 cd20xrnt - ok
17:53:35.0250 1132 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
17:53:35.0250 1132 Cdaudio - ok
17:53:35.0281 1132 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
17:53:35.0281 1132 Cdfs - ok
17:53:35.0312 1132 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:53:35.0312 1132 Cdrom - ok
17:53:35.0328 1132 Changer - ok
17:53:35.0343 1132 CmdIde - ok
17:53:35.0343 1132 Cpqarray - ok
17:53:35.0359 1132 dac2w2k - ok
17:53:35.0375 1132 dac960nt - ok
17:53:35.0406 1132 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
17:53:35.0406 1132 Disk - ok
17:53:35.0484 1132 dmboot (ae717be311722ceebd9a27b57757a123) C:\WINDOWS\system32\drivers\dmboot.sys
17:53:35.0500 1132 dmboot - ok
17:53:35.0562 1132 dmio (66b7462ad4844052d4a6cbea3aa486a0) C:\WINDOWS\system32\drivers\dmio.sys
17:53:35.0562 1132 dmio - ok
17:53:35.0593 1132 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
17:53:35.0593 1132 dmload - ok
17:53:35.0625 1132 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
17:53:35.0625 1132 DMusic - ok
17:53:35.0640 1132 dpti2o - ok
17:53:35.0656 1132 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
17:53:35.0656 1132 drmkaud - ok
17:53:35.0687 1132 enodpl (b4556f3d468c8dcb0b259d9d866cd4c4) C:\WINDOWS\system32\drivers\enodpl.sys
17:53:35.0703 1132 enodpl - ok
17:53:35.0750 1132 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
17:53:35.0765 1132 Fastfat - ok
17:53:35.0781 1132 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
17:53:35.0781 1132 Fdc - ok
17:53:35.0812 1132 Fips (0986fca8fd7a56d9f1628fe6ef321090) C:\WINDOWS\system32\drivers\Fips.sys
17:53:35.0812 1132 Fips - ok
17:53:35.0843 1132 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
17:53:35.0843 1132 Flpydisk - ok
17:53:35.0906 1132 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
17:53:35.0906 1132 FltMgr - ok
17:53:35.0937 1132 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:53:35.0937 1132 Fs_Rec - ok
17:53:35.0968 1132 Ftdisk (44225407f69666099c4d4c6bc9cd804d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:53:35.0968 1132 Ftdisk - ok
17:53:36.0000 1132 GEARAspiWDM (ab8a6a87d9d7255c3884d5b9541a6e80) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
17:53:36.0000 1132 GEARAspiWDM - ok
17:53:36.0031 1132 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:53:36.0046 1132 Gpc - ok
17:53:36.0078 1132 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
17:53:36.0078 1132 HDAudBus - ok
17:53:36.0125 1132 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:53:36.0125 1132 hidusb - ok
17:53:36.0140 1132 hpn - ok
17:53:36.0203 1132 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
17:53:36.0218 1132 HTTP - ok
17:53:36.0250 1132 hwdatacard (200ab8daf659c7324601fcc824d7f910) C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys
17:53:36.0250 1132 hwdatacard - ok
17:53:36.0281 1132 hwpsgt (a439ebd90afdb1f516c875b9b317832f) C:\WINDOWS\system32\DRIVERS\hwpsgt.sys
17:53:36.0296 1132 hwpsgt - ok
17:53:36.0296 1132 i2omgmt - ok
17:53:36.0312 1132 i2omp - ok
17:53:36.0343 1132 i8042prt (d7947ecf17544ced478bd969939db349) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:53:36.0343 1132 i8042prt - ok
17:53:36.0390 1132 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
17:53:36.0390 1132 Imapi - ok
17:53:36.0406 1132 ini910u - ok
17:53:36.0515 1132 IntcAzAudAddService (cbddab14249b2f05407fc09ab8fffb88) C:\WINDOWS\system32\drivers\RtkHDAud.sys
17:53:36.0562 1132 IntcAzAudAddService - ok
17:53:36.0578 1132 IntelIde - ok
17:53:36.0609 1132 intelppm (5182797825b78faba84f7a82603e212d) C:\WINDOWS\system32\DRIVERS\intelppm.sys
17:53:36.0609 1132 intelppm - ok
17:53:36.0640 1132 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
17:53:36.0640 1132 Ip6Fw - ok
17:53:36.0687 1132 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:53:36.0687 1132 IpFilterDriver - ok
17:53:36.0734 1132 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:53:36.0734 1132 IpInIp - ok
17:53:36.0765 1132 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:53:36.0765 1132 IpNat - ok
17:53:36.0812 1132 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:53:36.0812 1132 IPSec - ok
17:53:36.0843 1132 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
17:53:36.0843 1132 IRENUM - ok
17:53:36.0875 1132 isapnp (3685529caa2b14c9632e85e265ba293b) C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:53:36.0875 1132 isapnp - ok
17:53:36.0906 1132 Kbdclass (51d3342d1a0c19605095405352bb009b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:53:36.0906 1132 Kbdclass - ok
17:53:36.0921 1132 kbdhid (eb1720313b4fd571654926a80e610c20) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
17:53:36.0937 1132 kbdhid - ok
17:53:36.0968 1132 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
17:53:36.0968 1132 kmixer - ok
17:53:37.0000 1132 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
17:53:37.0000 1132 KSecDD - ok
17:53:37.0015 1132 lbrtfdc - ok
17:53:37.0046 1132 lemsgt (057da656166893842dd401c25a058c4e) C:\WINDOWS\system32\DRIVERS\lemsgt.sys
17:53:37.0046 1132 lemsgt - ok
17:53:37.0078 1132 lirsgt (f8a7212d0864ef5e9185fb95e6623f4d) C:\WINDOWS\system32\DRIVERS\lirsgt.sys
17:53:37.0078 1132 lirsgt - ok
17:53:37.0093 1132 mcdbus - ok
17:53:37.0125 1132 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
17:53:37.0125 1132 mnmdd - ok
17:53:37.0156 1132 Modem (226b93eb15b1c819fa021a5167c5809d) C:\WINDOWS\system32\drivers\Modem.sys
17:53:37.0156 1132 Modem - ok
17:53:37.0187 1132 Mouclass (705cac1902dcd3e3181a199d7ad40d13) C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:53:37.0187 1132 Mouclass - ok
17:53:37.0218 1132 mouhid (6a79cb27d0e608a45638cd9468269a3e) C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:53:37.0218 1132 mouhid - ok
17:53:37.0265 1132 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
17:53:37.0265 1132 MountMgr - ok
17:53:37.0296 1132 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
17:53:37.0296 1132 MpFilter - ok
17:53:37.0390 1132 MpKslbd6bbb49 (a69630d039c38018689190234f866d77) C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\MpKslbd6bbb49.sys
17:53:37.0390 1132 MpKslbd6bbb49 - ok
17:53:37.0390 1132 mraid35x - ok
17:53:37.0453 1132 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:53:37.0453 1132 MRxDAV - ok
17:53:37.0500 1132 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:53:37.0500 1132 MRxSmb - ok
17:53:37.0546 1132 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
17:53:37.0546 1132 Msfs - ok
17:53:37.0578 1132 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:53:37.0578 1132 MSKSSRV - ok
17:53:37.0593 1132 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:53:37.0593 1132 MSPCLOCK - ok
17:53:37.0625 1132 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
17:53:37.0625 1132 MSPQM - ok
17:53:37.0656 1132 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:53:37.0656 1132 mssmbios - ok
17:53:37.0687 1132 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
17:53:37.0687 1132 MSTEE - ok
17:53:37.0718 1132 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
17:53:37.0718 1132 MTsensor - ok
17:53:37.0750 1132 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
17:53:37.0750 1132 Mup - ok
17:53:37.0781 1132 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
17:53:37.0781 1132 NABTSFEC - ok
17:53:37.0828 1132 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
17:53:37.0828 1132 NDIS - ok
17:53:37.0859 1132 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
17:53:37.0859 1132 NdisIP - ok
17:53:37.0890 1132 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:53:37.0890 1132 NdisTapi - ok
17:53:37.0921 1132 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:53:37.0921 1132 Ndisuio - ok
17:53:37.0968 1132 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:53:37.0968 1132 NdisWan - ok
17:53:38.0000 1132 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
17:53:38.0000 1132 NDProxy - ok
17:53:38.0031 1132 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
17:53:38.0031 1132 NetBIOS - ok
17:53:38.0078 1132 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
17:53:38.0078 1132 NetBT - ok
17:53:38.0125 1132 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
17:53:38.0125 1132 NIC1394 - ok
17:53:38.0171 1132 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
17:53:38.0171 1132 Npfs - ok
17:53:38.0218 1132 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
17:53:38.0234 1132 Ntfs - ok
17:53:38.0250 1132 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
17:53:38.0250 1132 Null - ok
17:53:38.0281 1132 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:53:38.0281 1132 NwlnkFlt - ok
17:53:38.0312 1132 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:53:38.0312 1132 NwlnkFwd - ok
17:53:38.0343 1132 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
17:53:38.0343 1132 ohci1394 - ok
17:53:38.0390 1132 Parport (632f154061074a9a1b75ecbba89d8d42) C:\WINDOWS\system32\drivers\Parport.sys
17:53:38.0390 1132 Parport - ok
17:53:38.0421 1132 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
17:53:38.0421 1132 PartMgr - ok
17:53:38.0453 1132 ParVdm (4df92a889e7fe15ed3834d288a0271f5) C:\WINDOWS\system32\drivers\ParVdm.sys
17:53:38.0453 1132 ParVdm - ok
17:53:38.0484 1132 PCI (b4a9c91cfdd5c68e2e48c0754e3a88f9) C:\WINDOWS\system32\DRIVERS\pci.sys
17:53:38.0484 1132 PCI - ok
17:53:38.0484 1132 PCIDump - ok
17:53:38.0515 1132 PCIIde (fbf3cc42488fd2ce49f9427240cd5809) C:\WINDOWS\system32\DRIVERS\pciide.sys
17:53:38.0515 1132 PCIIde - ok
17:53:38.0562 1132 Pcmcia (3defb381b9cdca9d4375bd37a3c0189b) C:\WINDOWS\system32\drivers\Pcmcia.sys
17:53:38.0562 1132 Pcmcia - ok
17:53:38.0578 1132 PDCOMP - ok
17:53:38.0593 1132 PDFRAME - ok
17:53:38.0593 1132 PDRELI - ok
17:53:38.0609 1132 PDRFRAME - ok
17:53:38.0625 1132 perc2 - ok
17:53:38.0625 1132 perc2hib - ok
17:53:38.0687 1132 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:53:38.0687 1132 PptpMiniport - ok
17:53:38.0718 1132 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
17:53:38.0718 1132 PSched - ok
17:53:38.0750 1132 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:53:38.0750 1132 Ptilink - ok
17:53:38.0765 1132 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
17:53:38.0781 1132 PxHelp20 - ok
17:53:38.0781 1132 ql1080 - ok
17:53:38.0796 1132 Ql10wnt - ok
17:53:38.0812 1132 ql12160 - ok
17:53:38.0812 1132 ql1240 - ok
17:53:38.0828 1132 ql1280 - ok
17:53:38.0859 1132 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:53:38.0859 1132 RasAcd - ok
17:53:38.0875 1132 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:53:38.0875 1132 Rasl2tp - ok
17:53:38.0906 1132 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:53:38.0906 1132 RasPppoe - ok
17:53:39.0093 1132 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
17:53:39.0093 1132 Raspti - ok
17:53:39.0140 1132 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:53:39.0140 1132 Rdbss - ok
17:53:39.0171 1132 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:53:39.0171 1132 RDPCDD - ok
17:53:39.0218 1132 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
17:53:39.0218 1132 RDPWD - ok
17:53:39.0281 1132 redbook (3c706fd765482112c3a6d42e1d7b58bb) C:\WINDOWS\system32\DRIVERS\redbook.sys
17:53:39.0281 1132 redbook - ok
17:53:39.0312 1132 SCDEmu (612a3d69e603dbbe5c3c1079186a0393) C:\WINDOWS\system32\drivers\SCDEmu.sys
17:53:39.0312 1132 SCDEmu - ok
17:53:39.0328 1132 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:53:39.0328 1132 Secdrv - ok
17:53:39.0359 1132 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
17:53:39.0375 1132 serenum - ok
17:53:39.0390 1132 Serial (87df40b4db611efbdf74c9b3eccab417) C:\WINDOWS\system32\DRIVERS\serial.sys
17:53:39.0406 1132 Serial - ok
17:53:39.0437 1132 sfdrv01 (4c0d673281178cb496011a2e28571fc8) C:\WINDOWS\system32\drivers\sfdrv01.sys
17:53:39.0468 1132 sfdrv01 - ok
17:53:39.0484 1132 sfhlp02 (15be2b5e4dc5b8623cf167720682abc9) C:\WINDOWS\system32\drivers\sfhlp02.sys
17:53:39.0500 1132 sfhlp02 - ok
17:53:39.0515 1132 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
17:53:39.0515 1132 Sfloppy - ok
17:53:39.0546 1132 sfvfs02 (d5a7e09d2c6a702809e49190d52adc9f) C:\WINDOWS\system32\drivers\sfvfs02.sys
17:53:39.0562 1132 sfvfs02 - ok
17:53:39.0578 1132 Simbad - ok
17:53:39.0593 1132 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
17:53:39.0593 1132 SLIP - ok
17:53:39.0703 1132 sony_ssm.sys - ok
17:53:39.0718 1132 Sparrow - ok
17:53:39.0750 1132 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
17:53:39.0750 1132 splitter - ok
17:53:39.0750 1132 sptd - ok
17:53:39.0796 1132 sr (38e904fb6139945822b929eaf2570ca5) C:\WINDOWS\system32\DRIVERS\sr.sys
17:53:39.0796 1132 sr - ok
17:53:39.0828 1132 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
17:53:39.0843 1132 Srv - ok
17:53:39.0859 1132 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
17:53:39.0875 1132 streamip - ok
17:53:39.0890 1132 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
17:53:39.0890 1132 swenum - ok
17:53:39.0921 1132 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
17:53:39.0937 1132 swmidi - ok
17:53:39.0937 1132 symc810 - ok
17:53:39.0953 1132 symc8xx - ok
17:53:39.0968 1132 sym_hi - ok
17:53:39.0968 1132 sym_u3 - ok
17:53:40.0000 1132 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
17:53:40.0015 1132 sysaudio - ok
17:53:40.0046 1132 tandpl (126d7b3b4c7b724491c604060e1f4e14) C:\WINDOWS\system32\drivers\tandpl.sys
17:53:40.0062 1132 tandpl - ok
17:53:40.0109 1132 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:53:40.0109 1132 Tcpip - ok
17:53:40.0140 1132 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
17:53:40.0140 1132 TDPIPE - ok
17:53:40.0171 1132 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
17:53:40.0171 1132 TDTCP - ok
17:53:40.0218 1132 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
17:53:40.0218 1132 TermDD - ok
17:53:40.0234 1132 TosIde - ok
17:53:40.0265 1132 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
17:53:40.0265 1132 Udfs - ok
17:53:40.0265 1132 ultra - ok
17:53:40.0328 1132 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
17:53:40.0328 1132 Update - ok
17:53:40.0359 1132 USBAAPL (c1ca131f4e3ed63d6bc89a35ffad4cda) C:\WINDOWS\system32\Drivers\usbaapl.sys
17:53:40.0359 1132 USBAAPL - ok
17:53:40.0390 1132 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:53:40.0390 1132 usbccgp - ok
17:53:40.0421 1132 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:53:40.0437 1132 usbehci - ok
17:53:40.0453 1132 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:53:40.0453 1132 usbhub - ok
17:53:40.0484 1132 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
17:53:40.0484 1132 usbscan - ok
17:53:40.0515 1132 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:53:40.0515 1132 USBSTOR - ok
17:53:40.0546 1132 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:53:40.0546 1132 usbuhci - ok
17:53:40.0578 1132 VBoxNetAdp (226cd9e42be28a84ec56430fbb57224f) C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys
17:53:40.0578 1132 VBoxNetAdp - ok
17:53:40.0593 1132 VBoxNetFlt - ok
17:53:40.0625 1132 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
17:53:40.0625 1132 VgaSave - ok
17:53:40.0640 1132 ViaIde - ok
17:53:40.0671 1132 VolSnap (9946cfcc7e445e1d846db748299724eb) C:\WINDOWS\system32\drivers\VolSnap.sys
17:53:40.0671 1132 VolSnap - ok
17:53:40.0703 1132 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:53:40.0703 1132 Wanarp - ok
17:53:40.0718 1132 WDICA - ok
17:53:40.0765 1132 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
17:53:40.0765 1132 wdmaud - ok
17:53:40.0812 1132 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
17:53:40.0812 1132 WSTCODEC - ok
17:53:40.0828 1132 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
17:53:40.0843 1132 WudfPf - ok
17:53:40.0843 1132 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
17:53:40.0843 1132 WudfRd - ok
17:53:40.0890 1132 xnacc (a668f64fe42b3b0d8d87ecad14963b00) C:\WINDOWS\system32\DRIVERS\xnacc.sys
17:53:40.0921 1132 xnacc - ok
17:53:40.0968 1132 ZSMC301b (1e41295eac56589efd9dc3ca14bf3fec) C:\WINDOWS\system32\Drivers\usbVM31b.sys
17:53:40.0968 1132 ZSMC301b - ok
17:53:40.0984 1132 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
17:53:41.0140 1132 \Device\Harddisk0\DR0 - ok
17:53:41.0140 1132 Boot (0x1200) (7b049e2c301d82fb79229dcfc30eaeee) \Device\Harddisk0\DR0\Partition0
17:53:41.0140 1132 \Device\Harddisk0\DR0\Partition0 - ok
17:53:41.0156 1132 Boot (0x1200) (1eb5c5633b61fc0bf02fd5bdb9b00e15) \Device\Harddisk0\DR0\Partition1
17:53:41.0156 1132 \Device\Harddisk0\DR0\Partition1 - ok
17:53:41.0156 1132 ============================================================
17:53:41.0156 1132 Scan finished
17:53:41.0156 1132 ============================================================
17:53:41.0171 2732 Detected object count: 0
17:53:41.0171 2732 Actual detected object count: 0
18:00:03.0531 2540 ============================================================
18:00:03.0531 2540 Scan started
18:00:03.0531 2540 Mode: Manual;
18:00:03.0531 2540 ============================================================
18:00:03.0937 2540 Abiosdsk - ok
18:00:03.0953 2540 abp480n5 - ok
18:00:04.0000 2540 ACPI (5482ff197e59b4ca97ccb1b4740a2949) C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:00:04.0000 2540 ACPI - ok
18:00:04.0031 2540 ACPIEC (582c901174a7f0733c6fe41c37c9a80b) C:\WINDOWS\system32\drivers\ACPIEC.sys
18:00:04.0031 2540 ACPIEC - ok
18:00:04.0046 2540 adpu160m - ok
18:00:04.0109 2540 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
18:00:04.0109 2540 aec - ok
18:00:04.0140 2540 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
18:00:04.0140 2540 AFD - ok
18:00:04.0156 2540 Aha154x - ok
18:00:04.0156 2540 aic78u2 - ok
18:00:04.0171 2540 aic78xx - ok
18:00:04.0187 2540 AliIde - ok
18:00:04.0203 2540 amsint - ok
18:00:04.0234 2540 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
18:00:04.0234 2540 Arp1394 - ok
18:00:04.0250 2540 asc - ok
18:00:04.0265 2540 asc3350p - ok
18:00:04.0265 2540 asc3550 - ok
18:00:04.0312 2540 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:00:04.0312 2540 AsyncMac - ok
18:00:04.0343 2540 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
18:00:04.0343 2540 atapi - ok
18:00:04.0375 2540 AtcL001 (19f277bc4ce5689f20f347a6b8aa8c42) C:\WINDOWS\system32\DRIVERS\atl01_xp.sys
18:00:04.0375 2540 AtcL001 - ok
18:00:04.0375 2540 Atdisk - ok
18:00:04.0546 2540 ati2mtag (0997918a56a6e09ddf7bdfc0ebe8a99d) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
18:00:04.0593 2540 ati2mtag - ok
18:00:04.0625 2540 AtiHDAudioService (bd9ca8136738040d3257363ed12be693) C:\WINDOWS\system32\drivers\AtihdXP3.sys
18:00:04.0625 2540 AtiHDAudioService - ok
18:00:04.0671 2540 AtiHdmiService (dc6957811ff95f2dd3004361b20d8d3f) C:\WINDOWS\system32\drivers\AtiHdmi.sys
18:00:04.0671 2540 AtiHdmiService - ok
18:00:04.0703 2540 atksgt (f0d933b42cd0594048e4d5200ae9e417) C:\WINDOWS\system32\DRIVERS\atksgt.sys
18:00:04.0703 2540 atksgt - ok
18:00:04.0734 2540 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:00:04.0734 2540 Atmarpc - ok
18:00:04.0750 2540 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
18:00:04.0765 2540 audstub - ok
18:00:04.0781 2540 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
18:00:04.0781 2540 Beep - ok
18:00:04.0812 2540 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
18:00:04.0812 2540 cbidf2k - ok
18:00:04.0843 2540 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
18:00:04.0843 2540 CCDECODE - ok
18:00:04.0859 2540 cd20xrnt - ok
18:00:04.0890 2540 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
18:00:04.0890 2540 Cdaudio - ok
18:00:04.0921 2540 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
18:00:04.0921 2540 Cdfs - ok
18:00:04.0953 2540 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:00:04.0953 2540 Cdrom - ok
18:00:04.0953 2540 Changer - ok
18:00:04.0968 2540 CmdIde - ok
18:00:04.0984 2540 Cpqarray - ok
18:00:05.0000 2540 dac2w2k - ok
18:00:05.0000 2540 dac960nt - ok
18:00:05.0031 2540 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
18:00:05.0031 2540 Disk - ok
18:00:05.0125 2540 dmboot (ae717be311722ceebd9a27b57757a123) C:\WINDOWS\system32\drivers\dmboot.sys
18:00:05.0125 2540 dmboot - ok
18:00:05.0187 2540 dmio (66b7462ad4844052d4a6cbea3aa486a0) C:\WINDOWS\system32\drivers\dmio.sys
18:00:05.0187 2540 dmio - ok
18:00:05.0218 2540 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
18:00:05.0218 2540 dmload - ok
18:00:05.0250 2540 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
18:00:05.0250 2540 DMusic - ok
18:00:05.0265 2540 dpti2o - ok
18:00:05.0296 2540 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
18:00:05.0296 2540 drmkaud - ok
18:00:05.0328 2540 enodpl (b4556f3d468c8dcb0b259d9d866cd4c4) C:\WINDOWS\system32\drivers\enodpl.sys
18:00:05.0328 2540 enodpl - ok
18:00:05.0390 2540 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
18:00:05.0390 2540 Fastfat - ok
18:00:05.0421 2540 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
18:00:05.0421 2540 Fdc - ok
18:00:05.0437 2540 Fips (0986fca8fd7a56d9f1628fe6ef321090) C:\WINDOWS\system32\drivers\Fips.sys
18:00:05.0437 2540 Fips - ok
18:00:05.0468 2540 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
18:00:05.0468 2540 Flpydisk - ok
18:00:05.0515 2540 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
18:00:05.0515 2540 FltMgr - ok
18:00:05.0546 2540 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:00:05.0546 2540 Fs_Rec - ok
18:00:05.0578 2540 Ftdisk (44225407f69666099c4d4c6bc9cd804d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:00:05.0578 2540 Ftdisk - ok
18:00:05.0609 2540 GEARAspiWDM (ab8a6a87d9d7255c3884d5b9541a6e80) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
18:00:05.0609 2540 GEARAspiWDM - ok
18:00:05.0656 2540 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:00:05.0656 2540 Gpc - ok
18:00:05.0687 2540 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:00:05.0687 2540 HDAudBus - ok
18:00:05.0718 2540 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:00:05.0718 2540 hidusb - ok
18:00:05.0734 2540 hpn - ok
18:00:05.0812 2540 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
18:00:05.0812 2540 HTTP - ok
18:00:05.0843 2540 hwdatacard (200ab8daf659c7324601fcc824d7f910) C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys
18:00:05.0843 2540 hwdatacard - ok
18:00:05.0875 2540 hwpsgt (a439ebd90afdb1f516c875b9b317832f) C:\WINDOWS\system32\DRIVERS\hwpsgt.sys
18:00:05.0875 2540 hwpsgt - ok
18:00:05.0890 2540 i2omgmt - ok
18:00:05.0906 2540 i2omp - ok
18:00:05.0937 2540 i8042prt (d7947ecf17544ced478bd969939db349) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:00:05.0937 2540 i8042prt - ok
18:00:05.0984 2540 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
18:00:05.0984 2540 Imapi - ok
18:00:06.0000 2540 ini910u - ok
18:00:06.0109 2540 IntcAzAudAddService (cbddab14249b2f05407fc09ab8fffb88) C:\WINDOWS\system32\drivers\RtkHDAud.sys
18:00:06.0140 2540 IntcAzAudAddService - ok
18:00:06.0140 2540 IntelIde - ok
18:00:06.0187 2540 intelppm (5182797825b78faba84f7a82603e212d) C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:00:06.0187 2540 intelppm - ok
18:00:06.0218 2540 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
18:00:06.0218 2540 Ip6Fw - ok
18:00:06.0265 2540 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:00:06.0265 2540 IpFilterDriver - ok
18:00:06.0312 2540 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:00:06.0312 2540 IpInIp - ok
18:00:06.0343 2540 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:00:06.0343 2540 IpNat - ok
18:00:06.0390 2540 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:00:06.0390 2540 IPSec - ok
18:00:06.0421 2540 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
18:00:06.0421 2540 IRENUM - ok
18:00:06.0453 2540 isapnp (3685529caa2b14c9632e85e265ba293b) C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:00:06.0453 2540 isapnp - ok
18:00:06.0484 2540 Kbdclass (51d3342d1a0c19605095405352bb009b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:00:06.0484 2540 Kbdclass - ok
18:00:06.0500 2540 kbdhid (eb1720313b4fd571654926a80e610c20) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:00:06.0500 2540 kbdhid - ok
18:00:06.0531 2540 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
18:00:06.0546 2540 kmixer - ok
18:00:06.0562 2540 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
18:00:06.0562 2540 KSecDD - ok
18:00:06.0578 2540 lbrtfdc - ok
18:00:06.0609 2540 lemsgt (057da656166893842dd401c25a058c4e) C:\WINDOWS\system32\DRIVERS\lemsgt.sys
18:00:06.0609 2540 lemsgt - ok
18:00:06.0640 2540 lirsgt (f8a7212d0864ef5e9185fb95e6623f4d) C:\WINDOWS\system32\DRIVERS\lirsgt.sys
18:00:06.0640 2540 lirsgt - ok
18:00:06.0656 2540 mcdbus - ok
18:00:06.0687 2540 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
18:00:06.0687 2540 mnmdd - ok
18:00:06.0718 2540 Modem (226b93eb15b1c819fa021a5167c5809d) C:\WINDOWS\system32\drivers\Modem.sys
18:00:06.0718 2540 Modem - ok
18:00:06.0750 2540 Mouclass (705cac1902dcd3e3181a199d7ad40d13) C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:00:06.0750 2540 Mouclass - ok
18:00:06.0781 2540 mouhid (6a79cb27d0e608a45638cd9468269a3e) C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:00:06.0781 2540 mouhid - ok
18:00:06.0828 2540 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
18:00:06.0828 2540 MountMgr - ok
18:00:06.0859 2540 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
18:00:06.0859 2540 MpFilter - ok
18:00:06.0937 2540 MpKslbd6bbb49 (a69630d039c38018689190234f866d77) C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CE5F5BFD-C142-4649-8592-F0A36FBD0492}\MpKslbd6bbb49.sys
18:00:06.0937 2540 MpKslbd6bbb49 - ok
18:00:06.0953 2540 mraid35x - ok
18:00:07.0000 2540 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:00:07.0000 2540 MRxDAV - ok
18:00:07.0046 2540 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:00:07.0046 2540 MRxSmb - ok
18:00:07.0078 2540 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
18:00:07.0078 2540 Msfs - ok
18:00:07.0109 2540 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:00:07.0125 2540 MSKSSRV - ok
18:00:07.0140 2540 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:00:07.0140 2540 MSPCLOCK - ok
18:00:07.0171 2540 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
18:00:07.0171 2540 MSPQM - ok
18:00:07.0203 2540 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:00:07.0203 2540 mssmbios - ok
18:00:07.0234 2540 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
18:00:07.0234 2540 MSTEE - ok
18:00:07.0250 2540 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
18:00:07.0250 2540 MTsensor - ok
18:00:07.0281 2540 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
18:00:07.0296 2540 Mup - ok
18:00:07.0328 2540 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
18:00:07.0328 2540 NABTSFEC - ok
18:00:07.0375 2540 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
18:00:07.0375 2540 NDIS - ok
18:00:07.0406 2540 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
18:00:07.0406 2540 NdisIP - ok
18:00:07.0437 2540 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:00:07.0437 2540 NdisTapi - ok
18:00:07.0468 2540 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:00:07.0468 2540 Ndisuio - ok
18:00:07.0500 2540 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:00:07.0500 2540 NdisWan - ok
18:00:07.0531 2540 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
18:00:07.0531 2540 NDProxy - ok
18:00:07.0562 2540 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
18:00:07.0562 2540 NetBIOS - ok
18:00:07.0609 2540 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
18:00:07.0609 2540 NetBT - ok
18:00:07.0656 2540 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
18:00:07.0656 2540 NIC1394 - ok
18:00:07.0687 2540 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
18:00:07.0687 2540 Npfs - ok
18:00:07.0718 2540 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
18:00:07.0718 2540 Ntfs - ok
18:00:07.0734 2540 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
18:00:07.0734 2540 Null - ok
18:00:07.0765 2540 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:00:07.0765 2540 NwlnkFlt - ok
18:00:07.0796 2540 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:00:07.0796 2540 NwlnkFwd - ok
18:00:07.0828 2540 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
18:00:07.0828 2540 ohci1394 - ok
18:00:07.0875 2540 Parport (632f154061074a9a1b75ecbba89d8d42) C:\WINDOWS\system32\drivers\Parport.sys
18:00:07.0875 2540 Parport - ok
18:00:07.0906 2540 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
18:00:07.0906 2540 PartMgr - ok
18:00:07.0937 2540 ParVdm (4df92a889e7fe15ed3834d288a0271f5) C:\WINDOWS\system32\drivers\ParVdm.sys
18:00:07.0937 2540 ParVdm - ok
18:00:07.0968 2540 PCI (b4a9c91cfdd5c68e2e48c0754e3a88f9) C:\WINDOWS\system32\DRIVERS\pci.sys
18:00:07.0968 2540 PCI - ok
18:00:07.0984 2540 PCIDump - ok
18:00:08.0000 2540 PCIIde (fbf3cc42488fd2ce49f9427240cd5809) C:\WINDOWS\system32\DRIVERS\pciide.sys
18:00:08.0000 2540 PCIIde - ok
18:00:08.0046 2540 Pcmcia (3defb381b9cdca9d4375bd37a3c0189b) C:\WINDOWS\system32\drivers\Pcmcia.sys
18:00:08.0046 2540 Pcmcia - ok
18:00:08.0062 2540 PDCOMP - ok
18:00:08.0078 2540 PDFRAME - ok
18:00:08.0078 2540 PDRELI - ok
18:00:08.0093 2540 PDRFRAME - ok
18:00:08.0109 2540 perc2 - ok
18:00:08.0125 2540 perc2hib - ok
18:00:08.0171 2540 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:00:08.0171 2540 PptpMiniport - ok
18:00:08.0203 2540 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
18:00:08.0203 2540 PSched - ok
18:00:08.0234 2540 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:00:08.0234 2540 Ptilink - ok
18:00:08.0265 2540 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:00:08.0265 2540 PxHelp20 - ok
18:00:08.0265 2540 ql1080 - ok
18:00:08.0281 2540 Ql10wnt - ok
18:00:08.0296 2540 ql12160 - ok
18:00:08.0296 2540 ql1240 - ok
18:00:08.0312 2540 ql1280 - ok
18:00:08.0343 2540 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:00:08.0343 2540 RasAcd - ok
18:00:08.0359 2540 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:00:08.0359 2540 Rasl2tp - ok
18:00:08.0390 2540 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:00:08.0390 2540 RasPppoe - ok
18:00:08.0421 2540 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
18:00:08.0421 2540 Raspti - ok
18:00:08.0468 2540 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:00:08.0468 2540 Rdbss - ok
18:00:08.0484 2540 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:00:08.0484 2540 RDPCDD - ok
18:00:08.0531 2540 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
18:00:08.0531 2540 RDPWD - ok
18:00:08.0578 2540 redbook (3c706fd765482112c3a6d42e1d7b58bb) C:\WINDOWS\system32\DRIVERS\redbook.sys
18:00:08.0578 2540 redbook - ok
18:00:08.0609 2540 SCDEmu (612a3d69e603dbbe5c3c1079186a0393) C:\WINDOWS\system32\drivers\SCDEmu.sys
18:00:08.0609 2540 SCDEmu - ok
18:00:08.0640 2540 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:00:08.0640 2540 Secdrv - ok
18:00:08.0671 2540 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
18:00:08.0671 2540 serenum - ok
18:00:08.0703 2540 Serial (87df40b4db611efbdf74c9b3eccab417) C:\WINDOWS\system32\DRIVERS\serial.sys
18:00:08.0703 2540 Serial - ok
18:00:08.0734 2540 sfdrv01 (4c0d673281178cb496011a2e28571fc8) C:\WINDOWS\system32\drivers\sfdrv01.sys
18:00:08.0734 2540 sfdrv01 - ok
18:00:08.0765 2540 sfhlp02 (15be2b5e4dc5b8623cf167720682abc9) C:\WINDOWS\system32\drivers\sfhlp02.sys
18:00:08.0765 2540 sfhlp02 - ok
18:00:08.0796 2540 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
18:00:08.0796 2540 Sfloppy - ok
18:00:08.0812 2540 sfvfs02 (d5a7e09d2c6a702809e49190d52adc9f) C:\WINDOWS\system32\drivers\sfvfs02.sys
18:00:08.0812 2540 sfvfs02 - ok
18:00:08.0828 2540 Simbad - ok
18:00:08.0843 2540 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
18:00:08.0843 2540 SLIP - ok
18:00:08.0953 2540 sony_ssm.sys - ok
18:00:08.0953 2540 Sparrow - ok
18:00:08.0984 2540 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
18:00:08.0984 2540 splitter - ok
18:00:09.0000 2540 sptd - ok
18:00:09.0046 2540 sr (38e904fb6139945822b929eaf2570ca5) C:\WINDOWS\system32\DRIVERS\sr.sys
18:00:09.0046 2540 sr - ok
18:00:09.0078 2540 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
18:00:09.0078 2540 Srv - ok
18:00:09.0125 2540 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
18:00:09.0125 2540 streamip - ok
18:00:09.0140 2540 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
18:00:09.0140 2540 swenum - ok
18:00:09.0187 2540 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
18:00:09.0187 2540 swmidi - ok
18:00:09.0187 2540 symc810 - ok
18:00:09.0203 2540 symc8xx - ok
18:00:09.0218 2540 sym_hi - ok
18:00:09.0234 2540 sym_u3 - ok
18:00:09.0265 2540 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
18:00:09.0265 2540 sysaudio - ok
18:00:09.0296 2540 tandpl (126d7b3b4c7b724491c604060e1f4e14) C:\WINDOWS\system32\drivers\tandpl.sys
18:00:09.0296 2540 tandpl - ok
18:00:09.0328 2540 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:00:09.0328 2540 Tcpip - ok
18:00:09.0375 2540 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
18:00:09.0375 2540 TDPIPE - ok
18:00:09.0406 2540 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
18:00:09.0406 2540 TDTCP - ok
18:00:09.0437 2540 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
18:00:09.0437 2540 TermDD - ok
18:00:09.0453 2540 TosIde - ok
18:00:09.0484 2540 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
18:00:09.0484 2540 Udfs - ok
18:00:09.0500 2540 ultra - ok
18:00:09.0562 2540 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
18:00:09.0562 2540 Update - ok
18:00:09.0593 2540 USBAAPL (c1ca131f4e3ed63d6bc89a35ffad4cda) C:\WINDOWS\system32\Drivers\usbaapl.sys
18:00:09.0593 2540 USBAAPL - ok
18:00:09.0640 2540 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:00:09.0640 2540 usbccgp - ok
18:00:09.0671 2540 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:00:09.0671 2540 usbehci - ok
18:00:09.0703 2540 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:00:09.0703 2540 usbhub - ok
18:00:09.0718 2540 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:00:09.0718 2540 usbscan - ok
18:00:09.0750 2540 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:00:09.0750 2540 USBSTOR - ok
18:00:09.0781 2540 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:00:09.0781 2540 usbuhci - ok
18:00:09.0812 2540 VBoxNetAdp (226cd9e42be28a84ec56430fbb57224f) C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys
18:00:09.0812 2540 VBoxNetAdp - ok
18:00:09.0828 2540 VBoxNetFlt - ok
18:00:09.0859 2540 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
18:00:09.0859 2540 VgaSave - ok
18:00:09.0875 2540 ViaIde - ok
18:00:09.0906 2540 VolSnap (9946cfcc7e445e1d846db748299724eb) C:\WINDOWS\system32\drivers\VolSnap.sys
18:00:09.0906 2540 VolSnap - ok
18:00:09.0937 2540 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:00:09.0937 2540 Wanarp - ok
18:00:09.0953 2540 WDICA - ok
18:00:10.0000 2540 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
18:00:10.0000 2540 wdmaud - ok
18:00:10.0046 2540 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
18:00:10.0046 2540 WSTCODEC - ok
18:00:10.0078 2540 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
18:00:10.0078 2540 WudfPf - ok
18:00:10.0093 2540 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
18:00:10.0093 2540 WudfRd - ok
18:00:10.0140 2540 xnacc (a668f64fe42b3b0d8d87ecad14963b00) C:\WINDOWS\system32\DRIVERS\xnacc.sys
18:00:10.0140 2540 xnacc - ok
18:00:10.0171 2540 ZSMC301b (1e41295eac56589efd9dc3ca14bf3fec) C:\WINDOWS\system32\Drivers\usbVM31b.sys
18:00:10.0171 2540 ZSMC301b - ok
18:00:10.0187 2540 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
18:00:10.0328 2540 \Device\Harddisk0\DR0 - ok
18:00:10.0328 2540 Boot (0x1200) (7b049e2c301d82fb79229dcfc30eaeee) \Device\Harddisk0\DR0\Partition0
18:00:10.0328 2540 \Device\Harddisk0\DR0\Partition0 - ok
18:00:10.0343 2540 Boot (0x1200) (1eb5c5633b61fc0bf02fd5bdb9b00e15) \Device\Harddisk0\DR0\Partition1
18:00:10.0343 2540 \Device\Harddisk0\DR0\Partition1 - ok
18:00:10.0343 2540 ============================================================
18:00:10.0343 2540 Scan finished
18:00:10.0343 2540 ============================================================
18:00:10.0359 0692 Detected object count: 0
18:00:10.0359 0692 Actual detected object count: 0
18:03:37.0843 2696 Deinitialize success


csüt. feb. 23, 2012 19:27
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
Idézet:
204 fájlt ellenőrzött és tisztának találta mindet.


Ezt ha megendedet en mondom meg,, masold be ide a naplojat, itt megtalalod>
C:\ Mappa),,, "TDSSKiller. _log.txt".

Az
Idézet:
C:\WINDOWS\system32\wbem\wmic.exe


Akkor neked xp,, home,, van es ez nem ismeri, ezt a parancsot.,,,
Ide tenni az TDSSKILLER naplojat,


csüt. feb. 23, 2012 19:22
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. nov. 05, 2009 15:10
Hozzászólások: 116
Tartózkodási hely: Hungary
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
TDSSKILLER report.txt-jét nem tudom ide másolni, DE 2 sec. alatt befejezte a scannelést 204 fájlt ellenőrzött és tisztának találta mindet.

Start >>> Futtatás >>> cmd-t beírtam
a fekete ablakba pedig begépeltem %windir%..........disk.txt"

Azt írja a fekete ablakban, hogy a megadott nevet <C:\WINDOWS\system32\wbem\wmic.exe> a rendszer nem ismeri fel belső vagy külső parancsként, futtatható programként vagy kötegfájlként.

És egy üres disk.txt fájlt rakott ki az Asztalra. :hm:


csüt. feb. 23, 2012 18:28
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: Feladatkezelő nem érhető el Rendszergazdaként
Udv
Igen, az alap virus kereses mar szinten a multe,,,,
1:Ide tenni az TDSSKILLER REPORT.txt naplojat
http://www.virus-stell.com/2010/08/root ... -tdl3.html

2:Futtasd az disk.bat fajlót
http://www.virus-stell.com/2012/01/uj-rootkit.html

aztán mag latom.


csüt. feb. 23, 2012 17:27
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. nov. 05, 2009 15:10
Hozzászólások: 116
Tartózkodási hely: Hungary
Hozzászólás Feladatkezelő nem érhető el Rendszergazdaként
Szia Stell,

Már több, mint 2 éve, hogy segítettél vírusirtás és egyéb dolgokban...
Szóval olyan problémám adódott ezen a gépen MS Windows XP Home SP3 op. rendszerrel, két partícióval, Microsoft Security Essentials vírusvédelemmel, hogy Rendszergazdaként belépve a Start menü >>> Futtatás >>> cmd-t (vagy regedit-et) beírva nem nyitotta meg a rendszer-t.
A fekete ablakban kiírta a Windows típusát és, hogy ezt a parancssort a rendszergazda letiltotta.
Az MSE is **** hol a valós idejű védelem bekapcsolásával, hol a vírus definiciók frissítésének letöltése hiúsult meg.
Utána olvastam a kapott hibakódoknak >>> valószínű komoly vírus... Malwarebytes' Anti-Malware 1.60-t telepítettem és egy gyorsvizsgálat után a Feladatkezelő problémája megoldódott...

Itt a text logja:
Malwarebytes Anti-Malware 1.60.1.1000
www.malwarebytes.org

Adatbázis verzió: v2012.02.23.01

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 6.0.2900.5512
nagy :: ATI [rendszergazda]

2012.02.23. 11:19:30
mbam-log-2012-02-23 (11-19-30).txt

Vizsgálat típusa: Gyorsvizsgálat
Engedélyezett vizsgálati beállítások: Memória | Indítópult | Rendszerleíró | Fájlrendszer | Heurisztikus/Extra | Heurisztikus/Shuriken | PUP | PUM
Letiltott vizsgálati beállítások: P2P
Átvizsgált objektumok: 185875
Eltelt idő: 8 perc, 29 másodperc

Fertőzött memóriafolyamatok: 0
(Nem találhatók rosszindulatú elemek)

Fertőzött memória modulok: 0
(Nem találhatók rosszindulatú elemek)

Fertőzött Rendszerleíró kulcsok: 1
HKCU\Software\VB and VBA Program Settings\SrvID (Malware.Trace) -> A karanténba helyezés, és a törlés sikerült.

Fertőzött Rendszerleíró értékek: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run|Policies (Backdoor.HMCPol.Gen) -> Adat: C:\WINDOWS\system32\proxysf.exe -> A karanténba helyezés, és a törlés sikerült.

Fertőzött Rendszerleíró adatelemek: 3
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System|DisableTaskMgr (PUM.Hijack.TaskManager) -> Rossz: (1) Jó: (0) -> A karanténba helyezés és a kijavítás sikerült.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System|DisableRegistryTools (PUM.Hijack.Regedit) -> Rossz: (1) Jó: (0) -> A karanténba helyezés és a kijavítás sikerült.
HKCU\SOFTWARE\Policies\Microsoft\Windows\System|DisableCMD (PUM.Hijack.CMDPrompt) -> Rossz: (1) Jó: (0) -> A karanténba helyezés és a kijavítás sikerült.

Fertőzött mappák: 0
(Nem találhatók rosszindulatú elemek)

Fertőzött fájlok: 1
C:\Documents and Settings\nagy\Application Data\data.dat (Stolen.Data) -> A karanténba helyezés, és a törlés sikerült.

(befejezés)

majd ezután egy teljes vizsgálatot is futtattam, melynek itt a naplója:

Malwarebytes Anti-Malware 1.60.1.1000
www.malwarebytes.org

Adatbázis verzió: v2012.02.23.01

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 6.0.2900.5512
nagy :: ATI [rendszergazda]

2012.02.23. 11:42:18
mbam-log-2012-02-23 (11-42-18).txt

Vizsgálat típusa: Teljes vizsgálat
Engedélyezett vizsgálati beállítások: Memória | Indítópult | Rendszerleíró | Fájlrendszer | Heurisztikus/Extra | Heurisztikus/Shuriken | PUP | PUM
Letiltott vizsgálati beállítások: P2P
Átvizsgált objektumok: 360187
Eltelt idő: 1 óra, 11 perc, 54 másodperc

Fertőzött memóriafolyamatok: 0
(Nem találhatók rosszindulatú elemek)

Fertőzött memória modulok: 0
(Nem találhatók rosszindulatú elemek)

Fertőzött Rendszerleíró kulcsok: 0
(Nem találhatók rosszindulatú elemek)

Fertőzött Rendszerleíró értékek: 0
(Nem találhatók rosszindulatú elemek)

Fertőzött Rendszerleíró adatelemek: 0
(Nem találhatók rosszindulatú elemek)

Fertőzött mappák: 0
(Nem találhatók rosszindulatú elemek)

Fertőzött fájlok: 3
C:\Documents and Settings\nagy\Dokumentumok\Letöltések\Egyebek\DownloadSetup (46).exe (Affiliate.Downloader) -> A karanténba helyezés, és a törlés sikerült.
C:\Documents and Settings\nagy\Dokumentumok\Letöltések\Egyebek\DownloadSetup (72).exe (Affiliate.Downloader) -> A karanténba helyezés, és a törlés sikerült.
C:\Documents and Settings\nagy\Dokumentumok\Letöltések\Egyebek\DownloadSetup (86).exe (Affiliate.Downloader) -> A karanténba helyezés, és a törlés sikerült.

(befejezés)

A fiam sajnos sok hülyeséget letöltögetett és feltelepített - Bot programokat, amivel pl. seafight-ot futtatott... Az E:/ partíción vannak ezek a **** :( Sokról azt se tudja, hogy mi az...
Lehetséges, hogy egy másik op. rendszert is futtatott??? - pl. a C:/WINDOWS-ban a rejtett mappák és fájlok bekapcsolása után se láttam a system32 mappát, ahol a cmd.exe-nek kellett volna lenni.
Ezért még a Malewarebytes előtt a Windows hivatalos telepítő CD-vel egy javító telepítést is csináltam.

Gyanítom, hogy ezzel a 2 Malewarebytes vizsgálattal még nem oldódott meg a helyzet teljesen?!
Mit kéne még tennem, hogy a gép teljesen megtisztuljon ettől a vírustól vagy spyware-től?!

Előre is kösz a segítséget!


csüt. feb. 23, 2012 16:06
Profil Privát üzenet küldése
Hozzászólások megjelenítése:  Rendezés  
Hozzászólás a témához   [ 78 hozzászólás ]  Oldal Előző  1, 2

Ki van itt

Jelenlévő fórumozók: nincs regisztrált felhasználó valamint 8 vendég


Nem nyithatsz témákat ebben a fórumban.
Nem válaszolhatsz egy témára ebben a fórumban.
Nem szerkesztheted a hozzászólásaidat ebben a fórumban.
Nem törölheted a hozzászólásaidat ebben a fórumban.

Keresés:
Ugrás:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group.
Designed by ST Software for PTF.
Magyar fordítás © Magyar phpBB Közösség