Megválaszolatlan hozzászólások | Aktív témák Pontos idő: csüt. márc. 28, 2024 20:58



Hozzászólás a témához  [ 76 hozzászólás ]  Oldal Előző  1, 2
pilaka bogarai 
Szerző Üzenet
arany tag

Csatlakozott: csüt. jan. 01, 2009 20:34
Hozzászólások: 294
Hozzászólás Re: pilaka bogarai
Extras 2 rész:

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-796845957-1409082233-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Billard-Simulator" = Billard-Simulator
"PhotoFiltre Studio X" = PhotoFiltre Studio X
"TimeAdjuster" = Time Adjuster STANDARD 3.1
"uTorrent" = µTorrent

========== Last 10 Event Log Errors ==========

[ Antivirus Events ]
Error - 2009.11.09. 9:22:49 | Computer Name = GG-C0E09BDA6906 | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
http://rt42.infolinks.com/action/dwq.ht ... unread%200
failed, 0000A413.

[ Application Events ]
Error - 2010.08.23. 13:30:15 | Computer Name = GG-C0E09BDA6906 | Source = NMSAccessU | ID = 0
Description =

Error - 2010.08.23. 13:37:17 | Computer Name = GG-C0E09BDA6906 | Source = Application Error | ID = 1000
Description = Hibás alkalmazás: vstudio.exe, verzió: 11.0.0.0, hibás modul: herdocdll.dll,
verzió: 1.0.0.1, memóriacím: 0x00068bf0.

Error - 2010.08.23. 13:51:48 | Computer Name = GG-C0E09BDA6906 | Source = NMSAccessU | ID = 0
Description =

Error - 2010.08.23. 14:16:24 | Computer Name = GG-C0E09BDA6906 | Source = NMSAccessU | ID = 0
Description =

Error - 2010.08.23. 14:40:40 | Computer Name = GG-C0E09BDA6906 | Source = NMSAccessU | ID = 0
Description =

Error - 2010.08.24. 9:55:24 | Computer Name = GG-C0E09BDA6906 | Source = pctsSvc.exe | ID = 0
Description =

Error - 2010.08.25. 9:56:55 | Computer Name = GG-C0E09BDA6906 | Source = NMSAccessU | ID = 0
Description =

Error - 2010.08.25. 10:31:43 | Computer Name = GG-C0E09BDA6906 | Source = NMSAccessU | ID = 0
Description =

Error - 2010.08.25. 10:53:43 | Computer Name = GG-C0E09BDA6906 | Source = NMSAccessU | ID = 0
Description =

Error - 2010.08.25. 11:12:28 | Computer Name = GG-C0E09BDA6906 | Source = NMSAccessU | ID = 0
Description =

[ NetLimiter Events ]
Error - 2009.07.19. 12:24:00 | Computer Name = GG-C0E09BDA6906 | Source = NetLimiter 2 | ID = 1000
Description =

Error - 2009.07.19. 12:49:58 | Computer Name = GG-C0E09BDA6906 | Source = NetLimiter 2 | ID = 1000
Description =

Error - 2009.07.20. 19:00:03 | Computer Name = GG-C0E09BDA6906 | Source = NetLimiter 2 | ID = 1000
Description =

Error - 2009.07.21. 6:14:30 | Computer Name = GG-C0E09BDA6906 | Source = NetLimiter 2 | ID = 1000
Description =

Error - 2009.07.21. 6:31:32 | Computer Name = GG-C0E09BDA6906 | Source = NetLimiter 2 | ID = 1000
Description =

Error - 2009.07.22. 15:18:40 | Computer Name = GG-C0E09BDA6906 | Source = NetLimiter 2 | ID = 1000
Description =

Error - 2009.07.25. 15:53:13 | Computer Name = GG-C0E09BDA6906 | Source = NetLimiter 2 | ID = 1000
Description =

[ System Events ]
Error - 2010.08.21. 18:49:37 | Computer Name = GG-C0E09BDA6906 | Source = Service Control Manager | ID = 7000
Description = A szolgáltatás (PC Tools Security Service) a következő hiba következtében
leállt: %%193

Error - 2010.08.21. 18:49:42 | Computer Name = GG-C0E09BDA6906 | Source = Service Control Manager | ID = 7000
Description = A szolgáltatás (PC Tools Security Service) a következő hiba következtében
leállt: %%193

Error - 2010.08.21. 18:49:47 | Computer Name = GG-C0E09BDA6906 | Source = Service Control Manager | ID = 7000
Description = A szolgáltatás (PC Tools Security Service) a következő hiba következtében
leállt: %%193

Error - 2010.08.21. 18:49:52 | Computer Name = GG-C0E09BDA6906 | Source = Service Control Manager | ID = 7000
Description = A szolgáltatás (PC Tools Security Service) a következő hiba következtében
leállt: %%193

Error - 2010.08.21. 18:49:57 | Computer Name = GG-C0E09BDA6906 | Source = Service Control Manager | ID = 7000
Description = A szolgáltatás (PC Tools Security Service) a következő hiba következtében
leállt: %%193

Error - 2010.08.21. 18:50:03 | Computer Name = GG-C0E09BDA6906 | Source = Service Control Manager | ID = 7000
Description = A szolgáltatás (PC Tools Security Service) a következő hiba következtében
leállt: %%193

Error - 2010.08.21. 18:50:08 | Computer Name = GG-C0E09BDA6906 | Source = Service Control Manager | ID = 7000
Description = A szolgáltatás (PC Tools Security Service) a következő hiba következtében
leállt: %%193

Error - 2010.08.21. 18:50:13 | Computer Name = GG-C0E09BDA6906 | Source = Service Control Manager | ID = 7000
Description = A szolgáltatás (PC Tools Security Service) a következő hiba következtében
leállt: %%193

Error - 2010.08.21. 18:50:18 | Computer Name = GG-C0E09BDA6906 | Source = Service Control Manager | ID = 7000
Description = A szolgáltatás (PC Tools Security Service) a következő hiba következtében
leállt: %%193

Error - 2010.08.21. 18:57:17 | Computer Name = GG-C0E09BDA6906 | Source = Service Control Manager | ID = 7000
Description = A szolgáltatás (PC Tools Security Service) a következő hiba következtében
leállt: %%193


< End of report >


szer. aug. 25, 2010 17:36
Profil Privát üzenet küldése
arany tag

Csatlakozott: csüt. jan. 01, 2009 20:34
Hozzászólások: 294
Hozzászólás Re: pilaka bogarai
Extrax 1 rész:

OTL Extras logfile created on: 2010.08.25. 17:59:02 - Run 1
OTL by OldTimer - Version 3.2.10.0 Folder = C:\Documents and Settings\Pali\Asztal
Windows XP Professional Edition Szervizcsomag 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 0000040E | Country: Magyarország | Language: HUN | Date Format: yyyy.MM.dd.

1 023.00 Mb Total Physical Memory | 468.00 Mb Available Physical Memory | 46.00% Memory free
2.00 Gb Paging File | 1.00 Gb Available in Paging File | 65.00% Paging File free
Paging file location(s): C:\pagefile.sys 1000 1500 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 29.29 Gb Total Space | 10.14 Gb Free Space | 34.61% Space Free | Partition Type: NTFS
Drive D: | 20.50 Gb Total Space | 0.43 Gb Free Space | 2.11% Space Free | Partition Type: NTFS
Drive E: | 29.16 Gb Total Space | 1.94 Gb Free Space | 6.65% Space Free | Partition Type: NTFS
Drive F: | 35.53 Gb Total Space | 0.26 Gb Free Space | 0.72% Space Free | Partition Type: NTFS
Drive G: | 55.06 Gb Total Space | 0.96 Gb Free Space | 1.74% Space Free | Partition Type: NTFS
Drive H: | 146.72 Gb Total Space | 17.08 Gb Free Space | 11.64% Space Free | Partition Type: NTFS
I: Drive not present or media not loaded
Drive P: | 130.86 Gb Total Space | 51.34 Gb Free Space | 39.23% Space Free | Partition Type: NTFS

Computer Name: GG-C0E09BDA6906
Current User Name: Pali
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)

[HKEY_USERS\S-1-5-21-796845957-1409082233-1801674531-1003\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
https [open] -- "C:\Program Files\Opera\Opera.exe" (Opera Software)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [abcAVI Tag Editor] -- "C:\Program Files\abcAVI\avi_tags.exe" "%1" (Alexander A. Sorkin)
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 1
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"3389:TCP" = 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3389:TCP" = 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
"20000:TCP" = 20000:TCP:LocalSubNet:Enabled:Dativus Local Translator Engine - Communication Port

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\concept design\onlineTV 3\onlineTV.exe" = C:\Program Files\concept design\onlineTV 3\onlineTV.exe:*:Enabled:onlineTV -- (concept/design GmbH)
"C:\WINDOWS\system32\wlcommn.exe" = C:\WINDOWS\system32\wlcommn.exe:*:Enabled:UPnP Firewall -- File not found

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\Ahead\Nero ShowTime\ShowTime.exe" = C:\Program Files\Ahead\Nero ShowTime\ShowTime.exe:*:Disabled:Nero ShowTime -- (Nero Software AG)
"C:\Program Files\TeamViewer\Version4\TeamViewer.exe" = C:\Program Files\TeamViewer\Version4\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)
"C:\Program Files\concept design\onlineTV 3\onlineTV.exe" = C:\Program Files\concept design\onlineTV 3\onlineTV.exe:*:Enabled:onlineTV -- (concept/design GmbH)
"C:\Program Files\Voipwise.com\Voipwise\Voipwise.exe" = C:\Program Files\Voipwise.com\Voipwise\Voipwise.exe:*:Enabled:Voipwise -- (Voipwise)
"C:\Program Files\Dativus Translator Kft\Dativus\Fordito.exe" = C:\Program Files\Dativus Translator Kft\Dativus\Fordito.exe:LocalSubNet:Enabled:Dativus Translator -- (Dativus Translator Kft.)
"C:\Program Files\Dativus Translator Kft\Dativus\Szotar.exe" = C:\Program Files\Dativus Translator Kft\Dativus\Szotar.exe:LocalSubNet:Enabled:Dativus Dictionary -- (Dativus Translator Kft.)
"C:\Program Files\Dativus Translator Kft\Dativus\DativusKLIKK.exe" = C:\Program Files\Dativus Translator Kft\Dativus\DativusKLIKK.exe:LocalSubNet:Enabled:DativusKLIKK -- (Dativus Translator Kft.)
"C:\Program Files\Dativus Translator Kft\Dativus\DativusEngine.exe" = C:\Program Files\Dativus Translator Kft\Dativus\DativusEngine.exe:LocalSubNet:Enabled:Dativus Local Translator Engine -- (Dativus Translator Kft.)
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\WINDOWS\system32\mmc.exe" = C:\WINDOWS\system32\mmc.exe:*:Disabled:Microsoft Management Console -- (Microsoft Corporation)
"C:\Program Files\River Past\Video Slice\VideoSlice.exe" = C:\Program Files\River Past\Video Slice\VideoSlice.exe:*:Disabled:River Past Video Slice -- (River Past Corporation)
"C:\Program Files\Common Files\XpressUpdate\XPressUpdate.exe" = C:\Program Files\Common Files\XpressUpdate\XPressUpdate.exe:*:Enabled:XPressUpdate -- (PixelPlanet GmbH)
"C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server -- (PeeringPortal)
"C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server -- (PeeringPortal)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"#1 DVD Audio Ripper_is1" = #1 DVD Audio Ripper 1.0.3
"{06A1BE8A-4CA4-4A39-B9E4-E815AA8FE05C}" = Sony Noise Reduction Plug-In 2.0h
"{0A62229B-3E3A-45c1-96EE-0A4DE3E67B2E}_is1" = Dart XP Pro
"{0A9FEB03-7039-4600-878A-D3736F4A9531}" = Mayoko
"{0CACC740-6157-4ACC-BEDC-24EBA63739AD}" = MediaWare Solutions M2-edit Pro 5
"{105CFC7C-6992-11D5-BD9D-000102C10FD8}" = Lizardtech DjVu Control
"{12453E04-9738-4D16-8408-D726532C2C69}" = ASUS VGA Driver
"{173C8FBC-1EF8-444F-B0DA-98FD0507D1B7}" = cdrLabel Hungarian (Hungary) Language DLL
"{18B29862-C3E7-3AFC-831F-039FB8717BC5}" = Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - HUN
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{20749F76-4228-43AD-8AB5-E7B20D8040C4}" = hph_readme
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{2376813B-2E5A-4641-B7B3-A0D5ADB55229}" = HPPhotoSmartExpress
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 14
"{279FC9F9-1872-4927-AB0E-A93154F7D339}" = cdrLabel 7.1
"{27E8FE87-158D-30A8-A385-A68756C1F9D8}" = Microsoft .NET Framework 3.5 Language Pack - hun
"{350C940e-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder
"{36DC3E2F-CD8C-4953-9E8F-9A1916D10AA1}" = hph_software
"{380041C4-017C-438C-A66C-3C67708FD195}" = Sprintbit Playlist Manager
"{3BFD4B3C-9105-454A-A673-E023E8BC9D56}" = Movavi VideoSuite 7
"{3E4FAA37-5BAE-457E-8442-072A75179DB5}" = Dativus
"{3F8EB641-6AD2-45DE-A8DD-91D7BDD39CDE}" = Microsoft USB Flash Drive Manager
"{448AB2CB-C94A-47DE-80B8-9D7824DEFA57}" = Ulead DVD MovieFactory 4.0
"{45B8A76B-57EC-4242-B019-066400CD8428}" = BufferChm
"{47D27FA0-0E8D-4A78-9327-60E99106689A}" = Free Fraunhofer VOB-AC3 DVD Filters
"{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin
"{4EA684E9-5C81-4033-A696-3019EC57AC3A}" = HPProductAssistant
"{521AAD14-5030-44BB-8B0E-5CE65FCE57E0}" = InterVideo DeviceService
"{53C141BA-4F9E-43FB-B4F9-0C01BB716FA8}" = Adobe Audition 3.0
"{55BB6B67-EA70-4DD2-974D-9B9093BDA946}" = EASEUS Data Recovery Wizard Professional 4.0.1
"{5B1B6A99-210F-49CF-B191-EBE98119B833}" = Cuttermaran 1.68
"{65B8163D-330E-452A-BA10-5BF126A6FA0D}" = Dativus
"{66910000-8B30-4973-A159-6371345AFFA5}" = WebReg
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{67A48ED5-0B6A-470A-995C-B8F1942E8AB9}" = Diskeeper 2008 Pro Premier
"{685755F8-C74B-4613-8137-C90AF458228D}" = ATI Catalyst Control Center
"{6909F917-5499-482e-9AA1-FAD06A99F231}" = Toolbox
"{6994491D-D491-48F1-AE1F-E179C1FFFC2F}" = HP Photosmart Essential
"{6A143FF0-BB9A-4A9C-A318-1688BA366BAE}" = Sorenson Squeeze 5.1
"{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PartitionMagic
"{6ECB39BD-73C2-44DD-B1A0-898207C58D8B}" = HP Fotó és kép 2.0 - All-in-One illesztőprogram
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{70858C67-8761-4444-895A-0A8B2E9E144E}" = Opera 10.61
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76C24F39-B161-498F-BD8B-C64789812D13}_is1" = ConvertXtoDVD 3.5.3.139
"{77213A6F-0DD6-4A78-A324-0C3506D843ED}" = EASEUS Partition Manager 1.6.2
"{791CAF6C-90A3-11D4-8306-00D0B72E1DB9}" = Sentinel System Driver
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{7F878808-B462-4A82-B956-452595F8B29A}" = Virtual CD v5
"{8331C3EA-0C91-43AA-A4D4-27221C631139}" = Status
"{868F24EB-5CA7-4285-B39B-3617CF37462A}" = D2300_Help
"{8CE4E6E9-9D55-43FB-9DDB-688C976BFC05}" = Unload
"{8FC113D5-64A6-40EE-9A39-DAB4650457A8}" = Microsoft .NET Framework 1.1 Hungarian Language Pack
"{9011040E-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{91348578-CC58-4BAB-BAAC-8CE42EFAD592}_is1" = concept/design onlineTV 3
"{9578C0CD-8108-4379-9026-4601F59859A0}" = Google Earth Pro
"{97368464-B643-422D-A496-29B409988488}_is1" = TFM Audio Tool 1.2.0.0 Beta
"{9867A917-5D17-40DE-83BA-BEA5293194B1}" = HP Fotó és kép 2.0 - All-in-One
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A0F43BC6-E685-49CB-BF91-851F62628343}" = AudioCommander
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A35F88E5-A813-400C-AB99-09F5F5CDD2EC}" = PTDD Partition Table Doctor 3.5
"{A3A61264-B075-46BE-9C97-376EA4CEEEF5}" = PdfGrabber 6.0
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC76BA86-7AD7-1038-7B44-A81200000003}" = Adobe Reader 8 - Hungarian
"{ACCCEE83-B49B-4964-8A4F-378B8FBC9F75}" = hph_ProductContext
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{AD2168D5-1E80-42E6-B8BC-C3977907307D}" = calibre
"{AD8E6D29-95EC-494E-8AF5-566E784819A6}" = Ulead Data-Add 2.0
"{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"{B19F9155-9337-4807-B5EF-ED471DDB2CCE}" = hph_software_req
"{B210130E-835C-4581-A695-CE10616B8B55}_is1" = Driver Sweeper 2.0.5
"{B376402D-58EA-45EA-BD50-DD924EB67A70}" = HP fényképalbumlemez
"{B5FDA445-CAC4-4BA6-A8FB-A7212BD439DE}" = Microsoft XML Parser
"{B96D2269-568B-4CBF-9332-12FAE8B158F7}" = Medieval CUE Splitter
"{BB85ED9C-AFC9-43BD-B8DC-258C3C7DF72E}" = HP Software Update
"{BB8AE808-F003-4C7F-B56B-8C80EEAFFE23}" = InterVideo AVControlSDK
"{BF5EE349-90CD-4422-A43B-661778180173}" = MP3 Player
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C4C2E3F8-7427-45E2-A81F-75D0723F3FB6}" = MP4TE
"{C7F54CF8-D6FB-4E0A-93A3-E68AE0D6C476}" = SolutionCenter
"{C8DC2C30-0657-4E7F-96F2-047BD3D10743}" = Xbox Backup Creator
"{C941F1F1-25B3-4DF5-83E6-888C51A1AAB6}" = AVIVO Codecs
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{cc568376-ddde-45f4-ac88-c39184455b8d}_is1" = Bigasoft MKV Converter 1.7.1.3581
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D13EB4BD-8A13-35D1-9850-C29AF6D91CD1}" = Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - HUN
"{D297A783-A680-4FDB-8882-913EBA36ABC5}" = D2300
"{D2A3C9D5-0B56-4656-8277-7EDC65D62B6E}" = HP Photosmart and Deskjet 7.0 Software (hun)
"{D9DA5C41-964F-455F-B5E7-3664519440E8}_is1" = Bit Che
"{DADD9750-EB4B-4030-8F67-5EAE5390513D}" = MooGUI
"{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1" = ConvertXtoDVD 4.0.3.312
"{DBC20735-34E6-4E97-A9E5-2066B66B243D}" = TrayApp
"{DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}" = jetAudio Plus VX
"{E1180142-3B31-4DCC-9D27-7AC2D37662BF}" = LightScribe 1.4.124.1
"{E1B80DEE-A795-4258-8445-074C06AE3AB8}" = MarketResearch
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series
"{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}" = Microsoft SQL Server Compact 3.5 SP1 English
"{e6333ce4-9dc0-455c-9d43-e011ce33f5fa}_is1" = Bigasoft Audio Converter 1.7.1.3581
"{EDF04509-B350-4EAB-BE77-5F2C87C33B35}_is1" = MPEG Video Wizard DVD 4.0.4.114 (06/2009)
"{F07B861C-72B9-40A4-8B1A-AAED4C06A7E8}" = QuickTime
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9}" = VideoStudio
"{FC0C72DD-A491-43FF-B377-67273E4D94D7}" = Opera 9.20
"123 Audio Video Merger_is1" = 123 Audio Video Merger
"3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Windows illesztőprogram-csomag - Nokia pccsmcfd (10/12/2007 6.85.4.0)
"6194C28A8F62DD817EA1B918E6E46E806A21B452" = Windows illesztőprogram-csomag - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0)
"65B6FE5418CE28F4D72543FB2D964C3CEC83F161" = Windows illesztőprogram-csomag - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0)
"7-Zip" = 7-Zip 4.57
"8AD51A41BEE6AF46CD7481F4460B914727172F64" = Windows illesztőprogram-csomag - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"abcavi_tag_editor_is1" = abcAVI
"abgx360" = abgx360 v1.0.2
"Absolute MP3 Splitter_is1" = Absolute MP3 Splitter version 2.6.9
"AC3File_is1" = AC3File 0.6b
"AC3Filter_is1" = AC3Filter 1.63b
"Ac3Tool" = Ac3Tool (remove only)
"Ace Video Workshop_is1" = Ace Video Workshop 1.4.24
"Adobe Audition 3.0" = Adobe Audition 3.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Agnitum Outpost Firewall Pro_is1" = Agnitum Outpost Firewall Pro
"AIDA32_is1" = AIDA32 v3.93
"Aimersoft Video Cutter_is1" = Aimersoft Video Cutter(Build 2.5.0.7)
"Aiseesoft WMV Converter_is1" = Aiseesoft WMV Converter
"All ATI Software" = ATI - Szoftver eltávolító
"All Media Fixer_is1" = All Media Fixer 6.8
"Allok 3GP PSP MP4 iPod Video Converter_is1" = Allok 3GP PSP MP4 iPod Video Converter 6.2.0603
"Allok Video Splitter_is1" = Allok Video Splitter 2.2.0
"Any Video Converter Professional_is1" = Any Video Converter Professional 3.0.5
"ApexSQL Diff 2008_is1" = ApexSQL Diff 2008
"AptDiff 1.5_is1" = AptDiff 1.5
"AptDiff_is1" = AptDiff 1.2.0
"ATI Display Driver" = ATI Display Driver
"Audacity 1.3 Beta (Unicode)_is1" = Audacity 1.3.2 (Unicode)
"Audio DVD Creator_is1" = Audio DVD Creator 1.9.1.0
"AudioCommander" = AudioCommander
"AutocompletePro3_is1" = AutocompletePro
"avast!" = avast! Antivirus
"AVCutty" = AVCutty 2.4e
"AVI & MPEG Splitter_is1" = AVI & MPEG Splitter 1.48
"AVI MPEG RM WMV Joiner_is1" = AVI/MPEG/RM/WMV Joiner 4.11
"AVIcodec" = AVIcodec (remove only)
"Avidemux" = Avidemux v2.1.2
"Avidemux 2.4" = Avidemux 2.4
"AVIedit 3.38" = AVIedit 3.38
"AviSplit Classic (Freeware)_is1" = AviSplit Classic Version 1.42
"AviSynth" = AviSynth 2.5
"BeLight" = BeLight
"Boilsoft Video Joiner_is1" = Boilsoft Video Joiner 5.16
"Boilsoft Video Splitter_is1" = Boilsoft Video Splitter 5.16
"BSPlayer" = BSPlayer
"CCleaner" = CCleaner
"CDisplay_is1" = CDisplay 1.8
"ChrisTV_450" = ChrisTV Professional Shareware - Version 4.50
"Cinema Craft Encoder SP2" = Cinema Craft Encoder SP2
"CloneCD" = CloneCD
"CodeStuff Starter" = CodeStuff Starter
"Color Pilot_is1" = Color Pilot 4.62
"Converber" = Converber 1.4.0
"DicSoft HD Video Converter_is1" = DicSoft HD Video Converter v3.5.0
"Dicsoft XBox Video Converter_is1" = Dicsoft XBox Video Converter v3.5.0
"Direct MP3 Joiner_is1" = Direct MP3 Joiner version 3.0.2.9
"Direct WAV MP3 Splitter_is1" = Direct WAV MP3 Splitter 2.0
"DiskRedactor_is1" = DiskRedactor
"DjVu Solo 3.1" = DjVu Solo 3.1
"Driver Checker_is1" = Driver Checker v2.7.4
"Driver Cleaner Pro" = DH Driver Cleaner Professional Edition
"Duplicate File Cleaner_is1" = Duplicate File Cleaner v2.5
"DVD Catalyst" = DVD Catalyst 3.80
"DVD Identifier_is1" = DVD Identifier
"DVD2DVD-R 2.0.0 Professional RC4_is1" = DVD2DVD-R Professional RC4
"DVD2DVD-R_is1" = DVD2DVD-R 1.5.0
"DVDDecrypter" = <DVDDecrypter>
"DVDFab 6_is1" = DVDFab 6.0.2.2 (June 26, 2009)
"DVDFab Ghosthunter release_is1" = DVDFab Ghosthunter release 6.0.1.0
"DVDFab Platinum 4_is1" = DVDFab Platinum 4.1.0.2 Ghosthunter release
"DVDInfoPro" = DVDInfoPro
"DVD-lab PRO 2.3_is1" = DVD-lab PRO 2.3
"DVDPean Pro 5.0.5_is1" = DVDPean Pro 5.0.5
"Easy CD-DA Extractor 12" = Easy CD-DA Extractor 12
"Easy Tuner 3.0_is1" = D'Accord Easy Tuner 3.0
"EF Duplicate Files Manager" = EF Duplicate Files Manager
"eMule" = eMule
"EnhanceMovie 2.2" = EnhanceMovie 2.2
"Feeding Frenzy 2 1.0" = Feeding Frenzy 2 1.0
"File&Folder Properties Changer_is1" = File&Folder Properties Changer 1.5.2
"FileZilla Client" = FileZilla Client 3.2.8.1
"FLAC" = FLAC 1.2.1b (remove only)
"FontCreator55_is1" = FontCreator 5.5
"FormatFactory" = FormatFactory 2.10
"Fraps" = Fraps (remove only)
"Free Audio Dub_is1" = Free Audio Dub version 1.3
"Free Download Manager_is1" = Free Download Manager 3.0
"Free Video Flip and Rotate_is1" = Free Video Flip and Rotate version 1.3
"GoldWave v5.25" = GoldWave v5.25
"HandBrake" = HandBrake 0.9.3
"Hard Disk Low Level Format Tool_is1" = Hard Disk Low Level Format Tool 2.36 build 1181
"Hard Disk Sentinel_is1" = Hard Disk Sentinel PRO
"Hard Disk Wipe Tool_is1" = Hard Disk Wipe Tool 2.35 build 1178
"Hard Drive Inspector" = Hard Drive Inspector Professional 3.11 build # 207
"HD Tune Pro_is1" = HD Tune Pro 3.50
"HD Tune_is1" = HD Tune 2.55
"HiFi MP3 Splitter Joiner_is1" = HiFi MP3 Splitter Joiner 1.10
"HP Imaging Device Functions" = HP Imaging Device Functions 7.0
"HP Solution Center & Imaging Support Tools" = HP Solution Center 7.0
"HPExtendedCapabilities" = HP Customer Participation Program 7.0
"IfoEdit v0.971 hu" = IfoEdit v0.971 hu
"ImgBurn" = ImgBurn
"ImTOO Xbox Converter" = ImTOO Xbox Converter
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
"InstallShield_{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin
"InstallShield_{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PowerQuest PartitionMagic 8.0
"InstallShield_{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"InstallShield_{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9}" = Ulead VideoStudio 11
"IsoBuster_is1" = IsoBuster 2.4
"Java Web Start" = Java Web Start
"JLC's Internet TV" = JLC's Internet TV
"jv16 PowerTools 2008_is1" = jv16 PowerTools 2008
"KC Softwares KCleaner_is1" = KC Softwares KCleaner
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 4.9.0
"LADSPA_plugins-win_is1" = LADSPA_plugins-win-0.4.15
"Lexmark 3300 Series" = Lexmark 3300 Series
"Lexmark Fax Solutions" = Lexmark Fax Solutions
"LifeView TVR" = TVR
"Live Usb Helper" = Live Usb Helper 0.0.8
"m3uEdit2_is1" = m3uEdit version 2.2.4
"MADSL" = T-Com ADSL asszisztens
"Magic DVD Ripper_is1" = Magic DVD Ripper V5.3 build 7
"Magic ISO Maker v5.3 (build 0221)" = Magic ISO Maker v5.3 (build 0221)
"Magic ISO Maker v5.4 (build 0239)" = Magic ISO Maker v5.4 (build 0239)
"MakeMKV" = MakeMKV v1.2_beta
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MediaCoder" = MediaCoder 0.7.1.4490
"MediaCoder Audio Edition" = MediaCoder Audio Edition 0.6.1
"MediaInfo" = MediaInfo 0.7.20
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack - hun" = Nyelvi csomag a Microsoft .NET-keretrendszer 3.5-ös verziójához – HUN
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MKV TO AVI CONVERTER_is1" = MKV TO AVI CONVERTER version 3.1
"MKV To AVI With Subtitle_is1" = MKV To AVI With Subtitle version 1.0
"MKVtoolnix" = MKVtoolnix 2.1.0
"MoBiMouse" = MoBiMouse
"Monkey's Audio_is1" = Monkey's Audio
"Mozilla Firefox (3.6.8)" = Mozilla Firefox (3.6.8)
"MP3 Cutter Joiner_is1" = MP3 Cutter Joiner 1.00
"MP3 Sound Cutter 1.40" = MP3 Sound Cutter 1.40
"Mp3_File_Editor_5" = Mp3 File Editor 5.11 (standard)
"Mp3Doctor_is1" = Mp3Doctor 5.11.057
"MP3TagEditor" = MP3TagEditor
"MPEG Video Wizard DVD" = MPEG Video Wizard DVD 4.0.4.111 (12/2008)
"Muxman 0.15R" = Muxman 0.15R
"Nero - Burning Rom!UninstallKey" = Nero 6 Ultra Edition
"NeroVision!UninstallKey" = Nero Digital
"ProjectX_0" = ProjectX 0.90.4.00
"QuickPar" = QuickPar 0.9
"RAM Defrag" = RAM Defrag
"RAM Idle LE_is1" = RAM Idle LE
"RealAlt_is1" = Real Alternative 1.7.5
"Revo Uninstaller" = Revo Uninstaller 1.83
"RM to MP3 Converter_is1" = RM to MP3 Converter 1.21
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software
"SolveigMM Video Splitter" = SolveigMM Video Splitter
"Sonic Foundry Soft Encode 1.0 - Dolby Digital 5.1" = Sonic Foundry Soft Encode 1.0 - Dolby Digital 5.1
"SoundTrek Drummer1.0.1.1" = SoundTrek Drummer v1.0.1.1
"Speed Video Splitter_is1" = Speed Video Splitter 4.3.18
"ST6UNST #1" = ISOX Creator
"SubFind_is1" = SubFind 1.7
"SubtitleWorkshop" = Subtitle Workshop 2.51
"SubToSup 0.9 Beta" = SubToSup 0.9 Beta
"SUPER ©" = SUPER © Version 2009.bld.36 (June 10, 2009)
"SurCode DVD Pro DTS Encoder" = SurCode DVD Pro DTS Encoder
"SurCode DVD-DTS" = SurCode DVD-DTS
"SurCode MLP" = SurCode MLP
"TeamViewer 4" = TeamViewer 4
"The FilmMachine_is1" = The FilmMachine 1.6.1
"TimeAdjuster" = Time Adjuster v2.7 (STANDARD)
"Tipard Xbox Converter_is1" = Tipard Xbox Converter
"Total Audio Converter_is1" = AudioConverter
"Totalcmd" = Total Commander (Remove or Repair)
"Ultra MP4 Video Converter_is1" = Ultra MP4 Video Converter 3.9.1120
"Ultra Video Joiner_is1" = Ultra Video Joiner 4.6.1114
"Ultra Video Splitter_is1" = Ultra Video Splitter 4.1.0
"UltraISO_is1" = UltraISO V7.52 ME
"Uninstall_is1" = Uninstall 1.0.0.0
"Unlocker" = Unlocker 1.8.7
"uTorrent" = µTorrent
"VidCrop PRO_is1" = VidCrop PRO
"Video Cleaner Pro" = River Past Video Cleaner Pro
"Video Cutter_is1" = Video Cutter 1.0
"Video Slice" = River Past Video Slice
"Videora Xbox 360 Converter" = Videora Xbox 360 Converter 2.16
"VideoReDoTVSuite_is1" = VideoReDo TVSuite Version 3.1.4.549
"Visual MP3" = Visual MP3
"VLC media player" = VLC media player 1.0.1
"VOBfile Editor" = VOB fájl Editor
"Voipwise_is1" = Voipwise
"WAV to AC3 Encoder_is1" = WAV to AC3 Encoder 4.1
"Wiagra Video Joiner_is1" = Wiagra Video Joiner 3
"WIC" = Windows Imaging Component
"Wincmd" = Windows Commander (Remove or Repair)
"WinDjView" = WinDjView 1.0.3
"Windows Doctor_is1" = Windows Doctor 2.0
"Windows Media Encoder 9" = Windows Media Encoder 9 Series
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows Media Player" = Windows Media Player 10
"WinMerge_is1" = WinMerge 2.12.4
"WinRAR archiver" = WinRAR archiver
"WMV9_VCM" = Microsoft Windows Media Video 9 VCM
"WMV9APDMOE" = Windows Media Video 9 Advanced Profile Codec
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xbox360 Dump Extractor Tool GUI" = Xbox360 Dump Extractor Tool GUI 1.1
"Xilisoft DVD Subtitle Ripper" = Xilisoft DVD Subtitle Ripper
"Xilisoft Video Cutter" = Xilisoft Video Cutter
"XnView_is1" = XnView 1.70.4
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
"XRECODE_is1" = XRECODE
"XXXISO_1" = XXXISO 1


szer. aug. 25, 2010 17:34
Profil Privát üzenet küldése
arany tag

Csatlakozott: csüt. jan. 01, 2009 20:34
Hozzászólások: 294
Hozzászólás Re: pilaka bogarai
========== Files - Modified Within 30 Days ==========

[2010.08.25 17:53:36 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Pali\Asztal\OTL.exe
[2010.08.25 17:42:13 | 000,123,904 | ---- | M] () -- C:\Documents and Settings\Pali\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.08.25 17:22:26 | 000,004,765 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[2010.08.25 17:12:04 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.08.25 17:11:53 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.08.25 16:51:48 | 009,961,472 | -H-- | M] () -- C:\Documents and Settings\Pali\NTUSER.DAT
[2010.08.25 16:51:48 | 000,000,278 | -HS- | M] () -- C:\Documents and Settings\Pali\ntuser.ini
[2010.08.25 16:51:43 | 000,000,110 | ---- | M] () -- C:\Documents and Settings\Pali\Dokumentumok\ax_files.xml
[2010.08.25 16:50:41 | 003,827,929 | R--- | M] () -- C:\Documents and Settings\Pali\Asztal\ComboFix.exe
[2010.08.25 16:46:49 | 000,210,944 | ---- | M] () -- C:\Documents and Settings\Pali\Asztal\T-Cleaner.exe
[2010.08.25 16:17:42 | 000,001,554 | ---- | M] () -- C:\Documents and Settings\Pali\Asztal\Lemeztöredezettség-mentesítő.lnk
[2010.08.25 15:56:32 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.08.24 22:58:23 | 000,002,423 | ---- | M] () -- C:\Documents and Settings\All Users\Asztal\Diskeeper 2008.lnk
[2010.08.24 17:27:00 | 000,000,202 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.08.24 15:47:42 | 001,198,928 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Pali\Asztal\virus-stell.com.exe
[2010.08.23 19:06:03 | 000,001,620 | ---- | M] () -- C:\Documents and Settings\Pali\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010.08.23 19:06:03 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Asztal\Mozilla Firefox.lnk
[2010.08.23 18:16:48 | 000,065,864 | ---- | M] () -- C:\Documents and Settings\Pali\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010.08.23 18:13:26 | 000,253,472 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.08.23 16:37:57 | 000,000,066 | ---- | M] () -- C:\WINDOWS\Speed Video Splitter.INI
[2010.08.23 16:35:13 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
[2010.08.23 16:35:13 | 000,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for
[2010.08.22 22:29:36 | 000,001,825 | ---- | M] () -- C:\Documents and Settings\All Users\Asztal\Ulead VideoStudio 11.lnk
[2010.08.22 21:33:39 | 000,002,164 | ---- | M] () -- C:\Documents and Settings\All Users\Asztal\Ulead DVD MovieFactory 4.0 Launcher.lnk
[2010.08.22 20:49:04 | 000,000,086 | ---- | M] () -- C:\WINDOWS\bddrlog.ini
[2010.08.22 20:49:01 | 000,000,086 | ---- | M] () -- C:\WINDOWS\ddrlog.ini
[2010.08.22 20:49:01 | 000,000,071 | ---- | M] () -- C:\WINDOWS\BDDRSetup.iss
[2010.08.22 20:48:56 | 000,000,071 | ---- | M] () -- C:\WINDOWS\DDRSetup.iss
[2010.08.22 20:38:45 | 000,000,833 | ---- | M] () -- C:\Documents and Settings\All Users\Asztal\Alcohol 120%.lnk
[2010.08.22 20:29:44 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) -- C:\WINDOWS\System32\drivers\sptd.sys
[2010.08.21 17:38:50 | 000,000,326 | ---- | M] () -- C:\WINDOWS\wcx_ftp.ini
[2010.08.21 14:30:40 | 000,000,173 | ---- | M] () -- C:\WINDOWS\System32\temp_0000_85-20.aok
[2010.08.21 13:40:25 | 000,000,174 | ---- | M] () -- C:\WINDOWS\System32\test.aok
[2010.08.20 19:58:40 | 001,080,400 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.08.20 19:58:40 | 000,449,122 | ---- | M] () -- C:\WINDOWS\System32\perfh00E.dat
[2010.08.20 19:58:40 | 000,443,588 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.08.20 19:58:40 | 000,100,798 | ---- | M] () -- C:\WINDOWS\System32\perfc00E.dat
[2010.08.20 19:58:40 | 000,071,846 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.08.20 19:54:31 | 000,001,801 | ---- | M] () -- C:\Documents and Settings\Pali\Application Data\Microsoft\Internet Explorer\Quick Launch\Samsung New PC Studio.lnk
[2010.08.20 19:52:03 | 000,002,528 | ---- | M] () -- C:\Documents and Settings\Pali\Application Data\$_hpcst$.hpc
[2010.08.20 19:51:12 | 000,001,883 | ---- | M] () -- C:\Documents and Settings\All Users\Asztal\Samsung New PC Studio.lnk
[2010.08.20 19:33:25 | 000,012,693 | ---- | M] () -- C:\Documents and Settings\Pali\Dokumentumok\Hangoskönyv 16-17.clbx
[2010.08.20 18:26:54 | 000,012,532 | ---- | M] () -- C:\Documents and Settings\Pali\Dokumentumok\Hangoskönyv 14-15.clbx
[2010.08.20 14:50:50 | 000,011,911 | ---- | M] () -- C:\Documents and Settings\Pali\Dokumentumok\Hangoskönyv 12-13.clbx
[2010.08.20 14:29:20 | 000,011,994 | ---- | M] () -- C:\Documents and Settings\Pali\Dokumentumok\Hangoskönyv 10-11.clbx
[2010.08.20 11:48:22 | 000,001,031 | ---- | M] () -- C:\WINDOWS\win.ini
[2010.08.18 10:58:05 | 000,002,621 | ---- | M] () -- C:\Documents and Settings\Pali\Asztal\Microsoft Office Outlook 2003.lnk
[2010.08.16 21:33:53 | 000,000,909 | ---- | M] () -- C:\Documents and Settings\Pali\Asztal\Parancsikon - Portable MobiMouse.lnk
[2010.08.14 09:26:56 | 000,002,078 | ---- | M] () -- C:\Documents and Settings\Pali\Dokumentumok\2010 08 14.chl
[2010.08.14 09:00:58 | 000,000,610 | ---- | M] () -- C:\Documents and Settings\Pali\Application Data\Microsoft\Internet Explorer\Quick Launch\Opera.lnk
[2010.08.14 09:00:57 | 000,000,592 | ---- | M] () -- C:\Documents and Settings\All Users\Asztal\Opera.lnk
[2010.08.13 22:38:40 | 000,000,684 | ---- | M] () -- C:\Documents and Settings\Pali\Application Data\Microsoft\Internet Explorer\Quick Launch\ChrisTV.lnk
[2010.08.13 22:38:40 | 000,000,666 | ---- | M] () -- C:\Documents and Settings\All Users\Asztal\ChrisTV.lnk
[2010.08.11 00:33:08 | 000,004,372 | ---- | M] () -- C:\Documents and Settings\Pali\Dokumentumok\Hangoskönyv lista.rtf
[2010.08.10 21:26:35 | 000,000,135 | ---- | M] () -- C:\WINDOWS\Mp3Cutjoin.ini
[2010.08.10 21:26:35 | 000,000,005 | ---- | M] () -- C:\WINDOWS\System32\SySMp3CJ.dat
[2010.08.10 19:32:29 | 000,000,005 | ---- | M] () -- C:\WINDOWS\System32\SySCut.dat
[2010.08.10 16:25:48 | 000,000,419 | ---- | M] () -- C:\WINDOWS\gib00001.hst
[2010.08.10 16:25:48 | 000,000,142 | ---- | M] () -- C:\WINDOWS\GIB30_32.INI
[2010.08.10 16:02:42 | 000,000,756 | ---- | M] () -- C:\Documents and Settings\All Users\Asztal\Lexmark Imaging Studio - 3300 Series.lnk
[2010.07.29 10:45:27 | 000,000,833 | ---- | M] () -- C:\Documents and Settings\Pali\Asztal\ACA Capture Pro.lnk
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.08.25 16:56:35 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010.08.25 16:56:35 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010.08.25 16:56:35 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010.08.25 16:56:35 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010.08.25 16:56:35 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010.08.25 16:50:31 | 003,827,929 | R--- | C] () -- C:\Documents and Settings\Pali\Asztal\ComboFix.exe
[2010.08.25 16:46:49 | 000,210,944 | ---- | C] () -- C:\Documents and Settings\Pali\Asztal\T-Cleaner.exe
[2010.08.23 19:26:35 | 000,168,448 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010.08.23 19:26:34 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010.08.23 19:26:33 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010.08.23 19:26:33 | 000,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml
[2010.08.23 19:26:32 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2010.08.23 19:26:32 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010.08.23 19:26:31 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010.08.23 19:26:31 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2010.08.23 16:35:13 | 000,054,156 | -H-- | C] () -- C:\WINDOWS\QTFont.qfn
[2010.08.23 16:35:13 | 000,001,409 | ---- | C] () -- C:\WINDOWS\QTFont.for
[2010.08.22 22:29:36 | 000,001,825 | ---- | C] () -- C:\Documents and Settings\All Users\Asztal\Ulead VideoStudio 11.lnk
[2010.08.22 21:33:39 | 000,002,164 | ---- | C] () -- C:\Documents and Settings\All Users\Asztal\Ulead DVD MovieFactory 4.0 Launcher.lnk
[2010.08.22 20:38:45 | 000,000,833 | ---- | C] () -- C:\Documents and Settings\All Users\Asztal\Alcohol 120%.lnk
[2010.08.22 20:25:10 | 000,000,086 | ---- | C] () -- C:\WINDOWS\bddrlog.ini
[2010.08.22 20:25:07 | 000,000,071 | ---- | C] () -- C:\WINDOWS\BDDRSetup.iss
[2010.08.22 20:25:06 | 000,000,086 | ---- | C] () -- C:\WINDOWS\ddrlog.ini
[2010.08.22 20:25:03 | 000,000,071 | ---- | C] () -- C:\WINDOWS\DDRSetup.iss
[2010.08.22 20:09:50 | 000,767,952 | ---- | C] () -- C:\WINDOWS\BDTSupport.dll.old
[2010.08.20 23:04:00 | 000,000,173 | ---- | C] () -- C:\WINDOWS\System32\temp_0000_85-20.aok
[2010.08.20 23:01:15 | 000,000,174 | ---- | C] () -- C:\WINDOWS\System32\test.aok
[2010.08.20 19:54:31 | 000,001,801 | ---- | C] () -- C:\Documents and Settings\Pali\Application Data\Microsoft\Internet Explorer\Quick Launch\Samsung New PC Studio.lnk
[2010.08.20 19:52:30 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2010.08.20 19:52:30 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2010.08.20 19:52:03 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Pali\Application Data\$_hpcst$.hpc
[2010.08.20 19:51:12 | 000,001,883 | ---- | C] () -- C:\Documents and Settings\All Users\Asztal\Samsung New PC Studio.lnk
[2010.08.20 19:18:41 | 000,012,693 | ---- | C] () -- C:\Documents and Settings\Pali\Dokumentumok\Hangoskönyv 16-17.clbx
[2010.08.20 18:26:54 | 000,012,532 | ---- | C] () -- C:\Documents and Settings\Pali\Dokumentumok\Hangoskönyv 14-15.clbx
[2010.08.20 14:31:43 | 000,011,911 | ---- | C] () -- C:\Documents and Settings\Pali\Dokumentumok\Hangoskönyv 12-13.clbx
[2010.08.20 14:29:20 | 000,011,994 | ---- | C] () -- C:\Documents and Settings\Pali\Dokumentumok\Hangoskönyv 10-11.clbx
[2010.08.16 21:33:53 | 000,000,909 | ---- | C] () -- C:\Documents and Settings\Pali\Asztal\Parancsikon - Portable MobiMouse.lnk
[2010.08.16 21:29:34 | 000,299,008 | ---- | C] () -- C:\WINDOWS\System32\winwmbcay.dll
[2010.08.16 21:29:34 | 000,018,432 | ---- | C] () -- C:\WINDOWS\System32\winint.dll
[2010.08.14 09:26:56 | 000,002,078 | ---- | C] () -- C:\Documents and Settings\Pali\Dokumentumok\2010 08 14.chl
[2010.08.13 22:38:40 | 000,000,684 | ---- | C] () -- C:\Documents and Settings\Pali\Application Data\Microsoft\Internet Explorer\Quick Launch\ChrisTV.lnk
[2010.08.13 22:38:40 | 000,000,666 | ---- | C] () -- C:\Documents and Settings\All Users\Asztal\ChrisTV.lnk
[2010.08.13 21:40:31 | 000,001,376 | ---- | C] () -- C:\WINDOWS\System32\dx25mpg.ax
[2010.08.10 19:12:09 | 000,004,372 | ---- | C] () -- C:\Documents and Settings\Pali\Dokumentumok\Hangoskönyv lista.rtf
[2010.08.07 23:13:06 | 000,053,813 | ---- | C] () -- C:\Documents and Settings\Pali\Dokumentumok\mahab1.XtoDVD
[2010.08.07 23:13:06 | 000,000,110 | ---- | C] () -- C:\Documents and Settings\Pali\Dokumentumok\ax_files.xml
[2010.08.07 23:12:35 | 000,022,271 | ---- | C] () -- C:\Documents and Settings\Pali\Dokumentumok\kabaré 6.clbx
[2010.08.07 23:12:35 | 000,018,072 | ---- | C] () -- C:\Documents and Settings\Pali\Dokumentumok\Kabaré 5.clbx
[2010.08.07 23:12:35 | 000,018,072 | ---- | C] () -- C:\Documents and Settings\Pali\Dokumentumok\Kabaré 3.clbx
[2010.08.07 23:12:35 | 000,018,070 | ---- | C] () -- C:\Documents and Settings\Pali\Dokumentumok\Kabaré 4.clbx
[2010.08.07 23:12:35 | 000,013,517 | ---- | C] () -- C:\Documents and Settings\Pali\Dokumentumok\kabaráklub 1-2.clbx
[2010.08.07 23:12:35 | 000,013,142 | ---- | C] () -- C:\Documents and Settings\Pali\Dokumentumok\Kabaré 2.clbx
[2010.08.07 23:12:35 | 000,011,115 | ---- | C] () -- C:\Documents and Settings\Pali\Dokumentumok\Hangoskönyv 8-9.clbx
[2010.08.07 23:12:35 | 000,007,942 | ---- | C] () -- C:\Documents and Settings\Pali\Dokumentumok\kabaré 1.clbx
[2010.08.07 23:12:35 | 000,006,352 | ---- | C] () -- C:\Documents and Settings\Pali\Dokumentumok\CD borító szöveggel.clbx
[2010.08.07 23:12:35 | 000,000,313 | ---- | C] () -- C:\Documents and Settings\Pali\Dokumentumok\gondapal69 (t-online) ismerősei.ctt
[2010.08.07 23:11:32 | 000,001,862 | ---- | C] () -- C:\Documents and Settings\Pali\Asztal\SlotGame (7) SeVen Multi-Program 1.0.lnk
[2010.08.07 23:11:31 | 000,000,670 | ---- | C] () -- C:\Documents and Settings\Pali\Asztal\Parancsikon - XboxGames.lnk
[2010.08.07 23:11:26 | 000,000,877 | ---- | C] () -- C:\Documents and Settings\Pali\Asztal\CodecInstaller.lnk
[2010.08.07 23:11:26 | 000,000,864 | ---- | C] () -- C:\Documents and Settings\Pali\Asztal\InstalledCodec.lnk
[2010.08.07 23:11:26 | 000,000,740 | ---- | C] () -- C:\Documents and Settings\Pali\Asztal\Copy-Discovery 2000.lnk
[2010.08.07 23:11:26 | 000,000,618 | ---- | C] () -- C:\Documents and Settings\Pali\Asztal\DVDFab 7.lnk
[2010.08.07 23:11:26 | 000,000,569 | ---- | C] () -- C:\Documents and Settings\Pali\Asztal\Enemy Engaged 2.lnk
[2010.01.18 08:16:57 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\utezmza0.sys
[2010.01.13 10:36:15 | 000,001,054 | ---- | C] () -- C:\WINDOWS\WinCmp3x.INI
[2010.01.01 13:27:58 | 000,000,301 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2009.12.28 20:38:44 | 000,000,130 | -H-- | C] () -- C:\Documents and Settings\Pali\Local Settings\Application Data\spbfilespm.cfg
[2009.12.05 14:10:55 | 000,000,008 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\SDGLYBMPWPP.SYS
[2009.11.29 21:52:09 | 000,000,127 | ---- | C] () -- C:\Documents and Settings\Pali\Local Settings\Application Data\fusioncache.dat
[2009.10.30 12:14:11 | 000,000,066 | ---- | C] () -- C:\WINDOWS\Speed Video Splitter.INI
[2009.10.23 13:28:37 | 000,000,011 | ---- | C] () -- C:\WINDOWS\VcdToMpg.INI
[2009.10.23 13:28:37 | 000,000,011 | ---- | C] () -- C:\WINDOWS\M2TTrans.INI
[2009.10.23 13:28:36 | 000,000,011 | ---- | C] () -- C:\WINDOWS\VitMux2.INI
[2009.10.23 13:28:36 | 000,000,011 | ---- | C] () -- C:\WINDOWS\VitDmux2.INI
[2009.10.15 17:43:50 | 000,000,326 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2009.09.21 22:28:12 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\avisynth_c.dll
[2009.09.21 22:20:57 | 000,000,107 | ---- | C] () -- C:\WINDOWS\IfoEdit.INI
[2009.09.21 22:18:57 | 000,000,107 | ---- | C] () -- C:\WINDOWS\VobEdit.INI
[2009.09.21 19:59:55 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\sysprs7.dll
[2009.09.21 19:59:55 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth2.dll
[2009.09.21 19:59:55 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth1.dll
[2009.09.20 12:28:49 | 001,208,320 | ---- | C] () -- C:\WINDOWS\System32\cygxml2-2.dll
[2009.09.20 12:28:49 | 000,980,992 | ---- | C] () -- C:\WINDOWS\System32\cygiconv-2.dll
[2009.09.20 12:28:49 | 000,062,464 | ---- | C] () -- C:\WINDOWS\System32\cygz.dll
[2009.09.19 09:42:13 | 000,000,066 | ---- | C] () -- C:\WINDOWS\#1 DVD Audio Ripper.INI
[2009.09.19 08:56:16 | 000,000,000 | ---- | C] () -- C:\WINDOWS\AudioDVD.INI
[2009.09.19 08:44:35 | 000,003,082 | ---- | C] () -- C:\WINDOWS\System32\affv11300p2now.sys
[2009.09.19 08:42:41 | 000,000,135 | ---- | C] () -- C:\WINDOWS\Mp3CutterJoiner.ini
[2009.09.19 08:24:03 | 000,000,034 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2009.09.19 08:14:15 | 000,000,135 | ---- | C] () -- C:\WINDOWS\Mp3Cutjoin.ini
[2009.09.19 07:58:38 | 000,210,456 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2009.09.19 07:58:38 | 000,206,360 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2009.09.19 07:58:38 | 000,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2009.09.19 07:58:38 | 000,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2009.09.19 07:58:38 | 000,194,072 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2009.09.19 07:58:38 | 000,026,136 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2009.09.19 07:25:04 | 000,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2009.09.09 10:01:42 | 000,000,961 | ---- | C] () -- C:\WINDOWS\PVAStrumento.ini
[2009.09.08 08:50:38 | 000,000,080 | ---- | C] () -- C:\WINDOWS\Muxman.ini
[2009.09.07 10:40:33 | 000,129,024 | ---- | C] () -- C:\WINDOWS\System32\AVERM.dll
[2009.09.07 10:40:33 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\AVEQT.dll
[2009.08.30 20:09:05 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
[2009.08.27 10:17:21 | 000,000,063 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2009.07.25 20:03:54 | 000,000,013 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\userlib.dll
[2009.07.25 20:03:54 | 000,000,013 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ntcache.dat
[2009.07.24 15:15:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\SMMVSplitter.INI
[2009.07.23 09:41:45 | 000,000,045 | ---- | C] () -- C:\WINDOWS\Twacker.ini
[2009.07.23 09:41:25 | 000,000,035 | ---- | C] () -- C:\WINDOWS\DevCap.ini
[2009.07.22 22:42:43 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\LXPRMON.DLL
[2009.07.22 22:42:43 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\LXPMONUI.DLL
[2009.07.22 22:40:21 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxccvs.dll
[2009.07.22 18:21:02 | 000,001,346 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2009.07.22 12:28:45 | 000,000,014 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\AdobeUpdater.rbt
[2009.07.20 10:47:59 | 000,000,202 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009.07.20 00:03:22 | 000,001,173 | ---- | C] () -- C:\Documents and Settings\Pali\Application Data\vso_ts_preview.xml
[2009.07.19 23:36:31 | 000,000,142 | ---- | C] () -- C:\WINDOWS\GIB30_32.INI
[2009.07.19 20:33:40 | 000,000,388 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009.07.19 20:22:03 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\Pali\Application Data\pcouffin.log
[2009.07.19 20:21:49 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Pali\Application Data\pcouffin.cat
[2009.07.19 20:21:49 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Pali\Application Data\pcouffin.inf
[2009.07.19 16:59:49 | 000,004,765 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2009.07.19 01:50:33 | 000,123,904 | ---- | C] () -- C:\Documents and Settings\Pali\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.07.19 00:52:09 | 000,013,421 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2009.07.19 00:37:44 | 000,013,805 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2009.07.19 00:37:30 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2009.07.19 00:37:16 | 000,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2008.10.04 01:07:10 | 003,754,896 | ---- | C] () -- C:\WINDOWS\System32\erdmpg-6.dll
[2008.09.28 19:33:01 | 000,253,952 | ---- | C] () -- C:\WINDOWS\System32\Manipulate.dll
[2008.08.28 13:20:38 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\comLyricGetter.dll
[2008.08.28 13:17:22 | 000,097,280 | ---- | C] () -- C:\WINDOWS\System32\Uncommon.dll
[2008.08.28 13:17:20 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\NormalizeDSP.dll
[2007.10.25 17:26:10 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2007.09.20 12:27:16 | 003,190,784 | ---- | C] () -- C:\WINDOWS\System32\libavcodec.dll
[2007.09.20 12:27:16 | 000,741,376 | ---- | C] () -- C:\WINDOWS\System32\audxlib.dll
[2007.09.20 12:27:16 | 000,511,488 | ---- | C] () -- C:\WINDOWS\System32\ff_x264.dll
[2007.09.20 12:27:16 | 000,405,504 | ---- | C] () -- C:\WINDOWS\System32\libmplayer.dll
[2007.09.20 12:27:16 | 000,245,760 | ---- | C] () -- C:\WINDOWS\System32\ff_libfaad2.dll
[2007.09.20 12:27:16 | 000,221,184 | ---- | C] () -- C:\WINDOWS\System32\ff_kernelDeint.dll
[2007.09.20 12:27:16 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\TomsMoComp_ff.dll
[2007.09.20 12:27:16 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\ff_libdts.dll
[2007.09.20 12:27:16 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\ff_theora.dll
[2007.09.20 12:27:16 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\ff_samplerate.dll
[2007.09.20 12:27:16 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\ff_libmad.dll
[2007.09.20 12:27:16 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\libmpeg2_ff.dll
[2007.09.20 12:27:16 | 000,097,280 | ---- | C] () -- C:\WINDOWS\System32\ff_realaac.dll
[2007.09.20 12:27:16 | 000,079,872 | ---- | C] () -- C:\WINDOWS\System32\ff_tremor.dll
[2007.09.20 12:27:16 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ff_liba52.dll
[2007.09.20 12:27:16 | 000,038,400 | ---- | C] () -- C:\WINDOWS\System32\ff_unrar.dll
[2007.09.20 12:27:16 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\ff_wmv9.dll
[2007.08.29 08:13:58 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest
[2007.08.29 08:13:58 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dpl100.dll.manifest
[2007.01.04 00:02:23 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2006.05.16 08:25:43 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\hpzids01.dll
[2005.11.17 19:57:30 | 000,258,560 | ---- | C] () -- C:\WINDOWS\System32\MusicTagsAX.dll
[2004.10.01 05:11:42 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\moomd5.dll
[2004.08.18 14:00:00 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2004.08.18 14:00:00 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2004.06.01 16:31:14 | 000,865,574 | ---- | C] () -- C:\WINDOWS\System32\vorb.dll
[2004.06.01 16:31:14 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\xtenc.dll
[2004.06.01 16:31:13 | 000,241,664 | ---- | C] () -- C:\WINDOWS\System32\ID3.dll
[2004.06.01 16:31:13 | 000,219,136 | ---- | C] () -- C:\WINDOWS\System32\lame.dll
[2004.06.01 16:31:13 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\akrip32.dll
[2004.06.01 16:31:13 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\cdcache.dll
[2004.01.03 17:37:26 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\SysTrayDll.dll
[2003.08.07 21:01:50 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2003.04.10 13:01:36 | 000,005,581 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002.03.17 02:00:00 | 000,007,420 | ---- | C] () -- C:\WINDOWS\UA000071.DLL
[1998.06.13 22:53:26 | 000,044,544 | ---- | C] () -- C:\WINDOWS\System32\Gif89.dll

========== LOP Check ==========

[2010.01.18 11:48:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Agnitum
[2009.07.20 09:45:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Diskeeper Corporation
[2010.01.13 15:29:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Easy CD-DA Extractor
[2009.10.06 01:11:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FreeDownloadManager.ORG
[2009.11.08 16:55:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\GeoVid
[2009.09.05 20:53:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Intenium
[2010.08.23 18:13:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\InterVideo
[2009.07.19 18:13:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Locktime
[2010.08.20 19:55:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2010.08.11 23:11:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PixelPlanet
[2009.09.09 10:52:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\River Past G4
[2009.09.02 23:35:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\River Past G5
[2009.09.05 20:53:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScreenSeven
[2009.07.19 21:02:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SlySoft
[2010.08.22 22:31:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SmartSound Software Inc
[2010.08.24 15:55:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2010.08.22 22:27:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ulead Systems
[2010.08.10 20:14:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{CD08D33B-F39B-4A65-944A-A36FE20FB7BC}
[2009.12.05 10:04:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\abgx360
[2009.10.19 16:15:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\AltrixSoft
[2010.08.21 17:59:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\AnvSoft
[2010.08.21 15:45:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Any Video Converter Professional
[2009.12.07 00:44:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\AptDiff
[2010.01.09 14:48:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Audacity
[2009.09.21 22:20:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\AVCutty
[2009.09.12 21:00:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Broad Intelligence
[2010.08.08 23:33:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\calibre
[2009.11.29 22:15:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\CEZEO software
[2009.10.06 07:14:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\ComfortSoftware
[2009.09.21 20:30:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\concept design
[2009.07.20 00:06:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Convivea
[2009.09.21 20:20:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\COWON
[2009.09.02 22:57:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Cuttermaran
[2009.07.20 10:30:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\DAEMON Tools Pro
[2009.09.01 22:19:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\dcunningham.net
[2009.08.31 19:15:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Dicsoft Software
[2010.08.22 19:54:58 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\Pali\Application Data\drivers
[2009.07.24 15:13:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\DVD Catalyst3
[2009.10.19 16:24:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\DVDFab
[2009.07.24 10:32:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\EFSoftware
[2010.01.15 09:19:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\FileZilla
[2009.07.23 23:49:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\FontCreator
[2009.11.13 14:03:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Free Download Manager
[2009.10.23 23:21:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\GeoVid
[2009.07.25 23:15:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\GetRightToGo
[2009.09.12 08:45:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\HandBrake
[2009.08.26 11:00:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Image Zone Express
[2009.07.19 22:03:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\ImgBurn
[2009.08.30 03:21:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\ImTOO Software Studio
[2009.07.21 11:17:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\IObit
[2009.09.21 20:46:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\JLC's Software
[2009.09.01 18:12:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\KC Softwares
[2009.08.30 21:10:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\LEAPS
[2009.07.19 18:14:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Locktime
[2010.08.08 00:57:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\MorphoLogic
[2009.10.23 22:40:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\MOVAVI
[2009.07.19 19:21:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Opera
[2010.08.20 19:55:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\PC Suite
[2009.10.23 12:25:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Pegasys Inc
[2009.07.24 10:44:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\PhotoFiltre Studio X
[2010.08.11 23:10:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\PixelPlanet
[2009.09.19 07:32:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Publish Providers
[2009.09.09 10:51:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\River Past G4
[2009.09.02 23:13:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\River Past G5
[2010.08.20 19:51:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Samsung
[2010.08.10 20:12:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Seven Zip
[2009.09.19 08:59:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Softplicity
[2009.10.18 11:23:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Solveig Multimedia
[2009.09.19 07:23:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Sony
[2009.07.25 18:29:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\SorensonMedia
[2010.01.12 20:35:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Sprintbit Software
[2009.09.20 00:14:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Steinberg
[2009.08.30 13:03:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\TeamViewer
[2010.08.10 19:33:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Thinstall
[2009.09.27 23:08:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Thornsoft Development
[2010.08.22 22:34:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Ulead Systems
[2010.08.25 15:54:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\uTorrent
[2009.10.23 10:53:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\VideoReDo-TVSuite
[2009.10.08 08:39:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\VitySoft
[2009.09.21 21:07:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Voipwise
[2010.01.17 21:47:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Vso
[2009.08.30 20:53:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Xilisoft Corporation
[2009.12.03 09:03:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vendég\Application Data\Locktime

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >


< MD5 for: AGP440.SYS >
[2004.08.18 14:00:00 | 018,786,561 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys

< MD5 for: ATAPI.SYS >
[2004.08.18 14:00:00 | 018,786,561 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2004.08.18 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2004.08.18 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.18 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0013\DriverFiles\i386\atapi.sys

< MD5 for: EVENTLOG.DLL >
[2004.08.18 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=9BF16BF2A92E9946C034947E45C6FB4E -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2004.08.18 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=9BF16BF2A92E9946C034947E45C6FB4E -- C:\WINDOWS\system32\eventlog.dll

< MD5 for: NETLOGON.DLL >
[2004.08.18 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=38A4E873DEBBA38F1E7E8D9D6AF593D8 -- C:\WINDOWS\system32\dllcache\netlogon.dll
[2004.08.18 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=38A4E873DEBBA38F1E7E8D9D6AF593D8 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: SCECLI.DLL >
[2004.08.18 14:00:00 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=DE117DA3508ECAAECEA21901DBA31DAB -- C:\WINDOWS\system32\dllcache\scecli.dll
[2004.08.18 14:00:00 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=DE117DA3508ECAAECEA21901DBA31DAB -- C:\WINDOWS\system32\scecli.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2009.07.19 02:00:52 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2009.07.19 02:00:51 | 000,663,552 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2009.07.19 02:00:51 | 000,471,040 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

< %systemroot%\system32\drivers\*.sys /90 >
[2010.08.22 20:29:44 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) -- C:\WINDOWS\system32\drivers\sptd.sys

========== Alternate Data Streams ==========

@Alternate Data Stream - 182 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4BF2F6B5
@Alternate Data Stream - 147 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:661DFA1C
@Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:05EE1EEF
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A8ADE5D8
< End of report >


szer. aug. 25, 2010 17:31
Profil Privát üzenet küldése
arany tag

Csatlakozott: csüt. jan. 01, 2009 20:34
Hozzászólások: 294
Hozzászólás Re: pilaka bogarai
OTL logfile created on: 2010.08.25. 17:58:57 - Run 1
OTL by OldTimer - Version 3.2.10.0 Folder = C:\Documents and Settings\Pali\Asztal
Windows XP Professional Edition Szervizcsomag 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 0000040E | Country: Magyarország | Language: HUN | Date Format: yyyy.MM.dd.

1 023.00 Mb Total Physical Memory | 468.00 Mb Available Physical Memory | 46.00% Memory free
2.00 Gb Paging File | 1.00 Gb Available in Paging File | 65.00% Paging File free
Paging file location(s): C:\pagefile.sys 1000 1500 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 29.29 Gb Total Space | 10.14 Gb Free Space | 34.61% Space Free | Partition Type: NTFS
Drive D: | 20.50 Gb Total Space | 0.43 Gb Free Space | 2.11% Space Free | Partition Type: NTFS
Drive E: | 29.16 Gb Total Space | 1.94 Gb Free Space | 6.65% Space Free | Partition Type: NTFS
Drive F: | 35.53 Gb Total Space | 0.26 Gb Free Space | 0.72% Space Free | Partition Type: NTFS
Drive G: | 55.06 Gb Total Space | 0.96 Gb Free Space | 1.74% Space Free | Partition Type: NTFS
Drive H: | 146.72 Gb Total Space | 17.08 Gb Free Space | 11.64% Space Free | Partition Type: NTFS
I: Drive not present or media not loaded
Drive P: | 130.86 Gb Total Space | 51.34 Gb Free Space | 39.23% Space Free | Partition Type: NTFS

Computer Name: GG-C0E09BDA6906
Current User Name: Pali
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010.08.25 17:53:36 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Pali\Asztal\OTL.exe
PRC - [2010.08.09 15:27:06 | 000,836,464 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2010.02.01 18:57:56 | 002,036,576 | ---- | M] (Alcohol Soft Development Team) -- C:\Program Files\Alcohol Soft\Alcohol 120\Alcohol.exe
PRC - [2009.12.23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2009.11.25 01:51:40 | 000,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009.11.25 01:51:35 | 000,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009.11.25 01:51:21 | 000,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009.11.25 01:48:48 | 000,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2009.11.25 01:43:56 | 000,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2009.04.02 18:05:22 | 000,102,400 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
PRC - [2009.03.31 09:39:36 | 000,233,472 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe
PRC - [2009.01.12 14:15:52 | 000,071,096 | ---- | M] () -- C:\Program Files\Blaze Media Pro\NMSAccess32.exe
PRC - [2007.10.16 20:04:12 | 001,094,936 | ---- | M] (Diskeeper Corporation) -- C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
PRC - [2007.01.18 19:04:04 | 000,067,056 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
PRC - [2006.09.25 09:12:20 | 000,045,056 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
PRC - [2006.08.11 11:15:36 | 000,200,704 | ---- | M] (InterVideo Inc.) -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
PRC - [2006.03.03 21:03:10 | 000,069,632 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe
PRC - [2005.07.21 01:16:50 | 000,192,512 | ---- | M] (Lexmark International, Inc.) -- C:\Program Files\Lexmark 3300 Series\LXCCmon.exe
PRC - [2005.07.06 15:04:20 | 000,466,944 | ---- | M] (Lexmark International, Inc.) -- C:\WINDOWS\system32\lxcccoms.exe
PRC - [2005.05.02 19:22:40 | 000,187,392 | ---- | M] (Chris P.C. srl) -- C:\Program Files\ChrisTV\ChrisTV_Agent.exe
PRC - [2004.12.23 17:27:50 | 000,081,920 | ---- | M] (Ulead Systems) -- C:\Program Files\Common Files\Ulead Systems\DVD\USISrv.exe
PRC - [2004.08.18 14:00:00 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004.05.10 04:34:22 | 000,454,656 | ---- | M] () -- C:\Program Files\TVR\RecSche.EXE
PRC - [2004.03.25 10:03:00 | 000,032,256 | ---- | M] (Philips) -- C:\WINDOWS\system32\lvhidsvc.exe
PRC - [2003.03.18 18:07:10 | 000,155,648 | ---- | M] (H+H Software GmbH) -- C:\Program Files\Virtual CD v5\System\VC5Tray.exe
PRC - [2003.03.11 17:08:30 | 000,176,128 | ---- | M] (H+H Software GmbH) -- C:\Program Files\HHVcdV5Sys\VC5Play.exe
PRC - [2003.02.14 15:10:02 | 000,147,456 | ---- | M] (H+H Software GmbH) -- C:\Program Files\HHVcdV5Sys\VC5SecS.exe


========== Modules (SafeList) ==========

MOD - [2010.08.25 17:53:36 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Pali\Asztal\OTL.exe
MOD - [2004.08.18 14:00:00 | 001,050,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
MOD - [2004.08.18 14:00:00 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)
SRV - [2009.12.23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2009.11.25 01:51:35 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV - [2009.11.25 01:51:21 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2009.11.25 01:48:48 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2009.11.25 01:43:56 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV - [2009.03.31 09:39:36 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2009.02.12 04:41:24 | 000,409,280 | ---- | M] (AltrixSoft (http://www.altrixsoft.com/)) [On_Demand | Stopped] -- C:\WINDOWS\system32\HDDSvc.exe -- (HDDSvc)
SRV - [2009.01.12 14:15:52 | 000,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files\Blaze Media Pro\NMSAccess32.exe -- (NMSAccess)
SRV - [2008.08.05 16:50:50 | 001,238,344 | ---- | M] (Agnitum Ltd.) [Auto | Running] -- C:\Program Files\Agnitum\Outpost Firewall Pro\acs.exe -- (acssrv)
SRV - [2008.04.07 09:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2007.10.16 20:04:12 | 001,094,936 | ---- | M] (Diskeeper Corporation) [Auto | Running] -- C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe -- (Diskeeper)
SRV - [2007.05.04 09:27:00 | 000,071,360 | ---- | M] () [Auto | Stopped] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU)
SRV - [2007.01.18 19:04:04 | 000,067,056 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
SRV - [2006.08.11 11:15:36 | 000,200,704 | ---- | M] (InterVideo Inc.) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe -- (Capture Device Service)
SRV - [2006.03.03 21:03:10 | 000,069,632 | ---- | M] (HP) [Unknown | Running] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
SRV - [2005.07.06 15:04:20 | 000,466,944 | ---- | M] (Lexmark International, Inc.) [On_Demand | Running] -- C:\WINDOWS\System32\lxcccoms.exe -- (lxcc_device)
SRV - [2004.03.25 10:03:00 | 000,032,256 | ---- | M] (Philips) [Auto | Running] -- C:\WINDOWS\system32\lvhidsvc.exe -- (LvHidSvc)
SRV - [2003.02.14 15:10:02 | 000,147,456 | ---- | M] (H+H Software GmbH) [Auto | Running] -- C:\Program Files\HHVcdV5Sys\VC5SecS.exe -- (VC5SecS)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Pali\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - [2010.08.22 20:29:44 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2010.01.18 08:16:58 | 000,007,168 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\utezmza0.sys -- (utezmza0)
DRV - [2009.11.25 01:50:59 | 000,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2009.11.25 01:50:12 | 000,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2009.11.25 01:50:00 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2009.11.25 01:49:07 | 000,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2009.11.25 01:48:57 | 000,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2009.11.25 01:47:54 | 000,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2009.07.22 18:36:50 | 000,082,380 | ---- | M] (Oak Technology Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\AFS2K.SYS -- (AFS2K)
DRV - [2009.03.31 09:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009.03.20 10:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV - [2009.03.20 10:01:26 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM)
DRV - [2009.03.20 10:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter)
DRV - [2008.07.11 16:42:08 | 000,033,408 | ---- | M] (Agnitum Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\Filt\ASWFilt.dll -- (ASWFilt)
DRV - [2008.07.11 16:41:28 | 000,673,920 | ---- | M] (Agnitum Ltd.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\SandBox.sys -- (SandBox)
DRV - [2008.06.30 18:16:14 | 000,234,640 | ---- | M] (Agnitum Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\afwcore.sys -- (afwcore)
DRV - [2008.06.30 18:16:00 | 000,030,864 | ---- | M] (Agnitum Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\afw.sys -- (afw)
DRV - [2008.01.25 11:12:34 | 000,025,088 | ---- | M] (TeamViewer GmbH) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\teamviewervpn.sys -- (teamviewervpn)
DRV - [2007.12.11 04:59:40 | 000,033,792 | ---- | M] (Team H2O) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\cledx.sys -- (CLEDX)
DRV - [2007.09.25 16:59:46 | 000,015,152 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\MediaCoder\SysInfo.sys -- (CrystalSysInfo)
DRV - [2007.09.17 15:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2007.08.07 21:48:33 | 000,025,160 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV - [2007.02.16 02:57:04 | 000,034,760 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV - [2007.02.03 12:57:50 | 004,474,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006.12.28 05:44:44 | 000,084,992 | R--- | M] (ATI Research Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AtiHdAud.sys -- (HdAudAddService)
DRV - [2006.12.17 04:50:29 | 001,918,464 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2006.10.22 14:22:00 | 000,009,216 | R--- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\videX32.sys -- (videX32)
DRV - [2006.06.18 23:39:44 | 000,043,520 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2005.01.07 17:07:18 | 000,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)
DRV - [2004.12.23 17:27:56 | 000,027,392 | ---- | M] (Ulead Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ULCDRHlp.sys -- (ULCDRHlp)
DRV - [2004.09.20 15:56:54 | 000,016,512 | R--- | M] (Philips) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tvtuner.sys -- (lvtuner)
DRV - [2004.09.20 15:56:48 | 000,308,736 | R--- | M] (Philips) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tvcap.sys -- (LVCap138)
DRV - [2004.08.14 18:00:00 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2004.07.07 02:33:02 | 000,292,896 | ---- | M] (Ulead Systems, Inc.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\USIUDF.sys -- (USIUDF)
DRV - [2003.05.07 11:46:30 | 000,057,008 | ---- | M] (H+H Software GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\VBEV5MP.sys -- (vbev5mp)
DRV - [2002.10.09 14:38:02 | 000,009,376 | ---- | M] (T-Systems Nova GmbH) [Kernel | On_Demand | Stopped] -- C:\Program Files\Matáv ADSL asszisztens\TNPACKET.SYS -- (TNPacket)
DRV - [2002.09.16 17:14:32 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\PQNTDRV.sys -- (PQNTDrv)
DRV - [2001.06.22 05:39:02 | 000,073,728 | ---- | M] (Rainbow Technologies, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\System32\Drivers\SENTINEL.SYS -- (Sentinel)
DRV - [2000.10.15 20:38:54 | 000,016,068 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files\Matáv ADSL asszisztens\PCANDIS5.SYS -- (PCANDIS5)
DRV - [1999.09.10 12:06:00 | 000,025,244 | ---- | M] (Adaptec) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ASPI32.SYS -- (Aspi32)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-796845957-1409082233-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-796845957-1409082233-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Bing"
FF - prefs.js..browser.search.defaulturl: "http://www.bing.com/search?FORM=IEFM1&q="
FF - prefs.js..browser.search.selectedEngine: "Bing"
FF - prefs.js..browser.search.update: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://go.microsoft.com/fwlink/?LinkId=69157"
FF - prefs.js..extensions.enabledItems: support@predictad.com:1.11
FF - prefs.js..extensions.enabledItems: autopager@mozilla.org:0.6.1.22
FF - prefs.js..extensions.enabledItems: check4change-owner@mozdev.org:1.7.1
FF - prefs.js..extensions.enabledItems: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.2.1.29
FF - prefs.js..extensions.enabledItems: fdm_ffext@freedownloadmanager.org:1.3.4
FF - prefs.js..extensions.enabledItems: {1a0c9ebe-ddf9-4b76-b8a3-675c77874d37}:2.9.7
FF - prefs.js..keyword.URL: "http://www.bing.com/search?FORM=IEFM1&q="
FF - prefs.js..keyword.enabled: false
FF - prefs.js..network.proxy.type: 458765

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.08.23 19:06:02 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.08.23 19:30:32 | 000,000,000 | ---D | M]

[2009.10.16 21:52:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Mozilla\Extensions
[2009.08.25 03:26:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Mozilla\Extensions\MediaCoder
[2009.10.16 21:52:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Mozilla\Extensions\MediaCoder-Setup-Wizard
[2010.08.13 21:41:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Mozilla\Firefox\Profiles\5x43q2yd.default\extensions
[2010.08.13 21:41:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Mozilla\Firefox\Profiles\5x43q2yd.default\extensions\support@predictad.com
[2010.08.07 23:33:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Mozilla\Firefox\Profiles\5x43q2yd.default\extensions\toolbar@ask.com
[2010.08.24 19:21:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Mozilla\Firefox\Profiles\trkpvxdy.default\extensions
[2009.12.20 21:52:55 | 000,000,000 | ---D | M] (FlashGot) -- C:\Documents and Settings\Pali\Application Data\Mozilla\Firefox\Profiles\trkpvxdy.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}
[2009.09.10 09:26:58 | 000,000,000 | ---D | M] (TwitterBar) -- C:\Documents and Settings\Pali\Application Data\Mozilla\Firefox\Profiles\trkpvxdy.default\extensions\{1a0c9ebe-ddf9-4b76-b8a3-675c77874d37}
[2009.12.20 21:52:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Mozilla\Firefox\Profiles\trkpvxdy.default\extensions\autopager@mozilla.org
[2009.07.19 22:04:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Mozilla\Firefox\Profiles\trkpvxdy.default\extensions\check4change-owner@mozdev.org
[2010.08.13 21:41:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pali\Application Data\Mozilla\Firefox\Profiles\trkpvxdy.default\extensions\support@predictad.com
[2010.03.21 12:22:30 | 000,001,819 | ---- | M] () -- C:\Documents and Settings\Pali\Application Data\Mozilla\Firefox\Profiles\trkpvxdy.default\searchplugins\bing.xml
[2009.09.10 09:27:10 | 000,007,978 | ---- | M] () -- C:\Documents and Settings\Pali\Application Data\Mozilla\Firefox\Profiles\trkpvxdy.default\searchplugins\oneriot-social-web-search.xml
[2010.08.24 19:21:32 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2007.02.04 23:02:56 | 001,642,496 | ---- | M] (LizardTech) -- C:\Program Files\Mozilla Firefox\plugins\npdjvu.dll
[2010.07.23 02:53:36 | 000,000,760 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-en-GB.xml
[2010.07.23 02:53:36 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\polymeta.xml
[2010.07.23 02:53:36 | 000,001,628 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\sztaki-en-hu.xml
[2010.07.23 02:53:36 | 000,000,974 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\vatera.xml
[2010.07.23 02:53:36 | 000,001,189 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-hu.xml

O1 HOSTS File: ([2010.01.17 20:25:45 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader hivatkozássúgó) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AC-Pro) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Program Files\AutocompletePro\AutocompletePro.dll (SimplyGen)
O2 - BHO: (FDMIECookiesBHO Class) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll ()
O3 - HKLM\..\Toolbar: (&Dativus) - {434A0D07-D1DB-4787-8FE6-347CF2F2F416} - C:\Program Files\Dativus Translator Kft\Dativus\DativusIEToolBar.dll (Dativus Translator Kft.)
O3 - HKU\S-1-5-21-796845957-1409082233-1801674531-1003\..\Toolbar\WebBrowser: (no name) - {472734EA-242A-422B-ADF8-83D1E48CC825} - No CLSID value found.
O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe ()
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [ChrisTV Agent] C:\Program Files\ChrisTV\ChrisTV_Agent.exe (Chris P.C. srl)
O4 - HKLM..\Run: [LXCCCATS] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCCtime.DLL ()
O4 - HKLM..\Run: [lxccmon.exe] C:\Program Files\Lexmark 3300 Series\lxccmon.exe (Lexmark International, Inc.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [OutpostFeedBack] C:\Program Files\Agnitum\Outpost Firewall Pro\feedback.exe (Agnitum Ltd.)
O4 - HKLM..\Run: [OutpostMonitor] C:\Program Files\Agnitum\Outpost Firewall Pro\op_mon.exe (Agnitum Ltd.)
O4 - HKLM..\Run: [RecSche] C:\Program Files\TVR\RecSche.exe ()
O4 - HKLM..\Run: [USIUDF_Eject_Monitor] C:\Program Files\Common Files\Ulead Systems\DVD\USISrv.exe (Ulead Systems)
O4 - HKLM..\Run: [UVS11 Preload] C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe (InterVideo Digital Technology Corporation)
O4 - HKLM..\Run: [VC5Player] C:\Program Files\HHVcdV5Sys\VC5Play.exe (H+H Software GmbH)
O4 - HKU\S-1-5-21-796845957-1409082233-1801674531-1003..\Run: [Alcohol.exe Autorun] C:\Program Files\Alcohol Soft\Alcohol 120\Alcohol.exe (Alcohol Soft Development Team)
O4 - HKU\S-1-5-21-796845957-1409082233-1801674531-1003..\Run: [AlcoholAutomount] C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe (Alcohol Soft Development Team)
O4 - HKU\S-1-5-21-796845957-1409082233-1801674531-1003..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-796845957-1409082233-1801674531-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-796845957-1409082233-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-796845957-1409082233-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-796845957-1409082233-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Az összes letöltése Free Download Managerrel - C:\Program Files\Free Download Manager\dlall.htm ()
O8 - Extra context menu item: Kijelölés letöltése Free Download Managerrel - C:\Program Files\Free Download Manager\dlselected.htm ()
O8 - Extra context menu item: Letöltés Free Download Managerrel - C:\Program Files\Free Download Manager\dllink.htm ()
O8 - Extra context menu item: Video letöltése a Free Download Manager-rel - C:\Program Files\Free Download Manager\dlfvideo.htm ()
O9 - Extra Button: Outpost Firewall Pro Gyorshangolás - {44627E97-789B-40d4-B5C2-58BD171129A1} - C:\Program Files\Agnitum\Outpost Firewall Pro\ie_bar.dll (Agnitum Ltd.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_14)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.246.53 213.46.246.54
O18 - Protocol\Handler\vnd.ms.radio {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - C:\Program Files\Speed Video Splitter\msdxm.ocx (Microsoft Corporation)
O20 - AppInit_DLLs: (c:\PROGRA~1\Agnitum\OUTPOS~1\wl_hook.dll) - c:\Program Files\Agnitum\Outpost Firewall Pro\wl_hook.dll (Agnitum Ltd.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Jelenlegi saját honlap) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Pali\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Pali\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.07.20 17:14:46 | 000,000,000 | R--D | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009.01.12 20:28:11 | 000,000,000 | R--D | M] - D:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009.01.12 20:28:11 | 000,000,000 | R--D | M] - E:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009.01.12 20:28:11 | 000,000,000 | R--D | M] - F:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009.01.12 20:28:11 | 000,000,000 | R--D | M] - G:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009.01.12 20:28:11 | 000,000,000 | R--D | M] - H:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009.01.12 20:28:11 | 000,000,000 | R--D | M] - P:\autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

MsConfig - StartUpReg: TeamViewer - hkey= - key= - File not found

SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PEVSystemStart - Service
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: procexp90.Sys - Driver
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vektorgrafikus leképezés (VML)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Dinamikus HTML-adatkapcsolások a Javához
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Kapcsolat nélküli böngészőcsomag
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Advanced Authoring
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer súgó
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - DirectAnimation Java-osztályok
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer telepítőeszközök
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Böngészőbővítmények
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN helyelérés
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Web Folders
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - %SystemRoot%\system32\ie4uinit.exe
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - DOTNETFRAMEWORKS
ActiveX: {8FC113D5-64A6-40EE-9A39-DAB4650457A8} - .NET Framework
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dinamikus HTML-adatkapcsolás
ActiveX: {ACC563BC-4266-43f0-B6ED-9D38C4202C7E} -
ActiveX: {B508B3F1-A24A-32C0-B310-85786919EF28} - .NET Framework
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer standard betűkészletek
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Feladatütemező
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D13EB4BD-8A13-35D1-9850-C29AF6D91CD1} - .NET Framework
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Macromedia Shockwave Flash
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML súgó
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F14494FD-3EAD-67F8-9442-D7E8E0F83BFC} - Internet Explorer
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE

Drivers32: msacm.ac3acm - C:\WINDOWS\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.ac3filter - C:\WINDOWS\System32\ac3filter.acm ()
Drivers32: msacm.dvacm - C:\Program Files\Common Files\Ulead Systems\vio\DVACM.acm (Ulead Systems, Inc.)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\WINDOWS\System32\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: SENTINEL - C:\WINDOWS\System32\snti386.dll (Rainbow Technologies, Inc.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.DIVX - C:\WINDOWS\System32\divx.dll (DivX, Inc.)
Drivers32: vidc.dvsd - C:\WINDOWS\System32\pdvcodec.dll (Matsushita Electric Industrial Co., Ltd.)
Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: VIDC.FPS1 - C:\WINDOWS\System32\frapsvid.dll (Beepa P/L)
Drivers32: VIDC.I420 - C:\WINDOWS\System32\i420vfw.dll (www.helixcommunity.org)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.WMV3 - C:\WINDOWS\System32\wmv9vcm.dll (Microsoft Corporation)
Drivers32: VIDC.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\WINDOWS\System32\yv12vfw.dll (www.helixcommunity.org)

NetSvcs: 6to4 - File not found
NetSvcs: HidServ - C:\WINDOWS\System32\hidserv.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

========== Files/Folders - Created Within 30 Days ==========

[2010.08.25 17:53:36 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Pali\Asztal\OTL.exe
[2010.08.25 16:56:35 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010.08.25 16:56:35 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010.08.25 16:56:35 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010.08.25 16:56:35 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010.08.25 16:56:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010.08.25 16:51:35 | 000,000,000 | --SD | C] -- C:\ComboFix
[2010.08.25 16:51:30 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010.08.24 21:33:43 | 000,081,920 | ---- | C] (eSage Lab) -- C:\Documents and Settings\Pali\Asztal\remover.exe
[2010.08.24 15:47:42 | 001,198,928 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Pali\Asztal\virus-stell.com.exe
[2010.08.23 19:26:33 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm
[2010.08.23 19:26:33 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll
[2010.08.23 19:26:33 | 000,118,784 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm
[2010.08.23 19:26:32 | 000,090,112 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\dpl100.dll
[2010.08.23 19:26:31 | 000,685,056 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\divx.dll
[2010.08.23 19:26:29 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2010.08.23 16:47:46 | 000,000,000 | ---D | C] -- C:\Új mappa
[2010.08.23 16:30:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Local Settings\Application Data\Threat Expert
[2010.08.22 22:31:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SmartSound Software Inc
[2010.08.22 22:31:13 | 000,000,000 | ---D | C] -- C:\Program Files\SmartSound Software
[2010.08.22 21:34:49 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Components
[2010.08.22 21:34:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SONY Digital Images
[2010.08.22 21:33:45 | 000,292,896 | ---- | C] (Ulead Systems, Inc.) -- C:\WINDOWS\System32\drivers\USIUDF.sys
[2010.08.22 21:33:45 | 000,027,392 | ---- | C] (Ulead Systems, Inc.) -- C:\WINDOWS\System32\drivers\ULCDRHlp.sys
[2010.08.22 21:31:53 | 000,000,000 | ---D | C] -- C:\MTV_OUTPUT
[2010.08.22 20:27:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Ulead DVD DiscRecorder 2.3
[2010.08.22 20:09:50 | 001,640,400 | ---- | C] (Threat Expert Ltd.) -- C:\WINDOWS\PCTBDCore.dll.old
[2010.08.22 19:55:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\UMStor
[2010.08.22 19:55:31 | 000,000,000 | ---D | C] -- C:\MP3 Player
[2010.08.21 17:59:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Application Data\AnvSoft
[2010.08.21 15:45:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Dokumentumok\Any Video Converter Professional
[2010.08.21 15:39:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Application Data\Any Video Converter Professional
[2010.08.21 15:39:20 | 000,000,000 | ---D | C] -- C:\Program Files\Any Video Converter Professional
[2010.08.21 01:50:18 | 000,000,000 | ---D | C] -- C:\video_output
[2010.08.20 20:46:23 | 000,000,000 | ---D | C] -- C:\Program Files\Nidesoft Studio
[2010.08.20 19:55:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2010.08.20 19:55:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Application Data\PC Suite
[2010.08.20 19:53:42 | 000,090,624 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcls.dll
[2010.08.20 19:53:32 | 000,021,632 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys
[2010.08.20 19:53:00 | 000,121,856 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bmdm.sys
[2010.08.20 19:53:00 | 000,090,112 | ---- | C] (MCCI) -- C:\WINDOWS\System32\drivers\ss_bbus.sys
[2010.08.20 19:53:00 | 000,014,976 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bmdfl.sys
[2010.08.20 19:53:00 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bwhnt.sys
[2010.08.20 19:53:00 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bwh.sys
[2010.08.20 19:53:00 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bcmnt.sys
[2010.08.20 19:53:00 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bcm.sys
[2010.08.20 19:52:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Samsung_USB_Drivers
[2010.08.20 19:52:30 | 000,233,472 | ---- | C] (Teruten) -- C:\WINDOWS\System32\FsUsbExService.Exe
[2010.08.20 19:51:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Application Data\Samsung
[2010.08.20 19:51:09 | 000,000,000 | ---D | C] -- C:\Program Files\MarkAny
[2010.08.20 19:51:05 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution
[2010.08.20 19:50:27 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung
[2010.08.16 21:33:15 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2010.08.16 21:29:33 | 001,089,536 | ---- | C] (Pro-Software) -- C:\WINDOWS\System32\Mp3Doctor1.dll
[2010.08.16 21:29:33 | 000,266,240 | ---- | C] (NCT Company) -- C:\WINDOWS\System32\Mp3Doctor2.dll
[2010.08.16 21:29:33 | 000,090,112 | ---- | C] (inGEO Solutions) -- C:\WINDOWS\System32\ID3v23xBase.DLL
[2010.08.16 21:29:32 | 000,000,000 | ---D | C] -- C:\Program Files\Mp3Doctor
[2010.08.13 22:38:33 | 000,000,000 | ---D | C] -- C:\Program Files\ChrisTV
[2010.08.13 21:41:18 | 000,000,000 | ---D | C] -- C:\Program Files\AutocompletePro
[2010.08.12 13:34:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Local Settings\Application Data\XboxGames
[2010.08.11 23:11:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PixelPlanet
[2010.08.11 23:10:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\XpressUpdate
[2010.08.11 23:10:52 | 000,000,000 | ---D | C] -- C:\Program Files\PixelPlanet
[2010.08.11 23:10:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Application Data\PixelPlanet
[2010.08.11 23:10:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Dokumentumok\PdfGrabber
[2010.08.10 20:13:57 | 000,000,000 | ---D | C] -- C:\Program Files\AudioCommander
[2010.08.10 20:13:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{CD08D33B-F39B-4A65-944A-A36FE20FB7BC}
[2010.08.10 20:12:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Application Data\Seven Zip
[2010.08.10 19:34:53 | 000,000,000 | ---D | C] -- C:\Program Files\Direct MP3 Joiner
[2010.08.10 18:52:17 | 000,000,000 | ---D | C] -- C:\Program Files\cdrLabel 7.1
[2010.08.08 23:32:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Calibre Library
[2010.08.08 23:32:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Application Data\calibre
[2010.08.08 23:30:03 | 000,000,000 | ---D | C] -- C:\Program Files\Calibre2
[2010.08.08 23:17:53 | 000,000,000 | ---D | C] -- C:\Program Files\WinDjView
[2010.08.08 00:57:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Application Data\MorphoLogic
[2010.08.07 23:12:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Dokumentumok\Virtual CDs
[2010.08.07 23:12:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Dokumentumok\Ulead VideoStudio
[2010.08.07 23:12:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Dokumentumok\Ulead DVD MovieFactory 4.0
[2010.08.07 23:12:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Dokumentumok\Phone Backup
[2010.08.07 23:12:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Dokumentumok\NPS
[2010.08.07 23:12:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Dokumentumok\NeroVision
[2010.08.07 23:12:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Dokumentumok\My NPS Files
[2010.08.07 23:12:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Dokumentumok\My Corel Shows
[2010.08.07 23:12:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Dokumentumok\My Captures
[2010.08.07 23:12:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Dokumentumok\Letöltések
[2010.08.07 23:12:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Dokumentumok\GomEncoder
[2010.08.07 23:12:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Dokumentumok\Corel VideoStudio Pro
[2010.08.07 23:12:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Dokumentumok\Corel DVD MovieFactory
[2010.08.07 23:12:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Dokumentumok\Beérkezett fájlok
[2010.08.07 23:12:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Dokumentumok\AVS4YOU
[2010.08.07 23:12:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Dokumentumok\4Videosoft Studio
[2010.08.07 23:11:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Asztal\XBR
[2010.08.07 23:11:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pali\Asztal\Speciális szövegszerkesztők
[2009.07.19 20:21:49 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Pali\Application Data\pcouffin.sys
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]


szer. aug. 25, 2010 17:30
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: pilaka bogarai
tolds le az asztalra
OTListIt2>> OTL
futtasdt
-bepipazni
-Scan all users.
-Lop check.
-Purity check.
-v sekciobaExtra Registry>potyozd be>Use SafeList
-az ablakba Custom Scans/Fixes>tedd be a zold textet-klik-Run SCAN
-a skan vegen-tedd be a naplokat
-OTL.txt (az asztalon lesz).
-Extras.txt [a talcan lesz.]
Kód:
msconfig
safebootminimal
activex
drivers32
netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\drivers\*.sys /90


szer. aug. 25, 2010 16:45
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. jan. 01, 2009 20:34
Hozzászólások: 294
Hozzászólás Re: pilaka bogarai
Gond van , a T-Cleanert megcsináltam majd jött a Combo ...előtte letiltottam az Avastot és az Outpost tűzfalat is a Combo elindult
az yesre kattintottam megjelent egy "Hiba" ablak és a gép újraindult ...a Combo lassan elkezdett dolgozni és az 52.sor után megjelent a "delete" sor és
rögtön újraindult a gép ezután megjelent egy hibaüzenet , "a windows sújos hiba után állt helyre" a Combonak sok idő után sem lett logja.


szer. aug. 25, 2010 16:30
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: pilaka bogarai
PhysicalDrive1 OK (DOS/Win32 Boot code found)
ok a lemez most mar renben van
futtasd le ezt a programot, mindig nyomkod az A-enter
http://sweb.cz/Marinus/T-Cleaner.exe
az antivirusod, virusnak nezheti, ezert kapcsild ki a pajzat.
Aztan tolds le a combofixet es futtasd le.
http://virus-stell.blogspot.com/2010/04/combofix.html


szer. aug. 25, 2010 15:19
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. jan. 01, 2009 20:34
Hozzászólások: 294
Hozzászólás Re: pilaka bogarai
.\debug.cpp(238) : Debug log started at 25.08.2010 - 14:09:25
.\boot_cleaner.cpp(675) : Bootkit Remover
.\boot_cleaner.cpp(676) : (c) 2009 eSage Lab
.\boot_cleaner.cpp(677) : www.esagelab.com
.\boot_cleaner.cpp(681) : Program version: 1.1.0.0
.\boot_cleaner.cpp(688) : OS Version: Microsoft Windows XP Professional Szervizcsomag 2 (build 2600)
.\debug.cpp(248) : **********************************************
.\debug.cpp(249) : *** [ LOADED MODULES INFORMATION ] ***********
.\debug.cpp(250) : **********************************************
.\debug.cpp(256) : 0x804d7000 0x0020b000 "\WINDOWS\system32\ntkrnlpa.exe"
.\debug.cpp(256) : 0x806e2000 0x00020d00 "\WINDOWS\system32\hal.dll"
.\debug.cpp(256) : 0xf7b5c000 0x00002000 "\WINDOWS\system32\KDCOM.DLL"
.\debug.cpp(256) : 0xf7a6c000 0x00003000 "\WINDOWS\system32\BOOTVID.dll"
.\debug.cpp(256) : 0xf754a000 0x00011000 "pci.sys"
.\debug.cpp(256) : 0xf765c000 0x0000f000 "ohci1394.sys"
.\debug.cpp(256) : 0xf7b5e000 0x00002000 "\WINDOWS\system32\DRIVERS\WMILIB.SYS"
.\debug.cpp(256) : 0xf766c000 0x0000d000 "\WINDOWS\system32\DRIVERS\1394BUS.SYS"
.\debug.cpp(256) : 0xf751c000 0x0002e000 "ACPI.sys"
.\debug.cpp(256) : 0xf767c000 0x00009000 "isapnp.sys"
.\debug.cpp(256) : 0xf7c24000 0x00001000 "pciide.sys"
.\debug.cpp(256) : 0xf78dc000 0x00007000 "\WINDOWS\system32\DRIVERS\PCIIDEX.SYS"
.\debug.cpp(256) : 0xf7b60000 0x00002000 "viaide.sys"
.\debug.cpp(256) : 0xf768c000 0x0000b000 "MountMgr.sys"
.\debug.cpp(256) : 0xf74fd000 0x0001f000 "ftdisk.sys"
.\debug.cpp(256) : 0xf7b62000 0x00002000 "dmload.sys"
.\debug.cpp(256) : 0xf74d7000 0x00026000 "dmio.sys"
.\debug.cpp(256) : 0xf78e4000 0x00005000 "PartMgr.sys"
.\debug.cpp(256) : 0xf78ec000 0x00008000 "videX32.sys"
.\debug.cpp(256) : 0xf769c000 0x0000d000 "VolSnap.sys"
.\debug.cpp(256) : 0xf74bf000 0x00018000 "atapi.sys"
.\debug.cpp(256) : 0xf76ac000 0x00009000 "disk.sys"
.\debug.cpp(256) : 0xf76bc000 0x0000d000 "\WINDOWS\system32\DRIVERS\CLASSPNP.SYS"
.\debug.cpp(256) : 0xf74a0000 0x0001f000 "fltMgr.sys"
.\debug.cpp(256) : 0xf748e000 0x00012000 "sr.sys"
.\debug.cpp(256) : 0xf7477000 0x00017000 "KSecDD.sys"
.\debug.cpp(256) : 0xf73ea000 0x0008d000 "Ntfs.sys"
.\debug.cpp(256) : 0xf73bd000 0x0002d000 "NDIS.sys"
.\debug.cpp(256) : 0xf73a2000 0x0001b000 "Mup.sys"
.\debug.cpp(256) : 0xf76cc000 0x0000c000 "gagp30kx.sys"
.\debug.cpp(256) : 0xf781c000 0x00010000 "\SystemRoot\system32\DRIVERS\AmdK8.sys"
.\debug.cpp(256) : 0xf7153000 0x00207000 "\SystemRoot\system32\DRIVERS\ati2mtag.sys"
.\debug.cpp(256) : 0xf713f000 0x00014000 "\SystemRoot\system32\DRIVERS\VIDEOPRT.SYS"
.\debug.cpp(256) : 0xf782c000 0x0000b000 "\SystemRoot\system32\DRIVERS\imapi.sys"
.\debug.cpp(256) : 0xf7984000 0x00007000 "\SystemRoot\System32\Drivers\ULCDRHlp.sys"
.\debug.cpp(256) : 0xf783c000 0x0000e000 "\SystemRoot\System32\Drivers\AFS2K.SYS"
.\debug.cpp(256) : 0xf798c000 0x00007000 "\SystemRoot\System32\Drivers\ElbyCDFL.sys"
.\debug.cpp(256) : 0xf784c000 0x0000d000 "\SystemRoot\system32\DRIVERS\cdrom.sys"
.\debug.cpp(256) : 0xf785c000 0x0000f000 "\SystemRoot\system32\DRIVERS\redbook.sys"
.\debug.cpp(256) : 0xf711c000 0x00023000 "\SystemRoot\system32\DRIVERS\ks.sys"
.\debug.cpp(256) : 0xf7994000 0x00007000 "\SystemRoot\system32\drivers\gearaspiwdm.sys"
.\debug.cpp(256) : 0xf799c000 0x00005000 "\SystemRoot\system32\DRIVERS\usbuhci.sys"
.\debug.cpp(256) : 0xf70f9000 0x00023000 "\SystemRoot\system32\DRIVERS\USBPORT.SYS"
.\debug.cpp(256) : 0xf79a4000 0x00007000 "\SystemRoot\system32\DRIVERS\usbehci.sys"
.\debug.cpp(256) : 0xf70e5000 0x00014000 "\SystemRoot\system32\DRIVERS\parport.sys"
.\debug.cpp(256) : 0xf7b70000 0x00002000 "\SystemRoot\system32\DRIVERS\ASACPI.sys"
.\debug.cpp(256) : 0xf786c000 0x0000d000 "\SystemRoot\system32\DRIVERS\i8042prt.sys"
.\debug.cpp(256) : 0xf79ac000 0x00007000 "\SystemRoot\system32\DRIVERS\kbdclass.sys"
.\debug.cpp(256) : 0xf79b4000 0x00006000 "\SystemRoot\system32\DRIVERS\mouclass.sys"
.\debug.cpp(256) : 0xf79bc000 0x00007000 "\SystemRoot\system32\DRIVERS\fdc.sys"
.\debug.cpp(256) : 0xf787c000 0x00010000 "\SystemRoot\system32\DRIVERS\serial.sys"
.\debug.cpp(256) : 0xf7b24000 0x00004000 "\SystemRoot\system32\DRIVERS\serenum.sys"
.\debug.cpp(256) : 0xf79c4000 0x00007000 "\SystemRoot\system32\DRIVERS\fetnd5.sys"
.\debug.cpp(256) : 0xf788c000 0x00010000 "\SystemRoot\system32\DRIVERS\nic1394.sys"
.\debug.cpp(256) : 0xf7099000 0x0004c000 "\SystemRoot\system32\DRIVERS\tvcap.sys"
.\debug.cpp(256) : 0xf789c000 0x0000c000 "\SystemRoot\system32\DRIVERS\STREAM.SYS"
.\debug.cpp(256) : 0xf7074000 0x00025000 "\SystemRoot\system32\DRIVERS\HDAudBus.sys"
.\debug.cpp(256) : 0xf79cc000 0x00006000 "\SystemRoot\system32\DRIVERS\afw.sys"
.\debug.cpp(256) : 0xf703c000 0x00038000 "\SystemRoot\system32\drivers\afwcore.sys"
.\debug.cpp(256) : 0xf79d4000 0x00005000 "\SystemRoot\system32\drivers\TDI.SYS"
.\debug.cpp(256) : 0xf7cf3000 0x00001000 "\SystemRoot\system32\DRIVERS\audstub.sys"
.\debug.cpp(256) : 0xf78ac000 0x0000d000 "\SystemRoot\system32\DRIVERS\rasl2tp.sys"
.\debug.cpp(256) : 0xf7b34000 0x00003000 "\SystemRoot\system32\DRIVERS\ndistapi.sys"
.\debug.cpp(256) : 0xf6f85000 0x00017000 "\SystemRoot\system32\DRIVERS\ndiswan.sys"
.\debug.cpp(256) : 0xf78bc000 0x0000b000 "\SystemRoot\system32\DRIVERS\raspppoe.sys"
.\debug.cpp(256) : 0xf78cc000 0x0000c000 "\SystemRoot\system32\DRIVERS\raspptp.sys"
.\debug.cpp(256) : 0xf6f74000 0x00011000 "\SystemRoot\system32\DRIVERS\psched.sys"
.\debug.cpp(256) : 0xf770c000 0x00009000 "\SystemRoot\system32\DRIVERS\msgpc.sys"
.\debug.cpp(256) : 0xf79dc000 0x00005000 "\SystemRoot\system32\DRIVERS\ptilink.sys"
.\debug.cpp(256) : 0xf79e4000 0x00005000 "\SystemRoot\system32\DRIVERS\raspti.sys"
.\debug.cpp(256) : 0xf771c000 0x0000c000 "\SystemRoot\System32\Drivers\pcouffin.sys"
.\debug.cpp(256) : 0xf6f43000 0x00031000 "\SystemRoot\system32\DRIVERS\rdpdr.sys"
.\debug.cpp(256) : 0xf772c000 0x0000a000 "\SystemRoot\system32\DRIVERS\termdd.sys"
.\debug.cpp(256) : 0xf773c000 0x0000e000 "\SystemRoot\system32\DRIVERS\vbev5mp.sys"
.\debug.cpp(256) : 0xf6f03000 0x00018000 "\SystemRoot\system32\DRIVERS\SCSIPORT.SYS"
.\debug.cpp(256) : 0xf7b72000 0x00002000 "\SystemRoot\system32\DRIVERS\swenum.sys"
.\debug.cpp(256) : 0xf6ecf000 0x00034000 "\SystemRoot\system32\DRIVERS\update.sys"
.\debug.cpp(256) : 0xf7b44000 0x00004000 "\SystemRoot\system32\DRIVERS\mssmbios.sys"
.\debug.cpp(256) : 0xf774c000 0x0000e000 "\SystemRoot\system32\DRIVERS\cledx.sys"
.\debug.cpp(256) : 0xf775c000 0x0000a000 "\SystemRoot\System32\Drivers\NDProxy.SYS"
.\debug.cpp(256) : 0xf778c000 0x0000f000 "\SystemRoot\system32\DRIVERS\usbhub.sys"
.\debug.cpp(256) : 0xf7b74000 0x00002000 "\SystemRoot\system32\DRIVERS\USBD.SYS"
.\debug.cpp(256) : 0xaa396000 0x0046a000 "\SystemRoot\system32\drivers\RtkHDAud.sys"
.\debug.cpp(256) : 0xaa374000 0x00022000 "\SystemRoot\system32\drivers\portcls.sys"
.\debug.cpp(256) : 0xf779c000 0x0000f000 "\SystemRoot\system32\drivers\drmk.sys"
.\debug.cpp(256) : 0xf79f4000 0x00005000 "\SystemRoot\system32\DRIVERS\tvtuner.sys"
.\debug.cpp(256) : 0xf79fc000 0x00005000 "\SystemRoot\system32\DRIVERS\flpydisk.sys"
.\debug.cpp(256) : 0xf7b78000 0x00002000 "\SystemRoot\System32\Drivers\Fs_Rec.SYS"
.\debug.cpp(256) : 0xf7c46000 0x00001000 "\SystemRoot\System32\Drivers\Null.SYS"
.\debug.cpp(256) : 0xf7b7a000 0x00002000 "\SystemRoot\System32\Drivers\Beep.SYS"
.\debug.cpp(256) : 0xf7a0c000 0x00006000 "\SystemRoot\System32\drivers\vga.sys"
.\debug.cpp(256) : 0xf7b7c000 0x00002000 "\SystemRoot\System32\Drivers\mnmdd.SYS"
.\debug.cpp(256) : 0xf7b7e000 0x00002000 "\SystemRoot\System32\DRIVERS\RDPCDD.sys"
.\debug.cpp(256) : 0xf7a14000 0x00005000 "\SystemRoot\System32\Drivers\Msfs.SYS"
.\debug.cpp(256) : 0xf7a1c000 0x00008000 "\SystemRoot\System32\Drivers\Npfs.SYS"
.\debug.cpp(256) : 0xaa31b000 0x00011000 "\SystemRoot\System32\Drivers\Udfs.SYS"
.\debug.cpp(256) : 0xaa2d3000 0x00048000 "\SystemRoot\System32\Drivers\USIUDF.sys"
.\debug.cpp(256) : 0xaa35c000 0x00003000 "\SystemRoot\system32\DRIVERS\rasacd.sys"
.\debug.cpp(256) : 0xaa248000 0x00013000 "\SystemRoot\system32\DRIVERS\ipsec.sys"
.\debug.cpp(256) : 0xaa1f0000 0x00058000 "\SystemRoot\system32\DRIVERS\tcpip.sys"
.\debug.cpp(256) : 0xf77bc000 0x0000a000 "\SystemRoot\System32\Drivers\aswTdi.SYS"
.\debug.cpp(256) : 0xaa1cf000 0x00021000 "\SystemRoot\system32\DRIVERS\ipnat.sys"
.\debug.cpp(256) : 0xaa1a7000 0x00028000 "\SystemRoot\system32\DRIVERS\netbt.sys"
.\debug.cpp(256) : 0xf77cc000 0x00009000 "\SystemRoot\system32\DRIVERS\wanarp.sys"
.\debug.cpp(256) : 0xaa185000 0x00022000 "\SystemRoot\System32\drivers\afd.sys"
.\debug.cpp(256) : 0xf77dc000 0x0000f000 "\SystemRoot\system32\DRIVERS\arp1394.sys"
.\debug.cpp(256) : 0xf77ec000 0x00009000 "\SystemRoot\system32\DRIVERS\netbios.sys"
.\debug.cpp(256) : 0xaa0ba000 0x000a3000 "\SystemRoot\system32\DRIVERS\SandBox.sys"
.\debug.cpp(256) : 0xf7a24000 0x00007000 "\SystemRoot\system32\DRIVERS\usbprint.sys"
.\debug.cpp(256) : 0xf7a34000 0x00007000 "\SystemRoot\system32\Filt\ASWFilt.dll"
.\debug.cpp(256) : 0xf7a3c000 0x00008000 "\SystemRoot\system32\DRIVERS\usbccgp.sys"
.\debug.cpp(256) : 0xaa2c7000 0x00003000 "\SystemRoot\system32\DRIVERS\hidusb.sys"
.\debug.cpp(256) : 0xf780c000 0x00009000 "\SystemRoot\system32\DRIVERS\HIDCLASS.SYS"
.\debug.cpp(256) : 0xf7a44000 0x00007000 "\SystemRoot\system32\DRIVERS\HIDPARSE.SYS"
.\debug.cpp(256) : 0xaa03e000 0x0002c000 "\SystemRoot\system32\DRIVERS\rdbss.sys"
.\debug.cpp(256) : 0xf7d8f000 0x00001000 "\SystemRoot\System32\Drivers\PQNTDrv.SYS"
.\debug.cpp(256) : 0xa9fcf000 0x0006f000 "\SystemRoot\system32\DRIVERS\mrxsmb.sys"
.\debug.cpp(256) : 0xf702c000 0x00009000 "\SystemRoot\System32\Drivers\Fips.SYS"
.\debug.cpp(256) : 0xaa2bf000 0x00004000 "\SystemRoot\system32\DRIVERS\usbscan.sys"
.\debug.cpp(256) : 0xf7a54000 0x00005000 "\SystemRoot\System32\Drivers\ElbyCDIO.sys"
.\debug.cpp(256) : 0xa9fae000 0x00021000 "\SystemRoot\System32\Drivers\aswSP.SYS"
.\debug.cpp(256) : 0xaa2bb000 0x00004000 "\SystemRoot\System32\drivers\aspi32.sys"
.\debug.cpp(256) : 0xf7a5c000 0x00005000 "\SystemRoot\System32\Drivers\Aavmker4.SYS"
.\debug.cpp(256) : 0xa9ec3000 0x00023000 "\SystemRoot\System32\Drivers\Fastfat.SYS"
.\debug.cpp(256) : 0xa9eab000 0x00018000 "\SystemRoot\System32\Drivers\dump_atapi.sys"
.\debug.cpp(256) : 0xf7b82000 0x00002000 "\SystemRoot\System32\Drivers\dump_WMILIB.SYS"
.\debug.cpp(256) : 0xbf800000 0x001c1000 "\SystemRoot\System32\win32k.sys"
.\debug.cpp(256) : 0xf7a64000 0x00005000 "\SystemRoot\System32\watchdog.sys"
.\debug.cpp(256) : 0xaa28b000 0x00003000 "\SystemRoot\System32\drivers\Dxapi.sys"
.\debug.cpp(256) : 0xbf000000 0x00012000 "\SystemRoot\System32\drivers\dxg.sys"
.\debug.cpp(256) : 0xf7d5c000 0x00001000 "\SystemRoot\System32\drivers\dxgthk.sys"
.\debug.cpp(256) : 0xbf012000 0x00044000 "\SystemRoot\System32\ati2dvag.dll"
.\debug.cpp(256) : 0xbf056000 0x0004d000 "\SystemRoot\System32\ati2cqag.dll"
.\debug.cpp(256) : 0xbf0a3000 0x0004c000 "\SystemRoot\System32\atikvmag.dll"
.\debug.cpp(256) : 0xbf0ef000 0x0028e000 "\SystemRoot\System32\ati3duag.dll"
.\debug.cpp(256) : 0xbf37d000 0x0013b000 "\SystemRoot\System32\ativvaxx.dll"
.\debug.cpp(256) : 0xbffa0000 0x00046000 "\SystemRoot\System32\ATMFD.DLL"
.\debug.cpp(256) : 0xf793c000 0x00008000 "\SystemRoot\system32\DRIVERS\aswFsBlk.sys"
.\debug.cpp(256) : 0xa7add000 0x00016000 "\SystemRoot\System32\Drivers\aswMon2.SYS"
.\debug.cpp(256) : 0xa7880000 0x0002d000 "\SystemRoot\system32\DRIVERS\mrxdav.sys"
.\debug.cpp(256) : 0xf7bb8000 0x00002000 "\SystemRoot\System32\Drivers\ParVdm.SYS"
.\debug.cpp(256) : 0xa7846000 0x00012000 "\SystemRoot\System32\Drivers\SENTINEL.SYS"
.\debug.cpp(256) : 0xa7769000 0x00015000 "\SystemRoot\system32\drivers\wdmaud.sys"
.\debug.cpp(256) : 0xa790d000 0x0000f000 "\SystemRoot\system32\drivers\sysaudio.sys"
.\debug.cpp(256) : 0xa7613000 0x00041000 "\SystemRoot\System32\Drivers\HTTP.sys"
.\debug.cpp(256) : 0xa7506000 0x00053000 "\SystemRoot\system32\DRIVERS\srv.sys"
.\debug.cpp(256) : 0xa7386000 0x00010000 "\SystemRoot\System32\Drivers\Cdfs.SYS"
.\debug.cpp(256) : 0xa7396000 0x00009000 "\??\C:\WINDOWS\system32\FsUsbExDisk.SYS"
.\debug.cpp(256) : 0xa72fa000 0x00004000 "\SystemRoot\System32\Drivers\aswRdr.SYS"
.\debug.cpp(256) : 0xa5b70000 0x0002a000 "\SystemRoot\system32\drivers\kmixer.sys"
.\debug.cpp(256) : 0x7c900000 0x000b2000 "\WINDOWS\system32\ntdll.dll"
.\debug.cpp(263) : **********************************************
.\debug.cpp(307) : *** [ DEVICE OBJECTS INFORMATION ] ***********
.\debug.cpp(308) : **********************************************
.\debug.cpp(369) : SymbolicLink "\GLOBAL??\D:"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{f251af95-75e5-11de-904d-001d60523543}"
.\debug.cpp(400) : Destination="\Device\CdRom3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{f95288a7-73f4-11de-9381-806d6172696f}"
.\debug.cpp(400) : Destination="\Device\CdRom1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HDAUDIO#FUNC_01&VEN_10EC&DEV_0662&SUBSYS_10438290&REV_1001#4&279b7fc&0&0001#{65e8773e-8f56-11d0-a3b9-00a0c9223196}"
.\debug.cpp(400) : Destination="\Device\00000091"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\NDIS"
.\debug.cpp(400) : Destination="\Device\Ndis"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Scsi3:"
.\debug.cpp(400) : Destination="\Device\Ide\IdePort2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#Vid_043d&Pid_00b2#23A018001000G02#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
.\debug.cpp(400) : Destination="\Device\USBPDO-7"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DISPLAY1"
.\debug.cpp(400) : Destination="\Device\Video0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#AGTM_AFW_MP#0000#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\00000002"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#ROOT_HUB#4&336b9a0e&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
.\debug.cpp(400) : Destination="\Device\USBPDO-0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{ffbb6e3f-ccfe-4d84-90d9-421418b03a8e}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ASWSP"
.\debug.cpp(400) : Destination="\Device\aswSP"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DISPLAY2"
.\debug.cpp(400) : Destination="\Device\Video1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{71985f4a-1ca1-11d3-9cc8-00c04f7971e0}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#MS_PPPOEMINIPORT#0000#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\0000003f"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\OAKAFSUI"
.\debug.cpp(400) : Destination="\Device\OAKAFSUI"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DmIoDaemon"
.\debug.cpp(400) : Destination="\Device\DmControl\DmIoDaemon"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Ip"
.\debug.cpp(400) : Destination="\Device\Ip"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\STORAGE#Volume#1&30a96598&0&SignatureE021E021Offset7E00Length752C56200#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume4"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\aswSP_Pot2"
.\debug.cpp(400) : Destination="\Device\aswSP_Pot2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DISPLAY3"
.\debug.cpp(400) : Destination="\Device\Video2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HDAUDIO#FUNC_01&VEN_10EC&DEV_0662&SUBSYS_10438290&REV_1001#4&279b7fc&0&0001#{86841137-ed8e-4d97-9975-f2ed56b4430e}"
.\debug.cpp(400) : Destination="\Device\00000091"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\E:"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume5"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\FDC#GENERIC_FLOPPY_DRIVE#5&2578af31&2&0#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\FloppyPDO0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IPSECDev"
.\debug.cpp(400) : Destination="\Device\IPSEC"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\SandBox"
.\debug.cpp(400) : Destination="\Device\SandBox"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DISPLAY4"
.\debug.cpp(400) : Destination="\Device\Video3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#MS_NDISWANIP#0000#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\0000003e"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ATKACPI"
.\debug.cpp(400) : Destination="\Device\ATKACPI"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Scsi4:"
.\debug.cpp(400) : Destination="\Device\Scsi\vbev5mp1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\NDPROXY"
.\debug.cpp(400) : Destination="\Device\NDProxy"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#ROOT_HUB20#4&26c8cc44&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
.\debug.cpp(400) : Destination="\Device\USBPDO-4"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ASWMON"
.\debug.cpp(400) : Destination="\Device\aswMon"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DISPLAY5"
.\debug.cpp(400) : Destination="\Device\Video4"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#PNP0400#4&2817ec26&0#{97f76ef0-f883-11d0-af1f-0000f800845c}"
.\debug.cpp(400) : Destination="\Device\00000078"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{9aa4a2cc-81e0-4cfd-802f-0f74526d2bd3}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SCSIADAPTER#0000#{2accfe60-c130-11d2-b082-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\P:"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{fd0a5af4-b41d-11d2-9c95-00c04f7971e0}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\RNBODRV0"
.\debug.cpp(400) : Destination="\Device\RNBODEV0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\$VDMLPT1"
.\debug.cpp(400) : Destination="\Device\ParallelVdm0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{CB6C639A-48EB-46A9-9A3C-6FDB09F6D399}"
.\debug.cpp(400) : Destination="\Device\{CB6C639A-48EB-46A9-9A3C-6FDB09F6D399}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{3c0d501a-140b-11d1-b40f-00a0c9223196}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{72223335-271C-49B5-9430-31A869DD6325}"
.\debug.cpp(400) : Destination="\Device\{72223335-271C-49B5-9430-31A869DD6325}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\RdpDrDvMgr"
.\debug.cpp(400) : Destination="\Device\RdpDrDvMgr"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{80e53443-b050-11df-8552-806d6172696f}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume5"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{98C50A06-0363-4D58-AB65-12F590DEB5AA}"
.\debug.cpp(400) : Destination="\Device\{98C50A06-0363-4D58-AB65-12F590DEB5AA}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\F:"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume6"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\WMIDataDevice"
.\debug.cpp(400) : Destination="\Device\WMIDataDevice"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\COM1"
.\debug.cpp(400) : Destination="\Device\Serial0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{80e53444-b050-11df-8552-806d6172696f}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume6"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{dff220f3-f70f-11d0-b917-00a0c9223196}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1002&DEV_7143&SUBSYS_21641458&REV_00#4&139c0c9b&0&0010#{5b45201d-f2f2-4f3b-85bb-30ff1f953599}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0028"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#AuthenticAMD_-_x86_Family_15_Model_75#_0#{97fadb10-4e33-40ae-359c-8bef029dbdd0}"
.\debug.cpp(400) : Destination="\Device\0000004f"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PIPE"
.\debug.cpp(400) : Destination="\Device\NamedPipe"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\SW#{a7c7a5b0-5af3-11d1-9ced-00a024bf0407}#{9B365890-165F-11D0-A195-0020AFD156E4}#{d6c5066e-72c1-11d2-9755-0000f8004788}"
.\debug.cpp(400) : Destination="\Device\KSENUM#00000003"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Usbscan0"
.\debug.cpp(400) : Destination="\Device\Usbscan0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HDAUDIO#FUNC_01&VEN_10EC&DEV_0662&SUBSYS_10438290&REV_1001#4&279b7fc&0&0001#{65e8773d-8f56-11d0-a3b9-00a0c9223196}"
.\debug.cpp(400) : Destination="\Device\00000091"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{2eb07ea0-7e70-11d0-a5d6-28db04c10000}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1106&DEV_3065&SUBSYS_80ED1043&REV_7C#3&267a616a&0&90#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0019"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0004#{d50f1fe3-64e1-4ce7-aac3-410dc6b98b2d}"
.\debug.cpp(400) : Destination="\Device\0000004c"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\G:"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume7"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\UNC"
.\debug.cpp(400) : Destination="\Device\Mup"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#ROOT_HUB#4&20b1e969&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
.\debug.cpp(400) : Destination="\Device\USBPDO-1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PSched"
.\debug.cpp(400) : Destination="\Device\PSched"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IPNAT"
.\debug.cpp(400) : Destination="\Device\IPNAT"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{0a4252a0-7e70-11d0-a5d6-28db04c10000}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\GEARAspiWDMDevice"
.\debug.cpp(400) : Destination="\Device\GEARAspiWDMDevice"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{6994ad04-93ef-11d0-a3cc-00a0c9223196}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HCD0"
.\debug.cpp(400) : Destination="\Device\USBFDO-0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#ROOT_HUB#4&df838c4&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
.\debug.cpp(400) : Destination="\Device\USBPDO-2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ASWTDI"
.\debug.cpp(400) : Destination="\Device\ASWTDI"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Tcp"
.\debug.cpp(400) : Destination="\Device\Tcp"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\FltMgrMsg"
.\debug.cpp(400) : Destination="\FileSystem\Filters\FltMgrMsg"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\FsUsbExDisk"
.\debug.cpp(400) : Destination="\Device\FsUsbExDisk"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HCD1"
.\debug.cpp(400) : Destination="\Device\USBFDO-1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\LCD"
.\debug.cpp(400) : Destination="\Device\VideoPdo0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#MS_PTIMINIPORT#0000#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\00000043"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PhysicalDrive0"
.\debug.cpp(400) : Destination="\Device\Harddisk0\DR0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HCD2"
.\debug.cpp(400) : Destination="\Device\USBFDO-2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#PNP0303#4&2817ec26&0#{884b96c3-56ef-11d1-bc8c-00a0c91405dd}"
.\debug.cpp(400) : Destination="\Device\00000080"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PRN"
.\debug.cpp(400) : Destination="\DosDevices\LPT1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1106&DEV_3038&SUBSYS_827C1043&REV_B0#3&267a616a&0&82#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0014"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{cf1dda2c-9743-11d0-a3ee-00a0c9223196}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{53172480-4791-11d0-a5d6-28db04c10000}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#MS_PSCHEDMP#0001#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\00000042"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1033&DEV_00E7&SUBSYS_00CE1033&REV_01#4&172fb5d3&0&3099#{6bdd1fc1-810f-11d0-bec7-08002be2092f}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0026"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\H:"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PhysicalDrive1"
.\debug.cpp(400) : Destination="\Device\Harddisk1\DR1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HCD3"
.\debug.cpp(400) : Destination="\Device\USBFDO-3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\sysaudio"
.\debug.cpp(400) : Destination="\Device\sysaudio"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#Vid_06d6&Pid_0025#6&55fcb9&0&4#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
.\debug.cpp(400) : Destination="\Device\USBPDO-8"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\fsWrap"
.\debug.cpp(400) : Destination="\Device\FsWrap"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#MS_PSCHEDMP#0000#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\00000041"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{97ebaacb-95bd-11d0-a3ea-00a0c9223196}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\CdRom0"
.\debug.cpp(400) : Destination="\Device\CdRom0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{41c5f0f0-a257-11df-8b2c-806d6172696f}"
.\debug.cpp(400) : Destination="\Device\CdRom0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{f95288a8-73f4-11de-9381-806d6172696f}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\STORAGE#Volume#1&30a96598&0&SignatureE021E021OffsetE9D369C00Length8E1D8BE00#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume6"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#Vid_058f&Pid_6254#5&38c537bc&0&4#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
.\debug.cpp(400) : Destination="\Device\USBPDO-6"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HCD4"
.\debug.cpp(400) : Destination="\Device\USBFDO-4"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\MbMmDp32"
.\debug.cpp(400) : Destination="\Device\MbMmDp32"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\CdRom1"
.\debug.cpp(400) : Destination="\Device\CdRom1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HID#Vid_043d&Pid_00b2&MI_02#8&30f6867f&0&0000#{4d1e55b2-f16f-11cf-88cb-001111000030}"
.\debug.cpp(400) : Destination="\Device\000000a1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\SCSI#CdRom&Ven_VBE_HH&Prod_DVD-ROM_DVD-50D&Rev_5.00#1&2afd7d61&0&010#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Scsi\vbev5mp1Port4Path0Target1Lun0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\afw"
.\debug.cpp(400) : Destination="\Device\afw"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\CdRom2"
.\debug.cpp(400) : Destination="\Device\CdRom2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#FixedButton#2&daba3ff&0#{4afa3d53-74a7-11d0-be5e-00a0c9062857}"
.\debug.cpp(400) : Destination="\Device\00000056"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#PNP0C0C#aa#{4afa3d53-74a7-11d0-be5e-00a0c9062857}"
.\debug.cpp(400) : Destination="\Device\00000054"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Global"
.\debug.cpp(400) : Destination="\GLOBAL??"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\I:"
.\debug.cpp(400) : Destination="\Device\CdRom0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#Vid_043d&Pid_00b2&MI_00#7&2e0fcddb&0&0000#{6bdd1fc6-810f-11d0-bec7-08002be2092f}"
.\debug.cpp(400) : Destination="\Device\0000009c"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#PNP0501#1#{86e0d1e0-8089-11d0-9ce4-08003e301f73}"
.\debug.cpp(400) : Destination="\Device\00000083"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{125EA596-ED60-4330-8D2E-58929FAE3EBF}"
.\debug.cpp(400) : Destination="\Device\{125EA596-ED60-4330-8D2E-58929FAE3EBF}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\CdRom3"
.\debug.cpp(400) : Destination="\Device\CdRom3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\SW#{a7c7a5b0-5af3-11d1-9ced-00a024bf0407}#{9B365890-165F-11D0-A195-0020AFD156E4}#{d6c50671-72c1-11d2-9755-0000f8004788}"
.\debug.cpp(400) : Destination="\Device\KSENUM#00000003"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{01197299-93A7-45FE-98E1-FD37CD76CDA4}"
.\debug.cpp(400) : Destination="\Device\{01197299-93A7-45FE-98E1-FD37CD76CDA4}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\STORAGE#Volume#1&30a96598&0&SignatureE021E021Offset177F0FD800LengthDC405AA00#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume7"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\STORAGE#Volume#1&30a96598&0&SignatureD6DDE8F5Offset7E0000Length24AE0AA400#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{3e227e76-690d-11d2-8161-0000f8775bf1}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{ad809c00-7b88-11d0-a5d6-28db04c10000}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{9ea331fa-b91b-45f8-9285-bd2bc77afcde}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\LPTENUM#MicrosoftRawPort#5&3610c875&0&LPT1#{811fc6a5-f728-11d0-a537-0000f8753ed1}"
.\debug.cpp(400) : Destination="\Device\Parallel0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\STORAGE#Volume#1&30a96598&0&SignatureD6DDE8F5Offset29CE7C0A00Length20B7317800#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#Vid_043d&Pid_00b2&MI_01#7&2e0fcddb&0&0001#{28d78fad-5a12-11d1-ae5b-0000f803a8c2}"
.\debug.cpp(400) : Destination="\Device\0000009d"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ARP1394"
.\debug.cpp(400) : Destination="\Device\ARP1394"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1106&DEV_3038&SUBSYS_827C1043&REV_B0#3&267a616a&0&83#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0015"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{07dad660-22f1-11d1-a9f4-00c04fbbde8f}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\patincouffin0"
.\debug.cpp(400) : Destination="\Device\Patin couffin device0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{41c5f0f2-a257-11df-8b2c-001d60523543}"
.\debug.cpp(400) : Destination="\Device\Floppy0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\STORAGE#Volume#1&30a96598&0&SignatureD6DDE8F5Offset24AE892200Length51FF26A00#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1131&DEV_7130&SUBSYS_210018D0&REV_01#4&172fb5d3&0&3899#{65e8773d-8f56-11d0-a3b9-00a0c9223196}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0027"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\SCSI#CdRom&Ven_VBE_HH&Prod_DVD-ROM_DVD-50D&Rev_5.00#1&2afd7d61&0&010#{53f56308-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Scsi\vbev5mp1Port4Path0Target1Lun0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IDE#DiskSAMSUNG_HD321KJ_________________________CP100-12#3053514d314a514b313136363530202020202020#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Ide\IdeDeviceP0T0L0-3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#PNP0501#1#{4d36e978-e325-11ce-bfc1-08002be10318}"
.\debug.cpp(400) : Destination="\Device\00000083"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1106&DEV_3038&SUBSYS_827C1043&REV_B0#3&267a616a&0&81#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0013"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\MountPointManager"
.\debug.cpp(400) : Destination="\Device\MountPointManager"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\SW#{a7c7a5b0-5af3-11d1-9ced-00a024bf0407}#{9B365890-165F-11D0-A195-0020AFD156E4}#{d6c50674-72c1-11d2-9755-0000f8004788}"
.\debug.cpp(400) : Destination="\Device\KSENUM#00000003"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\AAVMKER4"
.\debug.cpp(400) : Destination="\Device\AavmKer4"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#MS_L2TPMINIPORT#0000#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\0000003d"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#AuthenticAMD_-_x86_Family_15_Model_75#_1#{97fadb10-4e33-40ae-359c-8bef029dbdd0}"
.\debug.cpp(400) : Destination="\Device\00000050"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DmConfig"
.\debug.cpp(400) : Destination="\Device\DmControl\DmConfig"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#PNP0C0E#2&daba3ff&0#{4afa3d53-74a7-11d0-be5e-00a0c9062857}"
.\debug.cpp(400) : Destination="\Device\00000052"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\K:"
.\debug.cpp(400) : Destination="\Device\CdRom1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\WanArp"
.\debug.cpp(400) : Destination="\Device\WANARP"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HDAUDIO#FUNC_01&VEN_10EC&DEV_0662&SUBSYS_10438290&REV_1001#4&279b7fc&0&0001#{dda54a40-1e4c-11d1-a050-405705c10000}"
.\debug.cpp(400) : Destination="\Device\00000091"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1106&DEV_3038&SUBSYS_827C1043&REV_B0#3&267a616a&0&80#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0012"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\afwndis"
.\debug.cpp(400) : Destination="\Device\afwndis"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#ftdisk#0000#{53f5630e-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\00000005"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#ROOT_HUB#4&36d95226&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
.\debug.cpp(400) : Destination="\Device\USBPDO-3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\SCSI#CdRom&Ven_VBE_HH&Prod_DVD-ROM_DVD-50D&Rev_5.00#1&2afd7d61&0&000#{53f56308-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Scsi\vbev5mp1Port4Path0Target0Lun0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{97E78136-BA98-48A8-AF27-A87F1D412B9F}"
.\debug.cpp(400) : Destination="\Device\{97E78136-BA98-48A8-AF27-A87F1D412B9F}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{1BA7DF70-374E-4CF0-A527-04475BA1908B}"
.\debug.cpp(400) : Destination="\Device\{1BA7DF70-374E-4CF0-A527-04475BA1908B}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DmTrace"
.\debug.cpp(400) : Destination="\Device\DmControl\DmTrace"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\A:"
.\debug.cpp(400) : Destination="\Device\CdRom2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\SCSI#CdRom&Ven_VBE_HH&Prod_DVD-ROM_DVD-50D&Rev_5.00#1&2afd7d61&0&000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Scsi\vbev5mp1Port4Path0Target0Lun0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{80e53442-b050-11df-8552-806d6172696f}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume4"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#AGTM_AFW_MP#0001#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\00000003"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\NDISWANIP"
.\debug.cpp(400) : Destination="\Device\NdisWanIp"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#dmio#0000#{53f5630e-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\00000004"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{80e53445-b050-11df-8552-806d6172696f}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume7"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\STORAGE#Volume#1&30a96598&0&SignatureE021E021Offset752C65E00Length74A6FC000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume5"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Scsi0:"
.\debug.cpp(400) : Destination="\Device\Ide\IdePort0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{bf963d80-c559-11d0-8a2b-00a0c9255ac1}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\SW#{a7c7a5b0-5af3-11d1-9ced-00a024bf0407}#{9B365890-165F-11D0-A195-0020AFD156E4}#{fbf6f530-07b9-11d2-a71e-0000f8004788}"
.\debug.cpp(400) : Destination="\Device\KSENUM#00000003"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ElbyCDIO"
.\debug.cpp(400) : Destination="\Device\ElbyCDIO"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#Vid_03f0&Pid_c302#TH72O132SD04KT#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
.\debug.cpp(400) : Destination="\Device\USBPDO-5"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\L:"
.\debug.cpp(400) : Destination="\Device\Floppy0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1131&DEV_7130&SUBSYS_210018D0&REV_01#4&172fb5d3&0&3899#{a799a801-a46d-11d0-a18c-00a02401dcd4}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0027"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\1394BUS0"
.\debug.cpp(400) : Destination="\Device\1394BUS0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{f95288a9-73f4-11de-9381-806d6172696f}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IDE#CdRomHL-DT-ST_DVDRAM_GSA-H44N________________RB02____#304b374549373544313620302020202020202020#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Ide\IdeDeviceP2T0L0-1c"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HDAUDIO#FUNC_01&VEN_10EC&DEV_0662&SUBSYS_10438290&REV_1001#4&279b7fc&0&0001#{6994ad04-93ef-11d0-a3cc-00a0c9223196}"
.\debug.cpp(400) : Destination="\Device\00000091"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HID#Vid_06d6&Pid_0025#7&1a124f59&0&0000#{4d1e55b2-f16f-11cf-88cb-001111000030}"
.\debug.cpp(400) : Destination="\Device\0000009f"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IDE#CdRomHL-DT-ST_DVDRAM_GSA-H44N________________RB02____#304b374549373544313620302020202020202020#{53f56308-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Ide\IdeDeviceP2T0L0-1c"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IDE#CdRomHL-DT-ST_DVD-ROM_GDR8163B_______________0L23____#5&1231ed81&0&0.1.0#{53f56308-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Ide\IdeDeviceP2T1L0-24"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{4747b320-62ce-11cf-a5d6-28db04c10000}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#MS_PPTPMINIPORT#0000#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\00000040"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PTILINK1"
.\debug.cpp(400) : Destination="\Device\ParTechInc0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\B:"
.\debug.cpp(400) : Destination="\Device\CdRom3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{a7c7a5b1-5af3-11d1-9ced-00a024bf0407}"
.\debug.cpp(400) : Destination="\Device\00000049"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\NDISTAPI"
.\debug.cpp(400) : Destination="\Device\NdisTapi"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\NdisWan"
.\debug.cpp(400) : Destination="\Device\NdisWan"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Scsi1:"
.\debug.cpp(400) : Destination="\Device\Ide\IdePort1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IPMULTICAST"
.\debug.cpp(400) : Destination="\Device\IPMULTICAST"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\LPT1"
.\debug.cpp(400) : Destination="\Device\Parallel0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1106&DEV_3104&SUBSYS_827C1043&REV_90#3&267a616a&0&84#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0016"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1002&DEV_7163&SUBSYS_21651458&REV_00#4&139c0c9b&0&0110#{5b45201d-f2f2-4f3b-85bb-30ff1f953599}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0029"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{2B619031-00C7-47D1-A184-841909E499FC}"
.\debug.cpp(400) : Destination="\Device\{2B619031-00C7-47D1-A184-841909E499FC}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PTILINK2"
.\debug.cpp(400) : Destination="\Device\ParTechInc1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DmLoader"
.\debug.cpp(400) : Destination="\Device\DmLoader"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Shadow"
.\debug.cpp(400) : Destination="\Device\LanmanRedirector"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{f251af93-75e5-11de-904d-001d60523543}"
.\debug.cpp(400) : Destination="\Device\CdRom2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{EC489F29-BFDF-4230-AC72-D83CEBA28221}"
.\debug.cpp(400) : Destination="\Device\{EC489F29-BFDF-4230-AC72-D83CEBA28221}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\V1394#NIC1394#7002c1d4c01#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\00000072"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PTILINK3"
.\debug.cpp(400) : Destination="\Device\ParTechInc2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\FltMgr"
.\debug.cpp(400) : Destination="\FileSystem\Filters\FltMgr"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\FtControl"
.\debug.cpp(400) : Destination="\Device\FtControl"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\C:"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume4"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\aswSP_Avar"
.\debug.cpp(400) : Destination="\Device\aswSP_Avar"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\MAILSLOT"
.\debug.cpp(400) : Destination="\Device\MailSlot"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IDE#CdRomHL-DT-ST_DVDRAM_GSA-H44N________________RB02____#304b374549373544313620302020202020202020#{1186654d-47b8-48b9-beb9-7df113ae3c67}"
.\debug.cpp(400) : Destination="\Device\Ide\IdeDeviceP2T0L0-1c"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ASWRDR"
.\debug.cpp(400) : Destination="\Device\ASWRDR"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#PNP0F03#4&2817ec26&0#{378de44c-56ef-11d1-bc8c-00a0c91405dd}"
.\debug.cpp(400) : Destination="\Device\00000081"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\AUX"
.\debug.cpp(400) : Destination="\DosDevices\COM1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PQNTDRV"
.\debug.cpp(400) : Destination="\Device\PQNTDRV"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{f95288aa-73f4-11de-9381-806d6172696f}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\GLOBALROOT"
.\debug.cpp(400) : Destination=""

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Stream#LVTUNER#PCI#VEN_1131&DEV_7130&SUBSYS_210118D0#5&3ffc86b&0&0#{a799a800-a46d-11d0-a18c-00a02401dcd4}"
.\debug.cpp(400) : Destination="\Device\00000094"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IDE#DiskMAXTOR_STM3160215AS_____________________3.AAD___#5&127a373&0&0.0.0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Ide\IdeDeviceP1T0L0-e"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#RDP_MOU#0000#{378de44c-56ef-11d1-bc8c-00a0c91405dd}"
.\debug.cpp(400) : Destination="\Device\00000047"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Scsi2:"
.\debug.cpp(400) : Destination="\Device\Ide\IdePort3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\NUL"
.\debug.cpp(400) : Destination="\Device\Null"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#Vid_03f0&Pid_c302#TH72O132SD04KT#{28d78fad-5a12-11d1-ae5b-0000f803a8c2}"
.\debug.cpp(400) : Destination="\Device\USBPDO-5"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{30844882-F888-435B-A5D6-D5463CE0AC71}"
.\debug.cpp(400) : Destination="\Device\{30844882-F888-435B-A5D6-D5463CE0AC71}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#RDP_KBD#0000#{884b96c3-56ef-11d1-bc8c-00a0c91405dd}"
.\debug.cpp(400) : Destination="\Device\00000046"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IDE#CdRomHL-DT-ST_DVD-ROM_GDR8163B_______________0L23____#5&1231ed81&0&0.1.0#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Ide\IdeDeviceP2T1L0-24"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DmInfo"
.\debug.cpp(400) : Destination="\Device\DmControl\DmInfo"

.\debug.cpp(451) : **********************************************
.\boot_cleaner.cpp(1077) : System volume is \\.\C:
.\boot_cleaner.cpp(1113) : \\.\C: -> \\.\PhysicalDrive1 at offset 0x00000000`00007e00
.\boot_cleaner.cpp(424) : Boot sector MD5 is: 6def5ffcbcdbdb4082f1015625e597bd
.\boot_cleaner.cpp(1151) :
.\boot_cleaner.cpp(1152) : Size Device Name MBR Status
.\boot_cleaner.cpp(1153) : --------------------------------------------
.\boot_cleaner.cpp(1197) : 149 GB \\.\PhysicalDrive1 OK (DOS/Win32 Boot code found)
.\boot_cleaner.cpp(1203) :
.\boot_cleaner.cpp(1242) : Done;


szer. aug. 25, 2010 15:12
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: pilaka bogarai
ok, ugy nez ki hogy a bootkit remover, bootkitet talalt a MBR, sectorban, tehat megjavitsuk,
1:A legujab whistler bootkit, ugy vedekezik a javitastol, hogy tonkre teszi a rendszert, ezert a javítás előtt, ments le a fontos adatokat,
2:Ha megvan az adat mentes, akkor klik start-klik- futtatas- masold be ezt a parancsot:
"%userprofile%\asztal\remover.exe" fix \\.\PhysicalDrive1
[enter]
restart
Ujbol futtasd a bootkitremovert es a logjat tedd ide.


szer. aug. 25, 2010 8:27
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. jan. 01, 2009 20:34
Hozzászólások: 294
Hozzászólás Re: pilaka bogarai
.\debug.cpp(238) : Debug log started at 24.08.2010 - 19:35:13
.\boot_cleaner.cpp(675) : Bootkit Remover
.\boot_cleaner.cpp(676) : (c) 2009 eSage Lab
.\boot_cleaner.cpp(677) : www.esagelab.com
.\boot_cleaner.cpp(681) : Program version: 1.1.0.0
.\boot_cleaner.cpp(688) : OS Version: Microsoft Windows XP Professional Szervizcsomag 2 (build 2600)
.\debug.cpp(248) : **********************************************
.\debug.cpp(249) : *** [ LOADED MODULES INFORMATION ] ***********
.\debug.cpp(250) : **********************************************
.\debug.cpp(256) : 0x804d7000 0x0020b000 "\WINDOWS\system32\ntkrnlpa.exe"
.\debug.cpp(256) : 0x806e2000 0x00020d00 "\WINDOWS\system32\hal.dll"
.\debug.cpp(256) : 0xf7b5c000 0x00002000 "\WINDOWS\system32\KDCOM.DLL"
.\debug.cpp(256) : 0xf7a6c000 0x00003000 "\WINDOWS\system32\BOOTVID.dll"
.\debug.cpp(256) : 0xf754a000 0x00011000 "pci.sys"
.\debug.cpp(256) : 0xf752b000 0x0001f000 "fltMgr.sys"
.\debug.cpp(256) : 0xf765c000 0x0000f000 "ohci1394.sys"
.\debug.cpp(256) : 0xf7b5e000 0x00002000 "\WINDOWS\system32\DRIVERS\WMILIB.SYS"
.\debug.cpp(256) : 0xf766c000 0x0000d000 "\WINDOWS\system32\DRIVERS\1394BUS.SYS"
.\debug.cpp(256) : 0xf74fd000 0x0002e000 "ACPI.sys"
.\debug.cpp(256) : 0xf767c000 0x00009000 "isapnp.sys"
.\debug.cpp(256) : 0xf7c24000 0x00001000 "pciide.sys"
.\debug.cpp(256) : 0xf78dc000 0x00007000 "\WINDOWS\system32\DRIVERS\PCIIDEX.SYS"
.\debug.cpp(256) : 0xf7b60000 0x00002000 "viaide.sys"
.\debug.cpp(256) : 0xf768c000 0x0000b000 "MountMgr.sys"
.\debug.cpp(256) : 0xf74de000 0x0001f000 "ftdisk.sys"
.\debug.cpp(256) : 0xf7b62000 0x00002000 "dmload.sys"
.\debug.cpp(256) : 0xf74b8000 0x00026000 "dmio.sys"
.\debug.cpp(256) : 0xf78e4000 0x00005000 "PartMgr.sys"
.\debug.cpp(256) : 0xf78ec000 0x00008000 "videX32.sys"
.\debug.cpp(256) : 0xf769c000 0x0000d000 "VolSnap.sys"
.\debug.cpp(256) : 0xf74a0000 0x00018000 "atapi.sys"
.\debug.cpp(256) : 0xf76ac000 0x00009000 "disk.sys"
.\debug.cpp(256) : 0xf76bc000 0x0000d000 "\WINDOWS\system32\DRIVERS\CLASSPNP.SYS"
.\debug.cpp(256) : 0xf748e000 0x00012000 "sr.sys"
.\debug.cpp(256) : 0xf7457000 0x00037000 "PCTCore.sys"
.\debug.cpp(256) : 0xf7440000 0x00017000 "KSecDD.sys"
.\debug.cpp(256) : 0xf73b3000 0x0008d000 "Ntfs.sys"
.\debug.cpp(256) : 0xf7386000 0x0002d000 "NDIS.sys"
.\debug.cpp(256) : 0xf736b000 0x0001b000 "Mup.sys"
.\debug.cpp(256) : 0xf76cc000 0x0000c000 "gagp30kx.sys"
.\debug.cpp(256) : 0xf782c000 0x00010000 "\SystemRoot\system32\DRIVERS\AmdK8.sys"
.\debug.cpp(256) : 0xf6b51000 0x00207000 "\SystemRoot\system32\DRIVERS\ati2mtag.sys"
.\debug.cpp(256) : 0xf6b3d000 0x00014000 "\SystemRoot\system32\DRIVERS\VIDEOPRT.SYS"
.\debug.cpp(256) : 0xf783c000 0x0000b000 "\SystemRoot\system32\DRIVERS\imapi.sys"
.\debug.cpp(256) : 0xf7994000 0x00007000 "\SystemRoot\System32\Drivers\ULCDRHlp.sys"
.\debug.cpp(256) : 0xf784c000 0x0000e000 "\SystemRoot\System32\Drivers\AFS2K.SYS"
.\debug.cpp(256) : 0xf799c000 0x00007000 "\SystemRoot\System32\Drivers\ElbyCDFL.sys"
.\debug.cpp(256) : 0xf785c000 0x0000d000 "\SystemRoot\system32\DRIVERS\cdrom.sys"
.\debug.cpp(256) : 0xf786c000 0x0000f000 "\SystemRoot\system32\DRIVERS\redbook.sys"
.\debug.cpp(256) : 0xf6b1a000 0x00023000 "\SystemRoot\system32\DRIVERS\ks.sys"
.\debug.cpp(256) : 0xf79a4000 0x00007000 "\SystemRoot\system32\drivers\gearaspiwdm.sys"
.\debug.cpp(256) : 0xf79ac000 0x00005000 "\SystemRoot\system32\DRIVERS\usbuhci.sys"
.\debug.cpp(256) : 0xf6af7000 0x00023000 "\SystemRoot\system32\DRIVERS\USBPORT.SYS"
.\debug.cpp(256) : 0xf79b4000 0x00007000 "\SystemRoot\system32\DRIVERS\usbehci.sys"
.\debug.cpp(256) : 0xf6ae3000 0x00014000 "\SystemRoot\system32\DRIVERS\parport.sys"
.\debug.cpp(256) : 0xf7b8e000 0x00002000 "\SystemRoot\system32\DRIVERS\ASACPI.sys"
.\debug.cpp(256) : 0xf787c000 0x0000d000 "\SystemRoot\system32\DRIVERS\i8042prt.sys"
.\debug.cpp(256) : 0xf79bc000 0x00007000 "\SystemRoot\system32\DRIVERS\kbdclass.sys"
.\debug.cpp(256) : 0xf79c4000 0x00006000 "\SystemRoot\system32\DRIVERS\mouclass.sys"
.\debug.cpp(256) : 0xf79cc000 0x00007000 "\SystemRoot\system32\DRIVERS\fdc.sys"
.\debug.cpp(256) : 0xf788c000 0x00010000 "\SystemRoot\system32\DRIVERS\serial.sys"
.\debug.cpp(256) : 0xf7b3c000 0x00004000 "\SystemRoot\system32\DRIVERS\serenum.sys"
.\debug.cpp(256) : 0xf79d4000 0x00007000 "\SystemRoot\system32\DRIVERS\fetnd5.sys"
.\debug.cpp(256) : 0xf789c000 0x00010000 "\SystemRoot\system32\DRIVERS\nic1394.sys"
.\debug.cpp(256) : 0xf6a97000 0x0004c000 "\SystemRoot\system32\DRIVERS\tvcap.sys"
.\debug.cpp(256) : 0xf78ac000 0x0000c000 "\SystemRoot\system32\DRIVERS\STREAM.SYS"
.\debug.cpp(256) : 0xf6a72000 0x00025000 "\SystemRoot\system32\DRIVERS\HDAudBus.sys"
.\debug.cpp(256) : 0xf79dc000 0x00006000 "\SystemRoot\system32\DRIVERS\afw.sys"
.\debug.cpp(256) : 0xf6a3a000 0x00038000 "\SystemRoot\system32\drivers\afwcore.sys"
.\debug.cpp(256) : 0xf79e4000 0x00005000 "\SystemRoot\system32\drivers\TDI.SYS"
.\debug.cpp(256) : 0xf7daf000 0x00001000 "\SystemRoot\system32\DRIVERS\audstub.sys"
.\debug.cpp(256) : 0xf78bc000 0x0000d000 "\SystemRoot\system32\DRIVERS\rasl2tp.sys"
.\debug.cpp(256) : 0xf7b4c000 0x00003000 "\SystemRoot\system32\DRIVERS\ndistapi.sys"
.\debug.cpp(256) : 0xf6983000 0x00017000 "\SystemRoot\system32\DRIVERS\ndiswan.sys"
.\debug.cpp(256) : 0xf78cc000 0x0000b000 "\SystemRoot\system32\DRIVERS\raspppoe.sys"
.\debug.cpp(256) : 0xf770c000 0x0000c000 "\SystemRoot\system32\DRIVERS\raspptp.sys"
.\debug.cpp(256) : 0xf6972000 0x00011000 "\SystemRoot\system32\DRIVERS\psched.sys"
.\debug.cpp(256) : 0xf771c000 0x00009000 "\SystemRoot\system32\DRIVERS\msgpc.sys"
.\debug.cpp(256) : 0xf79ec000 0x00005000 "\SystemRoot\system32\DRIVERS\ptilink.sys"
.\debug.cpp(256) : 0xf79f4000 0x00005000 "\SystemRoot\system32\DRIVERS\raspti.sys"
.\debug.cpp(256) : 0xf772c000 0x0000c000 "\SystemRoot\System32\Drivers\pcouffin.sys"
.\debug.cpp(256) : 0xf6941000 0x00031000 "\SystemRoot\system32\DRIVERS\rdpdr.sys"
.\debug.cpp(256) : 0xf773c000 0x0000a000 "\SystemRoot\system32\DRIVERS\termdd.sys"
.\debug.cpp(256) : 0xf774c000 0x0000e000 "\SystemRoot\system32\DRIVERS\vbev5mp.sys"
.\debug.cpp(256) : 0xf6929000 0x00018000 "\SystemRoot\system32\DRIVERS\SCSIPORT.SYS"
.\debug.cpp(256) : 0xf7b90000 0x00002000 "\SystemRoot\system32\DRIVERS\swenum.sys"
.\debug.cpp(256) : 0xf68f5000 0x00034000 "\SystemRoot\system32\DRIVERS\update.sys"
.\debug.cpp(256) : 0xf7347000 0x00004000 "\SystemRoot\system32\DRIVERS\mssmbios.sys"
.\debug.cpp(256) : 0xf775c000 0x0000e000 "\SystemRoot\system32\DRIVERS\cledx.sys"
.\debug.cpp(256) : 0xf776c000 0x0000a000 "\SystemRoot\System32\Drivers\NDProxy.SYS"
.\debug.cpp(256) : 0xf779c000 0x0000f000 "\SystemRoot\system32\DRIVERS\usbhub.sys"
.\debug.cpp(256) : 0xf7b92000 0x00002000 "\SystemRoot\system32\DRIVERS\USBD.SYS"
.\debug.cpp(256) : 0xaa396000 0x0046a000 "\SystemRoot\system32\drivers\RtkHDAud.sys"
.\debug.cpp(256) : 0xaa374000 0x00022000 "\SystemRoot\system32\drivers\portcls.sys"
.\debug.cpp(256) : 0xf77ac000 0x0000f000 "\SystemRoot\system32\drivers\drmk.sys"
.\debug.cpp(256) : 0xf7a04000 0x00005000 "\SystemRoot\system32\DRIVERS\tvtuner.sys"
.\debug.cpp(256) : 0xf7a0c000 0x00005000 "\SystemRoot\system32\DRIVERS\flpydisk.sys"
.\debug.cpp(256) : 0xf7b96000 0x00002000 "\SystemRoot\System32\Drivers\Fs_Rec.SYS"
.\debug.cpp(256) : 0xf7d3e000 0x00001000 "\SystemRoot\System32\Drivers\Null.SYS"
.\debug.cpp(256) : 0xf7b98000 0x00002000 "\SystemRoot\System32\Drivers\Beep.SYS"
.\debug.cpp(256) : 0xf7a1c000 0x00006000 "\SystemRoot\System32\drivers\vga.sys"
.\debug.cpp(256) : 0xf7b9a000 0x00002000 "\SystemRoot\System32\Drivers\mnmdd.SYS"
.\debug.cpp(256) : 0xf7b9c000 0x00002000 "\SystemRoot\System32\DRIVERS\RDPCDD.sys"
.\debug.cpp(256) : 0xf7a24000 0x00005000 "\SystemRoot\System32\Drivers\Msfs.SYS"
.\debug.cpp(256) : 0xf7a2c000 0x00008000 "\SystemRoot\System32\Drivers\Npfs.SYS"
.\debug.cpp(256) : 0xaa2f3000 0x00011000 "\SystemRoot\System32\Drivers\Udfs.SYS"
.\debug.cpp(256) : 0xaa2ab000 0x00048000 "\SystemRoot\System32\Drivers\USIUDF.sys"
.\debug.cpp(256) : 0xaa34c000 0x00003000 "\SystemRoot\system32\DRIVERS\rasacd.sys"
.\debug.cpp(256) : 0xaa248000 0x00013000 "\SystemRoot\system32\DRIVERS\ipsec.sys"
.\debug.cpp(256) : 0xaa1f0000 0x00058000 "\SystemRoot\system32\DRIVERS\tcpip.sys"
.\debug.cpp(256) : 0xf77cc000 0x0000a000 "\SystemRoot\System32\Drivers\aswTdi.SYS"
.\debug.cpp(256) : 0xaa1a7000 0x00021000 "\SystemRoot\system32\DRIVERS\ipnat.sys"
.\debug.cpp(256) : 0xaa194000 0x00013000 "\??\C:\WINDOWS\system32\drivers\nltdi.sys"
.\debug.cpp(256) : 0xf77dc000 0x00009000 "\SystemRoot\system32\DRIVERS\wanarp.sys"
.\debug.cpp(256) : 0xaa144000 0x00028000 "\SystemRoot\system32\DRIVERS\netbt.sys"
.\debug.cpp(256) : 0xaa122000 0x00022000 "\SystemRoot\System32\drivers\afd.sys"
.\debug.cpp(256) : 0xf77ec000 0x0000f000 "\SystemRoot\system32\DRIVERS\arp1394.sys"
.\debug.cpp(256) : 0xf77fc000 0x00009000 "\SystemRoot\system32\DRIVERS\netbios.sys"
.\debug.cpp(256) : 0xaa07f000 0x000a3000 "\SystemRoot\system32\DRIVERS\SandBox.sys"
.\debug.cpp(256) : 0xf7a34000 0x00007000 "\SystemRoot\system32\DRIVERS\usbprint.sys"
.\debug.cpp(256) : 0xaa053000 0x0002c000 "\SystemRoot\system32\DRIVERS\rdbss.sys"
.\debug.cpp(256) : 0xf7cd0000 0x00001000 "\SystemRoot\System32\Drivers\PQNTDrv.SYS"
.\debug.cpp(256) : 0xa9fe4000 0x0006f000 "\SystemRoot\system32\DRIVERS\mrxsmb.sys"
.\debug.cpp(256) : 0xf781c000 0x00009000 "\SystemRoot\System32\Drivers\Fips.SYS"
.\debug.cpp(256) : 0xf7a44000 0x00005000 "\SystemRoot\System32\Drivers\ElbyCDIO.sys"
.\debug.cpp(256) : 0xa9fc3000 0x00021000 "\SystemRoot\System32\Drivers\aswSP.SYS"
.\debug.cpp(256) : 0xaa28b000 0x00004000 "\SystemRoot\System32\drivers\aspi32.sys"
.\debug.cpp(256) : 0xf7a4c000 0x00008000 "\SystemRoot\system32\DRIVERS\usbccgp.sys"
.\debug.cpp(256) : 0xaa287000 0x00003000 "\SystemRoot\system32\DRIVERS\hidusb.sys"
.\debug.cpp(256) : 0xf6a2a000 0x00009000 "\SystemRoot\system32\DRIVERS\HIDCLASS.SYS"
.\debug.cpp(256) : 0xf7a54000 0x00007000 "\SystemRoot\system32\DRIVERS\HIDPARSE.SYS"
.\debug.cpp(256) : 0xaa283000 0x00004000 "\SystemRoot\system32\DRIVERS\usbscan.sys"
.\debug.cpp(256) : 0xf7a5c000 0x00005000 "\SystemRoot\System32\Drivers\Aavmker4.SYS"
.\debug.cpp(256) : 0xa9e88000 0x00023000 "\SystemRoot\System32\Drivers\Fastfat.SYS"
.\debug.cpp(256) : 0xa9e70000 0x00018000 "\SystemRoot\System32\Drivers\dump_atapi.sys"
.\debug.cpp(256) : 0xf7b9e000 0x00002000 "\SystemRoot\System32\Drivers\dump_WMILIB.SYS"
.\debug.cpp(256) : 0xbf800000 0x001c1000 "\SystemRoot\System32\win32k.sys"
.\debug.cpp(256) : 0xf7a64000 0x00005000 "\SystemRoot\System32\watchdog.sys"
.\debug.cpp(256) : 0xaa25b000 0x00003000 "\SystemRoot\System32\drivers\Dxapi.sys"
.\debug.cpp(256) : 0xbf000000 0x00012000 "\SystemRoot\System32\drivers\dxg.sys"
.\debug.cpp(256) : 0xf7c5f000 0x00001000 "\SystemRoot\System32\drivers\dxgthk.sys"
.\debug.cpp(256) : 0xbf012000 0x00044000 "\SystemRoot\System32\ati2dvag.dll"
.\debug.cpp(256) : 0xbf056000 0x0004d000 "\SystemRoot\System32\ati2cqag.dll"
.\debug.cpp(256) : 0xbf0a3000 0x0004c000 "\SystemRoot\System32\atikvmag.dll"
.\debug.cpp(256) : 0xbf0ef000 0x0028e000 "\SystemRoot\System32\ati3duag.dll"
.\debug.cpp(256) : 0xbf37d000 0x0013b000 "\SystemRoot\System32\ativvaxx.dll"
.\debug.cpp(256) : 0xbffa0000 0x00046000 "\SystemRoot\System32\ATMFD.DLL"
.\debug.cpp(256) : 0xf793c000 0x00008000 "\SystemRoot\system32\DRIVERS\aswFsBlk.sys"
.\debug.cpp(256) : 0xa7aa2000 0x00016000 "\SystemRoot\System32\Drivers\aswMon2.SYS"
.\debug.cpp(256) : 0xa7845000 0x0002d000 "\SystemRoot\system32\DRIVERS\mrxdav.sys"
.\debug.cpp(256) : 0xf7bdc000 0x00002000 "\SystemRoot\System32\Drivers\ParVdm.SYS"
.\debug.cpp(256) : 0xa780b000 0x00012000 "\SystemRoot\System32\Drivers\SENTINEL.SYS"
.\debug.cpp(256) : 0xf7974000 0x00007000 "\SystemRoot\system32\Filt\ASWFilt.dll"
.\debug.cpp(256) : 0xa7580000 0x00041000 "\SystemRoot\System32\Drivers\HTTP.sys"
.\debug.cpp(256) : 0xa756b000 0x00015000 "\SystemRoot\system32\drivers\wdmaud.sys"
.\debug.cpp(256) : 0xa79d2000 0x0000f000 "\SystemRoot\system32\drivers\sysaudio.sys"
.\debug.cpp(256) : 0xa7418000 0x00053000 "\SystemRoot\system32\DRIVERS\srv.sys"
.\debug.cpp(256) : 0xa778b000 0x00010000 "\SystemRoot\System32\Drivers\Cdfs.SYS"
.\debug.cpp(256) : 0xa6b2d000 0x00004000 "\SystemRoot\System32\Drivers\aswRdr.SYS"
.\debug.cpp(256) : 0xa6a65000 0x00009000 "\??\C:\WINDOWS\system32\FsUsbExDisk.SYS"
.\debug.cpp(256) : 0xa9fb3000 0x00007000 "\??\C:\Program Files\Spyware Doctor\PCTSDInj32.sys"
.\debug.cpp(256) : 0x7c900000 0x000b2000 "\WINDOWS\system32\ntdll.dll"
.\debug.cpp(263) : **********************************************
.\debug.cpp(307) : *** [ DEVICE OBJECTS INFORMATION ] ***********
.\debug.cpp(308) : **********************************************
.\debug.cpp(369) : SymbolicLink "\GLOBAL??\D:"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{f251af95-75e5-11de-904d-001d60523543}"
.\debug.cpp(400) : Destination="\Device\CdRom3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{f95288a7-73f4-11de-9381-806d6172696f}"
.\debug.cpp(400) : Destination="\Device\CdRom1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\NDIS"
.\debug.cpp(400) : Destination="\Device\Ndis"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HDAUDIO#FUNC_01&VEN_10EC&DEV_0662&SUBSYS_10438290&REV_1001#4&279b7fc&0&0001#{65e8773e-8f56-11d0-a3b9-00a0c9223196}"
.\debug.cpp(400) : Destination="\Device\00000090"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Scsi3:"
.\debug.cpp(400) : Destination="\Device\Ide\IdePort2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#Vid_043d&Pid_00b2#23A018001000G02#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
.\debug.cpp(400) : Destination="\Device\USBPDO-7"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DISPLAY1"
.\debug.cpp(400) : Destination="\Device\Video0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#AGTM_AFW_MP#0000#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\00000002"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{f76005ec-76f0-11de-9505-806d6172696f}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume7"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#ROOT_HUB#4&336b9a0e&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
.\debug.cpp(400) : Destination="\Device\USBPDO-0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{ffbb6e3f-ccfe-4d84-90d9-421418b03a8e}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ASWSP"
.\debug.cpp(400) : Destination="\Device\aswSP"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DISPLAY2"
.\debug.cpp(400) : Destination="\Device\Video1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{71985f4a-1ca1-11d3-9cc8-00c04f7971e0}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#MS_PPPOEMINIPORT#0000#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\0000003e"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\OAKAFSUI"
.\debug.cpp(400) : Destination="\Device\OAKAFSUI"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DmIoDaemon"
.\debug.cpp(400) : Destination="\Device\DmControl\DmIoDaemon"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Ip"
.\debug.cpp(400) : Destination="\Device\Ip"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\aswSP_Pot2"
.\debug.cpp(400) : Destination="\Device\aswSP_Pot2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DISPLAY3"
.\debug.cpp(400) : Destination="\Device\Video2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HDAUDIO#FUNC_01&VEN_10EC&DEV_0662&SUBSYS_10438290&REV_1001#4&279b7fc&0&0001#{86841137-ed8e-4d97-9975-f2ed56b4430e}"
.\debug.cpp(400) : Destination="\Device\00000090"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\E:"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume5"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\FDC#GENERIC_FLOPPY_DRIVE#5&2578af31&2&0#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\FloppyPDO0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\SandBox"
.\debug.cpp(400) : Destination="\Device\SandBox"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IPSECDev"
.\debug.cpp(400) : Destination="\Device\IPSEC"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DISPLAY4"
.\debug.cpp(400) : Destination="\Device\Video3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#MS_NDISWANIP#0000#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\0000003d"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ATKACPI"
.\debug.cpp(400) : Destination="\Device\ATKACPI"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Scsi4:"
.\debug.cpp(400) : Destination="\Device\Scsi\vbev5mp1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\NDPROXY"
.\debug.cpp(400) : Destination="\Device\NDProxy"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#ROOT_HUB20#4&26c8cc44&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
.\debug.cpp(400) : Destination="\Device\USBPDO-4"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ASWMON"
.\debug.cpp(400) : Destination="\Device\aswMon"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DISPLAY5"
.\debug.cpp(400) : Destination="\Device\Video4"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#PNP0400#4&2817ec26&0#{97f76ef0-f883-11d0-af1f-0000f800845c}"
.\debug.cpp(400) : Destination="\Device\00000077"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{9aa4a2cc-81e0-4cfd-802f-0f74526d2bd3}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SCSIADAPTER#0000#{2accfe60-c130-11d2-b082-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\00000047"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\P:"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\nlctrl"
.\debug.cpp(400) : Destination="\Device\nlctrl"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{fd0a5af4-b41d-11d2-9c95-00c04f7971e0}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\RNBODRV0"
.\debug.cpp(400) : Destination="\Device\RNBODEV0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\$VDMLPT1"
.\debug.cpp(400) : Destination="\Device\ParallelVdm0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{CB6C639A-48EB-46A9-9A3C-6FDB09F6D399}"
.\debug.cpp(400) : Destination="\Device\{CB6C639A-48EB-46A9-9A3C-6FDB09F6D399}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{3c0d501a-140b-11d1-b40f-00a0c9223196}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{72223335-271C-49B5-9430-31A869DD6325}"
.\debug.cpp(400) : Destination="\Device\{72223335-271C-49B5-9430-31A869DD6325}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\RdpDrDvMgr"
.\debug.cpp(400) : Destination="\Device\RdpDrDvMgr"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{98C50A06-0363-4D58-AB65-12F590DEB5AA}"
.\debug.cpp(400) : Destination="\Device\{98C50A06-0363-4D58-AB65-12F590DEB5AA}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\F:"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume6"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{f76005ef-76f0-11de-9505-806d6172696f}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume6"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\WMIDataDevice"
.\debug.cpp(400) : Destination="\Device\WMIDataDevice"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\COM1"
.\debug.cpp(400) : Destination="\Device\Serial0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{dff220f3-f70f-11d0-b917-00a0c9223196}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1002&DEV_7143&SUBSYS_21641458&REV_00#4&139c0c9b&0&0010#{5b45201d-f2f2-4f3b-85bb-30ff1f953599}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0028"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#AuthenticAMD_-_x86_Family_15_Model_75#_0#{97fadb10-4e33-40ae-359c-8bef029dbdd0}"
.\debug.cpp(400) : Destination="\Device\0000004e"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PIPE"
.\debug.cpp(400) : Destination="\Device\NamedPipe"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\SW#{a7c7a5b0-5af3-11d1-9ced-00a024bf0407}#{9B365890-165F-11D0-A195-0020AFD156E4}#{d6c5066e-72c1-11d2-9755-0000f8004788}"
.\debug.cpp(400) : Destination="\Device\KSENUM#00000003"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Usbscan0"
.\debug.cpp(400) : Destination="\Device\Usbscan0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HDAUDIO#FUNC_01&VEN_10EC&DEV_0662&SUBSYS_10438290&REV_1001#4&279b7fc&0&0001#{65e8773d-8f56-11d0-a3b9-00a0c9223196}"
.\debug.cpp(400) : Destination="\Device\00000090"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{2eb07ea0-7e70-11d0-a5d6-28db04c10000}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1106&DEV_3065&SUBSYS_80ED1043&REV_7C#3&267a616a&0&90#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0019"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0004#{d50f1fe3-64e1-4ce7-aac3-410dc6b98b2d}"
.\debug.cpp(400) : Destination="\Device\0000004b"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\G:"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume7"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\STORAGE#Volume#1&30a96598&0&Signature7CD07CDOffset7E00Length752C56200#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume4"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\UNC"
.\debug.cpp(400) : Destination="\Device\Mup"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#ROOT_HUB#4&20b1e969&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
.\debug.cpp(400) : Destination="\Device\USBPDO-1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PSched"
.\debug.cpp(400) : Destination="\Device\PSched"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IPNAT"
.\debug.cpp(400) : Destination="\Device\IPNAT"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{0a4252a0-7e70-11d0-a5d6-28db04c10000}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\GEARAspiWDMDevice"
.\debug.cpp(400) : Destination="\Device\GEARAspiWDMDevice"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{6994ad04-93ef-11d0-a3cc-00a0c9223196}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HCD0"
.\debug.cpp(400) : Destination="\Device\USBFDO-0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#ROOT_HUB#4&df838c4&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
.\debug.cpp(400) : Destination="\Device\USBPDO-2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ASWTDI"
.\debug.cpp(400) : Destination="\Device\ASWTDI"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Tcp"
.\debug.cpp(400) : Destination="\Device\Tcp"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\FltMgrMsg"
.\debug.cpp(400) : Destination="\FileSystem\Filters\FltMgrMsg"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\STORAGE#Volume#1&30a96598&0&Signature7CD07CDOffsetE9D369C00Length8E1D8BE00#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume6"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\FsUsbExDisk"
.\debug.cpp(400) : Destination="\Device\FsUsbExDisk"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HCD1"
.\debug.cpp(400) : Destination="\Device\USBFDO-1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\LCD"
.\debug.cpp(400) : Destination="\Device\VideoPdo0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#MS_PTIMINIPORT#0000#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\00000042"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PhysicalDrive0"
.\debug.cpp(400) : Destination="\Device\Harddisk0\DR0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HCD2"
.\debug.cpp(400) : Destination="\Device\USBFDO-2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#PNP0303#4&2817ec26&0#{884b96c3-56ef-11d1-bc8c-00a0c91405dd}"
.\debug.cpp(400) : Destination="\Device\0000007f"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PRN"
.\debug.cpp(400) : Destination="\DosDevices\LPT1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1106&DEV_3038&SUBSYS_827C1043&REV_B0#3&267a616a&0&82#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0014"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{cf1dda2c-9743-11d0-a3ee-00a0c9223196}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{53172480-4791-11d0-a5d6-28db04c10000}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#MS_PSCHEDMP#0001#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\00000041"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1033&DEV_00E7&SUBSYS_00CE1033&REV_01#4&172fb5d3&0&3099#{6bdd1fc1-810f-11d0-bec7-08002be2092f}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0026"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\H:"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\STORAGE#Volume#1&30a96598&0&Signature7CD07CDOffset752C65E00Length74A6FC000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume5"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PhysicalDrive1"
.\debug.cpp(400) : Destination="\Device\Harddisk1\DR1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HCD3"
.\debug.cpp(400) : Destination="\Device\USBFDO-3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\sysaudio"
.\debug.cpp(400) : Destination="\Device\sysaudio"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#Vid_06d6&Pid_0025#6&55fcb9&0&4#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
.\debug.cpp(400) : Destination="\Device\USBPDO-8"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\fsWrap"
.\debug.cpp(400) : Destination="\Device\FsWrap"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#MS_PSCHEDMP#0000#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\00000040"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{97ebaacb-95bd-11d0-a3ea-00a0c9223196}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\CdRom0"
.\debug.cpp(400) : Destination="\Device\CdRom0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{41c5f0f0-a257-11df-8b2c-806d6172696f}"
.\debug.cpp(400) : Destination="\Device\CdRom0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{f95288a8-73f4-11de-9381-806d6172696f}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#Vid_058f&Pid_6254#5&38c537bc&0&4#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
.\debug.cpp(400) : Destination="\Device\USBPDO-6"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HCD4"
.\debug.cpp(400) : Destination="\Device\USBFDO-4"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\MbMmDp32"
.\debug.cpp(400) : Destination="\Device\MbMmDp32"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\nltdi"
.\debug.cpp(400) : Destination="\Device\nltdi"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\CdRom1"
.\debug.cpp(400) : Destination="\Device\CdRom1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HID#Vid_043d&Pid_00b2&MI_02#8&30f6867f&0&0000#{4d1e55b2-f16f-11cf-88cb-001111000030}"
.\debug.cpp(400) : Destination="\Device\000000a0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\SCSI#CdRom&Ven_VBE_HH&Prod_DVD-ROM_DVD-50D&Rev_5.00#1&2afd7d61&0&010#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Scsi\vbev5mp1Port4Path0Target1Lun0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\afw"
.\debug.cpp(400) : Destination="\Device\afw"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCTSDInjDriver32"
.\debug.cpp(400) : Destination="\Device\PCTSDInjDriver32"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\CdRom2"
.\debug.cpp(400) : Destination="\Device\CdRom2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#FixedButton#2&daba3ff&0#{4afa3d53-74a7-11d0-be5e-00a0c9062857}"
.\debug.cpp(400) : Destination="\Device\00000055"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#PNP0C0C#aa#{4afa3d53-74a7-11d0-be5e-00a0c9062857}"
.\debug.cpp(400) : Destination="\Device\00000053"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Global"
.\debug.cpp(400) : Destination="\GLOBAL??"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\I:"
.\debug.cpp(400) : Destination="\Device\CdRom0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#Vid_043d&Pid_00b2&MI_00#7&2e0fcddb&0&0000#{6bdd1fc6-810f-11d0-bec7-08002be2092f}"
.\debug.cpp(400) : Destination="\Device\0000009b"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#PNP0501#1#{86e0d1e0-8089-11d0-9ce4-08003e301f73}"
.\debug.cpp(400) : Destination="\Device\00000082"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{125EA596-ED60-4330-8D2E-58929FAE3EBF}"
.\debug.cpp(400) : Destination="\Device\{125EA596-ED60-4330-8D2E-58929FAE3EBF}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\CdRom3"
.\debug.cpp(400) : Destination="\Device\CdRom3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\SW#{a7c7a5b0-5af3-11d1-9ced-00a024bf0407}#{9B365890-165F-11D0-A195-0020AFD156E4}#{d6c50671-72c1-11d2-9755-0000f8004788}"
.\debug.cpp(400) : Destination="\Device\KSENUM#00000003"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{01197299-93A7-45FE-98E1-FD37CD76CDA4}"
.\debug.cpp(400) : Destination="\Device\{01197299-93A7-45FE-98E1-FD37CD76CDA4}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{f95288b0-73f4-11de-9381-806d6172696f}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume4"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\STORAGE#Volume#1&30a96598&0&SignatureD6DDE8F5Offset7E0000Length24AE0AA400#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\STORAGE#Volume#1&30a96598&0&Signature7CD07CDOffset177F0FD800LengthDC405AA00#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume7"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{3e227e76-690d-11d2-8161-0000f8775bf1}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{ad809c00-7b88-11d0-a5d6-28db04c10000}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{9ea331fa-b91b-45f8-9285-bd2bc77afcde}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\LPTENUM#MicrosoftRawPort#5&3610c875&0&LPT1#{811fc6a5-f728-11d0-a537-0000f8753ed1}"
.\debug.cpp(400) : Destination="\Device\Parallel0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\STORAGE#Volume#1&30a96598&0&SignatureD6DDE8F5Offset29CE7C0A00Length20B7317800#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#Vid_043d&Pid_00b2&MI_01#7&2e0fcddb&0&0001#{28d78fad-5a12-11d1-ae5b-0000f803a8c2}"
.\debug.cpp(400) : Destination="\Device\0000009c"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ARP1394"
.\debug.cpp(400) : Destination="\Device\ARP1394"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1106&DEV_3038&SUBSYS_827C1043&REV_B0#3&267a616a&0&83#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0015"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{07dad660-22f1-11d1-a9f4-00c04fbbde8f}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\patincouffin0"
.\debug.cpp(400) : Destination="\Device\Patin couffin device0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{41c5f0f2-a257-11df-8b2c-001d60523543}"
.\debug.cpp(400) : Destination="\Device\Floppy0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\STORAGE#Volume#1&30a96598&0&SignatureD6DDE8F5Offset24AE892200Length51FF26A00#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1131&DEV_7130&SUBSYS_210018D0&REV_01#4&172fb5d3&0&3899#{65e8773d-8f56-11d0-a3b9-00a0c9223196}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0027"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\SCSI#CdRom&Ven_VBE_HH&Prod_DVD-ROM_DVD-50D&Rev_5.00#1&2afd7d61&0&010#{53f56308-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Scsi\vbev5mp1Port4Path0Target1Lun0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IDE#DiskSAMSUNG_HD321KJ_________________________CP100-12#3053514d314a514b313136363530202020202020#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Ide\IdeDeviceP0T0L0-3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#PNP0501#1#{4d36e978-e325-11ce-bfc1-08002be10318}"
.\debug.cpp(400) : Destination="\Device\00000082"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1106&DEV_3038&SUBSYS_827C1043&REV_B0#3&267a616a&0&81#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0013"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\MountPointManager"
.\debug.cpp(400) : Destination="\Device\MountPointManager"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\SW#{a7c7a5b0-5af3-11d1-9ced-00a024bf0407}#{9B365890-165F-11D0-A195-0020AFD156E4}#{d6c50674-72c1-11d2-9755-0000f8004788}"
.\debug.cpp(400) : Destination="\Device\KSENUM#00000003"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\AAVMKER4"
.\debug.cpp(400) : Destination="\Device\AavmKer4"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#MS_L2TPMINIPORT#0000#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\0000003c"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#AuthenticAMD_-_x86_Family_15_Model_75#_1#{97fadb10-4e33-40ae-359c-8bef029dbdd0}"
.\debug.cpp(400) : Destination="\Device\0000004f"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DmConfig"
.\debug.cpp(400) : Destination="\Device\DmControl\DmConfig"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#PNP0C0E#2&daba3ff&0#{4afa3d53-74a7-11d0-be5e-00a0c9062857}"
.\debug.cpp(400) : Destination="\Device\00000051"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\K:"
.\debug.cpp(400) : Destination="\Device\CdRom1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\WanArp"
.\debug.cpp(400) : Destination="\Device\WANARP"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HDAUDIO#FUNC_01&VEN_10EC&DEV_0662&SUBSYS_10438290&REV_1001#4&279b7fc&0&0001#{dda54a40-1e4c-11d1-a050-405705c10000}"
.\debug.cpp(400) : Destination="\Device\00000090"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1106&DEV_3038&SUBSYS_827C1043&REV_B0#3&267a616a&0&80#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0012"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\afwndis"
.\debug.cpp(400) : Destination="\Device\afwndis"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#ftdisk#0000#{53f5630e-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\00000005"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#ROOT_HUB#4&36d95226&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}"
.\debug.cpp(400) : Destination="\Device\USBPDO-3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\SCSI#CdRom&Ven_VBE_HH&Prod_DVD-ROM_DVD-50D&Rev_5.00#1&2afd7d61&0&000#{53f56308-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Scsi\vbev5mp1Port4Path0Target0Lun0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{97E78136-BA98-48A8-AF27-A87F1D412B9F}"
.\debug.cpp(400) : Destination="\Device\{97E78136-BA98-48A8-AF27-A87F1D412B9F}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{1BA7DF70-374E-4CF0-A527-04475BA1908B}"
.\debug.cpp(400) : Destination="\Device\{1BA7DF70-374E-4CF0-A527-04475BA1908B}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DmTrace"
.\debug.cpp(400) : Destination="\Device\DmControl\DmTrace"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\A:"
.\debug.cpp(400) : Destination="\Device\CdRom2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\SCSI#CdRom&Ven_VBE_HH&Prod_DVD-ROM_DVD-50D&Rev_5.00#1&2afd7d61&0&000#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Scsi\vbev5mp1Port4Path0Target0Lun0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#AGTM_AFW_MP#0001#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\00000003"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\NDISWANIP"
.\debug.cpp(400) : Destination="\Device\NdisWanIp"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#dmio#0000#{53f5630e-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\00000004"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Scsi0:"
.\debug.cpp(400) : Destination="\Device\Ide\IdePort0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{bf963d80-c559-11d0-8a2b-00a0c9255ac1}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\SW#{a7c7a5b0-5af3-11d1-9ced-00a024bf0407}#{9B365890-165F-11D0-A195-0020AFD156E4}#{fbf6f530-07b9-11d2-a71e-0000f8004788}"
.\debug.cpp(400) : Destination="\Device\KSENUM#00000003"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ElbyCDIO"
.\debug.cpp(400) : Destination="\Device\ElbyCDIO"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#Vid_03f0&Pid_c302#TH72O132SD04KT#{a5dcbf10-6530-11d2-901f-00c04fb951ed}"
.\debug.cpp(400) : Destination="\Device\USBPDO-5"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\L:"
.\debug.cpp(400) : Destination="\Device\Floppy0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1131&DEV_7130&SUBSYS_210018D0&REV_01#4&172fb5d3&0&3899#{a799a801-a46d-11d0-a18c-00a02401dcd4}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0027"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\1394BUS0"
.\debug.cpp(400) : Destination="\Device\1394BUS0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{f95288a9-73f4-11de-9381-806d6172696f}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IDE#CdRomHL-DT-ST_DVDRAM_GSA-H44N________________RB02____#304b374549373544313620302020202020202020#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Ide\IdeDeviceP2T0L0-1c"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HDAUDIO#FUNC_01&VEN_10EC&DEV_0662&SUBSYS_10438290&REV_1001#4&279b7fc&0&0001#{6994ad04-93ef-11d0-a3cc-00a0c9223196}"
.\debug.cpp(400) : Destination="\Device\00000090"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\HID#Vid_06d6&Pid_0025#7&1a124f59&0&0000#{4d1e55b2-f16f-11cf-88cb-001111000030}"
.\debug.cpp(400) : Destination="\Device\0000009e"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IDE#CdRomHL-DT-ST_DVDRAM_GSA-H44N________________RB02____#304b374549373544313620302020202020202020#{53f56308-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Ide\IdeDeviceP2T0L0-1c"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IDE#CdRomHL-DT-ST_DVD-ROM_GDR8163B_______________0L23____#5&1231ed81&0&0.1.0#{53f56308-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Ide\IdeDeviceP2T1L0-24"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{4747b320-62ce-11cf-a5d6-28db04c10000}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#MS_PPTPMINIPORT#0000#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\0000003f"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PTILINK1"
.\debug.cpp(400) : Destination="\Device\ParTechInc0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\B:"
.\debug.cpp(400) : Destination="\Device\CdRom3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#SYSTEM#0000#{a7c7a5b1-5af3-11d1-9ced-00a024bf0407}"
.\debug.cpp(400) : Destination="\Device\00000048"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\NDISTAPI"
.\debug.cpp(400) : Destination="\Device\NdisTapi"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\NdisWan"
.\debug.cpp(400) : Destination="\Device\NdisWan"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Scsi1:"
.\debug.cpp(400) : Destination="\Device\Ide\IdePort1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IPMULTICAST"
.\debug.cpp(400) : Destination="\Device\IPMULTICAST"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\LPT1"
.\debug.cpp(400) : Destination="\Device\Parallel0"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1106&DEV_3104&SUBSYS_827C1043&REV_90#3&267a616a&0&84#{3abf6f2d-71c4-462a-8a92-1e6861e6af27}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0016"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCI#VEN_1002&DEV_7163&SUBSYS_21651458&REV_00#4&139c0c9b&0&0110#{5b45201d-f2f2-4f3b-85bb-30ff1f953599}"
.\debug.cpp(400) : Destination="\Device\NTPNP_PCI0029"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{2B619031-00C7-47D1-A184-841909E499FC}"
.\debug.cpp(400) : Destination="\Device\{2B619031-00C7-47D1-A184-841909E499FC}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PTILINK2"
.\debug.cpp(400) : Destination="\Device\ParTechInc1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DmLoader"
.\debug.cpp(400) : Destination="\Device\DmLoader"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{f251af93-75e5-11de-904d-001d60523543}"
.\debug.cpp(400) : Destination="\Device\CdRom2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Shadow"
.\debug.cpp(400) : Destination="\Device\LanmanRedirector"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{EC489F29-BFDF-4230-AC72-D83CEBA28221}"
.\debug.cpp(400) : Destination="\Device\{EC489F29-BFDF-4230-AC72-D83CEBA28221}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\V1394#NIC1394#7002c1d4c01#{ad498944-762f-11d0-8dcb-00c04fc3358c}"
.\debug.cpp(400) : Destination="\Device\00000071"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PTILINK3"
.\debug.cpp(400) : Destination="\Device\ParTechInc2"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{f76005ee-76f0-11de-9505-806d6172696f}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume5"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\FtControl"
.\debug.cpp(400) : Destination="\Device\FtControl"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\FltMgr"
.\debug.cpp(400) : Destination="\FileSystem\Filters\FltMgr"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\C:"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume4"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ASWRDR"
.\debug.cpp(400) : Destination="\Device\ASWRDR"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PCTCoreDriver"
.\debug.cpp(400) : Destination="\Device\PCTCoreDevice"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\MAILSLOT"
.\debug.cpp(400) : Destination="\Device\MailSlot"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\aswSP_Avar"
.\debug.cpp(400) : Destination="\Device\aswSP_Avar"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IDE#CdRomHL-DT-ST_DVDRAM_GSA-H44N________________RB02____#304b374549373544313620302020202020202020#{1186654d-47b8-48b9-beb9-7df113ae3c67}"
.\debug.cpp(400) : Destination="\Device\Ide\IdeDeviceP2T0L0-1c"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\ACPI#PNP0F03#4&2817ec26&0#{378de44c-56ef-11d1-bc8c-00a0c91405dd}"
.\debug.cpp(400) : Destination="\Device\00000080"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\AUX"
.\debug.cpp(400) : Destination="\DosDevices\COM1"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\PQNTDRV"
.\debug.cpp(400) : Destination="\Device\PQNTDRV"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Volume{f95288aa-73f4-11de-9381-806d6172696f}"
.\debug.cpp(400) : Destination="\Device\HarddiskVolume3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\GLOBALROOT"
.\debug.cpp(400) : Destination=""

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Stream#LVTUNER#PCI#VEN_1131&DEV_7130&SUBSYS_210118D0#5&3ffc86b&0&0#{a799a800-a46d-11d0-a18c-00a02401dcd4}"
.\debug.cpp(400) : Destination="\Device\00000093"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IDE#DiskMAXTOR_STM3160215AS_____________________3.AAD___#5&127a373&0&0.0.0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Ide\IdeDeviceP1T0L0-e"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#RDP_MOU#0000#{378de44c-56ef-11d1-bc8c-00a0c91405dd}"
.\debug.cpp(400) : Destination="\Device\00000046"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Scsi2:"
.\debug.cpp(400) : Destination="\Device\Ide\IdePort3"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\NUL"
.\debug.cpp(400) : Destination="\Device\Null"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\USB#Vid_03f0&Pid_c302#TH72O132SD04KT#{28d78fad-5a12-11d1-ae5b-0000f803a8c2}"
.\debug.cpp(400) : Destination="\Device\USBPDO-5"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\{30844882-F888-435B-A5D6-D5463CE0AC71}"
.\debug.cpp(400) : Destination="\Device\{30844882-F888-435B-A5D6-D5463CE0AC71}"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\Root#RDP_KBD#0000#{884b96c3-56ef-11d1-bc8c-00a0c91405dd}"
.\debug.cpp(400) : Destination="\Device\00000045"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\IDE#CdRomHL-DT-ST_DVD-ROM_GDR8163B_______________0L23____#5&1231ed81&0&0.1.0#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}"
.\debug.cpp(400) : Destination="\Device\Ide\IdeDeviceP2T1L0-24"

.\debug.cpp(369) : SymbolicLink "\GLOBAL??\DmInfo"
.\debug.cpp(400) : Destination="\Device\DmControl\DmInfo"

.\debug.cpp(451) : **********************************************
.\boot_cleaner.cpp(1077) : System volume is \\.\C:
.\boot_cleaner.cpp(1113) : \\.\C: -> \\.\PhysicalDrive1 at offset 0x00000000`00007e00
.\boot_cleaner.cpp(424) : Boot sector MD5 is: d1d2ba68bb9b4db3d59d6b15035d0966
.\boot_cleaner.cpp(1151) :
.\boot_cleaner.cpp(1152) : Size Device Name MBR Status
.\boot_cleaner.cpp(1153) : --------------------------------------------
.\boot_cleaner.cpp(1197) : 149 GB \\.\PhysicalDrive1 Unknown boot code
.\boot_cleaner.cpp(1203) :
.\boot_cleaner.cpp(1209) : Unknown boot code has been found on some of your physical disks.
.\boot_cleaner.cpp(1211) : To inspect the boot code manually, dump the master boot sector:
.\boot_cleaner.cpp(1212) : remover.exe dump <device_name> [output_file]
.\boot_cleaner.cpp(1216) : To disinfect the master boot sector, use the following command:
.\boot_cleaner.cpp(1217) : remover.exe fix <device_name>
.\boot_cleaner.cpp(1220) :
.\boot_cleaner.cpp(1242) : Done;


kedd aug. 24, 2010 20:42
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: pilaka bogarai
http://www.virus-stell.com/2010/06/boot ... troja.html
futtasd le, alogjat tedd ide,


kedd aug. 24, 2010 17:04
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. jan. 01, 2009 20:34
Hozzászólások: 294
Hozzászólás Re: pilaka bogarai
Furcsán viselkedett ezért átvizsgáltam a Spyware doctorral és 71 kártevőt talállt, a firefoxot blokkolja hibaüzenet nélkül
az Avast...a gmer- mikor elindítottam leverte a gépet , a Combofix nem tudott végigfutni....sokszor lefagy a gép.


kedd aug. 24, 2010 16:54
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: pilaka bogarai
talat egy gyanus fajlot
a H+H virtual meghajtohoz van vbev5mp
Mi is van a gepedel??


kedd aug. 24, 2010 16:28
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. jan. 01, 2009 20:34
Hozzászólások: 294
Hozzászólás Re: pilaka bogarai
2010/08/24 15:51:26.0281 TDSS rootkit removing tool 2.4.1.2 Aug 16 2010 09:46:23
2010/08/24 15:51:26.0281 ================================================================================
2010/08/24 15:51:26.0281 SystemInfo:
2010/08/24 15:51:26.0281
2010/08/24 15:51:26.0281 OS Version: 5.1.2600 ServicePack: 2.0
2010/08/24 15:51:26.0281 Product type: Workstation
2010/08/24 15:51:26.0281 ComputerName: GG-C0E09BDA6906
2010/08/24 15:51:26.0296 UserName: Pali
2010/08/24 15:51:26.0296 Windows directory: C:\WINDOWS
2010/08/24 15:51:26.0296 System windows directory: C:\WINDOWS
2010/08/24 15:51:26.0296 Processor architecture: Intel x86
2010/08/24 15:51:26.0296 Number of processors: 2
2010/08/24 15:51:26.0296 Page size: 0x1000
2010/08/24 15:51:26.0296 Boot type: Normal boot
2010/08/24 15:51:26.0296 ================================================================================
2010/08/24 15:51:27.0140 Initialize success
2010/08/24 15:51:30.0953 ================================================================================
2010/08/24 15:51:30.0953 Scan started
2010/08/24 15:51:30.0953 Mode: Manual;
2010/08/24 15:51:30.0953 ================================================================================
2010/08/24 15:51:31.0968 Aavmker4 (2ccfa74242741ca22a4267cce9b586f4) C:\WINDOWS\system32\drivers\Aavmker4.sys
2010/08/24 15:51:32.0359 ACPI (4b60d4e72648207eb98287464fe3489d) C:\WINDOWS\system32\DRIVERS\ACPI.sys
2010/08/24 15:51:32.0484 ACPIEC (582c901174a7f0733c6fe41c37c9a80b) C:\WINDOWS\system32\drivers\ACPIEC.sys
2010/08/24 15:51:32.0687 aec (841f385c6cfaf66b58fbd898722bb4f0) C:\WINDOWS\system32\drivers\aec.sys
2010/08/24 15:51:32.0796 AFD (5ac495f4cb807b2b98ad2ad591e6d92e) C:\WINDOWS\System32\drivers\afd.sys
2010/08/24 15:51:32.0906 AFS2K (b34b1ab0a7690a0e2301fec6d17b2fc1) C:\WINDOWS\system32\drivers\AFS2K.sys
2010/08/24 15:51:33.0031 afw (6eb7a54981e64e03325f9a1fd39e42d2) C:\WINDOWS\system32\DRIVERS\afw.sys
2010/08/24 15:51:33.0156 afwcore (99072982a08fafb9fe14ee050aca80cc) C:\WINDOWS\system32\drivers\afwcore.sys
2010/08/24 15:51:33.0640 AmdK8 (e58e32436968ee84bb458aa6e8612d3e) C:\WINDOWS\system32\DRIVERS\AmdK8.sys
2010/08/24 15:51:33.0859 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
2010/08/24 15:51:34.0281 Aspi32 (b979979ab8027f7f53fb16ec4229b7db) C:\WINDOWS\system32\drivers\aspi32.sys
2010/08/24 15:51:34.0406 ASWFilt (415bf4141ecd4580466bf46bb3ae1b2d) C:\WINDOWS\system32\Filt\ASWFilt.dll
2010/08/24 15:51:34.0515 aswFsBlk (b4079a98f294a3e262872cb76f4849f0) C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys
2010/08/24 15:51:34.0640 aswMon2 (dbee7b5ecb50fc2cf9323f52cbf41141) C:\WINDOWS\system32\drivers\aswMon2.sys
2010/08/24 15:51:34.0750 aswRdr (8080d683489c99cbace813f6fa4069cc) C:\WINDOWS\system32\drivers\aswRdr.sys
2010/08/24 15:51:34.0890 aswSP (2e5a2ad5004b55df39b7606130a88142) C:\WINDOWS\system32\drivers\aswSP.sys
2010/08/24 15:51:35.0000 aswTdi (d4c83a37efadfa2c398362e0776e3773) C:\WINDOWS\system32\drivers\aswTdi.sys
2010/08/24 15:51:35.0109 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
2010/08/24 15:51:35.0218 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
2010/08/24 15:51:35.0468 ati2mtag (633d22a45283762dc05989751cc1397c) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
2010/08/24 15:51:35.0687 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
2010/08/24 15:51:35.0843 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
2010/08/24 15:51:35.0968 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
2010/08/24 15:51:36.0156 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
2010/08/24 15:51:36.0250 CCDECODE (6163ed60b684bab19d3352ab22fc48b2) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
2010/08/24 15:51:36.0453 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
2010/08/24 15:51:36.0562 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
2010/08/24 15:51:36.0656 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
2010/08/24 15:51:36.0890 CLEDX (b53f9635457b56dcffef750e18aec6cb) C:\WINDOWS\system32\DRIVERS\cledx.sys
2010/08/24 15:51:37.0156 CrystalSysInfo (f054744f67576a01139885173392502b) C:\Program Files\MediaCoder\SysInfo.sys
2010/08/24 15:51:37.0453 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
2010/08/24 15:51:37.0578 dmboot (89e3734f8b92bc9322b0b4331e94bcb4) C:\WINDOWS\system32\drivers\dmboot.sys
2010/08/24 15:51:37.0765 dmio (1811ad47c0ac9a082f1761138e2f2022) C:\WINDOWS\system32\drivers\dmio.sys
2010/08/24 15:51:37.0890 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
2010/08/24 15:51:38.0000 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
2010/08/24 15:51:38.0218 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
2010/08/24 15:51:38.0312 ElbyCDFL (ce37e3d51912e59c80c6d84337c0b4cd) C:\WINDOWS\system32\Drivers\ElbyCDFL.sys
2010/08/24 15:51:38.0421 ElbyCDIO (aaa8999a169e39fb8b48ae49cd6ac30a) C:\WINDOWS\system32\Drivers\ElbyCDIO.sys
2010/08/24 15:51:38.0546 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
2010/08/24 15:51:38.0656 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
2010/08/24 15:51:38.0765 FETNDIS (e9648254056bce81a85380c0c3647dc4) C:\WINDOWS\system32\DRIVERS\fetnd5.sys
2010/08/24 15:51:38.0890 Fips (3e16f14a26c5f2f663a14669a0e09544) C:\WINDOWS\system32\drivers\Fips.sys
2010/08/24 15:51:39.0000 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
2010/08/24 15:51:39.0109 FltMgr (157754f0df355a9e0a6f54721914f9c6) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
2010/08/24 15:51:39.0203 FsUsbExDisk (790a4ca68f44be35967b3df61f3e4675) C:\WINDOWS\system32\FsUsbExDisk.SYS
2010/08/24 15:51:39.0312 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
2010/08/24 15:51:39.0437 Ftdisk (44225407f69666099c4d4c6bc9cd804d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
2010/08/24 15:51:39.0531 gagp30kx (4216cd545e5c30807b560c5dcaa812e6) C:\WINDOWS\system32\DRIVERS\gagp30kx.sys
2010/08/24 15:51:39.0640 GearAspiWDM (4ac51459805264affd5f6fdfb9d9235f) C:\WINDOWS\system32\drivers\gearaspiwdm.sys
2010/08/24 15:51:39.0765 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
2010/08/24 15:51:39.0890 HdAudAddService (56bf27d7a539f9e6bbc1de201aba0edf) C:\WINDOWS\system32\drivers\AtiHdAud.sys
2010/08/24 15:51:40.0000 HDAudBus (3fcc124b6e08ee0e9351f717dd136939) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
2010/08/24 15:51:40.0109 hidusb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
2010/08/24 15:51:40.0312 HTTP (c19b522a9ae0bbc3293397f3055e80a1) C:\WINDOWS\system32\Drivers\HTTP.sys
2010/08/24 15:51:40.0625 i8042prt (cced51afecf99e8d7b9e2ab45cf3ceb2) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
2010/08/24 15:51:40.0750 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
2010/08/24 15:51:41.0062 IntcAzAudAddService (b29781b9a90cd55fc5d859c0b1c243bc) C:\WINDOWS\system32\drivers\RtkHDAud.sys
2010/08/24 15:51:41.0375 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
2010/08/24 15:51:41.0468 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
2010/08/24 15:51:41.0593 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
2010/08/24 15:51:41.0703 IpNat (b5a8e215ac29d24d60b4d1250ef05ace) C:\WINDOWS\system32\DRIVERS\ipnat.sys
2010/08/24 15:51:41.0812 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
2010/08/24 15:51:41.0937 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
2010/08/24 15:51:42.0062 isapnp (ae9857353a6d45f101c4496789585c25) C:\WINDOWS\system32\DRIVERS\isapnp.sys
2010/08/24 15:51:42.0171 Kbdclass (059b59b694dbb143a5b627187c9d8860) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
2010/08/24 15:51:42.0281 kmixer (d93cad07c5683db066b0b2d2d3790ead) C:\WINDOWS\system32\drivers\kmixer.sys
2010/08/24 15:51:42.0375 KSecDD (eb7ffe87fd367ea8fca0506f74a87fbb) C:\WINDOWS\system32\drivers\KSecDD.sys
2010/08/24 15:51:42.0593 LVCap138 (66c56a36f0dc35ba14ffb3edfb7bca17) C:\WINDOWS\system32\DRIVERS\tvcap.sys
2010/08/24 15:51:42.0703 lvtuner (fcaf5b1b8fc324a153580df00ad578d3) C:\WINDOWS\system32\DRIVERS\tvtuner.sys
2010/08/24 15:51:42.0843 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
2010/08/24 15:51:42.0953 Modem (af00a5a5a613e165f3bdea187df796ec) C:\WINDOWS\system32\drivers\Modem.sys
2010/08/24 15:51:43.0062 Mouclass (de28319707eb33dd721559110acd757d) C:\WINDOWS\system32\DRIVERS\mouclass.sys
2010/08/24 15:51:43.0187 mouhid (6a79cb27d0e608a45638cd9468269a3e) C:\WINDOWS\system32\DRIVERS\mouhid.sys
2010/08/24 15:51:43.0296 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
2010/08/24 15:51:43.0515 MRxDAV (46edcc8f2db2f322c24f48785cb46366) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
2010/08/24 15:51:43.0640 MRxSmb (1fd607fc67f7f7c633c3da65bfc53d18) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2010/08/24 15:51:43.0765 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
2010/08/24 15:51:43.0890 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
2010/08/24 15:51:44.0000 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2010/08/24 15:51:44.0109 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
2010/08/24 15:51:44.0218 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
2010/08/24 15:51:44.0328 MSTEE (bf13612142995096ab084f2db7f40f77) C:\WINDOWS\system32\drivers\MSTEE.sys
2010/08/24 15:51:44.0453 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
2010/08/24 15:51:44.0562 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
2010/08/24 15:51:44.0656 NABTSFEC (5c8dc6429c43dc6177c1fa5b76290d1a) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
2010/08/24 15:51:44.0765 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
2010/08/24 15:51:44.0890 NdisIP (520ce427a8b298f54112857bcf6bde15) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
2010/08/24 15:51:45.0015 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
2010/08/24 15:51:45.0109 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
2010/08/24 15:51:45.0218 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
2010/08/24 15:51:45.0328 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
2010/08/24 15:51:45.0437 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
2010/08/24 15:51:45.0546 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
2010/08/24 15:51:45.0671 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys
2010/08/24 15:51:45.0781 nltdi (3ee27bcff781f07a12df75e8be852b0e) C:\WINDOWS\system32\drivers\nltdi.sys
2010/08/24 15:51:45.0906 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
2010/08/24 15:51:46.0031 Ntfs (b78be402c3f63dd55521f73876951cdd) C:\WINDOWS\system32\drivers\Ntfs.sys
2010/08/24 15:51:46.0156 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
2010/08/24 15:51:46.0265 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
2010/08/24 15:51:46.0375 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
2010/08/24 15:51:46.0500 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
2010/08/24 15:51:46.0609 Parport (99d001d603b5c27c01fe9fc55b4bb181) C:\WINDOWS\system32\DRIVERS\parport.sys
2010/08/24 15:51:46.0718 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
2010/08/24 15:51:46.0859 ParVdm (4df92a889e7fe15ed3834d288a0271f5) C:\WINDOWS\system32\drivers\ParVdm.sys
2010/08/24 15:51:46.0921 PCANDIS5 (d0084a9ade989fe703e4f22171f4e4dc) C:\PROGRA~1\MATVAD~1\PCANDIS5.SYS
2010/08/24 15:51:47.0031 pccsmcfd (175cc28dcf819f78caa3fbd44ad9e52a) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
2010/08/24 15:51:47.0156 PCI (0827cc4cb7c97ef6d94e97927db55df8) C:\WINDOWS\system32\DRIVERS\pci.sys
2010/08/24 15:51:47.0343 PCIIde (fbf3cc42488fd2ce49f9427240cd5809) C:\WINDOWS\system32\DRIVERS\pciide.sys
2010/08/24 15:51:47.0453 Pcmcia (eca393902f8b2ca5233cbb325f0b4488) C:\WINDOWS\system32\drivers\Pcmcia.sys
2010/08/24 15:51:47.0562 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\WINDOWS\system32\Drivers\pcouffin.sys
2010/08/24 15:51:47.0671 PCTCore (ad629e621cb1242ba8707cd9c2c5b6ec) C:\WINDOWS\system32\drivers\PCTCore.sys
2010/08/24 15:51:48.0375 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
2010/08/24 15:51:48.0484 PQNTDrv (4228630829c0e521c43d882a00533374) C:\WINDOWS\system32\drivers\PQNTDrv.sys
2010/08/24 15:51:48.0593 Processor (676e74310c28ebce478590cc3a7bb9b0) C:\WINDOWS\system32\DRIVERS\processr.sys
2010/08/24 15:51:48.0703 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
2010/08/24 15:51:48.0828 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
2010/08/24 15:51:49.0406 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
2010/08/24 15:51:49.0515 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
2010/08/24 15:51:49.0625 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
2010/08/24 15:51:49.0750 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
2010/08/24 15:51:49.0859 Rdbss (29d66245adba878fff574cd66abd2884) C:\WINDOWS\system32\DRIVERS\rdbss.sys
2010/08/24 15:51:50.0000 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
2010/08/24 15:51:50.0109 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
2010/08/24 15:51:50.0234 RDPWD (d4f5643d7714ef499ae9527fdcd50894) C:\WINDOWS\system32\drivers\RDPWD.sys
2010/08/24 15:51:50.0359 redbook (de6e09ca3a6fa6fc2b0bac66ae617726) C:\WINDOWS\system32\DRIVERS\redbook.sys
2010/08/24 15:51:50.0500 SandBox (d1f636fac437b75c6f0ec94d4f6124c4) C:\WINDOWS\system32\DRIVERS\SandBox.sys
2010/08/24 15:51:50.0656 Secdrv (d26e26ea516450af9d072635c60387f4) C:\WINDOWS\system32\DRIVERS\secdrv.sys
2010/08/24 15:51:50.0765 Sentinel (8627c992b8a80504fc477b2e8ff8ec4f) C:\WINDOWS\System32\Drivers\SENTINEL.SYS
2010/08/24 15:51:50.0890 serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys
2010/08/24 15:51:51.0000 Serial (eb35db11a54056f7ef2f2187b9a4f24a) C:\WINDOWS\system32\DRIVERS\serial.sys
2010/08/24 15:51:51.0125 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
2010/08/24 15:51:51.0312 SLIP (5caeed86821fa2c6139e32e9e05ccdc9) C:\WINDOWS\system32\DRIVERS\SLIP.sys
2010/08/24 15:51:51.0515 splitter (8e186b8f23295d1e42c573b82b80d548) C:\WINDOWS\system32\drivers\splitter.sys
2010/08/24 15:51:51.0640 sptd (cdddec541bc3c96f91ecb48759673505) C:\WINDOWS\system32\Drivers\sptd.sys
2010/08/24 15:51:51.0796 sr (d11ef3ba5bb0f718d5fefe761101782b) C:\WINDOWS\system32\DRIVERS\sr.sys
2010/08/24 15:51:51.0906 Srv (20b7e396720353e4117d64d9dcb926ca) C:\WINDOWS\system32\DRIVERS\srv.sys
2010/08/24 15:51:52.0062 ss_bbus (eaa66218cd39f5bb1b4853a78c67c787) C:\WINDOWS\system32\DRIVERS\ss_bbus.sys
2010/08/24 15:51:52.0171 ss_bmdfl (91765f99914ed8693d8bc76524f21581) C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys
2010/08/24 15:51:52.0296 ss_bmdm (840e7b738b03c10ee91d9b7d3d6eff15) C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys
2010/08/24 15:51:52.0406 streamip (284c57df5dc7abca656bc2b96a667afb) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
2010/08/24 15:51:52.0515 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
2010/08/24 15:51:52.0625 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
2010/08/24 15:51:53.0109 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
2010/08/24 15:51:53.0218 Tcpip (9f4b36614a0fc234525ba224957de55c) C:\WINDOWS\system32\DRIVERS\tcpip.sys
2010/08/24 15:51:53.0343 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
2010/08/24 15:51:53.0453 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
2010/08/24 15:51:53.0578 teamviewervpn (9101fffcfccd1a30e870a5b8a9091b10) C:\WINDOWS\system32\DRIVERS\teamviewervpn.sys
2010/08/24 15:51:53.0687 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
2010/08/24 15:51:53.0765 TNPacket (2964d67cc529aea0bf32ed96ff74dade) C:\PROGRA~1\MATVAD~1\TNPACKET.SYS
2010/08/24 15:51:53.0984 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
2010/08/24 15:51:54.0093 ULCDRHlp (a4e07da3ae2078bd96e84d4baa07b71d) C:\WINDOWS\system32\Drivers\ULCDRHlp.sys
2010/08/24 15:51:54.0296 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys
2010/08/24 15:51:54.0421 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
2010/08/24 15:51:54.0531 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys
2010/08/24 15:51:54.0625 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
2010/08/24 15:51:54.0734 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys
2010/08/24 15:51:54.0859 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys
2010/08/24 15:51:54.0968 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
2010/08/24 15:51:55.0078 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
2010/08/24 15:51:55.0187 USIUDF (d46ceaf88f2973e4368c9febea89526b) C:\WINDOWS\system32\Drivers\USIUDF.sys
2010/08/24 15:51:55.0312 utezmza0 (524d8d450622db4a7875b111c299a76b) C:\WINDOWS\system32\Drivers\utezmza0.sys
2010/08/24 15:51:55.0328 Suspicious service (NoAccess): vbev5mp
2010/08/24 15:51:55.0421 vbev5mp (4f262243454d55e5285987b6e949ffe9) C:\WINDOWS\system32\DRIVERS\vbev5mp.sys
2010/08/24 15:51:55.0421 vbev5mp - detected Locked service (1)
2010/08/24 15:51:55.0531 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
2010/08/24 15:51:55.0640 ViaIde (59cb1338ad3654417bea49636457f65d) C:\WINDOWS\system32\DRIVERS\viaide.sys
2010/08/24 15:51:55.0765 videX32 (f95c0fcfbcbda6d8f202d2df4052f88d) C:\WINDOWS\system32\DRIVERS\videX32.sys
2010/08/24 15:51:55.0906 VolSnap (1cafd39fec4cb1fe96f408983bb0c106) C:\WINDOWS\system32\drivers\VolSnap.sys
2010/08/24 15:51:56.0031 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
2010/08/24 15:51:56.0218 wdmaud (2797f33ebf50466020c430ee4f037933) C:\WINDOWS\system32\drivers\wdmaud.sys
2010/08/24 15:51:56.0359 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
2010/08/24 15:51:56.0468 WSTCODEC (d5842484f05e12121c511aa93f6439ec) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
2010/08/24 15:51:56.0578 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
2010/08/24 15:51:56.0703 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
2010/08/24 15:51:56.0750 ================================================================================
2010/08/24 15:51:56.0750 Scan finished
2010/08/24 15:51:56.0750 ================================================================================
2010/08/24 15:51:56.0765 Detected object count: 1
2010/08/24 15:52:19.0187 Locked service(vbev5mp) - User select action: Skip
2010/08/24 15:52:30.0140 ================================================================================
2010/08/24 15:52:30.0140 Scan started
2010/08/24 15:52:30.0140 Mode: Manual;
2010/08/24 15:52:30.0140 ================================================================================
2010/08/24 15:52:30.0421 Aavmker4 (2ccfa74242741ca22a4267cce9b586f4) C:\WINDOWS\system32\drivers\Aavmker4.sys
2010/08/24 15:52:30.0765 ACPI (4b60d4e72648207eb98287464fe3489d) C:\WINDOWS\system32\DRIVERS\ACPI.sys
2010/08/24 15:52:30.0890 ACPIEC (582c901174a7f0733c6fe41c37c9a80b) C:\WINDOWS\system32\drivers\ACPIEC.sys
2010/08/24 15:52:31.0078 aec (841f385c6cfaf66b58fbd898722bb4f0) C:\WINDOWS\system32\drivers\aec.sys
2010/08/24 15:52:31.0187 AFD (5ac495f4cb807b2b98ad2ad591e6d92e) C:\WINDOWS\System32\drivers\afd.sys
2010/08/24 15:52:31.0281 AFS2K (b34b1ab0a7690a0e2301fec6d17b2fc1) C:\WINDOWS\system32\drivers\AFS2K.sys
2010/08/24 15:52:31.0390 afw (6eb7a54981e64e03325f9a1fd39e42d2) C:\WINDOWS\system32\DRIVERS\afw.sys
2010/08/24 15:52:31.0500 afwcore (99072982a08fafb9fe14ee050aca80cc) C:\WINDOWS\system32\drivers\afwcore.sys
2010/08/24 15:52:31.0984 AmdK8 (e58e32436968ee84bb458aa6e8612d3e) C:\WINDOWS\system32\DRIVERS\AmdK8.sys
2010/08/24 15:52:32.0187 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
2010/08/24 15:52:32.0562 Aspi32 (b979979ab8027f7f53fb16ec4229b7db) C:\WINDOWS\system32\drivers\aspi32.sys
2010/08/24 15:52:32.0656 ASWFilt (415bf4141ecd4580466bf46bb3ae1b2d) C:\WINDOWS\system32\Filt\ASWFilt.dll
2010/08/24 15:52:32.0765 aswFsBlk (b4079a98f294a3e262872cb76f4849f0) C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys
2010/08/24 15:52:32.0906 aswMon2 (dbee7b5ecb50fc2cf9323f52cbf41141) C:\WINDOWS\system32\drivers\aswMon2.sys
2010/08/24 15:52:33.0015 aswRdr (8080d683489c99cbace813f6fa4069cc) C:\WINDOWS\system32\drivers\aswRdr.sys
2010/08/24 15:52:33.0125 aswSP (2e5a2ad5004b55df39b7606130a88142) C:\WINDOWS\system32\drivers\aswSP.sys
2010/08/24 15:52:33.0234 aswTdi (d4c83a37efadfa2c398362e0776e3773) C:\WINDOWS\system32\drivers\aswTdi.sys
2010/08/24 15:52:33.0343 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
2010/08/24 15:52:33.0453 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
2010/08/24 15:52:33.0703 ati2mtag (633d22a45283762dc05989751cc1397c) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
2010/08/24 15:52:33.0828 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
2010/08/24 15:52:33.0937 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
2010/08/24 15:52:34.0062 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
2010/08/24 15:52:34.0234 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
2010/08/24 15:52:34.0328 CCDECODE (6163ed60b684bab19d3352ab22fc48b2) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
2010/08/24 15:52:34.0531 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
2010/08/24 15:52:34.0625 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
2010/08/24 15:52:34.0765 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
2010/08/24 15:52:34.0984 CLEDX (b53f9635457b56dcffef750e18aec6cb) C:\WINDOWS\system32\DRIVERS\cledx.sys
2010/08/24 15:52:35.0265 CrystalSysInfo (f054744f67576a01139885173392502b) C:\Program Files\MediaCoder\SysInfo.sys
2010/08/24 15:52:35.0546 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
2010/08/24 15:52:35.0671 dmboot (89e3734f8b92bc9322b0b4331e94bcb4) C:\WINDOWS\system32\drivers\dmboot.sys
2010/08/24 15:52:35.0796 dmio (1811ad47c0ac9a082f1761138e2f2022) C:\WINDOWS\system32\drivers\dmio.sys
2010/08/24 15:52:35.0937 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
2010/08/24 15:52:36.0046 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
2010/08/24 15:52:36.0250 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
2010/08/24 15:52:36.0343 ElbyCDFL (ce37e3d51912e59c80c6d84337c0b4cd) C:\WINDOWS\system32\Drivers\ElbyCDFL.sys
2010/08/24 15:52:36.0453 ElbyCDIO (aaa8999a169e39fb8b48ae49cd6ac30a) C:\WINDOWS\system32\Drivers\ElbyCDIO.sys
2010/08/24 15:52:36.0578 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
2010/08/24 15:52:36.0687 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
2010/08/24 15:52:36.0796 FETNDIS (e9648254056bce81a85380c0c3647dc4) C:\WINDOWS\system32\DRIVERS\fetnd5.sys
2010/08/24 15:52:36.0921 Fips (3e16f14a26c5f2f663a14669a0e09544) C:\WINDOWS\system32\drivers\Fips.sys
2010/08/24 15:52:37.0031 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
2010/08/24 15:52:37.0125 FltMgr (157754f0df355a9e0a6f54721914f9c6) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
2010/08/24 15:52:37.0218 FsUsbExDisk (790a4ca68f44be35967b3df61f3e4675) C:\WINDOWS\system32\FsUsbExDisk.SYS
2010/08/24 15:52:37.0343 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
2010/08/24 15:52:37.0437 Ftdisk (44225407f69666099c4d4c6bc9cd804d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
2010/08/24 15:52:37.0531 gagp30kx (4216cd545e5c30807b560c5dcaa812e6) C:\WINDOWS\system32\DRIVERS\gagp30kx.sys
2010/08/24 15:52:37.0640 GearAspiWDM (4ac51459805264affd5f6fdfb9d9235f) C:\WINDOWS\system32\drivers\gearaspiwdm.sys
2010/08/24 15:52:37.0765 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
2010/08/24 15:52:37.0890 HdAudAddService (56bf27d7a539f9e6bbc1de201aba0edf) C:\WINDOWS\system32\drivers\AtiHdAud.sys
2010/08/24 15:52:38.0000 HDAudBus (3fcc124b6e08ee0e9351f717dd136939) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
2010/08/24 15:52:38.0109 hidusb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
2010/08/24 15:52:38.0312 HTTP (c19b522a9ae0bbc3293397f3055e80a1) C:\WINDOWS\system32\Drivers\HTTP.sys
2010/08/24 15:52:38.0593 i8042prt (cced51afecf99e8d7b9e2ab45cf3ceb2) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
2010/08/24 15:52:38.0718 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
2010/08/24 15:52:39.0046 IntcAzAudAddService (b29781b9a90cd55fc5d859c0b1c243bc) C:\WINDOWS\system32\drivers\RtkHDAud.sys
2010/08/24 15:52:39.0265 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
2010/08/24 15:52:39.0375 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
2010/08/24 15:52:39.0484 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
2010/08/24 15:52:39.0578 IpNat (b5a8e215ac29d24d60b4d1250ef05ace) C:\WINDOWS\system32\DRIVERS\ipnat.sys
2010/08/24 15:52:39.0703 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
2010/08/24 15:52:39.0828 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
2010/08/24 15:52:39.0953 isapnp (ae9857353a6d45f101c4496789585c25) C:\WINDOWS\system32\DRIVERS\isapnp.sys
2010/08/24 15:52:40.0046 Kbdclass (059b59b694dbb143a5b627187c9d8860) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
2010/08/24 15:52:40.0156 kmixer (d93cad07c5683db066b0b2d2d3790ead) C:\WINDOWS\system32\drivers\kmixer.sys
2010/08/24 15:52:40.0265 KSecDD (eb7ffe87fd367ea8fca0506f74a87fbb) C:\WINDOWS\system32\drivers\KSecDD.sys
2010/08/24 15:52:40.0484 LVCap138 (66c56a36f0dc35ba14ffb3edfb7bca17) C:\WINDOWS\system32\DRIVERS\tvcap.sys
2010/08/24 15:52:40.0593 lvtuner (fcaf5b1b8fc324a153580df00ad578d3) C:\WINDOWS\system32\DRIVERS\tvtuner.sys
2010/08/24 15:52:40.0718 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
2010/08/24 15:52:40.0843 Modem (af00a5a5a613e165f3bdea187df796ec) C:\WINDOWS\system32\drivers\Modem.sys
2010/08/24 15:52:40.0953 Mouclass (de28319707eb33dd721559110acd757d) C:\WINDOWS\system32\DRIVERS\mouclass.sys
2010/08/24 15:52:41.0078 mouhid (6a79cb27d0e608a45638cd9468269a3e) C:\WINDOWS\system32\DRIVERS\mouhid.sys
2010/08/24 15:52:41.0187 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
2010/08/24 15:52:41.0390 MRxDAV (46edcc8f2db2f322c24f48785cb46366) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
2010/08/24 15:52:41.0500 MRxSmb (1fd607fc67f7f7c633c3da65bfc53d18) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2010/08/24 15:52:41.0625 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
2010/08/24 15:52:41.0718 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
2010/08/24 15:52:41.0843 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2010/08/24 15:52:41.0937 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
2010/08/24 15:52:42.0046 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
2010/08/24 15:52:42.0156 MSTEE (bf13612142995096ab084f2db7f40f77) C:\WINDOWS\system32\drivers\MSTEE.sys
2010/08/24 15:52:42.0250 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
2010/08/24 15:52:42.0359 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
2010/08/24 15:52:42.0468 NABTSFEC (5c8dc6429c43dc6177c1fa5b76290d1a) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
2010/08/24 15:52:42.0578 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
2010/08/24 15:52:42.0671 NdisIP (520ce427a8b298f54112857bcf6bde15) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
2010/08/24 15:52:42.0796 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
2010/08/24 15:52:42.0906 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
2010/08/24 15:52:43.0015 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
2010/08/24 15:52:43.0125 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
2010/08/24 15:52:43.0234 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
2010/08/24 15:52:43.0343 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
2010/08/24 15:52:43.0468 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys
2010/08/24 15:52:43.0578 nltdi (3ee27bcff781f07a12df75e8be852b0e) C:\WINDOWS\system32\drivers\nltdi.sys
2010/08/24 15:52:43.0687 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
2010/08/24 15:52:43.0796 Ntfs (b78be402c3f63dd55521f73876951cdd) C:\WINDOWS\system32\drivers\Ntfs.sys
2010/08/24 15:52:43.0937 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
2010/08/24 15:52:44.0031 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
2010/08/24 15:52:44.0140 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
2010/08/24 15:52:44.0250 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
2010/08/24 15:52:44.0375 Parport (99d001d603b5c27c01fe9fc55b4bb181) C:\WINDOWS\system32\DRIVERS\parport.sys
2010/08/24 15:52:44.0484 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
2010/08/24 15:52:44.0593 ParVdm (4df92a889e7fe15ed3834d288a0271f5) C:\WINDOWS\system32\drivers\ParVdm.sys
2010/08/24 15:52:44.0671 PCANDIS5 (d0084a9ade989fe703e4f22171f4e4dc) C:\PROGRA~1\MATVAD~1\PCANDIS5.SYS
2010/08/24 15:52:44.0796 pccsmcfd (175cc28dcf819f78caa3fbd44ad9e52a) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
2010/08/24 15:52:44.0937 PCI (0827cc4cb7c97ef6d94e97927db55df8) C:\WINDOWS\system32\DRIVERS\pci.sys
2010/08/24 15:52:45.0125 PCIIde (fbf3cc42488fd2ce49f9427240cd5809) C:\WINDOWS\system32\DRIVERS\pciide.sys
2010/08/24 15:52:45.0234 Pcmcia (eca393902f8b2ca5233cbb325f0b4488) C:\WINDOWS\system32\drivers\Pcmcia.sys
2010/08/24 15:52:45.0343 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\WINDOWS\system32\Drivers\pcouffin.sys
2010/08/24 15:52:45.0453 PCTCore (ad629e621cb1242ba8707cd9c2c5b6ec) C:\WINDOWS\system32\drivers\PCTCore.sys
2010/08/24 15:52:46.0140 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
2010/08/24 15:52:46.0265 PQNTDrv (4228630829c0e521c43d882a00533374) C:\WINDOWS\system32\drivers\PQNTDrv.sys
2010/08/24 15:52:46.0375 Processor (676e74310c28ebce478590cc3a7bb9b0) C:\WINDOWS\system32\DRIVERS\processr.sys
2010/08/24 15:52:46.0484 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
2010/08/24 15:52:46.0593 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
2010/08/24 15:52:47.0171 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
2010/08/24 15:52:47.0281 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
2010/08/24 15:52:47.0390 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
2010/08/24 15:52:47.0500 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
2010/08/24 15:52:47.0609 Rdbss (29d66245adba878fff574cd66abd2884) C:\WINDOWS\system32\DRIVERS\rdbss.sys
2010/08/24 15:52:47.0703 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
2010/08/24 15:52:47.0843 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
2010/08/24 15:52:47.0953 RDPWD (d4f5643d7714ef499ae9527fdcd50894) C:\WINDOWS\system32\drivers\RDPWD.sys
2010/08/24 15:52:48.0062 redbook (de6e09ca3a6fa6fc2b0bac66ae617726) C:\WINDOWS\system32\DRIVERS\redbook.sys
2010/08/24 15:52:48.0218 SandBox (d1f636fac437b75c6f0ec94d4f6124c4) C:\WINDOWS\system32\DRIVERS\SandBox.sys
2010/08/24 15:52:48.0328 Secdrv (d26e26ea516450af9d072635c60387f4) C:\WINDOWS\system32\DRIVERS\secdrv.sys
2010/08/24 15:52:48.0453 Sentinel (8627c992b8a80504fc477b2e8ff8ec4f) C:\WINDOWS\System32\Drivers\SENTINEL.SYS
2010/08/24 15:52:48.0546 serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys
2010/08/24 15:52:48.0656 Serial (eb35db11a54056f7ef2f2187b9a4f24a) C:\WINDOWS\system32\DRIVERS\serial.sys
2010/08/24 15:52:48.0781 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
2010/08/24 15:52:49.0000 SLIP (5caeed86821fa2c6139e32e9e05ccdc9) C:\WINDOWS\system32\DRIVERS\SLIP.sys
2010/08/24 15:52:49.0203 splitter (8e186b8f23295d1e42c573b82b80d548) C:\WINDOWS\system32\drivers\splitter.sys
2010/08/24 15:52:49.0328 sptd (cdddec541bc3c96f91ecb48759673505) C:\WINDOWS\system32\Drivers\sptd.sys
2010/08/24 15:52:49.0437 sr (d11ef3ba5bb0f718d5fefe761101782b) C:\WINDOWS\system32\DRIVERS\sr.sys
2010/08/24 15:52:49.0531 Srv (20b7e396720353e4117d64d9dcb926ca) C:\WINDOWS\system32\DRIVERS\srv.sys
2010/08/24 15:52:49.0656 ss_bbus (eaa66218cd39f5bb1b4853a78c67c787) C:\WINDOWS\system32\DRIVERS\ss_bbus.sys
2010/08/24 15:52:49.0796 ss_bmdfl (91765f99914ed8693d8bc76524f21581) C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys
2010/08/24 15:52:49.0921 ss_bmdm (840e7b738b03c10ee91d9b7d3d6eff15) C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys
2010/08/24 15:52:50.0031 streamip (284c57df5dc7abca656bc2b96a667afb) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
2010/08/24 15:52:50.0140 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
2010/08/24 15:52:50.0250 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
2010/08/24 15:52:50.0687 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
2010/08/24 15:52:50.0812 Tcpip (9f4b36614a0fc234525ba224957de55c) C:\WINDOWS\system32\DRIVERS\tcpip.sys
2010/08/24 15:52:50.0937 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
2010/08/24 15:52:51.0046 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
2010/08/24 15:52:51.0156 teamviewervpn (9101fffcfccd1a30e870a5b8a9091b10) C:\WINDOWS\system32\DRIVERS\teamviewervpn.sys
2010/08/24 15:52:51.0265 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
2010/08/24 15:52:51.0328 TNPacket (2964d67cc529aea0bf32ed96ff74dade) C:\PROGRA~1\MATVAD~1\TNPACKET.SYS
2010/08/24 15:52:51.0531 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
2010/08/24 15:52:51.0640 ULCDRHlp (a4e07da3ae2078bd96e84d4baa07b71d) C:\WINDOWS\system32\Drivers\ULCDRHlp.sys
2010/08/24 15:52:51.0859 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys
2010/08/24 15:52:51.0968 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
2010/08/24 15:52:52.0078 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys
2010/08/24 15:52:52.0171 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
2010/08/24 15:52:52.0281 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys
2010/08/24 15:52:52.0390 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys
2010/08/24 15:52:52.0500 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
2010/08/24 15:52:52.0609 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
2010/08/24 15:52:52.0734 USIUDF (d46ceaf88f2973e4368c9febea89526b) C:\WINDOWS\system32\Drivers\USIUDF.sys
2010/08/24 15:52:52.0859 utezmza0 (524d8d450622db4a7875b111c299a76b) C:\WINDOWS\system32\Drivers\utezmza0.sys
2010/08/24 15:52:52.0875 Suspicious service (NoAccess): vbev5mp
2010/08/24 15:52:52.0968 vbev5mp (4f262243454d55e5285987b6e949ffe9) C:\WINDOWS\system32\DRIVERS\vbev5mp.sys
2010/08/24 15:52:52.0984 vbev5mp - detected Locked service (1)
2010/08/24 15:52:53.0093 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
2010/08/24 15:52:53.0203 ViaIde (59cb1338ad3654417bea49636457f65d) C:\WINDOWS\system32\DRIVERS\viaide.sys
2010/08/24 15:52:53.0312 videX32 (f95c0fcfbcbda6d8f202d2df4052f88d) C:\WINDOWS\system32\DRIVERS\videX32.sys
2010/08/24 15:52:53.0406 VolSnap (1cafd39fec4cb1fe96f408983bb0c106) C:\WINDOWS\system32\drivers\VolSnap.sys
2010/08/24 15:52:53.0531 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
2010/08/24 15:52:53.0734 wdmaud (2797f33ebf50466020c430ee4f037933) C:\WINDOWS\system32\drivers\wdmaud.sys
2010/08/24 15:52:53.0875 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
2010/08/24 15:52:53.0968 WSTCODEC (d5842484f05e12121c511aa93f6439ec) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
2010/08/24 15:52:54.0093 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
2010/08/24 15:52:54.0187 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
2010/08/24 15:52:54.0250 ================================================================================
2010/08/24 15:52:54.0250 Scan finished
2010/08/24 15:52:54.0250 ================================================================================
2010/08/24 15:52:54.0265 Detected object count: 1
2010/08/24 15:53:16.0062 Locked service(vbev5mp) - User select action: Skip
2010/08/24 15:53:21.0359 Deinitialize success


kedd aug. 24, 2010 15:00
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: pilaka bogarai
Udv.
Futtasd le a TDSS killert, a logjat tedd ide, de a futtatasa elot nevezd att-igy
virus-stell.com
http://www.virus-stell.com/2010/08/root ... -tdl3.html

a logja itt lesz.
C:\ MAPPA) "TDSSKiller. _log.txt"


kedd aug. 24, 2010 7:27
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. jan. 01, 2009 20:34
Hozzászólások: 294
Hozzászólás Re: pilaka bogarai
Szia, most meg az otthoni géppel van gondom , a malwarebytes nem talált semmit , de a spywaredoctor sok kártevőt talállt , gyanus , hogy a firefoxot blokkolja hibaüzenet nélkül
az Avast , amint kikapcsolom az Avast a firefox elindul ,elindítottam a gmer-t ....azonnal leverte a gépet ,... a Combofixet feltettem amint végigfut a keresése és a delete-hez jut ,
azonnal lekapcsol a gép és újraindul , de a Combo hosszú várakozás után sem ad log-ot és nem ad életjelt magáról.Nem találltam a log-ját sehol.


hétf. aug. 23, 2010 20:12
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: pilaka bogarai
ok,nincsen mit,Ugy nez ki hogy megint kikapcsolodok, mert ujbol vilamlik, jon a vihar,
Szia.


vas. aug. 15, 2010 14:39
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. jan. 01, 2009 20:34
Hozzászólások: 294
Hozzászólás Re: pilaka bogarai
Ismét ,köszönöm szépen .
Úgy néz ki , hogy minden rendben. Szia!


vas. aug. 15, 2010 14:35
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: pilaka bogarai
ok
Szed le a combofixet-start-futtatas-masold be ezt a parancsot:
combofix /uninstall
Tisztisd ki a CCleaneral es ird le ha van e meg valami baj.


vas. aug. 15, 2010 14:07
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. jan. 01, 2009 20:34
Hozzászólások: 294
Hozzászólás Re: pilaka bogarai
ComboFix 10-08-12.03 - Kriszta 010.08.15. 10:45:01.2.1 - x86
Microsoft Windows XP Professional 5.1.2600.3.1250.36.1038.18.447.190 [GMT 2:00]
Running from: c:\documents and settings\Kriszta\Asztal\ComboFix.exe
Command switches used :: c:\documents and settings\Kriszta\Asztal\CFScript.txt
AV: avast! antivirus 4.8.1368 [VPS 100814-1] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

FILE ::
"c:\windows\kjdshkjh23jik32.dat"
"c:\windows\q2ik3jmd6.dat"
"c:\windows\uskwe2j2h.dat"
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\kjdshkjh23jik32.dat
c:\windows\q2ik3jmd6.dat
c:\windows\uskwe2j2h.dat

.
((((((((((((((((((((((((( Files Created from 2010-07-15 to 2010-08-15 )))))))))))))))))))))))))))))))
.

2010-08-14 17:19 . 2010-08-14 17:19 -------- d-----w- c:\program files\CodeStuff
2010-08-14 16:02 . 2010-08-14 16:06 -------- d-----w- c:\program files\trend micro
2010-08-14 16:02 . 2010-08-14 16:03 -------- d-----w- C:\rsit
2010-08-14 14:38 . 2010-08-14 14:38 -------- d-----w- c:\documents and settings\Kriszta\Application Data\Malwarebytes
2010-08-14 14:38 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-08-14 14:38 . 2010-08-14 14:38 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2010-08-14 14:38 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-08-14 14:38 . 2010-08-14 14:38 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-08-14 14:37 . 2010-08-14 14:37 -------- d-----w- c:\documents and settings\Kriszta\Application Data\Locktime
2010-08-14 14:36 . 2010-08-14 14:36 -------- d-----w- c:\documents and settings\All Users\Application Data\Locktime
2010-08-14 14:36 . 2010-08-14 14:36 -------- d-----w- c:\program files\NetLimiter 2 Pro
2010-08-05 18:31 . 2010-08-05 18:31 -------- d-----w- c:\documents and settings\Kriszta\Local Settings\Application Data\WMTools Downloaded Files

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-08-15 08:55 . 2009-02-09 21:26 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-08-14 16:49 . 2009-12-26 12:18 -------- d-----w- c:\program files\Spyware Doctor
2010-08-14 15:54 . 2009-05-12 18:45 -------- d-----w- c:\documents and settings\All Users\Application Data\CanonIJPLM
2010-08-14 13:39 . 2010-01-25 19:34 -------- d-----w- c:\documents and settings\All Users\Application Data\Norton
2010-08-14 13:39 . 2010-01-30 15:01 -------- d-----w- c:\program files\Common Files\Symantec Shared
2010-08-05 19:51 . 2009-05-02 11:37 -------- d-----w- c:\documents and settings\Kriszta\Application Data\uTorrent
2010-08-05 18:44 . 2009-08-29 10:56 -------- d-----w- c:\program files\MyPlayCity.com
2010-08-05 16:50 . 2009-01-29 18:09 -------- d-----w- c:\program files\RealArcade
2010-08-05 15:23 . 2010-06-14 19:22 -------- d-----w- c:\program files\Tyúkvadászat
2010-08-05 15:21 . 2009-12-28 12:04 -------- d-----w- c:\documents and settings\All Users\Application Data\AlawarWrapper
2010-08-01 08:08 . 2010-05-26 19:55 -------- d-----w- c:\program files\Metin2_HU
2010-07-15 10:26 . 2009-12-28 12:04 -------- d-----w- c:\documents and settings\All Users\Application Data\AlawarGameBox
2010-06-19 15:57 . 2010-06-19 15:57 -------- d-----w- c:\documents and settings\All Users\Application Data\Blizzard
2010-06-14 14:31 . 2009-01-24 10:24 744448 ----a-w- c:\windows\pchealth\helpctr\binaries\helpsvc.exe
2010-06-03 03:28 . 2003-04-25 12:00 58874 ----a-w- c:\windows\system32\perfc00E.dat
2010-06-03 03:28 . 2003-04-25 12:00 306468 ----a-w- c:\windows\system32\perfh00E.dat
2010-06-01 07:26 . 2010-06-01 07:26 503808 ----a-w- c:\documents and settings\Kriszta\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-284d5ead-n\msvcp71.dll
2010-06-01 07:26 . 2010-06-01 07:26 499712 ----a-w- c:\documents and settings\Kriszta\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-284d5ead-n\jmc.dll
2010-06-01 07:26 . 2010-06-01 07:26 348160 ----a-w- c:\documents and settings\Kriszta\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-284d5ead-n\msvcr71.dll
2010-06-01 07:26 . 2010-06-01 07:26 12800 ----a-w- c:\documents and settings\Kriszta\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-36fbe4fb-n\decora-d3d.dll
2010-06-01 07:26 . 2010-06-01 07:26 61440 ----a-w- c:\documents and settings\Kriszta\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-36fbe4fb-n\decora-sse.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac}"= "c:\program files\MyPlayCity\tbMyP1.dll" [2010-07-25 2515552]

[HKEY_CLASSES_ROOT\clsid\{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac}]
2010-07-25 18:51 2515552 ----a-w- c:\program files\MyPlayCity\tbMyP1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac}"= "c:\program files\MyPlayCity\tbMyP1.dll" [2010-07-25 2515552]

[HKEY_CLASSES_ROOT\clsid\{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{4724C5D8-DFA7-417A-A2F5-1EABFEE9B4AC}"= "c:\program files\MyPlayCity\tbMyP1.dll" [2010-07-25 2515552]

[HKEY_CLASSES_ROOT\clsid\{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-02-13 68856]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\lib\NMBgMonitor.exe" [2005-11-24 94208]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"VTTimer"="VTTimer.exe" [2005-03-08 53248]
"VTTrayp"="VTtrayp.exe" [2005-03-11 147456]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2008-03-03 1848648]
"CanonSolutionMenu"="c:\program files\Canon\SolutionMenu\CNSLMAIN.exe" [2008-03-10 689488]
"CNAP2 Launcher"="c:\windows\System32\spool\DRIVERS\W32X86\3\CNAP2LAK.EXE" [2007-09-05 406944]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit]
2008-10-16 19:35 87352 ----a-w- c:\windows\system32\LMIinit.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2009-02-27 15:10 35696 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2001-07-09 09:50 155648 ----a-w- c:\windows\system32\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
2004-11-02 19:24 32768 ----a-w- c:\program files\CyberLink\PowerDVD\PDVDServ.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2010-02-18 09:43 248040 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"UPS"=3 (0x3)
"RSVP"=3 (0x3)
"ose"=3 (0x3)
"SCardSvr"=3 (0x3)
"PolicyAgent"=2 (0x2)
"ImapiService"=3 (0x3)
"WmdmPmSN"=3 (0x3)
"ERSvc"=2 (0x2)
"HTTPFilter"=3 (0x3)
"NtmsSvc"=3 (0x3)
"wscsvc"=2 (0x2)
"SamSs"=2 (0x2)
"getPlus(R) Helper"=3 (0x3)
"JavaQuickStarterService"=2 (0x2)
"Irmon"=2 (0x2)
"gupdate1c9e1c5838c6856"=2 (0x2)
"gusvc"=3 (0x3)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Metin2_HU\\metin2.bin"=
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\Metin2_HU\\metin2client.bin"=
"c:\\Program Files\\3DO\\Heroes3\\HEROES3.EXE"=

R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [2009.12.26. 14:19 207792]
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2009.12.26. 13:31 114768]
R1 nltdi;nltdi;c:\windows\system32\drivers\nltdi.sys [2007.04.23. 13:03 82200]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009.12.26. 13:31 20560]
R2 Browser Defender Update Service;Browser Defender Update Service;c:\program files\Spyware Doctor\BDT\BDTUpdateService.exe [2009.12.26. 14:21 112592]
S3 sdAuxService;PC Tools Auxiliary Service;c:\program files\Spyware Doctor\pctsAuxs.exe [2009.12.26. 14:18 359624]
S4 gupdate1c9e1c5838c6856;Google frissítési szolgáltatás (gupdate1c9e1c5838c6856);c:\program files\Google\Update\GoogleUpdate.exe [2009.05.31. 9:57 133104]
.
Contents of the 'Scheduled Tasks' folder

2010-08-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-05-31 07:57]

2010-08-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-05-31 07:57]
.
.
------- Supplementary Scan -------
.
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xportálás Microsoft Excel formátumba - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
FF - ProfilePath - c:\documents and settings\Kriszta\Application Data\Mozilla\Firefox\Profiles\o1gny2sy.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - www.farmerama.hu
FF - component: c:\documents and settings\Kriszta\Application Data\Mozilla\Firefox\Profiles\o1gny2sy.default\extensions\{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac}\components\FFExternalAlert.dll
FF - plugin: c:\documents and settings\All Users\Application Data\RealArcade\npraclient.dll
FF - plugin: c:\program files\Google\Update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: c:\program files\Mozilla Firefox\extensions\npmozax@real.com\plugins\npmozax.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npraclient.dll
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-08-15 10:56
Windows 5.1.2600 Szervizcsomag 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG08.00.00.01WORKSTATION"="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"
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(780)
c:\windows\system32\LMIinit.dll
c:\windows\system32\LMIRfsClientNP.dll

- - - - - - - > 'explorer.exe'(1712)
c:\windows\system32\WININET.dll
c:\program files\Microsoft Office\OFFICE11\msohev.dll
c:\windows\system32\webcheck.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Alwil Software\Avast4\aswUpdSv.exe
c:\program files\Alwil Software\Avast4\ashServ.exe
c:\windows\system32\VTTimer.exe
c:\windows\system32\VTtrayp.exe
c:\program files\Canon\IJPLM\IJPLMSVC.EXE
c:\program files\NetLimiter 2 Pro\nlsvc.exe
c:\windows\System32\spool\DRIVERS\W32X86\3\CNAP2RPK.EXE
c:\windows\System32\spool\DRIVERS\W32X86\3\CNAB8SWK.EXE
c:\program files\NetLimiter 2 Pro\NLClient.exe
c:\program files\Alwil Software\Avast4\ashMaiSv.exe
c:\windows\system32\wscntfy.exe
c:\program files\Alwil Software\Avast4\ashWebSv.exe
.
**************************************************************************
.
Completion time: 2010-08-15 11:01:37 - machine was rebooted
ComboFix-quarantined-files.txt 2010-08-15 09:01
ComboFix2.txt 2010-08-14 18:06

Pre-Run: 5 103 415 296 bájt szabad
Post-Run: 5 086 867 456 bájt szabad

- - End Of File - - B422C44CF2F4D7DDEFC3994923A353BC


vas. aug. 15, 2010 10:21
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: pilaka bogarai
Kinyitunk - Notepadot (Jegyzetfüzetet)igy: Start>futtatás>beírod: notepad
és bemásolod- a Kód: címszó alatt található zöld textet(Kód: szó nélkül), aztán a notepadba beillesztett textet elmentjük scriptnek az asztalra , úgy:- Fájl>Mentés Másként>Fájlnév>CFScript.txt>Fájl típusa>Minden fájl>Mentés.(Ásztálra),.Kész, az astalon lévő CFScript txt húzzunk rá a ComboFix ikonnyara. Es mostan megcsinalod eztett:
Kép
A combofix maga elindul es lehet hogy restartol es befejezi a scent.Amit majd ad ted ide.
Kód:
KILLALL::
File::
c:\windows\q2ik3jmd6.dat
c:\windows\uskwe2j2h.dat
c:\windows\kjdshkjh23jik32.dat
DDS::
uStart Page = hxxp://search.conduit.com?SearchSource= ... =CT1392740
FireFox::
FF - ProfilePath - c:\documents and settings\Kriszta\Application Data\Mozilla\Firefox\Profiles\o1gny2sy.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as ... ource=3&q={searchTerms}
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.as ... ource=2&q=


vas. aug. 15, 2010 8:40
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. jan. 01, 2009 20:34
Hozzászólások: 294
Hozzászólás Re: pilaka bogarai
Mindent megcsináltam

ComboFix 10-08-12.03 - Kriszta 010.08.14. 19:55:54.1.1 - x86
Microsoft Windows XP Professional 5.1.2600.3.1250.36.1038.18.447.206 [GMT 2:00]
Running from: c:\documents and settings\Kriszta\Asztal\ComboFix.exe
AV: avast! antivirus 4.8.1368 [VPS 100814-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Kriszta\Application Data\Desktopicon
c:\documents and settings\Kriszta\Application Data\Desktopicon\config.ini
c:\documents and settings\Kriszta\Application Data\Desktopicon\eBayShortcuts.exe

.
((((((((((((((((((((((((( Files Created from 2010-07-14 to 2010-08-14 )))))))))))))))))))))))))))))))
.

2010-08-14 17:19 . 2010-08-14 17:19 -------- d-----w- c:\program files\CodeStuff
2010-08-14 16:02 . 2010-08-14 16:06 -------- d-----w- c:\program files\trend micro
2010-08-14 16:02 . 2010-08-14 16:03 -------- d-----w- C:\rsit
2010-08-14 14:38 . 2010-08-14 14:38 -------- d-----w- c:\documents and settings\Kriszta\Application Data\Malwarebytes
2010-08-14 14:38 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-08-14 14:38 . 2010-08-14 14:38 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2010-08-14 14:38 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-08-14 14:38 . 2010-08-14 14:38 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-08-14 14:37 . 2010-08-14 14:37 -------- d-----w- c:\documents and settings\Kriszta\Application Data\Locktime
2010-08-14 14:36 . 2010-08-14 14:36 -------- d-----w- c:\documents and settings\All Users\Application Data\Locktime
2010-08-14 14:36 . 2010-08-14 14:36 -------- d-----w- c:\program files\NetLimiter 2 Pro
2010-08-05 18:31 . 2010-08-05 18:31 -------- d-----w- c:\documents and settings\Kriszta\Local Settings\Application Data\WMTools Downloaded Files

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-08-14 17:32 . 2009-02-09 21:26 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-08-14 16:49 . 2009-12-26 12:18 -------- d-----w- c:\program files\Spyware Doctor
2010-08-14 15:54 . 2009-05-12 18:45 -------- d-----w- c:\documents and settings\All Users\Application Data\CanonIJPLM
2010-08-14 13:39 . 2010-01-25 19:34 -------- d-----w- c:\documents and settings\All Users\Application Data\Norton
2010-08-14 13:39 . 2010-01-30 15:01 -------- d-----w- c:\program files\Common Files\Symantec Shared
2010-08-05 19:51 . 2009-05-02 11:37 -------- d-----w- c:\documents and settings\Kriszta\Application Data\uTorrent
2010-08-05 18:44 . 2009-08-29 10:56 -------- d-----w- c:\program files\MyPlayCity.com
2010-08-05 16:50 . 2009-01-29 18:09 -------- d-----w- c:\program files\RealArcade
2010-08-05 15:23 . 2010-06-14 19:22 -------- d-----w- c:\program files\Tyúkvadászat
2010-08-05 15:21 . 2009-12-28 12:04 -------- d-----w- c:\documents and settings\All Users\Application Data\AlawarWrapper
2010-08-01 08:08 . 2010-05-26 19:55 -------- d-----w- c:\program files\Metin2_HU
2010-07-15 10:26 . 2009-12-28 12:04 -------- d-----w- c:\documents and settings\All Users\Application Data\AlawarGameBox
2010-06-19 15:57 . 2010-06-19 15:57 -------- d-----w- c:\documents and settings\All Users\Application Data\Blizzard
2010-06-14 19:17 . 2010-06-14 19:15 58 ----a-w- c:\windows\q2ik3jmd6.dat
2010-06-14 19:12 . 2010-06-14 19:12 10 ----a-w- c:\windows\uskwe2j2h.dat
2010-06-14 19:09 . 2010-06-14 19:04 58 ----a-w- c:\windows\kjdshkjh23jik32.dat
2010-06-14 14:31 . 2009-01-24 10:24 744448 ----a-w- c:\windows\pchealth\helpctr\binaries\helpsvc.exe
2010-06-03 03:28 . 2003-04-25 12:00 58874 ----a-w- c:\windows\system32\perfc00E.dat
2010-06-03 03:28 . 2003-04-25 12:00 306468 ----a-w- c:\windows\system32\perfh00E.dat
2010-06-01 07:26 . 2010-06-01 07:26 503808 ----a-w- c:\documents and settings\Kriszta\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-284d5ead-n\msvcp71.dll
2010-06-01 07:26 . 2010-06-01 07:26 499712 ----a-w- c:\documents and settings\Kriszta\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-284d5ead-n\jmc.dll
2010-06-01 07:26 . 2010-06-01 07:26 348160 ----a-w- c:\documents and settings\Kriszta\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-284d5ead-n\msvcr71.dll
2010-06-01 07:26 . 2010-06-01 07:26 12800 ----a-w- c:\documents and settings\Kriszta\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-36fbe4fb-n\decora-d3d.dll
2010-06-01 07:26 . 2010-06-01 07:26 61440 ----a-w- c:\documents and settings\Kriszta\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-36fbe4fb-n\decora-sse.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac}"= "c:\program files\MyPlayCity\tbMyP1.dll" [2010-07-25 2515552]

[HKEY_CLASSES_ROOT\clsid\{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac}]
2010-07-25 18:51 2515552 ----a-w- c:\program files\MyPlayCity\tbMyP1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac}"= "c:\program files\MyPlayCity\tbMyP1.dll" [2010-07-25 2515552]

[HKEY_CLASSES_ROOT\clsid\{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{4724C5D8-DFA7-417A-A2F5-1EABFEE9B4AC}"= "c:\program files\MyPlayCity\tbMyP1.dll" [2010-07-25 2515552]

[HKEY_CLASSES_ROOT\clsid\{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-02-13 68856]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\lib\NMBgMonitor.exe" [2005-11-24 94208]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"VTTimer"="VTTimer.exe" [2005-03-08 53248]
"VTTrayp"="VTtrayp.exe" [2005-03-11 147456]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2008-03-03 1848648]
"CanonSolutionMenu"="c:\program files\Canon\SolutionMenu\CNSLMAIN.exe" [2008-03-10 689488]
"CNAP2 Launcher"="c:\windows\System32\spool\DRIVERS\W32X86\3\CNAP2LAK.EXE" [2007-09-05 406944]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit]
2008-10-16 19:35 87352 ----a-w- c:\windows\system32\LMIinit.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2009-02-27 15:10 35696 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2001-07-09 09:50 155648 ----a-w- c:\windows\system32\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
2004-11-02 19:24 32768 ----a-w- c:\program files\CyberLink\PowerDVD\PDVDServ.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2010-02-18 09:43 248040 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"UPS"=3 (0x3)
"RSVP"=3 (0x3)
"ose"=3 (0x3)
"SCardSvr"=3 (0x3)
"PolicyAgent"=2 (0x2)
"ImapiService"=3 (0x3)
"WmdmPmSN"=3 (0x3)
"ERSvc"=2 (0x2)
"HTTPFilter"=3 (0x3)
"NtmsSvc"=3 (0x3)
"wscsvc"=2 (0x2)
"SamSs"=2 (0x2)
"getPlus(R) Helper"=3 (0x3)
"JavaQuickStarterService"=2 (0x2)
"Irmon"=2 (0x2)
"gupdate1c9e1c5838c6856"=2 (0x2)
"gusvc"=3 (0x3)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Metin2_HU\\metin2.bin"=
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\Metin2_HU\\metin2client.bin"=
"c:\\Program Files\\3DO\\Heroes3\\HEROES3.EXE"=

R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [2009.12.26. 14:19 207792]
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2009.12.26. 13:31 114768]
R1 nltdi;nltdi;c:\windows\system32\drivers\nltdi.sys [2007.04.23. 13:03 82200]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009.12.26. 13:31 20560]
S2 Browser Defender Update Service;Browser Defender Update Service;c:\program files\Spyware Doctor\BDT\BDTUpdateService.exe [2009.12.26. 14:21 112592]
S3 sdAuxService;PC Tools Auxiliary Service;c:\program files\Spyware Doctor\pctsAuxs.exe [2009.12.26. 14:18 359624]
S4 gupdate1c9e1c5838c6856;Google frissítési szolgáltatás (gupdate1c9e1c5838c6856);c:\program files\Google\Update\GoogleUpdate.exe [2009.05.31. 9:57 133104]
.
Contents of the 'Scheduled Tasks' folder

2010-08-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-05-31 07:57]

2010-08-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-05-31 07:57]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://search.conduit.com?SearchSource= ... =CT1392740
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xportálás Microsoft Excel formátumba - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
FF - ProfilePath - c:\documents and settings\Kriszta\Application Data\Mozilla\Firefox\Profiles\o1gny2sy.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as ... ource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - www.farmerama.hu
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.as ... ource=2&q=
FF - component: c:\documents and settings\Kriszta\Application Data\Mozilla\Firefox\Profiles\o1gny2sy.default\extensions\{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac}\components\FFExternalAlert.dll
FF - plugin: c:\documents and settings\All Users\Application Data\RealArcade\npraclient.dll
FF - plugin: c:\program files\Google\Update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: c:\program files\Mozilla Firefox\extensions\npmozax@real.com\plugins\npmozax.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npraclient.dll
.
- - - - ORPHANS REMOVED - - - -

Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
HKLM-Run-Cmaudio - cmicnfg.cpl



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-08-14 20:02
Windows 5.1.2600 Szervizcsomag 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG08.00.00.01WORKSTATION"="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"
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(788)
c:\windows\system32\LMIinit.dll
c:\windows\system32\LMIRfsClientNP.dll
.
Completion time: 2010-08-14 20:06:14
ComboFix-quarantined-files.txt 2010-08-14 18:06

Pre-Run: 5 140 299 776 bájt szabad
Post-Run: 5 156 655 104 bájt szabad

WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional - magyar" /noexecute=optin /fastdetect

- - End Of File - - 79FCCD6F68A4D251373720214D870BF4


szomb. aug. 14, 2010 19:15
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: pilaka bogarai
Mar az RSIT logjaban nem lattam semit,, a Malwarebytes amit talalt az ,,,adware,,de ha anyi , malware volt a gepen ahogy irod akkor,,csinald meg eztet;
:arrow: Kapcsold ki a rendszer visszaallitasat-restart-kapcsold be vissza.
:arrow: kitisztitod a Temp mappakat:
http://www.virus-stell.com/2010/05/temp ... itasa.html
+ a CCleanert:
http://virus-stell.blogspot.com/2010/04/ccleaner.html

:arrow: Futtasd a Combofixet:
http://virus-stell.blogspot.com/2010/04/combofix.html
logjat tedd ide.


szomb. aug. 14, 2010 18:26
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. jan. 01, 2009 20:34
Hozzászólások: 294
Hozzászólás Re: pilaka bogarai
Az Alawar.com - ot töröltem . És itt a log:
A Spyware Doctor logja nem fér ide mert a 160 tétel leírása túl sok karakter.


Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Adatbázis verzió: 4427

Windows 5.1.2600 Szervizcsomag 3
Internet Explorer 8.0.6001.18702

2010.08.14. 16:54:59
mbam-log-2010-08-14 (16-54-59).txt

Vizsgálat típusa: Gyorsvizsgálat
Átvizsgált objektumok: 126528
Eltelt idő: 7 perc, 21 másodperc

Fertőzött memóriafolyamatok: 0
Fertőzött memória modulok: 0
Fertőzött Rendszerleíró kulcsok: 1
Fertőzött Rendszerleíró értékek: 0
Fertőzött Rendszerleíró adatelemek: 3
Fertőzött mappák: 0
Fertőzött fájlok: 0

Fertőzött memóriafolyamatok:
(Nem találhatók rosszindulatú elemek)

Fertőzött memória modulok:
(Nem találhatók rosszindulatú elemek)

Fertőzött Rendszerleíró kulcsok:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

Fertőzött Rendszerleíró értékek:
(Nem találhatók rosszindulatú elemek)

Fertőzött Rendszerleíró adatelemek:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Not selected for removal.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Not selected for removal.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Not selected for removal.

Fertőzött mappák:
(Nem találhatók rosszindulatú elemek)

Fertőzött fájlok:
(Nem találhatók rosszindulatú elemek)


szomb. aug. 14, 2010 18:17
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: pilaka bogarai
Latom, hogy rendesen elduktat elolem a virussokat, futtatad 1/2-5-utan a malwarebytest,,tedd mar ide a logjat, hogy lassam, mit talalt,
Ezt a Toolbart szed le a geprol:
C:\Program Files\Alawar.com


szomb. aug. 14, 2010 17:27
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: csüt. jan. 01, 2009 20:34
Hozzászólások: 294
Hozzászólás pilaka bogarai
Logfile of random's system information tool 1.08 (written by random/random)
Run by Kriszta at 2010-08-14 18:06:19
Microsoft Windows XP Professional Szervizcsomag 3
System drive C: has 3 GB (16%) free of 20 GB
Total RAM: 447 MB (28% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:06:48, on 2010.08.14.
Platform: Windows XP Szervizcsomag 3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\system32\VTtrayp.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files\NetLimiter 2 Pro\nlsvc.exe
C:\WINDOWS\system32\oodag.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\NetLimiter 2 Pro\NLClient.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Kriszta\Asztal\RSIT.exe
C:\Program Files\trend micro\Kriszta.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT1392740
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hivatkozások
R3 - URLSearchHook: compliance 54328 Toolbar - {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - C:\Program Files\MyPlayCity\tbMyP1.dll
R3 - URLSearchHook: Alawar.com Toolbar - {511131f1-4629-4254-a85f-ed7b6d75dd3c} - C:\Program Files\Alawar.com\tbAla0.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll
O2 - BHO: compliance 54328 Toolbar - {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - C:\Program Files\MyPlayCity\tbMyP1.dll
O2 - BHO: Alawar.com Toolbar - {511131f1-4629-4254-a85f-ed7b6d75dd3c} - C:\Program Files\Alawar.com\tbAla0.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: compliance 54328 Toolbar - {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - C:\Program Files\MyPlayCity\tbMyP1.dll
O3 - Toolbar: PC Tools Browser Guard - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll
O3 - Toolbar: Alawar.com Toolbar - {511131f1-4629-4254-a85f-ed7b6d75dd3c} - C:\Program Files\Alawar.com\tbAla0.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CNAP2 Launcher] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP2LAK.EXE
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HELYI SZOLGÁLTATÁS')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HÁLÓZATI SZOLGÁLTATÁS')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportálás Microsoft Excel formátumba - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Kutatás - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} (SpinTop DRM Control) - file://C:\Program Files\Peggle Nights\Images\stg_drm.ocx
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 5376772187
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} (ArmHelper Control) - file://C:\Program Files\Peggle Nights\Images\armhelper.ocx
O22 - SharedTaskScheduler: Browseui előbetöltője - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Komponenskategóriák gyorsítótárazási szolgáltatása - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Browser Defender Update Service - Unknown owner - C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe
O23 - Service: Logikai lemezkezelő felügyeleti szolgáltatás (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Eseménynapló (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Inkjet Printer/Scanner Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: NetMeeting távoli asztalmegosztás (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: NetLimiter (nlsvc) - Locktime Software - C:\Program Files\NetLimiter 2 Pro\nlsvc.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: Plug and Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Távoli asztal súgó-munkamenetének kezelője (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: Teljesítménynaplók és riasztások (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Kötet árnyékmásolata (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: WMI teljesítményadapter (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe

--
End of file - 9188 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}]
PC Tools Browser Guard BHO - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll [2009-11-10 395216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac}]
compliance 54328 Toolbar - C:\Program Files\MyPlayCity\tbMyP1.dll [2010-07-25 2515552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{511131f1-4629-4254-a85f-ed7b6d75dd3c}]
Alawar.com Toolbar - C:\Program Files\Alawar.com\tbAla0.dll [2010-07-25 2515552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-07-10 278192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll [2010-07-10 814648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-05-03 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-05-03 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - compliance 54328 Toolbar - C:\Program Files\MyPlayCity\tbMyP1.dll [2010-07-25 2515552]
{472734EA-242A-422B-ADF8-83D1E48CC825} - PC Tools Browser Guard - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll [2009-11-10 395216]
{511131f1-4629-4254-a85f-ed7b6d75dd3c} - Alawar.com Toolbar - C:\Program Files\Alawar.com\tbAla0.dll [2010-07-25 2515552]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-07-10 278192]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"VTTimer"=C:\WINDOWS\system32\VTTimer.exe [2005-03-08 53248]
"VTTrayp"=C:\WINDOWS\system32\VTtrayp.exe [2005-03-11 147456]
"Cmaudio"=RunDll32 cmicnfg.cpl,CMICtrlWnd []
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2008-03-03 1848648]
"CanonSolutionMenu"=C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2008-03-10 689488]
"CNAP2 Launcher"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP2LAK.EXE [2007-09-06 406944]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-02-13 68856]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe [2005-11-24 94208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2004-11-02 32768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"UPS"=3
"RSVP"=3
"ose"=3
"SCardSvr"=3
"PolicyAgent"=2
"ImapiService"=3
"WmdmPmSN"=3
"ERSvc"=2
"HTTPFilter"=3
"NtmsSvc"=3
"wscsvc"=2
"SamSs"=2
"getPlus(R) Helper"=3
"JavaQuickStarterService"=2
"Irmon"=2
"gupdate1c9e1c5838c6856"=2
"gusvc"=3

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LMIinit]
C:\WINDOWS\system32\LMIinit.dll [2008-10-16 87352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\Metin2_HU\metin2.bin"="C:\Program Files\Metin2_HU\metin2.bin:*:Enabled:metin2"
"C:\Documents and Settings\Kriszta\Asztal\utorrent.exe"="C:\Documents and Settings\Kriszta\Asztal\utorrent.exe:*:Enabled:µTorrent"
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\Program Files\Metin2_HU\metin2client.bin"="C:\Program Files\Metin2_HU\metin2client.bin:*:Disabled:metin2client"
"C:\Program Files\3DO\Heroes3\HEROES3.EXE"="C:\Program Files\3DO\Heroes3\HEROES3.EXE:*:Enabled:Heroes of Might and Magic® III"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-08-14 18:02:12 ----D---- C:\Program Files\trend micro
2010-08-14 18:02:11 ----D---- C:\rsit
2010-08-14 16:38:51 ----D---- C:\Documents and Settings\Kriszta\Application Data\Malwarebytes
2010-08-14 16:38:41 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2010-08-14 16:38:40 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2010-08-14 16:38:40 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2010-08-14 16:38:39 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-08-14 16:37:45 ----D---- C:\Documents and Settings\Kriszta\Application Data\Locktime
2010-08-14 16:36:51 ----D---- C:\Documents and Settings\All Users\Application Data\Locktime
2010-08-14 16:36:44 ----D---- C:\Program Files\NetLimiter 2 Pro
2010-08-03 22:07:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$

======List of files/folders modified in the last 1 months======

2010-08-14 18:02:12 ----RD---- C:\Program Files
2010-08-14 17:58:23 ----D---- C:\Program Files\Mozilla Firefox
2010-08-14 17:55:47 ----A---- C:\WINDOWS\wincmd.ini
2010-08-14 17:54:58 ----D---- C:\WINDOWS\Temp
2010-08-14 17:50:23 ----D---- C:\WINDOWS
2010-08-14 17:50:07 ----D---- C:\WINDOWS\system32\config
2010-08-14 17:50:03 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2010-08-14 17:48:20 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-08-14 17:48:19 ----D---- C:\WINDOWS\system32\CatRoot2
2010-08-14 16:38:41 ----D---- C:\WINDOWS\system32\drivers
2010-08-14 16:36:48 ----D---- C:\WINDOWS\system32
2010-08-14 16:26:31 ----D---- C:\Program Files\Spyware Doctor
2010-08-14 15:40:01 ----D---- C:\WINDOWS\Prefetch
2010-08-14 15:39:53 ----D---- C:\Documents and Settings\All Users\Application Data\Norton
2010-08-14 15:39:44 ----D---- C:\Program Files\Common Files\Symantec Shared
2010-08-14 15:39:39 ----SD---- C:\WINDOWS\Tasks
2010-08-14 15:37:24 ----HD---- C:\WINDOWS\inf
2010-08-14 15:31:26 ----D---- C:\WINDOWS\Debug
2010-08-14 15:27:41 ----HD---- C:\WINDOWS\$hf_mig$
2010-08-06 07:45:23 ----D---- C:\Program Files\Common Files
2010-08-05 21:51:15 ----D---- C:\Documents and Settings\Kriszta\Application Data\uTorrent
2010-08-05 20:44:00 ----D---- C:\Program Files\MyPlayCity.com
2010-08-05 18:50:16 ----D---- C:\Program Files\RealArcade
2010-08-05 17:23:01 ----D---- C:\Program Files\Tyúkvadászat
2010-08-05 17:21:40 ----D---- C:\Documents and Settings\All Users\Application Data\AlawarWrapper
2010-08-03 22:07:49 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-08-01 10:08:14 ----D---- C:\Program Files\Metin2_HU
2010-07-27 08:30:29 ----A---- C:\WINDOWS\system32\shell32.dll
2010-07-25 20:51:50 ----D---- C:\Program Files\Alawar.com
2010-07-15 12:26:34 ----D---- C:\Documents and Settings\All Users\Application Data\AlawarGameBox

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 PCTCore;PCTools KDS; C:\WINDOWS\system32\drivers\PCTCore.sys [2009-11-09 207792]
R0 uagp35;Microsoft AGPv3.5 szűrő; C:\WINDOWS\system32\DRIVERS\uagp35.sys [2008-04-13 44672]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-11-25 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 intelppm;Intel processzor illesztőprogramja; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 nltdi;nltdi; \??\C:\WINDOWS\system32\drivers\nltdi.sys []
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-11-25 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-11-25 94160]
R2 irda;IrDA protokoll; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\WINDOWS\system32\drivers\LMIRfsDriver.sys []
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys [2005-05-12 1332544]
R3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet adapter NT-illesztőprogramja; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
R3 hidusb;Microsoft HID osztályú illesztőprogram; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 irsir;Microsoft soros infravörös illesztőprogram; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 lmimirr;lmimirr; C:\WINDOWS\system32\DRIVERS\lmimirr.sys [2008-07-24 10144]
R3 mouhid;Egér HID-illesztőprogram; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2003-04-25 12160]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2009-01-27 9856]
R3 Rasirda;WAN miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 rtl8139;Realtek RTL8139(A/B/C) alapú PCI gyors Ethernet-adapter NT illesztőprogramja; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
R3 usbuhci;Microsoft USB univerzális állomásvezérlő miniport illesztőprogramja; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 viagfx;viagfx; C:\WINDOWS\system32\DRIVERS\vtmini.sys [2005-06-01 227712]
S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys []
S1 InCDRm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-05-02 25280]
S3 ndiscm;Motorola SURFboard USB Cable Modem Windows Driver; C:\WINDOWS\system32\DRIVERS\NetMotCM.sys [2004-09-29 15360]
S3 usbccgp;Microsoft USB általános szülő-illesztőprogram; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER osztály; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB-képolvasó illesztőprogramja; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;USB háttértár illesztőprogramja; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys []
S4 LMIRfsClientNP;LMIRfsClientNP; C:\WINDOWS\system32\drivers\LMIRfsClientNP.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 Browser Defender Update Service;Browser Defender Update Service; C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe [2009-11-10 112592]
R2 IJPLMSVC;Inkjet Printer/Scanner Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2008-01-22 103808]
R2 nlsvc;NetLimiter; C:\Program Files\NetLimiter 2 Pro\nlsvc.exe [2007-03-21 516096]
R2 O&O Defrag;O&O Defrag; C:\WINDOWS\system32\oodag.exe [2005-03-21 225280]
R2 sdAuxService;PC Tools Auxiliary Service; C:\Program Files\Spyware Doctor\pctsAuxs.exe [2009-10-30 359624]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S2 spupdsvc;Windows Service Pack Installer update service; C:\WINDOWS\system32\spupdsvc.exe [2009-01-07 26144]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-05-05 182768]
S3 sdCoreService;PC Tools Security Service; C:\Program Files\Spyware Doctor\pctsSvc.exe [2009-11-06 1141712]
S4 getPlus(R) Helper;getPlus(R) Helper; C:\Program Files\NOS\bin\getPlus_HelperSvc.exe [2008-12-01 33752]
S4 gupdate1c9e1c5838c6856;Google frissítési szolgáltatás (gupdate1c9e1c5838c6856); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-05-31 133104]
S4 Irmon;Infravörös figyelő; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-04-12 153376]
S4 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]

-----------------EOF-----------------


szomb. aug. 14, 2010 17:12
Profil Privát üzenet küldése
Hozzászólások megjelenítése:  Rendezés  
Hozzászólás a témához   [ 76 hozzászólás ]  Oldal Előző  1, 2

Ki van itt

Jelenlévő fórumozók: nincs regisztrált felhasználó valamint 15 vendég


Nem nyithatsz témákat ebben a fórumban.
Nem válaszolhatsz egy témára ebben a fórumban.
Nem szerkesztheted a hozzászólásaidat ebben a fórumban.
Nem törölheted a hozzászólásaidat ebben a fórumban.

Keresés:
Ugrás:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group.
Designed by ST Software for PTF.
Magyar fordítás © Magyar phpBB Közösség