ROOTREPEAL (c) AD, 2007-2009 ================================================== Scan Start Time: 2010/06/06 19:17 Program Version: Version 1.3.5.0 Windows Version: Windows XP SP3 ================================================== Drivers ------------------- Name: ACPI.sys Image Path: ACPI.sys Address: 0xB7F78000 Size: 188544 File Visible: - Signed: - Status: - Name: ACPI_HAL Image Path: \Driver\ACPI_HAL Address: 0x804D7000 Size: 2150400 File Visible: - Signed: - Status: - Name: AegisP.sys Image Path: D:\WINDOWS\system32\DRIVERS\AegisP.sys Address: 0xB83A8000 Size: 19232 File Visible: - Signed: - Status: - Name: afd.sys Image Path: D:\WINDOWS\System32\drivers\afd.sys Address: 0xB39FE000 Size: 138496 File Visible: - Signed: - Status: - Name: atapi.sys Image Path: atapi.sys Address: 0xB7F0A000 Size: 96512 File Visible: - Signed: - Status: - Name: ATMFD.DLL Image Path: D:\WINDOWS\System32\ATMFD.DLL Address: 0xBFFA0000 Size: 286720 File Visible: - Signed: - Status: - Name: audstub.sys Image Path: D:\WINDOWS\system32\DRIVERS\audstub.sys Address: 0xB87BC000 Size: 3072 File Visible: - Signed: - Status: - Name: beep.sys Image Path: D:\WINDOWS\System32\Drivers\beep.sys Address: 0xB85CC000 Size: 4224 File Visible: - Signed: - Status: - Name: BHDrvx86.sys Image Path: D:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.6.0.32\Definitions\BASHDefs\20100429.001\BHDrvx86.sys Address: 0xB36B9000 Size: 548864 File Visible: - Signed: - Status: - Name: BOOTVID.dll Image Path: D:\WINDOWS\system32\BOOTVID.dll Address: 0xB84B8000 Size: 12288 File Visible: - Signed: - Status: - Name: ccHPx86.sys Image Path: D:\WINDOWS\system32\drivers\NIS\1107000.00C\ccHPx86.sys Address: 0xB373F000 Size: 520192 File Visible: - Signed: - Status: - Name: Cdfs.SYS Image Path: D:\WINDOWS\System32\Drivers\Cdfs.SYS Address: 0xB82F8000 Size: 63744 File Visible: - Signed: - Status: - Name: cdrom.sys Image Path: D:\WINDOWS\system32\DRIVERS\cdrom.sys Address: 0xB81A8000 Size: 62976 File Visible: - Signed: - Status: - Name: CLASSPNP.SYS Image Path: D:\WINDOWS\system32\DRIVERS\CLASSPNP.SYS Address: 0xB80F8000 Size: 53248 File Visible: - Signed: - Status: - Name: CX88TUNE.sys Image Path: D:\WINDOWS\system32\drivers\CX88TUNE.sys Address: 0xB8268000 Size: 50816 File Visible: - Signed: - Status: - Name: cx88vid.sys Image Path: D:\WINDOWS\system32\drivers\cx88vid.sys Address: 0xB74B8000 Size: 162944 File Visible: - Signed: - Status: - Name: cxavxbar.sys Image Path: D:\WINDOWS\system32\drivers\cxavxbar.sys Address: 0xB854C000 Size: 9728 File Visible: - Signed: - Status: - Name: disk.sys Image Path: disk.sys Address: 0xB80E8000 Size: 36352 File Visible: - Signed: - Status: - Name: dmio.sys Image Path: dmio.sys Address: 0xB7F22000 Size: 153856 File Visible: - Signed: - Status: - Name: dmload.sys Image Path: dmload.sys Address: 0xB85AC000 Size: 5888 File Visible: - Signed: - Status: - Name: drmk.sys Image Path: D:\WINDOWS\system32\drivers\drmk.sys Address: 0xB8248000 Size: 61440 File Visible: - Signed: - Status: - Name: dump_atapi.sys Image Path: D:\WINDOWS\System32\Drivers\dump_atapi.sys Address: 0xB35CF000 Size: 98304 File Visible: No Signed: - Status: - Name: dump_WMILIB.SYS Image Path: D:\WINDOWS\System32\Drivers\dump_WMILIB.SYS Address: 0xB85E4000 Size: 8192 File Visible: No Signed: - Status: - Name: Dxapi.sys Image Path: D:\WINDOWS\System32\drivers\Dxapi.sys Address: 0xB8564000 Size: 12288 File Visible: - Signed: - Status: - Name: dxg.sys Image Path: D:\WINDOWS\System32\drivers\dxg.sys Address: 0xBD000000 Size: 73728 File Visible: - Signed: - Status: - Name: dxgthk.sys Image Path: D:\WINDOWS\System32\drivers\dxgthk.sys Address: 0xB874E000 Size: 4096 File Visible: - Signed: - Status: - Name: eeCtrl.sys Image Path: D:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys Address: 0xB37DB000 Size: 385024 File Visible: - Signed: - Status: - Name: EraserUtilRebootDrv.sys Image Path: D:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys Address: 0xB37BE000 Size: 118784 File Visible: - Signed: - Status: - Name: Fips.SYS Image Path: D:\WINDOWS\System32\Drivers\Fips.SYS Address: 0xB82A8000 Size: 44672 File Visible: - Signed: - Status: - Name: fltMgr.sys Image Path: fltMgr.sys Address: 0xB7ED2000 Size: 129792 File Visible: - Signed: - Status: - Name: Fs_Rec.SYS Image Path: D:\WINDOWS\System32\Drivers\Fs_Rec.SYS Address: 0xB85C8000 Size: 7936 File Visible: - Signed: - Status: - Name: ftdisk.sys Image Path: ftdisk.sys Address: 0xB7F48000 Size: 125568 File Visible: - Signed: - Status: - Name: GEARAspiWDM.sys Image Path: D:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys Address: 0xB83E8000 Size: 28672 File Visible: - Signed: - Status: - Name: hal.dll Image Path: D:\WINDOWS\system32\hal.dll Address: 0x806E4000 Size: 134400 File Visible: - Signed: - Status: - Name: HDAudBus.sys Image Path: D:\WINDOWS\system32\DRIVERS\HDAudBus.sys Address: 0xB7504000 Size: 163840 File Visible: - Signed: - Status: - Name: HMFAxCore56d706f6725c732df006697fd5ec3381.sys Image Path: D:\WINDOWS\system32\drivers\HMFAxCore56d706f6725c732df006697fd5ec3381.sys Address: 0xB8480000 Size: 32768 File Visible: - Signed: - Status: - Name: i8042prt.sys Image Path: D:\WINDOWS\system32\DRIVERS\i8042prt.sys Address: 0xB8178000 Size: 53248 File Visible: - Signed: - Status: - Name: IDSxpx86.sys Image Path: D:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.6.0.32\Definitions\IPSDefs\20100528.003\IDSxpx86.sys Address: 0xB3A20000 Size: 348160 File Visible: - Signed: - Status: - Name: imapi.sys Image Path: D:\WINDOWS\system32\DRIVERS\imapi.sys Address: 0xB8198000 Size: 42112 File Visible: - Signed: - Status: - Name: intelppm.sys Image Path: D:\WINDOWS\system32\DRIVERS\intelppm.sys Address: 0xB8158000 Size: 40448 File Visible: - Signed: - Status: - Name: ipnat.sys Image Path: D:\WINDOWS\system32\DRIVERS\ipnat.sys Address: 0xB3AC2000 Size: 152832 File Visible: - Signed: - Status: - Name: ipsec.sys Image Path: D:\WINDOWS\system32\DRIVERS\ipsec.sys Address: 0xB3B98000 Size: 75264 File Visible: - Signed: - Status: - Name: Ironx86.SYS Image Path: D:\WINDOWS\system32\drivers\NIS\1107000.00C\Ironx86.SYS Address: 0xB398B000 Size: 126976 File Visible: - Signed: - Status: - Name: isapnp.sys Image Path: isapnp.sys Address: 0xB80A8000 Size: 37632 File Visible: - Signed: - Status: - Name: ISODrive.sys Image Path: D:\Program Files\UltraISO\drivers\ISODrive.sys Address: 0xB3839000 Size: 94208 File Visible: - Signed: - Status: - Name: kbdclass.sys Image Path: D:\WINDOWS\system32\DRIVERS\kbdclass.sys Address: 0xB83B8000 Size: 24960 File Visible: - Signed: - Status: - Name: KDCOM.DLL Image Path: D:\WINDOWS\system32\KDCOM.DLL Address: 0xB85A8000 Size: 8192 File Visible: - Signed: - Status: - Name: kmixer.sys Image Path: D:\WINDOWS\system32\drivers\kmixer.sys Address: 0x96938000 Size: 172416 File Visible: - Signed: - Status: - Name: ks.sys Image Path: D:\WINDOWS\system32\drivers\ks.sys Address: 0xB7495000 Size: 143360 File Visible: - Signed: - Status: - Name: KSecDD.sys Image Path: KSecDD.sys Address: 0xB7E26000 Size: 92928 File Visible: - Signed: - Status: - Name: mnmdd.SYS Image Path: D:\WINDOWS\System32\Drivers\mnmdd.SYS Address: 0xB85D0000 Size: 4224 File Visible: - Signed: - Status: - Name: mouclass.sys Image Path: D:\WINDOWS\system32\DRIVERS\mouclass.sys Address: 0xB83C8000 Size: 23296 File Visible: - Signed: - Status: - Name: MountMgr.sys Image Path: MountMgr.sys Address: 0xB80B8000 Size: 42368 File Visible: - Signed: - Status: - Name: mrxsmb.sys Image Path: D:\WINDOWS\system32\DRIVERS\mrxsmb.sys Address: 0xB3850000 Size: 455680 File Visible: - Signed: - Status: - Name: Msfs.SYS Image Path: D:\WINDOWS\System32\Drivers\Msfs.SYS Address: 0xB8498000 Size: 19072 File Visible: - Signed: - Status: - Name: msgpc.sys Image Path: D:\WINDOWS\system32\DRIVERS\msgpc.sys Address: 0xB81F8000 Size: 35072 File Visible: - Signed: - Status: - Name: MSPCLOCK.sys Image Path: D:\WINDOWS\system32\drivers\MSPCLOCK.sys Address: 0xB8658000 Size: 5376 File Visible: - Signed: - Status: - Name: MSPQM.sys Image Path: D:\WINDOWS\system32\drivers\MSPQM.sys Address: 0xB860A000 Size: 4992 File Visible: - Signed: - Status: - Name: mssmbios.sys Image Path: D:\WINDOWS\system32\DRIVERS\mssmbios.sys Address: 0xB8588000 Size: 15488 File Visible: - Signed: - Status: - Name: Mup.sys Image Path: Mup.sys Address: 0xB7D3F000 Size: 105344 File Visible: - Signed: - Status: - Name: NAVENG.SYS Image Path: D:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.6.0.32\Definitions\VirusDefs\20100605.003\NAVENG.SYS Address: 0xB2601000 Size: 78848 File Visible: - Signed: - Status: - Name: NAVEX15.SYS Image Path: D:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.6.0.32\Definitions\VirusDefs\20100605.003\NAVEX15.SYS Address: 0xB26DD000 Size: 1340800 File Visible: - Signed: - Status: - Name: NDIS.sys Image Path: NDIS.sys Address: 0xB7D59000 Size: 182656 File Visible: - Signed: - Status: - Name: ndistapi.sys Image Path: D:\WINDOWS\system32\DRIVERS\ndistapi.sys Address: 0xB855C000 Size: 10112 File Visible: - Signed: - Status: - Name: ndisuio.sys Image Path: D:\WINDOWS\system32\DRIVERS\ndisuio.sys Address: 0xB326F000 Size: 14592 File Visible: - Signed: - Status: - Name: ndiswan.sys Image Path: D:\WINDOWS\system32\DRIVERS\ndiswan.sys Address: 0xB747E000 Size: 91520 File Visible: - Signed: - Status: - Name: NDProxy.SYS Image Path: D:\WINDOWS\System32\Drivers\NDProxy.SYS Address: 0xB8228000 Size: 40576 File Visible: - Signed: - Status: - Name: netbios.sys Image Path: D:\WINDOWS\system32\DRIVERS\netbios.sys Address: 0xB8288000 Size: 34688 File Visible: - Signed: - Status: - Name: netbt.sys Image Path: D:\WINDOWS\system32\DRIVERS\netbt.sys Address: 0xB3087000 Size: 162816 File Visible: - Signed: - Status: - Name: Npfs.SYS Image Path: D:\WINDOWS\System32\Drivers\Npfs.SYS Address: 0xB84A8000 Size: 30848 File Visible: - Signed: - Status: - Name: Ntfs.sys Image Path: Ntfs.sys Address: 0xB7D86000 Size: 574976 File Visible: - Signed: - Status: - Name: ntkrnlpa.exe Image Path: D:\WINDOWS\system32\ntkrnlpa.exe Address: 0x804D7000 Size: 2150400 File Visible: - Signed: - Status: - Name: Null.SYS Image Path: D:\WINDOWS\System32\Drivers\Null.SYS Address: 0xB868C000 Size: 2944 File Visible: - Signed: - Status: - Name: nv4_disp.dll Image Path: D:\WINDOWS\System32\nv4_disp.dll Address: 0xBD012000 Size: 5910528 File Visible: - Signed: - Status: - Name: nv4_mini.sys Image Path: D:\WINDOWS\system32\DRIVERS\nv4_mini.sys Address: 0xB7540000 Size: 8087520 File Visible: - Signed: - Status: - Name: PartMgr.sys Image Path: PartMgr.sys Address: 0xB8330000 Size: 19712 File Visible: - Signed: - Status: - Name: pci.sys Image Path: pci.sys Address: 0xB7F67000 Size: 68608 File Visible: - Signed: - Status: - Name: pciide.sys Image Path: pciide.sys Address: 0xB8670000 Size: 3456 File Visible: - Signed: - Status: - Name: PCIIDEX.SYS Image Path: D:\WINDOWS\system32\DRIVERS\PCIIDEX.SYS Address: 0xB8328000 Size: 28672 File Visible: - Signed: - Status: - Name: PnpManager Image Path: \Driver\PnpManager Address: 0x804D7000 Size: 2150400 File Visible: - Signed: - Status: - Name: portcls.sys Image Path: D:\WINDOWS\system32\drivers\portcls.sys Address: 0xB4BF3000 Size: 147456 File Visible: - Signed: - Status: - Name: psched.sys Image Path: D:\WINDOWS\system32\DRIVERS\psched.sys Address: 0xB73CD000 Size: 69120 File Visible: - Signed: - Status: - Name: ptilink.sys Image Path: D:\WINDOWS\system32\DRIVERS\ptilink.sys Address: 0xB8418000 Size: 17792 File Visible: - Signed: - Status: - Name: rasacd.sys Image Path: D:\WINDOWS\system32\DRIVERS\rasacd.sys Address: 0xB7395000 Size: 8832 File Visible: - Signed: - Status: - Name: rasl2tp.sys Image Path: D:\WINDOWS\system32\DRIVERS\rasl2tp.sys Address: 0xB81C8000 Size: 51328 File Visible: - Signed: - Status: - Name: raspppoe.sys Image Path: D:\WINDOWS\system32\DRIVERS\raspppoe.sys Address: 0xB81D8000 Size: 41472 File Visible: - Signed: - Status: - Name: raspptp.sys Image Path: D:\WINDOWS\system32\DRIVERS\raspptp.sys Address: 0xB81E8000 Size: 48384 File Visible: - Signed: - Status: - Name: raspti.sys Image Path: D:\WINDOWS\system32\DRIVERS\raspti.sys Address: 0xB8428000 Size: 16512 File Visible: - Signed: - Status: - Name: RAW Image Path: \FileSystem\RAW Address: 0x804D7000 Size: 2150400 File Visible: - Signed: - Status: - Name: rdbss.sys Image Path: D:\WINDOWS\system32\DRIVERS\rdbss.sys Address: 0xB38C0000 Size: 175744 File Visible: - Signed: - Status: - Name: RDPCDD.sys Image Path: D:\WINDOWS\System32\DRIVERS\RDPCDD.sys Address: 0xB85D4000 Size: 4224 File Visible: - Signed: - Status: - Name: rdpdr.sys Image Path: D:\WINDOWS\system32\DRIVERS\rdpdr.sys Address: 0xB739D000 Size: 196224 File Visible: - Signed: - Status: - Name: redbook.sys Image Path: D:\WINDOWS\system32\DRIVERS\redbook.sys Address: 0xB81B8000 Size: 58880 File Visible: - Signed: - Status: - Name: rootrepeal.sys Image Path: D:\WINDOWS\system32\drivers\rootrepeal.sys Address: 0xB2341000 Size: 49152 File Visible: No Signed: - Status: - Name: rt73.sys Image Path: D:\WINDOWS\system32\DRIVERS\rt73.sys Address: 0xB39AA000 Size: 344064 File Visible: - Signed: - Status: - Name: RtkHDAud.sys Image Path: D:\WINDOWS\system32\drivers\RtkHDAud.sys Address: 0xB4C17000 Size: 6127616 File Visible: - Signed: - Status: - Name: SCSIPORT.SYS Image Path: D:\WINDOWS\System32\Drivers\SCSIPORT.SYS Address: 0xB7EF2000 Size: 98304 File Visible: - Signed: - Status: - Name: serenum.sys Image Path: D:\WINDOWS\system32\DRIVERS\serenum.sys Address: 0xB8548000 Size: 15744 File Visible: - Signed: - Status: - Name: serial.sys Image Path: D:\WINDOWS\system32\DRIVERS\serial.sys Address: 0xB8188000 Size: 65280 File Visible: - Signed: - Status: - Name: Si3112.sys Image Path: Si3112.sys Address: 0xB80D8000 Size: 62208 File Visible: - Signed: - Status: - Name: sr.sys Image Path: sr.sys Address: 0xB7E6A000 Size: 73472 File Visible: - Signed: - Status: - Name: SRTSP.SYS Image Path: D:\WINDOWS\System32\Drivers\NIS\1107000.00C\SRTSP.SYS Address: 0xB28ED000 Size: 356352 File Visible: - Signed: - Status: - Name: SRTSPX.SYS Image Path: D:\WINDOWS\system32\drivers\NIS\1107000.00C\SRTSPX.SYS Address: 0xB8298000 Size: 36992 File Visible: - Signed: - Status: - Name: STREAM.SYS Image Path: D:\WINDOWS\system32\drivers\STREAM.SYS Address: 0xB8168000 Size: 53248 File Visible: - Signed: - Status: - Name: swenum.sys Image Path: D:\WINDOWS\system32\DRIVERS\swenum.sys Address: 0xB85BA000 Size: 4352 File Visible: - Signed: - Status: - Name: SYMDS.SYS Image Path: SYMDS.SYS Address: 0xB7E7C000 Size: 352256 File Visible: No Signed: - Status: - Name: SYMEFA.SYS Image Path: SYMEFA.SYS Address: 0xB7E3D000 Size: 184320 File Visible: No Signed: - Status: - Name: SYMEVENT.SYS Image Path: D:\WINDOWS\system32\Drivers\SYMEVENT.SYS Address: 0xB3A75000 Size: 151552 File Visible: - Signed: - Status: - Name: SymIM.sys Image Path: D:\WINDOWS\system32\DRIVERS\SymIM.sys Address: 0xB8218000 Size: 40704 File Visible: - Signed: - Status: - Name: SYMTDI.SYS Image Path: D:\WINDOWS\System32\Drivers\NIS\1107000.00C\SYMTDI.SYS Address: 0xB3AE8000 Size: 355200 File Visible: - Signed: - Status: - Name: sysaudio.sys Image Path: D:\WINDOWS\system32\drivers\sysaudio.sys Address: 0xB2DE7000 Size: 60800 File Visible: - Signed: - Status: - Name: tcpip.sys Image Path: D:\WINDOWS\system32\DRIVERS\tcpip.sys Address: 0xB3B3F000 Size: 361600 File Visible: - Signed: - Status: - Name: TDI.SYS Image Path: D:\WINDOWS\system32\DRIVERS\TDI.SYS Address: 0xB8408000 Size: 20480 File Visible: - Signed: - Status: - Name: termdd.sys Image Path: D:\WINDOWS\system32\DRIVERS\termdd.sys Address: 0xB8208000 Size: 40704 File Visible: - Signed: - Status: - Name: ULCDRHlp.sys Image Path: D:\WINDOWS\System32\Drivers\ULCDRHlp.sys Address: 0xB83E0000 Size: 27392 File Visible: - Signed: - Status: - Name: update.sys Image Path: D:\WINDOWS\system32\DRIVERS\update.sys Address: 0xB7317000 Size: 384768 File Visible: - Signed: - Status: - Name: USBD.SYS Image Path: D:\WINDOWS\system32\DRIVERS\USBD.SYS Address: 0xB85C4000 Size: 8192 File Visible: - Signed: - Status: - Name: usbehci.sys Image Path: D:\WINDOWS\system32\DRIVERS\usbehci.sys Address: 0xB8398000 Size: 30208 File Visible: - Signed: - Status: - Name: usbhub.sys Image Path: D:\WINDOWS\system32\DRIVERS\usbhub.sys Address: 0xB8258000 Size: 59520 File Visible: - Signed: - Status: - Name: USBPORT.SYS Image Path: D:\WINDOWS\system32\DRIVERS\USBPORT.SYS Address: 0xB74E0000 Size: 147456 File Visible: - Signed: - Status: - Name: usbuhci.sys Image Path: D:\WINDOWS\system32\DRIVERS\usbuhci.sys Address: 0xB8390000 Size: 20608 File Visible: - Signed: - Status: - Name: vga.sys Image Path: D:\WINDOWS\System32\drivers\vga.sys Address: 0xB8488000 Size: 20992 File Visible: - Signed: - Status: - Name: VIDEOPRT.SYS Image Path: D:\WINDOWS\system32\DRIVERS\VIDEOPRT.SYS Address: 0xB752C000 Size: 81920 File Visible: - Signed: - Status: - Name: VolSnap.sys Image Path: VolSnap.sys Address: 0xB80C8000 Size: 52864 File Visible: - Signed: - Status: - Name: wanarp.sys Image Path: D:\WINDOWS\system32\DRIVERS\wanarp.sys Address: 0xB8278000 Size: 34560 File Visible: - Signed: - Status: - Name: watchdog.sys Image Path: D:\WINDOWS\System32\watchdog.sys Address: 0xB83D0000 Size: 20480 File Visible: - Signed: - Status: - Name: wdmaud.sys Image Path: D:\WINDOWS\system32\drivers\wdmaud.sys Address: 0xB2BEA000 Size: 83072 File Visible: - Signed: - Status: - Name: WFIOCTL.SYS Image Path: D:\Program Files\WinFast\WFTVFM\WFIOCTL.SYS Address: 0xB29E4000 Size: 8608 File Visible: - Signed: - Status: - Name: Win32k Image Path: \Driver\Win32k Address: 0xBF800000 Size: 1851392 File Visible: - Signed: - Status: - Name: win32k.sys Image Path: D:\WINDOWS\System32\win32k.sys Address: 0xBF800000 Size: 1851392 File Visible: - Signed: - Status: - Name: WMILIB.SYS Image Path: D:\WINDOWS\system32\DRIVERS\WMILIB.SYS Address: 0xB85AA000 Size: 8192 File Visible: - Signed: - Status: - Name: WMIxWDM Image Path: \Driver\WMIxWDM Address: 0x804D7000 Size: 2150400 File Visible: - Signed: - Status: - Name: WudfPf.sys Image Path: WudfPf.sys Address: 0xB7E13000 Size: 76544 File Visible: - Signed: - Status: -