Rooter.exe (v1.0.1) by Eric_71 ¨ Microsoft Windows Vista Home Edition (6.0.6001) Service Pack 1 32_bits - x86 Family 6 Model 14 Stepping 12, GenuineIntel ¨ C:\ [Fixed-NTFS] .. ( Total:19 Go - Free:2 Go ) D:\ [Fixed-NTFS] .. ( Total:43 Go - Free:22 Go ) E:\ [CD_Rom] G:\ [Removable] ¨ Scan : 17:10.04 Path : G:\Rooter.exe User : vidyut ( Administrator -> YES ) ¨ ----------------------\\ Processes ¨ Locked [System Process] (0) Locked System (4) Locked smss.exe (436) Locked csrss.exe (516) Locked wininit.exe (560) Locked csrss.exe (568) Locked winlogon.exe (608) Locked services.exe (644) Locked lsass.exe (664) Locked lsm.exe (672) Locked svchost.exe (824) Locked svchost.exe (892) Locked svchost.exe (924) Locked svchost.exe (1032) Locked svchost.exe (1096) Locked svchost.exe (1108) Locked audiodg.exe (1184) Locked SLsvc.exe (1212) Locked svchost.exe (1252) Locked svchost.exe (1384) Locked WLTRYSVC.EXE (1508) Locked BCMWLTRY.EXE (1520) Locked aswUpdSv.exe (1528) Locked ashServ.exe (1540) Locked spoolsv.exe (1836) Locked svchost.exe (1860) Locked agrsmsvc.exe (2016) Locked mDNSResponder.exe (2032) Locked svchost.exe (196) Locked CLCapSvc.exe (208) Locked mdm.exe (316) Locked svchost.exe (496) Locked RichVideo.exe (1020) Locked svchost.exe (1232) Locked VentC.exe (1484) Locked svchost.exe (2012) Locked SearchIndexer.exe (2056) Locked WUDFHost.exe (2296) Locked ventcsquid.exe (2304) Locked ventcdnsserver.exe (2344) Locked ventcdnsserver.exe (2360) Locked ventcdnsserver.exe (2388) Locked ventcdnsserver.exe (2408) Locked CLSched.exe (2420) Locked ventcdnsserver.exe (2436) Locked ventcdnsserver.exe (2456) Locked ventcunlinkd.exe (2480) Locked WmiPrvSE.exe (2496) Locked ashMaiSv.exe (2556) Locked ashWebSv.exe (2576) ______ C:\Windows\system32\Dwm.exe (3008) ______ C:\Windows\system32\taskeng.exe (3032) ______ C:\Windows\Explorer.EXE (3076) ______ C:\Program Files\Windows Defender\MSASCui.exe (3176) ______ C:\Windows\System32\hkcmd.exe (3192) ______ C:\Windows\System32\igfxpers.exe (3200) ______ C:\Windows\RtHDVCpl.exe (3208) ______ C:\Program Files\Apoint2K\Apoint.exe (3216) ______ C:\Program Files\Lenovo\EnergyCut\utilty.exe (3224) ______ C:\Program Files\Lenovo\EnergyCut\EnergyCut.exe (3232) ______ C:\Program Files\EzButton\EzButton.EXE (3240) ______ C:\Program Files\Alwil Software\Avast4\ashDisp.exe (3248) ______ C:\Program Files\java\jre1.6.0_04\bin\jusched.exe (3256) ______ C:\Program Files\Speed+\Configurator\ventcfg.exe (3264) ______ C:\Program Files\Adobe\Reader 8.0\Reader\Reader_SL.exe (3272) ______ C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe (3288) ______ C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe (3296) ______ C:\Windows\System32\mobsync.exe (3360) Locked ApMsgFwd.exe (1068) ______ C:\Program Files\OpenOffice.org 2.4\program\soffice.exe (2552) ______ C:\Program Files\Apoint2K\Apntex.exe (3656) ______ C:\Program Files\OpenOffice.org 2.4\program\soffice.BIN (1260) ______ G:\Rooter.exe (1048) Locked SearchProtocolHost.exe (2532) Locked SearchFilterHost.exe (2928) ¨ ----------------------\\ Device\Harddisk0\ ¨ \Device\Harddisk0 [Sectors : 63 x 512 Bytes] ¨ \Device\Harddisk0\Partition1 --[ MBR ]-- (Start_Offset:32256 | Length:20974431744) \Device\Harddisk0\Partition2 (Start_Offset:20974665728 | Length:46257930240) \Device\Harddisk0\Partition3 (Start_Offset:67233438720 | Length:12790310400) ¨ ----------------------\\ Scheduled Tasks ¨ C:\Windows\Tasks\SA.DAT C:\Windows\Tasks\SCHEDLGU.TXT ¨ ----------------------\\ Registry ¨ ¨ ----------------------\\ Files & Folders ¨ ----------------------\\ Scan completed at 17:10.09 ¨ C:\Rooter$\Rooter_1.txt - (23/06/2009 | 17:10.09)