Prosím o kontrolu - Pomalý počítač

[kubakoumak]

Zdravim,

prosím o (nevím jestli přímo preventivní) kontrolu. Počítač je celkově o dost pomalejší než dříve (mám ho 2 roky). Prohlíd jsem, jestli nemám nainstalovány nějaké nepotřebné programy, proved čištění registrů (ccleaner), ale ani trochu to nepomohlo, tak hledám pomoc zde.

Díky moc za odpověď,
Kuba

log zde:


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:44:22, on 28.6.2012
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8080.16413)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Users\Kuba\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Users\Kuba\AppData\Local\Programs\Google\MusicManager\MusicManager.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Users\Kuba\AppData\Local\Google\Update\1.3.21.111\GoogleCrashHandler.exe
C:\Users\Kuba\Stažené soubory\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5v4712723n
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?babsrc=HP_ss ... ffef5cb3ba
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5v4712723n
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... 5v4712723n
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OscarEditor] "C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe" Minimum
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [chromium] C:\Users\Kuba\AppData\Local\Google\Chrome\Application\chrome.exe --no-startup-window
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [MusicManager] "C:\Users\Kuba\AppData\Local\Programs\Google\MusicManager\MusicManager.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [BB2112DE87FEF73FB2D47D479EA2CAF75A538445._service_run] "C:\Users\Kuba\AppData\Local\Google\Chrome\Application\chrome.exe" --type=service
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {8DAE90AD-4583-4977-9DD4-4360F7A45C74} - (no file)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 2012\DfsdkS64.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - Unknown owner - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Soluto PCGenome Core Service (SolutoService) - Soluto - C:\Program Files\Soluto\SolutoService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11469 bytes

[Reklama]

[Žbeky]

Fixni:

Kód: Vybrat vše

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?babsrc=HP_ss ... ffef5cb3ba
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5v4712723n
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... 5v4712723n
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [BB2112DE87FEF73FB2D47D479EA2CAF75A538445._service_run] "C:\Users\Kuba\AppData\Local\Google\Chrome\Application\chrome.exe" --type=service
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: (no name) - {8DAE90AD-4583-4977-9DD4-4360F7A45C74} - (no file)
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
- Pokud používáš Firefox, klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Chrome, nic dalšího nevybírej a dej Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(ZATÍM SÁM NIC NEMAŽ!).
Vlož sem pak obsah toho logu.

[kubakoumak]

Jo, zatim díky za ochotu, tady je log mbam:

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware) 1.61.0.1400
www.malwarebytes.org

Verze databáze: v2012.06.29.06

Windows 7 x64 NTFS
Internet Explorer 9.0.8080.16413
Kuba :: KUBA-PC [administrátor]

Ochrana: Povolena

29.6.2012 10:34:48
mbam-log-2012-06-29 (10-44-46).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 221161
Uplynulý čas: 8 minut, 9 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 16
HKCR\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\Typelib\{D518921A-4A03-425E-9873-B9A71756821E} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCR\Interface\{CF54BE1C-9359-4395-8533-1657CF209CFE} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF6-072E-44CF-8957-5838F569A31D} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EAB-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF} (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\2EOETFM3W2 (Trojan.FakeAlert.SA) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\MyWebSearch (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\W5E7SH31DG (Trojan.FakeAlert.SA) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\FocusInteractive (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Fun Web Products (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\MyWebSearch (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\YingSoft (Malware.Trace) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 16
C:\Program Files (x86)\FunWebProducts (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\FunWebProducts\ScreenSaver (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\FunWebProducts\ScreenSaver\Images (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\chrome (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\2.bin (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Avatar (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Game (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\History (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\icons (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Message (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Notifier (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Overlay (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Settings (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.

Nalezené soubory: 77
C:\Windows\System32\f3PSSavr.scr (PUP.FunWebProducts) -> Žádná instrukce nebyla provedena.
C:\Windows\System32\f3PSSavr.scr (Trojan.Agent) -> Žádná instrukce nebyla provedena.
C:\Windows\SysWOW64\f3PSSavr.scr (Trojan.Agent) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\CHROME.MANIFEST (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3BKGERR.JPG (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3CJPEG.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3DTACTL.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3HISTSW.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3HKSTUB.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3HTMLMU.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3HTTPCT.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3IMSTUB.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3POPSWT.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3PSSAVR.SCR (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3REGHK.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3REPROX.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3RESTUB.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3SCHMON.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3SCRCTR.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3SPACER.WMV (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3WALLPP.DAT (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3WPHOOK.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\FWPBUDDY.PNG (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\INSTALL.RDF (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3AUXSTB.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3DLGHK.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3HIGHIN.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3HTML.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3IDLE.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3IMPIPE.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3MEDINT.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3MSG.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3OUTLCN.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3PLUGIN.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3SKIN.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3SKPLAY.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3SLSRCH.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3SRCHMN.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3TPINST.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSBAR.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSMLBTN.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSOEMON.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSOEPLG.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSOESTB.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSSRCAS.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSSVC.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSUABTN.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\NPMYWEBS.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\chrome\M3FFXTBR.JAR (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\2.bin\F3HTMLMU.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSBAR.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSSRCAS.DLL (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSSVC.EXE (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Avatar\COMMON.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Game\CHECKERS.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Game\CHESS.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Game\REVERSI.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\icons\CM.ICO (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\icons\MFC.ICO (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\icons\PSS.ICO (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\icons\SMILEY.ICO (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\icons\WB.ICO (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\icons\ZWINKY.ICO (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Message\COMMON.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\COMMON.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\DOG.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\FISH.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\KUNGFU.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\LIFEGARD.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\MAID.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\MAILBOX.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\OPERA.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\ROBOT.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\SEDUCT.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\SURFER.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Overlay\COMMON.F3S (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.
C:\Program Files (x86)\MyWebSearch\bar\Settings\s_pid.dat (PUP.MyWebSearch) -> Žádná instrukce nebyla provedena.

(konec)

S tím Mywebsearch je to celkem fail, vůbec jsem netušil, že to v pc mam

[Žbeky]

Znovu spusť MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- ujistit se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Remove Selected
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit

Stáhni si TDSSKiller

Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.

[kubakoumak]

Nový log z mbam:


Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware) 1.61.0.1400
www.malwarebytes.org

Verze databáze: v2012.06.29.06

Windows 7 x64 NTFS
Internet Explorer 9.0.8080.16413
Kuba :: KUBA-PC [administrátor]

Ochrana: Povolena

29.6.2012 16:25:46
mbam-log-2012-06-29 (16-25-46).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 221080
Uplynulý čas: 15 minut, 25 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 11
HKCR\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239} (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
HKCR\Typelib\{D518921A-4A03-425E-9873-B9A71756821E} (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
HKCR\Interface\{CF54BE1C-9359-4395-8533-1657CF209CFE} (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF6-072E-44CF-8957-5838F569A31D} (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EAB-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF} (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
HKCU\SOFTWARE\MyWebSearch (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
HKLM\SOFTWARE\FocusInteractive (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
HKLM\SOFTWARE\Fun Web Products (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
HKLM\SOFTWARE\MyWebSearch (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
HKLM\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 16
C:\Program Files (x86)\FunWebProducts (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\FunWebProducts\ScreenSaver (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\FunWebProducts\ScreenSaver\Images (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\chrome (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\2.bin (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Avatar (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Game (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\History (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\icons (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Message (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Notifier (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Overlay (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Settings (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.

Nalezené soubory: 74
C:\Program Files (x86)\MyWebSearch\bar\1.bin\CHROME.MANIFEST (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3BKGERR.JPG (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3CJPEG.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3DTACTL.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3HISTSW.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3HKSTUB.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3HTMLMU.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3HTTPCT.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3IMSTUB.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3POPSWT.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3PSSAVR.SCR (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3REGHK.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3REPROX.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3RESTUB.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3SCHMON.EXE (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3SCRCTR.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3SPACER.WMV (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3WALLPP.DAT (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\F3WPHOOK.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\FWPBUDDY.PNG (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\INSTALL.RDF (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3AUXSTB.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3DLGHK.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3HIGHIN.EXE (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3HTML.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3IDLE.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3IMPIPE.EXE (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3MEDINT.EXE (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3MSG.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3OUTLCN.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3PLUGIN.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3SKIN.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3SKPLAY.EXE (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3SLSRCH.EXE (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3SRCHMN.EXE (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3TPINST.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSBAR.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSMLBTN.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSOEMON.EXE (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSOEPLG.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSOESTB.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSSRCAS.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSSVC.EXE (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSUABTN.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\NPMYWEBS.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\1.bin\chrome\M3FFXTBR.JAR (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\2.bin\F3HTMLMU.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSBAR.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSSRCAS.DLL (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSSVC.EXE (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Avatar\COMMON.F3S (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Game\CHECKERS.F3S (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Game\CHESS.F3S (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Game\REVERSI.F3S (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\icons\CM.ICO (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\icons\MFC.ICO (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\icons\PSS.ICO (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\icons\SMILEY.ICO (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\icons\WB.ICO (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\icons\ZWINKY.ICO (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Message\COMMON.F3S (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\COMMON.F3S (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\DOG.F3S (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\FISH.F3S (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\KUNGFU.F3S (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\LIFEGARD.F3S (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\MAID.F3S (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\MAILBOX.F3S (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\OPERA.F3S (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\ROBOT.F3S (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\SEDUCT.F3S (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Notifier\SURFER.F3S (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Overlay\COMMON.F3S (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.
C:\Program Files (x86)\MyWebSearch\bar\Settings\s_pid.dat (PUP.MyWebSearch) -> Umístnění do karantény a smazání se zdařilo.

(konec)

[kubakoumak]

Potom se mi počítač restartoval a spustil jsem TDSSKiller - log:


17:44:49.0165 2072 TDSS rootkit removing tool 2.7.43.0 Jun 29 2012 17:54:22
17:44:49.0617 2072 ============================================================
17:44:49.0617 2072 Current date / time: 2012/06/29 17:44:49.0617
17:44:49.0617 2072 SystemInfo:
17:44:49.0617 2072
17:44:49.0617 2072 OS Version: 6.1.7600 ServicePack: 0.0
17:44:49.0617 2072 Product type: Workstation
17:44:49.0617 2072 ComputerName: KUBA-PC
17:44:49.0617 2072 UserName: Kuba
17:44:49.0617 2072 Windows directory: C:\Windows
17:44:49.0617 2072 System windows directory: C:\Windows
17:44:49.0617 2072 Running under WOW64
17:44:49.0617 2072 Processor architecture: Intel x64
17:44:49.0617 2072 Number of processors: 2
17:44:49.0617 2072 Page size: 0x1000
17:44:49.0617 2072 Boot type: Normal boot
17:44:49.0617 2072 ============================================================
17:44:51.0833 2072 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:44:51.0833 2072 ============================================================
17:44:51.0833 2072 \Device\Harddisk0\DR0:
17:44:51.0848 2072 MBR partitions:
17:44:51.0848 2072 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1C00800, BlocksNum 0x32000
17:44:51.0848 2072 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1C32800, BlocksNum 0x379A7000
17:44:51.0879 2072 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x395DA000, BlocksNum 0xDAB800
17:44:51.0879 2072 ============================================================
17:44:52.0145 2072 C: <-> \Device\Harddisk0\DR0\Partition1
17:44:52.0347 2072 U: <-> \Device\Harddisk0\DR0\Partition2
17:44:52.0347 2072 ============================================================
17:44:52.0347 2072 Initialize success
17:44:52.0347 2072 ============================================================
17:45:02.0753 5652 ============================================================
17:45:02.0753 5652 Scan started
17:45:02.0753 5652 Mode: Manual;
17:45:02.0753 5652 ============================================================
17:45:04.0359 5652 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
17:45:04.0453 5652 1394ohci - ok
17:45:04.0531 5652 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
17:45:04.0547 5652 ACPI - ok
17:45:04.0578 5652 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
17:45:04.0609 5652 AcpiPmi - ok
17:45:04.0905 5652 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:45:04.0952 5652 AdobeFlashPlayerUpdateSvc - ok
17:45:05.0061 5652 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
17:45:05.0155 5652 adp94xx - ok
17:45:05.0264 5652 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
17:45:05.0295 5652 adpahci - ok
17:45:05.0342 5652 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
17:45:05.0358 5652 adpu320 - ok
17:45:05.0405 5652 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
17:45:05.0405 5652 AeLookupSvc - ok
17:45:05.0670 5652 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
17:45:05.0685 5652 AFD - ok
17:45:05.0873 5652 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
17:45:05.0888 5652 agp440 - ok
17:45:05.0997 5652 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
17:45:05.0997 5652 ALG - ok
17:45:06.0060 5652 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
17:45:06.0075 5652 aliide - ok
17:45:06.0122 5652 AMD External Events Utility (d865f8abff031563e860d16a38bd5a35) C:\Windows\system32\atiesrxx.exe
17:45:06.0122 5652 AMD External Events Utility - ok
17:45:06.0231 5652 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
17:45:06.0231 5652 amdide - ok
17:45:06.0325 5652 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
17:45:06.0341 5652 AmdK8 - ok
17:45:08.0790 5652 amdkmdag (83418f6ee5a81dddd8e248fcbfc99af6) C:\Windows\system32\DRIVERS\atipmdag.sys
17:45:09.0086 5652 amdkmdag - ok
17:45:09.0554 5652 amdkmdap (7e58b5e1deaa70bd46997068df06b4e3) C:\Windows\system32\DRIVERS\atikmpag.sys
17:45:09.0601 5652 amdkmdap - ok
17:45:09.0663 5652 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
17:45:09.0663 5652 AmdPPM - ok
17:45:09.0726 5652 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
17:45:09.0741 5652 amdsata - ok
17:45:09.0897 5652 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
17:45:09.0929 5652 amdsbs - ok
17:45:10.0163 5652 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
17:45:10.0178 5652 amdxata - ok
17:45:10.0365 5652 androidusb (4de0d5d747a73797c95a97dcce5018b5) C:\Windows\system32\Drivers\ssadadb.sys
17:45:10.0397 5652 androidusb - ok
17:45:10.0677 5652 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
17:45:10.0724 5652 AppID - ok
17:45:10.0911 5652 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
17:45:10.0911 5652 AppIDSvc - ok
17:45:11.0067 5652 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
17:45:11.0067 5652 Appinfo - ok
17:45:11.0161 5652 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
17:45:11.0177 5652 arc - ok
17:45:11.0192 5652 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
17:45:11.0208 5652 arcsas - ok
17:45:11.0395 5652 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:45:11.0411 5652 aspnet_state - ok
17:45:11.0457 5652 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
17:45:11.0473 5652 AsyncMac - ok
17:45:11.0489 5652 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
17:45:11.0489 5652 atapi - ok
17:45:11.0676 5652 athr (e857eee6b92aaa473ebb3465add8f7e7) C:\Windows\system32\DRIVERS\athrx.sys
17:45:11.0925 5652 athr - ok
17:45:12.0456 5652 AtiPcie (c07a040d6b5a42dd41ee386cf90974c8) C:\Windows\system32\DRIVERS\AtiPcie.sys
17:45:12.0456 5652 AtiPcie - ok
17:45:12.0565 5652 atksgt (fc0e8778c000291caf60eb88c011e931) C:\Windows\system32\DRIVERS\atksgt.sys
17:45:12.0627 5652 atksgt - ok
17:45:13.0002 5652 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
17:45:13.0002 5652 AudioEndpointBuilder - ok
17:45:13.0002 5652 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
17:45:13.0017 5652 AudioSrv - ok
17:45:13.0095 5652 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
17:45:13.0095 5652 AxInstSV - ok
17:45:13.0173 5652 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
17:45:13.0189 5652 b06bdrv - ok
17:45:13.0283 5652 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
17:45:13.0345 5652 b57nd60a - ok
17:45:13.0922 5652 BCM43XX (fde8c8dc07e75347e4c6b455a0964217) C:\Windows\system32\DRIVERS\bcmwl664.sys
17:45:14.0047 5652 BCM43XX - ok
17:45:14.0437 5652 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
17:45:14.0437 5652 BDESVC - ok
17:45:14.0531 5652 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
17:45:14.0531 5652 Beep - ok
17:45:14.0780 5652 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
17:45:14.0780 5652 BFE - ok
17:45:15.0045 5652 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\System32\qmgr.dll
17:45:15.0123 5652 BITS - ok
17:45:15.0186 5652 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
17:45:15.0201 5652 blbdrive - ok
17:45:15.0326 5652 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
17:45:15.0326 5652 bowser - ok
17:45:15.0389 5652 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:45:15.0389 5652 BrFiltLo - ok
17:45:15.0404 5652 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:45:15.0404 5652 BrFiltUp - ok
17:45:15.0467 5652 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
17:45:15.0482 5652 Browser - ok
17:45:15.0763 5652 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
17:45:15.0810 5652 Brserid - ok
17:45:15.0903 5652 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
17:45:15.0919 5652 BrSerWdm - ok
17:45:15.0919 5652 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
17:45:15.0935 5652 BrUsbMdm - ok
17:45:15.0935 5652 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
17:45:15.0950 5652 BrUsbSer - ok
17:45:16.0059 5652 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
17:45:16.0075 5652 BthEnum - ok
17:45:16.0403 5652 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
17:45:16.0434 5652 BTHMODEM - ok
17:45:16.0527 5652 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
17:45:16.0543 5652 BthPan - ok
17:45:16.0637 5652 BTHPORT (21084ceb85280468c9aca3c805c0f8cf) C:\Windows\System32\Drivers\BTHport.sys
17:45:16.0699 5652 BTHPORT - ok
17:45:16.0793 5652 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
17:45:16.0793 5652 bthserv - ok
17:45:17.0089 5652 BTHUSB (8504842634dd144c075b6b0c982ccec4) C:\Windows\System32\Drivers\BTHUSB.sys
17:45:17.0120 5652 BTHUSB - ok
17:45:17.0931 5652 btwampfl (380b798d30c56ede4af58619d0e86ccb) C:\Windows\system32\drivers\btwampfl.sys
17:45:17.0963 5652 btwampfl - ok
17:45:18.0009 5652 btwaudio (ba5622f5544c6c445dff1a05acc8b19d) C:\Windows\system32\drivers\btwaudio.sys
17:45:18.0025 5652 btwaudio - ok
17:45:18.0384 5652 btwavdt (a11905d0f4bd34771f195217b6aa5ae0) C:\Windows\system32\DRIVERS\btwavdt.sys
17:45:18.0446 5652 btwavdt - ok
17:45:18.0758 5652 btwdins (3930e53ee0bed9dff9afa09f505d0cae) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
17:45:18.0774 5652 btwdins - ok
17:45:18.0821 5652 btwl2cap (07096d2bc22ccb6cea5a532df0be8a75) C:\Windows\system32\DRIVERS\btwl2cap.sys
17:45:18.0836 5652 btwl2cap - ok
17:45:18.0899 5652 btwrchid (bd776f32d64ec615be4563dc2747224e) C:\Windows\system32\DRIVERS\btwrchid.sys
17:45:18.0930 5652 btwrchid - ok
17:45:18.0992 5652 BVRPMPR5a64 (9887ca12f407d7fbc7f48f3678f5f0b6) C:\Windows\system32\drivers\BVRPMPR5a64.SYS
17:45:19.0039 5652 BVRPMPR5a64 - ok
17:45:19.0320 5652 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
17:45:19.0335 5652 cdfs - ok
17:45:19.0460 5652 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
17:45:19.0476 5652 cdrom - ok
17:45:19.0569 5652 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
17:45:19.0569 5652 CertPropSvc - ok
17:45:19.0694 5652 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
17:45:19.0710 5652 circlass - ok
17:45:19.0850 5652 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
17:45:19.0866 5652 CLFS - ok
17:45:20.0334 5652 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:45:20.0349 5652 clr_optimization_v2.0.50727_32 - ok
17:45:20.0443 5652 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:45:20.0459 5652 clr_optimization_v2.0.50727_64 - ok
17:45:20.0880 5652 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:45:21.0051 5652 clr_optimization_v4.0.30319_32 - ok
17:45:21.0129 5652 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:45:21.0129 5652 clr_optimization_v4.0.30319_64 - ok
17:45:21.0176 5652 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
17:45:21.0192 5652 CmBatt - ok
17:45:21.0301 5652 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
17:45:21.0332 5652 cmdide - ok
17:45:21.0597 5652 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
17:45:21.0613 5652 CNG - ok
17:45:21.0660 5652 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
17:45:21.0660 5652 Compbatt - ok
17:45:21.0738 5652 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
17:45:21.0738 5652 CompositeBus - ok
17:45:21.0769 5652 COMSysApp - ok
17:45:21.0800 5652 connctfy - ok
17:45:21.0800 5652 connctfyMP - ok
17:45:22.0128 5652 cpuz130 - ok
17:45:22.0221 5652 cpuz135 - ok
17:45:22.0331 5652 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
17:45:22.0346 5652 crcdisk - ok
17:45:22.0580 5652 CryptSvc (f02786b66375292e58c8777082d4396d) C:\Windows\system32\cryptsvc.dll
17:45:22.0752 5652 CryptSvc - ok
17:45:23.0173 5652 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
17:45:23.0173 5652 DcomLaunch - ok
17:45:23.0251 5652 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
17:45:23.0251 5652 defragsvc - ok
17:45:23.0345 5652 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
17:45:23.0345 5652 DfsC - ok
17:45:23.0766 5652 DfSdkS (d51b32ba3897f630d99713b74b40d6a2) C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 2012\DfsdkS64.exe
17:45:23.0828 5652 DfSdkS - ok
17:45:23.0906 5652 dgderdrv - ok
17:45:24.0281 5652 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
17:45:24.0421 5652 Dhcp - ok
17:45:24.0452 5652 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
17:45:24.0452 5652 discache - ok
17:45:24.0483 5652 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
17:45:24.0483 5652 Disk - ok
17:45:24.0561 5652 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
17:45:24.0561 5652 Dnscache - ok
17:45:24.0811 5652 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
17:45:24.0873 5652 dot3svc - ok
17:45:24.0920 5652 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
17:45:24.0920 5652 DPS - ok
17:45:25.0014 5652 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
17:45:25.0014 5652 drmkaud - ok
17:45:25.0451 5652 DsiWMIService (61e894fe1e9cc720c909e6e343351794) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
17:45:25.0466 5652 DsiWMIService - ok
17:45:25.0809 5652 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
17:45:25.0903 5652 DXGKrnl - ok
17:45:25.0981 5652 EagleX64 - ok
17:45:26.0028 5652 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
17:45:26.0028 5652 EapHost - ok
17:45:26.0667 5652 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
17:45:26.0839 5652 ebdrv - ok
17:45:27.0276 5652 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
17:45:27.0338 5652 EFS - ok
17:45:27.0822 5652 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
17:45:27.0869 5652 ehRecvr - ok
17:45:27.0900 5652 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
17:45:27.0900 5652 ehSched - ok
17:45:28.0259 5652 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
17:45:28.0305 5652 elxstor - ok
17:45:28.0727 5652 ePowerSvc (49eef52bfb986a2b5d70f4ec12637d7b) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
17:45:28.0727 5652 ePowerSvc - ok
17:45:29.0241 5652 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
17:45:29.0288 5652 ErrDev - ok
17:45:29.0507 5652 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
17:45:29.0538 5652 EventSystem - ok
17:45:29.0772 5652 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
17:45:29.0819 5652 exfat - ok
17:45:30.0006 5652 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
17:45:30.0021 5652 fastfat - ok
17:45:30.0365 5652 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
17:45:30.0411 5652 Fax - ok
17:45:30.0458 5652 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
17:45:30.0474 5652 fdc - ok
17:45:30.0567 5652 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
17:45:30.0599 5652 fdPHost - ok
17:45:30.0786 5652 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
17:45:30.0864 5652 FDResPub - ok
17:45:30.0957 5652 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
17:45:30.0957 5652 FileInfo - ok
17:45:31.0051 5652 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
17:45:31.0067 5652 Filetrace - ok
17:45:31.0098 5652 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
17:45:31.0098 5652 flpydisk - ok
17:45:31.0363 5652 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
17:45:31.0394 5652 FltMgr - ok
17:45:31.0675 5652 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
17:45:31.0722 5652 FontCache - ok
17:45:31.0909 5652 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:45:31.0909 5652 FontCache3.0.0.0 - ok
17:45:32.0081 5652 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
17:45:32.0096 5652 FsDepends - ok
17:45:32.0159 5652 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
17:45:32.0174 5652 Fs_Rec - ok
17:45:32.0237 5652 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
17:45:32.0237 5652 fvevol - ok
17:45:32.0268 5652 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
17:45:32.0283 5652 gagp30kx - ok
17:45:32.0471 5652 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
17:45:32.0642 5652 gpsvc - ok
17:45:32.0705 5652 GRemoteBus (5bd454f0e896150e92dba95b4e23289a) C:\Windows\system32\DRIVERS\GRemoteBus64.sys
17:45:32.0751 5652 GRemoteBus - ok
17:45:33.0157 5652 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:45:33.0157 5652 gupdate - ok
17:45:33.0204 5652 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:45:33.0204 5652 gupdatem - ok
17:45:33.0251 5652 gusvc (408ddd80eede47175f6844817b90213e) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:45:33.0266 5652 gusvc - ok
17:45:33.0594 5652 hamachi (1e6438d4ea6e1174a3b3b1edc4de660b) C:\Windows\system32\DRIVERS\hamachi.sys
17:45:33.0672 5652 hamachi - ok
17:45:33.0687 5652 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
17:45:33.0703 5652 hcw85cir - ok
17:45:33.0999 5652 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
17:45:34.0062 5652 HdAudAddService - ok
17:45:34.0109 5652 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
17:45:34.0124 5652 HDAudBus - ok
17:45:34.0155 5652 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
17:45:34.0171 5652 HidBatt - ok
17:45:34.0187 5652 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
17:45:34.0202 5652 HidBth - ok
17:45:34.0202 5652 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
17:45:34.0218 5652 HidIr - ok
17:45:34.0311 5652 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
17:45:34.0311 5652 hidserv - ok
17:45:34.0545 5652 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
17:45:34.0561 5652 HidUsb - ok
17:45:34.0670 5652 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
17:45:34.0670 5652 hkmsvc - ok
17:45:34.0733 5652 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
17:45:34.0764 5652 HomeGroupListener - ok
17:45:34.0842 5652 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
17:45:34.0857 5652 HomeGroupProvider - ok
17:45:35.0232 5652 HP LaserJet Service (f90dd89e8a482ac976dd4e1029802e49) C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
17:45:35.0247 5652 HP LaserJet Service - ok
17:45:35.0279 5652 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
17:45:35.0294 5652 HpSAMD - ok
17:45:35.0388 5652 HPSIService (4e9cae3200a46135de01ce22baf832be) C:\Windows\system32\HPSIsvc.exe
17:45:35.0388 5652 HPSIService - ok
17:45:35.0575 5652 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
17:45:35.0637 5652 HTTP - ok
17:45:35.0700 5652 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
17:45:35.0700 5652 hwpolicy - ok
17:45:35.0809 5652 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
17:45:35.0887 5652 i8042prt - ok
17:45:36.0636 5652 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
17:45:36.0683 5652 iaStorV - ok
17:45:37.0026 5652 IDriverT (daf66902f08796f9c694901660e5a64a) C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
17:45:37.0026 5652 IDriverT - ok
17:45:37.0431 5652 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:45:37.0587 5652 idsvc - ok
17:45:37.0931 5652 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
17:45:37.0962 5652 iirsp - ok
17:45:38.0399 5652 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
17:45:38.0461 5652 IKEEXT - ok
17:45:39.0834 5652 IntcAzAudAddService (feadc18677a85a123e95a9b976101120) C:\Windows\system32\drivers\RTKVHD64.sys
17:45:39.0959 5652 IntcAzAudAddService - ok
17:45:40.0676 5652 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
17:45:40.0770 5652 intelide - ok
17:45:40.0848 5652 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
17:45:40.0863 5652 intelppm - ok
17:45:40.0910 5652 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
17:45:40.0941 5652 IPBusEnum - ok
17:45:40.0988 5652 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:45:41.0019 5652 IpFilterDriver - ok
17:45:41.0409 5652 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
17:45:41.0425 5652 iphlpsvc - ok
17:45:41.0581 5652 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
17:45:41.0597 5652 IPMIDRV - ok
17:45:41.0659 5652 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
17:45:41.0690 5652 IPNAT - ok
17:45:41.0784 5652 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
17:45:41.0784 5652 IRENUM - ok
17:45:42.0018 5652 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
17:45:42.0049 5652 isapnp - ok
17:45:42.0673 5652 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
17:45:42.0751 5652 iScsiPrt - ok
17:45:42.0829 5652 k57nd60a (c9b4ecc187581e5bf3f76648884b7829) C:\Windows\system32\DRIVERS\k57nd60a.sys
17:45:42.0860 5652 k57nd60a - ok
17:45:42.0938 5652 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
17:45:42.0954 5652 kbdclass - ok
17:45:43.0235 5652 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
17:45:43.0281 5652 kbdhid - ok
17:45:43.0375 5652 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
17:45:43.0375 5652 KeyIso - ok
17:45:43.0500 5652 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
17:45:43.0500 5652 KSecDD - ok
17:45:43.0796 5652 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
17:45:43.0812 5652 KSecPkg - ok
17:45:43.0859 5652 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
17:45:43.0874 5652 ksthunk - ok
17:45:44.0249 5652 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
17:45:44.0342 5652 KtmRm - ok
17:45:44.0451 5652 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\system32\srvsvc.dll
17:45:44.0451 5652 LanmanServer - ok
17:45:44.0888 5652 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
17:45:44.0919 5652 LanmanWorkstation - ok
17:45:44.0997 5652 lirsgt (156ab2e56dc3ca0b582e3362e07cded7) C:\Windows\system32\DRIVERS\lirsgt.sys
17:45:45.0013 5652 lirsgt - ok
17:45:45.0044 5652 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
17:45:45.0060 5652 lltdio - ok
17:45:45.0294 5652 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
17:45:45.0341 5652 lltdsvc - ok
17:45:45.0465 5652 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
17:45:45.0497 5652 lmhosts - ok
17:45:45.0606 5652 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
17:45:45.0606 5652 LSI_FC - ok
17:45:45.0684 5652 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
17:45:45.0699 5652 LSI_SAS - ok
17:45:45.0699 5652 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:45:45.0715 5652 LSI_SAS2 - ok
17:45:45.0762 5652 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:45:45.0777 5652 LSI_SCSI - ok
17:45:45.0793 5652 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
17:45:45.0793 5652 luafv - ok
17:45:45.0824 5652 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
17:45:45.0840 5652 MBAMProtector - ok
17:45:46.0651 5652 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
17:45:46.0667 5652 MBAMService - ok
17:45:46.0776 5652 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
17:45:46.0807 5652 Mcx2Svc - ok
17:45:47.0150 5652 MDM (11f714f85530a2bd134074dc30e99fca) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
17:45:47.0166 5652 MDM - ok
17:45:47.0259 5652 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
17:45:47.0275 5652 megasas - ok
17:45:47.0400 5652 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
17:45:47.0462 5652 MegaSR - ok
17:45:47.0681 5652 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
17:45:47.0696 5652 Microsoft Office Groove Audit Service - ok
17:45:47.0821 5652 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:45:47.0821 5652 MMCSS - ok
17:45:47.0883 5652 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
17:45:47.0899 5652 Modem - ok
17:45:47.0930 5652 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
17:45:47.0930 5652 monitor - ok
17:45:47.0993 5652 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
17:45:48.0008 5652 mouclass - ok
17:45:48.0055 5652 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
17:45:48.0071 5652 mouhid - ok
17:45:48.0086 5652 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
17:45:48.0102 5652 mountmgr - ok
17:45:48.0414 5652 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
17:45:48.0461 5652 MpFilter - ok
17:45:48.0507 5652 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
17:45:48.0523 5652 mpio - ok
17:45:48.0679 5652 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
17:45:48.0695 5652 mpsdrv - ok
17:45:48.0866 5652 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
17:45:48.0944 5652 MpsSvc - ok
17:45:49.0131 5652 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
17:45:49.0147 5652 MRxDAV - ok
17:45:49.0365 5652 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:45:49.0365 5652 mrxsmb - ok
17:45:49.0755 5652 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:45:49.0802 5652 mrxsmb10 - ok
17:45:49.0833 5652 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:45:49.0833 5652 mrxsmb20 - ok
17:45:50.0114 5652 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
17:45:50.0145 5652 msahci - ok
17:45:50.0161 5652 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
17:45:50.0177 5652 msdsm - ok
17:45:50.0317 5652 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
17:45:50.0333 5652 MSDTC - ok
17:45:50.0535 5652 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
17:45:50.0551 5652 Msfs - ok
17:45:50.0629 5652 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
17:45:50.0676 5652 mshidkmdf - ok
17:45:50.0847 5652 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
17:45:51.0518 5652 msisadrv - ok

[kubakoumak]

2. část:

17:45:51.0581 5652 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
17:45:51.0612 5652 MSiSCSI - ok
17:45:51.0612 5652 msiserver - ok
17:45:51.0674 5652 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
17:45:51.0690 5652 MSKSSRV - ok
17:45:51.0939 5652 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:45:51.0939 5652 MsMpSvc - ok
17:45:52.0002 5652 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
17:45:52.0017 5652 MSPCLOCK - ok
17:45:52.0033 5652 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
17:45:52.0049 5652 MSPQM - ok
17:45:52.0236 5652 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
17:45:52.0236 5652 MsRPC - ok
17:45:52.0423 5652 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
17:45:52.0423 5652 mssmbios - ok
17:45:52.0579 5652 MSSQL$SQLEXPRESS - ok
17:45:52.0953 5652 MSSQLServerADHelper100 (7a2a8c975356858eb38466a6b1592e8d) c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
17:45:52.0969 5652 MSSQLServerADHelper100 - ok
17:45:53.0031 5652 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
17:45:53.0031 5652 MSTEE - ok
17:45:53.0047 5652 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
17:45:53.0063 5652 MTConfig - ok
17:45:53.0094 5652 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
17:45:53.0094 5652 Mup - ok
17:45:53.0141 5652 mvusbews (09818558c2579b45d78ab18a759b0ca8) C:\Windows\system32\Drivers\mvusbews.sys
17:45:53.0156 5652 mvusbews - ok
17:45:53.0406 5652 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
17:45:53.0453 5652 napagent - ok
17:45:53.0577 5652 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
17:45:53.0671 5652 NativeWifiP - ok
17:45:53.0827 5652 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
17:45:53.0889 5652 NDIS - ok
17:45:53.0936 5652 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
17:45:53.0983 5652 NdisCap - ok
17:45:54.0045 5652 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
17:45:54.0045 5652 NdisTapi - ok
17:45:54.0092 5652 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
17:45:54.0123 5652 Ndisuio - ok
17:45:54.0170 5652 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
17:45:54.0186 5652 NdisWan - ok
17:45:54.0217 5652 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
17:45:54.0233 5652 NDProxy - ok
17:45:54.0279 5652 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
17:45:54.0279 5652 NetBIOS - ok
17:45:54.0326 5652 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
17:45:54.0373 5652 NetBT - ok
17:45:54.0451 5652 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
17:45:54.0451 5652 Netlogon - ok
17:45:54.0513 5652 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
17:45:54.0545 5652 Netman - ok
17:45:54.0857 5652 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:45:55.0075 5652 NetMsmqActivator - ok
17:45:55.0091 5652 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:45:55.0091 5652 NetPipeActivator - ok
17:45:55.0169 5652 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
17:45:55.0169 5652 netprofm - ok
17:45:55.0169 5652 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:45:55.0184 5652 NetTcpActivator - ok
17:45:55.0184 5652 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:45:55.0184 5652 NetTcpPortSharing - ok
17:45:55.0309 5652 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
17:45:55.0340 5652 nfrd960 - ok
17:45:55.0434 5652 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
17:45:55.0512 5652 NisDrv - ok
17:45:55.0933 5652 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
17:45:55.0949 5652 NisSrv - ok
17:45:56.0261 5652 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
17:45:56.0292 5652 NlaSvc - ok
17:45:56.0323 5652 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
17:45:56.0323 5652 Npfs - ok
17:45:56.0354 5652 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
17:45:56.0354 5652 nsi - ok
17:45:56.0385 5652 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
17:45:56.0385 5652 nsiproxy - ok
17:45:56.0697 5652 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
17:45:56.0807 5652 Ntfs - ok
17:45:56.0869 5652 NTI IScheduleSvc - ok
17:45:58.0367 5652 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
17:45:58.0382 5652 Null - ok
17:45:58.0601 5652 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
17:45:58.0616 5652 nvraid - ok
17:45:58.0725 5652 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
17:45:58.0741 5652 nvstor - ok
17:45:58.0913 5652 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
17:45:58.0944 5652 nv_agp - ok
17:45:59.0225 5652 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:45:59.0240 5652 odserv - ok
17:45:59.0427 5652 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
17:45:59.0459 5652 ohci1394 - ok
17:45:59.0599 5652 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:45:59.0599 5652 ose - ok
17:45:59.0708 5652 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:45:59.0755 5652 p2pimsvc - ok
17:45:59.0833 5652 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
17:45:59.0880 5652 p2psvc - ok
17:46:00.0067 5652 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
17:46:00.0098 5652 Parport - ok
17:46:00.0176 5652 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
17:46:00.0176 5652 partmgr - ok
17:46:00.0223 5652 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
17:46:00.0254 5652 PcaSvc - ok
17:46:00.0317 5652 pccsmcfd (bc0018c2d29f655188a0ed3fa94fdb24) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
17:46:00.0332 5652 pccsmcfd - ok
17:46:00.0488 5652 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
17:46:00.0504 5652 pci - ok
17:46:00.0629 5652 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
17:46:00.0629 5652 pciide - ok
17:46:00.0925 5652 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
17:46:00.0956 5652 pcmcia - ok
17:46:01.0034 5652 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
17:46:01.0034 5652 pcw - ok
17:46:01.0159 5652 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
17:46:01.0175 5652 PEAUTH - ok
17:46:01.0814 5652 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
17:46:01.0861 5652 PerfHost - ok
17:46:03.0405 5652 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
17:46:03.0577 5652 pla - ok
17:46:03.0858 5652 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
17:46:03.0920 5652 PlugPlay - ok
17:46:03.0967 5652 PnkBstrA - ok
17:46:03.0998 5652 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
17:46:04.0014 5652 PNRPAutoReg - ok
17:46:04.0061 5652 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:46:04.0061 5652 PNRPsvc - ok
17:46:04.0185 5652 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
17:46:04.0201 5652 PolicyAgent - ok
17:46:04.0341 5652 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
17:46:04.0341 5652 Power - ok
17:46:04.0747 5652 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
17:46:04.0778 5652 PptpMiniport - ok
17:46:04.0934 5652 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
17:46:04.0965 5652 Processor - ok
17:46:05.0137 5652 ProfSvc (97293447431311c06703368ad0f6c4be) C:\Windows\system32\profsvc.dll
17:46:05.0153 5652 ProfSvc - ok
17:46:05.0355 5652 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
17:46:05.0355 5652 ProtectedStorage - ok
17:46:05.0667 5652 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
17:46:05.0667 5652 Psched - ok
17:46:06.0042 5652 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
17:46:06.0135 5652 ql2300 - ok
17:46:06.0635 5652 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
17:46:06.0666 5652 ql40xx - ok
17:46:06.0869 5652 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
17:46:06.0978 5652 QWAVE - ok
17:46:06.0993 5652 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
17:46:07.0009 5652 QWAVEdrv - ok
17:46:07.0149 5652 RapiMgr (a55e7d0d873b2c97585b3b5926ac6ade) C:\Windows\WindowsMobile\rapimgr.dll
17:46:07.0165 5652 RapiMgr - ok
17:46:07.0243 5652 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
17:46:07.0259 5652 RasAcd - ok
17:46:07.0415 5652 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
17:46:07.0493 5652 RasAgileVpn - ok
17:46:07.0633 5652 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
17:46:07.0680 5652 RasAuto - ok
17:46:07.0774 5652 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:46:07.0805 5652 Rasl2tp - ok
17:46:07.0883 5652 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
17:46:07.0945 5652 RasMan - ok
17:46:07.0992 5652 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
17:46:08.0008 5652 RasPppoe - ok
17:46:08.0195 5652 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
17:46:08.0210 5652 RasSstp - ok
17:46:08.0320 5652 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
17:46:08.0335 5652 rdbss - ok
17:46:08.0366 5652 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
17:46:08.0366 5652 rdpbus - ok
17:46:08.0382 5652 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:46:08.0382 5652 RDPCDD - ok
17:46:08.0429 5652 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
17:46:08.0429 5652 RDPENCDD - ok
17:46:08.0460 5652 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
17:46:08.0460 5652 RDPREFMP - ok
17:46:08.0554 5652 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
17:46:08.0569 5652 RDPWD - ok
17:46:08.0632 5652 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
17:46:08.0647 5652 rdyboost - ok
17:46:09.0006 5652 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
17:46:09.0068 5652 RemoteAccess - ok
17:46:09.0271 5652 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
17:46:09.0349 5652 RemoteRegistry - ok
17:46:09.0427 5652 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
17:46:09.0458 5652 RFCOMM - ok
17:46:09.0724 5652 RivaTuner64 (9b29bbd1427f71a854c2b400f3bbcf55) C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys
17:46:09.0724 5652 RivaTuner64 - ok
17:46:09.0833 5652 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
17:46:09.0848 5652 RpcEptMapper - ok
17:46:09.0864 5652 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
17:46:09.0880 5652 RpcLocator - ok
17:46:10.0004 5652 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
17:46:10.0004 5652 RpcSs - ok
17:46:10.0192 5652 RsFx0105 (c9fe05a63c500abe3afa5786504c4d36) C:\Windows\system32\DRIVERS\RsFx0105.sys
17:46:10.0223 5652 RsFx0105 - ok
17:46:10.0254 5652 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
17:46:10.0270 5652 rspndr - ok
17:46:10.0363 5652 RSUSBSTOR (3ceee53bbf8ba284ff44585cec0162fe) C:\Windows\system32\Drivers\RtsUStor.sys
17:46:10.0379 5652 RSUSBSTOR - ok
17:46:10.0441 5652 RTHDMIAzAudService (4e821c740a675f6d040be41d59a62b1d) C:\Windows\system32\drivers\RtHDMIVX.sys
17:46:10.0472 5652 RTHDMIAzAudService - ok
17:46:10.0504 5652 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
17:46:10.0519 5652 SamSs - ok
17:46:10.0909 5652 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
17:46:10.0925 5652 sbp2port - ok
17:46:11.0159 5652 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
17:46:11.0206 5652 SCardSvr - ok
17:46:11.0252 5652 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
17:46:11.0268 5652 scfilter - ok
17:46:11.0564 5652 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
17:46:11.0611 5652 Schedule - ok
17:46:11.0798 5652 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
17:46:11.0798 5652 SCPolicySvc - ok
17:46:11.0986 5652 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
17:46:12.0048 5652 SDRSVC - ok
17:46:12.0329 5652 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
17:46:12.0391 5652 secdrv - ok
17:46:12.0578 5652 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
17:46:12.0578 5652 seclogon - ok
17:46:12.0672 5652 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
17:46:12.0672 5652 SENS - ok
17:46:12.0734 5652 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
17:46:12.0766 5652 SensrSvc - ok
17:46:12.0781 5652 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
17:46:12.0828 5652 Serenum - ok
17:46:12.0875 5652 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
17:46:12.0890 5652 Serial - ok
17:46:12.0922 5652 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
17:46:12.0937 5652 sermouse - ok
17:46:13.0000 5652 ServiceLayer - ok
17:46:13.0280 5652 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
17:46:13.0327 5652 SessionEnv - ok
17:46:13.0343 5652 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
17:46:13.0358 5652 sffdisk - ok
17:46:13.0452 5652 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
17:46:13.0468 5652 sffp_mmc - ok
17:46:13.0592 5652 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys
17:46:13.0608 5652 sffp_sd - ok
17:46:13.0639 5652 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
17:46:13.0655 5652 sfloppy - ok
17:46:13.0717 5652 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
17:46:13.0795 5652 SharedAccess - ok
17:46:14.0014 5652 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
17:46:14.0060 5652 ShellHWDetection - ok
17:46:14.0092 5652 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:46:14.0107 5652 SiSRaid2 - ok
17:46:14.0123 5652 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
17:46:14.0123 5652 SiSRaid4 - ok
17:46:14.0232 5652 SkypeUpdate (c70aebd3608ed9fcea2a1bae83567ffc) C:\Program Files (x86)\Skype\Updater\Updater.exe
17:46:14.0232 5652 SkypeUpdate - ok
17:46:14.0279 5652 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
17:46:14.0294 5652 Smb - ok
17:46:14.0357 5652 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
17:46:14.0357 5652 SNMPTRAP - ok
17:46:14.0435 5652 Soluto (f9369327409492097b0bb7ce86bd29de) C:\Windows\system32\DRIVERS\Soluto.sys
17:46:14.0466 5652 Soluto - ok
17:46:14.0872 5652 SolutoService (ed8397986be35c11bfb321636d6991ee) C:\Program Files\Soluto\SolutoService.exe
17:46:14.0950 5652 SolutoService - ok
17:46:15.0090 5652 Speechsrv (52b9158cbf1e0b627634ef50b27ff14b) C:\Program Files (x86)\LAN Voice Chat\Speechs.exe
17:46:15.0090 5652 Speechsrv - ok
17:46:15.0184 5652 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
17:46:15.0199 5652 spldr - ok
17:46:15.0511 5652 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
17:46:15.0527 5652 Spooler - ok
17:46:16.0416 5652 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
17:46:16.0541 5652 sppsvc - ok
17:46:17.0056 5652 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
17:46:17.0149 5652 sppuinotify - ok
17:46:17.0570 5652 sptd (602884696850c86434530790b110e8eb) C:\Windows\system32\Drivers\sptd.sys
17:46:17.0570 5652 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850c86434530790b110e8eb
17:46:17.0602 5652 sptd ( LockedFile.Multi.Generic ) - warning
17:46:17.0602 5652 sptd - detected LockedFile.Multi.Generic (1)
17:46:17.0976 5652 SQLAgent$SQLEXPRESS (45e65fb17a4cd5facbd3ca16c8334c82) c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
17:46:18.0007 5652 SQLAgent$SQLEXPRESS - ok
17:46:18.0647 5652 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
17:46:18.0662 5652 srv - ok
17:46:18.0865 5652 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
17:46:18.0928 5652 srv2 - ok
17:46:19.0240 5652 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
17:46:19.0255 5652 srvnet - ok
17:46:19.0302 5652 ssadbus (8f8324ed1de63ffc7b1a02cd2d963c72) C:\Windows\system32\DRIVERS\ssadbus.sys
17:46:19.0333 5652 ssadbus - ok
17:46:19.0489 5652 ssadmdfl (58221efcb74167b73667f0024c661ce0) C:\Windows\system32\DRIVERS\ssadmdfl.sys
17:46:19.0505 5652 ssadmdfl - ok
17:46:19.0552 5652 ssadmdm (4da7c71bfac5ad71255b7e4cab980163) C:\Windows\system32\DRIVERS\ssadmdm.sys
17:46:19.0583 5652 ssadmdm - ok
17:46:19.0661 5652 ssadserd (d33d1bd3ec0e766211a234f56a12726d) C:\Windows\system32\DRIVERS\ssadserd.sys
17:46:19.0676 5652 ssadserd - ok
17:46:19.0754 5652 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
17:46:19.0754 5652 SSDPSRV - ok
17:46:19.0832 5652 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
17:46:19.0864 5652 SstpSvc - ok
17:46:19.0910 5652 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
17:46:19.0910 5652 stexstor - ok
17:46:20.0269 5652 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
17:46:20.0363 5652 stisvc - ok
17:46:20.0488 5652 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
17:46:20.0503 5652 swenum - ok
17:46:20.0722 5652 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
17:46:20.0753 5652 swprv - ok
17:46:20.0878 5652 SynTP (064a2530a4a7c7cec1be6a1945645be4) C:\Windows\system32\DRIVERS\SynTP.sys
17:46:20.0909 5652 SynTP - ok
17:46:21.0970 5652 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
17:46:22.0032 5652 SysMain - ok
17:46:22.0438 5652 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
17:46:22.0500 5652 TabletInputService - ok
17:46:22.0640 5652 tap0901 (e965fc7627862779ba31a4fcb7d0c1ef) C:\Windows\system32\DRIVERS\tap0901.sys
17:46:22.0656 5652 tap0901 - ok
17:46:22.0765 5652 taphss (f33fdc72298df4bf9813a55d21f4eb31) C:\Windows\system32\DRIVERS\taphss.sys
17:46:22.0781 5652 taphss - ok
17:46:22.0937 5652 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
17:46:22.0999 5652 TapiSrv - ok
17:46:23.0140 5652 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
17:46:23.0140 5652 TBS - ok
17:46:23.0623 5652 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
17:46:23.0686 5652 Tcpip - ok
17:46:24.0653 5652 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
17:46:24.0668 5652 TCPIP6 - ok
17:46:25.0183 5652 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
17:46:25.0230 5652 tcpipreg - ok
17:46:25.0308 5652 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
17:46:25.0324 5652 TDPIPE - ok
17:46:25.0417 5652 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
17:46:25.0433 5652 TDTCP - ok
17:46:25.0542 5652 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
17:46:25.0589 5652 tdx - ok
17:46:26.0010 5652 TeamViewer7 (74fc70ae64a7b7dabec9697ce0a1f4fa) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
17:46:26.0072 5652 TeamViewer7 - ok
17:46:26.0369 5652 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
17:46:26.0384 5652 TermDD - ok
17:46:26.0915 5652 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
17:46:26.0977 5652 TermService - ok
17:46:27.0133 5652 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
17:46:27.0149 5652 Themes - ok
17:46:27.0398 5652 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:46:27.0414 5652 THREADORDER - ok
17:46:27.0570 5652 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
17:46:27.0570 5652 TrkWks - ok
17:46:27.0757 5652 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
17:46:27.0788 5652 TrustedInstaller - ok
17:46:27.0882 5652 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:46:27.0898 5652 tssecsrv - ok
17:46:27.0944 5652 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
17:46:27.0960 5652 tunnel - ok
17:46:28.0163 5652 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
17:46:28.0303 5652 uagp35 - ok
17:46:28.0600 5652 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
17:46:28.0646 5652 udfs - ok
17:46:29.0146 5652 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
17:46:29.0161 5652 UI0Detect - ok
17:46:29.0177 5652 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
17:46:29.0192 5652 uliagpkx - ok
17:46:29.0270 5652 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
17:46:29.0270 5652 umbus - ok
17:46:29.0426 5652 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
17:46:29.0442 5652 UmPass - ok
17:46:29.0551 5652 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
17:46:29.0614 5652 upnphost - ok
17:46:29.0676 5652 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\Windows\system32\drivers\usbaudio.sys
17:46:29.0692 5652 usbaudio - ok
17:46:29.0832 5652 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
17:46:29.0910 5652 usbccgp - ok
17:46:30.0097 5652 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
17:46:30.0113 5652 usbcir - ok
17:46:30.0160 5652 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
17:46:30.0175 5652 usbehci - ok
17:46:30.0238 5652 usbfilter (2c780746dc44a28fe67004dc58173f05) C:\Windows\system32\DRIVERS\usbfilter.sys
17:46:30.0253 5652 usbfilter - ok
17:46:30.0581 5652 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
17:46:30.0628 5652 usbhub - ok
17:46:30.0846 5652 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\DRIVERS\usbohci.sys
17:46:30.0877 5652 usbohci - ok
17:46:30.0986 5652 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
17:46:30.0986 5652 usbprint - ok
17:46:31.0064 5652 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
17:46:31.0080 5652 usbscan - ok
17:46:31.0142 5652 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:46:31.0158 5652 USBSTOR - ok
17:46:31.0345 5652 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\drivers\usbuhci.sys
17:46:31.0345 5652 usbuhci - ok
17:46:32.0156 5652 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
17:46:32.0266 5652 usbvideo - ok
17:46:32.0312 5652 usb_rndisx (70d05ee263568a742d14e1876df80532) C:\Windows\system32\DRIVERS\usb8023x.sys
17:46:32.0328 5652 usb_rndisx - ok
17:46:32.0453 5652 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
17:46:32.0468 5652 UxSms - ok
17:46:32.0578 5652 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
17:46:32.0578 5652 VaultSvc - ok
17:46:32.0640 5652 VBoxNetAdp (e9a2485ea54122837c41b0147edd3f52) C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
17:46:32.0671 5652 VBoxNetAdp - ok
17:46:32.0702 5652 VBoxNetFlt - ok
17:46:32.0780 5652 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
17:46:32.0780 5652 vdrvroot - ok
17:46:32.0983 5652 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
17:46:33.0030 5652 vds - ok
17:46:33.0092 5652 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
17:46:33.0108 5652 vga - ok
17:46:33.0108 5652 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
17:46:33.0124 5652 VgaSave - ok
17:46:33.0342 5652 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
17:46:33.0436 5652 vhdmp - ok
17:46:33.0576 5652 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
17:46:33.0592 5652 viaide - ok
17:46:33.0670 5652 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
17:46:33.0685 5652 volmgr - ok
17:46:33.0748 5652 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
17:46:33.0748 5652 volmgrx - ok
17:46:33.0950 5652 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
17:46:33.0982 5652 volsnap - ok
17:46:34.0013 5652 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
17:46:34.0044 5652 vsmraid - ok
17:46:34.0340 5652 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
17:46:34.0465 5652 VSS - ok
17:46:35.0011 5652 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
17:46:35.0011 5652 vwifibus - ok
17:46:35.0042 5652 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
17:46:35.0058 5652 vwififlt - ok
17:46:35.0089 5652 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
17:46:35.0105 5652 vwifimp - ok
17:46:35.0230 5652 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
17:46:35.0261 5652 W32Time - ok
17:46:35.0339 5652 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
17:46:35.0354 5652 WacomPen - ok
17:46:35.0542 5652 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
17:46:35.0588 5652 WANARP - ok
17:46:35.0588 5652 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
17:46:35.0588 5652 Wanarpv6 - ok
17:46:36.0041 5652 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
17:46:36.0181 5652 WatAdminSvc - ok
17:46:36.0540 5652 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
17:46:36.0618 5652 wbengine - ok
17:46:37.0242 5652 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
17:46:37.0304 5652 WbioSrvc - ok
17:46:37.0460 5652 WcesComm (8bda6db43aa54e8bb5e0794541ddc209) C:\Windows\WindowsMobile\wcescomm.dll
17:46:37.0507 5652 WcesComm - ok
17:46:37.0648 5652 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
17:46:37.0694 5652 wcncsvc - ok
17:46:37.0726 5652 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
17:46:37.0741 5652 WcsPlugInService - ok
17:46:38.0162 5652 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
17:46:38.0178 5652 Wd - ok
17:46:38.0365 5652 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
17:46:38.0396 5652 Wdf01000 - ok
17:46:38.0521 5652 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:46:38.0537 5652 WdiServiceHost - ok
17:46:38.0537 5652 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:46:38.0537 5652 WdiSystemHost - ok
17:46:38.0677 5652 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
17:46:38.0724 5652 WebClient - ok
17:46:38.0958 5652 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
17:46:39.0005 5652 Wecsvc - ok
17:46:39.0098 5652 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
17:46:39.0098 5652 wercplsupport - ok
17:46:39.0208 5652 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
17:46:39.0208 5652 WerSvc - ok
17:46:39.0301 5652 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
17:46:39.0332 5652 WfpLwf - ok
17:46:39.0364 5652 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
17:46:39.0364 5652 WIMMount - ok
17:46:39.0582 5652 WinDefend - ok
17:46:39.0598 5652 WinHttpAutoProxySvc - ok
17:46:39.0894 5652 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
17:46:39.0894 5652 Winmgmt - ok
17:46:40.0908 5652 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
17:46:41.0048 5652 WinRM - ok
17:46:41.0501 5652 WINUSB (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUSB.SYS
17:46:41.0594 5652 WINUSB - ok
17:46:41.0828 5652 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
17:46:41.0875 5652 Wlansvc - ok
17:46:42.0952 5652 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:46:43.0061 5652 wlidsvc - ok
17:46:43.0685 5652 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
17:46:43.0685 5652 WmiAcpi - ok
17:46:43.0919 5652 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
17:46:43.0919 5652 wmiApSrv - ok
17:46:44.0028 5652 WMPNetworkSvc - ok
17:46:44.0246 5652 wod0205 (92c6184e6f62d542b8dcdc93bd73cb7e) C:\Windows\system32\DRIVERS\wod0205.sys
17:46:44.0278 5652 wod0205 - ok
17:46:44.0465 5652 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
17:46:44.0480 5652 WPCSvc - ok
17:46:44.0590 5652 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
17:46:44.0605 5652 WPDBusEnum - ok
17:46:44.0808 5652 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
17:46:44.0839 5652 ws2ifsl - ok
17:46:45.0073 5652 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\System32\wscsvc.dll
17:46:45.0089 5652 wscsvc - ok
17:46:45.0104 5652 WSearch - ok
17:46:45.0557 5652 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
17:46:45.0635 5652 wuauserv - ok
17:46:46.0196 5652 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
17:46:46.0212 5652 WudfPf - ok
17:46:46.0274 5652 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:46:46.0306 5652 WUDFRd - ok
17:46:46.0540 5652 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
17:46:46.0680 5652 wudfsvc - ok
17:46:46.0774 5652 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
17:46:46.0852 5652 WwanSvc - ok
17:46:46.0976 5652 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
17:46:47.0803 5652 \Device\Harddisk0\DR0 - ok
17:46:47.0834 5652 Boot (0x1200) (a9a0c1407d095f79a386cb50d84a225b) \Device\Harddisk0\DR0\Partition0
17:46:47.0834 5652 \Device\Harddisk0\DR0\Partition0 - ok
17:46:47.0866 5652 Boot (0x1200) (7327d21ca32b85bbe966ad8784526809) \Device\Harddisk0\DR0\Partition1
17:46:47.0866 5652 \Device\Harddisk0\DR0\Partition1 - ok
17:46:47.0897 5652 Boot (0x1200) (d8f6af20e74d620a2b62c40e235a2487) \Device\Harddisk0\DR0\Partition2
17:46:47.0912 5652 \Device\Harddisk0\DR0\Partition2 - ok
17:46:47.0912 5652 ============================================================
17:46:47.0912 5652 Scan finished
17:46:47.0912 5652 ============================================================
17:46:47.0928 1792 Detected object count: 1
17:46:47.0928 1792 Actual detected object count: 1
17:47:08.0489 1792 C:\Windows\system32\Drivers\sptd.sys - copied to quarantine
17:47:08.0520 1792 sptd ( LockedFile.Multi.Generic ) - User select action: Quarantine
17:47:17.0833 1548 Deinitialize success

Combofix běžel taky v pohodě, ale nevytvořil se mi log :-/. Jak koukám, tak koukám - log nikde Není to ani skrytý soubor, mám to spustit znovu?

[Žbeky]

Zkus