Prosím o kontrolu logu Vyřešeno

[AngelikaB]

Ahojky mám častý problém s počítačem tak jsem dal kontrolu v cureit ten mi našel 39 trojanu pak jsem pustil mbam zde dva logy jeden jsem musel vypnout protože se mi přehříval pc

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.10.14.05

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 6.0.2900.5512
Home :: PETR-065E494E33 [administrátor]

14.10.2013 14:42:12
mbam-log-2013-10-14 (14-42-12).txt

Typ: Kompletní kontrola (C:\|D:\|E:\|F:\|G:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 42938
Uplynulý čas: 11 minut, 6 sekund [přerušeno]

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 1
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SETUP.EXE (PUP.Optional.Amonetize) -> Přesun do karantény a smazání se zdařilo.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 21
C:\Program Files\LemurLeap\updateLemurLeap.exe (PUP.Optional.LemurLeap.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Home\Data aplikací\SwvUpdater\Updater.exe (PUP.Optional.Amonetize) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Dokumenty\Stažené soubory\DTLite4471-0335.exe (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Local Settings\Temp\77Zip973867.exe (Adware.InstallBrain) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Local Settings\Temp\AskPIP_FF_.exe (PUP.Optional.BundledToolBar.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Local Settings\Temp\nsfCD.tmp (PUP.Optional.Somoto.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Local Settings\Temp\nsnB2.tmp (PUP.Optional.Somoto.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Local Settings\Temp\bitool.dll (PUP.Optional.Somoto) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Local Settings\Temp\setup.exe (PUP.Optional.Amonetize) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Local Settings\Temp\setup__1546.exe (PUP.Optional.Amonetize) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Local Settings\Temp\3704A102-BAB0-7891-B3BE-376F12CAC10C\Latest\BabMaint.exe (PUP.Optional.Babylon.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Local Settings\Temp\3704A102-BAB0-7891-B3BE-376F12CAC10C\Latest\BExternal.dll (PUP.Optional.Babylon.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Local Settings\Temp\3704A102-BAB0-7891-B3BE-376F12CAC10C\Latest\DSearchLink.exe (PUP.Optional.Delta.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Local Settings\Temp\3704A102-BAB0-7891-B3BE-376F12CAC10C\Latest\Setup.exe (PUP.Optional.Babylon.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Local Settings\Temp\tmpE5\DeltaTB.exe (PUP.Optional.Babylon.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Local Settings\Temp\ibtmpc810619\component_600 (PUP.Optional.FileScout.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Local Settings\Temp\ibtmpc810619\component_613 (PUP.Optional.SpeedAnalysis.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Local Settings\Temp\ibtmpc810619\component_640 (PUP.Optional.PurpleTech.A) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Local Settings\Temporary Internet Files\Content.IE5\0RE2QAAN\bi_downloader[1].exe (PUP.Optional.Somoto.A) -> Přesun do karantény a smazání se zdařilo.
C:\Program Files\AVS4YOU\avs4you.all.products.activator.2011.(v1.1)-mpt.exe (CrackTool.Agent) -> Přesun do karantény a smazání se zdařilo.
C:\Program Files\Company\WIndows XP Windows 7 Windows Vista crack activator\Aktivátor windows.eXe (Hacktool.ChewWGA) -> Přesun do karantény a smazání se zdařilo.

(konec)

Druhý :

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.10.14.05

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 6.0.2900.5512
Home :: PETR-065E494E33 [administrátor]

14.10.2013 14:54:14
mbam-log-2013-10-14 (14-54-14).txt

Typ: Kompletní kontrola (C:\|D:\|E:\|F:\|G:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 231961
Uplynulý čas: 42 minut, 36 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 3
C:\Documents and Settings\Home\Data aplikací\SwvUpdater (PUP.Software.Updater) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Data aplikací\Babylon (PUP.Optional.Babylon.A) -> Přesun do karantény a smazání se zdařilo.
C:\Program Files\LemurLeap (PUP.Optional.LemurLeap.A) -> Přesun do karantény a smazání se zdařilo.

Nalezené soubory: 24
C:\Program Files\LemurLeap\updateLemurLeap.exe (PUP.Optional.LemurLeap.A) -> Přesun do karantény a smazání se zdařilo.
C:\System Volume Information\_restore{EBC9817D-2DCE-48C9-BFEE-1EE90B37A0CB}\RP16\A0009238.exe (PUP.BitCoinMiner) -> Přesun do karantény a smazání se zdařilo.
C:\System Volume Information\_restore{EBC9817D-2DCE-48C9-BFEE-1EE90B37A0CB}\RP30\A0016681.exe (PUP.BitCoinMiner) -> Přesun do karantény a smazání se zdařilo.
C:\WINDOWS\inf\MSASGui.exe (PUP.BitCoinMiner) -> Přesun do karantény a smazání se zdařilo.
C:\WINDOWS\inf\msfgqcka\msfgqcka.exe (BitcoinMiner) -> Přesun do karantény a smazání se zdařilo.
C:\WINDOWS\inf\msgnpqj\msgnpqj.exe (BitcoinMiner) -> Přesun do karantény a smazání se zdařilo.
C:\WINDOWS\inf\mskumjpxi\mskumjpxi.exe (BitcoinMiner) -> Přesun do karantény a smazání se zdařilo.
C:\WINDOWS\inf\mslwojm\mslwojm.exe (BitcoinMiner) -> Přesun do karantény a smazání se zdařilo.
C:\WINDOWS\inf\msrxpcobq\msrxpcobq.exe (BitcoinMiner) -> Přesun do karantény a smazání se zdařilo.
C:\WINDOWS\inf\msuywaqu\msuywaqu.exe (BitcoinMiner) -> Přesun do karantény a smazání se zdařilo.
C:\WINDOWS\inf\msygxbq\msygxbq.exe (BitcoinMiner) -> Přesun do karantény a smazání se zdařilo.
C:\WINDOWS\inf\msrcbrxc\msrcbrxc.exe (BitcoinMiner) -> Přesun do karantény a smazání se zdařilo.
D:\System Volume Information\_restore{EBC9817D-2DCE-48C9-BFEE-1EE90B37A0CB}\RP32\A0016950.exe (Trojan.Agent.CK) -> Přesun do karantény a smazání se zdařilo.
D:\System Volume Information\_restore{EBC9817D-2DCE-48C9-BFEE-1EE90B37A0CB}\RP32\A0017007.exe (CrackTool.Agent) -> Přesun do karantény a smazání se zdařilo.
D:\Windows-7-Crack-KB971033-Original\Windows-7-Crack-KB971033-Original.rar (Hacktool.ChewWGA) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Data aplikací\SwvUpdater\Updater.xml (PUP.Software.Updater) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Data aplikací\SwvUpdater\status.cfg (PUP.Software.Updater) -> Přesun do karantény a smazání se zdařilo.
C:\WINDOWS\Tasks\AmiUpdXp.job (PUP.Software.Updater) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Home\Data aplikací\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Přesun do karantény a smazání se zdařilo.
C:\Program Files\LemurLeap\updateLemurLeap.InstallState (PUP.Optional.LemurLeap.A) -> Přesun do karantény a smazání se zdařilo.
C:\Program Files\LemurLeap\LemurLeap.Common.dll (PUP.Optional.LemurLeap.A) -> Přesun do karantény a smazání se zdařilo.
C:\Program Files\LemurLeap\LemurLeap.ico (PUP.Optional.LemurLeap.A) -> Přesun do karantény a smazání se zdařilo.
C:\Program Files\LemurLeap\LemurLeapUninstall.exe (PUP.Optional.LemurLeap.A) -> Přesun do karantény a smazání se zdařilo.
C:\Program Files\LemurLeap\Microsoft.Win32.TaskScheduler.dll (PUP.Optional.LemurLeap.A) -> Přesun do karantény a smazání se zdařilo.

(konec)

[Reklama]

[jaro3]

Vlož log z HJT:
viewtopic.php?f=70&t=5119

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.


Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[AngelikaB]

# AdwCleaner v3.008 - Report created 18/10/2013 at 20:55:34
# Updated 17/10/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Home - PETR-065E494E33
# Running from : C:\Documents and Settings\Home\Dokumenty\Stažené soubory\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\apn
Folder Deleted : C:\Documents and Settings\Home\Local Settings\Data aplikací\PackageAware

***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v24.0 (cs)

[ File : C:\Documents and Settings\Home\Data aplikací\Mozilla\Firefox\Profiles\rk76xxi2.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [974 octets] - [18/10/2013 20:54:08]
AdwCleaner[S0].txt - [904 octets] - [18/10/2013 20:55:34]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [963 octets] ##########

[jaro3]

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

Vlož log z HJT:
viewtopic.php?f=70&t=5119

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

[AngelikaB]

# AdwCleaner v3.008 - Report created 19/10/2013 at 05:44:52
# Updated 17/10/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Home - PETR-065E494E33
# Running from : C:\Documents and Settings\Home\Dokumenty\Stažené soubory\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v24.0 (cs)

[ File : C:\Documents and Settings\Home\Data aplikací\Mozilla\Firefox\Profiles\rk76xxi2.default\prefs.js ]


*************************

AdwCleaner[R1].txt - [819 octets] - [19/10/2013 05:42:54]
AdwCleaner[S1].txt - [741 octets] - [19/10/2013 05:44:52]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [800 octets] ##########

[AngelikaB]

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.7 (10.15.2013:3)
OS: Microsoft Windows XP x86
Ran by Home on so 19.10.2013 at 7:20:49,15
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on so 19.10.2013 at 7:27:28,15
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[AngelikaB]

RogueKiller V8.7.4 [Oct 16 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Home [Práva správce]
Mód : Kontrola -- Datum : 10/19/2013 07:34:51
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[BROK VAL] HKCR\[...]\command : () -> CHYBÍ

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Inline] EAT @explorer.exe (?MILLIS_PER_SECOND@GCDate@@2JB) : GrooveUtil.DLL -> HOOKED (Unknown @ 0xC8F70CD4)

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) (Standardní diskové jednotky) - WDC WD1600JB-00REA0 +++++
--- User ---
[MBR] 00bec09ac50a9c40f66688e78a089760
[BSP] 5583b75c97cd97ec4299845558e5c9f8 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 99998 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 204796620 | Size: 52619 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_10192013_073451.txt >>

[AngelikaB]

RogueKiller V8.7.4 [Oct 16 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Home [Práva správce]
Mód : Odebrat -- Datum : 10/19/2013 07:35:04
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> VYMAZÁNO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
[BROK VAL] HKCR\[...]\command : () -> vytvořené ("%1" %*)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Inline] EAT @explorer.exe (?MILLIS_PER_SECOND@GCDate@@2JB) : GrooveUtil.DLL -> HOOKED (Unknown @ 0xC8F70CD4)

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) (Standardní diskové jednotky) - WDC WD1600JB-00REA0 +++++
--- User ---
[MBR] 00bec09ac50a9c40f66688e78a089760
[BSP] 5583b75c97cd97ec4299845558e5c9f8 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 99998 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 204796620 | Size: 52619 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_10192013_073504.txt >>
RKreport[0]_S_10192013_073451.txt

[jaro3]

Vlož log z HJT:
viewtopic.php?f=70&t=5119

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.

[AngelikaB]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:34:18, on 19.10.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 SP3 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection\adawarebp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Seznam.cz\postak.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\PROGRA~1\AD-AWA~1\AdAware.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\core.2.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Ad-Aware Antivirus] "C:\Program Files\Ad-Aware Antivirus\AdAwareLauncher" --windows-run
O4 - HKLM\..\Run: [Ad-Aware Browsing Protection] "C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection\adawarebp.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Seznam Postak] "C:\Program Files\Seznam.cz\postak.exe" -s
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~3\Office12\GR99D3~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ad-Aware Service - Lavasoft Limited - C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Ad-Aware (SBAMSvc) - GFI Software - C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 6133 bytes

[AngelikaB]

21:49:48.0343 4064 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
21:49:51.0984 4064 ============================================================
21:49:51.0984 4064 Current date / time: 2013/10/19 21:49:51.0984
21:49:51.0984 4064 SystemInfo:
21:49:51.0984 4064
21:49:51.0984 4064 OS Version: 5.1.2600 ServicePack: 3.0
21:49:51.0984 4064 Product type: Workstation
21:49:51.0984 4064 ComputerName: PETR-065E494E33
21:49:51.0984 4064 UserName: Home
21:49:51.0984 4064 Windows directory: C:\WINDOWS
21:49:51.0984 4064 System windows directory: C:\WINDOWS
21:49:51.0984 4064 Processor architecture: Intel x86
21:49:51.0984 4064 Number of processors: 1
21:49:51.0984 4064 Page size: 0x1000
21:49:51.0984 4064 Boot type: Normal boot
21:49:51.0984 4064 ============================================================
21:49:56.0375 4064 Drive \Device\Harddisk0\DR0 - Size: 0x25432CDE00 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
21:49:56.0437 4064 ============================================================
21:49:56.0437 4064 \Device\Harddisk0\DR0:
21:49:56.0484 4064 MBR partitions:
21:49:56.0484 4064 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC34F28D
21:49:56.0500 4064 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xC34F30B, BlocksNum 0x66C58F5
21:49:56.0500 4064 ============================================================
21:49:56.0578 4064 C: <-> \Device\Harddisk0\DR0\Partition1
21:49:56.0609 4064 D: <-> \Device\Harddisk0\DR0\Partition2
21:49:56.0609 4064 ============================================================
21:49:56.0609 4064 Initialize success
21:49:56.0609 4064 ============================================================
21:50:10.0312 0144 ============================================================
21:50:10.0312 0144 Scan started
21:50:10.0312 0144 Mode: Manual;
21:50:10.0312 0144 ============================================================
21:50:11.0921 0144 ================ Scan system memory ========================
21:50:11.0953 0144 System memory - ok
21:50:11.0953 0144 ================ Scan services =============================
21:50:12.0656 0144 Abiosdsk - ok
21:50:12.0671 0144 abp480n5 - ok
21:50:12.0750 0144 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:50:12.0750 0144 ACPI - ok
21:50:12.0812 0144 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
21:50:13.0000 0144 ACPIEC - ok
21:50:13.0109 0144 [ AF9658974154C3B6A333D86DC2E0AAC8 ] Ad-Aware Service C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe
21:50:13.0171 0144 Ad-Aware Service - ok
21:50:13.0234 0144 [ A283108E14F3970432C21AF4C0CB1BCE ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:50:13.0281 0144 AdobeFlashPlayerUpdateSvc - ok
21:50:13.0312 0144 adpu160m - ok
21:50:13.0375 0144 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
21:50:13.0375 0144 aec - ok
21:50:13.0468 0144 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
21:50:13.0468 0144 AFD - ok
21:50:13.0484 0144 Aha154x - ok
21:50:13.0531 0144 aic78u2 - ok
21:50:13.0578 0144 aic78xx - ok
21:50:13.0734 0144 [ 933933288DF5ED26D1928215C97D05C7 ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
21:50:13.0828 0144 ALCXWDM - ok
21:50:13.0859 0144 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
21:50:14.0031 0144 Alerter - ok
21:50:14.0078 0144 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
21:50:14.0093 0144 ALG - ok
21:50:14.0109 0144 AliIde - ok
21:50:14.0187 0144 amsint - ok
21:50:14.0265 0144 AppMgmt - ok
21:50:14.0296 0144 asc - ok
21:50:14.0328 0144 asc3350p - ok
21:50:14.0390 0144 asc3550 - ok
21:50:14.0609 0144 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
21:50:14.0609 0144 aspnet_state - ok
21:50:14.0656 0144 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:50:14.0656 0144 AsyncMac - ok
21:50:14.0703 0144 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
21:50:14.0703 0144 atapi - ok
21:50:14.0734 0144 Atdisk - ok
21:50:14.0828 0144 [ A2EAEB497CA29ECAEAF0DF66AD85C57D ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
21:50:14.0875 0144 Ati HotKey Poller - ok
21:50:15.0625 0144 [ 492BD2A5F65F218D4EDE5764A3BB67E9 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:50:15.0687 0144 ati2mtag - ok
21:50:15.0734 0144 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:50:15.0750 0144 Atmarpc - ok
21:50:15.0796 0144 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
21:50:15.0906 0144 AudioSrv - ok
21:50:15.0968 0144 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
21:50:15.0968 0144 audstub - ok
21:50:16.0000 0144 autorun - ok
21:50:16.0187 0144 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
21:50:16.0218 0144 Beep - ok
21:50:16.0343 0144 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
21:50:16.0500 0144 BITS - ok
21:50:16.0562 0144 [ 64DC11630495BBFEE0616E19F91F5BF9 ] BootScreen C:\WINDOWS\System32\drivers\vidstub.sys
21:50:16.0562 0144 BootScreen - ok
21:50:16.0625 0144 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
21:50:16.0687 0144 Browser - ok
21:50:16.0734 0144 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
21:50:16.0734 0144 cbidf2k - ok
21:50:16.0765 0144 cd20xrnt - ok
21:50:16.0812 0144 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
21:50:16.0890 0144 Cdaudio - ok
21:50:16.0921 0144 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
21:50:16.0937 0144 Cdfs - ok
21:50:16.0984 0144 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:50:16.0984 0144 Cdrom - ok
21:50:17.0015 0144 Changer - ok
21:50:17.0312 0144 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
21:50:17.0312 0144 CiSvc - ok
21:50:17.0375 0144 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
21:50:17.0375 0144 ClipSrv - ok
21:50:17.0453 0144 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:50:17.0953 0144 clr_optimization_v4.0.30319_32 - ok
21:50:17.0968 0144 CmdIde - ok
21:50:18.0000 0144 COMSysApp - ok
21:50:18.0062 0144 Cpqarray - ok
21:50:18.0171 0144 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
21:50:18.0203 0144 CryptSvc - ok
21:50:18.0218 0144 dac2w2k - ok
21:50:18.0250 0144 dac960nt - ok
21:50:18.0390 0144 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
21:50:18.0406 0144 DcomLaunch - ok
21:50:18.0468 0144 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
21:50:18.0500 0144 Dhcp - ok
21:50:18.0546 0144 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
21:50:18.0562 0144 Disk - ok
21:50:18.0578 0144 dmadmin - ok
21:50:18.0718 0144 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
21:50:18.0734 0144 dmboot - ok
21:50:18.0812 0144 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
21:50:18.0812 0144 dmio - ok
21:50:18.0875 0144 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
21:50:18.0875 0144 dmload - ok
21:50:18.0921 0144 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
21:50:18.0953 0144 dmserver - ok
21:50:19.0078 0144 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
21:50:19.0078 0144 DMusic - ok
21:50:19.0359 0144 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
21:50:19.0703 0144 Dnscache - ok
21:50:19.0796 0144 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
21:50:20.0140 0144 Dot3svc - ok
21:50:20.0171 0144 dpti2o - ok
21:50:20.0234 0144 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
21:50:20.0250 0144 drmkaud - ok
21:50:20.0328 0144 [ E6B7D1B24E16FB24CE1FEA964E144EBC ] dtsoftbus01 C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
21:50:20.0390 0144 dtsoftbus01 - ok
21:50:20.0531 0144 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
21:50:20.0765 0144 EapHost - ok
21:50:20.0953 0144 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
21:50:21.0109 0144 ERSvc - ok
21:50:21.0375 0144 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
21:50:21.0375 0144 Eventlog - ok
21:50:21.0515 0144 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
21:50:21.0718 0144 EventSystem - ok
21:50:21.0984 0144 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
21:50:22.0296 0144 Fastfat - ok
21:50:22.0750 0144 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
21:50:22.0796 0144 FastUserSwitchingCompatibility - ok
21:50:22.0828 0144 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
21:50:22.0843 0144 Fdc - ok
21:50:22.0921 0144 [ E9648254056BCE81A85380C0C3647DC4 ] FETNDIS C:\WINDOWS\system32\DRIVERS\fetnd5.sys
21:50:22.0953 0144 FETNDIS - ok
21:50:22.0984 0144 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
21:50:23.0031 0144 Fips - ok
21:50:23.0062 0144 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:50:23.0078 0144 Flpydisk - ok
21:50:23.0171 0144 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
21:50:23.0171 0144 FltMgr - ok
21:50:23.0203 0144 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:50:23.0296 0144 Fs_Rec - ok
21:50:23.0328 0144 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:50:23.0328 0144 Ftdisk - ok
21:50:23.0359 0144 [ 065639773D8B03F33577F6CDAEA21063 ] gameenum C:\WINDOWS\system32\DRIVERS\gameenum.sys
21:50:23.0375 0144 gameenum - ok
21:50:23.0390 0144 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:50:23.0390 0144 Gpc - ok
21:50:23.0437 0144 [ 833051C6C6C42117191935F734CFBD97 ] hamachi C:\WINDOWS\system32\DRIVERS\hamachi.sys
21:50:23.0437 0144 hamachi - ok
21:50:23.0515 0144 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:50:23.0546 0144 helpsvc - ok
21:50:23.0562 0144 HidServ - ok
21:50:23.0609 0144 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:50:23.0609 0144 hidusb - ok
21:50:23.0656 0144 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
21:50:23.0671 0144 hkmsvc - ok
21:50:23.0703 0144 hpn - ok
21:50:24.0140 0144 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
21:50:24.0156 0144 HTTP - ok
21:50:24.0968 0144 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
21:50:25.0203 0144 HTTPFilter - ok
21:50:25.0234 0144 i2omgmt - ok
21:50:25.0250 0144 i2omp - ok
21:50:25.0281 0144 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:50:25.0281 0144 i8042prt - ok
21:50:25.0328 0144 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
21:50:25.0343 0144 Imapi - ok
21:50:25.0390 0144 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
21:50:25.0406 0144 ImapiService - ok
21:50:25.0437 0144 ini910u - ok
21:50:25.0468 0144 IntelIde - ok
21:50:25.0875 0144 [ 27B290D632AF2CF3CF40BFDDB7370985 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:50:25.0890 0144 intelppm - ok
21:50:25.0906 0144 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
21:50:25.0937 0144 Ip6Fw - ok
21:50:26.0015 0144 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:50:26.0031 0144 IpFilterDriver - ok
21:50:26.0078 0144 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:50:26.0093 0144 IpInIp - ok
21:50:26.0156 0144 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:50:26.0156 0144 IpNat - ok
21:50:26.0187 0144 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:50:26.0187 0144 IPSec - ok
21:50:26.0218 0144 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
21:50:26.0234 0144 IRENUM - ok
21:50:26.0265 0144 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:50:26.0265 0144 isapnp - ok
21:50:26.0359 0144 [ 80A79264302910C7C24BA7E44267EFEF ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
21:50:26.0375 0144 JavaQuickStarterService - ok
21:50:26.0421 0144 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:50:26.0453 0144 Kbdclass - ok
21:50:26.0484 0144 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
21:50:26.0500 0144 kmixer - ok
21:50:26.0531 0144 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
21:50:26.0593 0144 KSecDD - ok
21:50:26.0640 0144 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
21:50:26.0781 0144 lanmanserver - ok
21:50:26.0828 0144 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
21:50:26.0875 0144 lanmanworkstation - ok
21:50:26.0890 0144 lbrtfdc - ok
21:50:26.0937 0144 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
21:50:26.0968 0144 LmHosts - ok
21:50:26.0984 0144 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
21:50:27.0000 0144 Messenger - ok
21:50:27.0078 0144 [ FAFE367D032ED82E9332B4C741A20216 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
21:50:27.0093 0144 Microsoft Office Groove Audit Service - ok
21:50:27.0125 0144 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
21:50:27.0156 0144 mnmdd - ok
21:50:27.0187 0144 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
21:50:27.0187 0144 mnmsrvc - ok
21:50:27.0218 0144 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
21:50:27.0234 0144 Modem - ok
21:50:27.0265 0144 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:50:27.0265 0144 Mouclass - ok
21:50:27.0281 0144 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:50:27.0281 0144 mouhid - ok
21:50:27.0296 0144 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
21:50:27.0328 0144 MountMgr - ok
21:50:27.0375 0144 [ 0329A45C849C9D77901094B8FFE8BBB9 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:50:27.0390 0144 MozillaMaintenance - ok
21:50:27.0406 0144 mraid35x - ok
21:50:27.0437 0144 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:50:27.0453 0144 MRxDAV - ok
21:50:27.0500 0144 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:50:27.0515 0144 MRxSmb - ok
21:50:27.0546 0144 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
21:50:27.0546 0144 MSDTC - ok
21:50:27.0562 0144 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
21:50:27.0593 0144 Msfs - ok
21:50:27.0609 0144 MSIServer - ok
21:50:27.0640 0144 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:50:27.0640 0144 MSKSSRV - ok
21:50:27.0656 0144 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:50:27.0671 0144 MSPCLOCK - ok
21:50:27.0671 0144 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
21:50:27.0687 0144 MSPQM - ok
21:50:27.0703 0144 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:50:27.0718 0144 mssmbios - ok
21:50:27.0750 0144 [ CA3E22598F411199ADC2DFEE76CD0AE0 ] ms_mpu401 C:\WINDOWS\system32\drivers\msmpu401.sys
21:50:27.0750 0144 ms_mpu401 - ok
21:50:27.0781 0144 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
21:50:27.0859 0144 Mup - ok
21:50:27.0984 0144 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
21:50:28.0031 0144 napagent - ok
21:50:28.0046 0144 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
21:50:28.0062 0144 NDIS - ok
21:50:28.0078 0144 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:50:28.0078 0144 NdisTapi - ok
21:50:28.0109 0144 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:50:28.0109 0144 Ndisuio - ok
21:50:28.0125 0144 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:50:28.0140 0144 NdisWan - ok
21:50:28.0171 0144 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
21:50:28.0203 0144 NDProxy - ok
21:50:28.0218 0144 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
21:50:28.0218 0144 NetBIOS - ok
21:50:28.0250 0144 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
21:50:28.0265 0144 NetBT - ok
21:50:28.0296 0144 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
21:50:28.0312 0144 NetDDE - ok
21:50:28.0312 0144 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
21:50:28.0328 0144 NetDDEdsdm - ok
21:50:28.0359 0144 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
21:50:28.0359 0144 Netlogon - ok
21:50:28.0406 0144 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
21:50:28.0453 0144 Netman - ok
21:50:28.0484 0144 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:50:28.0531 0144 NetTcpPortSharing - ok
21:50:28.0562 0144 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
21:50:28.0593 0144 Nla - ok
21:50:28.0640 0144 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
21:50:28.0671 0144 Npfs - ok
21:50:28.0734 0144 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
21:50:28.0828 0144 Ntfs - ok
21:50:28.0843 0144 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
21:50:28.0843 0144 NtLmSsp - ok
21:50:28.0906 0144 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
21:50:28.0968 0144 NtmsSvc - ok
21:50:29.0000 0144 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
21:50:29.0031 0144 Null - ok
21:50:29.0062 0144 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:50:29.0078 0144 NwlnkFlt - ok
21:50:29.0093 0144 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:50:29.0093 0144 NwlnkFwd - ok
21:50:29.0203 0144 [ 84DE1DD996B48B05ACE31AD015FA108A ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:50:30.0484 0144 odserv - ok
21:50:30.0531 0144 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:50:30.0531 0144 ose - ok
21:50:30.0578 0144 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
21:50:30.0578 0144 Parport - ok
21:50:30.0609 0144 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
21:50:30.0625 0144 PartMgr - ok
21:50:30.0656 0144 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
21:50:30.0687 0144 ParVdm - ok
21:50:30.0687 0144 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
21:50:30.0703 0144 PCI - ok
21:50:30.0703 0144 PCIDump - ok
21:50:30.0718 0144 PCIIde - ok
21:50:30.0750 0144 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
21:50:30.0781 0144 Pcmcia - ok
21:50:30.0796 0144 PDCOMP - ok
21:50:30.0812 0144 PDFRAME - ok
21:50:30.0828 0144 PDRELI - ok
21:50:30.0843 0144 PDRFRAME - ok
21:50:30.0859 0144 perc2 - ok
21:50:30.0875 0144 perc2hib - ok
21:50:30.0921 0144 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
21:50:30.0921 0144 PlugPlay - ok
21:50:30.0937 0144 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
21:50:30.0937 0144 PolicyAgent - ok
21:50:30.0953 0144 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:50:30.0968 0144 PptpMiniport - ok
21:50:30.0968 0144 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
21:50:30.0984 0144 ProtectedStorage - ok
21:50:31.0000 0144 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
21:50:31.0000 0144 PSched - ok
21:50:31.0015 0144 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:50:31.0031 0144 Ptilink - ok
21:50:31.0031 0144 ql1080 - ok
21:50:31.0046 0144 Ql10wnt - ok
21:50:31.0062 0144 ql12160 - ok
21:50:31.0078 0144 ql1240 - ok
21:50:31.0093 0144 ql1280 - ok
21:50:31.0125 0144 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:50:31.0125 0144 RasAcd - ok
21:50:31.0171 0144 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
21:50:31.0187 0144 RasAuto - ok
21:50:31.0203 0144 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:50:31.0203 0144 Rasl2tp - ok
21:50:31.0250 0144 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
21:50:31.0296 0144 RasMan - ok
21:50:31.0312 0144 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:50:31.0312 0144 RasPppoe - ok
21:50:31.0328 0144 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
21:50:31.0343 0144 Raspti - ok
21:50:31.0359 0144 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:50:31.0375 0144 Rdbss - ok
21:50:31.0375 0144 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:50:31.0390 0144 RDPCDD - ok
21:50:31.0437 0144 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
21:50:31.0484 0144 RDPWD - ok
21:50:31.0515 0144 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
21:50:31.0515 0144 RDSessMgr - ok
21:50:31.0546 0144 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
21:50:31.0546 0144 redbook - ok
21:50:31.0593 0144 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
21:50:31.0625 0144 RemoteAccess - ok
21:50:31.0640 0144 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
21:50:31.0656 0144 RpcLocator - ok
21:50:31.0687 0144 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\system32\rpcss.dll
21:50:31.0703 0144 RpcSs - ok
21:50:31.0734 0144 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
21:50:31.0750 0144 RSVP - ok
21:50:31.0750 0144 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
21:50:31.0765 0144 SamSs - ok
21:50:31.0906 0144 [ BCE943896289A91AD75CC5652620B1C6 ] SBAMSvc C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe
21:50:32.0093 0144 SBAMSvc - ok
21:50:32.0125 0144 [ 62BA65CC0B4A4BD1EAFF5FED6E2B5069 ] sbaphd C:\WINDOWS\system32\drivers\sbaphd.sys
21:50:32.0125 0144 sbaphd - ok
21:50:32.0156 0144 [ 3FFF8CDA4D2F29CA06F1557E85163C30 ] sbapifs C:\WINDOWS\system32\drivers\sbapifs.sys
21:50:32.0171 0144 sbapifs - ok
21:50:32.0187 0144 [ 1FD538C4FEB36B793D2121F20BBDC16F ] SBRE C:\WINDOWS\system32\drivers\SBREdrv.sys
21:50:32.0250 0144 SBRE - ok
21:50:32.0281 0144 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
21:50:32.0296 0144 SCardSvr - ok
21:50:32.0343 0144 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
21:50:32.0390 0144 Schedule - ok
21:50:32.0437 0144 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:50:32.0437 0144 Secdrv - ok
21:50:32.0500 0144 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
21:50:32.0640 0144 seclogon - ok
21:50:32.0953 0144 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
21:50:33.0000 0144 SENS - ok
21:50:33.0046 0144 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
21:50:33.0046 0144 serenum - ok
21:50:33.0078 0144 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
21:50:33.0093 0144 Serial - ok
21:50:33.0140 0144 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
21:50:33.0156 0144 Sfloppy - ok
21:50:33.0218 0144 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
21:50:33.0265 0144 SharedAccess - ok
21:50:33.0296 0144 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:50:33.0312 0144 ShellHWDetection - ok
21:50:33.0312 0144 Simbad - ok
21:50:33.0375 0144 [ 004179B6C039D39B71FBE3D07C5DFE79 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
21:50:33.0375 0144 SkypeUpdate - ok
21:50:33.0390 0144 Sparrow - ok
21:50:33.0437 0144 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
21:50:33.0437 0144 splitter - ok
21:50:33.0468 0144 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
21:50:33.0484 0144 Spooler - ok
21:50:33.0515 0144 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
21:50:33.0515 0144 sr - ok
21:50:33.0531 0144 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
21:50:33.0593 0144 srservice - ok
21:50:33.0656 0144 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
21:50:33.0687 0144 Srv - ok
21:50:33.0734 0144 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
21:50:33.0765 0144 SSDPSRV - ok
21:50:33.0828 0144 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
21:50:33.0906 0144 stisvc - ok
21:50:33.0937 0144 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
21:50:33.0937 0144 swenum - ok
21:50:33.0984 0144 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
21:50:33.0984 0144 swmidi - ok
21:50:34.0000 0144 SwPrv - ok
21:50:34.0015 0144 symc810 - ok
21:50:34.0031 0144 symc8xx - ok
21:50:34.0046 0144 sym_hi - ok
21:50:34.0062 0144 sym_u3 - ok
21:50:34.0093 0144 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
21:50:34.0093 0144 sysaudio - ok
21:50:34.0125 0144 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
21:50:34.0140 0144 SysmonLog - ok
21:50:34.0171 0144 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
21:50:34.0218 0144 TapiSrv - ok
21:50:34.0281 0144 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:50:34.0328 0144 Tcpip - ok
21:50:34.0359 0144 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
21:50:34.0375 0144 TDPIPE - ok
21:50:34.0421 0144 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
21:50:34.0453 0144 TDTCP - ok
21:50:34.0484 0144 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
21:50:34.0500 0144 TermDD - ok
21:50:34.0546 0144 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
21:50:34.0625 0144 TermService - ok
21:50:34.0671 0144 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
21:50:34.0671 0144 Themes - ok
21:50:34.0687 0144 TosIde - ok
21:50:34.0734 0144 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
21:50:34.0781 0144 TrkWks - ok
21:50:34.0812 0144 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
21:50:34.0875 0144 Udfs - ok
21:50:34.0875 0144 ultra - ok
21:50:34.0937 0144 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
21:50:34.0968 0144 Update - ok
21:50:35.0000 0144 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
21:50:35.0046 0144 upnphost - ok
21:50:35.0093 0144 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
21:50:35.0093 0144 UPS - ok
21:50:35.0125 0144 [ 1B611611C28D2DF25BC057D79C6F13FC ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:50:35.0140 0144 usbccgp - ok
21:50:35.0187 0144 [ 4BAC8DF07F1D8434FC640E677A62204E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:50:35.0187 0144 usbehci - ok
21:50:35.0234 0144 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:50:35.0234 0144 usbhub - ok
21:50:35.0328 0144 [ F8EDE2B6928970DCE3D5614C27D9E7F6 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:50:35.0343 0144 usbscan - ok
21:50:35.0406 0144 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:50:35.0406 0144 USBSTOR - ok
21:50:35.0468 0144 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:50:35.0468 0144 usbuhci - ok
21:50:35.0500 0144 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
21:50:35.0500 0144 VgaSave - ok
21:50:35.0531 0144 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
21:50:35.0531 0144 ViaIde - ok
21:50:35.0578 0144 [ 82E33B1F9BD95B51AE5878DBDB197B54 ] VIAudio C:\WINDOWS\system32\drivers\viaudios.sys
21:50:35.0578 0144 VIAudio - ok
21:50:35.0593 0144 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
21:50:35.0656 0144 VolSnap - ok
21:50:35.0703 0144 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
21:50:35.0718 0144 VSS - ok
21:50:35.0750 0144 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
21:50:35.0843 0144 W32Time - ok
21:50:35.0890 0144 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:50:35.0890 0144 Wanarp - ok
21:50:35.0906 0144 WDICA - ok
21:50:35.0953 0144 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
21:50:35.0953 0144 wdmaud - ok
21:50:35.0984 0144 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
21:50:36.0031 0144 WebClient - ok
21:50:36.0125 0144 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
21:50:36.0171 0144 winmgmt - ok
21:50:36.0234 0144 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
21:50:36.0265 0144 WmdmPmSN - ok
21:50:36.0312 0144 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:50:36.0312 0144 WmiApSrv - ok
21:50:36.0421 0144 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
21:50:36.0484 0144 WMPNetworkSvc - ok
21:50:36.0687 0144 [ 15673BD0B86150CB8E27766059C72A9B ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:50:36.0718 0144 WPFFontCache_v0400 - ok
21:50:36.0765 0144 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
21:50:36.0796 0144 wscsvc - ok
21:50:36.0828 0144 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
21:50:36.0875 0144 wuauserv - ok
21:50:36.0906 0144 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:50:36.0921 0144 WudfPf - ok
21:50:36.0953 0144 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:50:36.0953 0144 WudfRd - ok
21:50:36.0984 0144 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
21:50:37.0015 0144 WudfSvc - ok
21:50:37.0078 0144 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
21:50:37.0281 0144 WZCSVC - ok
21:50:37.0312 0144 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
21:50:37.0343 0144 xmlprov - ok
21:50:37.0343 0144 ================ Scan global ===============================
21:50:37.0406 0144 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
21:50:37.0468 0144 [ 4C0AA4ABC4E21672B55D8A700AF2B2A6 ] C:\WINDOWS\system32\winsrv.dll
21:50:37.0843 0144 [ 4C0AA4ABC4E21672B55D8A700AF2B2A6 ] C:\WINDOWS\system32\winsrv.dll
21:50:37.0875 0144 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
21:50:37.0875 0144 [Global] - ok
21:50:37.0890 0144 ================ Scan MBR ==================================
21:50:37.0906 0144 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
21:50:38.0078 0144 \Device\Harddisk0\DR0 - ok
21:50:38.0078 0144 ================ Scan VBR ==================================
21:50:38.0093 0144 [ 03A322BF2E69C8739D7658666E60555F ] \Device\Harddisk0\DR0\Partition1
21:50:38.0093 0144 \Device\Harddisk0\DR0\Partition1 - ok
21:50:38.0125 0144 [ ADE62C4523D922238D4DEB934967B980 ] \Device\Harddisk0\DR0\Partition2
21:50:38.0125 0144 \Device\Harddisk0\DR0\Partition2 - ok
21:50:38.0125 0144 ============================================================
21:50:38.0125 0144 Scan finished
21:50:38.0125 0144 ============================================================
21:50:38.0171 2156 Detected object count: 0
21:50:38.0171 2156 Actual detected object count: 0
21:51:08.0390 3992 ============================================================
21:51:08.0390 3992 Scan started
21:51:08.0390 3992 Mode: Manual; SigCheck; TDLFS;
21:51:08.0390 3992 ============================================================
21:51:08.0859 3992 ================ Scan system memory ========================
21:51:08.0859 3992 System memory - ok
21:51:08.0875 3992 ================ Scan services =============================
21:51:09.0062 3992 Abiosdsk - ok
21:51:09.0093 3992 abp480n5 - ok
21:51:09.0140 3992 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:51:11.0265 3992 ACPI - ok
21:51:11.0296 3992 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
21:51:11.0578 3992 ACPIEC - ok
21:51:11.0703 3992 [ AF9658974154C3B6A333D86DC2E0AAC8 ] Ad-Aware Service C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe
21:51:11.0828 3992 Ad-Aware Service - ok
21:51:11.0906 3992 [ A283108E14F3970432C21AF4C0CB1BCE ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:51:11.0937 3992 AdobeFlashPlayerUpdateSvc - ok
21:51:11.0968 3992 adpu160m - ok
21:51:12.0031 3992 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
21:51:12.0390 3992 aec - ok
21:51:12.0453 3992 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
21:51:12.0671 3992 AFD - ok
21:51:12.0703 3992 Aha154x - ok
21:51:12.0718 3992 aic78u2 - ok
21:51:12.0765 3992 aic78xx - ok
21:51:12.0921 3992 [ 933933288DF5ED26D1928215C97D05C7 ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
21:51:13.0375 3992 ALCXWDM ( UnsignedFile.Multi.Generic ) - warning
21:51:13.0375 3992 ALCXWDM - detected UnsignedFile.Multi.Generic (1)
21:51:13.0406 3992 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
21:51:14.0218 3992 Alerter - ok
21:51:14.0265 3992 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
21:51:14.0937 3992 ALG - ok
21:51:14.0937 3992 AliIde - ok
21:51:14.0968 3992 amsint - ok
21:51:14.0984 3992 AppMgmt - ok
21:51:15.0015 3992 asc - ok
21:51:15.0046 3992 asc3350p - ok
21:51:15.0078 3992 asc3550 - ok
21:51:15.0250 3992 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
21:51:15.0281 3992 aspnet_state - ok
21:51:15.0312 3992 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:51:15.0593 3992 AsyncMac - ok
21:51:15.0609 3992 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
21:51:15.0875 3992 atapi - ok
21:51:15.0890 3992 Atdisk - ok
21:51:16.0031 3992 [ A2EAEB497CA29ECAEAF0DF66AD85C57D ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
21:51:16.0421 3992 Ati HotKey Poller - ok
21:51:16.0625 3992 [ 492BD2A5F65F218D4EDE5764A3BB67E9 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:51:16.0812 3992 ati2mtag - ok
21:51:16.0859 3992 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:51:17.0562 3992 Atmarpc - ok
21:51:17.0593 3992 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
21:51:17.0828 3992 AudioSrv - ok
21:51:17.0890 3992 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
21:51:18.0140 3992 audstub - ok
21:51:18.0156 3992 autorun - ok
21:51:18.0234 3992 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
21:51:18.0593 3992 Beep - ok
21:51:18.0734 3992 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
21:51:19.0109 3992 BITS - ok
21:51:19.0156 3992 [ 64DC11630495BBFEE0616E19F91F5BF9 ] BootScreen C:\WINDOWS\System32\drivers\vidstub.sys
21:51:19.0859 3992 BootScreen ( UnsignedFile.Multi.Generic ) - warning
21:51:19.0859 3992 BootScreen - detected UnsignedFile.Multi.Generic (1)
21:51:19.0890 3992 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
21:51:20.0015 3992 Browser - ok
21:51:20.0062 3992 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
21:51:20.0343 3992 cbidf2k - ok
21:51:20.0343 3992 cd20xrnt - ok
21:51:20.0765 3992 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
21:51:21.0156 3992 Cdaudio - ok
21:51:21.0203 3992 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
21:51:21.0437 3992 Cdfs - ok
21:51:21.0468 3992 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:51:21.0718 3992 Cdrom - ok
21:51:21.0734 3992 Changer - ok
21:51:21.0781 3992 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
21:51:22.0031 3992 CiSvc - ok
21:51:22.0125 3992 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
21:51:22.0468 3992 ClipSrv - ok
21:51:22.0531 3992 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:51:22.0546 3992 clr_optimization_v4.0.30319_32 - ok
21:51:22.0562 3992 CmdIde - ok
21:51:22.0593 3992 COMSysApp - ok
21:51:22.0656 3992 Cpqarray - ok
21:51:22.0718 3992 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
21:51:23.0015 3992 CryptSvc - ok
21:51:23.0031 3992 dac2w2k - ok
21:51:23.0062 3992 dac960nt - ok
21:51:23.0203 3992 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
21:51:23.0500 3992 DcomLaunch - ok
21:51:23.0562 3992 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
21:51:23.0828 3992 Dhcp - ok
21:51:23.0875 3992 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
21:51:24.0140 3992 Disk - ok
21:51:24.0140 3992 dmadmin - ok
21:51:24.0234 3992 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
21:51:24.0500 3992 dmboot - ok
21:51:24.0531 3992 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
21:51:24.0781 3992 dmio - ok
21:51:24.0812 3992 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
21:51:25.0093 3992 dmload - ok
21:51:25.0140 3992 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
21:51:25.0375 3992 dmserver - ok
21:51:25.0406 3992 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
21:51:25.0687 3992 DMusic - ok
21:51:25.0734 3992 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
21:51:25.0906 3992 Dnscache - ok
21:51:25.0984 3992 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
21:51:26.0218 3992 Dot3svc - ok
21:51:26.0234 3992 dpti2o - ok
21:51:26.0281 3992 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
21:51:26.0562 3992 drmkaud - ok
21:51:26.0625 3992 [ E6B7D1B24E16FB24CE1FEA964E144EBC ] dtsoftbus01 C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
21:51:28.0031 3992 dtsoftbus01 - ok
21:51:28.0062 3992 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
21:51:28.0343 3992 EapHost - ok
21:51:28.0375 3992 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
21:51:28.0625 3992 ERSvc - ok
21:51:28.0656 3992 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
21:51:30.0156 3992 Eventlog - ok
21:51:30.0218 3992 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
21:51:30.0328 3992 EventSystem - ok
21:51:30.0390 3992 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
21:51:30.0625 3992 Fastfat - ok
21:51:30.0687 3992 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
21:51:30.0953 3992 FastUserSwitchingCompatibility - ok
21:51:30.0968 3992 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
21:51:31.0296 3992 Fdc - ok
21:51:31.0328 3992 [ E9648254056BCE81A85380C0C3647DC4 ] FETNDIS C:\WINDOWS\system32\DRIVERS\fetnd5.sys
21:51:31.0734 3992 FETNDIS - ok
21:51:31.0781 3992 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
21:51:32.0046 3992 Fips - ok
21:51:32.0109 3992 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:51:32.0515 3992 Flpydisk - ok
21:51:32.0546 3992 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
21:51:32.0781 3992 FltMgr - ok
21:51:32.0796 3992 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:51:33.0093 3992 Fs_Rec - ok
21:51:33.0109 3992 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:51:33.0390 3992 Ftdisk - ok
21:51:33.0406 3992 [ 065639773D8B03F33577F6CDAEA21063 ] gameenum C:\WINDOWS\system32\DRIVERS\gameenum.sys
21:51:33.0718 3992 gameenum - ok
21:51:33.0796 3992 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:51:34.0625 3992 Gpc - ok
21:51:34.0765 3992 [ 833051C6C6C42117191935F734CFBD97 ] hamachi C:\WINDOWS\system32\DRIVERS\hamachi.sys
21:51:34.0843 3992 hamachi - ok
21:51:34.0921 3992 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:51:35.0218 3992 helpsvc - ok
21:51:35.0234 3992 HidServ - ok
21:51:35.0281 3992 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:51:35.0609 3992 hidusb - ok
21:51:35.0656 3992 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
21:51:36.0078 3992 hkmsvc - ok
21:51:36.0093 3992 hpn - ok
21:51:36.0156 3992 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
21:51:36.0265 3992 HTTP - ok
21:51:36.0328 3992 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
21:51:36.0578 3992 HTTPFilter - ok
21:51:36.0593 3992 i2omgmt - ok
21:51:36.0609 3992 i2omp - ok
21:51:36.0640 3992 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:51:36.0906 3992 i8042prt - ok
21:51:36.0937 3992 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
21:51:37.0203 3992 Imapi - ok
21:51:37.0234 3992 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
21:51:37.0500 3992 ImapiService - ok
21:51:37.0515 3992 ini910u - ok
21:51:37.0531 3992 IntelIde - ok

[AngelikaB]

Druhé


21:51:37.0593 3992 [ 27B290D632AF2CF3CF40BFDDB7370985 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:51:37.0843 3992 intelppm - ok
21:51:37.0859 3992 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
21:51:38.0093 3992 Ip6Fw - ok
21:51:38.0140 3992 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:51:38.0437 3992 IpFilterDriver - ok
21:51:38.0468 3992 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:51:38.0750 3992 IpInIp - ok
21:51:38.0796 3992 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:51:39.0750 3992 IpNat - ok
21:51:39.0781 3992 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:51:40.0046 3992 IPSec - ok
21:51:40.0078 3992 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
21:51:40.0343 3992 IRENUM - ok
21:51:40.0375 3992 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:51:40.0609 3992 isapnp - ok
21:51:40.0781 3992 [ 80A79264302910C7C24BA7E44267EFEF ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
21:51:40.0812 3992 JavaQuickStarterService - ok
21:51:40.0890 3992 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:51:41.0125 3992 Kbdclass - ok
21:51:41.0140 3992 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
21:51:41.0421 3992 kmixer - ok
21:51:41.0500 3992 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
21:51:41.0828 3992 KSecDD - ok
21:51:41.0921 3992 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
21:51:42.0203 3992 lanmanserver - ok
21:51:42.0281 3992 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
21:51:42.0406 3992 lanmanworkstation - ok
21:51:42.0421 3992 lbrtfdc - ok
21:51:42.0500 3992 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
21:51:42.0796 3992 LmHosts - ok
21:51:42.0859 3992 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
21:51:43.0234 3992 Messenger - ok
21:51:43.0640 3992 [ FAFE367D032ED82E9332B4C741A20216 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
21:51:43.0921 3992 Microsoft Office Groove Audit Service - ok
21:51:44.0031 3992 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
21:51:44.0375 3992 mnmdd - ok
21:51:44.0421 3992 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
21:51:44.0734 3992 mnmsrvc - ok
21:51:44.0812 3992 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
21:51:45.0078 3992 Modem - ok
21:51:45.0093 3992 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:51:45.0468 3992 Mouclass - ok
21:51:45.0515 3992 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:51:46.0250 3992 mouhid - ok
21:51:46.0281 3992 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
21:51:46.0781 3992 MountMgr - ok
21:51:46.0859 3992 [ 0329A45C849C9D77901094B8FFE8BBB9 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:51:46.0953 3992 MozillaMaintenance - ok
21:51:46.0968 3992 mraid35x - ok
21:51:47.0015 3992 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:51:47.0500 3992 MRxDAV - ok
21:51:47.0578 3992 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:51:47.0750 3992 MRxSmb - ok
21:51:47.0796 3992 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
21:51:48.0125 3992 MSDTC - ok
21:51:48.0156 3992 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
21:51:48.0500 3992 Msfs - ok
21:51:48.0515 3992 MSIServer - ok
21:51:48.0640 3992 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:51:48.0906 3992 MSKSSRV - ok
21:51:48.0953 3992 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:51:49.0218 3992 MSPCLOCK - ok
21:51:49.0250 3992 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
21:51:49.0531 3992 MSPQM - ok
21:51:49.0562 3992 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:51:50.0593 3992 mssmbios - ok
21:51:50.0687 3992 [ CA3E22598F411199ADC2DFEE76CD0AE0 ] ms_mpu401 C:\WINDOWS\system32\drivers\msmpu401.sys
21:51:52.0015 3992 ms_mpu401 - ok
21:51:52.0062 3992 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
21:51:52.0250 3992 Mup - ok
21:51:52.0359 3992 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
21:51:52.0625 3992 napagent - ok
21:51:52.0734 3992 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
21:51:53.0093 3992 NDIS - ok
21:51:53.0140 3992 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:51:53.0296 3992 NdisTapi - ok
21:51:53.0328 3992 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:51:53.0687 3992 Ndisuio - ok
21:51:53.0703 3992 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:51:54.0046 3992 NdisWan - ok
21:51:54.0125 3992 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
21:51:54.0296 3992 NDProxy - ok
21:51:54.0343 3992 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
21:51:54.0656 3992 NetBIOS - ok
21:51:54.0734 3992 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
21:51:55.0015 3992 NetBT - ok
21:51:55.0062 3992 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
21:51:55.0328 3992 NetDDE - ok
21:51:55.0359 3992 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
21:51:55.0859 3992 NetDDEdsdm - ok
21:51:55.0953 3992 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
21:51:56.0609 3992 Netlogon - ok
21:51:56.0656 3992 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
21:51:57.0031 3992 Netman - ok
21:51:57.0062 3992 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:51:57.0140 3992 NetTcpPortSharing - ok
21:51:57.0187 3992 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
21:51:57.0484 3992 Nla - ok
21:51:57.0531 3992 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
21:51:57.0796 3992 Npfs - ok
21:51:57.0843 3992 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
21:51:58.0093 3992 Ntfs - ok
21:51:58.0125 3992 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
21:51:58.0359 3992 NtLmSsp - ok
21:51:58.0406 3992 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
21:51:58.0671 3992 NtmsSvc - ok
21:51:58.0703 3992 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
21:51:58.0968 3992 Null - ok
21:51:59.0015 3992 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:51:59.0312 3992 NwlnkFlt - ok
21:51:59.0390 3992 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:52:00.0000 3992 NwlnkFwd - ok
21:52:00.0281 3992 [ 84DE1DD996B48B05ACE31AD015FA108A ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:52:00.0343 3992 odserv - ok
21:52:00.0406 3992 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:52:00.0453 3992 ose - ok
21:52:00.0500 3992 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
21:52:00.0781 3992 Parport - ok
21:52:00.0859 3992 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
21:52:01.0125 3992 PartMgr - ok
21:52:01.0140 3992 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
21:52:01.0593 3992 ParVdm - ok
21:52:01.0609 3992 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
21:52:01.0875 3992 PCI - ok
21:52:01.0890 3992 PCIDump - ok
21:52:01.0890 3992 PCIIde - ok
21:52:01.0984 3992 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
21:52:02.0359 3992 Pcmcia - ok
21:52:02.0359 3992 PDCOMP - ok
21:52:02.0375 3992 PDFRAME - ok
21:52:02.0390 3992 PDRELI - ok
21:52:02.0406 3992 PDRFRAME - ok
21:52:02.0406 3992 perc2 - ok
21:52:02.0484 3992 perc2hib - ok
21:52:02.0546 3992 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
21:52:02.0578 3992 PlugPlay - ok
21:52:02.0593 3992 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
21:52:02.0812 3992 PolicyAgent - ok
21:52:02.0843 3992 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:52:03.0078 3992 PptpMiniport - ok
21:52:03.0093 3992 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
21:52:03.0343 3992 ProtectedStorage - ok
21:52:03.0343 3992 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
21:52:03.0593 3992 PSched - ok
21:52:03.0609 3992 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:52:03.0921 3992 Ptilink - ok
21:52:03.0921 3992 ql1080 - ok
21:52:03.0937 3992 Ql10wnt - ok
21:52:03.0953 3992 ql12160 - ok
21:52:03.0968 3992 ql1240 - ok
21:52:03.0984 3992 ql1280 - ok
21:52:04.0000 3992 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:52:04.0281 3992 RasAcd - ok
21:52:04.0312 3992 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
21:52:04.0531 3992 RasAuto - ok
21:52:04.0562 3992 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:52:04.0796 3992 Rasl2tp - ok
21:52:04.0828 3992 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
21:52:05.0062 3992 RasMan - ok
21:52:05.0093 3992 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:52:05.0312 3992 RasPppoe - ok
21:52:05.0328 3992 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
21:52:05.0640 3992 Raspti - ok
21:52:05.0671 3992 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:52:05.0968 3992 Rdbss - ok
21:52:05.0984 3992 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:52:06.0234 3992 RDPCDD - ok
21:52:06.0281 3992 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
21:52:06.0328 3992 RDPWD - ok
21:52:06.0390 3992 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
21:52:06.0640 3992 RDSessMgr - ok
21:52:06.0656 3992 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
21:52:06.0968 3992 redbook - ok
21:52:07.0000 3992 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
21:52:07.0343 3992 RemoteAccess - ok
21:52:07.0359 3992 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
21:52:07.0609 3992 RpcLocator - ok
21:52:07.0656 3992 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\system32\rpcss.dll
21:52:07.0687 3992 RpcSs - ok
21:52:07.0734 3992 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
21:52:08.0015 3992 RSVP - ok
21:52:08.0031 3992 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
21:52:08.0265 3992 SamSs - ok
21:52:08.0406 3992 [ BCE943896289A91AD75CC5652620B1C6 ] SBAMSvc C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe
21:52:08.0593 3992 SBAMSvc - ok
21:52:08.0609 3992 [ 62BA65CC0B4A4BD1EAFF5FED6E2B5069 ] sbaphd C:\WINDOWS\system32\drivers\sbaphd.sys
21:52:08.0640 3992 sbaphd - ok
21:52:08.0656 3992 [ 3FFF8CDA4D2F29CA06F1557E85163C30 ] sbapifs C:\WINDOWS\system32\drivers\sbapifs.sys
21:52:08.0687 3992 sbapifs - ok
21:52:08.0718 3992 [ 1FD538C4FEB36B793D2121F20BBDC16F ] SBRE C:\WINDOWS\system32\drivers\SBREdrv.sys
21:52:08.0750 3992 SBRE - ok
21:52:08.0781 3992 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
21:52:09.0000 3992 SCardSvr - ok
21:52:09.0046 3992 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
21:52:09.0296 3992 Schedule - ok
21:52:09.0328 3992 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:52:09.0562 3992 Secdrv - ok
21:52:09.0578 3992 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
21:52:09.0828 3992 seclogon - ok
21:52:09.0843 3992 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
21:52:10.0078 3992 SENS - ok
21:52:10.0109 3992 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
21:52:10.0328 3992 serenum - ok
21:52:10.0359 3992 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
21:52:10.0578 3992 Serial - ok
21:52:10.0625 3992 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
21:52:10.0843 3992 Sfloppy - ok
21:52:10.0890 3992 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
21:52:11.0125 3992 SharedAccess - ok
21:52:11.0140 3992 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:52:11.0187 3992 ShellHWDetection - ok
21:52:11.0203 3992 Simbad - ok
21:52:11.0250 3992 [ 004179B6C039D39B71FBE3D07C5DFE79 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
21:52:11.0296 3992 SkypeUpdate - ok
21:52:11.0312 3992 Sparrow - ok
21:52:11.0343 3992 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
21:52:11.0640 3992 splitter - ok
21:52:11.0687 3992 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
21:52:11.0890 3992 Spooler - ok
21:52:11.0921 3992 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
21:52:12.0265 3992 sr - ok
21:52:12.0281 3992 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
21:52:12.0781 3992 srservice - ok
21:52:12.0828 3992 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
21:52:13.0734 3992 Srv - ok
21:52:13.0875 3992 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
21:52:14.0328 3992 SSDPSRV - ok
21:52:14.0390 3992 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
21:52:14.0656 3992 stisvc - ok
21:52:14.0671 3992 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
21:52:14.0953 3992 swenum - ok
21:52:14.0984 3992 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
21:52:15.0250 3992 swmidi - ok
21:52:15.0265 3992 SwPrv - ok
21:52:15.0281 3992 symc810 - ok
21:52:15.0312 3992 symc8xx - ok
21:52:15.0328 3992 sym_hi - ok
21:52:15.0343 3992 sym_u3 - ok
21:52:15.0375 3992 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
21:52:15.0625 3992 sysaudio - ok
21:52:15.0640 3992 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
21:52:15.0890 3992 SysmonLog - ok
21:52:15.0921 3992 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
21:52:16.0203 3992 TapiSrv - ok
21:52:16.0250 3992 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:52:16.0359 3992 Tcpip - ok
21:52:16.0390 3992 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
21:52:16.0734 3992 TDPIPE - ok
21:52:16.0765 3992 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
21:52:17.0000 3992 TDTCP - ok
21:52:17.0015 3992 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
21:52:17.0296 3992 TermDD - ok
21:52:17.0328 3992 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
21:52:17.0593 3992 TermService - ok
21:52:17.0625 3992 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
21:52:17.0656 3992 Themes - ok
21:52:17.0671 3992 TosIde - ok
21:52:17.0718 3992 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
21:52:18.0140 3992 TrkWks - ok
21:52:18.0171 3992 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
21:52:18.0484 3992 Udfs - ok
21:52:18.0484 3992 ultra - ok
21:52:18.0546 3992 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
21:52:18.0906 3992 Update - ok
21:52:18.0953 3992 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
21:52:19.0406 3992 upnphost - ok
21:52:19.0531 3992 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
21:52:19.0812 3992 UPS - ok
21:52:19.0843 3992 [ 1B611611C28D2DF25BC057D79C6F13FC ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:52:19.0937 3992 usbccgp - ok
21:52:19.0968 3992 [ 4BAC8DF07F1D8434FC640E677A62204E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:52:20.0000 3992 usbehci - ok
21:52:20.0015 3992 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:52:20.0250 3992 usbhub - ok
21:52:20.0281 3992 [ F8EDE2B6928970DCE3D5614C27D9E7F6 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:52:20.0328 3992 usbscan - ok
21:52:20.0359 3992 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:52:20.0625 3992 USBSTOR - ok
21:52:20.0687 3992 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:52:20.0937 3992 usbuhci - ok
21:52:20.0968 3992 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
21:52:21.0375 3992 VgaSave - ok
21:52:21.0468 3992 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
21:52:21.0703 3992 ViaIde - ok
21:52:21.0765 3992 [ 82E33B1F9BD95B51AE5878DBDB197B54 ] VIAudio C:\WINDOWS\system32\drivers\viaudios.sys
21:52:21.0859 3992 VIAudio - ok
21:52:21.0875 3992 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
21:52:22.0156 3992 VolSnap - ok
21:52:22.0218 3992 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
21:52:22.0609 3992 VSS - ok
21:52:22.0640 3992 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
21:52:22.0937 3992 W32Time - ok
21:52:23.0000 3992 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:52:23.0562 3992 Wanarp - ok
21:52:23.0562 3992 WDICA - ok
21:52:23.0625 3992 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
21:52:24.0156 3992 wdmaud - ok
21:52:24.0187 3992 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
21:52:24.0593 3992 WebClient - ok
21:52:24.0750 3992 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
21:52:25.0046 3992 winmgmt - ok
21:52:25.0093 3992 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
21:52:25.0265 3992 WmdmPmSN - ok
21:52:25.0312 3992 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:52:25.0625 3992 WmiApSrv - ok
21:52:25.0968 3992 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
21:52:26.0703 3992 WMPNetworkSvc - ok
21:52:27.0203 3992 [ 15673BD0B86150CB8E27766059C72A9B ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:52:27.0984 3992 WPFFontCache_v0400 - ok
21:52:28.0046 3992 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
21:52:28.0484 3992 wscsvc - ok
21:52:28.0546 3992 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
21:52:29.0218 3992 wuauserv - ok
21:52:29.0296 3992 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:52:29.0468 3992 WudfPf - ok
21:52:29.0500 3992 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:52:29.0562 3992 WudfRd - ok
21:52:29.0593 3992 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
21:52:29.0687 3992 WudfSvc - ok
21:52:29.0750 3992 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
21:52:30.0203 3992 WZCSVC - ok
21:52:30.0359 3992 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
21:52:30.0875 3992 xmlprov - ok
21:52:30.0875 3992 ================ Scan global ===============================
21:52:30.0937 3992 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
21:52:31.0031 3992 [ 4C0AA4ABC4E21672B55D8A700AF2B2A6 ] C:\WINDOWS\system32\winsrv.dll
21:52:31.0500 3992 [ 4C0AA4ABC4E21672B55D8A700AF2B2A6 ] C:\WINDOWS\system32\winsrv.dll
21:52:31.0578 3992 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
21:52:31.0578 3992 [Global] - ok
21:52:31.0578 3992 ================ Scan MBR ==================================
21:52:31.0593 3992 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
21:52:33.0968 3992 \Device\Harddisk0\DR0 - ok
21:52:33.0968 3992 ================ Scan VBR ==================================
21:52:33.0984 3992 [ 03A322BF2E69C8739D7658666E60555F ] \Device\Harddisk0\DR0\Partition1
21:52:33.0984 3992 \Device\Harddisk0\DR0\Partition1 - ok
21:52:34.0015 3992 [ ADE62C4523D922238D4DEB934967B980 ] \Device\Harddisk0\DR0\Partition2
21:52:34.0015 3992 \Device\Harddisk0\DR0\Partition2 - ok
21:52:34.0015 3992 ============================================================
21:52:34.0015 3992 Scan finished
21:52:34.0015 3992 ============================================================
21:52:34.0140 4036 Detected object count: 2
21:52:34.0140 4036 Actual detected object count: 2
21:52:45.0968 4036 C:\WINDOWS\system32\drivers\ALCXWDM.SYS - copied to quarantine
21:52:46.0046 4036 HKLM\SYSTEM\ControlSet001\services\ALCXWDM - will be deleted on reboot
21:52:46.0046 4036 HKLM\SYSTEM\ControlSet003\services\ALCXWDM - will be deleted on reboot
21:52:46.0046 4036 C:\WINDOWS\system32\drivers\ALCXWDM.SYS - will be deleted on reboot
21:52:46.0046 4036 ALCXWDM ( UnsignedFile.Multi.Generic ) - User select action: Delete
21:52:46.0140 4036 C:\WINDOWS\System32\drivers\vidstub.sys - copied to quarantine
21:52:46.0171 4036 HKLM\SYSTEM\ControlSet001\services\BootScreen - will be deleted on reboot
21:52:46.0171 4036 HKLM\SYSTEM\ControlSet003\services\BootScreen - will be deleted on reboot
21:52:46.0187 4036 C:\WINDOWS\System32\drivers\vidstub.sys - will be deleted on reboot
21:52:46.0187 4036 BootScreen ( UnsignedFile.Multi.Generic ) - User select action: Delete
21:53:57.0484 2832 Deinitialize success