Zpráva z WhoCrashed:
Welcome to WhoCrashed (HOME EDITION) v 3.06
--------------------------------------------------------------------------------
This program checks for drivers which have been crashing your computer. If your computer has displayed a blue screen of death, suddenly rebooted or shut down then this program will help you find the root cause and possibly a solution.
Whenever a computer suddenly reboots without displaying any notice or blue screen of death, the first thing that is often thought about is a hardware failure. In reality, on Windows most crashes are caused by malfunctioning device drivers and kernel modules. In case of a kernel error, many computers do not show a blue screen unless they are configured for this. Instead these systems suddenly reboot without any notice.
This program will analyze your crash dumps with the single click of a button. It will tell you what drivers are likely to be responsible for crashing your computer. If will report a conclusion which offers suggestions on how to proceed in any situation while the analysis report will display internet links which will help you further troubleshoot any detected problems.
To obtain technical support visit www.resplendence.com/support
Click here to check if you have the latest version or if an update is available.
Just click the Analyze button for a comprehensible report ...
--------------------------------------------------------------------------------
Home Edition Notice
--------------------------------------------------------------------------------
This version of WhoCrashed is free for use at home only. If you would like to use this software at work or in a commercial environment you should get the professional edition of WhoCrashed which also allows analysis of crashdumps on remote drives and computers on the network and offers a range of additional features.
Click here for more information on the professional edition.
Click here to buy the the professional edition of WhoCrashed.
--------------------------------------------------------------------------------
System Information (local)
--------------------------------------------------------------------------------
computer name: KAROLINKY1
windows version: Windows XP Service Pack 3, 5.1, build: 2600
windows dir: C:\WINDOWS
CPU: AuthenticAMD AMD Athlon(tm) Dual Core Processor 4850e AMD586, level: 15
2 logical processors, active mask: 3
RAM: 1877389312 total
VM: 2147352576, free: 2031869952
--------------------------------------------------------------------------------
Crash Dump Analysis
--------------------------------------------------------------------------------
Crash dump directory: C:\WINDOWS\Minidump
Crash dumps are enabled on your computer.
On Sun 12.8.2012 8:06:29 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\Mini081212-01.dmp
This was probably caused by the following module: catchme.sys (catchme+0x10D7)
Bugcheck code: 0x19 (0x20, 0xFFFFFFFF885DF938, 0xFFFFFFFF885DFD50, 0x1A830004)
Error: BAD_POOL_HEADER
Bug check description: This indicates that a pool header is corrupt.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem. This might be a case of memory corruption. More often memory corruption happens because of software errors in buggy drivers, not because of faulty RAM modules.
A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: catchme.sys .
Google query: catchme.sys BAD_POOL_HEADER
--------------------------------------------------------------------------------
Conclusion
--------------------------------------------------------------------------------
1 crash dumps have been found and analyzed. A third party driver has been identified to be causing system crashes on your computer. It is strongly suggested that you check for updates for these drivers on their company websites. Click on the links below to search with Google for updates for these drivers:
catchme.sys
If no updates for these drivers are available, try searching with Google on the names of these drivers in combination the errors that have been reported for these drivers and include the brand and model name of your computer as well in the query. This often yields interesting results from discussions from users who have been experiencing similar problems.
Read the topic general suggestions for troubleshooting system crashes for more information.
Note that it's not always possible to state with certainty whether a reported driver is actually responsible for crashing your system or that the root cause is in another module. Nonetheless it's suggested you look for updates for the products that these drivers belong to and regularly visit Windows update or enable automatic updates for Windows. In case a piece of malfunctioning hardware is causing trouble, a search with Google on the bug check errors together with the model name and brand of your computer may help you investigate this further.
problémy při startu, prosím o kontrolu logu Vyřešeno
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43072
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: problémy při startu, prosím o kontrolu logu
Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.
Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT
Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
Stáhni si Memtest:
Do políčka vlož největší velikost Tvé jednotlivé paměti RAM (256,512 nebo 1024,2048) dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.
Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.
Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.
Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.
Kontaktuj uživatele MiliNess , aby se Ti podíval na log z WhoCrashed..
Zkopíruj do něj následující celý text označený zeleně:
Kód: Vybrat vše
ClearJavaCache::
KillAll::
File::
c:\program files\Skype\Updater\Updater.exe
Folder::
c:\program files\Skype\Updater
Driver::
Lbd
SBRE
SkypeUpdate
npggsvc
WDC_SAM
Registry::
[-HKEY_LOCAL_MACHINE\System\ControlSet001\Services\npggsvc]
Firefox::
FF - ProfilePath - c:\documents and settings\Karolína\Data aplikací\Mozilla\Firefox\Profiles\3w0a7o4e.default\
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=100888
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.id - 98fdfa07000000000000001fd0d1e7cb
FF - user.js: extensions.BabylonToolbar_i.hardId - 98fdfa07000000000000001fd0d1e7cb
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15394
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1718:27
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.
Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT
Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
Stáhni si Memtest:
Do políčka vlož největší velikost Tvé jednotlivé paměti RAM (256,512 nebo 1024,2048) dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.
Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.
Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.
Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.
Kontaktuj uživatele MiliNess , aby se Ti podíval na log z WhoCrashed..
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: problémy při startu, prosím o kontrolu logu
Ještě než to provedu, mám pár dotazů:
K tomu CFScriptu - jestli mi pak comp nenaběhne, přes F8 se do nouzového režimu asi nedostanu - proto jsem stahoval ten BootSafe, je na to nějaká rada?
Během spuštění Memtestu se s compem normálně dělá, nebo to ty 2h poběží jen ten Memtest?
TDSSKiller, aswMBR - mám zavírat nebo nějak deaktivovat i Avast?
K tomu CFScriptu - jestli mi pak comp nenaběhne, přes F8 se do nouzového režimu asi nedostanu - proto jsem stahoval ten BootSafe, je na to nějaká rada?
Během spuštění Memtestu se s compem normálně dělá, nebo to ty 2h poběží jen ten Memtest?
TDSSKiller, aswMBR - mám zavírat nebo nějak deaktivovat i Avast?
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43072
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: problémy při startu, prosím o kontrolu logu
po stisku klávesy F8 se dostaneš na menu s:
poslední známá fukční konfigurace? Pokud ano , v případě problémů ji spusť.
V průběhu instalace Combofixu si povol " Nainstalovat opravnou konzoli "( recovery konsole) , V případě problémů se Ti po restartu objeví v menu.
poslední známá fukční konfigurace? Pokud ano , v případě problémů ji spusť.
V průběhu instalace Combofixu si povol " Nainstalovat opravnou konzoli "( recovery konsole) , V případě problémů se Ti po restartu objeví v menu.
můžeš normálně pracovat , pokud Ti CPU dovolí.Během spuštění Memtestu se s compem normálně dělá, nebo to ty 2h poběží jen ten Memtest?
--- deaktivuj pouze Avast , případně i firewall.TDSSKiller, aswMBR - mám zavírat nebo nějak deaktivovat i Avast?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: problémy při startu, prosím o kontrolu logu
Zkusil jsem spustit ten ComboFix s tím CFScript.txt. Samozřejmě zase restart, takže jsem to udělal znovu v nouzovém režimu. To sice prošlo, ale na konci - při vytváření/zobrazování logu to spadlo znova. Soubor s logem na C:\ není...
Co dál?
Co dál?
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43072
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: problémy při startu, prosím o kontrolu logu
Zkus ten script v nouz. režimu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: problémy při startu, prosím o kontrolu logu
jak píšu, to spadlo taky... resp. spadlo to ke konci, kdy ComboFix dělá restart a po něm zapisuje log (při zapisování logu to spadlo).
Re: problémy při startu, prosím o kontrolu logu
Zkusil jsem to znovu, pod jiným uživatelským účtem. Tentokrát to prošlo. Tady je log z ComboFix. Jdu na ty další kroky.
ComboFix 12-08-14.05 - Administrator 15.08.2012 19:33:26.4.2 - x86 MINIMAL
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1790.1411 [GMT 2:00]
Spuštěný z: c:\documents and settings\KarolÝna\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\KarolÝna\Plocha\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Předchozí spuštění -------
.
c:\program files\Skype\Updater\Updater.dll
c:\program files\Skype\Updater\Updater.exe
.
-- Předchozí spuštění --
.
c:\windows\system32\drivers\i8042prt.sys . . . chybí !!
.
--------
.
c:\windows\system32\drivers\i8042prt.sys . . . chybí !!
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_LBD
-------\Legacy_SBRE
-------\Legacy_SKYPEUPDATE
-------\Service_Lbd
-------\Service_npggsvc
-------\Service_SBRE
-------\Service_SkypeUpdate
-------\Service_WDC_SAM
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-07-15 do 2012-08-15 )))))))))))))))))))))))))))))))
.
.
2012-08-15 17:24 . 2012-08-15 17:25 -------- d-----w- c:\documents and settings\Administrator
2012-08-12 19:53 . 2012-08-12 19:55 -------- d-----w- c:\program files\WhoCrashed
2012-08-12 05:14 . 2012-06-02 13:18 214256 ----a-w- c:\windows\system32\muweb.dll
2012-08-11 21:30 . 2012-08-11 21:30 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2012-08-11 21:30 . 2012-08-11 21:30 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-08-11 21:30 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-11 19:39 . 2012-08-11 19:39 -------- d-----w- c:\documents and settings\All Users\Data aplikací\GFI Software
2012-08-06 14:12 . 2012-08-06 14:12 -------- d-----w- c:\program files\Common Files\Java
2012-08-06 14:11 . 2012-08-06 14:11 -------- d-----w- c:\program files\Oracle
2012-07-30 22:08 . 2012-07-30 22:08 -------- d-----w- c:\program files\CCleaner
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-15 05:08 . 2012-04-05 06:26 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-08-15 05:08 . 2011-05-26 05:32 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-07-05 20:07 . 2012-05-10 17:04 143872 ----a-w- c:\windows\system32\javacpl.cpl
2012-07-05 20:06 . 2012-05-10 17:04 772544 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-07-05 20:06 . 2010-04-19 05:12 687544 ----a-w- c:\windows\system32\deployJava1.dll
2012-07-03 16:21 . 2009-03-28 12:41 54232 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-07-03 16:21 . 2011-06-29 16:58 721000 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-07-03 16:21 . 2009-03-28 12:41 35928 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-07-03 16:21 . 2009-03-28 12:41 97608 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2012-07-03 16:21 . 2009-03-28 12:41 89624 ----a-w- c:\windows\system32\drivers\aswmon.sys
2012-07-03 16:21 . 2009-03-28 12:41 353688 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-07-03 16:21 . 2009-03-28 12:41 21256 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-07-03 16:21 . 2009-03-28 12:41 25256 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2012-07-03 16:21 . 2010-06-30 20:00 41224 ----a-w- c:\windows\avastSS.scr
2012-07-03 16:21 . 2009-03-28 12:41 227648 ----a-w- c:\windows\system32\aswBoot.exe
2012-06-13 13:55 . 2008-04-14 12:00 1866112 ----a-w- c:\windows\system32\win32k.sys
2012-06-05 15:49 . 2008-04-14 12:00 1372672 ----a-w- c:\windows\system32\msxml6.dll
2012-06-05 15:49 . 2008-04-14 12:00 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-04 04:32 . 2008-04-14 12:00 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 13:19 . 2008-10-16 13:07 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 13:19 . 2008-10-16 13:08 22552 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 13:19 . 2009-03-28 12:00 329240 ----a-w- c:\windows\system32\wucltui.dll
2012-06-02 13:19 . 2009-03-28 12:00 210968 ----a-w- c:\windows\system32\wuweb.dll
2012-06-02 13:19 . 2009-03-28 12:00 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 13:19 . 2009-03-28 12:00 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 13:19 . 2009-03-28 12:00 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 13:19 . 2008-10-16 13:09 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 13:19 . 2008-10-16 13:07 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 13:19 . 2008-10-16 13:07 18456 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-06-02 13:19 . 2008-04-14 12:00 97304 ----a-w- c:\windows\system32\cdm.dll
2012-06-02 13:19 . 2009-03-28 12:00 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 13:19 . 2009-03-28 12:00 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 13:19 . 2009-12-03 06:24 17648 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-06-02 13:18 . 2009-12-03 06:24 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-05-31 13:22 . 2008-04-14 12:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2012-05-29 07:38 . 2011-07-26 15:26 330240 ----a-w- c:\windows\MASetupCaller.dll
2012-07-28 16:44 . 2011-05-01 07:40 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-08-12_19.28.43 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-08-15 05:08 . 2012-08-15 05:08 686792 c:\windows\system32\Macromed\Flash\FlashUtil32_11_3_300_271_Plugin.exe
+ 2012-08-14 22:08 . 2012-08-14 22:08 686792 c:\windows\system32\Macromed\Flash\FlashUtil32_11_3_300_271_ActiveX.exe
+ 2012-08-14 22:08 . 2012-08-14 22:08 466632 c:\windows\system32\Macromed\Flash\FlashUtil32_11_3_300_271_ActiveX.dll
+ 2012-04-05 06:26 . 2012-08-15 05:08 250056 c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
- 2012-04-05 06:26 . 2012-08-04 22:08 250056 c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
+ 2012-08-15 05:08 . 2012-08-15 05:08 9465032 c:\windows\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-07-03 16:21 121528 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GEST"="=" [X]
"RTHDCPL"="RTHDCPL.EXE" [2008-08-26 16851456]
"Lexmark 1200 Series"="c:\program files\Lexmark 1200 Series\lxczbmgr.exe" [2006-07-13 57344]
"pdfFactory Pro Dispatcher v1"="c:\windows\System32\spool\DRIVERS\W32X86\3\fppdis1.exe" [2002-10-30 364544]
"FinePrint Dispatcher v4"="c:\windows\System32\spool\DRIVERS\W32X86\2\fpdisp4.exe" [1999-12-13 303104]
"LogitechCommunicationsManager"="c:\program files\Common Files\Logitech\LComMgr\Communications_Helper.exe" [2006-06-26 497200]
"LogitechQuickCamRibbon"="c:\program files\Logitech\QuickCam10\QuickCam10.exe" [2006-06-26 614960]
"LVCOMSX"="c:\program files\Common Files\Logitech\LComMgr\LVComSX.exe" [2006-06-26 243248]
"WD Drive Manager"="c:\program files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe" [2008-07-24 450560]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 55824]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2006-11-23 56928]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2006-12-05 54832]
"KiesTrayAgent"="c:\program files\Samsung\Kies\KiesTrayAgent.exe" [2012-06-08 3521464]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-02-14 98304]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
BTTray.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2003-8-29 499779]
Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2010-2-7 813584]
Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [2000-1-21 65588]
Windows Search.lnk - c:\program files\Windows Desktop Search\WindowsSearch.exe [2008-5-26 123904]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2009-07-20 11:28 72208 ----a-w- c:\program files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Documents and Settings\\Karolína\\temp\\TeamViewer3\\TeamViewer.exe"=
"d:\\Miloš\\World of Warcraft\\Launcher.exe"=
"d:\\Miloš\\World of Warcraft\\BackgroundDownloader.exe"=
"d:\\Miloš\\World of Warcraft\\WoW-3.1.2.9901-to-3.1.3.9947-enGB-downloader.exe"=
"d:\\Miloš\\World of Warcraft\\WoW-3.1.3.9947-to-3.2.0.10192-enGB-downloader.exe"=
"d:\\Miloš\\World of Warcraft\\WoW-3.2.0.10192-to-3.2.0.10314-enGB-downloader.exe"=
"d:\\Miloš\\World of Warcraft\\WoW-3.2.0.10314-to-3.2.2.10482-enGB-downloader.exe"=
"d:\\Miloš\\World of Warcraft\\WoW-3.2.2.10482-to-3.2.2.10505-enGB-downloader.exe"=
"c:\\Program Files\\THQ\\Dawn of War\\W40k.exe"=
"d:\\Miloš\\World of Warcraft\\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe"=
"d:\\Miloš\\StarCraft II\\StarCraft II.exe"=
"d:\\Miloš\\StarCraft II\\Versions\\Base16939\\SC2.exe"=
"d:\\Miloš\\StarCraft II\\Versions\\Base17326\\SC2.exe"=
"c:\\WINDOWS\\system32\\SUPDSvc.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"d:\\Miloš\\StarCraft II\\Versions\\Base18574\\SC2.exe"=
"c:\\Program Files\\THQ\\Dawn of War - Soulstorm\\Soulstorm.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Documents and Settings\\All Users\\Data aplikací\\Battle.net\\Agent\\Agent.524\\Agent.exe"=
"c:\\Documents and Settings\\All Users\\Data aplikací\\Battle.net\\Agent\\Agent.954\\Agent.exe"=
"c:\\Program Files\\Opera\\pluginwrapper\\opera_plugin_wrapper.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3724:TCP"= 3724:TCP:Blizzard Downloader: 3724
"5985:TCP"= 5985:TCP:*:Disabled:Vzdálená správa systému Windows
.
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [29.6.2011 18:58 721000]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [28.3.2009 14:41 353688]
S2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [28.3.2009 14:41 21256]
S2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe [25.5.2010 8:44 95568]
S2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [20.3.2010 23:29 233472]
S2 LBeepKE;LBeepKE;c:\windows\system32\drivers\LBeepKE.sys [7.2.2010 14:07 10384]
S2 WDBtnMgrSvc.exe;WD Drive Manager Service;c:\program files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe [24.7.2008 15:22 102400]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [5.4.2012 8:26 250056]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\drivers\ssadadb.sys [12.9.2011 17:05 30312]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdXP3.sys [10.3.2012 21:45 100368]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [25.5.2010 8:44 18136]
S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [20.3.2010 23:29 36608]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [11.8.2012 23:30 22344]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [8.5.2012 12:22 113120]
S3 Samsung UPD Service;Samsung UPD Service;c:\windows\system32\SUPDSvc.exe [23.5.2011 20:48 131888]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\drivers\ss_bbus.sys [12.9.2011 17:05 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\drivers\ss_bmdfl.sys [12.9.2011 17:05 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\drivers\ss_bmdm.sys [12.9.2011 17:05 123648]
S3 ss_bserd;SAMSUNG USB Mobile Logging Driver;c:\windows\system32\drivers\ss_bserd.sys [12.9.2011 17:05 100224]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\drivers\ssadbus.sys [12.9.2011 17:05 121064]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\drivers\ssadmdfl.sys [12.9.2011 17:05 12776]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\drivers\ssadmdm.sys [12.9.2011 17:05 136808]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\drivers\ssadserd.sys [12.9.2011 17:05 114280]
S4 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [11.8.2012 23:30 655944]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - LBEEPKE
.
Obsah adresáře 'Naplánované úlohy'
.
2012-08-15 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-05 05:08]
.
2012-08-15 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\Alwil Software\Avast5\AvastEmUpdate.exe [2012-07-10 16:21]
.
.
------- Doplňkový sken -------
.
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\documents and settings\Karolína\Data aplikací\Mozilla\Firefox\Profiles\3w0a7o4e.default\
FF - prefs.js: browser.startup.homepage - hxxp://kajinka.info/
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-08-15 19:46
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(216)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
c:\program files\common files\logishrd\bluetooth\LBTServ.dll
.
Celkový čas: 2012-08-15 19:49:04
ComboFix-quarantined-files.txt 2012-08-15 17:49
ComboFix2.txt 2012-08-12 19:32
.
Před spuštěním: Volných bajtů: 56 255 090 688
Po spuštění: Volných bajtů: 56 235 188 224
.
- - End Of File - - EA51F7D570B14BFDE1CCDDBF36208D34
ComboFix 12-08-14.05 - Administrator 15.08.2012 19:33:26.4.2 - x86 MINIMAL
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1790.1411 [GMT 2:00]
Spuštěný z: c:\documents and settings\KarolÝna\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\KarolÝna\Plocha\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Předchozí spuštění -------
.
c:\program files\Skype\Updater\Updater.dll
c:\program files\Skype\Updater\Updater.exe
.
-- Předchozí spuštění --
.
c:\windows\system32\drivers\i8042prt.sys . . . chybí !!
.
--------
.
c:\windows\system32\drivers\i8042prt.sys . . . chybí !!
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_LBD
-------\Legacy_SBRE
-------\Legacy_SKYPEUPDATE
-------\Service_Lbd
-------\Service_npggsvc
-------\Service_SBRE
-------\Service_SkypeUpdate
-------\Service_WDC_SAM
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-07-15 do 2012-08-15 )))))))))))))))))))))))))))))))
.
.
2012-08-15 17:24 . 2012-08-15 17:25 -------- d-----w- c:\documents and settings\Administrator
2012-08-12 19:53 . 2012-08-12 19:55 -------- d-----w- c:\program files\WhoCrashed
2012-08-12 05:14 . 2012-06-02 13:18 214256 ----a-w- c:\windows\system32\muweb.dll
2012-08-11 21:30 . 2012-08-11 21:30 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2012-08-11 21:30 . 2012-08-11 21:30 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-08-11 21:30 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-11 19:39 . 2012-08-11 19:39 -------- d-----w- c:\documents and settings\All Users\Data aplikací\GFI Software
2012-08-06 14:12 . 2012-08-06 14:12 -------- d-----w- c:\program files\Common Files\Java
2012-08-06 14:11 . 2012-08-06 14:11 -------- d-----w- c:\program files\Oracle
2012-07-30 22:08 . 2012-07-30 22:08 -------- d-----w- c:\program files\CCleaner
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-15 05:08 . 2012-04-05 06:26 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-08-15 05:08 . 2011-05-26 05:32 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-07-05 20:07 . 2012-05-10 17:04 143872 ----a-w- c:\windows\system32\javacpl.cpl
2012-07-05 20:06 . 2012-05-10 17:04 772544 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-07-05 20:06 . 2010-04-19 05:12 687544 ----a-w- c:\windows\system32\deployJava1.dll
2012-07-03 16:21 . 2009-03-28 12:41 54232 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-07-03 16:21 . 2011-06-29 16:58 721000 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-07-03 16:21 . 2009-03-28 12:41 35928 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-07-03 16:21 . 2009-03-28 12:41 97608 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2012-07-03 16:21 . 2009-03-28 12:41 89624 ----a-w- c:\windows\system32\drivers\aswmon.sys
2012-07-03 16:21 . 2009-03-28 12:41 353688 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-07-03 16:21 . 2009-03-28 12:41 21256 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-07-03 16:21 . 2009-03-28 12:41 25256 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2012-07-03 16:21 . 2010-06-30 20:00 41224 ----a-w- c:\windows\avastSS.scr
2012-07-03 16:21 . 2009-03-28 12:41 227648 ----a-w- c:\windows\system32\aswBoot.exe
2012-06-13 13:55 . 2008-04-14 12:00 1866112 ----a-w- c:\windows\system32\win32k.sys
2012-06-05 15:49 . 2008-04-14 12:00 1372672 ----a-w- c:\windows\system32\msxml6.dll
2012-06-05 15:49 . 2008-04-14 12:00 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-04 04:32 . 2008-04-14 12:00 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 13:19 . 2008-10-16 13:07 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 13:19 . 2008-10-16 13:08 22552 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 13:19 . 2009-03-28 12:00 329240 ----a-w- c:\windows\system32\wucltui.dll
2012-06-02 13:19 . 2009-03-28 12:00 210968 ----a-w- c:\windows\system32\wuweb.dll
2012-06-02 13:19 . 2009-03-28 12:00 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 13:19 . 2009-03-28 12:00 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 13:19 . 2009-03-28 12:00 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 13:19 . 2008-10-16 13:09 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 13:19 . 2008-10-16 13:07 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 13:19 . 2008-10-16 13:07 18456 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-06-02 13:19 . 2008-04-14 12:00 97304 ----a-w- c:\windows\system32\cdm.dll
2012-06-02 13:19 . 2009-03-28 12:00 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 13:19 . 2009-03-28 12:00 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 13:19 . 2009-12-03 06:24 17648 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-06-02 13:18 . 2009-12-03 06:24 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-05-31 13:22 . 2008-04-14 12:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2012-05-29 07:38 . 2011-07-26 15:26 330240 ----a-w- c:\windows\MASetupCaller.dll
2012-07-28 16:44 . 2011-05-01 07:40 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-08-12_19.28.43 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-08-15 05:08 . 2012-08-15 05:08 686792 c:\windows\system32\Macromed\Flash\FlashUtil32_11_3_300_271_Plugin.exe
+ 2012-08-14 22:08 . 2012-08-14 22:08 686792 c:\windows\system32\Macromed\Flash\FlashUtil32_11_3_300_271_ActiveX.exe
+ 2012-08-14 22:08 . 2012-08-14 22:08 466632 c:\windows\system32\Macromed\Flash\FlashUtil32_11_3_300_271_ActiveX.dll
+ 2012-04-05 06:26 . 2012-08-15 05:08 250056 c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
- 2012-04-05 06:26 . 2012-08-04 22:08 250056 c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
+ 2012-08-15 05:08 . 2012-08-15 05:08 9465032 c:\windows\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-07-03 16:21 121528 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GEST"="=" [X]
"RTHDCPL"="RTHDCPL.EXE" [2008-08-26 16851456]
"Lexmark 1200 Series"="c:\program files\Lexmark 1200 Series\lxczbmgr.exe" [2006-07-13 57344]
"pdfFactory Pro Dispatcher v1"="c:\windows\System32\spool\DRIVERS\W32X86\3\fppdis1.exe" [2002-10-30 364544]
"FinePrint Dispatcher v4"="c:\windows\System32\spool\DRIVERS\W32X86\2\fpdisp4.exe" [1999-12-13 303104]
"LogitechCommunicationsManager"="c:\program files\Common Files\Logitech\LComMgr\Communications_Helper.exe" [2006-06-26 497200]
"LogitechQuickCamRibbon"="c:\program files\Logitech\QuickCam10\QuickCam10.exe" [2006-06-26 614960]
"LVCOMSX"="c:\program files\Common Files\Logitech\LComMgr\LVComSX.exe" [2006-06-26 243248]
"WD Drive Manager"="c:\program files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe" [2008-07-24 450560]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 55824]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2006-11-23 56928]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2006-12-05 54832]
"KiesTrayAgent"="c:\program files\Samsung\Kies\KiesTrayAgent.exe" [2012-06-08 3521464]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-02-14 98304]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
BTTray.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2003-8-29 499779]
Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2010-2-7 813584]
Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [2000-1-21 65588]
Windows Search.lnk - c:\program files\Windows Desktop Search\WindowsSearch.exe [2008-5-26 123904]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2009-07-20 11:28 72208 ----a-w- c:\program files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Documents and Settings\\Karolína\\temp\\TeamViewer3\\TeamViewer.exe"=
"d:\\Miloš\\World of Warcraft\\Launcher.exe"=
"d:\\Miloš\\World of Warcraft\\BackgroundDownloader.exe"=
"d:\\Miloš\\World of Warcraft\\WoW-3.1.2.9901-to-3.1.3.9947-enGB-downloader.exe"=
"d:\\Miloš\\World of Warcraft\\WoW-3.1.3.9947-to-3.2.0.10192-enGB-downloader.exe"=
"d:\\Miloš\\World of Warcraft\\WoW-3.2.0.10192-to-3.2.0.10314-enGB-downloader.exe"=
"d:\\Miloš\\World of Warcraft\\WoW-3.2.0.10314-to-3.2.2.10482-enGB-downloader.exe"=
"d:\\Miloš\\World of Warcraft\\WoW-3.2.2.10482-to-3.2.2.10505-enGB-downloader.exe"=
"c:\\Program Files\\THQ\\Dawn of War\\W40k.exe"=
"d:\\Miloš\\World of Warcraft\\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe"=
"d:\\Miloš\\StarCraft II\\StarCraft II.exe"=
"d:\\Miloš\\StarCraft II\\Versions\\Base16939\\SC2.exe"=
"d:\\Miloš\\StarCraft II\\Versions\\Base17326\\SC2.exe"=
"c:\\WINDOWS\\system32\\SUPDSvc.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"d:\\Miloš\\StarCraft II\\Versions\\Base18574\\SC2.exe"=
"c:\\Program Files\\THQ\\Dawn of War - Soulstorm\\Soulstorm.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Documents and Settings\\All Users\\Data aplikací\\Battle.net\\Agent\\Agent.524\\Agent.exe"=
"c:\\Documents and Settings\\All Users\\Data aplikací\\Battle.net\\Agent\\Agent.954\\Agent.exe"=
"c:\\Program Files\\Opera\\pluginwrapper\\opera_plugin_wrapper.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3724:TCP"= 3724:TCP:Blizzard Downloader: 3724
"5985:TCP"= 5985:TCP:*:Disabled:Vzdálená správa systému Windows
.
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [29.6.2011 18:58 721000]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [28.3.2009 14:41 353688]
S2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [28.3.2009 14:41 21256]
S2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe [25.5.2010 8:44 95568]
S2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [20.3.2010 23:29 233472]
S2 LBeepKE;LBeepKE;c:\windows\system32\drivers\LBeepKE.sys [7.2.2010 14:07 10384]
S2 WDBtnMgrSvc.exe;WD Drive Manager Service;c:\program files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe [24.7.2008 15:22 102400]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [5.4.2012 8:26 250056]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\drivers\ssadadb.sys [12.9.2011 17:05 30312]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdXP3.sys [10.3.2012 21:45 100368]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [25.5.2010 8:44 18136]
S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [20.3.2010 23:29 36608]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [11.8.2012 23:30 22344]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [8.5.2012 12:22 113120]
S3 Samsung UPD Service;Samsung UPD Service;c:\windows\system32\SUPDSvc.exe [23.5.2011 20:48 131888]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\drivers\ss_bbus.sys [12.9.2011 17:05 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\drivers\ss_bmdfl.sys [12.9.2011 17:05 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\drivers\ss_bmdm.sys [12.9.2011 17:05 123648]
S3 ss_bserd;SAMSUNG USB Mobile Logging Driver;c:\windows\system32\drivers\ss_bserd.sys [12.9.2011 17:05 100224]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\drivers\ssadbus.sys [12.9.2011 17:05 121064]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\drivers\ssadmdfl.sys [12.9.2011 17:05 12776]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\drivers\ssadmdm.sys [12.9.2011 17:05 136808]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\drivers\ssadserd.sys [12.9.2011 17:05 114280]
S4 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [11.8.2012 23:30 655944]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - LBEEPKE
.
Obsah adresáře 'Naplánované úlohy'
.
2012-08-15 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-05 05:08]
.
2012-08-15 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\Alwil Software\Avast5\AvastEmUpdate.exe [2012-07-10 16:21]
.
.
------- Doplňkový sken -------
.
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\documents and settings\Karolína\Data aplikací\Mozilla\Firefox\Profiles\3w0a7o4e.default\
FF - prefs.js: browser.startup.homepage - hxxp://kajinka.info/
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-08-15 19:46
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(216)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
c:\program files\common files\logishrd\bluetooth\LBTServ.dll
.
Celkový čas: 2012-08-15 19:49:04
ComboFix-quarantined-files.txt 2012-08-15 17:49
ComboFix2.txt 2012-08-12 19:32
.
Před spuštěním: Volných bajtů: 56 255 090 688
Po spuštění: Volných bajtů: 56 235 188 224
.
- - End Of File - - EA51F7D570B14BFDE1CCDDBF36208D34
Re: problémy při startu, prosím o kontrolu logu
CrystalDiskInfo:
----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows XP Home Edition SP3 [5.1 Build 2600] (x86)
Date : 2012/08/15 20:57:34
-- Controller Map ----------------------------------------------------------
+ PCI Standardní dvoukanálový řadič IDE [ATA]
+ Primární kanál IDE (0)
- SAMSUNG HD642JJ
- Sekundární kanál IDE (1)
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- Primární kanál IDE (0)
+ Sekundární kanál IDE (1)
- TSSTcorp CDDVDW SH-S223F
-- Disk List ---------------------------------------------------------------
(1) SAMSUNG HD642JJ : 640,1 GB [0/0/0, pd1]
----------------------------------------------------------------------------
(1) SAMSUNG HD642JJ
----------------------------------------------------------------------------
Model : SAMSUNG HD642JJ
Firmware : 1AA01113
Serial Number : S1AFJ90Q911061
Disk Size : 640,1 GB (8,4/137,4/640,1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 1250261615
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ATA8-ACS version 3b
Transfer Mode : SATA/300
Power On Hours : 11981 hod.
Power On Count : 2475 krát
Temparature : 27 C (80 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0000h [OFF]
AAM Level : FE00h [OFF]
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _51 000000000000 Počet chyb čtení
03 _87 _87 _11 00000000132E Čas na roztočení ploten
04 _97 _97 __0 0000000009E2 Počet spuštění/zastavení
05 100 100 _10 000000000000 Počet přemapovaných sektorů
07 100 100 _51 000000000000 Počet chybných hledání
08 100 100 _15 000000000000 Čas potřebný na vyhledání
09 _98 _98 __0 000000002ECD Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _98 _98 __0 0000000009AB Počet cyklů zapnutí zařízení
0D 100 100 __0 000000000000 Počet pokusů o softvérové opravení chyb při čtení programů z disku
B7 100 100 __0 000000000000 Neznámý
B8 100 100 __0 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 100 __0 000000000000 Časový limit příkazu
BE _74 _67 __0 00001A1A001A Teplota toku vzduchu
C2 _73 _66 __0 00001B1A001B Teplota
C3 100 100 __0 000000018710 Počet oprav chybného čtení
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 100 100 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 100 __0 000000000000 Počet chyb při zápisu sektorů
C9 253 253 __0 000000000000 Počet chyb při čtení programů z disku
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 8856 003F 003F 0000 0000 0000
010: 5331 4146 4A39 3051 3931 3631 3631 2020 2020 2020
020: 0003 8000 0004 3141 4130 3133 3133 5341 4D53 554E
030: 4720 4844 3634 324A 4A20 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 1706 1706 0000 004C 0040
080: 00F8 0052 746B 7F69 4133 BC41 BC41 4123 40FF 003C
090: 003C 0000 FFFE 0000 FE00 0005 0005 005D 86A0 0001
100: 7A6F 4A85 0000 0000 0064 0000 0000 0000 5000 0F00
110: 0B19 0116 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 003F 003F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 ECA5
----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows XP Home Edition SP3 [5.1 Build 2600] (x86)
Date : 2012/08/15 20:57:34
-- Controller Map ----------------------------------------------------------
+ PCI Standardní dvoukanálový řadič IDE [ATA]
+ Primární kanál IDE (0)
- SAMSUNG HD642JJ
- Sekundární kanál IDE (1)
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- Primární kanál IDE (0)
+ Sekundární kanál IDE (1)
- TSSTcorp CDDVDW SH-S223F
-- Disk List ---------------------------------------------------------------
(1) SAMSUNG HD642JJ : 640,1 GB [0/0/0, pd1]
----------------------------------------------------------------------------
(1) SAMSUNG HD642JJ
----------------------------------------------------------------------------
Model : SAMSUNG HD642JJ
Firmware : 1AA01113
Serial Number : S1AFJ90Q911061
Disk Size : 640,1 GB (8,4/137,4/640,1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 1250261615
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ATA8-ACS version 3b
Transfer Mode : SATA/300
Power On Hours : 11981 hod.
Power On Count : 2475 krát
Temparature : 27 C (80 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0000h [OFF]
AAM Level : FE00h [OFF]
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _51 000000000000 Počet chyb čtení
03 _87 _87 _11 00000000132E Čas na roztočení ploten
04 _97 _97 __0 0000000009E2 Počet spuštění/zastavení
05 100 100 _10 000000000000 Počet přemapovaných sektorů
07 100 100 _51 000000000000 Počet chybných hledání
08 100 100 _15 000000000000 Čas potřebný na vyhledání
09 _98 _98 __0 000000002ECD Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _98 _98 __0 0000000009AB Počet cyklů zapnutí zařízení
0D 100 100 __0 000000000000 Počet pokusů o softvérové opravení chyb při čtení programů z disku
B7 100 100 __0 000000000000 Neznámý
B8 100 100 __0 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 100 __0 000000000000 Časový limit příkazu
BE _74 _67 __0 00001A1A001A Teplota toku vzduchu
C2 _73 _66 __0 00001B1A001B Teplota
C3 100 100 __0 000000018710 Počet oprav chybného čtení
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 100 100 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 100 __0 000000000000 Počet chyb při zápisu sektorů
C9 253 253 __0 000000000000 Počet chyb při čtení programů z disku
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 8856 003F 003F 0000 0000 0000
010: 5331 4146 4A39 3051 3931 3631 3631 2020 2020 2020
020: 0003 8000 0004 3141 4130 3133 3133 5341 4D53 554E
030: 4720 4844 3634 324A 4A20 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 1706 1706 0000 004C 0040
080: 00F8 0052 746B 7F69 4133 BC41 BC41 4123 40FF 003C
090: 003C 0000 FFFE 0000 FE00 0005 0005 005D 86A0 0001
100: 7A6F 4A85 0000 0000 0064 0000 0000 0000 5000 0F00
110: 0B19 0116 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 003F 003F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 ECA5
Re: problémy při startu, prosím o kontrolu logu
nový log z HiJackThis:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:03:46, on 15.8.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\dgdersvc.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis1.exe
C:\Program Files\Lexmark 1200 Series\lxczbmon.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\2\fpdisp4.exe
C:\Program Files\Common Files\Logitech\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe
C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Logitech\QuickCam10\COCIManager.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Documents and Settings\Karolína\Plocha\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://kajinka.info/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: DeviceVM Url Search Hook - {0063BF63-BFFF-4B8F-9D26-4267DF7F17DD} - C:\WINDOWS\system32\dvmurl.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [GEST] =
O4 - HKLM\..\Run: [Lexmark 1200 Series] "C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe"
O4 - HKLM\..\Run: [pdfFactory Pro Dispatcher v1] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis1.exe
O4 - HKLM\..\Run: [FinePrint Dispatcher v4] C:\WINDOWS\System32\spool\DRIVERS\W32X86\2\fpdisp4.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\Logitech\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide
O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe"
O4 - HKLM\..\Run: [WD Drive Manager] C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Device Error Recovery Service (dgdersvc) - Devguru Co., Ltd. - C:\WINDOWS\system32\dgdersvc.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\Logitech\SrvLnch\SrvLnch.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Samsung UPD Service - Samsung Electronics CO., LTD. - C:\WINDOWS\system32\SUPDSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: WD Drive Manager Service (WDBtnMgrSvc.exe) - WDC - C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe
--
End of file - 10881 bytes
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:03:46, on 15.8.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\dgdersvc.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis1.exe
C:\Program Files\Lexmark 1200 Series\lxczbmon.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\2\fpdisp4.exe
C:\Program Files\Common Files\Logitech\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe
C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Logitech\QuickCam10\COCIManager.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Documents and Settings\Karolína\Plocha\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://kajinka.info/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: DeviceVM Url Search Hook - {0063BF63-BFFF-4B8F-9D26-4267DF7F17DD} - C:\WINDOWS\system32\dvmurl.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [GEST] =
O4 - HKLM\..\Run: [Lexmark 1200 Series] "C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe"
O4 - HKLM\..\Run: [pdfFactory Pro Dispatcher v1] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis1.exe
O4 - HKLM\..\Run: [FinePrint Dispatcher v4] C:\WINDOWS\System32\spool\DRIVERS\W32X86\2\fpdisp4.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\Logitech\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide
O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe"
O4 - HKLM\..\Run: [WD Drive Manager] C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Device Error Recovery Service (dgdersvc) - Devguru Co., Ltd. - C:\WINDOWS\system32\dgdersvc.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\Logitech\SrvLnch\SrvLnch.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Samsung UPD Service - Samsung Electronics CO., LTD. - C:\WINDOWS\system32\SUPDSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: WD Drive Manager Service (WDBtnMgrSvc.exe) - WDC - C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe
--
End of file - 10881 bytes
Re: problémy při startu, prosím o kontrolu logu
TDSSKiller:
20:59:57.0859 4176 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
20:59:58.0015 4176 ============================================================
20:59:58.0015 4176 Current date / time: 2012/08/15 20:59:58.0015
20:59:58.0015 4176 SystemInfo:
20:59:58.0015 4176
20:59:58.0015 4176 OS Version: 5.1.2600 ServicePack: 3.0
20:59:58.0015 4176 Product type: Workstation
20:59:58.0015 4176 ComputerName: KAROLINKY1
20:59:58.0015 4176 UserName: Karolína
20:59:58.0015 4176 Windows directory: C:\WINDOWS
20:59:58.0015 4176 System windows directory: C:\WINDOWS
20:59:58.0015 4176 Processor architecture: Intel x86
20:59:58.0015 4176 Number of processors: 2
20:59:58.0015 4176 Page size: 0x1000
20:59:58.0015 4176 Boot type: Normal boot
20:59:58.0015 4176 ============================================================
20:59:59.0312 4176 Drive \Device\Harddisk0\DR0 - Size: 0x950AF4DE00 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
20:59:59.0312 4176 ============================================================
20:59:59.0312 4176 \Device\Harddisk0\DR0:
20:59:59.0312 4176 MBR partitions:
20:59:59.0312 4176 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC34F28D
20:59:59.0312 4176 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xC34F30B, BlocksNum 0x3E503CF5
20:59:59.0312 4176 ============================================================
20:59:59.0343 4176 C: <-> \Device\Harddisk0\DR0\Partition1
20:59:59.0390 4176 D: <-> \Device\Harddisk0\DR0\Partition2
20:59:59.0390 4176 ============================================================
20:59:59.0390 4176 Initialize success
20:59:59.0390 4176 ============================================================
21:00:04.0328 3064 ============================================================
21:00:04.0328 3064 Scan started
21:00:04.0328 3064 Mode: Manual;
21:00:04.0328 3064 ============================================================
21:00:05.0140 3064 ================ Scan services =============================
21:00:05.0234 3064 [ 0b27ae82c113d3687024d18459440426 ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
21:00:05.0234 3064 Aavmker4 - ok
21:00:05.0250 3064 Abiosdsk - ok
21:00:05.0250 3064 abp480n5 - ok
21:00:05.0265 3064 [ 4fe34f1f3126b61fcc6b2043aa8112c9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:00:05.0265 3064 ACPI - ok
21:00:05.0296 3064 [ afdff022a01f0b11c776f0860c3b282f ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
21:00:05.0296 3064 ACPIEC - ok
21:00:05.0359 3064 [ a9d3b95e8466bd58eeb8a1154654e162 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:00:05.0375 3064 AdobeFlashPlayerUpdateSvc - ok
21:00:05.0375 3064 adpu160m - ok
21:00:05.0390 3064 [ 8bed39e3c35d6a489438b8141717a557 ] aec C:\WINDOWS\system32\drivers\aec.sys
21:00:05.0390 3064 aec - ok
21:00:05.0421 3064 [ 1e44bc1e83d8fd2305f8d452db109cf9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
21:00:05.0421 3064 AFD - ok
21:00:05.0437 3064 Aha154x - ok
21:00:05.0437 3064 aic78u2 - ok
21:00:05.0437 3064 aic78xx - ok
21:00:05.0468 3064 [ e0a6fa244b8624d78fe5ff6f56a33bae ] Alerter C:\WINDOWS\system32\alrsvc.dll
21:00:05.0468 3064 Alerter - ok
21:00:05.0484 3064 [ 88842de939a827577bf24243699ac80a ] ALG C:\WINDOWS\System32\alg.exe
21:00:05.0500 3064 ALG - ok
21:00:05.0500 3064 AliIde - ok
21:00:05.0515 3064 [ fcffa85cfd4bf7a4711012847048dca3 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
21:00:05.0515 3064 AmdK8 - ok
21:00:05.0515 3064 amsint - ok
21:00:05.0546 3064 [ dd8d9c597af7cd2f6b70a3d6a4a1acea ] androidusb C:\WINDOWS\system32\Drivers\ssadadb.sys
21:00:05.0546 3064 androidusb - ok
21:00:05.0562 3064 AppMgmt - ok
21:00:05.0562 3064 [ b5b8a80875c1dededa8b02765642c32f ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:00:05.0562 3064 Arp1394 - ok
21:00:05.0578 3064 asc - ok
21:00:05.0578 3064 asc3350p - ok
21:00:05.0593 3064 asc3550 - ok
21:00:05.0640 3064 [ 0e5e4957549056e2bf2c49f4f6b601ad ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
21:00:05.0656 3064 aspnet_state - ok
21:00:05.0656 3064 [ 1c1f3d6dddc046c920c493a779649f66 ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
21:00:05.0656 3064 aswFsBlk - ok
21:00:05.0671 3064 [ 9e912fe7b41650701ef2b227aca440f3 ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
21:00:05.0671 3064 aswMon2 - ok
21:00:05.0687 3064 [ 982e275d1c5801042fe94209fb0160fb ] aswRdr C:\WINDOWS\system32\drivers\aswRdr.sys
21:00:05.0687 3064 aswRdr - ok
21:00:05.0734 3064 [ 73dbcf808e00580f2a47f93dd9b03876 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
21:00:05.0734 3064 aswSnx - ok
21:00:05.0750 3064 [ 6cbd7d3a33f498d09c831cdd732da2e0 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
21:00:05.0750 3064 aswSP - ok
21:00:05.0750 3064 [ 7109a9aa551f37cd168c02368465957e ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
21:00:05.0765 3064 aswTdi - ok
21:00:05.0765 3064 [ b153affac761e7f5fcfa822b9c4e97bc ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:00:05.0765 3064 AsyncMac - ok
21:00:05.0765 3064 [ 9f3a2f5aa6875c72bf062c712cfa2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
21:00:05.0781 3064 atapi - ok
21:00:05.0781 3064 Atdisk - ok
21:00:05.0828 3064 [ c434b72352fadd9249d5541274021570 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
21:00:05.0828 3064 Ati HotKey Poller - ok
21:00:05.0953 3064 [ b4368b39a18630c3ec8d7f496f76f19b ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:00:06.0000 3064 ati2mtag - ok
21:00:06.0015 3064 [ bd9ca8136738040d3257363ed12be693 ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdXP3.sys
21:00:06.0015 3064 AtiHDAudioService - ok
21:00:06.0031 3064 [ 9916c1225104ba14794209cfa8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:00:06.0031 3064 Atmarpc - ok
21:00:06.0062 3064 [ de31b88962a8645dba5a37b993e7b0f1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
21:00:06.0062 3064 AudioSrv - ok
21:00:06.0093 3064 [ d9f724aa26c010a217c97606b160ed68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
21:00:06.0093 3064 audstub - ok
21:00:06.0156 3064 [ 2f7c0f3e39c45e0127fb78b2f18a41f3 ] avast! Antivirus C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
21:00:06.0156 3064 avast! Antivirus - ok
21:00:06.0187 3064 [ da1f27d85e0d1525f6621372e7b685e9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
21:00:06.0187 3064 Beep - ok
21:00:06.0218 3064 [ 19395d092fd85ddc2d9c7729cf5a2ac8 ] BITS C:\WINDOWS\system32\qmgr.dll
21:00:06.0343 3064 BITS - ok
21:00:06.0359 3064 [ 249276d3ef1e74b992299cb96099e4d7 ] Browser C:\WINDOWS\System32\browser.dll
21:00:06.0359 3064 Browser - ok
21:00:06.0375 3064 [ bc48a0cee1c2dd2a29a17bbe2f739421 ] BtAudio C:\WINDOWS\system32\DRIVERS\btaudio.sys
21:00:06.0375 3064 BtAudio - ok
21:00:06.0390 3064 [ 26a9953fc52826896b5099e640e98dcd ] BTDriver C:\WINDOWS\system32\DRIVERS\btport.sys
21:00:06.0390 3064 BTDriver - ok
21:00:06.0421 3064 [ 2066d4375bae126e2e28964d2e07e405 ] BTKRNL C:\WINDOWS\system32\drivers\btkrnl.sys
21:00:06.0437 3064 BTKRNL - ok
21:00:06.0453 3064 [ 1ea96c0fa2e13d8b716dea7034617b9b ] BTSERIAL C:\WINDOWS\system32\drivers\btserial.sys
21:00:06.0453 3064 BTSERIAL - ok
21:00:06.0468 3064 [ d266f8d4ab9e31ca54cfa2ccb6fbcd49 ] BTSLBCSP C:\WINDOWS\system32\drivers\btslbcsp.sys
21:00:06.0468 3064 BTSLBCSP - ok
21:00:06.0500 3064 [ 9db4fcb7bc45e6b08a865e48bcf82c7a ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
21:00:06.0500 3064 btwdins - ok
21:00:06.0515 3064 [ 9965059de311d518b91c7a4d7716dfe4 ] BTWDNDIS C:\WINDOWS\system32\DRIVERS\btwdndis.sys
21:00:06.0515 3064 BTWDNDIS - ok
21:00:06.0546 3064 [ b140856668032cd86e0a6739c92a5a02 ] BTWUSB C:\WINDOWS\system32\Drivers\btwusb.sys
21:00:06.0546 3064 BTWUSB - ok
21:00:06.0640 3064 catchme - ok
21:00:06.0671 3064 [ 90a673fc8e12a79afbed2576f6a7aaf9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
21:00:06.0671 3064 cbidf2k - ok
21:00:06.0687 3064 [ 0be5aef125be881c4f854c554f2b025c ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:00:06.0687 3064 CCDECODE - ok
21:00:06.0703 3064 cd20xrnt - ok
21:00:06.0734 3064 [ c1b486a7658353d33a10cc15211a873b ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
21:00:06.0734 3064 Cdaudio - ok
21:00:06.0750 3064 [ c885b02847f5d2fd45a24e219ed93b32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
21:00:06.0750 3064 Cdfs - ok
21:00:06.0781 3064 [ 1f4260cc5b42272d71f79e570a27a4fe ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:00:06.0781 3064 Cdrom - ok
21:00:06.0796 3064 Changer - ok
21:00:06.0796 3064 [ e390dc1d7c461d7d56ec53402f329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
21:00:06.0812 3064 CiSvc - ok
21:00:06.0812 3064 [ 064507a8dfa8c5c7e2ffddd3e6f424fa ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
21:00:06.0812 3064 ClipSrv - ok
21:00:06.0828 3064 [ d87acaed61e417bba546ced5e7e36d9c ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:00:06.0843 3064 clr_optimization_v2.0.50727_32 - ok
21:00:06.0890 3064 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:00:06.0890 3064 clr_optimization_v4.0.30319_32 - ok
21:00:06.0890 3064 CmdIde - ok
21:00:06.0906 3064 COMSysApp - ok
21:00:06.0921 3064 Cpqarray - ok
21:00:06.0937 3064 [ f3ab0933cbd166d271992f411c27ccaf ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
21:00:06.0937 3064 CryptSvc - ok
21:00:06.0953 3064 dac2w2k - ok
21:00:06.0953 3064 dac960nt - ok
21:00:07.0000 3064 [ be27674d1cbc3214aec84b4336a38bbf ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
21:00:07.0000 3064 DcomLaunch - ok
21:00:07.0031 3064 [ d0d4f3ca1d3a4400e1f40f36a800cd12 ] dgderdrv C:\WINDOWS\system32\drivers\dgderdrv.sys
21:00:07.0031 3064 dgderdrv - ok
21:00:07.0046 3064 [ 1f7baca7d1dd1b3d73b4c3934148fad3 ] dgdersvc C:\WINDOWS\system32\dgdersvc.exe
21:00:07.0062 3064 dgdersvc - ok
21:00:07.0078 3064 [ 8c9a53e285ac5e6704844d0459ec85be ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
21:00:07.0078 3064 Dhcp - ok
21:00:07.0093 3064 [ 044452051f3e02e7963599fc8f4f3e25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
21:00:07.0093 3064 Disk - ok
21:00:07.0093 3064 dmadmin - ok
21:00:07.0125 3064 [ db5fd2bf5b07dc54bfcb3664ff05bd7c ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
21:00:07.0140 3064 dmboot - ok
21:00:07.0156 3064 [ fff1720af51171f32f1ead5cf71f2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
21:00:07.0156 3064 dmio - ok
21:00:07.0187 3064 [ e9317282a63ca4d188c0df5e09c6ac5f ] dmload C:\WINDOWS\system32\drivers\dmload.sys
21:00:07.0187 3064 dmload - ok
21:00:07.0203 3064 [ 2bfefe9e865655a76982f050450b9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
21:00:07.0203 3064 dmserver - ok
21:00:07.0234 3064 [ 8a208dfcf89792a484e76c40e5f50b45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
21:00:07.0234 3064 DMusic - ok
21:00:07.0250 3064 [ dfaa406bf19f4ee806a6f8d4342137f7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
21:00:07.0265 3064 Dnscache - ok
21:00:07.0281 3064 [ 4a3e2bd20157a0946751229e92eb8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
21:00:07.0281 3064 Dot3svc - ok
21:00:07.0281 3064 dpti2o - ok
21:00:07.0296 3064 [ 8f5fcff8e8848afac920905fbd9d33c8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
21:00:07.0296 3064 drmkaud - ok
21:00:07.0296 3064 [ 0887d9c2be8d940778cad1e3b85f2a41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
21:00:07.0312 3064 EapHost - ok
21:00:07.0328 3064 [ a2a4912798f2be706abadd3d30800d16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
21:00:07.0328 3064 ERSvc - ok
21:00:07.0343 3064 [ 9ef697af07bb8dd82c3b02ca953a95b7 ] Eventlog C:\WINDOWS\system32\services.exe
21:00:07.0375 3064 Eventlog - ok
21:00:07.0390 3064 [ a371f11ef07653591c8de26afb13ce7f ] EventSystem C:\WINDOWS\system32\es.dll
21:00:07.0390 3064 EventSystem - ok
21:00:07.0421 3064 [ 38d332a6d56af32635675f132548343e ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
21:00:07.0437 3064 Fastfat - ok
21:00:07.0453 3064 [ ee9a2b9ea968a792a053c9d1a86bf870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
21:00:07.0468 3064 FastUserSwitchingCompatibility - ok
21:00:07.0484 3064 [ 92cdd60b6730b9f50f6a1a0c1f8cdc81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
21:00:07.0484 3064 Fdc - ok
21:00:07.0500 3064 [ ac366695a0796560aa37215ad5762aaf ] Fips C:\WINDOWS\system32\drivers\Fips.sys
21:00:07.0500 3064 Fips - ok
21:00:07.0500 3064 [ 9d27e7b80bfcdf1cdd9b555862d5e7f0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
21:00:07.0500 3064 Flpydisk - ok
21:00:07.0531 3064 [ b2cf4b0786f8212cb92ed2b50c6db6b0 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
21:00:07.0531 3064 FltMgr - ok
21:00:07.0593 3064 [ 8ba7c024070f2b7fdd98ed8a4ba41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
21:00:07.0593 3064 FontCache3.0.0.0 - ok
21:00:07.0625 3064 [ cbe5f69a5e5b918225f420ba748f3742 ] FsUsbExDisk C:\WINDOWS\system32\FsUsbExDisk.SYS
21:00:07.0625 3064 FsUsbExDisk - ok
21:00:07.0640 3064 [ 15ab846886c225fff0376f3cef21188f ] FsUsbExService C:\WINDOWS\system32\FsUsbExService.Exe
21:00:07.0640 3064 FsUsbExService - ok
21:00:07.0640 3064 [ 3e1e2bd4f39b0e2b7dc4f4d2bcc2779a ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:00:07.0640 3064 Fs_Rec - ok
21:00:07.0656 3064 [ 4e664d8541db4a66b73a24257e322e1f ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:00:07.0656 3064 Ftdisk - ok
21:00:07.0687 3064 [ 5c230948dd6652228f88ca7ae6cb276c ] gdrv C:\WINDOWS\gdrv.sys
21:00:08.0421 3064 gdrv - ok
21:00:08.0453 3064 [ 0a02c63c8b144bd8c86b103dee7c86a2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:00:08.0453 3064 Gpc - ok
21:00:08.0500 3064 [ 1bf044e23206fddc16891a32922d571b ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
21:00:08.0500 3064 gusvc - ok
21:00:08.0531 3064 [ 573c7d0a32852b48f3058cfd8026f511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:00:08.0531 3064 HDAudBus - ok
21:00:08.0593 3064 [ fcfe31fb75f8a6295b6b0af87a626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:00:08.0593 3064 helpsvc - ok
21:00:08.0609 3064 [ 00e25ee90166b3e1be6e74aebf858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
21:00:08.0609 3064 HidServ - ok
21:00:08.0640 3064 [ ccf82c5ec8a7326c3066de870c06daf1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:00:08.0640 3064 hidusb - ok
21:00:08.0656 3064 [ 7a6b320928f86bc851530d63c82965d9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
21:00:08.0671 3064 hkmsvc - ok
21:00:08.0671 3064 hpn - ok
21:00:08.0703 3064 [ f80a415ef82cd06ffaf0d971528ead38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
21:00:08.0703 3064 HTTP - ok
21:00:08.0734 3064 [ 58fe2f2da3bc5573f4a35b3760d3125f ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
21:00:08.0750 3064 HTTPFilter - ok
21:00:08.0750 3064 i2omgmt - ok
21:00:08.0765 3064 i2omp - ok
21:00:08.0828 3064 [ 1cf03c69b49acb70c722df92755c0c8c ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
21:00:08.0828 3064 IDriverT - ok
21:00:08.0875 3064 [ c01ac32dc5c03076cfb852cb5da5229c ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:00:08.0890 3064 idsvc - ok
21:00:08.0890 3064 [ 083a052659f5310dd8b6a6cb05edcf8e ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
21:00:08.0890 3064 Imapi - ok
21:00:08.0921 3064 [ f7b93aafad33b2320954c17e26c8d361 ] ImapiService C:\WINDOWS\system32\imapi.exe
21:00:08.0937 3064 ImapiService - ok
21:00:08.0937 3064 ini910u - ok
21:00:09.0046 3064 [ 927cf2be4e57ff55e23759ac0ca57aa3 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
21:00:09.0078 3064 IntcAzAudAddService - ok
21:00:09.0078 3064 IntelIde - ok
21:00:09.0109 3064 [ 3bb22519a194418d5fec05d800a19ad0 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
21:00:09.0125 3064 Ip6Fw - ok
21:00:09.0140 3064 [ 731f22ba402ee4b62748adaf6363c182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:00:09.0140 3064 IpFilterDriver - ok
21:00:09.0156 3064 [ b87ab476dcf76e72010632b5550955f5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:00:09.0156 3064 IpInIp - ok
21:00:09.0171 3064 [ cc748ea12c6effde940ee98098bf96bb ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:00:09.0171 3064 IpNat - ok
21:00:09.0171 3064 [ 23c74d75e36e7158768dd63d92789a91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:00:09.0171 3064 IPSec - ok
21:00:09.0203 3064 [ c93c9ff7b04d772627a3646d89f7bf89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
21:00:09.0203 3064 IRENUM - ok
21:00:09.0218 3064 [ cc9f8a2d60aed1a51a3ac34c59b987ae ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:00:09.0218 3064 isapnp - ok
21:00:09.0265 3064 [ 4f2143570d2250ca4c4a4c98553c82cd ] JavaQuickStarterService C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
21:00:09.0265 3064 JavaQuickStarterService - ok
21:00:09.0296 3064 [ 1b6162fe7f66b1a71a4b70f941c4aa9b ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:00:09.0296 3064 Kbdclass - ok
21:00:09.0296 3064 [ 86c8f23616c6c6e5b2776901c17b945b ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:00:09.0312 3064 kbdhid - ok
21:00:09.0312 3064 [ 692bcf44383d056aed41b045a323d378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
21:00:09.0312 3064 kmixer - ok
21:00:09.0343 3064 [ b467646c54cc746128904e1654c750c1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
21:00:09.0343 3064 KSecDD - ok
21:00:09.0359 3064 [ 3428e8f86f8add36b42fb23542c7b3e4 ] LanmanServer C:\WINDOWS\System32\srvsvc.dll
21:00:09.0375 3064 LanmanServer - ok
21:00:09.0406 3064 [ 936c1d110232d23b621cb0196e4f80f0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
21:00:09.0421 3064 lanmanworkstation - ok
21:00:09.0421 3064 [ 9ffd1cf2a782f2560e78eec4b8b8689e ] LBeepKE C:\WINDOWS\system32\Drivers\LBeepKE.sys
21:00:09.0421 3064 LBeepKE - ok
21:00:09.0437 3064 lbrtfdc - ok
21:00:09.0484 3064 [ 3af6b73a3ad1fc37c5933441f66ceb91 ] LBTServ C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
21:00:09.0484 3064 LBTServ - ok
21:00:09.0515 3064 [ a1043645d16915df12a6f2e049922a18 ] LexBceS C:\WINDOWS\system32\LEXBCES.EXE
21:00:09.0515 3064 LexBceS - ok
21:00:09.0531 3064 [ 7f9c7b28cf1c859e1c42619eea946dc8 ] LHidFilt C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
21:00:09.0531 3064 LHidFilt - ok
21:00:09.0562 3064 [ 6e5dac168d1ff9843e84a59d51d31107 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
21:00:09.0562 3064 LightScribeService - ok
21:00:09.0578 3064 [ 0ab159f536e3e8f7f07113702a07cca5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
21:00:09.0593 3064 LmHosts - ok
21:00:09.0593 3064 [ ab33792a87285344f43b5ce23421bab0 ] LMouFilt C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
21:00:09.0593 3064 LMouFilt - ok
21:00:09.0656 3064 [ 2d0ab9d29e6b0c42cce955b5a8e0d62d ] LVcKap C:\WINDOWS\system32\DRIVERS\LVcKap.sys
21:00:09.0671 3064 LVcKap - ok
21:00:09.0718 3064 [ a3963e3d997c3646e1d3338eb88a48e9 ] LVMVDrv C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys
21:00:09.0734 3064 LVMVDrv - ok
21:00:09.0750 3064 [ 39c767bd6d99c23d28e71b6e0cba3129 ] LVPr2Mon C:\WINDOWS\system32\drivers\LVPr2Mon.sys
21:00:09.0750 3064 LVPr2Mon - ok
21:00:09.0765 3064 [ 44b3b997e25c5d9a81d6c501451a96d7 ] LVPrcSrv c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
21:00:09.0765 3064 LVPrcSrv - ok
21:00:09.0781 3064 [ 7b4607c0c664da98753508f85bb10694 ] LVSrvLauncher C:\Program Files\Common Files\Logitech\SrvLnch\SrvLnch.exe
21:00:09.0781 3064 LVSrvLauncher - ok
21:00:09.0812 3064 [ 6ad3f5275f117f08c12eab2233a9e3fb ] LVUSBSta C:\WINDOWS\system32\drivers\lvusbsta.sys
21:00:09.0812 3064 LVUSBSta - ok
21:00:09.0843 3064 [ 6dfe7f2e8e8a337263aa5c92a215f161 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
21:00:09.0843 3064 MBAMProtector - ok
21:00:09.0875 3064 [ 43683e970f008c93c9429ef428147a54 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
21:00:09.0890 3064 MBAMService - ok
21:00:09.0906 3064 [ 221cd1c815b8a6b79389c3f5d1018de8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
21:00:09.0921 3064 Messenger - ok
21:00:09.0937 3064 [ 4ae068242760a1fb6e1a44bf4e16afa6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
21:00:09.0937 3064 mnmdd - ok
21:00:09.0984 3064 [ 9a57d046f88f4b69751b11fd40088a61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
21:00:09.0984 3064 mnmsrvc - ok
21:00:10.0000 3064 [ 44032b0c6d9954d3fd26438330b99ee7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
21:00:10.0000 3064 Modem - ok
21:00:10.0031 3064 [ 4cb582831dbde63ce43b45d771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:00:10.0031 3064 Mouclass - ok
21:00:10.0046 3064 [ bb269eba740737ab749b214d568b6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:00:10.0046 3064 mouhid - ok
21:00:10.0062 3064 [ a80b9a0bad1b73637dbcbba7df72d3fd ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
21:00:10.0062 3064 MountMgr - ok
21:00:10.0125 3064 [ 46297fa8e30a6007f14118fc2b942fbc ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:00:10.0125 3064 MozillaMaintenance - ok
21:00:10.0125 3064 mraid35x - ok
21:00:10.0140 3064 [ 11d42bb6206f33fbb3ba0288d3ef81bd ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:00:10.0140 3064 MRxDAV - ok
21:00:10.0171 3064 [ 7d304a5eb4344ebeeab53a2fe3ffb9f0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:00:10.0187 3064 MRxSmb - ok
21:00:10.0203 3064 [ 6db4d1521caba9a5ffab54ade0ae867d ] MSDTC C:\WINDOWS\system32\msdtc.exe
21:00:10.0218 3064 MSDTC - ok
21:00:10.0234 3064 [ c941ea2454ba8350021d774daf0f1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
21:00:10.0234 3064 Msfs - ok
21:00:10.0234 3064 MSIServer - ok
21:00:10.0250 3064 [ d1575e71568f4d9e14ca56b7b0453bf1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:00:10.0250 3064 MSKSSRV - ok
21:00:10.0281 3064 [ 325bb26842fc7ccc1fcce2c457317f3e ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:00:10.0281 3064 MSPCLOCK - ok
21:00:10.0296 3064 [ bad59648ba099da4a17680b39730cb3d ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
21:00:10.0296 3064 MSPQM - ok
21:00:10.0312 3064 [ af5f4f3f14a8ea2c26de30f7a1e17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:00:10.0312 3064 mssmbios - ok
21:00:10.0328 3064 [ e53736a9e30c45fa9e7b5eac55056d1d ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
21:00:10.0343 3064 MSTEE - ok
21:00:10.0359 3064 [ de6a75f5c270e756c5508d94b6cf68f5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
21:00:10.0359 3064 Mup - ok
21:00:10.0375 3064 [ 5b50f1b2a2ed47d560577b221da734db ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:00:10.0375 3064 NABTSFEC - ok
21:00:10.0390 3064 [ 6ea362e9db03d44f6b996f4d8be237e9 ] napagent C:\WINDOWS\System32\qagentrt.dll
21:00:10.0406 3064 napagent - ok
21:00:10.0468 3064 [ 0d01287d85b3715fa8270e8ec919b7f7 ] NBService C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
21:00:10.0484 3064 NBService - ok
21:00:10.0515 3064 [ 1df7f42665c94b825322fae71721130d ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
21:00:10.0515 3064 NDIS - ok
21:00:10.0531 3064 [ 7ff1f1fd8609c149aa432f95a8163d97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:00:10.0531 3064 NdisIP - ok
21:00:10.0562 3064 [ 0109c4f3850dfbab279542515386ae22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:00:10.0578 3064 NdisTapi - ok
21:00:10.0593 3064 [ f927a4434c5028758a842943ef1a3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:00:10.0593 3064 Ndisuio - ok
21:00:10.0609 3064 [ edc1531a49c80614b2cfda43ca8659ab ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:00:10.0609 3064 NdisWan - ok
21:00:10.0640 3064 [ 9282bd12dfb069d3889eb3fcc1000a9b ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
21:00:10.0640 3064 NDProxy - ok
21:00:10.0640 3064 [ 5d81cf9a2f1a3a756b66cf684911cdf0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
21:00:10.0640 3064 NetBIOS - ok
21:00:10.0656 3064 [ 74b2b2f5bea5e9a3dc021d685551bd3d ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
21:00:10.0671 3064 NetBT - ok
21:00:10.0687 3064 [ 933de774986ec85e48210c44ab431de6 ] NetDDE C:\WINDOWS\system32\netdde.exe
21:00:10.0687 3064 NetDDE - ok
21:00:10.0703 3064 [ 933de774986ec85e48210c44ab431de6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
21:00:10.0703 3064 NetDDEdsdm - ok
21:00:10.0718 3064 [ ed0a176354487ceed65b80a7148ab739 ] Netlogon C:\WINDOWS\system32\lsass.exe
21:00:10.0718 3064 Netlogon - ok
21:00:10.0734 3064 [ 72e1e9e2977be08bdeedb6d8fd9d4d40 ] Netman C:\WINDOWS\System32\netman.dll
21:00:10.0750 3064 Netman - ok
21:00:10.0781 3064 [ d34612c5d02d026535b3095d620626ae ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:00:10.0781 3064 NetTcpPortSharing - ok
21:00:10.0796 3064 [ e9e47cfb2d461fa0fc75b7a74c6383ea ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:00:10.0796 3064 NIC1394 - ok
21:00:10.0828 3064 [ 39ee7c3bfbc64ba87cc8cf67386e814c ] Nla C:\WINDOWS\System32\mswsock.dll
21:00:10.0828 3064 Nla - ok
21:00:10.0890 3064 [ c4ebbbd7165be535f0bfd06b80601d91 ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
21:00:10.0890 3064 NMIndexingService - ok
21:00:10.0890 3064 [ 3182d64ae053d6fb034f44b6def8034a ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
21:00:10.0890 3064 Npfs - ok
21:00:10.0906 3064 NPPTNT2 - ok
21:00:10.0921 3064 [ 78a08dd6a8d65e697c18e1db01c5cdca ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
21:00:10.0921 3064 Ntfs - ok
21:00:10.0937 3064 [ ed0a176354487ceed65b80a7148ab739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
21:00:10.0937 3064 NtLmSsp - ok
21:00:11.0000 3064 [ 023dd70573d644f3d9c8b1258a7bfd08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
21:00:11.0000 3064 NtmsSvc - ok
21:00:11.0015 3064 [ 73c1e1f395918bc2c6dd67af7591a3ad ] Null C:\WINDOWS\system32\drivers\Null.sys
21:00:11.0015 3064 Null - ok
21:00:11.0031 3064 [ b305f3fad35083837ef46a0bbce2fc57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:00:11.0046 3064 NwlnkFlt - ok
21:00:11.0062 3064 [ c99b3415198d1aab7227f2c88fd664b9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:00:11.0062 3064 NwlnkFwd - ok
21:00:11.0187 3064 [ 785f487a64950f3cb8e9f16253ba3b7b ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:00:11.0203 3064 odserv - ok
21:00:11.0203 3064 [ ca33832df41afb202ee7aeb05145922f ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:00:11.0203 3064 ohci1394 - ok
21:00:11.0234 3064 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:00:11.0250 3064 ose - ok
21:00:11.0265 3064 [ 46f8db73b4a53e543f8e371dc7c75bae ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
21:00:11.0265 3064 Parport - ok
21:00:11.0281 3064 [ beb3ba25197665d82ec7065b724171c6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
21:00:11.0281 3064 PartMgr - ok
21:00:11.0312 3064 [ 1fae19d0457176318bba4a8795656ebc ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
21:00:11.0312 3064 ParVdm - ok
21:00:11.0343 3064 [ fd2041e9ba03db7764b2248f02475079 ] pccsmcfd C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
21:00:11.0343 3064 pccsmcfd - ok
21:00:11.0359 3064 [ 6ce351d149cb4befc702951e471e1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
21:00:11.0359 3064 PCI - ok
21:00:11.0359 3064 PCIDump - ok
21:00:11.0375 3064 [ 2da4ec85e0ea7a45c6b2a05820492d5a ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
21:00:11.0375 3064 PCIIde - ok
21:00:11.0375 3064 [ 4fc31e6c19a5ce5198b1abff94cae758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
21:00:11.0390 3064 Pcmcia - ok
21:00:11.0390 3064 PDCOMP - ok
21:00:11.0390 3064 PDFRAME - ok
21:00:11.0406 3064 PDRELI - ok
21:00:11.0406 3064 PDRFRAME - ok
21:00:11.0421 3064 perc2 - ok
21:00:11.0421 3064 perc2hib - ok
21:00:11.0468 3064 [ 95f6c2e89b5b0edf33be7e0bedf21991 ] PID_0928 C:\WINDOWS\system32\DRIVERS\LV561AV.SYS
21:00:11.0468 3064 PID_0928 - ok
21:00:11.0484 3064 [ 9ef697af07bb8dd82c3b02ca953a95b7 ] PlugPlay C:\WINDOWS\system32\services.exe
21:00:11.0500 3064 PlugPlay - ok
21:00:11.0500 3064 [ ed0a176354487ceed65b80a7148ab739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
21:00:11.0500 3064 PolicyAgent - ok
21:00:11.0515 3064 [ efeec01b1d3cf84f16ddd24d9d9d8f99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:00:11.0515 3064 PptpMiniport - ok
21:00:11.0531 3064 [ 7eb15dce4ec3a0220bd796a15c18186e ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
21:00:11.0531 3064 Processor - ok
21:00:11.0531 3064 [ ed0a176354487ceed65b80a7148ab739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
21:00:11.0531 3064 ProtectedStorage - ok
21:00:11.0546 3064 [ 09298ec810b07e5d582cb3a3f9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
21:00:11.0546 3064 PSched - ok
21:00:11.0562 3064 [ 80d317bd1c3dbc5d4fe7b1678c60cadd ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:00:11.0562 3064 Ptilink - ok
21:00:11.0578 3064 [ 49452bfcec22f36a7a9b9c2181bc3042 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
21:00:11.0578 3064 PxHelp20 - ok
21:00:11.0578 3064 ql1080 - ok
21:00:11.0593 3064 Ql10wnt - ok
21:00:11.0593 3064 ql12160 - ok
21:00:11.0609 3064 ql1240 - ok
21:00:11.0609 3064 ql1280 - ok
21:00:11.0625 3064 [ fe0d99d6f31e4fad8159f690d68ded9c ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:00:11.0625 3064 RasAcd - ok
21:00:11.0640 3064 [ 2b5e44ea009f2f374b980e1e9a70635d ] RasAuto C:\WINDOWS\System32\rasauto.dll
21:00:11.0656 3064 RasAuto - ok
21:00:11.0656 3064 [ 11b4a627bc9614b885c4969bfa5ff8a6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:00:11.0656 3064 Rasl2tp - ok
21:00:11.0687 3064 [ d57554c664b64604bd1ee13ea2c07e77 ] RasMan C:\WINDOWS\System32\rasmans.dll
21:00:11.0687 3064 RasMan - ok
21:00:11.0703 3064 [ 5bc962f2654137c9909c3d4603587dee ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:00:11.0703 3064 RasPppoe - ok
21:00:11.0703 3064 [ fdbb1d60066fcfbb7452fd8f9829b242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
21:00:11.0703 3064 Raspti - ok
21:00:11.0718 3064 [ 7ad224ad1a1437fe28d89cf22b17780a ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:00:11.0718 3064 Rdbss - ok
21:00:11.0734 3064 [ 4912d5b403614ce99c28420f75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:00:11.0734 3064 RDPCDD - ok
21:00:11.0765 3064 [ 6589db6e5969f8eee594cf71171c5028 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
21:00:11.0765 3064 RDPWD - ok
21:00:11.0796 3064 [ c0d9d9711cb74ee9bc66353d8cbdab0e ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
21:00:11.0812 3064 RDSessMgr - ok
21:00:11.0828 3064 [ 611bfd220305be3a85ae876ea47d4aa5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
21:00:11.0828 3064 redbook - ok
21:00:11.0843 3064 [ 127c26b5371651043450e52542099aba ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
21:00:11.0859 3064 RemoteAccess - ok
21:00:11.0921 3064 [ bd517c7fb119997effbe39d5e4b37b05 ] RichVideo C:\Program Files\CyberLink\Shared Files\RichVideo.exe
21:00:11.0921 3064 RichVideo - ok
21:00:11.0937 3064 [ 718b3bdc0bc3c2f7d065a53d26202af9 ] RpcLocator C:\WINDOWS\system32\locator.exe
21:00:11.0953 3064 RpcLocator - ok
21:00:11.0984 3064 [ be27674d1cbc3214aec84b4336a38bbf ] RpcSs C:\WINDOWS\System32\rpcss.dll
21:00:11.0984 3064 RpcSs - ok
21:00:12.0015 3064 [ 09ab2e71e58b078038e3bfdba7ffc984 ] RSVP C:\WINDOWS\system32\rsvp.exe
21:00:12.0031 3064 RSVP - ok
21:00:12.0125 3064 [ ee76248ca187bb50ff964a287d420fee ] RTHDMIAzAudService C:\WINDOWS\system32\drivers\RtHDMI.sys
21:00:12.0171 3064 RTHDMIAzAudService - ok
21:00:12.0187 3064 [ f0a21c62b9b835e1c96268eaae31d239 ] RTLE8023xp C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
21:00:12.0187 3064 RTLE8023xp - ok
21:00:12.0203 3064 [ ed0a176354487ceed65b80a7148ab739 ] SamSs C:\WINDOWS\system32\lsass.exe
21:00:12.0203 3064 SamSs - ok
21:00:12.0218 3064 [ bd26a150dc292913e48ee2b950372dfd ] Samsung UPD Service C:\WINDOWS\system32\SUPDSvc.exe
21:00:12.0234 3064 Samsung UPD Service - ok
21:00:12.0250 3064 [ 410046e401eb11e1e6749e9deea41d4a ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
21:00:12.0265 3064 SCardSvr - ok
21:00:12.0281 3064 [ 3ff232a7731621b8902d81d42418c93c ] Schedule C:\WINDOWS\system32\schedsvc.dll
21:00:12.0296 3064 Schedule - ok
21:00:12.0296 3064 [ 90a3935d05b494a5a39d37e71f09a677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:00:12.0312 3064 Secdrv - ok
21:00:12.0328 3064 [ 477e2c3cc5e4a0d635bcb0ea8dcac3c6 ] seclogon C:\WINDOWS\System32\seclogon.dll
21:00:12.0343 3064 seclogon - ok
21:00:12.0343 3064 [ a530b75c10c23c9ab28fdb6ce719e21f ] SENS C:\WINDOWS\system32\sens.dll
21:00:12.0359 3064 SENS - ok
21:00:12.0359 3064 [ 0f29512ccd6bead730039fb4bd2c85ce ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
21:00:12.0375 3064 serenum - ok
21:00:12.0375 3064 [ b842729337c9b921615c40d3c1a1af96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
21:00:12.0375 3064 Serial - ok
21:00:12.0437 3064 [ 3ec8de67b1c78c31e54c0f030e6bd7d5 ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
21:00:12.0437 3064 ServiceLayer - ok
21:00:12.0468 3064 [ 8e6b8c671615d126fdc553d1e2de5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
21:00:12.0484 3064 Sfloppy - ok
21:00:12.0515 3064 [ f58faca9621d2db01bd0927d9a0a208e ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
21:00:12.0531 3064 SharedAccess - ok
21:00:12.0546 3064 [ ee9a2b9ea968a792a053c9d1a86bf870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:00:12.0562 3064 ShellHWDetection - ok
21:00:12.0562 3064 Simbad - ok
21:00:12.0593 3064 [ 866d538ebe33709a5c9f5c62b73b7d14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:00:12.0593 3064 SLIP - ok
21:00:12.0609 3064 Sparrow - ok
21:00:12.0640 3064 [ ab8b92451ecb048a4d1de7c3ffcb4a9f ] splitter C:\WINDOWS\system32\drivers\splitter.sys
21:00:12.0640 3064 splitter - ok
21:00:12.0671 3064 [ 60784f891563fb1b767f70117fc2428f ] Spooler C:\WINDOWS\system32\spoolsv.exe
21:00:12.0671 3064 Spooler - ok
21:00:12.0703 3064 [ 94610c8653635e4459316a0050d55ce7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
21:00:12.0703 3064 sr - ok
21:00:12.0718 3064 [ 35b91147124f64ac8081a2edb9ea4dee ] srservice C:\WINDOWS\system32\srsvc.dll
21:00:12.0718 3064 srservice - ok
21:00:12.0750 3064 [ 47ddfc2f003f7f9f0592c6874962a2e7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
21:00:12.0750 3064 Srv - ok
21:00:12.0781 3064 [ 64e44acd8c238fcbbb78f0ba4bdc4b05 ] ssadbus C:\WINDOWS\system32\DRIVERS\ssadbus.sys
21:00:12.0781 3064 ssadbus - ok
21:00:12.0812 3064 [ bb2c84a15c765da89fd832b0e73f26ce ] ssadmdfl C:\WINDOWS\system32\DRIVERS\ssadmdfl.sys
21:00:12.0812 3064 ssadmdfl - ok
21:00:12.0828 3064 [ 6d0d132ddc6f43eda00dced6d8b1ca31 ] ssadmdm C:\WINDOWS\system32\DRIVERS\ssadmdm.sys
21:00:12.0828 3064 ssadmdm - ok
21:00:12.0859 3064 [ 1a5a397bc459f346ab56492b61ef79f6 ] ssadserd C:\WINDOWS\system32\DRIVERS\ssadserd.sys
21:00:12.0859 3064 ssadserd - ok
21:00:12.0890 3064 [ becd5271dc4e3b7c3d035f790fcbc1e5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
21:00:12.0890 3064 SSDPSRV - ok
21:00:12.0906 3064 [ 3f0164fbc0bd1adbd02df9759181451a ] ss_bbus C:\WINDOWS\system32\DRIVERS\ss_bbus.sys
21:00:12.0921 3064 ss_bbus - ok
21:00:12.0937 3064 [ b89d62206034e5fe573c80a24dd55675 ] ss_bmdfl C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys
21:00:12.0937 3064 ss_bmdfl - ok
21:00:12.0984 3064 [ 1ed0fcea586fe2a416ee15196e5631dd ] ss_bmdm C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys
21:00:12.0984 3064 ss_bmdm - ok
21:00:13.0015 3064 [ 994d2e5378cc337ec7dd73c1e04fcaa4 ] ss_bserd C:\WINDOWS\system32\DRIVERS\ss_bserd.sys
21:00:13.0031 3064 ss_bserd - ok
21:00:13.0031 3064 [ 306521935042fc0a6988d528643619b3 ] StarOpen C:\WINDOWS\system32\drivers\StarOpen.sys
21:00:13.0046 3064 StarOpen - ok
21:00:13.0062 3064 [ c1cdd9275f6a115bb0ae1d55d8d27ba6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
21:00:13.0093 3064 stisvc - ok
21:00:13.0093 3064 [ 77813007ba6265c4b6098187e6ed79d2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
21:00:13.0093 3064 streamip - ok
21:00:13.0109 3064 [ 3941d127aef12e93addf6fe6ee027e0f ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
21:00:13.0109 3064 swenum - ok
21:00:13.0109 3064 [ 8ce882bcc6cf8a62f2b2323d95cb3d01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
21:00:13.0109 3064 swmidi - ok
21:00:13.0125 3064 SwPrv - ok
21:00:13.0125 3064 symc810 - ok
21:00:13.0140 3064 symc8xx - ok
21:00:13.0140 3064 sym_hi - ok
21:00:13.0140 3064 sym_u3 - ok
21:00:13.0156 3064 [ 8b83f3ed0f1688b4958f77cd6d2bf290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
21:00:13.0156 3064 sysaudio - ok
21:00:13.0187 3064 [ ce06f01b88ace199a1bf460cac29c110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
21:00:13.0187 3064 SysmonLog - ok
21:00:13.0218 3064 [ c2546cd7a398476f9df5614b2ae160e8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
21:00:13.0234 3064 TapiSrv - ok
21:00:13.0265 3064 [ 9aefa14bd6b182d61e3119fa5f436d3d ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:00:13.0265 3064 Tcpip - ok
21:00:13.0296 3064 [ 6471a66807f5e104e4885f5b67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
21:00:13.0296 3064 TDPIPE - ok
21:00:13.0312 3064 [ c56b6d0402371cf3700eb322ef3aaf61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
21:00:13.0312 3064 TDTCP - ok
21:00:13.0312 3064 [ 88155247177638048422893737429d9e ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
21:00:13.0328 3064 TermDD - ok
21:00:13.0328 3064 [ a75dd6fc3dbee4fff5ebc9f2c28bb66e ] TermService C:\WINDOWS\System32\termsrv.dll
21:00:13.0343 3064 TermService - ok
21:00:13.0359 3064 [ ee9a2b9ea968a792a053c9d1a86bf870 ] Themes C:\WINDOWS\System32\shsvcs.dll
21:00:13.0359 3064 Themes - ok
21:00:13.0375 3064 TosIde - ok
21:00:13.0375 3064 [ 38853304ccb938d30e0c4cde8d2c2a8a ] TrkWks C:\WINDOWS\system32\trkwks.dll
21:00:13.0390 3064 TrkWks - ok
21:00:13.0406 3064 [ 5787b80c2e3c5e2f56c2a233d91fa2c9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
21:00:13.0406 3064 Udfs - ok
21:00:13.0421 3064 ultra - ok
21:00:13.0437 3064 [ 402ddc88356b1bac0ee3dd1580c76a31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
21:00:13.0437 3064 Update - ok
21:00:13.0453 3064 [ 651bd90dcee5b7bdc74a2eb7c9266f9e ] upnphost C:\WINDOWS\System32\upnphost.dll
21:00:13.0468 3064 upnphost - ok
21:00:13.0484 3064 [ 20a0f6a11959e92908717d09e87d670d ] UPS C:\WINDOWS\System32\ups.exe
21:00:13.0500 3064 UPS - ok
21:00:13.0515 3064 [ 173f317ce0db8e21322e71b7e60a27e8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:00:13.0515 3064 usbccgp - ok
21:00:13.0531 3064 [ 65dcf09d0e37d4c6b11b5b0b76d470a7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:00:13.0531 3064 usbehci - ok
21:00:13.0531 3064 [ 1ab3cdde553b6e064d2e754efe20285c ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:00:13.0531 3064 usbhub - ok
21:00:13.0546 3064 [ 0daecce65366ea32b162f85f07c6753b ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
21:00:13.0546 3064 usbohci - ok
21:00:13.0578 3064 [ a717c8721046828520c9edf31288fc00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
21:00:13.0578 3064 usbprint - ok
21:00:13.0593 3064 [ a0b8cf9deb1184fbdd20784a58fa75d4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:00:13.0593 3064 usbscan - ok
21:00:13.0625 3064 [ a32426d9b14a089eaa1d922e0c5801a9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:00:13.0625 3064 USBSTOR - ok
21:00:13.0625 3064 [ 0d3a8fafceacd8b7625cd549757a7df1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
21:00:13.0625 3064 VgaSave - ok
21:00:13.0640 3064 ViaIde - ok
21:00:13.0656 3064 [ 28a4b296b47782173c346e376cb374d1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
21:00:13.0656 3064 VolSnap - ok
21:00:13.0671 3064 [ d6ba1a63d9e00933f1cd2a885573afb2 ] VSS C:\WINDOWS\System32\vssvc.exe
21:00:13.0687 3064 VSS - ok
21:00:13.0718 3064 [ fa4e1cdba256787f2149f4aad07bc91f ] W32Time C:\WINDOWS\system32\w32time.dll
21:00:13.0734 3064 W32Time - ok
21:00:13.0750 3064 [ e20b95baedb550f32dd489265c1da1f6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:00:13.0750 3064 Wanarp - ok
21:00:13.0796 3064 [ a1a36682df22777834e1c37f3c79aec2 ] WDBtnMgrSvc.exe C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe
21:00:13.0796 3064 WDBtnMgrSvc.exe - ok
21:00:13.0828 3064 [ fd47474bd21794508af449d9d91af6e6 ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
21:00:13.0828 3064 Wdf01000 - ok
21:00:13.0843 3064 WDICA - ok
21:00:13.0859 3064 [ 6768acf64b18196494413695f0c3a00f ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
21:00:13.0859 3064 wdmaud - ok
21:00:13.0875 3064 [ 47ae51048a82dfa1cd6b51d369f7e169 ] WebClient C:\WINDOWS\System32\webclnt.dll
21:00:13.0890 3064 WebClient - ok
21:00:13.0937 3064 [ e488332126e3b1182d2b8a0c35408ec6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
21:00:13.0937 3064 winmgmt - ok
21:00:14.0000 3064 [ 4d34cedd74bdbf2b6a935eae3bf80543 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
21:00:14.0015 3064 WinRM - ok
21:00:14.0046 3064 [ c51b4a5c05a5475708e3c81c7765b71d ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
21:00:14.0062 3064 WmdmPmSN - ok
21:00:14.0078 3064 [ c42584fd66ce9e17403aebca199f7bdb ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
21:00:14.0078 3064 WmiAcpi - ok
21:00:14.0093 3064 [ 23f6f03272f7e5679f1f050aed5acee6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:00:14.0109 3064 WmiApSrv - ok
21:00:14.0171 3064 [ 3739866d20abd42f26a7b85f9e2560af ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
21:00:14.0171 3064 WMPNetworkSvc - ok
21:00:14.0203 3064 [ cf4def1bf66f06964dc0d91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
21:00:14.0203 3064 WpdUsb - ok
21:00:14.0265 3064 [ dcf3e3edf5109ee8bc02fe6e1f045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:00:14.0265 3064 WPFFontCache_v0400 - ok
21:00:14.0296 3064 [ 6abe6e225adb5a751622a9cc3bc19ce8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
21:00:14.0296 3064 WS2IFSL - ok
21:00:14.0312 3064 [ 4c86d5faf78194995af9cc1075f65dd3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
21:00:14.0328 3064 wscsvc - ok
21:00:14.0328 3064 WSearch - ok
21:00:14.0359 3064 [ c98b39829c2bbd34e454150633c62c78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
21:00:14.0359 3064 WSTCODEC - ok
21:00:14.0390 3064 [ c1364564800ee9784192145324a23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
21:00:14.0406 3064 wuauserv - ok
21:00:14.0421 3064 [ f15feafffbb3644ccc80c5da584e6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:00:14.0421 3064 WudfPf - ok
21:00:14.0437 3064 [ 28b524262bce6de1f7ef9f510ba3985b ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:00:14.0453 3064 WudfRd - ok
21:00:14.0484 3064 [ 05231c04253c5bc30b26cbaae680ed89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
21:00:14.0500 3064 WudfSvc - ok
21:00:14.0531 3064 [ a27d4ba7264c0bf52f32d10405bea1d4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
21:00:14.0593 3064 WZCSVC - ok
21:00:14.0640 3064 [ eaa4bb9edb3fb10cf8979fe65e63658f ] xmlprov C:\WINDOWS\System32\xmlprov.dll
21:00:14.0656 3064 xmlprov - ok
21:00:14.0671 3064 ================ Scan global ===============================
21:00:14.0703 3064 (f36278e42c8c5df03ce17dac8231c91c) C:\WINDOWS\system32\basesrv.dll
21:00:14.0718 3064 (f3fa14a297bc687d0b51289d034033c9) C:\WINDOWS\system32\winsrv.dll
21:00:14.0734 3064 (f3fa14a297bc687d0b51289d034033c9) C:\WINDOWS\system32\winsrv.dll
21:00:14.0750 3064 (9ef697af07bb8dd82c3b02ca953a95b7) C:\WINDOWS\system32\services.exe
21:00:14.0765 3064 [Global] - ok
21:00:14.0765 3064 ================ Scan MBR ==================================
21:00:14.0781 3064 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
21:00:14.0953 3064 \Device\Harddisk0\DR0 - ok
21:00:14.0953 3064 ================ Scan VBR ==================================
21:00:14.0953 3064 Boot (0x1200) (f8010fcbd5bf9e00615bba36fa0eab3e) \Device\Harddisk0\DR0\Partition1
21:00:14.0953 3064 \Device\Harddisk0\DR0\Partition1 - ok
21:00:14.0984 3064 Boot (0x1200) (a7189e66558f81fed19666369286ed34) \Device\Harddisk0\DR0\Partition2
21:00:14.0984 3064 \Device\Harddisk0\DR0\Partition2 - ok
21:00:14.0984 3064 ============================================================
21:00:14.0984 3064 Scan finished
21:00:14.0984 3064 ============================================================
21:00:14.0984 5420 Detected object count: 0
21:00:14.0984 5420 Actual detected object count: 0
21:00:21.0453 2368 Deinitialize success
20:59:57.0859 4176 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
20:59:58.0015 4176 ============================================================
20:59:58.0015 4176 Current date / time: 2012/08/15 20:59:58.0015
20:59:58.0015 4176 SystemInfo:
20:59:58.0015 4176
20:59:58.0015 4176 OS Version: 5.1.2600 ServicePack: 3.0
20:59:58.0015 4176 Product type: Workstation
20:59:58.0015 4176 ComputerName: KAROLINKY1
20:59:58.0015 4176 UserName: Karolína
20:59:58.0015 4176 Windows directory: C:\WINDOWS
20:59:58.0015 4176 System windows directory: C:\WINDOWS
20:59:58.0015 4176 Processor architecture: Intel x86
20:59:58.0015 4176 Number of processors: 2
20:59:58.0015 4176 Page size: 0x1000
20:59:58.0015 4176 Boot type: Normal boot
20:59:58.0015 4176 ============================================================
20:59:59.0312 4176 Drive \Device\Harddisk0\DR0 - Size: 0x950AF4DE00 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
20:59:59.0312 4176 ============================================================
20:59:59.0312 4176 \Device\Harddisk0\DR0:
20:59:59.0312 4176 MBR partitions:
20:59:59.0312 4176 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC34F28D
20:59:59.0312 4176 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xC34F30B, BlocksNum 0x3E503CF5
20:59:59.0312 4176 ============================================================
20:59:59.0343 4176 C: <-> \Device\Harddisk0\DR0\Partition1
20:59:59.0390 4176 D: <-> \Device\Harddisk0\DR0\Partition2
20:59:59.0390 4176 ============================================================
20:59:59.0390 4176 Initialize success
20:59:59.0390 4176 ============================================================
21:00:04.0328 3064 ============================================================
21:00:04.0328 3064 Scan started
21:00:04.0328 3064 Mode: Manual;
21:00:04.0328 3064 ============================================================
21:00:05.0140 3064 ================ Scan services =============================
21:00:05.0234 3064 [ 0b27ae82c113d3687024d18459440426 ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
21:00:05.0234 3064 Aavmker4 - ok
21:00:05.0250 3064 Abiosdsk - ok
21:00:05.0250 3064 abp480n5 - ok
21:00:05.0265 3064 [ 4fe34f1f3126b61fcc6b2043aa8112c9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:00:05.0265 3064 ACPI - ok
21:00:05.0296 3064 [ afdff022a01f0b11c776f0860c3b282f ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
21:00:05.0296 3064 ACPIEC - ok
21:00:05.0359 3064 [ a9d3b95e8466bd58eeb8a1154654e162 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:00:05.0375 3064 AdobeFlashPlayerUpdateSvc - ok
21:00:05.0375 3064 adpu160m - ok
21:00:05.0390 3064 [ 8bed39e3c35d6a489438b8141717a557 ] aec C:\WINDOWS\system32\drivers\aec.sys
21:00:05.0390 3064 aec - ok
21:00:05.0421 3064 [ 1e44bc1e83d8fd2305f8d452db109cf9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
21:00:05.0421 3064 AFD - ok
21:00:05.0437 3064 Aha154x - ok
21:00:05.0437 3064 aic78u2 - ok
21:00:05.0437 3064 aic78xx - ok
21:00:05.0468 3064 [ e0a6fa244b8624d78fe5ff6f56a33bae ] Alerter C:\WINDOWS\system32\alrsvc.dll
21:00:05.0468 3064 Alerter - ok
21:00:05.0484 3064 [ 88842de939a827577bf24243699ac80a ] ALG C:\WINDOWS\System32\alg.exe
21:00:05.0500 3064 ALG - ok
21:00:05.0500 3064 AliIde - ok
21:00:05.0515 3064 [ fcffa85cfd4bf7a4711012847048dca3 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
21:00:05.0515 3064 AmdK8 - ok
21:00:05.0515 3064 amsint - ok
21:00:05.0546 3064 [ dd8d9c597af7cd2f6b70a3d6a4a1acea ] androidusb C:\WINDOWS\system32\Drivers\ssadadb.sys
21:00:05.0546 3064 androidusb - ok
21:00:05.0562 3064 AppMgmt - ok
21:00:05.0562 3064 [ b5b8a80875c1dededa8b02765642c32f ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:00:05.0562 3064 Arp1394 - ok
21:00:05.0578 3064 asc - ok
21:00:05.0578 3064 asc3350p - ok
21:00:05.0593 3064 asc3550 - ok
21:00:05.0640 3064 [ 0e5e4957549056e2bf2c49f4f6b601ad ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
21:00:05.0656 3064 aspnet_state - ok
21:00:05.0656 3064 [ 1c1f3d6dddc046c920c493a779649f66 ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
21:00:05.0656 3064 aswFsBlk - ok
21:00:05.0671 3064 [ 9e912fe7b41650701ef2b227aca440f3 ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
21:00:05.0671 3064 aswMon2 - ok
21:00:05.0687 3064 [ 982e275d1c5801042fe94209fb0160fb ] aswRdr C:\WINDOWS\system32\drivers\aswRdr.sys
21:00:05.0687 3064 aswRdr - ok
21:00:05.0734 3064 [ 73dbcf808e00580f2a47f93dd9b03876 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
21:00:05.0734 3064 aswSnx - ok
21:00:05.0750 3064 [ 6cbd7d3a33f498d09c831cdd732da2e0 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
21:00:05.0750 3064 aswSP - ok
21:00:05.0750 3064 [ 7109a9aa551f37cd168c02368465957e ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
21:00:05.0765 3064 aswTdi - ok
21:00:05.0765 3064 [ b153affac761e7f5fcfa822b9c4e97bc ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:00:05.0765 3064 AsyncMac - ok
21:00:05.0765 3064 [ 9f3a2f5aa6875c72bf062c712cfa2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
21:00:05.0781 3064 atapi - ok
21:00:05.0781 3064 Atdisk - ok
21:00:05.0828 3064 [ c434b72352fadd9249d5541274021570 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
21:00:05.0828 3064 Ati HotKey Poller - ok
21:00:05.0953 3064 [ b4368b39a18630c3ec8d7f496f76f19b ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:00:06.0000 3064 ati2mtag - ok
21:00:06.0015 3064 [ bd9ca8136738040d3257363ed12be693 ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdXP3.sys
21:00:06.0015 3064 AtiHDAudioService - ok
21:00:06.0031 3064 [ 9916c1225104ba14794209cfa8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:00:06.0031 3064 Atmarpc - ok
21:00:06.0062 3064 [ de31b88962a8645dba5a37b993e7b0f1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
21:00:06.0062 3064 AudioSrv - ok
21:00:06.0093 3064 [ d9f724aa26c010a217c97606b160ed68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
21:00:06.0093 3064 audstub - ok
21:00:06.0156 3064 [ 2f7c0f3e39c45e0127fb78b2f18a41f3 ] avast! Antivirus C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
21:00:06.0156 3064 avast! Antivirus - ok
21:00:06.0187 3064 [ da1f27d85e0d1525f6621372e7b685e9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
21:00:06.0187 3064 Beep - ok
21:00:06.0218 3064 [ 19395d092fd85ddc2d9c7729cf5a2ac8 ] BITS C:\WINDOWS\system32\qmgr.dll
21:00:06.0343 3064 BITS - ok
21:00:06.0359 3064 [ 249276d3ef1e74b992299cb96099e4d7 ] Browser C:\WINDOWS\System32\browser.dll
21:00:06.0359 3064 Browser - ok
21:00:06.0375 3064 [ bc48a0cee1c2dd2a29a17bbe2f739421 ] BtAudio C:\WINDOWS\system32\DRIVERS\btaudio.sys
21:00:06.0375 3064 BtAudio - ok
21:00:06.0390 3064 [ 26a9953fc52826896b5099e640e98dcd ] BTDriver C:\WINDOWS\system32\DRIVERS\btport.sys
21:00:06.0390 3064 BTDriver - ok
21:00:06.0421 3064 [ 2066d4375bae126e2e28964d2e07e405 ] BTKRNL C:\WINDOWS\system32\drivers\btkrnl.sys
21:00:06.0437 3064 BTKRNL - ok
21:00:06.0453 3064 [ 1ea96c0fa2e13d8b716dea7034617b9b ] BTSERIAL C:\WINDOWS\system32\drivers\btserial.sys
21:00:06.0453 3064 BTSERIAL - ok
21:00:06.0468 3064 [ d266f8d4ab9e31ca54cfa2ccb6fbcd49 ] BTSLBCSP C:\WINDOWS\system32\drivers\btslbcsp.sys
21:00:06.0468 3064 BTSLBCSP - ok
21:00:06.0500 3064 [ 9db4fcb7bc45e6b08a865e48bcf82c7a ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
21:00:06.0500 3064 btwdins - ok
21:00:06.0515 3064 [ 9965059de311d518b91c7a4d7716dfe4 ] BTWDNDIS C:\WINDOWS\system32\DRIVERS\btwdndis.sys
21:00:06.0515 3064 BTWDNDIS - ok
21:00:06.0546 3064 [ b140856668032cd86e0a6739c92a5a02 ] BTWUSB C:\WINDOWS\system32\Drivers\btwusb.sys
21:00:06.0546 3064 BTWUSB - ok
21:00:06.0640 3064 catchme - ok
21:00:06.0671 3064 [ 90a673fc8e12a79afbed2576f6a7aaf9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
21:00:06.0671 3064 cbidf2k - ok
21:00:06.0687 3064 [ 0be5aef125be881c4f854c554f2b025c ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:00:06.0687 3064 CCDECODE - ok
21:00:06.0703 3064 cd20xrnt - ok
21:00:06.0734 3064 [ c1b486a7658353d33a10cc15211a873b ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
21:00:06.0734 3064 Cdaudio - ok
21:00:06.0750 3064 [ c885b02847f5d2fd45a24e219ed93b32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
21:00:06.0750 3064 Cdfs - ok
21:00:06.0781 3064 [ 1f4260cc5b42272d71f79e570a27a4fe ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:00:06.0781 3064 Cdrom - ok
21:00:06.0796 3064 Changer - ok
21:00:06.0796 3064 [ e390dc1d7c461d7d56ec53402f329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
21:00:06.0812 3064 CiSvc - ok
21:00:06.0812 3064 [ 064507a8dfa8c5c7e2ffddd3e6f424fa ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
21:00:06.0812 3064 ClipSrv - ok
21:00:06.0828 3064 [ d87acaed61e417bba546ced5e7e36d9c ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:00:06.0843 3064 clr_optimization_v2.0.50727_32 - ok
21:00:06.0890 3064 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:00:06.0890 3064 clr_optimization_v4.0.30319_32 - ok
21:00:06.0890 3064 CmdIde - ok
21:00:06.0906 3064 COMSysApp - ok
21:00:06.0921 3064 Cpqarray - ok
21:00:06.0937 3064 [ f3ab0933cbd166d271992f411c27ccaf ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
21:00:06.0937 3064 CryptSvc - ok
21:00:06.0953 3064 dac2w2k - ok
21:00:06.0953 3064 dac960nt - ok
21:00:07.0000 3064 [ be27674d1cbc3214aec84b4336a38bbf ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
21:00:07.0000 3064 DcomLaunch - ok
21:00:07.0031 3064 [ d0d4f3ca1d3a4400e1f40f36a800cd12 ] dgderdrv C:\WINDOWS\system32\drivers\dgderdrv.sys
21:00:07.0031 3064 dgderdrv - ok
21:00:07.0046 3064 [ 1f7baca7d1dd1b3d73b4c3934148fad3 ] dgdersvc C:\WINDOWS\system32\dgdersvc.exe
21:00:07.0062 3064 dgdersvc - ok
21:00:07.0078 3064 [ 8c9a53e285ac5e6704844d0459ec85be ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
21:00:07.0078 3064 Dhcp - ok
21:00:07.0093 3064 [ 044452051f3e02e7963599fc8f4f3e25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
21:00:07.0093 3064 Disk - ok
21:00:07.0093 3064 dmadmin - ok
21:00:07.0125 3064 [ db5fd2bf5b07dc54bfcb3664ff05bd7c ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
21:00:07.0140 3064 dmboot - ok
21:00:07.0156 3064 [ fff1720af51171f32f1ead5cf71f2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
21:00:07.0156 3064 dmio - ok
21:00:07.0187 3064 [ e9317282a63ca4d188c0df5e09c6ac5f ] dmload C:\WINDOWS\system32\drivers\dmload.sys
21:00:07.0187 3064 dmload - ok
21:00:07.0203 3064 [ 2bfefe9e865655a76982f050450b9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
21:00:07.0203 3064 dmserver - ok
21:00:07.0234 3064 [ 8a208dfcf89792a484e76c40e5f50b45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
21:00:07.0234 3064 DMusic - ok
21:00:07.0250 3064 [ dfaa406bf19f4ee806a6f8d4342137f7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
21:00:07.0265 3064 Dnscache - ok
21:00:07.0281 3064 [ 4a3e2bd20157a0946751229e92eb8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
21:00:07.0281 3064 Dot3svc - ok
21:00:07.0281 3064 dpti2o - ok
21:00:07.0296 3064 [ 8f5fcff8e8848afac920905fbd9d33c8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
21:00:07.0296 3064 drmkaud - ok
21:00:07.0296 3064 [ 0887d9c2be8d940778cad1e3b85f2a41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
21:00:07.0312 3064 EapHost - ok
21:00:07.0328 3064 [ a2a4912798f2be706abadd3d30800d16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
21:00:07.0328 3064 ERSvc - ok
21:00:07.0343 3064 [ 9ef697af07bb8dd82c3b02ca953a95b7 ] Eventlog C:\WINDOWS\system32\services.exe
21:00:07.0375 3064 Eventlog - ok
21:00:07.0390 3064 [ a371f11ef07653591c8de26afb13ce7f ] EventSystem C:\WINDOWS\system32\es.dll
21:00:07.0390 3064 EventSystem - ok
21:00:07.0421 3064 [ 38d332a6d56af32635675f132548343e ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
21:00:07.0437 3064 Fastfat - ok
21:00:07.0453 3064 [ ee9a2b9ea968a792a053c9d1a86bf870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
21:00:07.0468 3064 FastUserSwitchingCompatibility - ok
21:00:07.0484 3064 [ 92cdd60b6730b9f50f6a1a0c1f8cdc81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
21:00:07.0484 3064 Fdc - ok
21:00:07.0500 3064 [ ac366695a0796560aa37215ad5762aaf ] Fips C:\WINDOWS\system32\drivers\Fips.sys
21:00:07.0500 3064 Fips - ok
21:00:07.0500 3064 [ 9d27e7b80bfcdf1cdd9b555862d5e7f0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
21:00:07.0500 3064 Flpydisk - ok
21:00:07.0531 3064 [ b2cf4b0786f8212cb92ed2b50c6db6b0 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
21:00:07.0531 3064 FltMgr - ok
21:00:07.0593 3064 [ 8ba7c024070f2b7fdd98ed8a4ba41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
21:00:07.0593 3064 FontCache3.0.0.0 - ok
21:00:07.0625 3064 [ cbe5f69a5e5b918225f420ba748f3742 ] FsUsbExDisk C:\WINDOWS\system32\FsUsbExDisk.SYS
21:00:07.0625 3064 FsUsbExDisk - ok
21:00:07.0640 3064 [ 15ab846886c225fff0376f3cef21188f ] FsUsbExService C:\WINDOWS\system32\FsUsbExService.Exe
21:00:07.0640 3064 FsUsbExService - ok
21:00:07.0640 3064 [ 3e1e2bd4f39b0e2b7dc4f4d2bcc2779a ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:00:07.0640 3064 Fs_Rec - ok
21:00:07.0656 3064 [ 4e664d8541db4a66b73a24257e322e1f ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:00:07.0656 3064 Ftdisk - ok
21:00:07.0687 3064 [ 5c230948dd6652228f88ca7ae6cb276c ] gdrv C:\WINDOWS\gdrv.sys
21:00:08.0421 3064 gdrv - ok
21:00:08.0453 3064 [ 0a02c63c8b144bd8c86b103dee7c86a2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:00:08.0453 3064 Gpc - ok
21:00:08.0500 3064 [ 1bf044e23206fddc16891a32922d571b ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
21:00:08.0500 3064 gusvc - ok
21:00:08.0531 3064 [ 573c7d0a32852b48f3058cfd8026f511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:00:08.0531 3064 HDAudBus - ok
21:00:08.0593 3064 [ fcfe31fb75f8a6295b6b0af87a626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:00:08.0593 3064 helpsvc - ok
21:00:08.0609 3064 [ 00e25ee90166b3e1be6e74aebf858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
21:00:08.0609 3064 HidServ - ok
21:00:08.0640 3064 [ ccf82c5ec8a7326c3066de870c06daf1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:00:08.0640 3064 hidusb - ok
21:00:08.0656 3064 [ 7a6b320928f86bc851530d63c82965d9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
21:00:08.0671 3064 hkmsvc - ok
21:00:08.0671 3064 hpn - ok
21:00:08.0703 3064 [ f80a415ef82cd06ffaf0d971528ead38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
21:00:08.0703 3064 HTTP - ok
21:00:08.0734 3064 [ 58fe2f2da3bc5573f4a35b3760d3125f ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
21:00:08.0750 3064 HTTPFilter - ok
21:00:08.0750 3064 i2omgmt - ok
21:00:08.0765 3064 i2omp - ok
21:00:08.0828 3064 [ 1cf03c69b49acb70c722df92755c0c8c ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
21:00:08.0828 3064 IDriverT - ok
21:00:08.0875 3064 [ c01ac32dc5c03076cfb852cb5da5229c ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:00:08.0890 3064 idsvc - ok
21:00:08.0890 3064 [ 083a052659f5310dd8b6a6cb05edcf8e ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
21:00:08.0890 3064 Imapi - ok
21:00:08.0921 3064 [ f7b93aafad33b2320954c17e26c8d361 ] ImapiService C:\WINDOWS\system32\imapi.exe
21:00:08.0937 3064 ImapiService - ok
21:00:08.0937 3064 ini910u - ok
21:00:09.0046 3064 [ 927cf2be4e57ff55e23759ac0ca57aa3 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
21:00:09.0078 3064 IntcAzAudAddService - ok
21:00:09.0078 3064 IntelIde - ok
21:00:09.0109 3064 [ 3bb22519a194418d5fec05d800a19ad0 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
21:00:09.0125 3064 Ip6Fw - ok
21:00:09.0140 3064 [ 731f22ba402ee4b62748adaf6363c182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:00:09.0140 3064 IpFilterDriver - ok
21:00:09.0156 3064 [ b87ab476dcf76e72010632b5550955f5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:00:09.0156 3064 IpInIp - ok
21:00:09.0171 3064 [ cc748ea12c6effde940ee98098bf96bb ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:00:09.0171 3064 IpNat - ok
21:00:09.0171 3064 [ 23c74d75e36e7158768dd63d92789a91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:00:09.0171 3064 IPSec - ok
21:00:09.0203 3064 [ c93c9ff7b04d772627a3646d89f7bf89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
21:00:09.0203 3064 IRENUM - ok
21:00:09.0218 3064 [ cc9f8a2d60aed1a51a3ac34c59b987ae ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:00:09.0218 3064 isapnp - ok
21:00:09.0265 3064 [ 4f2143570d2250ca4c4a4c98553c82cd ] JavaQuickStarterService C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
21:00:09.0265 3064 JavaQuickStarterService - ok
21:00:09.0296 3064 [ 1b6162fe7f66b1a71a4b70f941c4aa9b ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:00:09.0296 3064 Kbdclass - ok
21:00:09.0296 3064 [ 86c8f23616c6c6e5b2776901c17b945b ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:00:09.0312 3064 kbdhid - ok
21:00:09.0312 3064 [ 692bcf44383d056aed41b045a323d378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
21:00:09.0312 3064 kmixer - ok
21:00:09.0343 3064 [ b467646c54cc746128904e1654c750c1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
21:00:09.0343 3064 KSecDD - ok
21:00:09.0359 3064 [ 3428e8f86f8add36b42fb23542c7b3e4 ] LanmanServer C:\WINDOWS\System32\srvsvc.dll
21:00:09.0375 3064 LanmanServer - ok
21:00:09.0406 3064 [ 936c1d110232d23b621cb0196e4f80f0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
21:00:09.0421 3064 lanmanworkstation - ok
21:00:09.0421 3064 [ 9ffd1cf2a782f2560e78eec4b8b8689e ] LBeepKE C:\WINDOWS\system32\Drivers\LBeepKE.sys
21:00:09.0421 3064 LBeepKE - ok
21:00:09.0437 3064 lbrtfdc - ok
21:00:09.0484 3064 [ 3af6b73a3ad1fc37c5933441f66ceb91 ] LBTServ C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
21:00:09.0484 3064 LBTServ - ok
21:00:09.0515 3064 [ a1043645d16915df12a6f2e049922a18 ] LexBceS C:\WINDOWS\system32\LEXBCES.EXE
21:00:09.0515 3064 LexBceS - ok
21:00:09.0531 3064 [ 7f9c7b28cf1c859e1c42619eea946dc8 ] LHidFilt C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
21:00:09.0531 3064 LHidFilt - ok
21:00:09.0562 3064 [ 6e5dac168d1ff9843e84a59d51d31107 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
21:00:09.0562 3064 LightScribeService - ok
21:00:09.0578 3064 [ 0ab159f536e3e8f7f07113702a07cca5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
21:00:09.0593 3064 LmHosts - ok
21:00:09.0593 3064 [ ab33792a87285344f43b5ce23421bab0 ] LMouFilt C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
21:00:09.0593 3064 LMouFilt - ok
21:00:09.0656 3064 [ 2d0ab9d29e6b0c42cce955b5a8e0d62d ] LVcKap C:\WINDOWS\system32\DRIVERS\LVcKap.sys
21:00:09.0671 3064 LVcKap - ok
21:00:09.0718 3064 [ a3963e3d997c3646e1d3338eb88a48e9 ] LVMVDrv C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys
21:00:09.0734 3064 LVMVDrv - ok
21:00:09.0750 3064 [ 39c767bd6d99c23d28e71b6e0cba3129 ] LVPr2Mon C:\WINDOWS\system32\drivers\LVPr2Mon.sys
21:00:09.0750 3064 LVPr2Mon - ok
21:00:09.0765 3064 [ 44b3b997e25c5d9a81d6c501451a96d7 ] LVPrcSrv c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
21:00:09.0765 3064 LVPrcSrv - ok
21:00:09.0781 3064 [ 7b4607c0c664da98753508f85bb10694 ] LVSrvLauncher C:\Program Files\Common Files\Logitech\SrvLnch\SrvLnch.exe
21:00:09.0781 3064 LVSrvLauncher - ok
21:00:09.0812 3064 [ 6ad3f5275f117f08c12eab2233a9e3fb ] LVUSBSta C:\WINDOWS\system32\drivers\lvusbsta.sys
21:00:09.0812 3064 LVUSBSta - ok
21:00:09.0843 3064 [ 6dfe7f2e8e8a337263aa5c92a215f161 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
21:00:09.0843 3064 MBAMProtector - ok
21:00:09.0875 3064 [ 43683e970f008c93c9429ef428147a54 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
21:00:09.0890 3064 MBAMService - ok
21:00:09.0906 3064 [ 221cd1c815b8a6b79389c3f5d1018de8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
21:00:09.0921 3064 Messenger - ok
21:00:09.0937 3064 [ 4ae068242760a1fb6e1a44bf4e16afa6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
21:00:09.0937 3064 mnmdd - ok
21:00:09.0984 3064 [ 9a57d046f88f4b69751b11fd40088a61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
21:00:09.0984 3064 mnmsrvc - ok
21:00:10.0000 3064 [ 44032b0c6d9954d3fd26438330b99ee7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
21:00:10.0000 3064 Modem - ok
21:00:10.0031 3064 [ 4cb582831dbde63ce43b45d771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:00:10.0031 3064 Mouclass - ok
21:00:10.0046 3064 [ bb269eba740737ab749b214d568b6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:00:10.0046 3064 mouhid - ok
21:00:10.0062 3064 [ a80b9a0bad1b73637dbcbba7df72d3fd ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
21:00:10.0062 3064 MountMgr - ok
21:00:10.0125 3064 [ 46297fa8e30a6007f14118fc2b942fbc ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:00:10.0125 3064 MozillaMaintenance - ok
21:00:10.0125 3064 mraid35x - ok
21:00:10.0140 3064 [ 11d42bb6206f33fbb3ba0288d3ef81bd ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:00:10.0140 3064 MRxDAV - ok
21:00:10.0171 3064 [ 7d304a5eb4344ebeeab53a2fe3ffb9f0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:00:10.0187 3064 MRxSmb - ok
21:00:10.0203 3064 [ 6db4d1521caba9a5ffab54ade0ae867d ] MSDTC C:\WINDOWS\system32\msdtc.exe
21:00:10.0218 3064 MSDTC - ok
21:00:10.0234 3064 [ c941ea2454ba8350021d774daf0f1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
21:00:10.0234 3064 Msfs - ok
21:00:10.0234 3064 MSIServer - ok
21:00:10.0250 3064 [ d1575e71568f4d9e14ca56b7b0453bf1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:00:10.0250 3064 MSKSSRV - ok
21:00:10.0281 3064 [ 325bb26842fc7ccc1fcce2c457317f3e ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:00:10.0281 3064 MSPCLOCK - ok
21:00:10.0296 3064 [ bad59648ba099da4a17680b39730cb3d ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
21:00:10.0296 3064 MSPQM - ok
21:00:10.0312 3064 [ af5f4f3f14a8ea2c26de30f7a1e17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:00:10.0312 3064 mssmbios - ok
21:00:10.0328 3064 [ e53736a9e30c45fa9e7b5eac55056d1d ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
21:00:10.0343 3064 MSTEE - ok
21:00:10.0359 3064 [ de6a75f5c270e756c5508d94b6cf68f5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
21:00:10.0359 3064 Mup - ok
21:00:10.0375 3064 [ 5b50f1b2a2ed47d560577b221da734db ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:00:10.0375 3064 NABTSFEC - ok
21:00:10.0390 3064 [ 6ea362e9db03d44f6b996f4d8be237e9 ] napagent C:\WINDOWS\System32\qagentrt.dll
21:00:10.0406 3064 napagent - ok
21:00:10.0468 3064 [ 0d01287d85b3715fa8270e8ec919b7f7 ] NBService C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
21:00:10.0484 3064 NBService - ok
21:00:10.0515 3064 [ 1df7f42665c94b825322fae71721130d ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
21:00:10.0515 3064 NDIS - ok
21:00:10.0531 3064 [ 7ff1f1fd8609c149aa432f95a8163d97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:00:10.0531 3064 NdisIP - ok
21:00:10.0562 3064 [ 0109c4f3850dfbab279542515386ae22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:00:10.0578 3064 NdisTapi - ok
21:00:10.0593 3064 [ f927a4434c5028758a842943ef1a3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:00:10.0593 3064 Ndisuio - ok
21:00:10.0609 3064 [ edc1531a49c80614b2cfda43ca8659ab ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:00:10.0609 3064 NdisWan - ok
21:00:10.0640 3064 [ 9282bd12dfb069d3889eb3fcc1000a9b ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
21:00:10.0640 3064 NDProxy - ok
21:00:10.0640 3064 [ 5d81cf9a2f1a3a756b66cf684911cdf0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
21:00:10.0640 3064 NetBIOS - ok
21:00:10.0656 3064 [ 74b2b2f5bea5e9a3dc021d685551bd3d ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
21:00:10.0671 3064 NetBT - ok
21:00:10.0687 3064 [ 933de774986ec85e48210c44ab431de6 ] NetDDE C:\WINDOWS\system32\netdde.exe
21:00:10.0687 3064 NetDDE - ok
21:00:10.0703 3064 [ 933de774986ec85e48210c44ab431de6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
21:00:10.0703 3064 NetDDEdsdm - ok
21:00:10.0718 3064 [ ed0a176354487ceed65b80a7148ab739 ] Netlogon C:\WINDOWS\system32\lsass.exe
21:00:10.0718 3064 Netlogon - ok
21:00:10.0734 3064 [ 72e1e9e2977be08bdeedb6d8fd9d4d40 ] Netman C:\WINDOWS\System32\netman.dll
21:00:10.0750 3064 Netman - ok
21:00:10.0781 3064 [ d34612c5d02d026535b3095d620626ae ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:00:10.0781 3064 NetTcpPortSharing - ok
21:00:10.0796 3064 [ e9e47cfb2d461fa0fc75b7a74c6383ea ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:00:10.0796 3064 NIC1394 - ok
21:00:10.0828 3064 [ 39ee7c3bfbc64ba87cc8cf67386e814c ] Nla C:\WINDOWS\System32\mswsock.dll
21:00:10.0828 3064 Nla - ok
21:00:10.0890 3064 [ c4ebbbd7165be535f0bfd06b80601d91 ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
21:00:10.0890 3064 NMIndexingService - ok
21:00:10.0890 3064 [ 3182d64ae053d6fb034f44b6def8034a ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
21:00:10.0890 3064 Npfs - ok
21:00:10.0906 3064 NPPTNT2 - ok
21:00:10.0921 3064 [ 78a08dd6a8d65e697c18e1db01c5cdca ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
21:00:10.0921 3064 Ntfs - ok
21:00:10.0937 3064 [ ed0a176354487ceed65b80a7148ab739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
21:00:10.0937 3064 NtLmSsp - ok
21:00:11.0000 3064 [ 023dd70573d644f3d9c8b1258a7bfd08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
21:00:11.0000 3064 NtmsSvc - ok
21:00:11.0015 3064 [ 73c1e1f395918bc2c6dd67af7591a3ad ] Null C:\WINDOWS\system32\drivers\Null.sys
21:00:11.0015 3064 Null - ok
21:00:11.0031 3064 [ b305f3fad35083837ef46a0bbce2fc57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:00:11.0046 3064 NwlnkFlt - ok
21:00:11.0062 3064 [ c99b3415198d1aab7227f2c88fd664b9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:00:11.0062 3064 NwlnkFwd - ok
21:00:11.0187 3064 [ 785f487a64950f3cb8e9f16253ba3b7b ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:00:11.0203 3064 odserv - ok
21:00:11.0203 3064 [ ca33832df41afb202ee7aeb05145922f ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:00:11.0203 3064 ohci1394 - ok
21:00:11.0234 3064 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:00:11.0250 3064 ose - ok
21:00:11.0265 3064 [ 46f8db73b4a53e543f8e371dc7c75bae ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
21:00:11.0265 3064 Parport - ok
21:00:11.0281 3064 [ beb3ba25197665d82ec7065b724171c6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
21:00:11.0281 3064 PartMgr - ok
21:00:11.0312 3064 [ 1fae19d0457176318bba4a8795656ebc ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
21:00:11.0312 3064 ParVdm - ok
21:00:11.0343 3064 [ fd2041e9ba03db7764b2248f02475079 ] pccsmcfd C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
21:00:11.0343 3064 pccsmcfd - ok
21:00:11.0359 3064 [ 6ce351d149cb4befc702951e471e1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
21:00:11.0359 3064 PCI - ok
21:00:11.0359 3064 PCIDump - ok
21:00:11.0375 3064 [ 2da4ec85e0ea7a45c6b2a05820492d5a ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
21:00:11.0375 3064 PCIIde - ok
21:00:11.0375 3064 [ 4fc31e6c19a5ce5198b1abff94cae758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
21:00:11.0390 3064 Pcmcia - ok
21:00:11.0390 3064 PDCOMP - ok
21:00:11.0390 3064 PDFRAME - ok
21:00:11.0406 3064 PDRELI - ok
21:00:11.0406 3064 PDRFRAME - ok
21:00:11.0421 3064 perc2 - ok
21:00:11.0421 3064 perc2hib - ok
21:00:11.0468 3064 [ 95f6c2e89b5b0edf33be7e0bedf21991 ] PID_0928 C:\WINDOWS\system32\DRIVERS\LV561AV.SYS
21:00:11.0468 3064 PID_0928 - ok
21:00:11.0484 3064 [ 9ef697af07bb8dd82c3b02ca953a95b7 ] PlugPlay C:\WINDOWS\system32\services.exe
21:00:11.0500 3064 PlugPlay - ok
21:00:11.0500 3064 [ ed0a176354487ceed65b80a7148ab739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
21:00:11.0500 3064 PolicyAgent - ok
21:00:11.0515 3064 [ efeec01b1d3cf84f16ddd24d9d9d8f99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:00:11.0515 3064 PptpMiniport - ok
21:00:11.0531 3064 [ 7eb15dce4ec3a0220bd796a15c18186e ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
21:00:11.0531 3064 Processor - ok
21:00:11.0531 3064 [ ed0a176354487ceed65b80a7148ab739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
21:00:11.0531 3064 ProtectedStorage - ok
21:00:11.0546 3064 [ 09298ec810b07e5d582cb3a3f9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
21:00:11.0546 3064 PSched - ok
21:00:11.0562 3064 [ 80d317bd1c3dbc5d4fe7b1678c60cadd ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:00:11.0562 3064 Ptilink - ok
21:00:11.0578 3064 [ 49452bfcec22f36a7a9b9c2181bc3042 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
21:00:11.0578 3064 PxHelp20 - ok
21:00:11.0578 3064 ql1080 - ok
21:00:11.0593 3064 Ql10wnt - ok
21:00:11.0593 3064 ql12160 - ok
21:00:11.0609 3064 ql1240 - ok
21:00:11.0609 3064 ql1280 - ok
21:00:11.0625 3064 [ fe0d99d6f31e4fad8159f690d68ded9c ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:00:11.0625 3064 RasAcd - ok
21:00:11.0640 3064 [ 2b5e44ea009f2f374b980e1e9a70635d ] RasAuto C:\WINDOWS\System32\rasauto.dll
21:00:11.0656 3064 RasAuto - ok
21:00:11.0656 3064 [ 11b4a627bc9614b885c4969bfa5ff8a6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:00:11.0656 3064 Rasl2tp - ok
21:00:11.0687 3064 [ d57554c664b64604bd1ee13ea2c07e77 ] RasMan C:\WINDOWS\System32\rasmans.dll
21:00:11.0687 3064 RasMan - ok
21:00:11.0703 3064 [ 5bc962f2654137c9909c3d4603587dee ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:00:11.0703 3064 RasPppoe - ok
21:00:11.0703 3064 [ fdbb1d60066fcfbb7452fd8f9829b242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
21:00:11.0703 3064 Raspti - ok
21:00:11.0718 3064 [ 7ad224ad1a1437fe28d89cf22b17780a ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:00:11.0718 3064 Rdbss - ok
21:00:11.0734 3064 [ 4912d5b403614ce99c28420f75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:00:11.0734 3064 RDPCDD - ok
21:00:11.0765 3064 [ 6589db6e5969f8eee594cf71171c5028 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
21:00:11.0765 3064 RDPWD - ok
21:00:11.0796 3064 [ c0d9d9711cb74ee9bc66353d8cbdab0e ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
21:00:11.0812 3064 RDSessMgr - ok
21:00:11.0828 3064 [ 611bfd220305be3a85ae876ea47d4aa5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
21:00:11.0828 3064 redbook - ok
21:00:11.0843 3064 [ 127c26b5371651043450e52542099aba ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
21:00:11.0859 3064 RemoteAccess - ok
21:00:11.0921 3064 [ bd517c7fb119997effbe39d5e4b37b05 ] RichVideo C:\Program Files\CyberLink\Shared Files\RichVideo.exe
21:00:11.0921 3064 RichVideo - ok
21:00:11.0937 3064 [ 718b3bdc0bc3c2f7d065a53d26202af9 ] RpcLocator C:\WINDOWS\system32\locator.exe
21:00:11.0953 3064 RpcLocator - ok
21:00:11.0984 3064 [ be27674d1cbc3214aec84b4336a38bbf ] RpcSs C:\WINDOWS\System32\rpcss.dll
21:00:11.0984 3064 RpcSs - ok
21:00:12.0015 3064 [ 09ab2e71e58b078038e3bfdba7ffc984 ] RSVP C:\WINDOWS\system32\rsvp.exe
21:00:12.0031 3064 RSVP - ok
21:00:12.0125 3064 [ ee76248ca187bb50ff964a287d420fee ] RTHDMIAzAudService C:\WINDOWS\system32\drivers\RtHDMI.sys
21:00:12.0171 3064 RTHDMIAzAudService - ok
21:00:12.0187 3064 [ f0a21c62b9b835e1c96268eaae31d239 ] RTLE8023xp C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
21:00:12.0187 3064 RTLE8023xp - ok
21:00:12.0203 3064 [ ed0a176354487ceed65b80a7148ab739 ] SamSs C:\WINDOWS\system32\lsass.exe
21:00:12.0203 3064 SamSs - ok
21:00:12.0218 3064 [ bd26a150dc292913e48ee2b950372dfd ] Samsung UPD Service C:\WINDOWS\system32\SUPDSvc.exe
21:00:12.0234 3064 Samsung UPD Service - ok
21:00:12.0250 3064 [ 410046e401eb11e1e6749e9deea41d4a ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
21:00:12.0265 3064 SCardSvr - ok
21:00:12.0281 3064 [ 3ff232a7731621b8902d81d42418c93c ] Schedule C:\WINDOWS\system32\schedsvc.dll
21:00:12.0296 3064 Schedule - ok
21:00:12.0296 3064 [ 90a3935d05b494a5a39d37e71f09a677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:00:12.0312 3064 Secdrv - ok
21:00:12.0328 3064 [ 477e2c3cc5e4a0d635bcb0ea8dcac3c6 ] seclogon C:\WINDOWS\System32\seclogon.dll
21:00:12.0343 3064 seclogon - ok
21:00:12.0343 3064 [ a530b75c10c23c9ab28fdb6ce719e21f ] SENS C:\WINDOWS\system32\sens.dll
21:00:12.0359 3064 SENS - ok
21:00:12.0359 3064 [ 0f29512ccd6bead730039fb4bd2c85ce ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
21:00:12.0375 3064 serenum - ok
21:00:12.0375 3064 [ b842729337c9b921615c40d3c1a1af96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
21:00:12.0375 3064 Serial - ok
21:00:12.0437 3064 [ 3ec8de67b1c78c31e54c0f030e6bd7d5 ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
21:00:12.0437 3064 ServiceLayer - ok
21:00:12.0468 3064 [ 8e6b8c671615d126fdc553d1e2de5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
21:00:12.0484 3064 Sfloppy - ok
21:00:12.0515 3064 [ f58faca9621d2db01bd0927d9a0a208e ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
21:00:12.0531 3064 SharedAccess - ok
21:00:12.0546 3064 [ ee9a2b9ea968a792a053c9d1a86bf870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:00:12.0562 3064 ShellHWDetection - ok
21:00:12.0562 3064 Simbad - ok
21:00:12.0593 3064 [ 866d538ebe33709a5c9f5c62b73b7d14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:00:12.0593 3064 SLIP - ok
21:00:12.0609 3064 Sparrow - ok
21:00:12.0640 3064 [ ab8b92451ecb048a4d1de7c3ffcb4a9f ] splitter C:\WINDOWS\system32\drivers\splitter.sys
21:00:12.0640 3064 splitter - ok
21:00:12.0671 3064 [ 60784f891563fb1b767f70117fc2428f ] Spooler C:\WINDOWS\system32\spoolsv.exe
21:00:12.0671 3064 Spooler - ok
21:00:12.0703 3064 [ 94610c8653635e4459316a0050d55ce7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
21:00:12.0703 3064 sr - ok
21:00:12.0718 3064 [ 35b91147124f64ac8081a2edb9ea4dee ] srservice C:\WINDOWS\system32\srsvc.dll
21:00:12.0718 3064 srservice - ok
21:00:12.0750 3064 [ 47ddfc2f003f7f9f0592c6874962a2e7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
21:00:12.0750 3064 Srv - ok
21:00:12.0781 3064 [ 64e44acd8c238fcbbb78f0ba4bdc4b05 ] ssadbus C:\WINDOWS\system32\DRIVERS\ssadbus.sys
21:00:12.0781 3064 ssadbus - ok
21:00:12.0812 3064 [ bb2c84a15c765da89fd832b0e73f26ce ] ssadmdfl C:\WINDOWS\system32\DRIVERS\ssadmdfl.sys
21:00:12.0812 3064 ssadmdfl - ok
21:00:12.0828 3064 [ 6d0d132ddc6f43eda00dced6d8b1ca31 ] ssadmdm C:\WINDOWS\system32\DRIVERS\ssadmdm.sys
21:00:12.0828 3064 ssadmdm - ok
21:00:12.0859 3064 [ 1a5a397bc459f346ab56492b61ef79f6 ] ssadserd C:\WINDOWS\system32\DRIVERS\ssadserd.sys
21:00:12.0859 3064 ssadserd - ok
21:00:12.0890 3064 [ becd5271dc4e3b7c3d035f790fcbc1e5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
21:00:12.0890 3064 SSDPSRV - ok
21:00:12.0906 3064 [ 3f0164fbc0bd1adbd02df9759181451a ] ss_bbus C:\WINDOWS\system32\DRIVERS\ss_bbus.sys
21:00:12.0921 3064 ss_bbus - ok
21:00:12.0937 3064 [ b89d62206034e5fe573c80a24dd55675 ] ss_bmdfl C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys
21:00:12.0937 3064 ss_bmdfl - ok
21:00:12.0984 3064 [ 1ed0fcea586fe2a416ee15196e5631dd ] ss_bmdm C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys
21:00:12.0984 3064 ss_bmdm - ok
21:00:13.0015 3064 [ 994d2e5378cc337ec7dd73c1e04fcaa4 ] ss_bserd C:\WINDOWS\system32\DRIVERS\ss_bserd.sys
21:00:13.0031 3064 ss_bserd - ok
21:00:13.0031 3064 [ 306521935042fc0a6988d528643619b3 ] StarOpen C:\WINDOWS\system32\drivers\StarOpen.sys
21:00:13.0046 3064 StarOpen - ok
21:00:13.0062 3064 [ c1cdd9275f6a115bb0ae1d55d8d27ba6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
21:00:13.0093 3064 stisvc - ok
21:00:13.0093 3064 [ 77813007ba6265c4b6098187e6ed79d2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
21:00:13.0093 3064 streamip - ok
21:00:13.0109 3064 [ 3941d127aef12e93addf6fe6ee027e0f ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
21:00:13.0109 3064 swenum - ok
21:00:13.0109 3064 [ 8ce882bcc6cf8a62f2b2323d95cb3d01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
21:00:13.0109 3064 swmidi - ok
21:00:13.0125 3064 SwPrv - ok
21:00:13.0125 3064 symc810 - ok
21:00:13.0140 3064 symc8xx - ok
21:00:13.0140 3064 sym_hi - ok
21:00:13.0140 3064 sym_u3 - ok
21:00:13.0156 3064 [ 8b83f3ed0f1688b4958f77cd6d2bf290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
21:00:13.0156 3064 sysaudio - ok
21:00:13.0187 3064 [ ce06f01b88ace199a1bf460cac29c110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
21:00:13.0187 3064 SysmonLog - ok
21:00:13.0218 3064 [ c2546cd7a398476f9df5614b2ae160e8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
21:00:13.0234 3064 TapiSrv - ok
21:00:13.0265 3064 [ 9aefa14bd6b182d61e3119fa5f436d3d ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:00:13.0265 3064 Tcpip - ok
21:00:13.0296 3064 [ 6471a66807f5e104e4885f5b67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
21:00:13.0296 3064 TDPIPE - ok
21:00:13.0312 3064 [ c56b6d0402371cf3700eb322ef3aaf61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
21:00:13.0312 3064 TDTCP - ok
21:00:13.0312 3064 [ 88155247177638048422893737429d9e ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
21:00:13.0328 3064 TermDD - ok
21:00:13.0328 3064 [ a75dd6fc3dbee4fff5ebc9f2c28bb66e ] TermService C:\WINDOWS\System32\termsrv.dll
21:00:13.0343 3064 TermService - ok
21:00:13.0359 3064 [ ee9a2b9ea968a792a053c9d1a86bf870 ] Themes C:\WINDOWS\System32\shsvcs.dll
21:00:13.0359 3064 Themes - ok
21:00:13.0375 3064 TosIde - ok
21:00:13.0375 3064 [ 38853304ccb938d30e0c4cde8d2c2a8a ] TrkWks C:\WINDOWS\system32\trkwks.dll
21:00:13.0390 3064 TrkWks - ok
21:00:13.0406 3064 [ 5787b80c2e3c5e2f56c2a233d91fa2c9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
21:00:13.0406 3064 Udfs - ok
21:00:13.0421 3064 ultra - ok
21:00:13.0437 3064 [ 402ddc88356b1bac0ee3dd1580c76a31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
21:00:13.0437 3064 Update - ok
21:00:13.0453 3064 [ 651bd90dcee5b7bdc74a2eb7c9266f9e ] upnphost C:\WINDOWS\System32\upnphost.dll
21:00:13.0468 3064 upnphost - ok
21:00:13.0484 3064 [ 20a0f6a11959e92908717d09e87d670d ] UPS C:\WINDOWS\System32\ups.exe
21:00:13.0500 3064 UPS - ok
21:00:13.0515 3064 [ 173f317ce0db8e21322e71b7e60a27e8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:00:13.0515 3064 usbccgp - ok
21:00:13.0531 3064 [ 65dcf09d0e37d4c6b11b5b0b76d470a7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:00:13.0531 3064 usbehci - ok
21:00:13.0531 3064 [ 1ab3cdde553b6e064d2e754efe20285c ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:00:13.0531 3064 usbhub - ok
21:00:13.0546 3064 [ 0daecce65366ea32b162f85f07c6753b ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
21:00:13.0546 3064 usbohci - ok
21:00:13.0578 3064 [ a717c8721046828520c9edf31288fc00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
21:00:13.0578 3064 usbprint - ok
21:00:13.0593 3064 [ a0b8cf9deb1184fbdd20784a58fa75d4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:00:13.0593 3064 usbscan - ok
21:00:13.0625 3064 [ a32426d9b14a089eaa1d922e0c5801a9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:00:13.0625 3064 USBSTOR - ok
21:00:13.0625 3064 [ 0d3a8fafceacd8b7625cd549757a7df1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
21:00:13.0625 3064 VgaSave - ok
21:00:13.0640 3064 ViaIde - ok
21:00:13.0656 3064 [ 28a4b296b47782173c346e376cb374d1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
21:00:13.0656 3064 VolSnap - ok
21:00:13.0671 3064 [ d6ba1a63d9e00933f1cd2a885573afb2 ] VSS C:\WINDOWS\System32\vssvc.exe
21:00:13.0687 3064 VSS - ok
21:00:13.0718 3064 [ fa4e1cdba256787f2149f4aad07bc91f ] W32Time C:\WINDOWS\system32\w32time.dll
21:00:13.0734 3064 W32Time - ok
21:00:13.0750 3064 [ e20b95baedb550f32dd489265c1da1f6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:00:13.0750 3064 Wanarp - ok
21:00:13.0796 3064 [ a1a36682df22777834e1c37f3c79aec2 ] WDBtnMgrSvc.exe C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe
21:00:13.0796 3064 WDBtnMgrSvc.exe - ok
21:00:13.0828 3064 [ fd47474bd21794508af449d9d91af6e6 ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
21:00:13.0828 3064 Wdf01000 - ok
21:00:13.0843 3064 WDICA - ok
21:00:13.0859 3064 [ 6768acf64b18196494413695f0c3a00f ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
21:00:13.0859 3064 wdmaud - ok
21:00:13.0875 3064 [ 47ae51048a82dfa1cd6b51d369f7e169 ] WebClient C:\WINDOWS\System32\webclnt.dll
21:00:13.0890 3064 WebClient - ok
21:00:13.0937 3064 [ e488332126e3b1182d2b8a0c35408ec6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
21:00:13.0937 3064 winmgmt - ok
21:00:14.0000 3064 [ 4d34cedd74bdbf2b6a935eae3bf80543 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
21:00:14.0015 3064 WinRM - ok
21:00:14.0046 3064 [ c51b4a5c05a5475708e3c81c7765b71d ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
21:00:14.0062 3064 WmdmPmSN - ok
21:00:14.0078 3064 [ c42584fd66ce9e17403aebca199f7bdb ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
21:00:14.0078 3064 WmiAcpi - ok
21:00:14.0093 3064 [ 23f6f03272f7e5679f1f050aed5acee6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:00:14.0109 3064 WmiApSrv - ok
21:00:14.0171 3064 [ 3739866d20abd42f26a7b85f9e2560af ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
21:00:14.0171 3064 WMPNetworkSvc - ok
21:00:14.0203 3064 [ cf4def1bf66f06964dc0d91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
21:00:14.0203 3064 WpdUsb - ok
21:00:14.0265 3064 [ dcf3e3edf5109ee8bc02fe6e1f045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:00:14.0265 3064 WPFFontCache_v0400 - ok
21:00:14.0296 3064 [ 6abe6e225adb5a751622a9cc3bc19ce8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
21:00:14.0296 3064 WS2IFSL - ok
21:00:14.0312 3064 [ 4c86d5faf78194995af9cc1075f65dd3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
21:00:14.0328 3064 wscsvc - ok
21:00:14.0328 3064 WSearch - ok
21:00:14.0359 3064 [ c98b39829c2bbd34e454150633c62c78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
21:00:14.0359 3064 WSTCODEC - ok
21:00:14.0390 3064 [ c1364564800ee9784192145324a23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
21:00:14.0406 3064 wuauserv - ok
21:00:14.0421 3064 [ f15feafffbb3644ccc80c5da584e6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:00:14.0421 3064 WudfPf - ok
21:00:14.0437 3064 [ 28b524262bce6de1f7ef9f510ba3985b ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:00:14.0453 3064 WudfRd - ok
21:00:14.0484 3064 [ 05231c04253c5bc30b26cbaae680ed89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
21:00:14.0500 3064 WudfSvc - ok
21:00:14.0531 3064 [ a27d4ba7264c0bf52f32d10405bea1d4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
21:00:14.0593 3064 WZCSVC - ok
21:00:14.0640 3064 [ eaa4bb9edb3fb10cf8979fe65e63658f ] xmlprov C:\WINDOWS\System32\xmlprov.dll
21:00:14.0656 3064 xmlprov - ok
21:00:14.0671 3064 ================ Scan global ===============================
21:00:14.0703 3064 (f36278e42c8c5df03ce17dac8231c91c) C:\WINDOWS\system32\basesrv.dll
21:00:14.0718 3064 (f3fa14a297bc687d0b51289d034033c9) C:\WINDOWS\system32\winsrv.dll
21:00:14.0734 3064 (f3fa14a297bc687d0b51289d034033c9) C:\WINDOWS\system32\winsrv.dll
21:00:14.0750 3064 (9ef697af07bb8dd82c3b02ca953a95b7) C:\WINDOWS\system32\services.exe
21:00:14.0765 3064 [Global] - ok
21:00:14.0765 3064 ================ Scan MBR ==================================
21:00:14.0781 3064 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
21:00:14.0953 3064 \Device\Harddisk0\DR0 - ok
21:00:14.0953 3064 ================ Scan VBR ==================================
21:00:14.0953 3064 Boot (0x1200) (f8010fcbd5bf9e00615bba36fa0eab3e) \Device\Harddisk0\DR0\Partition1
21:00:14.0953 3064 \Device\Harddisk0\DR0\Partition1 - ok
21:00:14.0984 3064 Boot (0x1200) (a7189e66558f81fed19666369286ed34) \Device\Harddisk0\DR0\Partition2
21:00:14.0984 3064 \Device\Harddisk0\DR0\Partition2 - ok
21:00:14.0984 3064 ============================================================
21:00:14.0984 3064 Scan finished
21:00:14.0984 3064 ============================================================
21:00:14.0984 5420 Detected object count: 0
21:00:14.0984 5420 Actual detected object count: 0
21:00:21.0453 2368 Deinitialize success
Re: problémy při startu, prosím o kontrolu logu
aswMBR:
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-08-15 21:09:56
-----------------------------
21:09:56.750 OS Version: Windows 5.1.2600 Service Pack 3
21:09:56.750 Number of processors: 2 586 0x6B02
21:09:56.750 ComputerName: KAROLINKY1 UserName: Karolína
21:09:57.203 Initialize success
21:10:00.671 AVAST engine defs: 12081503
21:10:25.593 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
21:10:25.593 Disk 0 Vendor: SAMSUNG_HD642JJ 1AA01113 Size: 610479MB BusType: 3
21:10:25.609 Disk 0 MBR read successfully
21:10:25.609 Disk 0 MBR scan
21:10:25.609 Disk 0 Windows XP default MBR code
21:10:25.609 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 99998 MB offset 63
21:10:25.625 Disk 0 Partition - 00 0F Extended LBA 510471 MB offset 204796620
21:10:25.640 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 510471 MB offset 204796683
21:10:25.640 Disk 0 scanning sectors +1250242560
21:10:25.703 Disk 0 scanning C:\WINDOWS\system32\drivers
21:10:30.593 Service scanning
21:10:39.000 Modules scanning
21:10:41.906 Disk 0 trace - called modules:
21:10:41.921 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
21:10:41.921 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a42cab8]
21:10:41.921 3 CLASSPNP.SYS[ba108fd7] -> nt!IofCallDriver -> \Device\00000071[0x8a4774f0]
21:10:41.921 5 ACPI.sys[b9f7f620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x8a4872e0]
21:10:42.281 AVAST engine scan C:\WINDOWS
21:10:46.625 AVAST engine scan C:\WINDOWS\system32
21:12:24.578 AVAST engine scan C:\WINDOWS\system32\drivers
21:12:32.921 AVAST engine scan C:\Documents and Settings\Karolína
21:17:25.390 AVAST engine scan C:\Documents and Settings\All Users
21:20:51.984 Scan finished successfully
21:22:53.265 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Karolína\Plocha\MBR.dat"
21:22:53.265 The log file has been saved successfully to "C:\Documents and Settings\Karolína\Plocha\aswMBR.txt"
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-08-15 21:09:56
-----------------------------
21:09:56.750 OS Version: Windows 5.1.2600 Service Pack 3
21:09:56.750 Number of processors: 2 586 0x6B02
21:09:56.750 ComputerName: KAROLINKY1 UserName: Karolína
21:09:57.203 Initialize success
21:10:00.671 AVAST engine defs: 12081503
21:10:25.593 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
21:10:25.593 Disk 0 Vendor: SAMSUNG_HD642JJ 1AA01113 Size: 610479MB BusType: 3
21:10:25.609 Disk 0 MBR read successfully
21:10:25.609 Disk 0 MBR scan
21:10:25.609 Disk 0 Windows XP default MBR code
21:10:25.609 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 99998 MB offset 63
21:10:25.625 Disk 0 Partition - 00 0F Extended LBA 510471 MB offset 204796620
21:10:25.640 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 510471 MB offset 204796683
21:10:25.640 Disk 0 scanning sectors +1250242560
21:10:25.703 Disk 0 scanning C:\WINDOWS\system32\drivers
21:10:30.593 Service scanning
21:10:39.000 Modules scanning
21:10:41.906 Disk 0 trace - called modules:
21:10:41.921 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
21:10:41.921 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a42cab8]
21:10:41.921 3 CLASSPNP.SYS[ba108fd7] -> nt!IofCallDriver -> \Device\00000071[0x8a4774f0]
21:10:41.921 5 ACPI.sys[b9f7f620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x8a4872e0]
21:10:42.281 AVAST engine scan C:\WINDOWS
21:10:46.625 AVAST engine scan C:\WINDOWS\system32
21:12:24.578 AVAST engine scan C:\WINDOWS\system32\drivers
21:12:32.921 AVAST engine scan C:\Documents and Settings\Karolína
21:17:25.390 AVAST engine scan C:\Documents and Settings\All Users
21:20:51.984 Scan finished successfully
21:22:53.265 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Karolína\Plocha\MBR.dat"
21:22:53.265 The log file has been saved successfully to "C:\Documents and Settings\Karolína\Plocha\aswMBR.txt"
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 3 hosti