Prosím o kontrolu logu, zamrzá pc

lucie7272 · Příspěvekod **lucie7272** » 05 úno 2014 22:04

Prosím o kontrolu logu, zamrzá pc , nejde ani restartovat, jen vypnout.Děkuji

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:48:03, on 5.2.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Program Files\Acer Bio Protection\BASVC.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe
C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\IObit\Advanced SystemCare 6\Asc.exe
C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE
C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
C:\Documents and Settings\Uziv\Plocha\hijackthis.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: Smart_PC_Utilities Toolbar - {fd3d3852-dcda-468c-8995-8ced7333918a} - C:\Program Files\Smart_PC_Utilities\prxtbSmar.dll
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - (no file)
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~1\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Smart_PC_Utilities Toolbar - {fd3d3852-dcda-468c-8995-8ced7333918a} - C:\Program Files\Smart_PC_Utilities\prxtbSmar.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
O3 - Toolbar: Smart_PC_Utilities Toolbar - {fd3d3852-dcda-468c-8995-8ced7333918a} - C:\Program Files\Smart_PC_Utilities\prxtbSmar.dll
O3 - Toolbar: (no name) - {10921475-03CE-4E04-90CE-E2E7EF20C814} - (no file)
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SpyHunter Security Suite] C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
O4 - HKCU\..\Run: [egui.exe] C:\Program Files\ESET\ESET Smart Security\egui.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Advanced SystemCare 6] "C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Download Video on This Page - res://C:\Program Files\Tomato\YouTube Video Downloader\MDIEEx.dll/211
O8 - Extra context menu item: Download Video This Links To - res://C:\Program Files\Tomato\YouTube Video Downloader\MDIEEx.dll/212
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Převést do Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Připojit cíl vazby k existujícímu PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Připojit k existujícímu PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Send by Bluetooth - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send via &Message... - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm
O9 - Extra button: Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer Bio Protection\PwdBank.exe
O9 - Extra 'Tools' menuitem: Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer Bio Protection\PwdBank.exe
O9 - Extra button: Download Video - {11F19C45-9675-488A-A8E0-8E8234DC245D} - res://C:\Program Files\Tomato\YouTube Video Downloader\MDIEEx.dll/211 (file missing)
O9 - Extra 'Tools' menuitem: Download Video on This Page - {11F19C45-9675-488A-A8E0-8E8234DC245D} - res://C:\Program Files\Tomato\YouTube Video Downloader\MDIEEx.dll/211 (file missing)
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: AWinNotifyVitaKey MC3000 - C:\Program Files\Acer Bio Protection\WinNotify.dll
O20 - Winlogon Notify: spba - C:\Program Files\Common Files\SPBA\homefus2.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Version Cue CS4 - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: BlueSoleilCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
O23 - Service: BsHelpCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
O23 - Service: BsMobileCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: EgisTec Service (IGBASVC) - Egis Technology Inc. - C:\Program Files\Acer Bio Protection\BASVC.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: O2Micro Flash Memory Card Service (o2flash) - O2Micro International - C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SpyHunter 4 Service - Enigma Software Group USA, LLC. - C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE

Reklama

Příspěvekod **jaro3** » 06 úno 2014 09:59

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode)

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Pokud budou problémy , spusť v nouz. režimu.

lucie7272 · Příspěvekod **lucie7272** » 06 úno 2014 11:10

Děkuji a tady tedy jsou :-)

# AdwCleaner v3.018 - Report created 06/02/2014 at 10:14:48
# Updated 28/01/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Uziv - PC
# Running from : C:\Documents and Settings\Uziv\Plocha\adwcleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

File Found : C:\Documents and Settings\Uziv\Data aplikací\Mozilla\Firefox\Profiles\9p41gx7u.default\user.js
File Found : C:\Program Files\Mozilla Firefox\searchplugins\avg-secure-search.xml
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\registry mechanic
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\registry mechanic
Folder Found C:\Documents and Settings\Uziv\Data aplikací\OpenCandy
Folder Found C:\Documents and Settings\Uziv\Data aplikací\registry mechanic
Folder Found C:\Documents and Settings\Uziv\Data aplikací\Systweak
Folder Found C:\Documents and Settings\Uziv\Local Settings\Data aplikací\apn
Folder Found C:\Documents and Settings\Uziv\Local Settings\Data aplikací\AskToolbar
Folder Found C:\Documents and Settings\Uziv\Local Settings\Data aplikací\Smart_PC_Utilities
Folder Found C:\Program Files\Conduit
Folder Found C:\Program Files\myfree codec
Folder Found C:\Program Files\registry mechanic
Folder Found C:\Program Files\Smart_PC_Utilities

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyFreeCodec
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD3D3852-DCDA-468C-8995-8CED7333918A}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD3D3852-DCDA-468C-8995-8CED7333918A}
Key Found : HKCU\Software\Smart_PC_Utilities
Key Found : HKCU\Software\systweak
Key Found : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5555CC4C-FA2B-4D69-8296-B6AE5E95C0B7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FD3D3852-DCDA-468C-8995-8CED7333918A}
Key Found : HKLM\SOFTWARE\Classes\driverscanner
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0E44BB13-2523-468B-BF51-58D5F52A84F6}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\daemon tools toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Smart_PC_Utilities Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD3D3852-DCDA-468C-8995-8CED7333918A}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A67E886D-7C6A-46C7-B09F-3C323E7C78EF}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Smart_PC_Utilities Toolbar
Key Found : HKLM\Software\Smart_PC_Utilities
Key Found : HKLM\Software\Uniblue\DriverScanner
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{FD3D3852-DCDA-468C-8995-8CED7333918A}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{FD3D3852-DCDA-468C-8995-8CED7333918A}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{FD3D3852-DCDA-468C-8995-8CED7333918A}]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe]

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs] - hxxp://search.babylon.com/?affID=110187 ... 1583b3d044

-\\ Mozilla Firefox v

[ File : C:\Documents and Settings\Uziv\Data aplikací\Mozilla\Firefox\Profiles\9p41gx7u.default\prefs.js ]

Line Found : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Line Found : user_pref("browser.search.selectedEngine", "AVG Secure Search");

-\\ Google Chrome v32.0.1700.107

[ File : C:\Documents and Settings\Uziv\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [6718 octets] - [06/02/2014 10:11:24]
AdwCleaner[R1].txt - [6638 octets] - [06/02/2014 10:14:48]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [6698 octets] ##########

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2014.02.06.04

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Uziv :: PC [administrátor]

6.2.2014 10:36:32
MBAM-log-2014-02-06 (10-48-00).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 214009
Uplynulý čas: 8 minut, 45 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 1
HKCU\Software\Systweak\RegClean Pro (PUP.Optional.RegCleanerPro.A) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 4
C:\Documents and Settings\Uziv\Data aplikací\OpenCandy (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Uziv\Data aplikací\OpenCandy\3FCB8E8CE6EC490184E2B08F389D0FCB (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Uziv\Data aplikací\OpenCandy\6FF98CCDF6504E9B96E2A1C299E8A1FB (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Uziv\Data aplikací\OpenCandy\OpenCandy_6FF98CCDF6504E9B96E2A1C299E8A1FB (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 4
C:\WINDOWS\system32\mslsbwlp.vbe (Trojan.Script) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\system32\msvscfu.vbe (Trojan.Script) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\system32\mswlhxqo.vbe (Trojan.Script) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Uziv\Data aplikací\OpenCandy\3FCB8E8CE6EC490184E2B08F389D0FCB\PasswordBoxCHSTORE_p1v0.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.

(konec)

Příspěvekod **jaro3** » 06 úno 2014 16:00

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool by Thisisu

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

. spusť znovu MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Ukaž výsledky
- ujisti se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Můžeš sem pak vložit nový log z MbAM.

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

lucie7272 · Příspěvekod **lucie7272** » 06 úno 2014 16:45

# AdwCleaner v3.018 - Report created 06/02/2014 at 16:14:22
# Updated 28/01/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Uziv - PC
# Running from : C:\Documents and Settings\Uziv\Plocha\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\Uziv\Data aplikací\OpenCandy
Folder Deleted : C:\Documents and Settings\Uziv\Data aplikací\registry mechanic
Folder Deleted : C:\Documents and Settings\Uziv\Data aplikací\Systweak
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\avg-secure-search.xml
File Deleted : C:\Documents and Settings\Uziv\Data aplikací\Mozilla\Firefox\Profiles\9p41gx7u.default\user.js

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\driverscanner
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5555CC4C-FA2B-4D69-8296-B6AE5E95C0B7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD3D3852-DCDA-468C-8995-8CED7333918A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD3D3852-DCDA-468C-8995-8CED7333918A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD3D3852-DCDA-468C-8995-8CED7333918A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD3D3852-DCDA-468C-8995-8CED7333918A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A67E886D-7C6A-46C7-B09F-3C323E7C78EF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0E44BB13-2523-468B-BF51-58D5F52A84F6}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{FD3D3852-DCDA-468C-8995-8CED7333918A}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{FD3D3852-DCDA-468C-8995-8CED7333918A}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{FD3D3852-DCDA-468C-8995-8CED7333918A}]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe]
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\Smart_PC_Utilities
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Uniblue\DriverScanner
Key Deleted : HKLM\Software\Smart_PC_Utilities
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Smart_PC_Utilities Toolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyFreeCodec
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\daemon tools toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Smart_PC_Utilities Toolbar

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]

-\\ Mozilla Firefox v

[ File : C:\Documents and Settings\Uziv\Data aplikací\Mozilla\Firefox\Profiles\9p41gx7u.default\prefs.js ]

Line Deleted : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Line Deleted : user_pref("browser.search.selectedEngine", "AVG Secure Search");

-\\ Google Chrome v32.0.1700.107

[ File : C:\Documents and Settings\Uziv\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [6718 octets] - [06/02/2014 10:11:24]
AdwCleaner[R1].txt - [6778 octets] - [06/02/2014 10:14:48]
AdwCleaner[R2].txt - [6838 octets] - [06/02/2014 10:21:50]
AdwCleaner[R3].txt - [6337 octets] - [06/02/2014 16:12:35]
AdwCleaner[S0].txt - [902 octets] - [06/02/2014 10:24:10]
AdwCleaner[S1].txt - [6266 octets] - [06/02/2014 16:14:22]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [6326 octets] ##########

Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.1 (02.04.2014:1)
OS: Microsoft Windows XP x86
Ran by Uziv on čt 06.02.2014 at 16:23:47,00
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

Failed to stop: [Service] isafekrnl
Failed to stop: [Service] isafeservice

~~~ Registry Values

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\dt soft\daemon tools toolbar
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\isafe

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\Documents and Settings\Uziv\Data aplikací\isafe"
Failed to delete: [Folder] "C:\Program Files\isafe"

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on čt 06.02.2014 at 16:31:03,21
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Malwarebytes Anti-Malware 1.75.0.1300
http://www.malwarebytes.org

Verze: v2014.02.06.04

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Uziv :: PC [administrátor]

6.2.2014 16:35:27
mbam-log-2014-02-06 (16-35-27).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 214154
Uplynulý čas: 8 minut, 26 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 3
C:\WINDOWS\system32\mslsbwlp.vbe (Trojan.Script) -> Přesun do karantény a smazání se zdařilo.
C:\WINDOWS\system32\msvscfu.vbe (Trojan.Script) -> Přesun do karantény a smazání se zdařilo.
C:\WINDOWS\system32\mswlhxqo.vbe (Trojan.Script) -> Přesun do karantény a smazání se zdařilo.

(konec)

RogueKiller V8.8.5 [Feb 3 2014] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : hxxp://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Uziv [Práva správce]
Mód : Kontrola [Aborted] -- Datum : 02/06/2014 17:16:06
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 7 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowRecentDocs (0) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Inline] EAT @explorer.exe (?MILLIS_PER_SECOND@GCDate@@2JB) : GrooveUtil.DLL -> HOOKED (Unknown @ 0xC8F7333C)

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 localhost
127.0.0.1 www.iobit.com
127.0.0.1 www.asc55.iobit.com

¤¤¤ Kontrola MBR: ¤¤¤

Dokončeno : << RKreport[0]_S_02062014_171606.txt >>
RKreport[0]_S_02062014_171035.txt;RKreport[0]_S_02062014_171228.txt;RKreport[0]_S_02062014_171410.txt

Příspěvekod **jaro3** » 06 úno 2014 19:00

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.

lucie7272 · Příspěvekod **lucie7272** » 06 úno 2014 19:18

RogueKiller V8.8.5 [Feb 3 2014] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : hxxp://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Uziv [Práva správce]
Mód : Odebrat -- Datum : 02/06/2014 19:09:37
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 7 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> VYMAZÁNO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowRecentDocs (0) -> NAHRAZENO (1)
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Inline] EAT @explorer.exe (?MILLIS_PER_SECOND@GCDate@@2JB) : GrooveUtil.DLL -> HOOKED (Unknown @ 0xC8F7333C)

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 localhost
127.0.0.1 www.iobit.com
127.0.0.1 www.asc55.iobit.com

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD3200BEVT-22ZCT0 +++++
--- User ---
[MBR] b15f3a5ec7d3f61d35fde26a2cfcdc30
[BSP] cf12a3833762fb97ecc811bb188f8f02 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 150244 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 307701760 | Size: 154999 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_02062014_190937.txt >>
RKreport[0]_S_02062014_171035.txt;RKreport[0]_S_02062014_171228.txt;RKreport[0]_S_02062014_171410.txt
RKreport[0]_S_02062014_171606.txt;RKreport[0]_S_02062014_190925.txt

19:13:00.0437 3512 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:13:04.0171 3512 ============================================================
19:13:04.0171 3512 Current date / time: 2014/02/06 19:13:04.0171
19:13:04.0171 3512 SystemInfo:
19:13:04.0171 3512
19:13:04.0171 3512 OS Version: 5.1.2600 ServicePack: 3.0
19:13:04.0171 3512 Product type: Workstation
19:13:04.0171 3512 ComputerName: PC
19:13:04.0171 3512 UserName: Uziv
19:13:04.0171 3512 Windows directory: C:\WINDOWS
19:13:04.0171 3512 System windows directory: C:\WINDOWS
19:13:04.0171 3512 Processor architecture: Intel x86
19:13:04.0171 3512 Number of processors: 2
19:13:04.0171 3512 Page size: 0x1000
19:13:04.0171 3512 Boot type: Normal boot
19:13:04.0171 3512 ============================================================
19:13:05.0640 3512 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
19:13:05.0640 3512 ============================================================
19:13:05.0640 3512 \Device\Harddisk0\DR0:
19:13:05.0640 3512 MBR partitions:
19:13:05.0640 3512 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x12572000
19:13:05.0640 3512 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x12572800, BlocksNum 0x12EBB800
19:13:05.0640 3512 ============================================================
19:13:05.0671 3512 C: <-> \Device\Harddisk0\DR0\Partition1
19:13:05.0734 3512 D: <-> \Device\Harddisk0\DR0\Partition2
19:13:05.0734 3512 ============================================================
19:13:05.0734 3512 Initialize success
19:13:05.0734 3512 ============================================================
19:13:10.0578 3564 ============================================================
19:13:10.0578 3564 Scan started
19:13:10.0578 3564 Mode: Manual;
19:13:10.0578 3564 ============================================================
19:13:11.0765 3564 ================ Scan system memory ========================
19:13:11.0765 3564 System memory - ok
19:13:11.0765 3564 ================ Scan services =============================
19:13:11.0968 3564 Abiosdsk - ok
19:13:11.0984 3564 abp480n5 - ok
19:13:12.0015 3564 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:13:12.0031 3564 ACPI - ok
19:13:12.0046 3564 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
19:13:12.0046 3564 ACPIEC - ok
19:13:12.0078 3564 [ 6D7F09CD92A9FEF3A8EFCE66231FDD79 ] adfs C:\WINDOWS\system32\drivers\adfs.sys
19:13:12.0078 3564 adfs - ok
19:13:12.0187 3564 [ 57A3B9A69F14414ACE12AFD6BA701773 ] Adobe Version Cue CS4 C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
19:13:12.0187 3564 Adobe Version Cue CS4 - ok
19:13:12.0281 3564 [ C8C6C0D659734FDBF63F6F421A5416BC ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:13:12.0281 3564 AdobeFlashPlayerUpdateSvc - ok
19:13:12.0296 3564 adpu160m - ok
19:13:12.0406 3564 [ 993F7B0BA5188A0007C085AA10257B8E ] AdvancedSystemCareService6 C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
19:13:12.0421 3564 AdvancedSystemCareService6 - ok
19:13:12.0437 3564 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
19:13:12.0437 3564 aec - ok
19:13:12.0484 3564 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
19:13:12.0484 3564 AFD - ok
19:13:12.0500 3564 Aha154x - ok
19:13:12.0515 3564 aic78u2 - ok
19:13:12.0531 3564 aic78xx - ok
19:13:12.0562 3564 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
19:13:12.0562 3564 Alerter - ok
19:13:12.0593 3564 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
19:13:12.0593 3564 ALG - ok
19:13:12.0609 3564 AliIde - ok
19:13:12.0734 3564 ALSysIO - ok
19:13:12.0734 3564 amsint - ok
19:13:12.0796 3564 [ 6B8E7A90E576D4FE308F97C69060A171 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
19:13:12.0796 3564 AppMgmt - ok
19:13:12.0890 3564 [ 27345A9631E507C198487FAD6034001C ] AR5416 C:\WINDOWS\system32\DRIVERS\athw.sys
19:13:12.0921 3564 AR5416 - ok
19:13:12.0921 3564 asc - ok
19:13:12.0937 3564 asc3350p - ok
19:13:12.0953 3564 asc3550 - ok
19:13:13.0093 3564 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:13:13.0140 3564 aspnet_state - ok
19:13:13.0171 3564 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:13:13.0171 3564 AsyncMac - ok
19:13:13.0203 3564 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
19:13:13.0203 3564 atapi - ok
19:13:13.0218 3564 Atdisk - ok
19:13:13.0281 3564 [ 43E17DA549BC8219EEE90AA9C6480AAA ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
19:13:13.0281 3564 Ati HotKey Poller - ok
19:13:13.0546 3564 [ 50D7EE1C07BC1E549FAE797668A90E1E ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
19:13:13.0609 3564 ati2mtag - ok
19:13:13.0656 3564 [ 924971A182E07463765EF9FA8876F24F ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdXP3.sys
19:13:13.0671 3564 AtiHDAudioService - ok
19:13:13.0687 3564 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:13:13.0687 3564 Atmarpc - ok
19:13:13.0734 3564 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
19:13:13.0734 3564 AudioSrv - ok
19:13:13.0781 3564 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
19:13:13.0781 3564 audstub - ok
19:13:13.0828 3564 [ 6F7911F3E674363A91541E097F49B633 ] b57w2k C:\WINDOWS\system32\DRIVERS\b57xp32.sys
19:13:13.0843 3564 b57w2k - ok
19:13:13.0890 3564 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
19:13:13.0890 3564 Beep - ok
19:13:13.0937 3564 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
19:13:13.0953 3564 BITS - ok
19:13:14.0062 3564 [ AA770326DBF8518C632F02B0F85E0087 ] BlueSoleilCS C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
19:13:14.0062 3564 BlueSoleilCS - ok
19:13:14.0109 3564 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
19:13:14.0109 3564 Browser - ok
19:13:14.0140 3564 [ 0A22897FC9C4FF67E4FE2FE39CF8BFC2 ] BsHelpCS C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
19:13:14.0140 3564 BsHelpCS - ok
19:13:14.0187 3564 [ 881C86C4B8F2359318E0E6D7EC844D13 ] BsMobileCS C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
19:13:14.0187 3564 BsMobileCS - ok
19:13:14.0234 3564 [ 8E2D9ECE59DFE7D310201E0D65D97ECB ] BT C:\WINDOWS\system32\DRIVERS\btnetdrv.sys
19:13:14.0234 3564 BT - ok
19:13:14.0296 3564 [ ECDC40CC54603C711E1A7A1C9255184A ] btaudio C:\WINDOWS\system32\drivers\btaudio.sys
19:13:14.0296 3564 btaudio - ok
19:13:14.0312 3564 BTCOMBUS - ok
19:13:14.0343 3564 [ 942C602296119D758547808221C85A2C ] Btcsrusb C:\WINDOWS\system32\Drivers\btcusb.sys
19:13:14.0343 3564 Btcsrusb - ok
19:13:14.0390 3564 [ 58A49BD10E08D3D4333A60DEDCB1CED8 ] BTDriver C:\WINDOWS\system32\DRIVERS\btport.sys
19:13:14.0390 3564 BTDriver - ok
19:13:14.0437 3564 [ CE441CCD98C5ECB10CB12FCAF97322EC ] BtHidBus C:\WINDOWS\system32\Drivers\BtHidBus.sys
19:13:14.0437 3564 BtHidBus - ok
19:13:14.0500 3564 [ 885B6D0F826A216EEE4C3AD883809012 ] BTKRNL C:\WINDOWS\system32\DRIVERS\btkrnl.sys
19:13:14.0500 3564 BTKRNL - ok
19:13:14.0546 3564 [ D3C277A51EF9E2EC972D6221F99C0B6D ] btnetBUs C:\WINDOWS\system32\Drivers\btnetBus.sys
19:13:14.0546 3564 btnetBUs - ok
19:13:14.0609 3564 [ 4F26303BECBB7CC5CA8FF39593124CF2 ] BTNetFilter C:\Program Files\IVT Corporation\BlueSoleil\Device\Win2k\BTNetFilter.sys
19:13:14.0609 3564 BTNetFilter - ok
19:13:14.0687 3564 [ 49E9ED37FAEC5E8C03E81FD73D3884D6 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
19:13:14.0687 3564 btwdins - ok
19:13:14.0718 3564 [ B1D350F3F13CF340FCE93912D2BA1EBF ] BTWDNDIS C:\WINDOWS\system32\DRIVERS\btwdndis.sys
19:13:14.0734 3564 BTWDNDIS - ok
19:13:14.0765 3564 [ E48668B4A6A5CF68B33AECAD18EE8E1E ] btwhid C:\WINDOWS\system32\DRIVERS\btwhid.sys
19:13:14.0765 3564 btwhid - ok
19:13:14.0796 3564 [ 8BCD7BFE9C70A8FF7444263435B18AA1 ] btwmodem C:\WINDOWS\system32\DRIVERS\btwmodem.sys
19:13:14.0796 3564 btwmodem - ok
19:13:14.0812 3564 [ 57E91E9925976BBC98984EEBAAF1D84C ] BTWUSB C:\WINDOWS\system32\Drivers\btwusb.sys
19:13:14.0828 3564 BTWUSB - ok
19:13:14.0828 3564 catchme - ok
19:13:14.0875 3564 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
19:13:14.0875 3564 cbidf2k - ok
19:13:14.0906 3564 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:13:14.0906 3564 CCDECODE - ok
19:13:14.0921 3564 cd20xrnt - ok
19:13:14.0953 3564 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
19:13:14.0953 3564 Cdaudio - ok
19:13:14.0968 3564 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
19:13:14.0968 3564 Cdfs - ok
19:13:14.0984 3564 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:13:14.0984 3564 Cdrom - ok
19:13:15.0000 3564 Changer - ok
19:13:15.0046 3564 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
19:13:15.0046 3564 CiSvc - ok
19:13:15.0093 3564 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
19:13:15.0093 3564 ClipSrv - ok
19:13:15.0171 3564 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:13:15.0218 3564 clr_optimization_v2.0.50727_32 - ok
19:13:15.0265 3564 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:13:15.0359 3564 clr_optimization_v4.0.30319_32 - ok
19:13:15.0375 3564 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
19:13:15.0375 3564 CmBatt - ok
19:13:15.0375 3564 CmdIde - ok
19:13:15.0390 3564 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
19:13:15.0390 3564 Compbatt - ok
19:13:15.0406 3564 COMSysApp - ok
19:13:15.0437 3564 Cpqarray - ok
19:13:15.0484 3564 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
19:13:15.0484 3564 CryptSvc - ok
19:13:15.0500 3564 dac2w2k - ok
19:13:15.0515 3564 dac960nt - ok
19:13:15.0562 3564 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
19:13:15.0578 3564 DcomLaunch - ok
19:13:15.0609 3564 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
19:13:15.0625 3564 Dhcp - ok
19:13:15.0625 3564 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
19:13:15.0625 3564 Disk - ok
19:13:15.0640 3564 dmadmin - ok
19:13:15.0687 3564 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
19:13:15.0687 3564 dmboot - ok
19:13:15.0703 3564 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
19:13:15.0703 3564 dmio - ok
19:13:15.0718 3564 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
19:13:15.0718 3564 dmload - ok
19:13:15.0734 3564 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
19:13:15.0734 3564 dmserver - ok
19:13:15.0750 3564 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
19:13:15.0750 3564 DMusic - ok
19:13:15.0796 3564 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
19:13:15.0796 3564 Dnscache - ok
19:13:15.0843 3564 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
19:13:15.0843 3564 Dot3svc - ok
19:13:15.0859 3564 dpti2o - ok
19:13:15.0890 3564 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
19:13:15.0890 3564 drmkaud - ok
19:13:15.0937 3564 [ 555E54AC2F601A8821CEF58961653991 ] dtsoftbus01 C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
19:13:15.0937 3564 dtsoftbus01 - ok
19:13:15.0968 3564 [ 9309C5C9831203436E64CF2AE605C5D7 ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
19:13:15.0968 3564 eamon - ok
19:13:16.0015 3564 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
19:13:16.0015 3564 EapHost - ok
19:13:16.0062 3564 [ DEFF87F04AB5F6DD5EDF2B80853BBE10 ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
19:13:16.0062 3564 ehdrv - ok
19:13:16.0156 3564 [ 3B944199F8EDD76BE94460C0361409AB ] ekrn C:\Program Files\ESET\ESET Smart Security\ekrn.exe
19:13:16.0171 3564 ekrn - ok
19:13:16.0218 3564 [ 178CC9403816C082D22A1D47FA1F9C85 ] ElbyCDIO C:\WINDOWS\system32\Drivers\ElbyCDIO.sys
19:13:16.0218 3564 ElbyCDIO - ok
19:13:16.0250 3564 [ 5BA193CA0AE31209AAA39939CE6736B2 ] epfw C:\WINDOWS\system32\DRIVERS\epfw.sys
19:13:16.0250 3564 epfw - ok
19:13:16.0296 3564 [ 75D3BCD3E0EDED0AB0F96D9A10FF01C9 ] Epfwndis C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
19:13:16.0296 3564 Epfwndis - ok
19:13:16.0312 3564 [ DC64F26F35E32C9472BBF8ACD84060D3 ] epfwtdi C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
19:13:16.0312 3564 epfwtdi - ok
19:13:16.0359 3564 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
19:13:16.0359 3564 ERSvc - ok
19:13:16.0406 3564 esgiguard - ok
19:13:16.0437 3564 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
19:13:16.0437 3564 Eventlog - ok
19:13:16.0500 3564 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
19:13:16.0515 3564 EventSystem - ok
19:13:16.0531 3564 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
19:13:16.0531 3564 Fastfat - ok
19:13:16.0578 3564 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
19:13:16.0578 3564 FastUserSwitchingCompatibility - ok
19:13:16.0609 3564 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
19:13:16.0609 3564 Fdc - ok
19:13:16.0656 3564 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
19:13:16.0656 3564 Fips - ok
19:13:16.0703 3564 [ 1F63900E2EB00101B9ACA2B7A870704E ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
19:13:16.0718 3564 FLEXnet Licensing Service - ok
19:13:16.0734 3564 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
19:13:16.0734 3564 Flpydisk - ok
19:13:16.0765 3564 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
19:13:16.0765 3564 FltMgr - ok
19:13:16.0828 3564 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:13:16.0828 3564 FontCache3.0.0.0 - ok
19:13:16.0875 3564 [ CBE5F69A5E5B918225F420BA748F3742 ] FsUsbExDisk C:\WINDOWS\system32\FsUsbExDisk.SYS
19:13:16.0875 3564 FsUsbExDisk - ok
19:13:16.0921 3564 [ 96633419F4A1E37ACB89B45EBCCFE001 ] FsUsbExService C:\WINDOWS\system32\FsUsbExService.Exe
19:13:16.0921 3564 FsUsbExService - ok
19:13:16.0937 3564 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:13:16.0937 3564 Fs_Rec - ok
19:13:16.0953 3564 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:13:16.0953 3564 Ftdisk - ok
19:13:16.0984 3564 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:13:16.0984 3564 Gpc - ok
19:13:17.0031 3564 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
19:13:17.0031 3564 gupdate - ok
19:13:17.0046 3564 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
19:13:17.0046 3564 gupdatem - ok
19:13:17.0046 3564 gusvc - ok
19:13:17.0078 3564 [ 56BF27D7A539F9E6BBC1DE201ABA0EDF ] HdAudAddService C:\WINDOWS\system32\drivers\AtiHdAud.sys
19:13:17.0078 3564 HdAudAddService - ok
19:13:17.0093 3564 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:13:17.0093 3564 HDAudBus - ok
19:13:17.0187 3564 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:13:17.0187 3564 helpsvc - ok
19:13:17.0234 3564 [ 00E25EE90166B3E1BE6E74AEBF858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
19:13:17.0234 3564 HidServ - ok
19:13:17.0265 3564 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:13:17.0265 3564 HidUsb - ok
19:13:17.0312 3564 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
19:13:17.0312 3564 hkmsvc - ok
19:13:17.0328 3564 hpn - ok
19:13:17.0375 3564 [ 6A5C4732D6803F84E2987EDD8E4359CE ] HSFHWAZL C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
19:13:17.0375 3564 HSFHWAZL - ok
19:13:17.0437 3564 [ 21C31273C6CC4826E74BE8AE3B09D4A8 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
19:13:17.0453 3564 HSF_DPV - ok
19:13:17.0500 3564 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
19:13:17.0500 3564 HTTP - ok
19:13:17.0531 3564 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
19:13:17.0531 3564 HTTPFilter - ok
19:13:17.0546 3564 i2omgmt - ok
19:13:17.0562 3564 i2omp - ok
19:13:17.0593 3564 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:13:17.0593 3564 i8042prt - ok
19:13:17.0671 3564 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:13:17.0687 3564 idsvc - ok
19:13:17.0828 3564 [ D8B1C64C3C833744CD809920750E33BE ] IGBASVC C:\Program Files\Acer Bio Protection\BASVC.exe
19:13:17.0859 3564 IGBASVC - ok
19:13:17.0921 3564 [ AD5DF6F4FBBC798636EDC66BFEC7D0DE ] IJPLMSVC C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
19:13:17.0921 3564 IJPLMSVC - ok
19:13:17.0968 3564 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
19:13:17.0968 3564 Imapi - ok
19:13:18.0015 3564 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
19:13:18.0015 3564 ImapiService - ok
19:13:18.0031 3564 ini910u - ok
19:13:18.0078 3564 [ 4D8D5B1C895EA0F2A721B98A7CE198F1 ] int15 C:\WINDOWS\system32\drivers\int15.sys
19:13:18.0078 3564 int15 - ok
19:13:18.0218 3564 [ 19AFBB8427CE65042599555E578170DF ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
19:13:18.0265 3564 IntcAzAudAddService - ok
19:13:18.0281 3564 IntelIde - ok
19:13:18.0328 3564 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
19:13:18.0328 3564 Ip6Fw - ok
19:13:18.0375 3564 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:13:18.0375 3564 IpFilterDriver - ok
19:13:18.0406 3564 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:13:18.0406 3564 IpInIp - ok
19:13:18.0437 3564 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:13:18.0437 3564 IpNat - ok
19:13:18.0468 3564 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:13:18.0484 3564 IPSec - ok
19:13:18.0500 3564 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
19:13:18.0500 3564 IRENUM - ok
19:13:18.0546 3564 iSafeKrnl - ok
19:13:18.0546 3564 iSafeNetFilter - ok
19:13:18.0593 3564 [ 3A73A6948497AEC8E1BED13617985060 ] iSafeService C:\Program Files\iSafe\iSafeSvc.exe
19:13:18.0593 3564 iSafeService - ok
19:13:18.0625 3564 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:13:18.0640 3564 isapnp - ok
19:13:18.0671 3564 [ 71E1FC547CC488D5CD7BF0860C96F5AF ] IvtBtBUs C:\WINDOWS\system32\Drivers\IvtBtBus.sys
19:13:18.0671 3564 IvtBtBUs - ok
19:13:18.0781 3564 [ B9436A665A8621073A12338B16D7BFD4 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
19:13:18.0781 3564 JavaQuickStarterService - ok
19:13:18.0796 3564 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:13:18.0796 3564 Kbdclass - ok
19:13:18.0843 3564 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
19:13:18.0859 3564 kmixer - ok
19:13:18.0875 3564 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
19:13:18.0875 3564 KSecDD - ok
19:13:18.0906 3564 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
19:13:18.0921 3564 lanmanserver - ok
19:13:18.0953 3564 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
19:13:18.0953 3564 lanmanworkstation - ok
19:13:18.0968 3564 lbrtfdc - ok
19:13:19.0000 3564 [ 03976C309EDE05D39017C05B817CD94F ] LHidFlt2 C:\WINDOWS\system32\DRIVERS\LHidFlt2.Sys
19:13:19.0000 3564 LHidFlt2 - ok
19:13:19.0031 3564 [ 25688115843C4028686A96D88BC28007 ] LHidUsb C:\WINDOWS\system32\Drivers\LHidUsb.Sys
19:13:19.0031 3564 LHidUsb - ok
19:13:19.0171 3564 [ 935E2093CEED8198C820B7F60BB63167 ] LiveUpdateSvc C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
19:13:19.0203 3564 LiveUpdateSvc - ok
19:13:19.0234 3564 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
19:13:19.0250 3564 LmHosts - ok
19:13:19.0265 3564 [ 26407519FCA64EC4091FE1F815B4AFC4 ] LMouFlt2 C:\WINDOWS\system32\DRIVERS\LMouFlt2.Sys
19:13:19.0265 3564 LMouFlt2 - ok
19:13:19.0296 3564 [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
19:13:19.0296 3564 MBAMProtector - ok
19:13:19.0359 3564 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:13:19.0359 3564 MBAMScheduler - ok
19:13:19.0406 3564 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
19:13:19.0421 3564 MBAMService - ok
19:13:19.0468 3564 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
19:13:19.0468 3564 mdmxsdk - ok
19:13:19.0500 3564 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
19:13:19.0500 3564 Messenger - ok
19:13:19.0703 3564 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
19:13:19.0703 3564 Microsoft Office Groove Audit Service - ok
19:13:19.0765 3564 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
19:13:19.0765 3564 mnmdd - ok
19:13:19.0828 3564 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
19:13:19.0828 3564 mnmsrvc - ok
19:13:19.0937 3564 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
19:13:19.0937 3564 Modem - ok
19:13:19.0984 3564 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:13:19.0984 3564 Mouclass - ok
19:13:20.0062 3564 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:13:20.0062 3564 mouhid - ok
19:13:20.0140 3564 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
19:13:20.0140 3564 MountMgr - ok
19:13:20.0140 3564 mraid35x - ok
19:13:20.0203 3564 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:13:20.0203 3564 MRxDAV - ok
19:13:20.0296 3564 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:13:20.0296 3564 MRxSmb - ok
19:13:20.0359 3564 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
19:13:20.0359 3564 MSDTC - ok
19:13:20.0437 3564 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
19:13:20.0437 3564 Msfs - ok
19:13:20.0437 3564 MSIServer - ok
19:13:20.0468 3564 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:13:20.0468 3564 MSKSSRV - ok
19:13:20.0484 3564 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:13:20.0484 3564 MSPCLOCK - ok
19:13:20.0515 3564 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
19:13:20.0515 3564 MSPQM - ok
19:13:20.0546 3564 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:13:20.0546 3564 mssmbios - ok
19:13:20.0562 3564 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
19:13:20.0562 3564 MSTEE - ok
19:13:20.0593 3564 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
19:13:20.0593 3564 Mup - ok
19:13:20.0625 3564 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:13:20.0625 3564 NABTSFEC - ok
19:13:20.0687 3564 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
19:13:20.0687 3564 napagent - ok
19:13:20.0734 3564 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
19:13:20.0750 3564 NDIS - ok
19:13:20.0781 3564 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:13:20.0781 3564 NdisIP - ok
19:13:20.0812 3564 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:13:20.0812 3564 NdisTapi - ok
19:13:20.0843 3564 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:13:20.0859 3564 Ndisuio - ok
19:13:20.0875 3564 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:13:20.0875 3564 NdisWan - ok
19:13:20.0921 3564 [ 2F597BB467E05B1FE3830EABD821B8E0 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
19:13:20.0921 3564 NDProxy - ok
19:13:20.0937 3564 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
19:13:20.0937 3564 NetBIOS - ok
19:13:20.0953 3564 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
19:13:20.0953 3564 NetBT - ok
19:13:20.0984 3564 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
19:13:20.0984 3564 NetDDE - ok
19:13:21.0000 3564 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
19:13:21.0000 3564 NetDDEdsdm - ok
19:13:21.0031 3564 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
19:13:21.0046 3564 Netlogon - ok
19:13:21.0062 3564 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
19:13:21.0062 3564 Netman - ok
19:13:21.0109 3564 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:13:21.0140 3564 NetTcpPortSharing - ok
19:13:21.0171 3564 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
19:13:21.0171 3564 Nla - ok
19:13:21.0203 3564 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
19:13:21.0203 3564 Npfs - ok
19:13:21.0250 3564 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
19:13:21.0250 3564 Ntfs - ok
19:13:21.0265 3564 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
19:13:21.0265 3564 NtLmSsp - ok
19:13:21.0296 3564 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
19:13:21.0328 3564 NtmsSvc - ok
19:13:21.0359 3564 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
19:13:21.0359 3564 Null - ok
19:13:21.0406 3564 [ ADB82FBC435AE7504082B3C714C3885D ] NWCWorkstation C:\WINDOWS\System32\nwwks.dll
19:13:21.0406 3564 NWCWorkstation - ok
19:13:21.0453 3564 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:13:21.0453 3564 NwlnkFlt - ok
19:13:21.0468 3564 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:13:21.0484 3564 NwlnkFwd - ok
19:13:21.0515 3564 [ 8B8B1BE2DBA4025DA6786C645F77F123 ] NwlnkIpx C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
19:13:21.0515 3564 NwlnkIpx - ok
19:13:21.0531 3564 [ 56D34A67C05E94E16377C60609741FF8 ] NwlnkNb C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
19:13:21.0531 3564 NwlnkNb - ok
19:13:21.0562 3564 [ C0BB7D1615E1ACBDC99757F6CEAF8CF0 ] NwlnkSpx C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
19:13:21.0562 3564 NwlnkSpx - ok
19:13:21.0578 3564 [ 36B9B950E3D2E100970A48D8BAD86740 ] NWRDR C:\WINDOWS\system32\DRIVERS\nwrdr.sys
19:13:21.0578 3564 NWRDR - ok
19:13:21.0625 3564 [ D955D5DE998DB2476BF0892BE3A96C26 ] o2flash C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe
19:13:21.0625 3564 o2flash - ok
19:13:21.0656 3564 [ D51942F12090FC947CA8AA01736DADE2 ] O2MDRDR C:\WINDOWS\system32\DRIVERS\o2media.sys
19:13:21.0656 3564 O2MDRDR - ok
19:13:21.0671 3564 O2SDRDR - ok
19:13:21.0750 3564 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:13:21.0750 3564 odserv - ok
19:13:21.0796 3564 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:13:21.0812 3564 ose - ok
19:13:21.0921 3564 [ 20BD38241EDD66D8FDC9E3496A1762A3 ] PanService C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
19:13:21.0921 3564 PanService - ok
19:13:21.0937 3564 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\drivers\Parport.sys
19:13:21.0937 3564 Parport - ok
19:13:21.0953 3564 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
19:13:21.0953 3564 PartMgr - ok
19:13:21.0984 3564 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
19:13:21.0984 3564 ParVdm - ok
19:13:22.0031 3564 [ FD2041E9BA03DB7764B2248F02475079 ] pccsmcfd C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
19:13:22.0031 3564 pccsmcfd - ok
19:13:22.0062 3564 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
19:13:22.0062 3564 PCI - ok
19:13:22.0078 3564 PCIDump - ok
19:13:22.0093 3564 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
19:13:22.0093 3564 PCIIde - ok
19:13:22.0125 3564 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
19:13:22.0125 3564 Pcmcia - ok
19:13:22.0218 3564 [ A0E7D752514A7D99341D5F2A834224A9 ] PCToolsSSDMonitorSvc C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
19:13:22.0234 3564 PCToolsSSDMonitorSvc - ok
19:13:22.0234 3564 PDCOMP - ok
19:13:22.0250 3564 PDFRAME - ok
19:13:22.0265 3564 PDRELI - ok
19:13:22.0281 3564 PDRFRAME - ok
19:13:22.0296 3564 perc2 - ok
19:13:22.0312 3564 perc2hib - ok
19:13:22.0359 3564 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
19:13:22.0375 3564 PlugPlay - ok
19:13:22.0390 3564 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
19:13:22.0390 3564 PolicyAgent - ok
19:13:22.0421 3564 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:13:22.0421 3564 PptpMiniport - ok
19:13:22.0437 3564 [ 7EB15DCE4EC3A0220BD796A15C18186E ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
19:13:22.0437 3564 Processor - ok
19:13:22.0453 3564 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
19:13:22.0453 3564 ProtectedStorage - ok
19:13:22.0468 3564 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
19:13:22.0468 3564 PSched - ok
19:13:22.0500 3564 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:13:22.0515 3564 Ptilink - ok
19:13:22.0531 3564 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
19:13:22.0531 3564 PxHelp20 - ok
19:13:22.0546 3564 ql1080 - ok
19:13:22.0562 3564 Ql10wnt - ok
19:13:22.0578 3564 ql12160 - ok
19:13:22.0593 3564 ql1240 - ok
19:13:22.0593 3564 ql1280 - ok
19:13:22.0625 3564 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:13:22.0625 3564 RasAcd - ok
19:13:22.0640 3564 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
19:13:22.0656 3564 RasAuto - ok
19:13:22.0671 3564 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:13:22.0671 3564 Rasl2tp - ok
19:13:22.0718 3564 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
19:13:22.0718 3564 RasMan - ok
19:13:22.0734 3564 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:13:22.0734 3564 RasPppoe - ok
19:13:22.0750 3564 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
19:13:22.0750 3564 Raspti - ok
19:13:22.0765 3564 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:13:22.0765 3564 Rdbss - ok
19:13:22.0781 3564 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:13:22.0796 3564 RDPCDD - ok
19:13:22.0812 3564 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:13:22.0812 3564 rdpdr - ok
19:13:22.0875 3564 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
19:13:22.0875 3564 RDPWD - ok
19:13:22.0890 3564 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
19:13:22.0890 3564 RDSessMgr - ok
19:13:22.0937 3564 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
19:13:22.0937 3564 redbook - ok
19:13:22.0968 3564 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
19:13:22.0968 3564 RemoteAccess - ok
19:13:23.0000 3564 [ 8F31505484A190D5B22274708799F4EC ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
19:13:23.0015 3564 RemoteRegistry - ok
19:13:23.0046 3564 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
19:13:23.0046 3564 ROOTMODEM - ok
19:13:23.0062 3564 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
19:13:23.0062 3564 RpcLocator - ok
19:13:23.0109 3564 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\System32\rpcss.dll
19:13:23.0109 3564 RpcSs - ok
19:13:23.0140 3564 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
19:13:23.0140 3564 RSVP - ok
19:13:23.0156 3564 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
19:13:23.0156 3564 SamSs - ok
19:13:23.0171 3564 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
19:13:23.0171 3564 SCardSvr - ok
19:13:23.0203 3564 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
19:13:23.0203 3564 Schedule - ok
19:13:23.0234 3564 [ 8D04819A3CE51B9EB47E5689B44D43C4 ] sdbus C:\WINDOWS\system32\DRIVERS\sdbus.sys
19:13:23.0234 3564 sdbus - ok
19:13:23.0281 3564 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:13:23.0281 3564 Secdrv - ok
19:13:23.0296 3564 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
19:13:23.0296 3564 seclogon - ok
19:13:23.0328 3564 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
19:13:23.0328 3564 SENS - ok
19:13:23.0359 3564 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
19:13:23.0359 3564 Serial - ok
19:13:23.0437 3564 [ 3334DE016FDCDE5C98E30A405A72DD8D ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
19:13:23.0437 3564 ServiceLayer - ok
19:13:23.0515 3564 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
19:13:23.0515 3564 Sfloppy - ok
19:13:23.0562 3564 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
19:13:23.0562 3564 SharedAccess - ok
19:13:23.0578 3564 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:13:23.0593 3564 ShellHWDetection - ok
19:13:23.0593 3564 Simbad - ok
19:13:23.0812 3564 [ 9F712B26EE3B0242DE997A42FD302E2C ] Skype C2C Service C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
19:13:23.0843 3564 Skype C2C Service - ok
19:13:23.0921 3564 [ F5BBEDF602C310B00036EB2DBF4348A5 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
19:13:23.0921 3564 SkypeUpdate - ok
19:13:23.0953 3564 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:13:23.0953 3564 SLIP - ok
19:13:23.0968 3564 Sparrow - ok
19:13:24.0000 3564 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
19:13:24.0000 3564 splitter - ok
19:13:24.0046 3564 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
19:13:24.0046 3564 Spooler - ok
19:13:24.0093 3564 [ CDDDEC541BC3C96F91ECB48759673505 ] sptd C:\WINDOWS\system32\Drivers\sptd.sys
19:13:24.0093 3564 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: CDDDEC541BC3C96F91ECB48759673505
19:13:24.0109 3564 sptd ( LockedFile.Multi.Generic ) - warning
19:13:24.0109 3564 sptd - detected LockedFile.Multi.Generic (1)
19:13:24.0109 3564 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
19:13:24.0109 3564 sr - ok
19:13:24.0125 3564 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
19:13:24.0140 3564 srservice - ok
19:13:24.0171 3564 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
19:13:24.0171 3564 Srv - ok
19:13:24.0218 3564 [ E6CE6348A4F6E06925548F62527F0F99 ] sscdbus C:\WINDOWS\system32\DRIVERS\sscdbus.sys
19:13:24.0218 3564 sscdbus - ok
19:13:24.0234 3564 [ 68820F9A67F0D170A6842094EBDCD924 ] sscdmdfl C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
19:13:24.0234 3564 sscdmdfl - ok
19:13:24.0265 3564 [ 0A3B7562002C50F208FCCDEB7380B57B ] sscdmdm C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
19:13:24.0265 3564 sscdmdm - ok
19:13:24.0296 3564 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
19:13:24.0296 3564 SSDPSRV - ok
19:13:24.0343 3564 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
19:13:24.0359 3564 stisvc - ok
19:13:24.0406 3564 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:13:24.0406 3564 streamip - ok
19:13:24.0421 3564 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
19:13:24.0421 3564 swenum - ok
19:13:24.0468 3564 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
19:13:24.0468 3564 swmidi - ok
19:13:24.0468 3564 SwPrv - ok
19:13:24.0500 3564 symc810 - ok
19:13:24.0515 3564 symc8xx - ok
19:13:24.0515 3564 sym_hi - ok
19:13:24.0531 3564 sym_u3 - ok
19:13:24.0593 3564 [ 219AA9FF531490C51E766BD0D3E481CB ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
19:13:24.0593 3564 SynTP - ok
19:13:24.0625 3564 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
19:13:24.0625 3564 sysaudio - ok
19:13:24.0656 3564 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
19:13:24.0671 3564 SysmonLog - ok
19:13:24.0687 3564 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
19:13:24.0703 3564 TapiSrv - ok
19:13:24.0750 3564 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:13:24.0750 3564 Tcpip - ok
19:13:24.0796 3564 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
19:13:24.0796 3564 TDPIPE - ok
19:13:24.0828 3564 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
19:13:24.0828 3564 TDTCP - ok
19:13:24.0875 3564 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
19:13:24.0875 3564 TermDD - ok
19:13:24.0906 3564 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
19:13:24.0906 3564 TermService - ok
19:13:24.0953 3564 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
19:13:24.0953 3564 Themes - ok
19:13:24.0984 3564 [ CD0CC7B167D78043A41C98D4921EFB54 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
19:13:25.0000 3564 TlntSvr - ok
19:13:25.0000 3564 TosIde - ok
19:13:25.0031 3564 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
19:13:25.0031 3564 TrkWks - ok
19:13:25.0046 3564 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
19:13:25.0046 3564 Udfs - ok
19:13:25.0078 3564 UIUSys - ok
19:13:25.0093 3564 ultra - ok
19:13:25.0125 3564 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
19:13:25.0125 3564 Update - ok
19:13:25.0156 3564 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
19:13:25.0156 3564 upnphost - ok
19:13:25.0187 3564 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
19:13:25.0187 3564 UPS - ok
19:13:25.0234 3564 [ 1B611611C28D2DF25BC057D79C6F13FC ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:13:25.0234 3564 usbccgp - ok
19:13:25.0250 3564 [ 4BAC8DF07F1D8434FC640E677A62204E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:13:25.0250 3564 usbehci - ok
19:13:25.0296 3564 [ E7BC50AEB2BD199B509BF49510A55E30 ] usbfilter C:\WINDOWS\system32\DRIVERS\usbfilter.sys
19:13:25.0296 3564 usbfilter - ok
19:13:25.0328 3564 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:13:25.0328 3564 usbhub - ok
19:13:25.0328 3564 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
19:13:25.0328 3564 usbohci - ok
19:13:25.0375 3564 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:13:25.0375 3564 usbprint - ok
19:13:25.0421 3564 [ F8EDE2B6928970DCE3D5614C27D9E7F6 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:13:25.0421 3564 usbscan - ok
19:13:25.0453 3564 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:13:25.0453 3564 USBSTOR - ok
19:13:25.0500 3564 [ 813236B1183CFCF289E367BD5DE6E29E ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
19:13:25.0500 3564 usbvideo - ok
19:13:25.0546 3564 [ B4D7B7AD8A9F7C063C5CC3E2C1A0724E ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
19:13:25.0546 3564 usb_rndisx - ok
19:13:25.0593 3564 [ 1CDAA48CB2F7744B8D25650E050766A5 ] VClone C:\WINDOWS\system32\DRIVERS\VClone.sys
19:13:25.0593 3564 VClone - ok
19:13:25.0625 3564 [ 0955553090E0A88614E5B8A02AF9324C ] VComm C:\WINDOWS\system32\DRIVERS\VComm.sys
19:13:25.0625 3564 VComm - ok
19:13:25.0671 3564 [ EA0D7C68DC77B478F1C08022B8AFE8CA ] VcommMgr C:\WINDOWS\system32\Drivers\VcommMgr.sys
19:13:25.0671 3564 VcommMgr - ok
19:13:25.0687 3564 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
19:13:25.0687 3564 VgaSave - ok
19:13:25.0703 3564 ViaIde - ok
19:13:25.0718 3564 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
19:13:25.0734 3564 VolSnap - ok
19:13:25.0765 3564 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
19:13:25.0781 3564 VSS - ok
19:13:25.0796 3564 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
19:13:25.0812 3564 W32Time - ok
19:13:25.0843 3564 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:13:25.0843 3564 Wanarp - ok
19:13:25.0890 3564 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
19:13:25.0890 3564 Wdf01000 - ok
19:13:25.0906 3564 WDICA - ok
19:13:25.0937 3564 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
19:13:25.0937 3564 wdmaud - ok
19:13:25.0984 3564 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
19:13:25.0984 3564 WebClient - ok
19:13:26.0015 3564 WFIOCTL - ok
19:13:26.0062 3564 [ 307D248F97835B6879BDD361086924FE ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
19:13:26.0078 3564 winachsf - ok
19:13:26.0156 3564 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
19:13:26.0156 3564 winmgmt - ok
19:13:26.0218 3564 [ 4D34CEDD74BDBF2B6A935EAE3BF80543 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
19:13:26.0250 3564 WinRM - ok
19:13:26.0296 3564 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
19:13:26.0312 3564 WmdmPmSN - ok
19:13:26.0359 3564 [ 0171CFF34BBA8C5977F18C48D8AEF8C6 ] Wmi C:\WINDOWS\System32\advapi32.dll
19:13:26.0359 3564 Wmi - ok
19:13:26.0406 3564 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
19:13:26.0406 3564 WmiAcpi - ok
19:13:26.0421 3564 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:13:26.0437 3564 WmiApSrv - ok
19:13:26.0500 3564 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
19:13:26.0515 3564 WMPNetworkSvc - ok
19:13:26.0515 3564 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
19:13:26.0515 3564 WpdUsb - ok
19:13:26.0609 3564 [ 15673BD0B86150CB8E27766059C72A9B ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:13:26.0609 3564 WPFFontCache_v0400 - ok
19:13:26.0656 3564 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:13:26.0656 3564 WS2IFSL - ok
19:13:26.0687 3564 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
19:13:26.0703 3564 wscsvc - ok
19:13:26.0703 3564 WSearch - ok
19:13:26.0750 3564 [ 0091D78C5F8FDE0CDF2B214823DE6E48 ] WSIMD C:\WINDOWS\system32\DRIVERS\wsimd.sys
19:13:26.0750 3564 WSIMD - ok
19:13:26.0781 3564 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:13:26.0781 3564 WSTCODEC - ok
19:13:26.0812 3564 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
19:13:26.0812 3564 wuauserv - ok
19:13:26.0875 3564 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:13:26.0875 3564 WudfPf - ok
19:13:26.0890 3564 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:13:26.0890 3564 WudfRd - ok
19:13:26.0906 3564 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
19:13:26.0906 3564 WudfSvc - ok
19:13:26.0968 3564 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
19:13:26.0984 3564 WZCSVC - ok
19:13:27.0031 3564 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
19:13:27.0046 3564 xmlprov - ok
19:13:27.0078 3564 ================ Scan global ===============================
19:13:27.0125 3564 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
19:13:27.0156 3564 [ 4C0AA4ABC4E21672B55D8A700AF2B2A6 ] C:\WINDOWS\system32\winsrv.dll
19:13:27.0171 3564 [ 4C0AA4ABC4E21672B55D8A700AF2B2A6 ] C:\WINDOWS\system32\winsrv.dll
19:13:27.0187 3564 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
19:13:27.0187 3564 [Global] - ok
19:13:27.0187 3564 ================ Scan MBR ==================================
19:13:27.0218 3564 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
19:13:27.0453 3564 \Device\Harddisk0\DR0 - ok
19:13:27.0453 3564 ================ Scan VBR ==================================
19:13:27.0453 3564 [ A2E74284932415C23C53D7271E7D01EE ] \Device\Harddisk0\DR0\Partition1
19:13:27.0453 3564 \Device\Harddisk0\DR0\Partition1 - ok
19:13:27.0500 3564 [ 8DBF9627391994FC2E1FD88C7F20EAF3 ] \Device\Harddisk0\DR0\Partition2
19:13:27.0500 3564 \Device\Harddisk0\DR0\Partition2 - ok
19:13:27.0500 3564 ============================================================
19:13:27.0500 3564 Scan finished
19:13:27.0500 3564 ============================================================
19:13:27.0531 3284 Detected object count: 1
19:13:27.0531 3284 Actual detected object count: 1
19:13:51.0953 3284 sptd ( LockedFile.Multi.Generic ) - skipped by user
19:13:51.0953 3284 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

Příspěvekod **jaro3** » 07 úno 2014 09:36

Co problémy?

lucie7272 · Příspěvekod **lucie7272** » 07 úno 2014 10:31

No je to ted o neco lepší, v podstate když už se pc rozjede tak šlape, ale dnes ráno když jsem ho zapla tak zas zamrzlo načítání plochy a vůbec nic neslo, kontrolka nesvitila, jako že by pc makalo,tak jsem po 10minutách musela pc zase vypnout a novu zapnout a to už jede. Jen jeste jeden maly problém, který trva taky asi tak ten týden, když zapnu kontrolu antiviru, tak mi i po 10minutách ukazuje 0% zkontrolováno. Tak nevim. Ale oproti tomu jaké to bylo se to vyrazne zlepsilo, zacož děkuju :-)

Tak jsem to zřejme zakřiklaa, ted mi to zas zamrzlo když jsem byla na internetu. Stranky nereaguji, tento program neodpovídá a šlus. Zase přislo na řadu tvrdé vypnutí a pak znova zapnout. Projela jsem to jeste jednou tím programkem od vas ,Malwarebytes,a nic to nenašlo.

Příspěvekod **memphisto** » 07 úno 2014 14:16

Dej sem log z programu CrystalDiskInfo

lucie7272 · Příspěvekod **lucie7272** » 07 úno 2014 15:24

----------------------------------------------------------------------------
CrystalDiskInfo 5.6.2 Shizuku Edition (C) 2008-2013 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows XP Professional SP3 [5.1 Build 2600] (x86)
Date : 2014/02/07 15:22:28

-- Controller Map ----------------------------------------------------------
+ PCI Standardní dvoukanálový řadič IDE [ATA]
+ Primární kanál IDE (0)
- WDC WD3200BEVT-22ZCT0
+ Sekundární kanál IDE (1)
- Slimtype DVD A DS8A2S
- O2Micro Integrated MS/xD Controller [SCSI]
+ Virtual CloneDrive [SCSI]
- ELBY CLONEDRIVE SCSI CdRom Device
- ELBY CLONEDRIVE SCSI CdRom Device
- ELBY CLONEDRIVE SCSI CdRom Device
- ELBY CLONEDRIVE SCSI CdRom Device

-- Disk List ---------------------------------------------------------------
(1) WDC WD3200BEVT-22ZCT0 : 320,0 GB [0/0/0, pd1] - wd

----------------------------------------------------------------------------
(1) WDC WD3200BEVT-22ZCT0
----------------------------------------------------------------------------
Model : WDC WD3200BEVT-22ZCT0
Firmware : 11.01A11
Serial Number : WD-WXE808P41366
Disk Size : 320,0 GB (8,4/137,4/320,0/320,0)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 625142448
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 10317 hod.
Power On Count : 4145 krát
Temparature : 44 C (111 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0080h [ON]
AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 184 183 _21 0000000006E6 Čas na roztočení ploten
04 _96 _96 __0 000000001148 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 100 253 __0 000000000000 Počet chybných hledání
09 _86 _86 __0 00000000284D Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _96 _96 __0 000000001031 Počet cyklů zapnutí zařízení
C0 200 200 __0 000000000103 Počet vypnutí disku
C1 163 163 __0 00000001B79E Počet cyklů načítání/vymazání
C2 103 _84 __0 00000000002C Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 100 253 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 _51 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5758 4538 3038 5034 3133 3636
020: 0000 4000 0032 3131 2E30 3141 3131 5744 4320 5744
030: 3332 3030 4245 5654 2D32 325A 4354 3020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 0706 0000 004C 0040
080: 01FE 0000 746B 7F09 6163 7469 BC09 6163 407F 0035
090: 0035 0080 FFFE 0000 80FE 0000 0000 0000 0000 0000
100: EAB0 2542 0000 0000 0000 0000 0000 0000 5001 4EE0
110: 00DC E1E0 0000 0000 0000 0000 0000 0000 0000 4010
120: 4010 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 169E 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 303F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 100E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 A5A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 C8 C8 00 00 00 00 00 00 00 03 27
010: 00 B8 B7 E6 06 00 00 00 00 00 04 32 00 60 60 48
020: 11 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 2E 00 64 FD 00 00 00 00 00 00 00 09 32
040: 00 56 56 4D 28 00 00 00 00 00 0A 33 00 64 64 00
050: 00 00 00 00 00 00 0B 32 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 60 60 31 10 00 00 00 00 00 C0 32
070: 00 C8 C8 03 01 00 00 00 00 00 C1 32 00 A3 A3 9E
080: B7 01 00 00 00 00 C2 22 00 67 54 2C 00 00 00 00
090: 00 00 C4 32 00 C8 C8 00 00 00 00 00 00 00 C5 32
0A0: 00 C8 C8 00 00 00 00 00 00 00 C6 30 00 64 FD 00
0B0: 00 00 00 00 00 00 C7 32 00 C8 C8 00 00 00 00 00
0C0: 00 00 C8 09 00 64 FD 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 8C 28 01 7B
170: 03 00 01 00 02 7A 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 04 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 A0

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 C8 C8 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 64 64 64 64 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 33 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
070: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 C5 00
0A0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0B0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0C0: 00 00 C8 33 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 A7

Snad je to ono :-)

Příspěvekod **Orcus** » 07 úno 2014 22:19

Disk dobrý, ale teplota trochu vyšší. Chladit chladit a chladit. Proveď ještě memtest - alespoň 2 průchody.

Prosím o kontrolu logu, zamrzá pc Vyřešeno

Prosím o kontrolu logu, zamrzá pc

Re: Prosím o kontrolu logu, zamrzá pc

Re: Prosím o kontrolu logu, zamrzá pc

Re: Prosím o kontrolu logu, zamrzá pc

Re: Prosím o kontrolu logu, zamrzá pc

Re: Prosím o kontrolu logu, zamrzá pc

Re: Prosím o kontrolu logu, zamrzá pc

Re: Prosím o kontrolu logu, zamrzá pc

Re: Prosím o kontrolu logu, zamrzá pc

Re: Prosím o kontrolu logu, zamrzá pc

Re: Prosím o kontrolu logu, zamrzá pc

Re: Prosím o kontrolu logu, zamrzá pc

Kdo je online