moc prosím o kontrolu logu

mafian · Příspěvekod **mafian** » 20 zář 2014 18:35

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:34:34, on 20.9.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
c:\PROGRA~1\AVG\AVG2014\avgrsx.exe
C:\Program Files\AVG\AVG2014\avgcsrvx.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVG\AVG2014\avgfws.exe
C:\Program Files\AVG\AVG2014\avgidsagent.exe
C:\Program Files\AVG\AVG2014\avgwdsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\Program Files\OO Software\Defrag\oodag.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe
C:\Program Files\AVG\AVG2014\avgui.exe
C:\Program Files\OO Software\Defrag\oodtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AVG\AVG2014\avgnsx.exe
C:\Program Files\Opera\24.0.1558.61\opera.exe
C:\Program Files\Opera\24.0.1558.61\opera_crashreporter.exe
C:\Program Files\Opera\24.0.1558.61\opera.exe
C:\Program Files\Opera\24.0.1558.61\opera.exe
C:\Program Files\Opera\24.0.1558.61\opera.exe
C:\Program Files\Opera\24.0.1558.61\opera.exe
C:\Program Files\AVG\AVG2014\avgcsrvx.exe
C:\Program Files\Opera\24.0.1558.61\opera.exe
C:\Program Files\Opera\24.0.1558.61\opera.exe
C:\Documents and Settings\uživatel\Plocha\hijackthis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [OODefragTray] C:\Program Files\OO Software\Defrag\oodtray.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Add to VideoGet - {88CFA58B-A63F-4A94-9C54-0C7A58E3333E} - C:\PROGRA~1\NUCLEA~1\VideoGet\Plugins\VIDEOG~1.DLL
O9 - Extra 'Tools' menuitem: Add to &VideoGet - {88CFA58B-A63F-4A94-9C54-0C7A58E3333E} - C:\PROGRA~1\NUCLEA~1\VideoGet\Plugins\VIDEOG~1.DLL
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgwdsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: O&O Defrag Agent (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: Aktivátor Správce výběru OS Acronis (Správce výběru OS) - Unknown owner - C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 5307 bytes

děkuji

Reklama

Příspěvekod **memphisto** » 21 zář 2014 08:06

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.
- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

mafian · Příspěvekod **mafian** » 21 zář 2014 19:13

# AdwCleaner v3.310 - Report created 21/09/2014 at 19:05:30
# Updated 12/09/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : uživatel - ADMIN
# Running from : C:\Documents and Settings\uživatel\Dokumenty\adwcleaner_3.310.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Found : C:\Documents and Settings\uživatel\Data aplikací\Mozilla\Firefox\Profiles\5hb9nwi2.default\Extensions\587fea1b-1c76-43c0-8b29-3c3da78e2485@2309207e-4ba6-42d8-b8a2-3b0a22e052b5.com
Folder Found : C:\Documents and Settings\uživatel\Data aplikací\Mozilla\Firefox\Profiles\5hb9nwi2.default\Extensions\587fea1b-1c76-43c0-8b29-3c3da78e2485@2309207e-4ba6-42d8-b8a2-3b0a22e052b5.com
Folder Found : C:\Documents and Settings\uživatel\Dokumenty\Search
Folder Found : C:\Program Files\SavePass

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\GlobalUpdate
Key Found : HKCU\Software\SavePass
Key Found : HKCU\Software\SavePass
Key Found : HKCU\Software\SavePass
Key Found : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Found : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Found : HKLM\SOFTWARE\GlobalUpdate
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SavePass
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SavePass
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SavePass
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass
Key Found : HKLM\SOFTWARE\SavePass
Key Found : HKLM\SOFTWARE\SavePass
Key Found : HKLM\SOFTWARE\SavePass

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

-\\ Mozilla Firefox v28.0 (cs)

[ File : C:\Documents and Settings\uživatel\Data aplikací\Mozilla\Firefox\Profiles\5hb9nwi2.default\prefs.js ]

Line Found : user_pref("extensions.a587fea1b1c7643c08b293c3da78e24852309207e4ba642d8b8a23b0a22e052b5com57050.57050.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssf[...]
Line Found : user_pref("extensions.crossrider.bic", "147ca517d2f567737603c4b092b027e4");

-\\ Google Chrome v

[ File : C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R3].txt - [1114 octets] - [20/01/2014 12:41:12]
AdwCleaner[R4].txt - [1172 octets] - [21/01/2014 11:43:23]
AdwCleaner[R5].txt - [1221 octets] - [05/03/2014 14:09:33]
AdwCleaner[R6].txt - [5216 octets] - [15/04/2014 21:23:10]
AdwCleaner[R7].txt - [5191 octets] - [09/07/2014 19:06:07]
AdwCleaner[R8].txt - [5251 octets] - [09/07/2014 19:20:16]
AdwCleaner[R9].txt - [6024 octets] - [21/09/2014 19:05:30]
AdwCleaner[S2].txt - [1241 octets] - [21/01/2014 11:44:08]
AdwCleaner[S3].txt - [1286 octets] - [05/03/2014 14:10:07]
AdwCleaner[S4].txt - [5383 octets] - [15/04/2014 21:24:09]
AdwCleaner[S5].txt - [4012 octets] - [09/07/2014 19:21:25]

########## EOF - C:\AdwCleaner\AdwCleaner[R9].txt - [6324 octets] ##########

Malwarebytes' Anti-Malwarenelze nainstalovat ani v nouzovém režimu hází chybu.

Příspěvekod **jaro3** » 22 zář 2014 09:48

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
klikni na „Prohledat-Scan“, po prohledání klikni na „ Vymazat-Clean“

Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool by Thisisu

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

mafian · Příspěvekod **mafian** » 22 zář 2014 11:23

# AdwCleaner v3.310 - Report created 22/09/2014 at 11:06:35
# Updated 12/09/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : uživatel - ADMIN
# Running from : C:\Documents and Settings\uživatel\Dokumenty\adwcleaner_3.310.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files\SavePass
[!] Folder Deleted : C:\Documents and Settings\uživatel\Dokumenty\Search
Folder Deleted : C:\Documents and Settings\uživatel\Data aplikací\Mozilla\Firefox\Profiles\5hb9nwi2.default\Extensions\587fea1b-1c76-43c0-8b29-3c3da78e2485@2309207e-4ba6-42d8-b8a2-3b0a22e052b5.com

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\SavePass
Key Deleted : HKLM\SOFTWARE\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\SavePass
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SavePass

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

-\\ Mozilla Firefox v28.0 (cs)

[ File : C:\Documents and Settings\uživatel\Data aplikací\Mozilla\Firefox\Profiles\5hb9nwi2.default\prefs.js ]

Line Deleted : user_pref("extensions.a587fea1b1c7643c08b293c3da78e24852309207e4ba642d8b8a23b0a22e052b5com57050.57050.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssf[...]
Line Deleted : user_pref("extensions.crossrider.bic", "147ca517d2f567737603c4b092b027e4");

-\\ Google Chrome v

[ File : C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R10].txt - [6466 octets] - [22/09/2014 11:04:41]
AdwCleaner[R3].txt - [1114 octets] - [20/01/2014 12:41:12]
AdwCleaner[R4].txt - [1172 octets] - [21/01/2014 11:43:23]
AdwCleaner[R5].txt - [1221 octets] - [05/03/2014 14:09:33]
AdwCleaner[R6].txt - [5216 octets] - [15/04/2014 21:23:10]
AdwCleaner[R7].txt - [5191 octets] - [09/07/2014 19:06:07]
AdwCleaner[R8].txt - [5251 octets] - [09/07/2014 19:20:16]
AdwCleaner[R9].txt - [6404 octets] - [21/09/2014 19:05:30]
AdwCleaner[S2].txt - [1241 octets] - [21/01/2014 11:44:08]
AdwCleaner[S3].txt - [1286 octets] - [05/03/2014 14:10:07]
AdwCleaner[S4].txt - [5383 octets] - [15/04/2014 21:24:09]
AdwCleaner[S5].txt - [4012 octets] - [09/07/2014 19:21:25]
AdwCleaner[S6].txt - [5806 octets] - [22/09/2014 11:06:35]

########## EOF - C:\AdwCleaner\AdwCleaner[S6].txt - [5866 octets] ##########

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.9 (09.20.2014:1)
OS: Microsoft Windows XP x86
Ran by uživatel on po 22.09.2014 at 11:13:51,14
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\Documents and Settings\uživatel\Data aplikací\thinstall"

~~~ FireFox

Successfully deleted: [Folder] C:\Documents and Settings\uživatel\Data aplikací\mozilla\firefox\profiles\5hb9nwi2.default\extensions\staged
Successfully deleted the following from C:\Documents and Settings\uživatel\Data aplikací\mozilla\firefox\profiles\5hb9nwi2.default\prefs.js

user_pref("extensions.a587fea1b1c7643c08b293c3da78e24852309207e4ba642d8b8a23b0a22e052b5com5705057050s57050o57050c57050i57050a57050l57050.57050m57050a57050n57050i57050f57050e57

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 22.09.2014 at 11:23:06,45
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

mafian · Příspěvekod **mafian** » 22 zář 2014 11:35

RogueKiller V9.2.11.0 [Sep 9 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : uživatel [Práva správce]
Mód : Kontrola -- Datum : 09/22/2014 11:34:07

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 7 (Driver: NAHRÁNO) ¤¤¤
[SSDT:Addr(Hook.SSDT)] NtEnumerateKey[71] : C:\WINDOWS\system32\drivers\avgtpx86.sys @ 0xba1b9342
[SSDT:Addr(Hook.SSDT)] NtEnumerateValueKey[73] : C:\WINDOWS\system32\drivers\avgtpx86.sys @ 0xba1b93f2
[SSDT:Addr(Hook.SSDT)] NtQueryValueKey[177] : C:\WINDOWS\system32\drivers\avgtpx86.sys @ 0xba1b922a
[Filter(Kernel.Filter)] \Driver\atapi @ Unknown : \Driver\snapman @ Unknown (snapman.sys)
[Filter(Kernel.Filter)] \Driver\atapi @ Unknown : \Driver\snapman @ Unknown (snapman.sys)
[Filter(Kernel.Filter)] \Driver\Disk @ Unknown : \Driver\snapman @ Unknown (snapman.sys)
[Filter(Kernel.Filter)] \Driver\Disk @ Unknown : \Driver\snapman @ Unknown (snapman.sys)

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: +++++
--- User ---
[MBR] 9bbf54343e8988402eadbabc08269f37
[BSP] d95afeca0aae78ed313e30df813a65b7 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 70001 MB
1 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 143364060 | Size: 61059 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 268414020 | Size: 345875 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: SAMSUNG HD502IJ +++++
--- User ---
[MBR] a5fdc80a93ee4ee9bd1fde3c33161d21
[BSP] 995669ecf0f527c3bb0612362dd1bdfa : Windows XP MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 131059 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 268410240 | Size: 175888 MB
2 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 628629120 | Size: 69996 MB
3 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 771981840 | Size: 99992 MB
User = LL1 ... OK
User = LL2 ... OK

============================================
RKreport_DEL_07102014_171446.log - RKreport_DEL_09202014_183355.log - RKreport_SCN_07102014_102824.log - RKreport_SCN_07102014_103721.log
RKreport_SCN_07102014_171248.log - RKreport_SCN_09202014_183236.log

a ješte mi otevřel v tuhle stránku

http://www.adlice.com/kernelmode-rootki ... sdt-hooks/

Příspěvekod **jaro3** » 22 zář 2014 21:40

To je Ok.

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků

Stáhni
Zoek.exe

a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor , náběh programu může trvat déle.

Do okna programu vlož skript níže:

Kód: Vybrat vše

autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;

klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .

Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.

mafian · Příspěvekod **mafian** » 23 zář 2014 11:10

11:09:03.0500 0x1434 TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
11:09:09.0296 0x1434 ============================================================
11:09:09.0296 0x1434 Current date / time: 2014/09/23 11:09:09.0296
11:09:09.0296 0x1434 SystemInfo:
11:09:09.0296 0x1434
11:09:09.0296 0x1434 OS Version: 5.1.2600 ServicePack: 3.0
11:09:09.0296 0x1434 Product type: Workstation
11:09:09.0296 0x1434 ComputerName: ADMIN
11:09:09.0296 0x1434 UserName: uživatel
11:09:09.0296 0x1434 Windows directory: C:\WINDOWS
11:09:09.0296 0x1434 System windows directory: C:\WINDOWS
11:09:09.0296 0x1434 Processor architecture: Intel x86
11:09:09.0296 0x1434 Number of processors: 4
11:09:09.0296 0x1434 Page size: 0x1000
11:09:09.0296 0x1434 Boot type: Normal boot
11:09:09.0296 0x1434 ============================================================
11:09:12.0031 0x1434 KLMD registered as C:\WINDOWS\system32\drivers\23867032.sys
11:09:12.0125 0x1434 System UUID: {4B20FA4E-1030-FFD7-0FE0-F352DE0C25CE}
11:09:12.0484 0x1434 Drive \Device\Harddisk0\DR0 - Size: 0x7470AFDE00 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
11:09:12.0500 0x1434 Drive \Device\Harddisk1\DR1 - Size: 0x7470AFDE00 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
11:09:12.0500 0x1434 ============================================================
11:09:12.0500 0x1434 \Device\Harddisk0\DR0:
11:09:12.0500 0x1434 MBR partitions:
11:09:12.0500 0x1434 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x88B8F9D
11:09:12.0500 0x1434 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x88B901B, BlocksNum 0x7741C29
11:09:12.0500 0x1434 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xFFFAC44, BlocksNum 0x2A389FFD
11:09:12.0500 0x1434 \Device\Harddisk1\DR1:
11:09:12.0500 0x1434 MBR partitions:
11:09:12.0500 0x1434 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xFFF9D41
11:09:12.0500 0x1434 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0xFFF9D80, BlocksNum 0x15788100
11:09:12.0500 0x1434 \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x25781EBF, BlocksNum 0x88B6351
11:09:12.0500 0x1434 \Device\Harddisk1\DR1\Partition4: MBR, Type 0x7, StartLBA 0x2E038210, BlocksNum 0xC34C680
11:09:12.0500 0x1434 ============================================================
11:09:12.0546 0x1434 C: <-> \Device\Harddisk0\DR0\Partition1
11:09:12.0578 0x1434 D: <-> \Device\Harddisk0\DR0\Partition2
11:09:12.0625 0x1434 F: <-> \Device\Harddisk0\DR0\Partition3
11:09:12.0656 0x1434 G: <-> \Device\Harddisk1\DR1\Partition1
11:09:12.0687 0x1434 I: <-> \Device\Harddisk1\DR1\Partition3
11:09:12.0718 0x1434 K: <-> \Device\Harddisk1\DR1\Partition2
11:09:12.0718 0x1434 L: <-> \Device\Harddisk1\DR1\Partition4
11:09:12.0718 0x1434 ============================================================
11:09:12.0718 0x1434 Initialize success
11:09:12.0718 0x1434 ============================================================
11:09:16.0515 0x17b8 ============================================================
11:09:16.0515 0x17b8 Scan started
11:09:16.0515 0x17b8 Mode: Manual;
11:09:16.0515 0x17b8 ============================================================
11:09:16.0515 0x17b8 KSN ping started
11:09:19.0062 0x17b8 KSN ping finished: true
11:09:20.0390 0x17b8 ================ Scan system memory ========================
11:09:20.0390 0x17b8 System memory - ok
11:09:20.0390 0x17b8 ================ Scan services =============================
11:09:20.0468 0x17b8 Abiosdsk - ok
11:09:20.0484 0x17b8 abp480n5 - ok
11:09:20.0515 0x17b8 [ 4FE34F1F3126B61FCC6B2043AA8112C9, DE370865E47A5D2A4B227EEFFB42384F67F08D622BF936A9C9CEF70CC47F324B ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
11:09:20.0515 0x17b8 ACPI - ok
11:09:20.0640 0x17b8 [ AFDFF022A01F0B11C776F0860C3B282F, 135E5257B62D921B76271014301E9EA1E2383D5DBB04E475DC3A7EFFD2561F56 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
11:09:20.0656 0x17b8 ACPIEC - ok
11:09:20.0718 0x17b8 [ FBB312C9DA3863673EC18F4AE4101778, 4E9AAE7C700E485C17FDFCC9100A79784673B006D00D4D4CE8F1DB617D25C864 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
11:09:20.0718 0x17b8 AdobeFlashPlayerUpdateSvc - ok
11:09:20.0734 0x17b8 adpu160m - ok
11:09:20.0765 0x17b8 [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec C:\WINDOWS\system32\drivers\aec.sys
11:09:20.0765 0x17b8 aec - ok
11:09:20.0812 0x17b8 [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD C:\WINDOWS\System32\drivers\afd.sys
11:09:20.0812 0x17b8 AFD - ok
11:09:20.0828 0x17b8 Aha154x - ok
11:09:20.0843 0x17b8 aic78u2 - ok
11:09:20.0859 0x17b8 aic78xx - ok
11:09:20.0890 0x17b8 [ E0A6FA244B8624D78FE5FF6F56A33BAE, 26B828FDB03AE4A4F1DC7A1792F9BAD69CF947897D47F5E567F24F4B6D5CB541 ] Alerter C:\WINDOWS\system32\alrsvc.dll
11:09:20.0890 0x17b8 Alerter - ok
11:09:20.0906 0x17b8 [ 88842DE939A827577BF24243699AC80A, A49C9A6A9941F3A2FBBCFE1F6DB48B632739D00670AC98ECCCBC7FD9E786B21A ] ALG C:\WINDOWS\System32\alg.exe
11:09:20.0906 0x17b8 ALG - ok
11:09:20.0921 0x17b8 AliIde - ok
11:09:21.0000 0x17b8 [ 267FC636801EDC5AB28E14036349E3BE, CFEF5DF5F9BE820283376BB86DB3CF6609C02D316A742E17459A2BFA42E724E0 ] Ambfilt C:\WINDOWS\system32\drivers\Ambfilt.sys
11:09:21.0078 0x17b8 Ambfilt - ok
11:09:21.0093 0x17b8 [ 7AA286C7F10916DB23734AF066EEC65D, 04A2A386C1CF6B21428EC198D5C330135B2DD030DBBC04F4581B4A5389F81AD4 ] amdide C:\WINDOWS\system32\DRIVERS\amdide.sys
11:09:21.0125 0x17b8 amdide - ok
11:09:21.0140 0x17b8 [ 033448D435E65C4BD72E70521FD05C76, A5462C22D5461F1BA06E81CD7E1ECE5409092DE53A8E4D3E78D089B65CB474D4 ] AmdPPM C:\WINDOWS\system32\DRIVERS\AmdPPM.sys
11:09:21.0156 0x17b8 AmdPPM - ok
11:09:21.0156 0x17b8 amsint - ok
11:09:21.0218 0x17b8 [ 21CA6A013A75FCF6F930D4B08803973A, 49AE47B6B4D5E1B791B89E0395659D42A29A79C3E6EC52CBFCB9F9CEF857A9DD ] AODDriver C:\Program Files\GIGABYTE\ET6\i386\AODDriver.sys
11:09:21.0218 0x17b8 AODDriver - ok
11:09:21.0250 0x17b8 [ 6B8E7A90E576D4FE308F97C69060A171, 6CE49BC78715737D78E05DECAC23E26A5672ACD2CF3D10154FEA9D47B318D47C ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
11:09:21.0265 0x17b8 AppMgmt - ok
11:09:21.0281 0x17b8 [ B5B8A80875C1DEDEDA8B02765642C32F, AD0C71D73B1B8225351FBF4FFB43001A32B4DAE69504C59970CD2428BB33D4EF ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
11:09:21.0296 0x17b8 Arp1394 - ok
11:09:21.0296 0x17b8 asc - ok
11:09:21.0312 0x17b8 asc3350p - ok
11:09:21.0328 0x17b8 asc3550 - ok
11:09:21.0406 0x17b8 [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
11:09:21.0453 0x17b8 aspnet_state - ok
11:09:21.0468 0x17b8 [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
11:09:21.0468 0x17b8 AsyncMac - ok
11:09:21.0484 0x17b8 [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
11:09:21.0484 0x17b8 atapi - ok
11:09:21.0500 0x17b8 Atdisk - ok
11:09:21.0546 0x17b8 [ 809B0EB83C75061C9DE2E528C65A1575, 7AB4CC3303111832C7CC16FAE310C07112EED6A41B0ABAAB498804BFA48CB399 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
11:09:21.0562 0x17b8 Ati HotKey Poller - ok
11:09:21.0609 0x17b8 [ AD1865C5E1842C8BA06BE3B1799315AA, AB81ECB1F6FA6C719BD15CCA60E1B593D4A32387C7009D2B2A8DB2C69827EFCE ] ATI Smart C:\WINDOWS\system32\ati2sgag.exe
11:09:21.0625 0x17b8 ATI Smart - ok
11:09:21.0906 0x17b8 [ 032F23B133B680B06861329C5A176EE0, 1288ABF05A960671C13AC00E0F296D7FD27018CF0E02C9C8A39E42BEE0B5000A ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
11:09:22.0109 0x17b8 ati2mtag - ok
11:09:22.0156 0x17b8 [ 924971A182E07463765EF9FA8876F24F, 62B849254390411AB33B2F0E209971970ADDD95D176803ADD9AFD19C493B3228 ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdXP3.sys
11:09:22.0187 0x17b8 AtiHDAudioService - ok
11:09:22.0218 0x17b8 [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
11:09:22.0218 0x17b8 Atmarpc - ok
11:09:22.0250 0x17b8 [ DE31B88962A8645DBA5A37B993E7B0F1, CA93F25A3FD0CE68BB9B8E3AB6B813BF38DE3EDDFC990291B3957FAA59B2B274 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
11:09:22.0250 0x17b8 AudioSrv - ok
11:09:22.0281 0x17b8 [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
11:09:22.0281 0x17b8 audstub - ok
11:09:22.0312 0x17b8 [ 21C2F3000A7233E517D7AB62F97BF509, 07169A2512D616E4AE7FE0F6B66D2B84D526F6022985871CC29E9F53FDCFCB6D ] Avgdiskx C:\WINDOWS\system32\DRIVERS\avgdiskx.sys
11:09:22.0328 0x17b8 Avgdiskx - ok
11:09:22.0343 0x17b8 [ 8BE661C16FBF84A73BCEC84B6B4A9DB5, 7C93BB50B6EDDEAABB149045A52BDAE5DD9262DC87EEE537D766714E793292C5 ] Avgfwdx C:\WINDOWS\system32\DRIVERS\avgfwdx.sys
11:09:22.0343 0x17b8 Avgfwdx - ok
11:09:22.0359 0x17b8 [ 8BE661C16FBF84A73BCEC84B6B4A9DB5, 7C93BB50B6EDDEAABB149045A52BDAE5DD9262DC87EEE537D766714E793292C5 ] Avgfwfd C:\WINDOWS\system32\DRIVERS\avgfwdx.sys
11:09:22.0359 0x17b8 Avgfwfd - ok
11:09:22.0515 0x17b8 [ 1E7B74C93D85B1BFE3A291D62DD4DB29, 2001E8BAE5715237CE701C530D4D8DEE4D58F782327D1C7843E081EE3A5EB78D ] avgfws C:\Program Files\AVG\AVG2014\avgfws.exe
11:09:22.0562 0x17b8 avgfws - ok
11:09:22.0921 0x17b8 [ B6E2D865C5936A4FEE68F11E97DF6B82, 02807C38BF6DF72BF49636371BA9CDBC1C531C239DF26930F320ABD937AA1B9D ] AVGIDSAgent C:\Program Files\AVG\AVG2014\avgidsagent.exe
11:09:23.0015 0x17b8 AVGIDSAgent - ok
11:09:23.0062 0x17b8 [ DE1A454BBD7F43F9DF628F51C39BFD6C, DEB940E0C0C875D657C349C7B4C99610564EF3BDABCB65F1B0872B266CB09648 ] AVGIDSDriverl C:\WINDOWS\system32\DRIVERS\avgidsdriverlx.sys
11:09:23.0062 0x17b8 AVGIDSDriverl - ok
11:09:23.0093 0x17b8 [ C0701A3C53F0A0F5E4900F26365A10A1, 2755AF8C98F4855FD467F0174D6AE7AC3E7050D95008FE521918194593684D51 ] AVGIDSHX C:\WINDOWS\system32\DRIVERS\avgidshx.sys
11:09:23.0125 0x17b8 AVGIDSHX - ok
11:09:23.0156 0x17b8 [ E7FEE532CEF01C97D7682E35D156244F, CF54B4B83E1A060FF52BDEAC4E20492ACFAABC87BC6BE784D6AB4CD64C965B92 ] AVGIDSShim C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
11:09:23.0156 0x17b8 AVGIDSShim - ok
11:09:23.0203 0x17b8 [ FA868D5784DE755DD8A1B4B1A80574E4, 9300B4ACBDA96FA4FEE9265ED0E50F750C2B6F7BE854953B8FB73904679DBCA3 ] Avgldx86 C:\WINDOWS\system32\DRIVERS\avgldx86.sys
11:09:23.0203 0x17b8 Avgldx86 - ok
11:09:23.0234 0x17b8 [ 8D37558421330218C98722DF4AD85E83, 24C33B317BA605DFC9B9CE2868391A815870A61F58A172806533A16F29F92B0A ] Avglogx C:\WINDOWS\system32\DRIVERS\avglogx.sys
11:09:23.0234 0x17b8 Avglogx - ok
11:09:23.0265 0x17b8 [ 3AC9661AB1624F322B20844DDE8EBC14, 56239D0998CAEDC3160A0BDAB58FDA729328716850BB17DD8FDB4F7CE0D7FCB3 ] Avgmfx86 C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
11:09:23.0281 0x17b8 Avgmfx86 - ok
11:09:23.0296 0x17b8 [ 86FCB8CE3E68C4777B98F7AF06FE8519, 6B7507DA927ECDBA8B2DAA87530DDAEAC5B0983D3CF11D1F6D00D36601FBC60C ] Avgrkx86 C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
11:09:23.0296 0x17b8 Avgrkx86 - ok
11:09:23.0328 0x17b8 [ ACFEE559442E1FCD48EC74C7D3452608, 536E36CD59BB1E0F5732D8BF57208A07C88A51D02FA016F844648CA0B44F0073 ] Avgtdix C:\WINDOWS\system32\DRIVERS\avgtdix.sys
11:09:23.0328 0x17b8 Avgtdix - ok
11:09:23.0359 0x17b8 [ 06AEB065AC25A2CFF80E1DF0303EC55B, EE913D669741B3F844AFEEFCF232D2D2C94081BCB39F79D81D7A7133DBC57252 ] avgtp C:\WINDOWS\system32\drivers\avgtpx86.sys
11:09:23.0406 0x17b8 avgtp - ok
11:09:23.0484 0x17b8 [ D7CBEEA4500BFDC63E99B06A1C512BE8, F8408E339AD022DD78D6C856A330F5A40CAF21F3B0C69FA352D66E3B8E75AA0F ] avgwd C:\Program Files\AVG\AVG2014\avgwdsvc.exe
11:09:23.0500 0x17b8 avgwd - ok
11:09:23.0515 0x17b8 [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep C:\WINDOWS\system32\drivers\Beep.sys
11:09:23.0515 0x17b8 Beep - ok
11:09:23.0546 0x17b8 [ 19395D092FD85DDC2D9C7729CF5A2AC8, 7640F36BA19698EE8A6257BF78A8C57DD9D734BED9CA6BB9B68603BAEA092412 ] BITS C:\WINDOWS\system32\qmgr.dll
11:09:23.0640 0x17b8 BITS - ok
11:09:23.0656 0x17b8 [ 89E739BBA5F636297EA5B5F811189E06, 151B32B12F5DD0D388134DA2471FE9741CF22B9C408DA58FEF8019D3C4EC836B ] Browser C:\WINDOWS\System32\browser.dll
11:09:23.0656 0x17b8 Browser - ok
11:09:23.0687 0x17b8 [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
11:09:23.0687 0x17b8 cbidf2k - ok
11:09:23.0703 0x17b8 cd20xrnt - ok
11:09:23.0718 0x17b8 [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
11:09:23.0718 0x17b8 Cdaudio - ok
11:09:23.0718 0x17b8 [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
11:09:23.0734 0x17b8 Cdfs - ok
11:09:23.0750 0x17b8 [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
11:09:23.0765 0x17b8 Cdrom - ok
11:09:23.0812 0x17b8 [ E390DC1D7C461D7D56EC53402F329928, FB37F84E71353CD83FCDDD39C898C6D84C05130C5F1BEF022E3DFDE160398C0E ] cisvc C:\WINDOWS\system32\cisvc.exe
11:09:23.0812 0x17b8 cisvc - ok
11:09:23.0828 0x17b8 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA, 1725067BC759484A7185A4F1A44ED3CBE481529D187FE98EF279425B79177EB1 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
11:09:23.0828 0x17b8 ClipSrv - ok
11:09:23.0890 0x17b8 [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:09:23.0937 0x17b8 clr_optimization_v2.0.50727_32 - ok
11:09:23.0968 0x17b8 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:09:24.0031 0x17b8 clr_optimization_v4.0.30319_32 - ok
11:09:24.0031 0x17b8 CmdIde - ok
11:09:24.0046 0x17b8 COMSysApp - ok
11:09:24.0062 0x17b8 Cpqarray - ok
11:09:24.0078 0x17b8 [ F3AB0933CBD166D271992F411C27CCAF, 50E01F3B058F814BE914FA5050B2D972E8584A467719A5ABCF9D9EBD596A54A7 ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
11:09:24.0078 0x17b8 CryptSvc - ok
11:09:24.0078 0x17b8 dac2w2k - ok
11:09:24.0093 0x17b8 dac960nt - ok
11:09:24.0125 0x17b8 [ BE27674D1CBC3214AEC84B4336A38BBF, 3DF5F9A9E97595A61314B2731DF4F3D3C19D1B9D2291624A63B8E1861FFC2D76 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
11:09:24.0140 0x17b8 DcomLaunch - ok
11:09:24.0156 0x17b8 [ 8C9A53E285AC5E6704844D0459EC85BE, 9E86AF4C06CEC007C9B1590B6E056319603E4D79BED0C2471C6F1BC251B380CF ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
11:09:24.0156 0x17b8 Dhcp - ok
11:09:24.0187 0x17b8 [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
11:09:24.0187 0x17b8 Disk - ok
11:09:24.0187 0x17b8 dmadmin - ok
11:09:24.0218 0x17b8 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C, 46074FBBC5E4A40A7B3A45636089DEDD2A619778C7DCD797571C2BB64D775F7E ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
11:09:24.0234 0x17b8 dmboot - ok
11:09:24.0250 0x17b8 [ FFF1720AF51171F32F1EAD5CF71F2810, 2E40D63DC7670C1E88A532DB8923A98ABC8481C351C4D915C2753E10BA77F36D ] dmio C:\WINDOWS\system32\drivers\dmio.sys
11:09:24.0250 0x17b8 dmio - ok
11:09:24.0281 0x17b8 [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload C:\WINDOWS\system32\drivers\dmload.sys
11:09:24.0281 0x17b8 dmload - ok
11:09:24.0312 0x17b8 [ 2BFEFE9E865655A76982F050450B9591, 15C7D093D638770519AA43E7D8897310F32AB1F217027F5750D799494A985C35 ] dmserver C:\WINDOWS\System32\dmserver.dll
11:09:24.0312 0x17b8 dmserver - ok
11:09:24.0328 0x17b8 [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
11:09:24.0328 0x17b8 DMusic - ok
11:09:24.0343 0x17b8 [ DFAA406BF19F4EE806A6F8D4342137F7, EE2C11B3E37565FC009E323607B2F5F148F9219012EDF848CEFC1B273DAA98A9 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
11:09:24.0343 0x17b8 Dnscache - ok
11:09:24.0375 0x17b8 [ 4A3E2BD20157A0946751229E92EB8621, D8C00CC2C18C517F7262EBC3C511C062E5ABA797056AEB22AC5DEB306BA8C526 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
11:09:24.0375 0x17b8 Dot3svc - ok
11:09:24.0390 0x17b8 dpti2o - ok
11:09:24.0421 0x17b8 [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
11:09:24.0421 0x17b8 drmkaud - ok
11:09:24.0453 0x17b8 [ FB38473835476A6FB272215A1D972AF9, F1F0E5B5C1461FCC967273FF236B88377C232D80F9C135868042311E971318C1 ] dtsoftbus01 C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
11:09:24.0453 0x17b8 dtsoftbus01 - ok
11:09:24.0484 0x17b8 [ 0887D9C2BE8D940778CAD1E3B85F2A41, 2E30DC06D46A5E174B7CAA2D70BDB697015495942572E90425E2EE7AC541BCF4 ] EapHost C:\WINDOWS\System32\eapsvc.dll
11:09:24.0484 0x17b8 EapHost - ok
11:09:24.0500 0x17b8 [ A2A4912798F2BE706ABADD3D30800D16, CCCCA389D22525D984DE9B59E4CEBE0EEEF315F725176EB5C4DC1A5B6157234A ] ERSvc C:\WINDOWS\System32\ersvc.dll
11:09:24.0500 0x17b8 ERSvc - ok
11:09:24.0515 0x17b8 [ 3AF0AE042AFE486B22644CD3FBEBF2E2, 755A18C1507D0C3F3BF1B0CFAB96BB7D1C3D9D6F862F94B3069D00FC6B92A8AA ] etdrv C:\WINDOWS\etdrv.sys
11:09:24.0531 0x17b8 etdrv - ok
11:09:24.0562 0x17b8 [ 9EF697AF07BB8DD82C3B02CA953A95B7, F26033E660B8FF1BDB9E88CDA205CE128C03138AF6BEC05DB3CF2D95C16D86C6 ] Eventlog C:\WINDOWS\system32\services.exe
11:09:24.0562 0x17b8 Eventlog - ok
11:09:24.0609 0x17b8 [ A371F11EF07653591C8DE26AFB13CE7F, 1192EDC8B146F1C27E8CD7E126DDC044F8B368C2E891A90CD81620D48C9550B6 ] EventSystem C:\WINDOWS\System32\es.dll
11:09:24.0609 0x17b8 EventSystem - ok
11:09:24.0656 0x17b8 [ 898AD7D508F6ADE242D94752E09F4152, EADDDEB2FE63752B20FB04AE967FC869512BA9B867446601B8E024B64BF11C82 ] EverestDriver C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt
11:09:24.0656 0x17b8 EverestDriver - ok
11:09:24.0671 0x17b8 [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
11:09:24.0687 0x17b8 Fastfat - ok
11:09:24.0718 0x17b8 [ EE9A2B9EA968A792A053C9D1A86BF870, 39798179F2EA42216CBE98F08ADA3675A87BD0C31A66534367B96CB129AF36BA ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
11:09:24.0718 0x17b8 FastUserSwitchingCompatibility - ok
11:09:24.0750 0x17b8 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
11:09:24.0765 0x17b8 Fdc - ok
11:09:24.0796 0x17b8 [ AC366695A0796560AA37215AD5762AAF, 6ADC7443EA42D77199D4879AF3C33A07914116C69A34B895D8CB8444EE50077F ] Fips C:\WINDOWS\system32\drivers\Fips.sys
11:09:24.0796 0x17b8 Fips - ok
11:09:24.0796 0x17b8 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
11:09:24.0796 0x17b8 Flpydisk - ok
11:09:24.0812 0x17b8 [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
11:09:24.0828 0x17b8 FltMgr - ok
11:09:24.0875 0x17b8 [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
11:09:24.0875 0x17b8 FontCache3.0.0.0 - ok
11:09:24.0906 0x17b8 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
11:09:24.0906 0x17b8 Fs_Rec - ok
11:09:24.0906 0x17b8 [ 4E664D8541DB4A66B73A24257E322E1F, 17A2140AFE2B41E579FCCAFB82532853AD90A6EDBCB13DE80741DAE0AD5B4CC9 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
11:09:24.0906 0x17b8 Ftdisk - ok
11:09:24.0937 0x17b8 [ D556CB79967E92B5CC69686D16C1D846, F4FF679066269392F6B7C3BA6257FC60DD609E4F9C491B00E1A16E4C405B0B9B ] gdrv C:\WINDOWS\gdrv.sys
11:09:24.0953 0x17b8 gdrv - ok
11:09:24.0968 0x17b8 [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
11:09:24.0968 0x17b8 Gpc - ok
11:09:24.0984 0x17b8 [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
11:09:24.0984 0x17b8 HDAudBus - ok
11:09:25.0046 0x17b8 [ FCFE31FB75F8A6295B6B0AF87A626282, 6BA385797DBC73EB29EFE3293B80C21B1B8A1E9B87A462476E73C526C9565E5F ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
11:09:25.0062 0x17b8 helpsvc - ok
11:09:25.0078 0x17b8 [ 00E25EE90166B3E1BE6E74AEBF858306, 92C2F020EF14DE3B4F09E2C5DFF3D2F35D8C50F6D0188F9CEEFE3B6075602EFE ] HidServ C:\WINDOWS\System32\hidserv.dll
11:09:25.0078 0x17b8 HidServ - ok
11:09:25.0078 0x17b8 [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
11:09:25.0078 0x17b8 hidusb - ok
11:09:25.0109 0x17b8 [ 7A6B320928F86BC851530D63C82965D9, 1F628759D31098DFBC05244735B5A62ACD8E45DBC5C9D236260D68EB8F1E28F5 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
11:09:25.0109 0x17b8 hkmsvc - ok
11:09:25.0125 0x17b8 hpn - ok
11:09:25.0125 0x17b8 hpt3xx - ok
11:09:25.0156 0x17b8 [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
11:09:25.0171 0x17b8 HTTP - ok
11:09:25.0187 0x17b8 [ 58FE2F2DA3BC5573F4A35B3760D3125F, B241ACCE426402EC64DC34C49CECB8CDC0851986D54BFCCED7040D6C43F5787A ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
11:09:25.0187 0x17b8 HTTPFilter - ok
11:09:25.0187 0x17b8 i2omp - ok
11:09:25.0203 0x17b8 [ C528E27945367191E7BAE364930B6932, 1B95C7B49B4CAE734DC6C9EC22555C5356EEC856B8491C761C777479264CF854 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
11:09:25.0203 0x17b8 i8042prt - ok
11:09:25.0281 0x17b8 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
11:09:25.0296 0x17b8 IDriverT - ok
11:09:25.0562 0x17b8 [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:09:25.0656 0x17b8 idsvc - ok
11:09:25.0703 0x17b8 [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
11:09:25.0750 0x17b8 Imapi - ok
11:09:25.0812 0x17b8 [ F7B93AAFAD33B2320954C17E26C8D361, 8CFDB11A68B59E195F280BE08B25FA59F1F70833832919B8BECCE17616999934 ] ImapiService C:\WINDOWS\system32\imapi.exe
11:09:25.0828 0x17b8 ImapiService - ok
11:09:25.0828 0x17b8 ini910u - ok
11:09:26.0156 0x17b8 [ A916995CB503172020DA3C35E1227AC7, 27DA968C2DE28F81046678D3A516EA7693DB1CBD8802C63C7E36BF2A3264BFF9 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
11:09:26.0328 0x17b8 IntcAzAudAddService - ok
11:09:26.0343 0x17b8 IntelIde - ok
11:09:26.0359 0x17b8 [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
11:09:26.0359 0x17b8 ip6fw - ok
11:09:26.0406 0x17b8 [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
11:09:26.0406 0x17b8 IpFilterDriver - ok
11:09:26.0406 0x17b8 [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
11:09:26.0406 0x17b8 IpInIp - ok
11:09:26.0437 0x17b8 [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
11:09:26.0437 0x17b8 IpNat - ok
11:09:26.0437 0x17b8 [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
11:09:26.0453 0x17b8 IPSec - ok
11:09:26.0468 0x17b8 [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
11:09:26.0468 0x17b8 IRENUM - ok
11:09:26.0484 0x17b8 [ CC9F8A2D60AED1A51A3AC34C59B987AE, CBF69817BE3D9A4617390B1A3306074CB8581F21562CD1357D32BC3E542F3CEE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
11:09:26.0484 0x17b8 isapnp - ok
11:09:26.0562 0x17b8 [ A980296E1EC9921356F0D8AD06A6EF9C, 15ECC4B7FD250C1F4CC4CBB58430B8A16F94B33392E52EE964A3DBC49F114272 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
11:09:26.0562 0x17b8 JavaQuickStarterService - ok
11:09:26.0578 0x17b8 [ 1B6162FE7F66B1A71A4B70F941C4AA9B, C2EA494BAB0513A6027414FB1E75834F980A77852D0DC8559E8942FC222A075A ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
11:09:26.0578 0x17b8 Kbdclass - ok
11:09:26.0609 0x17b8 [ 86C8F23616C6C6E5B2776901C17B945B, 211B63FC405A2DDB126D204D61E779D66C7211882CC0374521926C633E180B91 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
11:09:26.0625 0x17b8 kbdhid - ok
11:09:26.0656 0x17b8 [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
11:09:26.0656 0x17b8 kmixer - ok
11:09:26.0687 0x17b8 [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
11:09:26.0687 0x17b8 KSecDD - ok
11:09:26.0718 0x17b8 [ 3428E8F86F8ADD36B42FB23542C7B3E4, 9CF643D1A70AF08407ACD5FD6FE4B8777521DDF41B5E63C2E6E1E4CAAC69A403 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
11:09:26.0718 0x17b8 lanmanserver - ok
11:09:26.0734 0x17b8 [ 936C1D110232D23B621CB0196E4F80F0, 2DE3AF93E20F1DC7A6FF31B18054EA4D2350387E4DA91C4B16D451384F0C57E2 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
11:09:26.0750 0x17b8 lanmanworkstation - ok
11:09:26.0781 0x17b8 [ 0AB159F536E3E8F7F07113702A07CCA5, 3218C553183E6697C663B6D12790E09756B50505590858DD5AC62411D37CDD7C ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
11:09:26.0781 0x17b8 LmHosts - ok
11:09:26.0781 0x17b8 [ 221CD1C815B8A6B79389C3F5D1018DE8, 6D0D25D6669C4F9452F74EC72C6138A41D9408E01AF5FD01C08F27BE7BC9C905 ] Messenger C:\WINDOWS\System32\msgsvc.dll
11:09:26.0796 0x17b8 Messenger - ok
11:09:26.0812 0x17b8 [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
11:09:26.0812 0x17b8 mnmdd - ok
11:09:26.0843 0x17b8 [ 9A57D046F88F4B69751B11FD40088A61, 62F65433024CE411F111A88723747B8A83B31076FBAF4CFF40FD02A53D7FF7DF ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
11:09:26.0843 0x17b8 mnmsrvc - ok
11:09:26.0843 0x17b8 [ 44032B0C6D9954D3FD26438330B99EE7, A49749A4C00D50F57170AA5DA9E2DEECC8C524A48B144C8B784894F2C202FBEE ] Modem C:\WINDOWS\system32\drivers\Modem.sys
11:09:26.0859 0x17b8 Modem - ok
11:09:26.0906 0x17b8 [ C7D9F9717916B34C1B00DD4834AF485C, A9512A03E8142C83534189963F90ADA6FA425BD606928C40C3D724177105A658 ] Monfilt C:\WINDOWS\system32\drivers\Monfilt.sys
11:09:26.0953 0x17b8 Monfilt - ok
11:09:26.0968 0x17b8 [ 4CB582831DBDE63CE43B45D771218374, 6D470B26197C5B388983D9213D48D2CDE934C9591572876DC7790FE4B59E0845 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
11:09:26.0968 0x17b8 Mouclass - ok
11:09:26.0968 0x17b8 [ BB269EBA740737AB749B214D568B6812, ABF41D9B521EBBE674E76981CAD31F8FD05976DE7070266C3956FDB67C83C4C2 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
11:09:26.0984 0x17b8 mouhid - ok
11:09:26.0984 0x17b8 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
11:09:26.0984 0x17b8 MountMgr - ok
11:09:27.0031 0x17b8 [ AEE4E9CC59CDEB55B1ECB0E596E796BE, 674F6F38D86D238AFD6223E03A862F8B43DD8499FBC2D4B7A04E510EC5EACF3B ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
11:09:27.0031 0x17b8 MozillaMaintenance - ok
11:09:27.0031 0x17b8 mraid35x - ok
11:09:27.0046 0x17b8 [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
11:09:27.0046 0x17b8 MRxDAV - ok
11:09:27.0078 0x17b8 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
11:09:27.0093 0x17b8 MRxSmb - ok
11:09:27.0093 0x17b8 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D, 78D63EE2C0B0852F0771071C099643242EBC9F4DA28847B93BCE9C3CC1091938 ] MSDTC C:\WINDOWS\System32\msdtc.exe
11:09:27.0093 0x17b8 MSDTC - ok
11:09:27.0109 0x17b8 [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
11:09:27.0109 0x17b8 Msfs - ok
11:09:27.0109 0x17b8 MSIServer - ok
11:09:27.0125 0x17b8 [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
11:09:27.0125 0x17b8 MSKSSRV - ok
11:09:27.0125 0x17b8 [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
11:09:27.0125 0x17b8 MSPCLOCK - ok
11:09:27.0125 0x17b8 [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
11:09:27.0140 0x17b8 MSPQM - ok
11:09:27.0140 0x17b8 [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
11:09:27.0140 0x17b8 mssmbios - ok
11:09:27.0187 0x17b8 MSSQLSERVER - ok
11:09:27.0203 0x17b8 [ 1D89EB4E2A99CABD4E81225F4F4C4B25, B9C4D956E3F74CB463A1A14287F4B550381FBB3E4B2DF9418E041E02A159E31E ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
11:09:27.0218 0x17b8 MSSQLServerADHelper - ok
11:09:27.0218 0x17b8 [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
11:09:27.0218 0x17b8 Mup - ok
11:09:27.0250 0x17b8 [ 6EA362E9DB03D44F6B996F4D8BE237E9, FE6B4C546D26C4A2832CF4CB280B86B1723E10E46A3C24AF6C9856FCCAE9D1FC ] napagent C:\WINDOWS\System32\qagentrt.dll
11:09:27.0265 0x17b8 napagent - ok
11:09:27.0265 0x17b8 [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
11:09:27.0281 0x17b8 NDIS - ok
11:09:27.0296 0x17b8 [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
11:09:27.0296 0x17b8 NdisTapi - ok
11:09:27.0328 0x17b8 [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
11:09:27.0328 0x17b8 Ndisuio - ok
11:09:27.0328 0x17b8 [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
11:09:27.0328 0x17b8 NdisWan - ok
11:09:27.0359 0x17b8 [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
11:09:27.0359 0x17b8 NDProxy - ok
11:09:27.0359 0x17b8 [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
11:09:27.0359 0x17b8 NetBIOS - ok
11:09:27.0375 0x17b8 [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
11:09:27.0375 0x17b8 NetBT - ok
11:09:27.0421 0x17b8 [ 933DE774986EC85E48210C44AB431DE6, B8C85085003792B8744D96585CE6F2BC474EEEEC364A100CCBCE08176D91E75C ] NetDDE C:\WINDOWS\system32\netdde.exe
11:09:27.0421 0x17b8 NetDDE - ok
11:09:27.0421 0x17b8 [ 933DE774986EC85E48210C44AB431DE6, B8C85085003792B8744D96585CE6F2BC474EEEEC364A100CCBCE08176D91E75C ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
11:09:27.0421 0x17b8 NetDDEdsdm - ok
11:09:27.0437 0x17b8 [ ED0A176354487CEED65B80A7148AB739, 71295D7D7684539DBD2924B437660960C01E073A521FE12D1519969327EC8DC4 ] Netlogon C:\WINDOWS\system32\lsass.exe
11:09:27.0437 0x17b8 Netlogon - ok
11:09:27.0484 0x17b8 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40, 588C8BA14A7255FD36A88960CBE34341301773765ECF2A9A0F1760A509A08A5B ] Netman C:\WINDOWS\System32\netman.dll
11:09:27.0484 0x17b8 Netman - ok
11:09:27.0500 0x17b8 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:09:27.0515 0x17b8 NetTcpPortSharing - ok
11:09:27.0531 0x17b8 [ E9E47CFB2D461FA0FC75B7A74C6383EA, 544136F5BFD4DC23D45E90F12FA48B82FD9EAEA9EAF3E0F5F0BD27E23D672C3E ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
11:09:27.0531 0x17b8 NIC1394 - ok
11:09:27.0546 0x17b8 [ 39EE7C3BFBC64BA87CC8CF67386E814C, B93CCB625CE370D9A49C9374D24C939D7C9FEF81401F4F822C51E12677D77E01 ] Nla C:\WINDOWS\System32\mswsock.dll
11:09:27.0562 0x17b8 Nla - ok
11:09:27.0562 0x17b8 [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
11:09:27.0562 0x17b8 Npfs - ok
11:09:27.0593 0x17b8 [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
11:09:27.0609 0x17b8 Ntfs - ok
11:09:27.0609 0x17b8 [ ED0A176354487CEED65B80A7148AB739, 71295D7D7684539DBD2924B437660960C01E073A521FE12D1519969327EC8DC4 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
11:09:27.0609 0x17b8 NtLmSsp - ok
11:09:27.0671 0x17b8 [ 023DD70573D644F3D9C8B1258A7BFD08, 9A1D3210ED5FD8BEDF92ED577A9B30E37035408A73EB66A8C950B75AB7539B83 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
11:09:27.0687 0x17b8 NtmsSvc - ok
11:09:27.0703 0x17b8 [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null C:\WINDOWS\system32\drivers\Null.sys
11:09:27.0703 0x17b8 Null - ok
11:09:27.0750 0x17b8 [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
11:09:27.0750 0x17b8 NwlnkFlt - ok
11:09:27.0750 0x17b8 [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
11:09:27.0750 0x17b8 NwlnkFwd - ok
11:09:27.0765 0x17b8 [ CA33832DF41AFB202EE7AEB05145922F, 9DD0089C2E13C7F81214C3B5A4A61276292052F9BBFEA7FCD0F6AA27815D5F95 ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
11:09:27.0765 0x17b8 ohci1394 - ok
11:09:27.0859 0x17b8 [ 98A418CFF837DF4954006BD8F23EC903, 3E783FC5D48187601AFB5A73857BB7671DE8BAEF7C17AC96537A295C8F347947 ] OODefragAgent C:\Program Files\OO Software\Defrag\oodag.exe
11:09:27.0937 0x17b8 OODefragAgent - ok
11:09:27.0984 0x17b8 [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:09:27.0984 0x17b8 ose - ok
11:09:28.0015 0x17b8 [ F43E58DFC53DD59377E212894AD57330, 4DA1DBC0D1A94766DE41F3ED2BFF9AB82C64FBE56360785328F5AD1F9D95C2D6 ] PAR1284 C:\WINDOWS\system32\PAR1284.sys
11:09:28.0015 0x17b8 PAR1284 - ok
11:09:28.0015 0x17b8 [ 46F8DB73B4A53E543F8E371DC7C75BAE, F6C5E7DE4B4AE0ED785DB075BE14EA6A0FC9050C95669B26DEF2B82D7B7D3B2C ] Parport C:\WINDOWS\system32\drivers\Parport.sys
11:09:28.0031 0x17b8 Parport - ok
11:09:28.0046 0x17b8 [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
11:09:28.0046 0x17b8 PartMgr - ok
11:09:28.0078 0x17b8 [ 1FAE19D0457176318BBA4A8795656EBC, 5F3D6CABA203A0485D67F63A6A81151724EE200BE49ED095CFCB1EF29C19D19F ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
11:09:28.0078 0x17b8 ParVdm - ok
11:09:28.0093 0x17b8 [ 6CE351D149CB4BEFC702951E471E1730, 758327683BB45F01D5AE550AF21856822B4CF55E17F2A4F452F559088D242B37 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
11:09:28.0093 0x17b8 PCI - ok
11:09:28.0093 0x17b8 PCIDump - ok
11:09:28.0125 0x17b8 [ 2DA4EC85E0EA7A45C6B2A05820492D5A, A8C6BD93D3BC33A5B36EB523997EF9E0783B6E6EAFB6E7F58BCC2629009BDCF9 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
11:09:28.0125 0x17b8 PCIIde - ok
11:09:28.0125 0x17b8 [ 4FC31E6C19A5CE5198B1ABFF94CAE758, A031E21EC1F15DA5E8429269F435337FA961C3C06D535DAFD448C7355F33FD0C ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
11:09:28.0140 0x17b8 Pcmcia - ok
11:09:28.0140 0x17b8 perc2 - ok
11:09:28.0156 0x17b8 perc2hib - ok
11:09:28.0187 0x17b8 [ 9EF697AF07BB8DD82C3B02CA953A95B7, F26033E660B8FF1BDB9E88CDA205CE128C03138AF6BEC05DB3CF2D95C16D86C6 ] PlugPlay C:\WINDOWS\system32\services.exe
11:09:28.0203 0x17b8 PlugPlay - ok
11:09:28.0203 0x17b8 [ ED0A176354487CEED65B80A7148AB739, 71295D7D7684539DBD2924B437660960C01E073A521FE12D1519969327EC8DC4 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
11:09:28.0203 0x17b8 PolicyAgent - ok
11:09:28.0218 0x17b8 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
11:09:28.0218 0x17b8 PptpMiniport - ok
11:09:28.0234 0x17b8 [ 7EB15DCE4EC3A0220BD796A15C18186E, E06C572F3FE4F3377D8AF74E8EF15478E71B4C61F944E48E8C35534BEF086110 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
11:09:28.0234 0x17b8 Processor - ok
11:09:28.0250 0x17b8 [ ED0A176354487CEED65B80A7148AB739, 71295D7D7684539DBD2924B437660960C01E073A521FE12D1519969327EC8DC4 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
11:09:28.0250 0x17b8 ProtectedStorage - ok
11:09:28.0250 0x17b8 [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
11:09:28.0265 0x17b8 PSched - ok
11:09:28.0296 0x17b8 [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
11:09:28.0296 0x17b8 Ptilink - ok
11:09:28.0296 0x17b8 ql1080 - ok
11:09:28.0312 0x17b8 Ql10wnt - ok
11:09:28.0312 0x17b8 ql12160 - ok
11:09:28.0328 0x17b8 ql1240 - ok
11:09:28.0343 0x17b8 ql1280 - ok
11:09:28.0359 0x17b8 [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
11:09:28.0359 0x17b8 RasAcd - ok
11:09:28.0390 0x17b8 [ 2B5E44EA009F2F374B980E1E9A70635D, 62D8FDB80C8ACBA2C42C12760B785587C43BEDFE015EC5C41B25F2BB735EFEB0 ] RasAuto C:\WINDOWS\System32\rasauto.dll
11:09:28.0390 0x17b8 RasAuto - ok
11:09:28.0406 0x17b8 [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
11:09:28.0406 0x17b8 Rasl2tp - ok
11:09:28.0453 0x17b8 [ D57554C664B64604BD1EE13EA2C07E77, B090C05B91EA602BFF9A5E89AB1A0FFDE869611961FF749DA8B3F4D00F04E756 ] RasMan C:\WINDOWS\System32\rasmans.dll
11:09:28.0453 0x17b8 RasMan - ok
11:09:28.0453 0x17b8 [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
11:09:28.0468 0x17b8 RasPppoe - ok
11:09:28.0468 0x17b8 [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
11:09:28.0468 0x17b8 Raspti - ok
11:09:28.0500 0x17b8 [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
11:09:28.0500 0x17b8 Rdbss - ok
11:09:28.0515 0x17b8 [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
11:09:28.0515 0x17b8 RDPCDD - ok
11:09:28.0531 0x17b8 [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
11:09:28.0531 0x17b8 rdpdr - ok
11:09:28.0578 0x17b8 [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
11:09:28.0578 0x17b8 RDPWD - ok
11:09:28.0609 0x17b8 [ C0D9D9711CB74EE9BC66353D8CBDAB0E, F1AF9A26910707E76BF213D8DE5C902B0088D8A29EBDFF72DE6A4D867E298CC8 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
11:09:28.0609 0x17b8 RDSessMgr - ok
11:09:28.0640 0x17b8 [ 611BFD220305BE3A85AE876EA47D4AA5, FDF87878EB3886649025E5A12F1C3FC9072D66CCD3217944710085C1F8A4512E ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
11:09:28.0640 0x17b8 redbook - ok
11:09:28.0687 0x17b8 [ 127C26B5371651043450E52542099ABA, 98AADAD8D5211CB894AA7C59B6299861B1F44B6D8F46AB5837E7D2F5B615B14A ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
11:09:28.0687 0x17b8 RemoteAccess - ok
11:09:28.0718 0x17b8 [ 8F31505484A190D5B22274708799F4EC, 170FF8193C95CEE73B9342B6FB7D83DF4E80B2CCBB27DF41F4AB5F2FB9AF60E1 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
11:09:28.0734 0x17b8 RemoteRegistry - ok
11:09:28.0734 0x17b8 [ 718B3BDC0BC3C2F7D065A53D26202AF9, 9E58243628F1E1396AB82A80D046FF50803A230EE07B007E0CA5D744C77B091A ] RpcLocator C:\WINDOWS\System32\locator.exe
11:09:28.0734 0x17b8 RpcLocator - ok
11:09:28.0765 0x17b8 [ BE27674D1CBC3214AEC84B4336A38BBF, 3DF5F9A9E97595A61314B2731DF4F3D3C19D1B9D2291624A63B8E1861FFC2D76 ] RpcSs C:\WINDOWS\System32\rpcss.dll
11:09:28.0765 0x17b8 RpcSs - ok
11:09:28.0796 0x17b8 [ 09AB2E71E58B078038E3BFDBA7FFC984, 8CA277DEEF6376B0F48C6BA5DBBC3E8AF2245983BA9AF6AB83D1A920D35FAF93 ] RSVP C:\WINDOWS\System32\rsvp.exe
11:09:28.0796 0x17b8 RSVP - ok
11:09:28.0937 0x17b8 [ EE76248CA187BB50FF964A287D420FEE, C52F62780FEC7C3EED844C9B59D7B5336566A2ED5F01A742D76F0B29A2FDD535 ] RTHDMIAzAudService C:\WINDOWS\system32\drivers\RtHDMI.sys
11:09:29.0062 0x17b8 RTHDMIAzAudService - ok
11:09:29.0093 0x17b8 [ 9E66148B3F27EE5D88DC13F9DAD5A9AB, 10BF3CF3A8819BE47475103FE563405D15C2A48A7E2BE7106C0C8E64153538D0 ] RTLE8023xp C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
11:09:29.0125 0x17b8 RTLE8023xp - ok
11:09:29.0156 0x17b8 [ ED0A176354487CEED65B80A7148AB739, 71295D7D7684539DBD2924B437660960C01E073A521FE12D1519969327EC8DC4 ] SamSs C:\WINDOWS\system32\lsass.exe
11:09:29.0156 0x17b8 SamSs - ok
11:09:29.0171 0x17b8 [ 410046E401EB11E1E6749E9DEEA41D4A, 9507268ACD24EF51E994DC418E8EB3E10DEDE61EE892226A22A5DA7662397E25 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
11:09:29.0171 0x17b8 SCardSvr - ok
11:09:29.0203 0x17b8 [ 3FF232A7731621B8902D81D42418C93C, 2030C9A843D9555170179883BD4CC1E978D5FC5EC0D7FCA56518224E428BE421 ] Schedule C:\WINDOWS\system32\schedsvc.dll
11:09:29.0218 0x17b8 Schedule - ok
11:09:29.0250 0x17b8 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
11:09:29.0250 0x17b8 Secdrv - ok
11:09:29.0281 0x17b8 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6, 82EEB2345AC19050FAB202DE76C2CDD93E753F5AB67789A86A1726D3040C02E5 ] seclogon C:\WINDOWS\System32\seclogon.dll
11:09:29.0281 0x17b8 seclogon - ok
11:09:29.0328 0x17b8 [ A530B75C10C23C9AB28FDB6CE719E21F, 14568DF6457758E2F534A46A8E6245C364895C3993BEF2B5A889B98DBB201A27 ] SENS C:\WINDOWS\system32\sens.dll
11:09:29.0328 0x17b8 SENS - ok
11:09:29.0343 0x17b8 [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
11:09:29.0359 0x17b8 serenum - ok
11:09:29.0359 0x17b8 [ B842729337C9B921615C40D3C1A1AF96, 503670A56423B996C6ED6AE95F07FB88910767C4A2041A4BE9070C57A016E7FA ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
11:09:29.0375 0x17b8 Serial - ok
11:09:29.0437 0x17b8 [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
11:09:29.0437 0x17b8 Sfloppy - ok
11:09:29.0484 0x17b8 [ F58FACA9621D2DB01BD0927D9A0A208E, 239C87E09261BC9D1DBE99DABCFC4787D42289E8769563A5EFB323BE6F177C9A ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
11:09:29.0500 0x17b8 SharedAccess - ok
11:09:29.0515 0x17b8 [ EE9A2B9EA968A792A053C9D1A86BF870, 39798179F2EA42216CBE98F08ADA3675A87BD0C31A66534367B96CB129AF36BA ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
11:09:29.0515 0x17b8 ShellHWDetection - ok
11:09:29.0515 0x17b8 Simbad - ok
11:09:29.0578 0x17b8 [ BD3863C139F3380A9F44FB188FEEFC6E, 61F8D40D3893D7D0585216F13B6518731924221F92545D05A37123FB5C388A97 ] snapman C:\WINDOWS\system32\DRIVERS\snapman.sys
11:09:29.0578 0x17b8 snapman - ok
11:09:29.0593 0x17b8 Sparrow - ok
11:09:29.0609 0x17b8 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter C:\WINDOWS\system32\drivers\splitter.sys
11:09:29.0609 0x17b8 splitter - ok
11:09:29.0656 0x17b8 [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler C:\WINDOWS\system32\spoolsv.exe
11:09:29.0656 0x17b8 Spooler - ok
11:09:29.0656 0x17b8 ================ Scan global ===============================
11:09:29.0671 0x17b8 [ F36278E42C8C5DF03CE17DAC8231C91C, D012A3C8F394DF4F0BF5D5A4C10E73BBF427762B7D3DB6CF5FAB96536E082B7A ] C:\WINDOWS\system32\basesrv.dll
11:09:29.0703 0x17b8 [ 4C0AA4ABC4E21672B55D8A700AF2B2A6, FAC6B8E2698D0EB12A0ACE62EA398AD05AB6AC5C39740A1E8BDAAF0BFDD5B4A3 ] C:\WINDOWS\system32\winsrv.dll
11:09:29.0718 0x17b8 [ 4C0AA4ABC4E21672B55D8A700AF2B2A6, FAC6B8E2698D0EB12A0ACE62EA398AD05AB6AC5C39740A1E8BDAAF0BFDD5B4A3 ] C:\WINDOWS\system32\winsrv.dll
11:09:29.0718 0x17b8 [ 9EF697AF07BB8DD82C3B02CA953A95B7, F26033E660B8FF1BDB9E88CDA205CE128C03138AF6BEC05DB3CF2D95C16D86C6 ] C:\WINDOWS\system32\services.exe
11:09:29.0734 0x17b8 [ Global ] - ok
11:09:29.0734 0x17b8 ================ Scan MBR ==================================
11:09:29.0750 0x17b8 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:09:29.0984 0x17b8 \Device\Harddisk0\DR0 - ok
11:09:29.0984 0x17b8 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
11:09:30.0031 0x17b8 \Device\Harddisk1\DR1 - ok
11:09:30.0031 0x17b8 ================ Scan VBR ==================================
11:09:30.0031 0x17b8 [ ACDDEFE15F451D9C2AE7B2CB99B0525F ] \Device\Harddisk0\DR0\Partition1
11:09:30.0046 0x17b8 \Device\Harddisk0\DR0\Partition1 - ok
11:09:30.0078 0x17b8 [ 525D1C54FADBA2BD8357FBEA485EA750 ] \Device\Harddisk0\DR0\Partition2
11:09:30.0093 0x17b8 \Device\Harddisk0\DR0\Partition2 - ok
11:09:30.0093 0x17b8 [ 3BE5DE4C7CDC8C1BEBF89FCA350C8470 ] \Device\Harddisk0\DR0\Partition3
11:09:30.0109 0x17b8 \Device\Harddisk0\DR0\Partition3 - ok
11:09:30.0109 0x17b8 [ 10E5B0FA4180DFCE2E773F55FD7EB1C8 ] \Device\Harddisk1\DR1\Partition1
11:09:30.0171 0x17b8 \Device\Harddisk1\DR1\Partition1 - ok
11:09:30.0171 0x17b8 [ B1090BBB02921E91373529A4B1B88D55 ] \Device\Harddisk1\DR1\Partition2
11:09:30.0187 0x17b8 \Device\Harddisk1\DR1\Partition2 - ok
11:09:30.0203 0x17b8 [ 1B3738F720E6605C8AF85DC74BF3F6F3 ] \Device\Harddisk1\DR1\Partition3
11:09:30.0234 0x17b8 \Device\Harddisk1\DR1\Partition3 - ok
11:09:30.0234 0x17b8 [ E05DDA09CB01B250F505C6F300BFED33 ] \Device\Harddisk1\DR1\Partition4
11:09:30.0250 0x17b8 \Device\Harddisk1\DR1\Partition4 - ok
11:09:30.0250 0x17b8 ================ Scan generic autorun ======================
11:09:30.0687 0x17b8 [ 361B0893A5C6741F347568A3232D2822, A1085FD8DCEA67E3760C5204C4FC0EADAAC2A9E3A1A498B0BE2F0883EE2B1A04 ] C:\Program Files\AVG\AVG2014\avgui.exe
11:09:31.0125 0x17b8 AVG_UI - ok
11:09:31.0234 0x17b8 [ A519A1EDD3426BDCE78729DCFC1B051B, 7240F8638BDE3BA38E55CF42FC2D9E5BAE9FA81EEF339B69D851473DF0C2F952 ] C:\Program Files\OO Software\Defrag\oodtray.exe
11:09:31.0312 0x17b8 OODefragTray - ok
11:09:31.0343 0x17b8 [ A756B8F0F7BAFBA6DFE39F7D169F2519, 5338DE8FCA5182A919AAADFA5D130BB93069E3675B834D96CFF68C32433B3BDE ] C:\WINDOWS\system32\ctfmon.exe
11:09:31.0343 0x17b8 ctfmon.exe - ok
11:09:31.0343 0x17b8 Waiting for KSN requests completion. In queue: 116
11:09:32.0343 0x17b8 Waiting for KSN requests completion. In queue: 116
11:09:33.0343 0x17b8 Waiting for KSN requests completion. In queue: 116
11:09:34.0359 0x17b8 AV detected via SS1: AVG Internet Security 2014, 2014.0, enabled, updated
11:09:34.0359 0x17b8 FW detected via SS1: AVG Internet Security 2014, 2014.0, enabled
11:09:36.0828 0x17b8 ============================================================
11:09:36.0828 0x17b8 Scan finished
11:09:36.0828 0x17b8 ============================================================
11:09:36.0843 0x0314 Detected object count: 0
11:09:36.0843 0x0314 Actual detected object count: 0
11:09:45.0765 0x1238 Deinitialize success

mafian · Příspěvekod **mafian** » 23 zář 2014 11:19

Zoek.exe v5.0.0.0 Updated 21-09-2014
Tool run by uživatel on út 23.09.2014 at 11:11:41,92.
Systém Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\uživatel\Dokumenty\zoek.exe [Scan all users] [Script inserted]

===== Runcheck 11:13:08,21 =====

--- Create Environment Variables 11:13:09,50
--- Create System Restore Point 11:13:14,26
--- Checking Input 11:13:19,29
--- Reset Hosts File 11:13:22,15
--- AU AppData Check 11:13:22,79
--- Remove From Windows Installer 11:13:25,59
--- IE Startpage Check 11:15:06,20
--- Program Files DB Check 11:15:22,98
--- C:\Documents and Settings\Administrator\Data aplikací DB Check 11:15:52,81
--- C:\Documents and Settings\Default User\Data aplikací DB Check 11:15:52,81
--- C:\Documents and Settings\LocalService\Data aplikací DB Check 11:15:52,81
--- C:\Documents and Settings\NetworkService\Data aplikací DB Check 11:15:52,81
--- C:\Documents and Settings\User\Data aplikací DB Check 11:15:52,81
--- C:\Documents and Settings\uživatel\Data aplikací DB Check 11:15:52,81
--- C:\WINDOWS\system32\config\systemprofile\Data aplikací DB Check 11:15:52,81
--- C:\Documents and Settings\uživatel DB Check 11:17:10,87
--- C:\DOCUME~1\ALLUSE~1\DATAAP~1 DB Check 11:17:23,01
--- C:\Documents and Settings\Administrator\Local Settings\Data aplikací DB Check 11:17:23,85
--- C:\Documents and Settings\Default User\Local Settings\Data aplikací DB Check 11:17:23,85
--- C:\Documents and Settings\LocalService\Local Settings\Data aplikací DB Check 11:17:23,85
--- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací DB Check 11:17:23,85
--- C:\Documents and Settings\uživatel\Local Settings\Data aplikací DB Check 11:17:23,85
--- C:\WINDOWS\system32\config\systemprofile\Local Settings\Data aplikací DB Check 11:17:23,85
--- C:\Documents and Settings\All Users\Nabídka Start\Programy DB Check 11:18:10,01
--- C:\Documents and Settings\uživatel\Nabídka Start\Programy DB Check 11:18:15,85
--- Tasks DB Check 11:18:19,26
--- Tasks2 DB Check 11:18:21,14
--- Documents DB Check 11:18:36,87
--- Documents2 DB Check 11:18:40,67
--- C:\Documents and Settings\UIVATE~1\Data aplikací\Mozilla\Firefox\Profiles\5hb9nwi2.default DB Check 11:18:41,62
--- C:\Documents and Settings\All Users\Plocha DB Check 11:18:43,34
--- C:\Documents and Settings\uživatel\Plocha DB Check 11:18:45,62
--- Services DB Check 11:18:52,23

mafian · Příspěvekod **mafian** » 23 zář 2014 11:29

Zoek.exe v5.0.0.0 Updated 21-09-2014
Tool run by uživatel on út 23.09.2014 at 11:11:41,92.
Systém Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\uživatel\Dokumenty\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

23.9.2014 11:13:18 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== FireFox Fix ======================

Deleted from C:\Documents and Settings\UIVATE~1\Data aplikací\Mozilla\Firefox\Profiles\5hb9nwi2.default\prefs.js:

Added to C:\Documents and Settings\UIVATE~1\Data aplikací\Mozilla\Firefox\Profiles\5hb9nwi2.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

==== Deleting Files \ Folders ======================

C:\DOCUME~1\ALLUSE~1\DATAAP~1\Copernic deleted
C:\Documents and Settings\uživatel\.android deleted
C:\Program Files\GUM16E.tmp deleted
C:\Program Files\GUM5F1.tmp deleted
C:\Program Files\ComPlus Applications deleted
C:\Program Files\Common Files\DVDVideoSoft\bin deleted
C:\multibit-0.5.15-windows-setup.exe deleted
C:\mwav.exe deleted
C:\Window Handler.exe deleted
C:\Documents and Settings\uživatel\5725955.dll deleted
C:\Documents and Settings\uživatel\6616916.dll deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\C__Documents and Settings_uživatel_Dokumenty_H-IP_HD_Crack_HideIPEasy.exe deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\C__Documents and Settings_uživatel_Dokumenty_Hide-IP-Easy-5.1.4.8_Hide IP Easy 5.1.4.8_Crack_HideIPEasy.exe deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\ICQ deleted
C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Thinstall deleted
C:\Documents and Settings\uživatel\Local Settings\Data aplikací\cache deleted
"C:\Documents and Settings\uživatel\Data aplikací\Vso" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{20a82645-c095-46ed-80e3-08825760534b}"="C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [29.11.2012 23:44]

==== Firefox Extensions ======================

ProfilePath: C:\Documents and Settings\UIVATE~1\Data aplikací\Mozilla\Firefox\Profiles\5hb9nwi2.default
- Undetermined - C:\Documents and Settings\uĹľivatel\Data aplikacĂ\Mozilla\Firefox\Profiles\5hb9nwi2.default\extensions\foxyproxy@eric.h.jung
- Undetermined - C:\Documents and Settings\uĹľivatel\Data aplikacĂ\Mozilla\Firefox\Profiles\5hb9nwi2.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
- Undetermined - C:\Documents and Settings\uĹľivatel\Data aplikacĂ\Mozilla\Firefox\Profiles\5hb9nwi2.default\extensions\587fea1b-1c76-43c0-8b29-3c3da78e2485@2309207e-4ba6-42d8-b8a2-3b0a22e052b5.com
- FoxyProxy Basic - %ProfilePath%\extensions\foxyproxy@eric.h.jung
- DownloadHelper - %ProfilePath%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
- Proxy List - %ProfilePath%\extensions\proxylist@proxylists.me.xpi
- FlashGot - %ProfilePath%\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi

AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Documents and Settings\uživatel\Data aplikací\Mozilla\Firefox\Profiles\5hb9nwi2.default
DFC9460CC37E5C414DC4680B10C19E7A - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll - Shockwave Flash
F51ECBBA611C75E47578295D5241630F - C:\Program Files\Adobe\Reader 10.0\Reader\browser\nppdf32.dll - Adobe Acrobat
D654525C0902C21118AD29217E4ECB49 - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - Adobe Acrobat
486DCD78DFB28733BFDD4D4EFEA2FD50 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U65
EE23F610D9353B9217FFEC4B73A27EF5 - C:\Program Files\Java\jre7\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 7.0.650.20
893BF7D2261C56C24F813405D9D018E0 - C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll - Silverlight Plug-In
CBFE3156904AB2D1A097F5E74A6C62F3 - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin
AE7B288233C212C62CD544BF768C45E6 - C:\WINDOWS\system32\Adobe\Director\np32dsw_1203133.dll - Shockwave for Director / Shockwave for Director
8322DF0F670E2E45599728AA2D4896FA - C:\Program Files\Software602\602XML\Filler\npfiller.dll - Software602 Form Filler
AB87EEFFD18F2BAAFC274E7075EA6C67 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation
7E54D1EC87CE306CB1A26CE59AFE6E37 - C:\Program Files\Windows Media Player\npdrmv2.dll - Microsoft® DRM
D33D39A318AEA70691CED7530E2D9DF9 - C:\Program Files\Windows Media Player\npdsplay.dll - Windows Media Player Plug-in Dynamic Link Library
CFBC726A1712BD8DC9914EA06DBCE20B - C:\Program Files\Windows Media Player\npwmsdrm.dll - Microsoft® DRM
8DA2ED6B04EA33F2EAE8BA883F903729 - C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrlui.dll - Microsoft® Silverlight

==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
aaaaipkbmjkakicapiinmamgjlkaeehh - No path found[]

PDF Viewer - uživatel\Data aplikací\Opera Software\Opera Stable\Extensions\encfpfilknmenlmjemepncnlbbjlabkc
Download Helper - uživatel\Data aplikací\Opera Software\Opera Stable\Extensions\hfmijjkdjheadkpejemopocfjbepodlp

==== Chromium Startpages ======================

C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Preferences
"homepage": "http://search.phpnuke.org/?lang=en&cid=457c4dfc",

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com/ie"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Reset Google Chrome ======================

C:\Documents and Settings\uživatel\Local Settings\Data aplikací\COMODO\Dragon\User Data\Default\Preferences was reset successfully
C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences was reset successfully
C:\Documents and Settings\uživatel\Data aplikací\Opera Software\Opera Stable\Preferences was reset successfully
C:\Documents and Settings\uživatel\Local Settings\Data aplikací\COMODO\Dragon\User Data\Default\Web Data was reset successfully
C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Documents and Settings\uživatel\Data aplikací\Opera Software\Opera Stable\Web Data will be reset at reboot

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\aaaaipkbmjkakicapiinmamgjlkaeehh deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E8AEA11B-E60A-455E-B008-E4E763604612} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\V3.2_is1 deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{7F46E168-E0F4-45EA-81F5-80488334B609} deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ deleted successfully

==== Empty IE Cache ======================

C:\Documents and Settings\LocalService\Local Settings\temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\uživatel\Local Settings\temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\uživatel\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Opera Software\Opera Stable\Cache will be emptied at reboot
C:\Documents and Settings\uživatel\Local Settings\Data aplikací\COMODO\Dragon\User Data\Default\Cache emptied successfully
C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=337 folders=54 168853241 bytes)

==== Empty Temp Folders ======================

C:\Documents and Settings\Administrator\Local Settings\temp emptied successfully
C:\Documents and Settings\Default User\Local Settings\Temp emptied successfully
C:\Documents and Settings\LocalService\Local Settings\temp emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\temp emptied successfully
C:\Documents and Settings\uživatel\Local Settings\temp will be emptied at reboot
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\UIVATE~1\LOCALS~1\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied
C:\RECYCLER successfully emptied

==== Deleting Files / Folders ======================

"C:\Documents and Settings\uživatel\Data aplikací\Opera Software\Opera Stable\Web Data" not found
"C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Documents and Settings\uživatel\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Opera Software\Opera Stable\Cache\data_0" not found
"C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Opera Software\Opera Stable\Cache\data_1" not found
"C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Opera Software\Opera Stable\Cache\data_2" not found
"C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Opera Software\Opera Stable\Cache\data_3" not found
"C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Opera Software\Opera Stable\Cache\index" not found

==== EOF on Łt 23.09.2014 at 11:27:01,23 ======================

Příspěvekod **jaro3** » 23 zář 2014 21:13

co problémy?

mafian · Příspěvekod **mafian** » 02 říj 2014 10:10

problémy opět se mi začal sekat pc tak jsem myslel jestli to není nějakým bordelem,ale asi to bude spíš hw.

moc prosím o kontrolu logu Vyřešeno

moc prosím o kontrolu logu

Re: moc prosím o kontrolu logu

Re: moc prosím o kontrolu logu

Re: moc prosím o kontrolu logu

Re: moc prosím o kontrolu logu

Re: moc prosím o kontrolu logu

Re: moc prosím o kontrolu logu

Re: moc prosím o kontrolu logu

Re: moc prosím o kontrolu logu

Re: moc prosím o kontrolu logu

Re: moc prosím o kontrolu logu

Re: moc prosím o kontrolu logu

Kdo je online