Prosim o kontrolu logu Vyřešeno

[Monda]

Prosim o kontrolu logu,PC je strasne pomale,CPU vytezovan neustale na 100% na jednom HDD mam Win7 a na druhem XP.Instalace byla v poradi XP a pak Win7


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:43:14, on 7.8.2012
Platform: Unknown Windows (WinNT 6.01.3505 SP1)
MSIE: Internet Explorer v9.00 (9.00.8112.16447)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Opera\Opera.exe
C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe
E:\Instalacky PC\hijackthis.exe
C:\Users\Miroslav 7\Desktop\hijackthis.exe
C:\Windows\system32\NOTEPAD.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office12\GR469A~1.DLL
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O13 - Gopher Prefix:
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~3\Office12\GRA32A~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 3669 bytes

[Reklama]

[memphisto]

Vítej na fóru PC-HELP.CZ

to vypadá jako čistá instalace...

v logu fixni:

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O13 - Gopher Prefix:

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
- Pokud používáš Firefox, klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Chrome, nic dalšího nevybírej a dej Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(ZATÍM SÁM NIC NEMAŽ!).
Vlož sem pak obsah toho logu.

[Monda]

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Verze databáze: v2012.08.07.06

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Miroslav 7 :: MIROSLAV7-PC [administrátor]

7.8.2012 21:27:16
mbam-log-2012-08-07 (21-27-16).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 176090
Uplynulý čas: 25 minut, 24 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

[jaro3]

Problém dělá jen Win7?

[Monda]

No popravde spis mi na XP jela hra vbus a dnes nejede,takze i ty XP jsou zasekane

[jaro3]

Stáhni si Memtest:

Do políčka vlož největší velikost Tvé jednotlivé paměti RAM (256,512 nebo 1024,2048) dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.


Je třeba zkontrolovat HDD na chyby , zkusit jeho defragmentaci ..

Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.

[Monda]

----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Ultimate Edition SP1 [6.1 Build 7601] (x86)
Date : 2012/08/08 14:41:23

-- Controller Map ----------------------------------------------------------
+ Řadič úložiště Intel(R) 82801BA v režimu Ultra ATA - 244B [ATA]
+ ATA Channel 0 (0)
- ST3402111A ATA Device
- ST320410A ATA Device
+ ATA Channel 1 (1)
- ST320011A ATA Device
- HL-DT-ST DVDRAM GSA-H10N ATA Device

-- Disk List ---------------------------------------------------------------
(1) ST320410A : 20,0 GB [0/0/0, pd1] - st
(2) ST3402111A : 40,0 GB [1/0/1, pd1] - st
(3) ST320011A : 20,0 GB [2/1/1, pd1] - st

----------------------------------------------------------------------------
(1) ST320410A
----------------------------------------------------------------------------
Model : ST320410A
Firmware : 3.34
Serial Number : 6FG07YT0
Disk Size : 20,0 GB (8,4/20,0/----)
Buffer Size : 2048 KB
Queue Depth : 1
# of Sectors : 39102336
Rotation Rate : Neznámy údaj
Interface : Parallel ATA
Major Version : ATA/ATAPI-6
Minor Version : ----
Transfer Mode : Ultra DMA/100
Power On Hours : 20863 hod.
Power On Count : 3326 krát
Temparature : 45 C (113 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM
APM Level : 0040h [ON]
AAM Level : 8080h [ON]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 _61 _53 _25 00000D2B8CC1 Počet chyb čtení
03 _98 _98 __0 000000000000 Čas na roztočení ploten
04 100 100 _20 00000000006D Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _75 _60 _30 000C1BFA2015 Počet chybných hledání
09 _77 _77 __0 00000000517F Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _97 _97 _20 000000000CFE Počet cyklů zapnutí zařízení
C2 _45 _55 __0 00000000002D Teplota
C3 100 253 __0 000000000000 Počet oprav chybného čtení
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 __0 000000000000 Počet chyb při zápisu sektorů
CA 100 253 __0 000000000000 Počet chyb při směrování údajů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF 0000 0010 0000 003F 003F 0000 0000 0000
010: 3646 4730 3759 5430 2020 2020 2020 2020 2020 2020
020: 0000 1000 0004 332E 3334 2020 2020 5354 3332 3034
030: 3130 4120 2020 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 0000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: A780 0254 0000 0007 0003 0078 0078 00F0 0078 0000
070: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
080: 007E 0000 346B 4B09 4003 0A09 0A09 4003 203F 0000
090: 0000 0040 FFFE 603B 8080 0000 0000 0000 0000 0000
100: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
110: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
120: 0000 0000 0000 0000 0000 0000 0000 0000 0009 86AF
130: 0262 A780 0254 2E30 0002 0210 0210 0000 3C03 3CB4
140: FFFF 0000 0100 0800 0828 8C02 8C02 0CB9 003C 04B0
150: E808 BD10 0000 0454 0028 0000 0000 0000 00E0 000A
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 C7A5

----------------------------------------------------------------------------
(2) ST3402111A
----------------------------------------------------------------------------
Model : ST3402111A
Firmware : 2AAA
Serial Number : 3PF02ACC
Disk Size : 40,0 GB (8,4/40,0/40,0)
Buffer Size : 2048 KB
Queue Depth : 1
# of Sectors : 78165360
Rotation Rate : Neznámy údaj
Interface : Parallel ATA
Major Version : ATA/ATAPI-7
Minor Version : ----
Transfer Mode : Ultra DMA/100
Power On Hours : 48918 hod.
Power On Count : 228 krát
Temparature : 45 C (113 F)
Health Status : Dobrý
Features : S.M.A.R.T., 48bit LBA
APM Level : ----
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 _65 _50 __6 0000069CAFE7 Počet chyb čtení
03 100 _99 __0 000000000000 Čas na roztočení ploten
04 100 100 _20 0000000000E7 Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _83 _60 _30 00000D247BA8 Počet chybných hledání
09 _45 _45 __0 00000000BF16 Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 _20 0000000000E4 Počet cyklů zapnutí zařízení
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _55 _40 _45 00002D1F002D Teplota toku vzduchu
C2 _45 _60 __0 00190000002D Teplota
C3 _67 _51 __0 00000B5ABFCA Počet oprav chybného čtení
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 194 __0 000000000014 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 __0 000000000000 Počet chyb při zápisu sektorů
CA 100 253 __0 000000000000 Počet chyb při směrování údajů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 3350 3350 4630 3241 4343
020: 0000 1000 0004 3241 4141 2020 2020 5354 3334 3032
030: 3131 3141 2020 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: B570 04A8 0000 0007 0003 0078 0078 00F0 0078 0000
070: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
080: 00FE 0000 346B 7D01 4023 3C01 3C01 4023 203F 0000
090: 0000 FEFE FFFE 6D00 D000 0000 0000 0000 0000 0000
100: B570 04A8 0000 0000 0000 4000 4000 0000 0000 0000
110: 0000 0000 0000 0000 0000 0000 0000 0100 0000 0000
120: 0000 0000 0000 0000 0000 0000 0000 0000 0009 B570
130: 04A8 B570 04A8 5130 0002 0000 0000 008A 3C06 3C0A
140: 0000 07C6 0100 0800 090B 0002 0002 0080 0000 0000
150: 00A0 0202 0000 0404 0000 0000 0000 0000 1300 000B
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 F3A5

----------------------------------------------------------------------------
(3) ST320011A
----------------------------------------------------------------------------
Model : ST320011A
Firmware : 3.75
Serial Number : 3HT39PW9
Disk Size : 20,0 GB (8,4/20,0/----)
Buffer Size : 2048 KB
Queue Depth : 1
# of Sectors : 39102336
Rotation Rate : Neznámy údaj
Interface : Parallel ATA
Major Version : ATA/ATAPI-5
Minor Version : ----
Transfer Mode : Ultra DMA/100
Power On Hours : 40561 hod.
Power On Count : 3765 krát
Temparature : 38 C (100 F)
Health Status : Dobrý
Features : S.M.A.R.T., AAM
APM Level : ----
AAM Level : 8080h [ON]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 _84 _69 _34 000000987ECC Počet chyb čtení
03 _90 _87 __0 000000000000 Čas na roztočení ploten
04 _99 _99 _20 0000000005E4 Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _80 _60 _30 000006AFA6D3 Počet chybných hledání
09 _54 _54 __0 000000009E71 Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _97 _97 _20 000000000EB5 Počet cyklů zapnutí zařízení
C2 _38 _61 __0 000000000026 Teplota
C3 _84 _69 __0 000000987ECC Počet oprav chybného čtení
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 199 __0 000000000001 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 __0 000000000000 Počet chyb při zápisu sektorů
CA 100 253 __0 000000000000 Počet chyb při směrování údajů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF 0000 0010 0000 003F 003F 0000 0000 0000
010: 3348 5433 3950 5739 2020 2020 2020 2020 2020 2020
020: 0000 1000 0004 332E 3735 2020 2020 5354 3332 3030
030: 3131 4120 2020 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 0000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: A780 0254 0000 0007 0003 0078 0078 00F0 0078 0000
070: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
080: 003E 0000 346B 4B01 4000 0201 0201 4000 043F 0000
090: 0000 FEFE FFFE 4000 8080 0000 0000 0000 0000 0000
100: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
110: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
120: 0000 0000 0000 0000 0000 0000 0000 0000 0009 A780
130: 0254 A780 0254 2020 0002 0200 0200 1903 3C06 3C01
140: FFFF 07C6 0100 0800 09B1 0002 0002 0030 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 00A0 000B
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 21A5

[jaro3]

Stáhni si TDSSKiller

Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[Monda]

ComboFix 12-08-08.01 - Miroslav 7 08.08.2012 20:30:49.1.1 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.1280.614 [GMT 2:00]
Spuštěný z: c:\users\Miroslav 7\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6}
SP: Microsoft Security Essentials *Disabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-07-08 do 2012-08-08 )))))))))))))))))))))))))))))))
.
.
2012-08-08 18:48 . 2012-08-08 18:48 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-08-08 15:36 . 2012-08-08 15:36 -------- d-----w- c:\programdata\ATI
2012-08-08 15:08 . 2012-08-08 15:08 -------- d-----w- c:\program files\ATI
2012-08-08 15:08 . 2012-08-08 15:35 -------- d-----w- c:\program files\ATI Technologies
2012-08-08 14:55 . 2012-08-08 14:55 -------- d-----w- C:\ATI
2012-08-08 12:39 . 2012-08-08 12:40 -------- d-----w- c:\program files\CrystalDiskInfo
2012-08-08 10:29 . 2011-02-19 06:30 805376 ----a-w- c:\windows\system32\FntCache.dll
2012-08-08 10:29 . 2011-02-19 06:30 739840 ----a-w- c:\windows\system32\d2d1.dll
2012-08-08 09:56 . 2012-08-08 09:56 -------- d-----w- c:\program files\Verdict Free
2012-08-08 08:52 . 2012-06-28 23:44 6891424 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C438EC1F-D4DC-44CA-A745-942A87327ECB}\mpengine.dll
2012-08-07 19:23 . 2012-08-07 19:23 -------- d-----w- c:\programdata\Malwarebytes
2012-08-07 19:23 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-07 19:23 . 2012-08-07 19:24 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-08-07 15:03 . 2012-08-07 15:03 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2012-08-07 14:08 . 2011-03-25 02:57 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys
2012-08-07 14:08 . 2011-03-25 02:58 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys
2012-08-07 14:08 . 2011-03-25 02:58 284672 ----a-w- c:\windows\system32\drivers\usbport.sys
2012-08-07 14:08 . 2011-03-25 02:57 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys
2012-08-07 14:08 . 2011-03-25 02:57 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2012-08-07 14:08 . 2011-03-25 02:57 5888 ----a-w- c:\windows\system32\drivers\usbd.sys
2012-08-07 14:08 . 2011-03-25 02:58 75776 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2012-08-07 14:07 . 2011-03-11 05:33 1699328 ----a-w- c:\windows\system32\esent.dll
2012-08-07 14:07 . 2011-03-11 05:39 1211264 ----a-w- c:\windows\system32\drivers\ntfs.sys
2012-08-07 14:07 . 2011-03-11 05:31 74240 ----a-w- c:\windows\system32\fsutil.exe
2012-08-07 14:07 . 2011-03-11 05:39 148864 ----a-w- c:\windows\system32\drivers\storport.sys
2012-08-07 14:07 . 2011-03-11 05:38 332160 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2012-08-07 14:07 . 2011-03-11 05:39 143744 ----a-w- c:\windows\system32\drivers\nvstor.sys
2012-08-07 14:07 . 2011-03-11 05:38 80256 ----a-w- c:\windows\system32\drivers\amdsata.sys
2012-08-07 14:07 . 2011-03-11 05:39 117120 ----a-w- c:\windows\system32\drivers\nvraid.sys
2012-08-07 14:07 . 2011-03-11 05:38 22400 ----a-w- c:\windows\system32\drivers\amdxata.sys
2012-08-07 14:07 . 2011-04-28 03:15 393728 ----a-w- c:\windows\system32\drivers\bthport.sys
2012-08-07 14:07 . 2011-04-28 03:15 60416 ----a-w- c:\windows\system32\drivers\BTHUSB.SYS
2012-08-07 12:04 . 2012-08-07 12:04 -------- d-----w- c:\windows\system32\Wat
2012-08-07 11:04 . 2012-06-12 02:40 2345984 ----a-w- c:\windows\system32\win32k.sys
2012-08-07 11:02 . 2012-03-01 05:46 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-08-07 11:02 . 2012-03-01 05:29 5120 ----a-w- c:\windows\system32\wmi.dll
2012-08-07 11:02 . 2012-03-01 05:37 172544 ----a-w- c:\windows\system32\wintrust.dll
2012-08-07 11:02 . 2012-03-01 05:33 159232 ----a-w- c:\windows\system32\imagehlp.dll
2012-08-07 11:00 . 2010-02-11 07:10 293376 ----a-w- c:\windows\system32\browserchoice.exe
2012-08-07 10:54 . 2012-08-07 11:16 -------- d-----w- c:\program files\vbus
2012-08-06 20:04 . 2012-08-06 20:06 -------- d-----w- c:\program files\LG Electronics
2012-08-06 17:26 . 2012-08-06 17:36 -------- d-----w- c:\program files\IrfanView
2012-08-06 15:57 . 1998-06-23 23:00 137000 ----a-w- c:\windows\system32\MSMAPI32.OCX
2012-08-06 15:57 . 2004-03-08 23:00 662288 ----a-w- c:\windows\system32\MSCOMCT2.OCX
2012-08-06 15:57 . 2012-03-14 16:23 54784 ----a-w- c:\windows\system32\pdfcmon.dll
2012-08-06 15:57 . 1998-07-05 23:00 23552 ----a-w- c:\windows\system32\MSMPIDE.DLL
2012-08-06 15:56 . 2012-08-06 16:02 -------- d-----w- c:\program files\PDFCreator
2012-08-06 15:51 . 2012-08-06 15:51 -------- d-----w- c:\program files\Common Files\Windows Live
2012-08-06 15:15 . 2012-08-06 15:16 -------- d-----w- c:\program files\Common Files\Adobe
2012-08-06 15:01 . 2012-08-06 15:05 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-08-06 15:01 . 2012-08-06 15:05 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-06 15:01 . 2012-08-06 15:01 -------- d-----w- c:\windows\system32\Macromed
2012-08-06 14:54 . 2012-08-07 19:58 -------- d-----w- c:\program files\Opera
2012-08-06 14:28 . 2012-08-06 14:31 -------- d-----w- c:\program files\Energie pod palcem
2012-08-06 13:23 . 2011-08-17 04:24 465408 ----a-w- c:\windows\system32\psisdecd.dll
2012-08-06 13:23 . 2011-08-17 04:19 75776 ----a-w- c:\windows\system32\psisrndr.ax
2012-08-06 13:23 . 2011-12-30 05:27 478720 ----a-w- c:\windows\system32\timedate.cpl
2012-08-06 13:23 . 2012-04-28 04:41 919040 ----a-w- c:\windows\system32\rdpcorets.dll
2012-08-06 13:23 . 2012-04-28 03:17 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-08-06 13:22 . 2011-11-05 04:26 2048 ----a-w- c:\windows\system32\tzres.dll
2012-08-06 13:20 . 2012-06-06 05:05 1019904 ----a-w- c:\program files\Common Files\System\ado\msado15.dll
2012-08-06 13:20 . 2012-06-06 05:03 805376 ----a-w- c:\windows\system32\cdosys.dll
2012-08-06 13:20 . 2012-06-06 05:05 57344 ----a-w- c:\program files\Common Files\System\ado\msador15.dll
2012-08-06 13:20 . 2012-06-06 05:05 352256 ----a-w- c:\program files\Common Files\System\ado\msadomd.dll
2012-08-06 13:20 . 2012-06-06 05:05 143360 ----a-w- c:\program files\Common Files\System\ado\msjro.dll
2012-08-06 13:20 . 2012-06-06 05:05 372736 ----a-w- c:\program files\Common Files\System\ado\msadox.dll
2012-08-06 13:20 . 2012-06-06 05:05 212992 ----a-w- c:\program files\Common Files\System\msadc\msadco.dll
2012-08-06 13:20 . 2011-04-29 02:46 311808 ----a-w- c:\windows\system32\drivers\srv.sys
2012-08-06 13:20 . 2011-04-29 02:46 310272 ----a-w- c:\windows\system32\drivers\srv2.sys
2012-08-06 13:20 . 2011-04-29 02:46 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys
2012-08-06 13:20 . 2011-04-25 02:18 338944 ----a-w- c:\windows\system32\drivers\afd.sys
2012-08-06 13:20 . 2011-11-17 05:38 1288472 ----a-w- c:\windows\system32\ntdll.dll
2012-08-06 13:19 . 2011-02-18 05:39 31232 ----a-w- c:\windows\system32\prevhost.exe
2012-08-06 13:18 . 2011-03-03 05:38 132608 ----a-w- c:\windows\system32\dnsrslvr.dll
2012-08-06 13:18 . 2011-03-03 05:36 28672 ----a-w- c:\windows\system32\dnscacheugc.exe
2012-08-06 13:18 . 2011-02-19 04:34 294912 ----a-w- c:\windows\system32\atmfd.dll
2012-08-06 13:18 . 2011-02-19 06:30 34304 ----a-w- c:\windows\system32\atmlib.dll
2012-08-06 13:18 . 2010-09-30 06:47 70656 ----a-w- c:\windows\system32\fontsub.dll
2012-08-06 13:18 . 2011-10-01 04:37 708608 ----a-w- c:\program files\Common Files\System\wab32.dll
2012-08-06 13:14 . 2010-12-17 07:07 542208 ----a-w- c:\windows\system32\kerberos.dll
2012-08-06 13:14 . 2011-07-09 02:30 223744 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2012-08-06 13:14 . 2011-04-27 02:17 96768 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2012-08-06 13:14 . 2011-04-27 02:17 123904 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2012-08-06 13:13 . 2011-08-27 04:26 571904 ----a-w- c:\windows\system32\oleaut32.dll
2012-08-06 13:13 . 2011-08-27 04:26 233472 ----a-w- c:\windows\system32\oleacc.dll
2012-08-06 13:13 . 2011-05-03 04:30 741376 ----a-w- c:\windows\system32\inetcomm.dll
2012-08-06 13:12 . 2011-11-19 14:01 67072 ----a-w- c:\windows\system32\packager.dll
2012-08-06 13:12 . 2012-03-31 04:39 3913072 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-08-06 13:12 . 2012-03-31 04:39 3968368 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-08-06 13:10 . 2011-02-12 05:35 191488 ----a-w- c:\windows\system32\FXSCOVER.exe
2012-08-06 13:10 . 2011-10-15 05:38 534528 ----a-w- c:\windows\system32\EncDec.dll
2012-08-06 13:10 . 2011-03-12 11:23 870912 ----a-w- c:\windows\system32\XpsPrint.dll
2012-08-06 13:10 . 2011-02-24 05:38 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2012-08-06 13:10 . 2011-10-26 04:28 38912 ----a-w- c:\windows\system32\csrsrv.dll
2012-08-06 13:10 . 2010-12-23 05:54 642048 ----a-w- c:\windows\system32\CPFilters.dll
2012-08-06 13:10 . 2010-12-23 05:54 850944 ----a-w- c:\windows\system32\sbe.dll
2012-08-06 13:10 . 2010-12-23 05:50 199680 ----a-w- c:\windows\system32\mpg2splt.ax
2012-08-06 13:10 . 2011-10-26 04:32 1328128 ----a-w- c:\windows\system32\quartz.dll
2012-08-06 13:10 . 2011-10-26 04:32 514560 ----a-w- c:\windows\system32\qdvd.dll
2012-08-06 13:08 . 2011-06-15 08:55 86016 ----a-w- c:\windows\system32\odbccu32.dll
2012-08-06 13:08 . 2011-06-15 08:55 122880 ----a-w- c:\windows\system32\odbccp32.dll
2012-08-06 13:08 . 2011-06-15 08:55 163840 ----a-w- c:\windows\system32\odbctrac.dll
2012-08-06 13:08 . 2011-06-15 08:54 94208 ----a-w- c:\program files\Common Files\System\Ole DB\msdaosp.dll
2012-08-06 13:08 . 2011-01-17 05:47 161792 ----a-w- c:\windows\system32\d3d10_1.dll
2012-08-06 13:08 . 2012-04-26 04:45 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-08-06 13:08 . 2012-04-26 04:41 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-08-06 13:08 . 2012-04-26 04:45 58880 ----a-w- c:\windows\system32\rdpwsx.dll
2012-08-06 13:08 . 2011-12-16 07:52 690688 ----a-w- c:\windows\system32\msvcrt.dll
2012-08-06 13:08 . 2012-03-17 07:27 56176 ----a-w- c:\windows\system32\drivers\partmgr.sys
2012-08-06 13:08 . 2012-05-01 04:44 164352 ----a-w- c:\windows\system32\profsvc.dll
2012-08-06 13:07 . 2012-01-04 08:58 442880 ----a-w- c:\windows\system32\ntshrui.dll
2012-08-06 13:07 . 2012-03-03 05:31 1077248 ----a-w- c:\windows\system32\DWrite.dll
2012-08-06 13:07 . 2011-02-23 04:47 69632 ----a-w- c:\windows\system32\drivers\bowser.sys
2012-08-06 13:07 . 2011-03-11 05:33 1137664 ----a-w- c:\windows\system32\mfc42.dll
2012-08-06 13:07 . 2011-03-11 05:33 1164288 ----a-w- c:\windows\system32\mfc42u.dll
2012-08-06 13:07 . 2011-02-03 05:54 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2012-08-06 12:55 . 2009-02-27 01:42 31640 ----a-w- c:\windows\system32\msonpmon.dll
2012-08-06 12:55 . 2006-10-26 17:56 33104 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\msonpppr.dll
2012-08-06 12:38 . 2012-08-07 15:09 -------- d-----w- c:\program files\Microsoft Works
2012-08-06 12:18 . 2012-08-06 12:18 -------- d-----w- c:\windows\PCHEALTH
2012-08-06 11:52 . 2012-08-06 11:52 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2012-08-06 11:35 . 2012-08-08 12:24 -------- d-----w- c:\programdata\Microsoft Help
2012-08-06 11:29 . 2012-08-06 11:29 -------- d-----r- C:\MSOCache
2012-08-06 11:07 . 2011-04-09 05:56 123904 ----a-w- c:\windows\system32\poqexec.exe
2012-08-06 11:07 . 2011-04-22 19:14 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-06-02 04:40 . 2012-08-06 13:21 225280 ----a-w- c:\windows\system32\schannel.dll
2012-07-14 00:15 . 2012-08-06 07:20 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-03-26 931200]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-02-10 61440]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-01-03 07:37 843712 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2009-02-26 16:36 30040 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
2012-08-06 09:52 127040 ----a-w- c:\program files\ICQ7.7\ICQ.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Infium]
2012-03-23 14:55 7351760 ----a-w- c:\program files\QIP 2012\qip.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Quick Moto Agent]
2004-03-21 13:43 459776 ----a-w- c:\program files\Quick Moto\Agent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
2010-11-20 21:29 1174016 ----a-w- c:\program files\Windows Sidebar\sidebar.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2012-02-15 11:35 17146504 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
2009-04-14 05:43 604704 ----a-w- c:\windows\SOUNDMAN.EXE
.
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [x]
R3 lgbusenum;LG Bluetooth Bus Enumerator;c:\windows\system32\DRIVERS\lgbtbus.sys [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - 31802527
*Deregistered* - 31802527
.
Obsah adresáře 'Naplánované úlohy'
.
2012-08-06 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-06 15:05]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files\ICQ7.7\ICQ.exe
IE: {{230D1201-7607-4CF6-A11F-9E4BF0A333E0} - {0DB13731-CEFD-43CF-A8FD-B61DCBC4D5B8} - c:\program files\Verdict Free\etnxp.dll
IE: {{2C73F784-D2DE-4422-B070-2E3332FE5744} - {0320AC26-52C8-4316-B2C4-24BB6FA73C9A} - c:\program files\Verdict Free\etnxp.dll
TCP: DhcpNameServer = 10.29.2.1 192.168.0.1
FF - ProfilePath - c:\users\Miroslav 7\AppData\Roaming\Mozilla\Firefox\Profiles\8eykcjjb.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - user.js: browser.cache.memory.capacity - 16000
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autoFill - false
FF - user.js: browser.urlbar.autofill - true
FF - user.js: browser.urlbar.hideGoButton - false
FF - user.js: content.max.tokenizing.time - 3000000
FF - user.js: content.maxtextrun - 4095
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 1000000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 1000000
FF - user.js: dom.disable_window_status_change - true
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: network.http.max-connections - 48
FF - user.js: network.http.max-connections-per-server - 16
FF - user.js: network.http.max-persistent-connections-per-proxy - 16
FF - user.js: network.http.max-persistent-connections-per-server - 8
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.firstrequest - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: network.prefetch-next - true
FF - user.js: nglayout.initialpaint.delay - 1000
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
MSConfigStartUp-PCSpeedUp - c:\program files\Zrychleni Pocitace\PCSUNotifier.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-08-08 20:56:30
ComboFix-quarantined-files.txt 2012-08-08 18:56
.
Před spuštěním: 8 578 142 208
Po spuštění: 9 009 197 056
.
- - End Of File - - A693C3067F89B7ABF67F42531FF8C149

[Monda]

20:23:16.0371 0200 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
20:23:18.0402 0200 ============================================================
20:23:18.0402 0200 Current date / time: 2012/08/08 20:23:18.0402
20:23:18.0402 0200 SystemInfo:
20:23:18.0402 0200
20:23:18.0402 0200 OS Version: 6.1.7601 ServicePack: 1.0
20:23:18.0402 0200 Product type: Workstation
20:23:18.0402 0200 ComputerName: MIROSLAV7-PC
20:23:18.0402 0200 UserName: Miroslav 7
20:23:18.0402 0200 Windows directory: C:\Windows
20:23:18.0402 0200 System windows directory: C:\Windows
20:23:18.0402 0200 Processor architecture: Intel x86
20:23:18.0402 0200 Number of processors: 1
20:23:18.0402 0200 Page size: 0x1000
20:23:18.0402 0200 Boot type: Normal boot
20:23:18.0402 0200 ============================================================
20:23:23.0042 0200 Drive \Device\Harddisk0\DR0 - Size: 0x4A94F0000 (18.65 Gb), SectorSize: 0x200, Cylinders: 0x982, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:23:23.0058 0200 Drive \Device\Harddisk1\DR1 - Size: 0x9516AE000 (37.27 Gb), SectorSize: 0x200, Cylinders: 0x1301, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:23:26.0511 0200 Drive \Device\Harddisk2\DR2 - Size: 0x4A94F0000 (18.65 Gb), SectorSize: 0x200, Cylinders: 0x982, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:23:26.0527 0200 ============================================================
20:23:26.0527 0200 \Device\Harddisk0\DR0:
20:23:26.0527 0200 MBR partitions:
20:23:26.0527 0200 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x2546802
20:23:26.0527 0200 \Device\Harddisk1\DR1:
20:23:26.0527 0200 MBR partitions:
20:23:26.0527 0200 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x13D3800, BlocksNum 0x36B7000
20:23:26.0527 0200 \Device\Harddisk2\DR2:
20:23:26.0527 0200 MBR partitions:
20:23:26.0527 0200 \Device\Harddisk2\DR2\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x2546802
20:23:26.0527 0200 ============================================================
20:23:26.0558 0200 C: <-> \Device\Harddisk1\DR1\Partition0
20:23:26.0589 0200 D: <-> \Device\Harddisk0\DR0\Partition0
20:23:26.0621 0200 E: <-> \Device\Harddisk2\DR2\Partition0
20:23:26.0652 0200 ============================================================
20:23:26.0652 0200 Initialize success
20:23:26.0652 0200 ============================================================
20:23:29.0839 1120 ============================================================
20:23:29.0839 1120 Scan started
20:23:29.0839 1120 Mode: Manual;
20:23:29.0839 1120 ============================================================
20:23:31.0324 1120 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
20:23:31.0339 1120 1394ohci - ok
20:23:31.0464 1120 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
20:23:31.0480 1120 ACPI - ok
20:23:31.0542 1120 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
20:23:31.0542 1120 AcpiPmi - ok
20:23:31.0714 1120 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
20:23:31.0714 1120 AdobeARMservice - ok
20:23:31.0839 1120 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:23:31.0855 1120 AdobeFlashPlayerUpdateSvc - ok
20:23:32.0011 1120 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\drivers\adp94xx.sys
20:23:32.0027 1120 adp94xx - ok
20:23:32.0183 1120 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\drivers\adpahci.sys
20:23:32.0199 1120 adpahci - ok
20:23:32.0308 1120 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\drivers\adpu320.sys
20:23:32.0324 1120 adpu320 - ok
20:23:32.0402 1120 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
20:23:32.0417 1120 AeLookupSvc - ok
20:23:32.0527 1120 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
20:23:32.0558 1120 AFD - ok
20:23:32.0636 1120 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
20:23:32.0652 1120 agp440 - ok
20:23:32.0730 1120 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\drivers\djsvs.sys
20:23:32.0730 1120 aic78xx - ok
20:23:33.0214 1120 ALCXWDM (7997b6f02cbda0e31fa18cc85871b938) C:\Windows\system32\drivers\RTKVAC.SYS
20:23:33.0371 1120 ALCXWDM - ok
20:23:33.0589 1120 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
20:23:33.0605 1120 ALG - ok
20:23:33.0730 1120 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
20:23:33.0730 1120 aliide - ok
20:23:33.0808 1120 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
20:23:33.0808 1120 amdagp - ok
20:23:33.0871 1120 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
20:23:33.0871 1120 amdide - ok
20:23:33.0964 1120 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\drivers\amdk8.sys
20:23:33.0964 1120 AmdK8 - ok
20:23:34.0042 1120 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\drivers\amdppm.sys
20:23:34.0042 1120 AmdPPM - ok
20:23:34.0199 1120 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
20:23:34.0214 1120 amdsata - ok
20:23:34.0292 1120 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\drivers\amdsbs.sys
20:23:34.0308 1120 amdsbs - ok
20:23:34.0371 1120 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
20:23:34.0402 1120 amdxata - ok
20:23:34.0480 1120 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
20:23:34.0496 1120 AppID - ok
20:23:34.0574 1120 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
20:23:34.0589 1120 AppIDSvc - ok
20:23:34.0667 1120 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
20:23:34.0683 1120 Appinfo - ok
20:23:34.0761 1120 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
20:23:34.0777 1120 AppMgmt - ok
20:23:34.0871 1120 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\drivers\arc.sys
20:23:34.0871 1120 arc - ok
20:23:34.0964 1120 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\drivers\arcsas.sys
20:23:34.0964 1120 arcsas - ok
20:23:35.0027 1120 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
20:23:35.0027 1120 AsyncMac - ok
20:23:35.0136 1120 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
20:23:35.0136 1120 atapi - ok
20:23:35.0292 1120 Ati External Event Utility (86acb6a60c50e99eb8e68710d5a12654) C:\Windows\system32\Ati2evxx.exe
20:23:35.0308 1120 Ati External Event Utility - ok
20:23:35.0761 1120 atikmdag (7db96c2801a78513bdc133c25d07929e) C:\Windows\system32\DRIVERS\atikmdag.sys
20:23:35.0949 1120 atikmdag - ok
20:23:36.0199 1120 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
20:23:36.0214 1120 AudioEndpointBuilder - ok
20:23:36.0277 1120 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
20:23:36.0292 1120 Audiosrv - ok
20:23:36.0386 1120 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
20:23:36.0402 1120 AxInstSV - ok
20:23:36.0542 1120 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\drivers\bxvbdx.sys
20:23:36.0589 1120 b06bdrv - ok
20:23:36.0683 1120 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
20:23:36.0699 1120 b57nd60x - ok
20:23:36.0808 1120 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
20:23:36.0808 1120 BDESVC - ok
20:23:36.0902 1120 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
20:23:36.0902 1120 Beep - ok
20:23:37.0011 1120 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
20:23:37.0042 1120 BFE - ok
20:23:37.0214 1120 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
20:23:37.0246 1120 BITS - ok
20:23:37.0308 1120 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
20:23:37.0324 1120 blbdrive - ok
20:23:37.0402 1120 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
20:23:37.0417 1120 bowser - ok
20:23:37.0480 1120 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\BrFiltLo.sys
20:23:37.0480 1120 BrFiltLo - ok
20:23:37.0558 1120 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\BrFiltUp.sys
20:23:37.0574 1120 BrFiltUp - ok
20:23:37.0652 1120 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
20:23:37.0667 1120 Browser - ok
20:23:37.0777 1120 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
20:23:37.0808 1120 Brserid - ok
20:23:37.0855 1120 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
20:23:37.0871 1120 BrSerWdm - ok
20:23:37.0933 1120 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
20:23:37.0933 1120 BrUsbMdm - ok
20:23:38.0027 1120 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
20:23:38.0042 1120 BrUsbSer - ok
20:23:38.0183 1120 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\DRIVERS\BthEnum.sys
20:23:38.0183 1120 BthEnum - ok
20:23:38.0277 1120 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
20:23:38.0277 1120 BTHMODEM - ok
20:23:38.0371 1120 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys
20:23:38.0386 1120 BthPan - ok
20:23:38.0496 1120 BTHPORT (c2fbf6d271d9a94d839c416bf186ead9) C:\Windows\system32\Drivers\BTHport.sys
20:23:38.0542 1120 BTHPORT - ok
20:23:38.0621 1120 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
20:23:38.0621 1120 bthserv - ok
20:23:38.0699 1120 BTHUSB (c81e9413a25a439f436b1d4b6a0cf9e9) C:\Windows\system32\Drivers\BTHUSB.sys
20:23:38.0714 1120 BTHUSB - ok
20:23:38.0792 1120 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
20:23:38.0808 1120 cdfs - ok
20:23:38.0871 1120 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
20:23:38.0871 1120 cdrom - ok
20:23:38.0964 1120 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
20:23:38.0964 1120 CertPropSvc - ok
20:23:39.0058 1120 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\drivers\circlass.sys
20:23:39.0058 1120 circlass - ok
20:23:39.0214 1120 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
20:23:39.0230 1120 CLFS - ok
20:23:39.0386 1120 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:23:39.0386 1120 clr_optimization_v2.0.50727_32 - ok
20:23:39.0542 1120 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:23:39.0558 1120 clr_optimization_v4.0.30319_32 - ok
20:23:39.0636 1120 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\drivers\CmBatt.sys
20:23:39.0636 1120 CmBatt - ok
20:23:39.0683 1120 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
20:23:39.0683 1120 cmdide - ok
20:23:39.0792 1120 CNG (247b4ce2dab1160cd422d532d5241e1f) C:\Windows\system32\Drivers\cng.sys
20:23:39.0808 1120 CNG - ok
20:23:39.0886 1120 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\drivers\compbatt.sys
20:23:39.0902 1120 Compbatt - ok
20:23:39.0980 1120 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\DRIVERS\CompositeBus.sys
20:23:39.0996 1120 CompositeBus - ok
20:23:40.0058 1120 COMSysApp - ok
20:23:40.0183 1120 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\drivers\crcdisk.sys
20:23:40.0199 1120 crcdisk - ok
20:23:40.0308 1120 CryptSvc (06e771aa596b8761107ab57e99f128d7) C:\Windows\system32\cryptsvc.dll
20:23:40.0324 1120 CryptSvc - ok
20:23:40.0417 1120 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
20:23:40.0449 1120 CSC - ok
20:23:40.0574 1120 CscService (15f93b37f6801943360d9eb42485d5d3) C:\Windows\System32\cscsvc.dll
20:23:40.0589 1120 CscService - ok
20:23:40.0730 1120 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
20:23:40.0761 1120 DcomLaunch - ok
20:23:40.0855 1120 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
20:23:40.0871 1120 defragsvc - ok
20:23:40.0996 1120 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
20:23:40.0996 1120 DfsC - ok
20:23:41.0152 1120 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
20:23:41.0167 1120 Dhcp - ok
20:23:41.0230 1120 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
20:23:41.0230 1120 discache - ok
20:23:41.0324 1120 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\drivers\disk.sys
20:23:41.0324 1120 Disk - ok
20:23:41.0402 1120 dmvsc (2a958ef85db1b61ffca65044fa4bce9e) C:\Windows\system32\drivers\dmvsc.sys
20:23:41.0417 1120 dmvsc - ok
20:23:41.0511 1120 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
20:23:41.0527 1120 Dnscache - ok
20:23:41.0605 1120 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
20:23:41.0621 1120 dot3svc - ok
20:23:41.0699 1120 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
20:23:41.0714 1120 DPS - ok
20:23:41.0792 1120 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
20:23:41.0792 1120 drmkaud - ok
20:23:41.0886 1120 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
20:23:41.0933 1120 DXGKrnl - ok
20:23:42.0042 1120 E100B (20de769b84960606d8dbb2aec123021a) C:\Windows\system32\DRIVERS\e100b325.sys
20:23:42.0042 1120 E100B - ok
20:23:42.0183 1120 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
20:23:42.0199 1120 EapHost - ok
20:23:42.0496 1120 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\drivers\evbdx.sys
20:23:42.0621 1120 ebdrv - ok
20:23:42.0761 1120 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
20:23:42.0777 1120 EFS - ok
20:23:42.0917 1120 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
20:23:42.0949 1120 ehRecvr - ok
20:23:43.0011 1120 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
20:23:43.0011 1120 ehSched - ok
20:23:43.0214 1120 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\drivers\elxstor.sys
20:23:43.0246 1120 elxstor - ok
20:23:43.0308 1120 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
20:23:43.0308 1120 ErrDev - ok
20:23:43.0480 1120 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
20:23:43.0496 1120 EventSystem - ok
20:23:43.0574 1120 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
20:23:43.0589 1120 exfat - ok
20:23:43.0652 1120 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
20:23:43.0667 1120 fastfat - ok
20:23:43.0808 1120 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
20:23:43.0839 1120 Fax - ok
20:23:43.0902 1120 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
20:23:43.0902 1120 fdc - ok
20:23:43.0980 1120 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
20:23:43.0996 1120 fdPHost - ok
20:23:44.0027 1120 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
20:23:44.0027 1120 FDResPub - ok
20:23:44.0152 1120 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
20:23:44.0152 1120 FileInfo - ok
20:23:44.0199 1120 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
20:23:44.0199 1120 Filetrace - ok
20:23:44.0246 1120 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
20:23:44.0261 1120 flpydisk - ok
20:23:44.0324 1120 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
20:23:44.0339 1120 FltMgr - ok
20:23:44.0480 1120 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
20:23:44.0527 1120 FontCache - ok
20:23:44.0667 1120 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:23:44.0683 1120 FontCache3.0.0.0 - ok
20:23:44.0746 1120 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
20:23:44.0746 1120 FsDepends - ok
20:23:44.0871 1120 fssfltr (491e9d9a26a745f6ae7d570849f4bd87) C:\Windows\system32\DRIVERS\fssfltr.sys
20:23:44.0871 1120 fssfltr - ok
20:23:45.0136 1120 fsssvc (45b52394f9624237f33a8a3d73c0b221) C:\Program Files\Windows Live\Family Safety\fsssvc.exe
20:23:45.0183 1120 fsssvc - ok
20:23:45.0246 1120 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
20:23:45.0261 1120 Fs_Rec - ok
20:23:45.0355 1120 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
20:23:45.0386 1120 fvevol - ok
20:23:45.0464 1120 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\drivers\gagp30kx.sys
20:23:45.0464 1120 gagp30kx - ok
20:23:45.0589 1120 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
20:23:45.0621 1120 gpsvc - ok
20:23:45.0683 1120 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
20:23:45.0683 1120 hcw85cir - ok
20:23:45.0746 1120 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
20:23:45.0761 1120 HDAudBus - ok
20:23:45.0839 1120 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\drivers\HidBatt.sys
20:23:45.0855 1120 HidBatt - ok
20:23:45.0917 1120 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\drivers\hidbth.sys
20:23:45.0917 1120 HidBth - ok
20:23:45.0996 1120 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\drivers\hidir.sys
20:23:45.0996 1120 HidIr - ok
20:23:46.0152 1120 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
20:23:46.0152 1120 hidserv - ok
20:23:46.0230 1120 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
20:23:46.0230 1120 HidUsb - ok
20:23:46.0308 1120 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
20:23:46.0324 1120 hkmsvc - ok
20:23:46.0402 1120 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
20:23:46.0433 1120 HomeGroupListener - ok
20:23:46.0511 1120 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
20:23:46.0527 1120 HomeGroupProvider - ok
20:23:46.0605 1120 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
20:23:46.0605 1120 HpSAMD - ok
20:23:46.0714 1120 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
20:23:46.0746 1120 HTTP - ok
20:23:46.0808 1120 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
20:23:46.0808 1120 hwpolicy - ok
20:23:46.0871 1120 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
20:23:46.0886 1120 i8042prt - ok
20:23:46.0996 1120 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
20:23:47.0027 1120 iaStorV - ok
20:23:47.0261 1120 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:23:47.0308 1120 idsvc - ok
20:23:47.0386 1120 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\drivers\iirsp.sys
20:23:47.0386 1120 iirsp - ok
20:23:47.0527 1120 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
20:23:47.0558 1120 IKEEXT - ok
20:23:47.0636 1120 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
20:23:47.0652 1120 intelide - ok
20:23:47.0746 1120 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
20:23:47.0761 1120 intelppm - ok
20:23:47.0824 1120 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
20:23:47.0839 1120 IPBusEnum - ok
20:23:47.0902 1120 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:23:47.0902 1120 IpFilterDriver - ok
20:23:48.0042 1120 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
20:23:48.0121 1120 iphlpsvc - ok
20:23:48.0199 1120 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
20:23:48.0214 1120 IPMIDRV - ok
20:23:48.0292 1120 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
20:23:48.0292 1120 IPNAT - ok
20:23:48.0371 1120 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
20:23:48.0371 1120 IRENUM - ok
20:23:48.0433 1120 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
20:23:48.0433 1120 isapnp - ok
20:23:48.0511 1120 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
20:23:48.0542 1120 iScsiPrt - ok
20:23:48.0636 1120 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
20:23:48.0636 1120 kbdclass - ok
20:23:48.0699 1120 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\DRIVERS\kbdhid.sys
20:23:48.0699 1120 kbdhid - ok
20:23:48.0777 1120 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
20:23:48.0777 1120 KeyIso - ok
20:23:48.0871 1120 KSecDD (b7895b4182c0d16f6efadeb8081e8d36) C:\Windows\system32\Drivers\ksecdd.sys
20:23:48.0902 1120 KSecDD - ok
20:23:48.0964 1120 KSecPkg (d30159ac9237519fbc62c6ec247d2d46) C:\Windows\system32\Drivers\ksecpkg.sys
20:23:48.0980 1120 KSecPkg - ok
20:23:49.0152 1120 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
20:23:49.0183 1120 KtmRm - ok
20:23:49.0277 1120 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\system32\srvsvc.dll
20:23:49.0292 1120 LanmanServer - ok
20:23:49.0371 1120 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
20:23:49.0386 1120 LanmanWorkstation - ok
20:23:49.0464 1120 lgbusenum - ok
20:23:49.0542 1120 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
20:23:49.0558 1120 lltdio - ok
20:23:49.0621 1120 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
20:23:49.0652 1120 lltdsvc - ok
20:23:49.0714 1120 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
20:23:49.0714 1120 lmhosts - ok
20:23:49.0824 1120 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\drivers\lsi_fc.sys
20:23:49.0839 1120 LSI_FC - ok
20:23:49.0917 1120 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\drivers\lsi_sas.sys
20:23:49.0933 1120 LSI_SAS - ok
20:23:50.0027 1120 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\drivers\lsi_sas2.sys
20:23:50.0027 1120 LSI_SAS2 - ok
20:23:50.0121 1120 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\drivers\lsi_scsi.sys
20:23:50.0136 1120 LSI_SCSI - ok
20:23:50.0183 1120 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
20:23:50.0199 1120 luafv - ok
20:23:50.0308 1120 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
20:23:50.0308 1120 Mcx2Svc - ok
20:23:50.0371 1120 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\drivers\megasas.sys
20:23:50.0386 1120 megasas - ok
20:23:50.0480 1120 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\drivers\MegaSR.sys
20:23:50.0496 1120 MegaSR - ok
20:23:50.0652 1120 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
20:23:50.0652 1120 Microsoft Office Groove Audit Service - ok
20:23:50.0699 1120 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
20:23:50.0714 1120 MMCSS - ok
20:23:50.0761 1120 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
20:23:50.0761 1120 Modem - ok
20:23:50.0808 1120 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
20:23:50.0824 1120 monitor - ok
20:23:50.0871 1120 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
20:23:50.0886 1120 mouclass - ok
20:23:50.0949 1120 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
20:23:50.0964 1120 mouhid - ok
20:23:51.0011 1120 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
20:23:51.0027 1120 mountmgr - ok
20:23:51.0183 1120 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
20:23:51.0199 1120 MozillaMaintenance - ok
20:23:51.0292 1120 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\Windows\system32\DRIVERS\MpFilter.sys
20:23:51.0324 1120 MpFilter - ok
20:23:51.0402 1120 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
20:23:51.0417 1120 mpio - ok
20:23:51.0480 1120 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
20:23:51.0496 1120 mpsdrv - ok
20:23:51.0621 1120 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
20:23:51.0667 1120 MpsSvc - ok
20:23:51.0730 1120 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
20:23:51.0730 1120 MRxDAV - ok
20:23:51.0839 1120 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
20:23:51.0855 1120 mrxsmb - ok
20:23:51.0933 1120 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:23:51.0949 1120 mrxsmb10 - ok
20:23:52.0011 1120 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:23:52.0027 1120 mrxsmb20 - ok
20:23:52.0167 1120 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
20:23:52.0167 1120 msahci - ok
20:23:52.0230 1120 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
20:23:52.0246 1120 msdsm - ok
20:23:52.0324 1120 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
20:23:52.0339 1120 MSDTC - ok
20:23:52.0464 1120 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
20:23:52.0464 1120 Msfs - ok
20:23:52.0527 1120 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
20:23:52.0542 1120 mshidkmdf - ok
20:23:52.0605 1120 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
20:23:52.0605 1120 msisadrv - ok
20:23:52.0699 1120 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
20:23:52.0714 1120 MSiSCSI - ok
20:23:52.0761 1120 msiserver - ok
20:23:52.0839 1120 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
20:23:52.0855 1120 MSKSSRV - ok
20:23:53.0027 1120 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) c:\Program Files\Microsoft Security Client\MsMpEng.exe
20:23:53.0027 1120 MsMpSvc - ok
20:23:53.0167 1120 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
20:23:53.0167 1120 MSPCLOCK - ok
20:23:53.0246 1120 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
20:23:53.0246 1120 MSPQM - ok
20:23:53.0324 1120 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
20:23:53.0324 1120 MsRPC - ok
20:23:53.0417 1120 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
20:23:53.0417 1120 mssmbios - ok
20:23:53.0511 1120 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
20:23:53.0511 1120 MSTEE - ok
20:23:53.0574 1120 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\drivers\MTConfig.sys
20:23:53.0589 1120 MTConfig - ok
20:23:53.0652 1120 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
20:23:53.0652 1120 Mup - ok
20:23:53.0777 1120 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
20:23:53.0792 1120 napagent - ok
20:23:53.0902 1120 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
20:23:53.0917 1120 NativeWifiP - ok
20:23:54.0121 1120 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
20:23:54.0152 1120 NDIS - ok
20:23:54.0214 1120 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
20:23:54.0214 1120 NdisCap - ok
20:23:54.0292 1120 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
20:23:54.0308 1120 NdisTapi - ok
20:23:54.0371 1120 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
20:23:54.0371 1120 Ndisuio - ok
20:23:54.0449 1120 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
20:23:54.0449 1120 NdisWan - ok
20:23:54.0496 1120 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
20:23:54.0496 1120 NDProxy - ok
20:23:54.0589 1120 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
20:23:54.0589 1120 NetBIOS - ok
20:23:54.0652 1120 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
20:23:54.0667 1120 NetBT - ok
20:23:54.0746 1120 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
20:23:54.0746 1120 Netlogon - ok
20:23:54.0871 1120 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
20:23:54.0902 1120 Netman - ok
20:23:54.0996 1120 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
20:23:55.0011 1120 netprofm - ok
20:23:55.0214 1120 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:23:55.0230 1120 NetTcpPortSharing - ok
20:23:55.0339 1120 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\drivers\nfrd960.sys
20:23:55.0339 1120 nfrd960 - ok
20:23:55.0433 1120 NisDrv (b52f26bade7d7e4a79706e3fd91834cd) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
20:23:55.0433 1120 NisDrv - ok
20:23:55.0574 1120 NisSrv (290c0d4c4889398797f8df3be00b9698) c:\Program Files\Microsoft Security Client\NisSrv.exe
20:23:55.0589 1120 NisSrv - ok
20:23:55.0699 1120 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
20:23:55.0714 1120 NlaSvc - ok
20:23:55.0777 1120 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
20:23:55.0792 1120 Npfs - ok
20:23:55.0855 1120 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
20:23:55.0871 1120 nsi - ok
20:23:55.0949 1120 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
20:23:55.0949 1120 nsiproxy - ok
20:23:56.0261 1120 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
20:23:56.0308 1120 Ntfs - ok
20:23:56.0386 1120 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
20:23:56.0386 1120 Null - ok
20:23:56.0480 1120 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
20:23:56.0496 1120 nvraid - ok
20:23:56.0589 1120 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
20:23:56.0605 1120 nvstor - ok

[Monda]

20:23:56.0683 1120 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
20:23:56.0699 1120 nv_agp - ok
20:23:56.0886 1120 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:23:56.0917 1120 odserv - ok
20:23:56.0980 1120 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
20:23:56.0996 1120 ohci1394 - ok
20:23:57.0136 1120 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:23:57.0136 1120 ose - ok
20:23:57.0246 1120 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
20:23:57.0277 1120 p2pimsvc - ok
20:23:57.0386 1120 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
20:23:57.0402 1120 p2psvc - ok
20:23:57.0480 1120 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
20:23:57.0496 1120 Parport - ok
20:23:57.0558 1120 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\Windows\system32\drivers\partmgr.sys
20:23:57.0589 1120 partmgr - ok
20:23:57.0667 1120 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
20:23:57.0667 1120 Parvdm - ok
20:23:57.0746 1120 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
20:23:57.0761 1120 PcaSvc - ok
20:23:57.0871 1120 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
20:23:57.0871 1120 pci - ok
20:23:57.0917 1120 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
20:23:57.0917 1120 pciide - ok
20:23:57.0980 1120 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\drivers\pcmcia.sys
20:23:57.0996 1120 pcmcia - ok
20:23:58.0058 1120 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
20:23:58.0152 1120 pcw - ok
20:23:58.0277 1120 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
20:23:58.0308 1120 PEAUTH - ok
20:23:58.0480 1120 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
20:23:58.0527 1120 PeerDistSvc - ok
20:23:58.0792 1120 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
20:23:58.0871 1120 pla - ok
20:23:59.0058 1120 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
20:23:59.0136 1120 PlugPlay - ok
20:23:59.0199 1120 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
20:23:59.0214 1120 PNRPAutoReg - ok
20:23:59.0292 1120 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
20:23:59.0308 1120 PNRPsvc - ok
20:23:59.0417 1120 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
20:23:59.0449 1120 PolicyAgent - ok
20:23:59.0558 1120 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
20:23:59.0574 1120 Power - ok
20:23:59.0683 1120 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
20:23:59.0683 1120 PptpMiniport - ok
20:23:59.0777 1120 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\drivers\processr.sys
20:23:59.0777 1120 Processor - ok
20:23:59.0871 1120 ProfSvc (cadefac453040e370a1bdff3973be00d) C:\Windows\system32\profsvc.dll
20:23:59.0886 1120 ProfSvc - ok
20:23:59.0964 1120 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
20:23:59.0964 1120 ProtectedStorage - ok
20:24:00.0058 1120 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
20:24:00.0136 1120 Psched - ok
20:24:00.0339 1120 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\drivers\ql2300.sys
20:24:00.0402 1120 ql2300 - ok
20:24:00.0636 1120 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\drivers\ql40xx.sys
20:24:00.0652 1120 ql40xx - ok
20:24:00.0761 1120 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
20:24:00.0777 1120 QWAVE - ok
20:24:00.0839 1120 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
20:24:00.0855 1120 QWAVEdrv - ok
20:24:00.0902 1120 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
20:24:00.0917 1120 RasAcd - ok
20:24:01.0011 1120 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
20:24:01.0011 1120 RasAgileVpn - ok
20:24:01.0121 1120 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
20:24:01.0136 1120 RasAuto - ok
20:24:01.0199 1120 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
20:24:01.0199 1120 Rasl2tp - ok
20:24:01.0324 1120 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
20:24:01.0339 1120 RasMan - ok
20:24:01.0433 1120 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
20:24:01.0433 1120 RasPppoe - ok
20:24:01.0511 1120 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
20:24:01.0527 1120 RasSstp - ok
20:24:01.0605 1120 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
20:24:01.0621 1120 rdbss - ok
20:24:01.0667 1120 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
20:24:01.0683 1120 rdpbus - ok
20:24:01.0730 1120 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
20:24:01.0730 1120 RDPCDD - ok
20:24:01.0871 1120 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
20:24:01.0886 1120 RDPDR - ok
20:24:01.0949 1120 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
20:24:01.0949 1120 RDPENCDD - ok
20:24:02.0027 1120 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
20:24:02.0042 1120 RDPREFMP - ok
20:24:02.0214 1120 RdpVideoMiniport (68a0387f58e226deee23d9715955572a) C:\Windows\system32\drivers\rdpvideominiport.sys
20:24:02.0246 1120 RdpVideoMiniport - ok
20:24:02.0324 1120 RDPWD (f031683e6d1fea157abb2ff260b51e61) C:\Windows\system32\drivers\RDPWD.sys
20:24:02.0339 1120 RDPWD - ok
20:24:02.0433 1120 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
20:24:02.0449 1120 rdyboost - ok
20:24:02.0527 1120 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
20:24:02.0542 1120 RemoteAccess - ok
20:24:02.0605 1120 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
20:24:02.0621 1120 RemoteRegistry - ok
20:24:02.0730 1120 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\Windows\system32\DRIVERS\rfcomm.sys
20:24:02.0746 1120 RFCOMM - ok
20:24:02.0824 1120 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
20:24:02.0839 1120 RpcEptMapper - ok
20:24:02.0917 1120 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
20:24:02.0917 1120 RpcLocator - ok
20:24:03.0027 1120 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
20:24:03.0042 1120 RpcSs - ok
20:24:03.0199 1120 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
20:24:03.0199 1120 rspndr - ok
20:24:03.0292 1120 RTL8023xp (4e20765744bfbc16f6d6e5bd5598786b) C:\Windows\system32\DRIVERS\Rtnicxp.sys
20:24:03.0292 1120 RTL8023xp - ok
20:24:03.0355 1120 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
20:24:03.0371 1120 s3cap - ok
20:24:03.0433 1120 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
20:24:03.0449 1120 SamSs - ok
20:24:03.0511 1120 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
20:24:03.0542 1120 sbp2port - ok
20:24:03.0621 1120 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
20:24:03.0636 1120 SCardSvr - ok
20:24:03.0699 1120 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
20:24:03.0699 1120 scfilter - ok
20:24:03.0839 1120 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
20:24:03.0886 1120 Schedule - ok
20:24:03.0964 1120 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
20:24:03.0964 1120 SCPolicySvc - ok
20:24:04.0042 1120 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
20:24:04.0136 1120 SDRSVC - ok
20:24:04.0230 1120 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
20:24:04.0230 1120 secdrv - ok
20:24:04.0308 1120 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
20:24:04.0324 1120 seclogon - ok
20:24:04.0402 1120 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
20:24:04.0402 1120 SENS - ok
20:24:04.0480 1120 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
20:24:04.0496 1120 SensrSvc - ok
20:24:04.0574 1120 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
20:24:04.0574 1120 Serenum - ok
20:24:04.0636 1120 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
20:24:04.0652 1120 Serial - ok
20:24:04.0714 1120 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\drivers\sermouse.sys
20:24:04.0730 1120 sermouse - ok
20:24:04.0871 1120 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
20:24:04.0886 1120 SessionEnv - ok
20:24:04.0949 1120 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
20:24:04.0980 1120 sffdisk - ok
20:24:05.0027 1120 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
20:24:05.0042 1120 sffp_mmc - ok
20:24:05.0167 1120 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
20:24:05.0183 1120 sffp_sd - ok
20:24:05.0230 1120 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\drivers\sfloppy.sys
20:24:05.0246 1120 sfloppy - ok
20:24:05.0339 1120 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
20:24:05.0355 1120 SharedAccess - ok
20:24:05.0449 1120 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
20:24:05.0464 1120 ShellHWDetection - ok
20:24:05.0542 1120 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
20:24:05.0558 1120 sisagp - ok
20:24:05.0636 1120 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\drivers\SiSRaid2.sys
20:24:05.0636 1120 SiSRaid2 - ok
20:24:05.0699 1120 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\drivers\sisraid4.sys
20:24:05.0699 1120 SiSRaid4 - ok
20:24:05.0808 1120 SkypeUpdate (db0405d9aad62f0762e0876ac142b7e1) C:\Program Files\Skype\Updater\Updater.exe
20:24:05.0824 1120 SkypeUpdate - ok
20:24:05.0902 1120 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
20:24:05.0902 1120 Smb - ok
20:24:05.0996 1120 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
20:24:06.0011 1120 SNMPTRAP - ok
20:24:06.0167 1120 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
20:24:06.0167 1120 spldr - ok
20:24:06.0277 1120 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
20:24:06.0292 1120 Spooler - ok
20:24:06.0605 1120 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
20:24:06.0746 1120 sppsvc - ok
20:24:06.0902 1120 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
20:24:06.0902 1120 sppuinotify - ok
20:24:07.0058 1120 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
20:24:07.0121 1120 srv - ok
20:24:07.0230 1120 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
20:24:07.0261 1120 srv2 - ok
20:24:07.0324 1120 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
20:24:07.0339 1120 srvnet - ok
20:24:07.0433 1120 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
20:24:07.0449 1120 SSDPSRV - ok
20:24:07.0542 1120 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
20:24:07.0558 1120 SstpSvc - ok
20:24:07.0621 1120 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\drivers\stexstor.sys
20:24:07.0636 1120 stexstor - ok
20:24:07.0746 1120 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
20:24:07.0777 1120 StiSvc - ok
20:24:07.0855 1120 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
20:24:07.0855 1120 storflt - ok
20:24:07.0902 1120 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
20:24:07.0917 1120 storvsc - ok
20:24:07.0996 1120 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
20:24:07.0996 1120 swenum - ok
20:24:08.0167 1120 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
20:24:08.0199 1120 swprv - ok
20:24:08.0277 1120 Synth3dVsc (f2ad8960812fd111e20e84659ef19d43) C:\Windows\system32\drivers\synth3dvsc.sys
20:24:08.0292 1120 Synth3dVsc - ok
20:24:08.0464 1120 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
20:24:08.0527 1120 SysMain - ok
20:24:08.0621 1120 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
20:24:08.0621 1120 TabletInputService - ok
20:24:08.0730 1120 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
20:24:08.0761 1120 TapiSrv - ok
20:24:08.0824 1120 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
20:24:08.0839 1120 TBS - ok
20:24:09.0042 1120 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\drivers\tcpip.sys
20:24:09.0152 1120 Tcpip - ok
20:24:09.0246 1120 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\DRIVERS\tcpip.sys
20:24:09.0277 1120 TCPIP6 - ok
20:24:09.0386 1120 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
20:24:09.0386 1120 tcpipreg - ok
20:24:09.0480 1120 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
20:24:09.0480 1120 TDPIPE - ok
20:24:09.0558 1120 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
20:24:09.0574 1120 TDTCP - ok
20:24:09.0636 1120 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
20:24:09.0636 1120 tdx - ok
20:24:09.0699 1120 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\DRIVERS\termdd.sys
20:24:09.0699 1120 TermDD - ok
20:24:09.0777 1120 terminpt (052306fd76793d5d5ab5d9891fd1adbb) C:\Windows\system32\drivers\terminpt.sys
20:24:09.0792 1120 terminpt - ok
20:24:09.0886 1120 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
20:24:09.0933 1120 TermService - ok
20:24:10.0011 1120 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
20:24:10.0027 1120 Themes - ok
20:24:10.0152 1120 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
20:24:10.0152 1120 THREADORDER - ok
20:24:10.0246 1120 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
20:24:10.0277 1120 TrkWks - ok
20:24:10.0386 1120 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
20:24:10.0402 1120 TrustedInstaller - ok
20:24:10.0480 1120 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
20:24:10.0480 1120 tssecsrv - ok
20:24:10.0558 1120 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
20:24:10.0558 1120 TsUsbFlt - ok
20:24:10.0621 1120 TsUsbGD (01246f0baad7b68ec0f472aa41e33282) C:\Windows\system32\drivers\TsUsbGD.sys
20:24:10.0636 1120 TsUsbGD - ok
20:24:10.0714 1120 tsusbhub (045acb987c650d8186c6b4a692223860) C:\Windows\system32\drivers\tsusbhub.sys
20:24:10.0730 1120 tsusbhub - ok
20:24:10.0824 1120 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
20:24:10.0839 1120 tunnel - ok
20:24:10.0917 1120 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\drivers\uagp35.sys
20:24:10.0933 1120 uagp35 - ok
20:24:11.0011 1120 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
20:24:11.0027 1120 udfs - ok
20:24:11.0214 1120 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
20:24:11.0230 1120 UI0Detect - ok
20:24:11.0292 1120 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
20:24:11.0308 1120 uliagpkx - ok
20:24:11.0355 1120 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\DRIVERS\umbus.sys
20:24:11.0371 1120 umbus - ok
20:24:11.0449 1120 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\drivers\umpass.sys
20:24:11.0496 1120 UmPass - ok
20:24:11.0574 1120 UmRdpService (409994a8eaceee4e328749c0353527a0) C:\Windows\System32\umrdp.dll
20:24:11.0589 1120 UmRdpService - ok
20:24:11.0683 1120 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
20:24:11.0730 1120 upnphost - ok
20:24:11.0808 1120 usbaudio (1d9f2bd026e8e2d45033a4df3f16b78c) C:\Windows\system32\drivers\usbaudio.sys
20:24:11.0824 1120 usbaudio - ok
20:24:11.0902 1120 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
20:24:11.0902 1120 usbccgp - ok
20:24:11.0980 1120 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
20:24:11.0996 1120 usbcir - ok
20:24:12.0136 1120 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
20:24:12.0152 1120 usbehci - ok
20:24:12.0261 1120 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
20:24:12.0292 1120 usbhub - ok
20:24:12.0355 1120 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
20:24:12.0355 1120 usbohci - ok
20:24:12.0433 1120 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\drivers\usbprint.sys
20:24:12.0433 1120 usbprint - ok
20:24:12.0527 1120 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\drivers\USBSTOR.SYS
20:24:12.0527 1120 USBSTOR - ok
20:24:12.0589 1120 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys
20:24:12.0605 1120 usbuhci - ok
20:24:12.0667 1120 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
20:24:12.0683 1120 UxSms - ok
20:24:12.0777 1120 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
20:24:12.0777 1120 VaultSvc - ok
20:24:12.0855 1120 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
20:24:12.0871 1120 vdrvroot - ok
20:24:12.0964 1120 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
20:24:12.0996 1120 vds - ok
20:24:13.0152 1120 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
20:24:13.0167 1120 vga - ok
20:24:13.0230 1120 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
20:24:13.0230 1120 VgaSave - ok
20:24:13.0277 1120 VGPU - ok
20:24:13.0339 1120 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
20:24:13.0339 1120 vhdmp - ok
20:24:13.0417 1120 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
20:24:13.0433 1120 viaagp - ok
20:24:13.0480 1120 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\drivers\viac7.sys
20:24:13.0480 1120 ViaC7 - ok
20:24:13.0542 1120 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
20:24:13.0542 1120 viaide - ok
20:24:13.0621 1120 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
20:24:13.0636 1120 vmbus - ok
20:24:13.0683 1120 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
20:24:13.0683 1120 VMBusHID - ok
20:24:13.0761 1120 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
20:24:13.0777 1120 volmgr - ok
20:24:13.0871 1120 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
20:24:13.0886 1120 volmgrx - ok
20:24:13.0964 1120 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
20:24:13.0996 1120 volsnap - ok
20:24:14.0152 1120 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\drivers\vsmraid.sys
20:24:14.0167 1120 vsmraid - ok
20:24:14.0308 1120 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
20:24:14.0355 1120 VSS - ok
20:24:14.0417 1120 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
20:24:14.0433 1120 vwifibus - ok
20:24:14.0527 1120 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
20:24:14.0558 1120 W32Time - ok
20:24:14.0636 1120 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\drivers\wacompen.sys
20:24:14.0652 1120 WacomPen - ok
20:24:14.0746 1120 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
20:24:14.0746 1120 WANARP - ok
20:24:14.0792 1120 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
20:24:14.0808 1120 Wanarpv6 - ok
20:24:15.0011 1120 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
20:24:15.0121 1120 WatAdminSvc - ok
20:24:15.0292 1120 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
20:24:15.0355 1120 wbengine - ok
20:24:15.0417 1120 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
20:24:15.0433 1120 WbioSrvc - ok
20:24:15.0542 1120 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
20:24:15.0574 1120 wcncsvc - ok
20:24:15.0621 1120 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
20:24:15.0636 1120 WcsPlugInService - ok
20:24:15.0730 1120 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\drivers\wd.sys
20:24:15.0730 1120 Wd - ok
20:24:15.0855 1120 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
20:24:15.0886 1120 Wdf01000 - ok
20:24:15.0964 1120 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
20:24:15.0980 1120 WdiServiceHost - ok
20:24:16.0027 1120 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
20:24:16.0042 1120 WdiSystemHost - ok
20:24:16.0199 1120 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
20:24:16.0214 1120 WebClient - ok
20:24:16.0292 1120 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
20:24:16.0308 1120 Wecsvc - ok
20:24:16.0402 1120 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
20:24:16.0417 1120 wercplsupport - ok
20:24:16.0496 1120 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
20:24:16.0511 1120 WerSvc - ok
20:24:16.0589 1120 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
20:24:16.0589 1120 WfpLwf - ok
20:24:16.0667 1120 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
20:24:16.0667 1120 WIMMount - ok
20:24:16.0839 1120 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
20:24:16.0871 1120 WinDefend - ok
20:24:16.0933 1120 WinHttpAutoProxySvc - ok
20:24:17.0058 1120 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
20:24:17.0058 1120 Winmgmt - ok
20:24:17.0308 1120 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
20:24:17.0355 1120 WinRM - ok
20:24:17.0574 1120 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
20:24:17.0621 1120 Wlansvc - ok
20:24:17.0714 1120 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
20:24:17.0730 1120 WmiAcpi - ok
20:24:17.0855 1120 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
20:24:17.0871 1120 wmiApSrv - ok
20:24:18.0199 1120 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
20:24:18.0246 1120 WMPNetworkSvc - ok
20:24:18.0324 1120 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
20:24:18.0324 1120 WPCSvc - ok
20:24:18.0402 1120 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
20:24:18.0417 1120 WPDBusEnum - ok
20:24:18.0511 1120 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
20:24:18.0511 1120 ws2ifsl - ok
20:24:18.0589 1120 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\System32\wscsvc.dll
20:24:18.0605 1120 wscsvc - ok
20:24:18.0652 1120 WSearch - ok
20:24:18.0917 1120 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
20:24:18.0996 1120 wuauserv - ok
20:24:19.0277 1120 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
20:24:19.0292 1120 WudfPf - ok
20:24:19.0386 1120 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
20:24:19.0402 1120 WUDFRd - ok
20:24:19.0496 1120 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
20:24:19.0511 1120 wudfsvc - ok
20:24:19.0574 1120 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
20:24:19.0605 1120 WwanSvc - ok
20:24:19.0824 1120 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
20:24:20.0980 1120 \Device\Harddisk0\DR0 - ok
20:24:21.0027 1120 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk1\DR1
20:24:21.0042 1120 \Device\Harddisk1\DR1 - ok
20:24:21.0152 1120 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk2\DR2
20:24:21.0824 1120 \Device\Harddisk2\DR2 - ok
20:24:21.0855 1120 Boot (0x1200) (56e3d7b410c037f5a7b84a0225785ee8) \Device\Harddisk0\DR0\Partition0
20:24:21.0855 1120 \Device\Harddisk0\DR0\Partition0 - ok
20:24:21.0902 1120 Boot (0x1200) (2861f26c49c0cb3b1ae77d87b07d0356) \Device\Harddisk1\DR1\Partition0
20:24:21.0917 1120 \Device\Harddisk1\DR1\Partition0 - ok
20:24:21.0964 1120 Boot (0x1200) (54557f98f0c5e24899ad17b3bc7a876b) \Device\Harddisk2\DR2\Partition0
20:24:21.0980 1120 \Device\Harddisk2\DR2\Partition0 - ok
20:24:21.0996 1120 ============================================================
20:24:21.0996 1120 Scan finished
20:24:21.0996 1120 ============================================================
20:24:22.0058 1112 Detected object count: 0
20:24:22.0058 1112 Actual detected object count: 0
20:25:35.0434 3780 Deinitialize success

[jaro3]

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

ClearJavaCache::
File::
c:\program files\Skype\Updater\Updater.exe

Driver::
SkypeUpdate

RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.