Zdravím,
prosím o kontrolu logu. PC už moc neběží jak má. Tedy je docela zpomalené a schytává to i internet.
Předem díky moc :-)
Logfile of random's system information tool 1.09 (written by random/random)
Run by Pája at 2012-08-19 08:52:50
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 11 GB (11%) free of 100 GB
Total RAM: 2046 MB (64% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:52:55, on 19.8.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Application Updater\ApplicationUpdater.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\PDF24\pdf24.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files\McAfee Security Scan\3.0.207\SSScheduler.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\TC UP\TC UP.exe
C:\Program Files\TC UP\TOTALCMD.EXE
C:\Documents and Settings\Pája\Dokumenty\Stažené soubory\RSIT(1).exe
C:\Program Files\trend micro\Pája.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: YTD Toolbar - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files\YTD Toolbar\IE\6.2\ytdToolbarIE.dll
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: YTD Toolbar - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files\YTD Toolbar\IE\6.2\ytdToolbarIE.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: YTD Toolbar - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files\YTD Toolbar\IE\6.2\ytdToolbarIE.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [36X Raid Configurer] C:\WINDOWS\system32\xRaidSetup.exe boot
O4 - HKLM\..\Run: [Gainward] C:\WINDOWS\TBPanel.exe /A
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [PDFPrint] C:\Program Files\PDF24\pdf24.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [USBToolTip] C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
O4 - HKLM\..\Run: [SearchSettings] "C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [KiesHelper] C:\Program Files\Samsung\Kies\KiesHelper.exe /s
O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Xvid] C:\Program Files\Xvid\CheckUpdate.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.0.207\SSScheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Unibet - {00000000-0000-0000-0000-000000000000} - C:\MicroGaming\Poker\unibetpokerMPP\MPPoker.exe (HKCU)
O9 - Extra button: Unibet - {F4AC6B35-48A5-4B24-808D-35DC943202D5} - C:\Microgaming\Poker\unibetpokerMPP\MPPoker.exe (HKCU)
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files\Application Updater\ApplicationUpdater.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.0.207\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
--
End of file - 11924 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-DOMA-D09628956E-Pája.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\AutoKMS.job
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\HP Photo Creations Messager.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{074C1DC5-9320-4A9A-947D-C042949C6216}]
ContributeBHO Class - C:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll [2010-03-27 164312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-04-04 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 4221328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-07-03 1160792]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-07-05 4018888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3FEE66E-E034-436a-86E4-9690573BEE8A}]
YTD Toolbar - C:\Program Files\YTD Toolbar\IE\6.2\ytdToolbarIE.dll [2012-07-26 1213832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - Contribute Toolbar - C:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll [2010-03-27 164312]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-07-03 1160792]
{F3FEE66E-E034-436a-86E4-9690573BEE8A} - YTD Toolbar - C:\Program Files\YTD Toolbar\IE\6.2\ytdToolbarIE.dll [2012-07-26 1213832]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-11-14 16270848]
"SkyTel"=C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"JMB36X IDE Setup"=C:\WINDOWS\RaidTool\xInsIDE.exe [2010-09-07 43608]
"36X Raid Configurer"=C:\WINDOWS\system32\xRaidSetup.exe [2010-09-07 1976920]
"Gainward"=C:\WINDOWS\TBPanel.exe [2007-04-23 2173744]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-07-03 4273976]
"AdobeAAMUpdater-1.0"=C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 500208]
"AdobeCS5ServiceManager"=C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"SwitchBoard"=C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-05-30 59280]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712]
"KiesTrayAgent"=C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2012-03-31 3521424]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2011-03-24 49208]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-09 153136]
"PDFPrint"=C:\Program Files\PDF24\pdf24.exe [2012-04-03 160840]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2012-06-07 421776]
"USBToolTip"=C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe [2007-02-20 199752]
""= []
"SearchSettings"=C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe [2012-07-26 1095560]
"TaskTray"= []
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-07-27 98304]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-02-13 3481408]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"KiesHelper"=C:\Program Files\Samsung\Kies\KiesHelper.exe [2012-03-31 954256]
"KiesPDLR"=C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2012-03-31 21392]
"AdobeBridge"= []
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]
"Xvid"=C:\Program Files\Xvid\CheckUpdate.exe [2011-01-17 8192]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2012-07-13 17418928]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.0.207\SSScheduler.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2012-07-28 192512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 4221328]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\TC UP\PLUGINS\Media\uTorrent\utorrent.exe"="C:\Program Files\TC UP\PLUGINS\Media\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\ICQ7.7\ICQ.exe"="C:\Program Files\ICQ7.7\ICQ.exe:*:Enabled:ICQ7.7"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour Service"
"C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\vbc.exe"="C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\vbc.exe:*:Enabled:Visual Basic Command Line Compiler"
"C:\Program Files\TC UP\TOTALCMD.EXE"="C:\Program Files\TC UP\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit"
"C:\WINDOWS\system32\muzapp.exe"="C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player"
"C:\Program Files\HP\HP Photosmart 5510d series\Bin\DeviceSetup.exe"="C:\Program Files\HP\HP Photosmart 5510d series\Bin\DeviceSetup.exe:LocalSubNet:Enabled:Instalace zařízení HP (HP Photosmart 5510d series)"
"C:\Program Files\HP\HP Photosmart 5510d series\Bin\HPNetworkCommunicator.exe"="C:\Program Files\HP\HP Photosmart 5510d series\Bin\HPNetworkCommunicator.exe:LocalSubNet:Enabled:Síťový komunikátor HP (HP Photosmart 5510d series)"
"C:\Program Files\Ubisoft\Far Cry 2\bin\farcry2.exe"="C:\Program Files\Ubisoft\Far Cry 2\bin\farcry2.exe:*:Enabled:Far Cry® 2"
"C:\Program Files\UBISOFT\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Game.exe"="C:\Program Files\UBISOFT\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Game.exe:*:Enabled:R6Vegas2_Game"
"C:\Program Files\Ubisoft2\Ghost Recon Advanced Warfighter 2\graw2.exe"="C:\Program Files\Ubisoft2\Ghost Recon Advanced Warfighter 2\graw2.exe:*:Enabled:Ghost Recon Advanced Warfighter® 2"
"C:\Program Files\Microsoft Office\Office14\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office14\GROOVE.EXE:*:Enabled:Microsoft SharePoint Workspace"
"C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE:*:Enabled:Microsoft OneNote"
"C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe"="C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Pinnacle\Studio 15\Programs\RM.exe"="C:\Program Files\Pinnacle\Studio 15\Programs\RM.exe:*:Enabled:Render Manager"
"C:\Program Files\Pinnacle\Studio 15\Programs\Studio.exe"="C:\Program Files\Pinnacle\Studio 15\Programs\Studio.exe:*:Enabled:Studio"
"C:\Program Files\Pinnacle\Studio 15\Programs\umi.exe"="C:\Program Files\Pinnacle\Studio 15\Programs\umi.exe:*:Enabled:umi"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Activision\Call of Duty - Black Ops\BlackOps.exe"="C:\Program Files\Activision\Call of Duty - Black Ops\BlackOps.exe:*:Enabled:BlackOps"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.7\ICQ.exe"="C:\Program Files\ICQ7.7\ICQ.exe:*:Enabled:ICQ7.7"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=l3codecp.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"vidc.mjpg"=pvmjpg30.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - open - "C:\Program Files\Adobe\Adobe Dreamweaver CS5\Dreamweaver.exe","%1"
======List of files/folders created in the last 1 month======
2012-08-16 19:04:46 ----D---- C:\Program Files\Activision
2012-08-16 18:02:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\ATI
2012-08-16 17:37:46 ----D---- C:\Program Files\Driver-Soft
2012-08-16 16:26:37 ----D---- C:\Documents and Settings\Pája\Data aplikací\ATI
2012-08-16 16:17:11 ----A---- C:\WINDOWS\system32\drivers\AtihdXP3.sys
2012-08-16 16:16:54 ----A---- C:\WINDOWS\system32\Oemdspif.dll
2012-08-16 16:16:54 ----A---- C:\WINDOWS\system32\ativva6x.dat
2012-08-16 16:16:54 ----A---- C:\WINDOWS\system32\atitvo32.dll
2012-08-16 16:16:54 ----A---- C:\WINDOWS\system32\ATIDEMGX.dll
2012-08-16 16:16:54 ----A---- C:\WINDOWS\system32\ati2edxx.dll
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\ativvamv.dll
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\ativva5x.dat
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\ativcoxx.dll
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\atipdlxx.dll
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\atiok3x2.dll
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\atioglxx.dll
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\ATIODE.exe
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\atimpc32.dll
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\atikvmag.dll
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\atiiiexx.dll
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\atiicdxx.dat
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\ATIDDC.DLL
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\atibtmon.exe
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\Ati2mdxx.exe
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\ati2evxx.exe
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\ati2evxx.dll
2012-08-16 16:16:53 ----A---- C:\WINDOWS\system32\amdpcom32.dll
2012-08-16 15:59:32 ----D---- C:\AMD
2012-08-16 15:45:45 ----D---- C:\Program Files\AMD APP
2012-08-16 15:44:12 ----D---- C:\Program Files\ATI Technologies
2012-08-16 15:44:09 ----D---- C:\Program Files\ATI
2012-08-16 15:33:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2712808$
2012-08-16 15:33:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2731847$
2012-08-16 15:28:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2705219$
2012-08-16 15:28:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2723135$
2012-08-16 15:23:31 ----D---- C:\Program Files\GIGABYTE
2012-08-16 15:23:12 ----D---- C:\WINDOWS\Downloaded Installations
2012-08-16 15:17:32 ----A---- C:\WINDOWS\system32\d3d9caps.dat
2012-08-14 17:50:25 ----SHD---- C:\$RECYCLE.BIN
2012-08-12 12:15:29 ----D---- C:\Program Files\CPUID
2012-08-12 12:03:09 ----D---- C:\Program Files\Lavalys
2012-08-10 09:27:44 ----D---- C:\Ocelová pěst CZ - DVD
2012-08-09 14:13:03 ----D---- C:\Documents and Settings\Pája\Data aplikací\HateML
2012-08-08 16:21:43 ----D---- C:\Documents and Settings\Pája\Data aplikací\HellShare Upload Manager
2012-08-08 16:17:22 ----D---- C:\Program Files\HellShare Upload Manager
2012-07-28 09:23:51 ----D---- C:\Documents and Settings\Pája\Data aplikací\YTD
2012-07-28 09:23:51 ----D---- C:\Documents and Settings\Pája\Data aplikací\wtxpcom
2012-07-28 08:22:46 ----D---- C:\Documents and Settings\Pája\Data aplikací\Search Settings
2012-07-28 08:22:40 ----D---- C:\Program Files\YTD Toolbar
2012-07-28 08:22:40 ----D---- C:\Program Files\Common Files\Spigot
2012-07-28 08:22:40 ----D---- C:\Program Files\Application Updater
2012-07-25 13:34:05 ----D---- C:\Program Files\Common Files\Skype
======List of files/folders modified in the last 1 month======
2012-08-19 08:52:53 ----D---- C:\Program Files\trend micro
2012-08-19 08:52:37 ----D---- C:\WINDOWS\Prefetch
2012-08-19 08:48:44 ----D---- C:\Documents and Settings\Pája\Data aplikací\uTorrent
2012-08-19 08:41:48 ----D---- C:\Documents and Settings\Pája\Data aplikací\Skype
2012-08-19 08:03:16 ----D---- C:\Documents and Settings\Pája\Data aplikací\vlc
2012-08-19 07:50:57 ----D---- C:\WINDOWS\Temp
2012-08-19 07:36:37 ----SD---- C:\WINDOWS\Tasks
2012-08-18 22:05:49 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-08-18 22:05:48 ----D---- C:\WINDOWS\system32\CatRoot2
2012-08-18 16:50:48 ----D---- C:\WINDOWS
2012-08-18 12:45:42 ----RSD---- C:\WINDOWS\Fonts
2012-08-17 09:09:43 ----D---- C:\Program Files\PokerStars
2012-08-16 19:31:00 ----SHD---- C:\WINDOWS\Installer
2012-08-16 19:30:59 ----HD---- C:\Config.Msi
2012-08-16 19:29:43 ----D---- C:\WINDOWS\system32\DirectX
2012-08-16 19:29:42 ----HD---- C:\WINDOWS\inf
2012-08-16 19:28:21 ----RSD---- C:\WINDOWS\assembly
2012-08-16 19:26:59 ----D---- C:\WINDOWS\Logs
2012-08-16 19:04:46 ----RD---- C:\Program Files
2012-08-16 19:02:04 ----D---- C:\Documents and Settings\Pája\Data aplikací\DAEMON Tools Lite
2012-08-16 18:15:28 ----D---- C:\WINDOWS\Minidump
2012-08-16 18:15:28 ----D---- C:\WINDOWS\Debug
2012-08-16 18:01:12 ----D---- C:\WINDOWS\system32
2012-08-16 17:56:25 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-08-16 17:56:21 ----D---- C:\WINDOWS\system32\drivers
2012-08-16 17:56:15 ----D---- C:\WINDOWS\system32\ReinstallBackups
2012-08-16 17:56:12 ----DC---- C:\WINDOWS\system32\DRVSTORE
2012-08-16 16:26:38 ----D---- C:\WINDOWS\system32\config
2012-08-16 15:38:45 ----D---- C:\Program Files\NVIDIA Corporation
2012-08-16 15:38:42 ----D---- C:\WINDOWS\Help
2012-08-16 15:36:19 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2012-08-16 15:33:09 ----HD---- C:\WINDOWS\$hf_mig$
2012-08-16 15:29:16 ----A---- C:\WINDOWS\system32\MRT.exe
2012-08-16 15:28:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2012-08-16 15:25:29 ----D---- C:\Program Files\Internet Explorer
2012-08-16 15:25:19 ----D---- C:\WINDOWS\ie8updates
2012-08-16 15:23:42 ----HD---- C:\Program Files\InstallShield Installation Information
2012-08-14 10:45:04 ----A---- C:\WINDOWS\DFC.INI
2012-08-11 07:36:03 ----A---- C:\WINDOWS\NeroDigital.ini
2012-08-04 16:05:58 ----D---- C:\Program Files\CCleaner
2012-08-02 14:17:49 ----D---- C:\Documents and Settings\Pája\Data aplikací\Microgaming
2012-07-28 08:22:41 ----D---- C:\WINDOWS\WinSxS
2012-07-28 08:22:40 ----D---- C:\Program Files\Common Files
2012-07-28 04:01:10 ----A---- C:\WINDOWS\system32\ati2dvag.dll
2012-07-28 03:57:20 ----A---- C:\WINDOWS\system32\ati3duag.dll
2012-07-28 03:34:44 ----A---- C:\WINDOWS\system32\ativvaxx.dll
2012-07-28 03:17:34 ----A---- C:\WINDOWS\system32\ati2cqag.dll
2012-07-25 13:34:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2012-07-25 13:34:05 ----RD---- C:\Program Files\Skype
2012-07-21 14:05:57 ----D---- C:\Documents and Settings\Pája\Data aplikací\Adobe
2012-07-21 13:04:27 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 JGOGO;JMicron Hot-Plug Driver; C:\WINDOWS\system32\DRIVERS\JGOGO.sys [2006-02-08 6912]
R0 JRAID;JRAID; C:\WINDOWS\system32\DRIVERS\jraid.sys [2010-10-29 104536]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-07-09 45200]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-07-03 25256]
R1 AswRdr;aswRdr; C:\WINDOWS\system32\drivers\AswRdr.sys [2012-07-03 35928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-07-03 721000]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-07-03 353688]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-07-03 54232]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2012-04-03 242240]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 VD_FileDisk;VD_FileDisk; C:\WINDOWS\system32\drivers\VD_FileDisk.sys [2011-01-26 24680]
R2 acedrv11;acedrv11; \??\C:\WINDOWS\system32\drivers\acedrv11.sys []
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-07-03 21256]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-07-03 97608]
R2 TBPanel;TBPanel; C:\WINDOWS\system32\drivers\TBPanel.sys [2007-03-16 12256]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2012-07-28 6646784]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdXP3.sys [2012-05-14 103040]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-11-15 4225920]
R3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\WINDOWS\system32\DRIVERS\serscan.sys [2001-10-24 6784]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2010-09-23 298784]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\WINDOWS\System32\Drivers\ssadadb.sys [2010-05-25 30312]
S3 Cardex;Cardex; \??\C:\WINDOWS\system32\drivers\TBPANEL.SYS []
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2012-04-03 17480]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2006-04-12 49664]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2006-04-12 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-10-21 21568]
S3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2004-08-03 1897408]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\WINDOWS\system32\DRIVERS\ssadbus.sys [2010-05-25 96488]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\WINDOWS\system32\DRIVERS\ssadmdfl.sys [2010-05-25 12776]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\WINDOWS\system32\DRIVERS\ssadmdm.sys [2010-05-25 121576]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\WINDOWS\system32\DRIVERS\ssadserd.sys [2010-05-25 98152]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\WINDOWS\system32\DRIVERS\sscdbus.sys [2010-04-27 104648]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys [2010-04-27 14920]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\WINDOWS\system32\DRIVERS\sscdmdm.sys [2010-04-27 132424]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2012-02-15 43520]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-05-24 55184]
R2 Application Updater;Application Updater; C:\Program Files\Application Updater\ApplicationUpdater.exe [2012-07-26 794560]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2012-07-28 643072]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-07-03 44808]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2006-03-03 69632]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-07-05 3048136]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2012-06-07 821648]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-03 136176]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-16 250056]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2012-07-10 654848]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-03 136176]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.0.207\McCHSvc.exe [2011-06-17 237008]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-07-18 113120]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Prosím o zkontrolování logu - zpomalené PC
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o zkontrolování logu - zpomalené PC
viewtopic.php?f=70&t=5119
Odinstaluj:
McAfee Security Scan
YTD Toolbar
Contribute Toolbar
Spigot\Search Settings
Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod
Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.
Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.
Pokud budou problémy , spusť v nouz. režimu.
Odinstaluj:
McAfee Security Scan
YTD Toolbar
Contribute Toolbar
Spigot\Search Settings
Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod
Kód: Vybrat vše
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: YTD Toolbar - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files\YTD Toolbar\IE\6.2\ytdToolbarIE.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: YTD Toolbar - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files\YTD Toolbar\IE\6.2\ytdToolbarIE.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
O3 - Toolbar: YTD Toolbar - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files\YTD Toolbar\IE\6.2\ytdToolbarIE.dll
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SearchSettings] "C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe"
O4 - HKCU\..\Run: [Xvid] C:\Program Files\Xvid\CheckUpdate.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.0.207\SSScheduler.exe
Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.
Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.
Pokud budou problémy , spusť v nouz. režimu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Prosím o zkontrolování logu - zpomalené PC
Tak jsem vše udělal.
Zde je log:
Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org
Verze databáze: v2012.08.19.04
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Pája :: PAJA [administrátor]
19.8.2012 15:29:31
mbam-log-2012-08-19 (15-39-02).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 196753
Uplynulý čas: 8 minut, 17 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 1
C:\WINDOWS\KMSEmulator.exe (RiskWare.Tool.CK) -> Žádná instrukce nebyla provedena.
(konec)
Zde je log:
Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org
Verze databáze: v2012.08.19.04
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Pája :: PAJA [administrátor]
19.8.2012 15:29:31
mbam-log-2012-08-19 (15-39-02).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 196753
Uplynulý čas: 8 minut, 17 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 1
C:\WINDOWS\KMSEmulator.exe (RiskWare.Tool.CK) -> Žádná instrukce nebyla provedena.
(konec)
-
Žbeky
- Moderátor
-
Guru Level 13
- Příspěvky: 22288
- Registrován: květen 08
- Bydliště: Vsetín - Pardubice
- Pohlaví:
- Stav:
Offline
Re: Prosím o zkontrolování logu - zpomalené PC
Znovu spusť MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- ujistit se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Remove Selected
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Stáhni si TDSSKiller
Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.
Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- ujistit se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Remove Selected
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Stáhni si TDSSKiller
Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.
Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.
V SZ řeším jen záležitosti týkající se fóra. Na prosby a žádosti o technickou podporu nereaguji. Díky za pochopení.
HiJackThis + návod - HW Monitor - Jak označit příspěvek za vyřešený - Pravidla fóra
HiJackThis + návod - HW Monitor - Jak označit příspěvek za vyřešený - Pravidla fóra
Re: Prosím o zkontrolování logu - zpomalené PC
Vše hotovo.
Logy:
Mbam:
Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org
Verze databáze: v2012.08.19.04
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Pája :: PAJA [administrátor]
20.8.2012 16:59:45
mbam-log-2012-08-20 (16-59-45).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 196811
Uplynulý čas: 5 minut, 29 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 1
C:\WINDOWS\KMSEmulator.exe (RiskWare.Tool.CK) -> Umístnění do karantény a smazání se zdařilo.
(konec)
TDSSKiller:
17:14:17.0687 0164 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03
17:14:17.0828 0164 ============================================================
17:14:17.0828 0164 Current date / time: 2012/08/20 17:14:17.0828
17:14:17.0828 0164 SystemInfo:
17:14:17.0828 0164
17:14:17.0828 0164 OS Version: 5.1.2600 ServicePack: 3.0
17:14:17.0828 0164 Product type: Workstation
17:14:17.0828 0164 ComputerName: PAJA
17:14:17.0828 0164 UserName: Pája
17:14:17.0828 0164 Windows directory: C:\WINDOWS
17:14:17.0828 0164 System windows directory: C:\WINDOWS
17:14:17.0828 0164 Processor architecture: Intel x86
17:14:17.0828 0164 Number of processors: 2
17:14:17.0828 0164 Page size: 0x1000
17:14:17.0828 0164 Boot type: Normal boot
17:14:17.0828 0164 ============================================================
17:14:19.0109 0164 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0CADE00 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1D9262, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x10, Type 'K0', Flags 0x00000054
17:14:19.0109 0164 ============================================================
17:14:19.0109 0164 \Device\Harddisk0\DR0:
17:14:19.0109 0164 MBR partitions:
17:14:19.0109 0164 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC350151
17:14:19.0109 0164 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xC3501CF, BlocksNum 0x30D3FE21
17:14:19.0125 0164 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3D09002F, BlocksNum 0x37675DC1
17:14:19.0125 0164 ============================================================
17:14:19.0156 0164 C: <-> \Device\Harddisk0\DR0\Partition1
17:14:19.0234 0164 E: <-> \Device\Harddisk0\DR0\Partition2
17:14:19.0250 0164 D: <-> \Device\Harddisk0\DR0\Partition3
17:14:19.0250 0164 ============================================================
17:14:19.0250 0164 Initialize success
17:14:19.0250 0164 ============================================================
17:14:21.0468 2796 ============================================================
17:14:21.0468 2796 Scan started
17:14:21.0468 2796 Mode: Manual;
17:14:21.0468 2796 ============================================================
17:14:22.0390 2796 ================ Scan system memory ========================
17:14:22.0390 2796 System memory - ok
17:14:22.0390 2796 ================ Scan services =============================
17:14:22.0500 2796 [ 0B27AE82C113D3687024D18459440426 ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
17:14:22.0500 2796 Aavmker4 - ok
17:14:22.0515 2796 Abiosdsk - ok
17:14:22.0515 2796 abp480n5 - ok
17:14:22.0546 2796 [ E6F53D6C0DEA3D375362265E175CA638 ] acedrv11 C:\WINDOWS\system32\drivers\acedrv11.sys
17:14:22.0562 2796 acedrv11 - ok
17:14:22.0578 2796 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:14:22.0578 2796 ACPI - ok
17:14:22.0609 2796 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
17:14:22.0609 2796 ACPIEC - ok
17:14:22.0687 2796 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:14:22.0687 2796 AdobeFlashPlayerUpdateSvc - ok
17:14:22.0687 2796 adpu160m - ok
17:14:22.0718 2796 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
17:14:22.0718 2796 aec - ok
17:14:22.0750 2796 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
17:14:22.0750 2796 AFD - ok
17:14:22.0765 2796 Aha154x - ok
17:14:22.0765 2796 aic78u2 - ok
17:14:22.0781 2796 aic78xx - ok
17:14:22.0796 2796 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
17:14:22.0796 2796 Alerter - ok
17:14:22.0812 2796 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
17:14:22.0812 2796 ALG - ok
17:14:22.0828 2796 AliIde - ok
17:14:22.0828 2796 amsint - ok
17:14:22.0859 2796 [ DD8D9C597AF7CD2F6B70A3D6A4A1ACEA ] androidusb C:\WINDOWS\system32\Drivers\ssadadb.sys
17:14:22.0875 2796 androidusb - ok
17:14:22.0953 2796 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:14:22.0968 2796 Apple Mobile Device - ok
17:14:22.0968 2796 AppMgmt - ok
17:14:22.0968 2796 asc - ok
17:14:22.0968 2796 asc3350p - ok
17:14:22.0984 2796 asc3550 - ok
17:14:23.0015 2796 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
17:14:23.0015 2796 aspnet_state - ok
17:14:23.0015 2796 [ 1C1F3D6DDDC046C920C493A779649F66 ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
17:14:23.0015 2796 aswFsBlk - ok
17:14:23.0031 2796 [ 9E912FE7B41650701EF2B227ACA440F3 ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
17:14:23.0031 2796 aswMon2 - ok
17:14:23.0031 2796 [ 982E275D1C5801042FE94209FB0160FB ] AswRdr C:\WINDOWS\system32\drivers\AswRdr.sys
17:14:23.0031 2796 AswRdr - ok
17:14:23.0046 2796 [ 73DBCF808E00580F2A47F93DD9B03876 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
17:14:23.0062 2796 aswSnx - ok
17:14:23.0062 2796 [ 6CBD7D3A33F498D09C831CDD732DA2E0 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
17:14:23.0078 2796 aswSP - ok
17:14:23.0078 2796 [ 7109A9AA551F37CD168C02368465957E ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
17:14:23.0078 2796 aswTdi - ok
17:14:23.0093 2796 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:14:23.0093 2796 AsyncMac - ok
17:14:23.0093 2796 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
17:14:23.0093 2796 atapi - ok
17:14:23.0109 2796 Atdisk - ok
17:14:23.0140 2796 [ 6A5614F785DEEA2C17DA494B5198355C ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
17:14:23.0140 2796 Ati HotKey Poller - ok
17:14:23.0281 2796 [ 5CB8B6775285F2F908C3F810EAB78500 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
17:14:23.0343 2796 ati2mtag - ok
17:14:23.0375 2796 [ 924971A182E07463765EF9FA8876F24F ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdXP3.sys
17:14:23.0375 2796 AtiHDAudioService - ok
17:14:23.0390 2796 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:14:23.0390 2796 Atmarpc - ok
17:14:23.0421 2796 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
17:14:23.0421 2796 AudioSrv - ok
17:14:23.0453 2796 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
17:14:23.0453 2796 audstub - ok
17:14:23.0468 2796 [ 2F7C0F3E39C45E0127FB78B2F18A41F3 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
17:14:23.0484 2796 avast! Antivirus - ok
17:14:23.0500 2796 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
17:14:23.0500 2796 Beep - ok
17:14:23.0515 2796 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
17:14:23.0578 2796 BITS - ok
17:14:23.0593 2796 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:14:23.0609 2796 Bonjour Service - ok
17:14:23.0625 2796 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
17:14:23.0640 2796 Browser - ok
17:14:23.0656 2796 [ 04E1C782CF14B7282EBC633B0FD3ED16 ] Cardex C:\WINDOWS\system32\drivers\TBPANEL.SYS
17:14:23.0656 2796 Cardex - ok
17:14:23.0687 2796 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
17:14:23.0687 2796 cbidf2k - ok
17:14:23.0687 2796 cd20xrnt - ok
17:14:23.0734 2796 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
17:14:23.0734 2796 Cdaudio - ok
17:14:23.0796 2796 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
17:14:23.0828 2796 Cdfs - ok
17:14:23.0859 2796 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:14:23.0859 2796 Cdrom - ok
17:14:23.0859 2796 Changer - ok
17:14:23.0921 2796 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
17:14:23.0937 2796 CiSvc - ok
17:14:23.0937 2796 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
17:14:23.0953 2796 ClipSrv - ok
17:14:23.0984 2796 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:14:24.0031 2796 clr_optimization_v2.0.50727_32 - ok
17:14:24.0062 2796 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:14:24.0093 2796 clr_optimization_v4.0.30319_32 - ok
17:14:24.0093 2796 CmdIde - ok
17:14:24.0093 2796 COMSysApp - ok
17:14:24.0109 2796 Cpqarray - ok
17:14:24.0125 2796 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
17:14:24.0125 2796 CryptSvc - ok
17:14:24.0125 2796 dac2w2k - ok
17:14:24.0125 2796 dac960nt - ok
17:14:24.0171 2796 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
17:14:24.0187 2796 DcomLaunch - ok
17:14:24.0218 2796 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
17:14:24.0218 2796 Dhcp - ok
17:14:24.0234 2796 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
17:14:24.0234 2796 Disk - ok
17:14:24.0234 2796 dmadmin - ok
17:14:24.0250 2796 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
17:14:24.0265 2796 dmboot - ok
17:14:24.0265 2796 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
17:14:24.0281 2796 dmio - ok
17:14:24.0281 2796 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
17:14:24.0281 2796 dmload - ok
17:14:24.0296 2796 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
17:14:24.0312 2796 dmserver - ok
17:14:24.0328 2796 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
17:14:24.0328 2796 DMusic - ok
17:14:24.0359 2796 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
17:14:24.0359 2796 Dnscache - ok
17:14:24.0406 2796 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
17:14:24.0421 2796 Dot3svc - ok
17:14:24.0421 2796 dpti2o - ok
17:14:24.0437 2796 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
17:14:24.0437 2796 drmkaud - ok
17:14:24.0468 2796 [ 687AF6BB383885FF6A64071B189A7F3E ] dtsoftbus01 C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
17:14:24.0468 2796 dtsoftbus01 - ok
17:14:24.0484 2796 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
17:14:24.0500 2796 EapHost - ok
17:14:24.0515 2796 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
17:14:24.0515 2796 ERSvc - ok
17:14:24.0531 2796 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
17:14:24.0546 2796 Eventlog - ok
17:14:24.0562 2796 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
17:14:24.0562 2796 EventSystem - ok
17:14:24.0578 2796 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
17:14:24.0578 2796 Fastfat - ok
17:14:24.0625 2796 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
17:14:24.0625 2796 FastUserSwitchingCompatibility - ok
17:14:24.0640 2796 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
17:14:24.0640 2796 Fdc - ok
17:14:24.0656 2796 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
17:14:24.0671 2796 Fips - ok
17:14:24.0718 2796 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:14:24.0734 2796 FLEXnet Licensing Service - ok
17:14:24.0750 2796 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
17:14:24.0750 2796 Flpydisk - ok
17:14:24.0765 2796 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
17:14:24.0765 2796 FltMgr - ok
17:14:24.0796 2796 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
17:14:24.0796 2796 FontCache3.0.0.0 - ok
17:14:24.0812 2796 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:14:24.0812 2796 Fs_Rec - ok
17:14:24.0828 2796 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:14:24.0828 2796 Ftdisk - ok
17:14:24.0843 2796 [ AD6BD6BDC97BEDE8A5507EE01220C00F ] gdrv C:\WINDOWS\gdrv.sys
17:14:25.0078 2796 gdrv - ok
17:14:25.0093 2796 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
17:14:25.0093 2796 GEARAspiWDM - ok
17:14:25.0109 2796 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:14:25.0109 2796 Gpc - ok
17:14:25.0140 2796 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
17:14:25.0140 2796 gupdate - ok
17:14:25.0140 2796 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
17:14:25.0156 2796 gupdatem - ok
17:14:25.0156 2796 [ D30B31375C40309425C21EFE75DB90BB ] hamachi C:\WINDOWS\system32\DRIVERS\hamachi.sys
17:14:25.0156 2796 hamachi - ok
17:14:25.0187 2796 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
17:14:25.0203 2796 HDAudBus - ok
17:14:25.0250 2796 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
17:14:25.0250 2796 helpsvc - ok
17:14:25.0265 2796 [ 00E25EE90166B3E1BE6E74AEBF858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
17:14:25.0265 2796 HidServ - ok
17:14:25.0265 2796 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:14:25.0265 2796 hidusb - ok
17:14:25.0312 2796 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
17:14:25.0312 2796 hkmsvc - ok
17:14:25.0312 2796 hpn - ok
17:14:25.0328 2796 [ 30CA91E657CEDE2F95359D6EF186F650 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
17:14:25.0328 2796 HPZid412 - ok
17:14:25.0343 2796 [ EFD31AFA752AA7C7BBB57BCBE2B01C78 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
17:14:25.0343 2796 HPZipr12 - ok
17:14:25.0343 2796 [ ABCB05CCDBF03000354B9553820E39F8 ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
17:14:25.0359 2796 HPZius12 - ok
17:14:25.0375 2796 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
17:14:25.0406 2796 HTTP - ok
17:14:25.0437 2796 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
17:14:25.0453 2796 HTTPFilter - ok
17:14:25.0453 2796 i2omgmt - ok
17:14:25.0453 2796 i2omp - ok
17:14:25.0468 2796 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:14:25.0468 2796 i8042prt - ok
17:14:25.0515 2796 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
17:14:25.0531 2796 IDriverT - ok
17:14:25.0562 2796 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:14:25.0578 2796 idsvc - ok
17:14:25.0593 2796 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
17:14:25.0593 2796 Imapi - ok
17:14:25.0609 2796 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
17:14:25.0609 2796 ImapiService - ok
17:14:25.0625 2796 ini910u - ok
17:14:25.0718 2796 [ 60D7460B07012D364CED11DD9FD83E1F ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
17:14:25.0750 2796 IntcAzAudAddService - ok
17:14:25.0765 2796 IntelIde - ok
17:14:25.0781 2796 [ 27B290D632AF2CF3CF40BFDDB7370985 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
17:14:25.0781 2796 intelppm - ok
17:14:25.0796 2796 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
17:14:25.0796 2796 Ip6Fw - ok
17:14:25.0812 2796 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:14:25.0812 2796 IpFilterDriver - ok
17:14:25.0812 2796 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:14:25.0812 2796 IpInIp - ok
17:14:25.0828 2796 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:14:25.0843 2796 IpNat - ok
17:14:25.0875 2796 [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
17:14:25.0890 2796 iPod Service - ok
17:14:25.0890 2796 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:14:25.0890 2796 IPSec - ok
17:14:25.0906 2796 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
17:14:25.0921 2796 IRENUM - ok
17:14:25.0921 2796 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:14:25.0921 2796 isapnp - ok
17:14:25.0937 2796 [ C995C0E8B4503FAC38793BB0236AD246 ] JGOGO C:\WINDOWS\system32\DRIVERS\JGOGO.sys
17:14:25.0937 2796 JGOGO - ok
17:14:25.0953 2796 [ CFC43157695843F42C9FC36C725450DF ] JRAID C:\WINDOWS\system32\DRIVERS\jraid.sys
17:14:25.0953 2796 JRAID - ok
17:14:25.0968 2796 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:14:25.0984 2796 Kbdclass - ok
17:14:25.0984 2796 [ 86C8F23616C6C6E5B2776901C17B945B ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
17:14:25.0984 2796 kbdhid - ok
17:14:26.0015 2796 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
17:14:26.0031 2796 kmixer - ok
17:14:26.0031 2796 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
17:14:26.0046 2796 KSecDD - ok
17:14:26.0062 2796 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
17:14:26.0062 2796 lanmanserver - ok
17:14:26.0109 2796 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
17:14:26.0125 2796 lanmanworkstation - ok
17:14:26.0140 2796 lbrtfdc - ok
17:14:26.0187 2796 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
17:14:26.0203 2796 LmHosts - ok
17:14:26.0234 2796 [ A3E700D78EEC390F1208098CDCA5C6B6 ] MarvinBus C:\WINDOWS\system32\DRIVERS\MarvinBus.sys
17:14:26.0250 2796 MarvinBus - ok
17:14:26.0265 2796 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
17:14:26.0281 2796 Messenger - ok
17:14:26.0312 2796 Microsoft SharePoint Workspace Audit Service - ok
17:14:26.0328 2796 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
17:14:26.0328 2796 mnmdd - ok
17:14:26.0359 2796 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
17:14:26.0375 2796 mnmsrvc - ok
17:14:26.0390 2796 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
17:14:26.0390 2796 Modem - ok
17:14:26.0406 2796 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:14:26.0406 2796 Mouclass - ok
17:14:26.0421 2796 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:14:26.0421 2796 mouhid - ok
17:14:26.0421 2796 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
17:14:26.0437 2796 MountMgr - ok
17:14:26.0468 2796 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
17:14:26.0468 2796 MozillaMaintenance - ok
17:14:26.0484 2796 mraid35x - ok
17:14:26.0500 2796 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:14:26.0515 2796 MRxDAV - ok
17:14:26.0546 2796 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:14:26.0546 2796 MRxSmb - ok
17:14:26.0578 2796 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
17:14:26.0578 2796 MSDTC - ok
17:14:26.0593 2796 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
17:14:26.0593 2796 Msfs - ok
17:14:26.0609 2796 MSIServer - ok
17:14:26.0625 2796 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:14:26.0625 2796 MSKSSRV - ok
17:14:26.0625 2796 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:14:26.0625 2796 MSPCLOCK - ok
17:14:26.0640 2796 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
17:14:26.0640 2796 MSPQM - ok
17:14:26.0640 2796 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:14:26.0640 2796 mssmbios - ok
17:14:26.0671 2796 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
17:14:26.0671 2796 Mup - ok
17:14:26.0703 2796 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
17:14:26.0718 2796 napagent - ok
17:14:26.0765 2796 [ 89844C3D3A7AAE8999E229C88E452633 ] NBService C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
17:14:26.0781 2796 NBService - ok
17:14:26.0796 2796 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
17:14:26.0796 2796 NDIS - ok
17:14:26.0843 2796 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:14:26.0843 2796 NdisTapi - ok
17:14:26.0859 2796 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:14:26.0859 2796 Ndisuio - ok
17:14:26.0875 2796 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:14:26.0875 2796 NdisWan - ok
17:14:26.0890 2796 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
17:14:26.0890 2796 NDProxy - ok
17:14:26.0890 2796 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
17:14:26.0890 2796 NetBIOS - ok
17:14:26.0921 2796 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
17:14:26.0921 2796 NetBT - ok
17:14:26.0953 2796 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
17:14:26.0953 2796 NetDDE - ok
17:14:26.0968 2796 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
17:14:26.0968 2796 NetDDEdsdm - ok
17:14:26.0984 2796 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
17:14:26.0984 2796 Netlogon - ok
17:14:27.0000 2796 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
17:14:27.0015 2796 Netman - ok
17:14:27.0046 2796 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:14:27.0062 2796 NetTcpPortSharing - ok
17:14:27.0078 2796 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
17:14:27.0078 2796 Nla - ok
17:14:27.0125 2796 [ 433049770B810D7C83C5C94CDB3E09D2 ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
17:14:27.0125 2796 NMIndexingService - ok
17:14:27.0125 2796 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
17:14:27.0140 2796 Npfs - ok
17:14:27.0140 2796 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
17:14:27.0156 2796 Ntfs - ok
17:14:27.0156 2796 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
17:14:27.0171 2796 NtLmSsp - ok
17:14:27.0203 2796 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
17:14:27.0218 2796 NtmsSvc - ok
17:14:27.0218 2796 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
17:14:27.0234 2796 Null - ok
17:14:27.0296 2796 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
17:14:27.0328 2796 nv - ok
17:14:27.0359 2796 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:14:27.0359 2796 NwlnkFlt - ok
17:14:27.0359 2796 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:14:27.0359 2796 NwlnkFwd - ok
17:14:27.0375 2796 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:14:27.0390 2796 ose - ok
17:14:27.0484 2796 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:14:27.0578 2796 osppsvc - ok
17:14:27.0578 2796 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
17:14:27.0593 2796 Parport - ok
17:14:27.0593 2796 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
17:14:27.0593 2796 PartMgr - ok
17:14:27.0625 2796 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
17:14:27.0640 2796 ParVdm - ok
17:14:27.0640 2796 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
17:14:27.0656 2796 PCI - ok
17:14:27.0656 2796 PCIDump - ok
17:14:27.0671 2796 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
17:14:27.0671 2796 PCIIde - ok
17:14:27.0687 2796 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
17:14:27.0687 2796 Pcmcia - ok
17:14:27.0687 2796 PDCOMP - ok
17:14:27.0703 2796 PDFRAME - ok
17:14:27.0703 2796 PDRELI - ok
17:14:27.0703 2796 PDRFRAME - ok
17:14:27.0718 2796 perc2 - ok
17:14:27.0718 2796 perc2hib - ok
17:14:27.0750 2796 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
17:14:27.0765 2796 PlugPlay - ok
17:14:27.0796 2796 [ D31F88C5F19EEFA366A415D6BC5F2ABC ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
17:14:27.0796 2796 Pml Driver HPZ12 - ok
17:14:27.0796 2796 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
17:14:27.0812 2796 PolicyAgent - ok
17:14:27.0812 2796 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:14:27.0828 2796 PptpMiniport - ok
17:14:27.0828 2796 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
17:14:27.0828 2796 ProtectedStorage - ok
17:14:27.0843 2796 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
17:14:27.0843 2796 PSched - ok
17:14:27.0859 2796 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:14:27.0859 2796 Ptilink - ok
17:14:27.0875 2796 [ 40FEDD328F98245AD201CF5F9F311724 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
17:14:27.0875 2796 PxHelp20 - ok
17:14:27.0875 2796 ql1080 - ok
17:14:27.0890 2796 Ql10wnt - ok
17:14:27.0890 2796 ql12160 - ok
17:14:27.0890 2796 ql1240 - ok
17:14:27.0890 2796 ql1280 - ok
17:14:27.0906 2796 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:14:27.0906 2796 RasAcd - ok
17:14:27.0921 2796 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
17:14:27.0937 2796 RasAuto - ok
17:14:27.0937 2796 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:14:27.0937 2796 Rasl2tp - ok
17:14:27.0953 2796 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
17:14:27.0968 2796 RasMan - ok
17:14:27.0984 2796 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:14:27.0984 2796 RasPppoe - ok
17:14:27.0984 2796 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
17:14:28.0000 2796 Raspti - ok
17:14:28.0015 2796 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:14:28.0015 2796 Rdbss - ok
17:14:28.0015 2796 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:14:28.0015 2796 RDPCDD - ok
17:14:28.0046 2796 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
17:14:28.0062 2796 RDPWD - ok
17:14:28.0062 2796 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
17:14:28.0078 2796 RDSessMgr - ok
17:14:28.0093 2796 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
17:14:28.0093 2796 redbook - ok
17:14:28.0125 2796 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
17:14:28.0125 2796 RemoteAccess - ok
17:14:28.0156 2796 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
17:14:28.0156 2796 RpcLocator - ok
17:14:28.0187 2796 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\system32\rpcss.dll
17:14:28.0203 2796 RpcSs - ok
17:14:28.0218 2796 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
17:14:28.0234 2796 RSVP - ok
17:14:28.0234 2796 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
17:14:28.0234 2796 SamSs - ok
17:14:28.0250 2796 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
17:14:28.0265 2796 SCardSvr - ok
17:14:28.0281 2796 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
17:14:28.0296 2796 Schedule - ok
17:14:28.0312 2796 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:14:28.0328 2796 Secdrv - ok
17:14:28.0343 2796 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
17:14:28.0359 2796 seclogon - ok
17:14:28.0375 2796 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
17:14:28.0375 2796 SENS - ok
17:14:28.0390 2796 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
17:14:28.0390 2796 serenum - ok
17:14:28.0406 2796 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
17:14:28.0406 2796 Serial - ok
17:14:28.0453 2796 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
17:14:28.0453 2796 Sfloppy - ok
17:14:28.0468 2796 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
17:14:28.0484 2796 SharedAccess - ok
17:14:28.0500 2796 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
17:14:28.0515 2796 ShellHWDetection - ok
17:14:28.0531 2796 Simbad - ok
17:14:28.0687 2796 [ 0F97E7A47A52F4A36969F0FC319654C2 ] Skype C2C Service C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
17:14:28.0734 2796 Skype C2C Service - ok
17:14:28.0781 2796 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
17:14:28.0781 2796 SkypeUpdate - ok
17:14:28.0781 2796 Sparrow - ok
17:14:28.0796 2796 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
17:14:28.0812 2796 splitter - ok
17:14:28.0828 2796 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
17:14:28.0843 2796 Spooler - ok
17:14:28.0859 2796 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
17:14:28.0859 2796 sr - ok
17:14:28.0875 2796 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
17:14:28.0890 2796 srservice - ok
17:14:28.0890 2796 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
17:14:28.0906 2796 Srv - ok
17:14:28.0953 2796 [ 406776FE3C2B66796BAC1A7AFB9AC8A1 ] ssadbus C:\WINDOWS\system32\DRIVERS\ssadbus.sys
17:14:28.0953 2796 ssadbus - ok
17:14:28.0968 2796 [ B19532D015A5D295E2AA34BB521202CF ] ssadmdfl C:\WINDOWS\system32\DRIVERS\ssadmdfl.sys
17:14:28.0968 2796 ssadmdfl - ok
17:14:29.0000 2796 [ 2AEBF9108E6F435458B9499C27394DA4 ] ssadmdm C:\WINDOWS\system32\DRIVERS\ssadmdm.sys
17:14:29.0000 2796 ssadmdm - ok
17:14:29.0015 2796 [ 28F893C9B4E98DEE5AE3C24DB56B1B11 ] ssadserd C:\WINDOWS\system32\DRIVERS\ssadserd.sys
17:14:29.0031 2796 ssadserd - ok
17:14:29.0046 2796 [ FFE42941E0326C322F40B0B79A46493C ] sscdbus C:\WINDOWS\system32\DRIVERS\sscdbus.sys
17:14:29.0062 2796 sscdbus - ok
17:14:29.0078 2796 [ A68E7D87ADFBB8C50D88CD58230C6819 ] sscdmdfl C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
17:14:29.0078 2796 sscdmdfl - ok
17:14:29.0093 2796 [ B534B24151281856EC2F69ED3D6D60DD ] sscdmdm C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
17:14:29.0093 2796 sscdmdm - ok
17:14:29.0125 2796 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
17:14:29.0125 2796 SSDPSRV - ok
17:14:29.0140 2796 [ 06CDA2A5A549BC455D004461E6BC5B33 ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
17:14:29.0156 2796 StillCam - ok
17:14:29.0156 2796 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
17:14:29.0171 2796 stisvc - ok
17:14:29.0187 2796 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
17:14:29.0187 2796 swenum - ok
17:14:29.0250 2796 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
17:14:29.0250 2796 SwitchBoard - ok
17:14:29.0265 2796 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
17:14:29.0281 2796 swmidi - ok
17:14:29.0281 2796 SwPrv - ok
17:14:29.0281 2796 symc810 - ok
17:14:29.0296 2796 symc8xx - ok
17:14:29.0296 2796 sym_hi - ok
17:14:29.0296 2796 sym_u3 - ok
17:14:29.0312 2796 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
17:14:29.0312 2796 sysaudio - ok
17:14:29.0343 2796 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
17:14:29.0343 2796 SysmonLog - ok
17:14:29.0359 2796 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
17:14:29.0375 2796 TapiSrv - ok
17:14:29.0390 2796 [ 04E1C782CF14B7282EBC633B0FD3ED16 ] TBPanel C:\WINDOWS\system32\drivers\TBPanel.sys
17:14:29.0390 2796 TBPanel - ok
17:14:29.0406 2796 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:14:29.0421 2796 Tcpip - ok
17:14:29.0437 2796 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
17:14:29.0437 2796 TDPIPE - ok
17:14:29.0453 2796 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
17:14:29.0453 2796 TDTCP - ok
17:14:29.0468 2796 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
17:14:29.0468 2796 TermDD - ok
17:14:29.0484 2796 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
17:14:29.0500 2796 TermService - ok
17:14:29.0515 2796 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
17:14:29.0531 2796 Themes - ok
17:14:29.0531 2796 TosIde - ok
17:14:29.0531 2796 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
17:14:29.0546 2796 TrkWks - ok
17:14:29.0562 2796 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
17:14:29.0562 2796 Udfs - ok
17:14:29.0578 2796 ultra - ok
17:14:29.0578 2796 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
17:14:29.0593 2796 Update - ok
17:14:29.0609 2796 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
17:14:29.0625 2796 upnphost - ok
17:14:29.0625 2796 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
17:14:29.0640 2796 UPS - ok
17:14:29.0656 2796 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
17:14:29.0656 2796 USBAAPL - ok
17:14:29.0671 2796 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:14:29.0671 2796 usbccgp - ok
17:14:29.0687 2796 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:14:29.0687 2796 usbehci - ok
17:14:29.0703 2796 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:14:29.0703 2796 usbhub - ok
17:14:29.0734 2796 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
17:14:29.0734 2796 usbprint - ok
17:14:29.0750 2796 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
17:14:29.0765 2796 usbscan - ok
17:14:29.0781 2796 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:14:29.0796 2796 USBSTOR - ok
17:14:29.0796 2796 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:14:29.0812 2796 usbuhci - ok
17:14:29.0828 2796 [ A7A771AEBB09B7932BA79D086CC7FD21 ] VD_FileDisk C:\WINDOWS\system32\drivers\VD_FileDisk.sys
17:14:29.0828 2796 VD_FileDisk - ok
17:14:29.0843 2796 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
17:14:29.0843 2796 VgaSave - ok
17:14:29.0843 2796 ViaIde - ok
17:14:29.0859 2796 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
17:14:29.0859 2796 VolSnap - ok
17:14:29.0875 2796 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
17:14:29.0890 2796 VSS - ok
17:14:29.0906 2796 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
17:14:29.0921 2796 W32Time - ok
17:14:29.0921 2796 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:14:29.0937 2796 Wanarp - ok
17:14:29.0968 2796 [ FD47474BD21794508AF449D9D91AF6E6 ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
17:14:29.0968 2796 Wdf01000 - ok
17:14:29.0984 2796 WDICA - ok
17:14:30.0000 2796 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
17:14:30.0000 2796 wdmaud - ok
17:14:30.0015 2796 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
17:14:30.0031 2796 WebClient - ok
17:14:30.0078 2796 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
17:14:30.0078 2796 winmgmt - ok
17:14:30.0109 2796 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
17:14:30.0109 2796 WmdmPmSN - ok
17:14:30.0125 2796 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
17:14:30.0125 2796 WmiApSrv - ok
17:14:30.0171 2796 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
17:14:30.0187 2796 WMPNetworkSvc - ok
17:14:30.0265 2796 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
17:14:30.0265 2796 WPFFontCache_v0400 - ok
17:14:30.0296 2796 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
17:14:30.0296 2796 wscsvc - ok
17:14:30.0312 2796 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
17:14:30.0328 2796 wuauserv - ok
17:14:30.0359 2796 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
17:14:30.0359 2796 WudfPf - ok
17:14:30.0359 2796 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
17:14:30.0375 2796 WudfRd - ok
17:14:30.0375 2796 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
17:14:30.0390 2796 WudfSvc - ok
17:14:30.0421 2796 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
17:14:30.0500 2796 WZCSVC - ok
17:14:30.0515 2796 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
17:14:30.0531 2796 xmlprov - ok
17:14:30.0562 2796 [ 96F714B7431C297373038F5DF8B53685 ] yukonwxp C:\WINDOWS\system32\DRIVERS\yk51x86.sys
17:14:30.0562 2796 yukonwxp - ok
17:14:30.0562 2796 ================ Scan global ===============================
17:14:30.0593 2796 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
17:14:30.0625 2796 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
17:14:30.0656 2796 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
17:14:30.0671 2796 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
17:14:30.0687 2796 [Global] - ok
17:14:30.0687 2796 ================ Scan MBR ==================================
17:14:30.0703 2796 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
17:14:30.0859 2796 \Device\Harddisk0\DR0 - ok
17:14:30.0859 2796 ================ Scan VBR ==================================
17:14:30.0859 2796 [ 310416D9C908BD884ED97CB4FBA36842 ] \Device\Harddisk0\DR0\Partition1
17:14:30.0859 2796 \Device\Harddisk0\DR0\Partition1 - ok
17:14:30.0875 2796 [ 3E1987A732718D7AB946370BE3411155 ] \Device\Harddisk0\DR0\Partition2
17:14:30.0875 2796 \Device\Harddisk0\DR0\Partition2 - ok
17:14:30.0890 2796 [ B7391531982DD6F34155141F229FE769 ] \Device\Harddisk0\DR0\Partition3
17:14:30.0890 2796 \Device\Harddisk0\DR0\Partition3 - ok
17:14:30.0890 2796 ============================================================
17:14:30.0890 2796 Scan finished
17:14:30.0890 2796 ============================================================
17:14:30.0906 3548 Detected object count: 0
17:14:30.0906 3548 Actual detected object count: 0
17:14:43.0859 3412 Deinitialize success
Logy:
Mbam:
Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org
Verze databáze: v2012.08.19.04
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Pája :: PAJA [administrátor]
20.8.2012 16:59:45
mbam-log-2012-08-20 (16-59-45).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 196811
Uplynulý čas: 5 minut, 29 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 1
C:\WINDOWS\KMSEmulator.exe (RiskWare.Tool.CK) -> Umístnění do karantény a smazání se zdařilo.
(konec)
TDSSKiller:
17:14:17.0687 0164 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03
17:14:17.0828 0164 ============================================================
17:14:17.0828 0164 Current date / time: 2012/08/20 17:14:17.0828
17:14:17.0828 0164 SystemInfo:
17:14:17.0828 0164
17:14:17.0828 0164 OS Version: 5.1.2600 ServicePack: 3.0
17:14:17.0828 0164 Product type: Workstation
17:14:17.0828 0164 ComputerName: PAJA
17:14:17.0828 0164 UserName: Pája
17:14:17.0828 0164 Windows directory: C:\WINDOWS
17:14:17.0828 0164 System windows directory: C:\WINDOWS
17:14:17.0828 0164 Processor architecture: Intel x86
17:14:17.0828 0164 Number of processors: 2
17:14:17.0828 0164 Page size: 0x1000
17:14:17.0828 0164 Boot type: Normal boot
17:14:17.0828 0164 ============================================================
17:14:19.0109 0164 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0CADE00 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1D9262, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x10, Type 'K0', Flags 0x00000054
17:14:19.0109 0164 ============================================================
17:14:19.0109 0164 \Device\Harddisk0\DR0:
17:14:19.0109 0164 MBR partitions:
17:14:19.0109 0164 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC350151
17:14:19.0109 0164 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xC3501CF, BlocksNum 0x30D3FE21
17:14:19.0125 0164 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3D09002F, BlocksNum 0x37675DC1
17:14:19.0125 0164 ============================================================
17:14:19.0156 0164 C: <-> \Device\Harddisk0\DR0\Partition1
17:14:19.0234 0164 E: <-> \Device\Harddisk0\DR0\Partition2
17:14:19.0250 0164 D: <-> \Device\Harddisk0\DR0\Partition3
17:14:19.0250 0164 ============================================================
17:14:19.0250 0164 Initialize success
17:14:19.0250 0164 ============================================================
17:14:21.0468 2796 ============================================================
17:14:21.0468 2796 Scan started
17:14:21.0468 2796 Mode: Manual;
17:14:21.0468 2796 ============================================================
17:14:22.0390 2796 ================ Scan system memory ========================
17:14:22.0390 2796 System memory - ok
17:14:22.0390 2796 ================ Scan services =============================
17:14:22.0500 2796 [ 0B27AE82C113D3687024D18459440426 ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
17:14:22.0500 2796 Aavmker4 - ok
17:14:22.0515 2796 Abiosdsk - ok
17:14:22.0515 2796 abp480n5 - ok
17:14:22.0546 2796 [ E6F53D6C0DEA3D375362265E175CA638 ] acedrv11 C:\WINDOWS\system32\drivers\acedrv11.sys
17:14:22.0562 2796 acedrv11 - ok
17:14:22.0578 2796 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:14:22.0578 2796 ACPI - ok
17:14:22.0609 2796 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
17:14:22.0609 2796 ACPIEC - ok
17:14:22.0687 2796 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:14:22.0687 2796 AdobeFlashPlayerUpdateSvc - ok
17:14:22.0687 2796 adpu160m - ok
17:14:22.0718 2796 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
17:14:22.0718 2796 aec - ok
17:14:22.0750 2796 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
17:14:22.0750 2796 AFD - ok
17:14:22.0765 2796 Aha154x - ok
17:14:22.0765 2796 aic78u2 - ok
17:14:22.0781 2796 aic78xx - ok
17:14:22.0796 2796 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
17:14:22.0796 2796 Alerter - ok
17:14:22.0812 2796 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
17:14:22.0812 2796 ALG - ok
17:14:22.0828 2796 AliIde - ok
17:14:22.0828 2796 amsint - ok
17:14:22.0859 2796 [ DD8D9C597AF7CD2F6B70A3D6A4A1ACEA ] androidusb C:\WINDOWS\system32\Drivers\ssadadb.sys
17:14:22.0875 2796 androidusb - ok
17:14:22.0953 2796 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:14:22.0968 2796 Apple Mobile Device - ok
17:14:22.0968 2796 AppMgmt - ok
17:14:22.0968 2796 asc - ok
17:14:22.0968 2796 asc3350p - ok
17:14:22.0984 2796 asc3550 - ok
17:14:23.0015 2796 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
17:14:23.0015 2796 aspnet_state - ok
17:14:23.0015 2796 [ 1C1F3D6DDDC046C920C493A779649F66 ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
17:14:23.0015 2796 aswFsBlk - ok
17:14:23.0031 2796 [ 9E912FE7B41650701EF2B227ACA440F3 ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
17:14:23.0031 2796 aswMon2 - ok
17:14:23.0031 2796 [ 982E275D1C5801042FE94209FB0160FB ] AswRdr C:\WINDOWS\system32\drivers\AswRdr.sys
17:14:23.0031 2796 AswRdr - ok
17:14:23.0046 2796 [ 73DBCF808E00580F2A47F93DD9B03876 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
17:14:23.0062 2796 aswSnx - ok
17:14:23.0062 2796 [ 6CBD7D3A33F498D09C831CDD732DA2E0 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
17:14:23.0078 2796 aswSP - ok
17:14:23.0078 2796 [ 7109A9AA551F37CD168C02368465957E ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
17:14:23.0078 2796 aswTdi - ok
17:14:23.0093 2796 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:14:23.0093 2796 AsyncMac - ok
17:14:23.0093 2796 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
17:14:23.0093 2796 atapi - ok
17:14:23.0109 2796 Atdisk - ok
17:14:23.0140 2796 [ 6A5614F785DEEA2C17DA494B5198355C ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
17:14:23.0140 2796 Ati HotKey Poller - ok
17:14:23.0281 2796 [ 5CB8B6775285F2F908C3F810EAB78500 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
17:14:23.0343 2796 ati2mtag - ok
17:14:23.0375 2796 [ 924971A182E07463765EF9FA8876F24F ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdXP3.sys
17:14:23.0375 2796 AtiHDAudioService - ok
17:14:23.0390 2796 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:14:23.0390 2796 Atmarpc - ok
17:14:23.0421 2796 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
17:14:23.0421 2796 AudioSrv - ok
17:14:23.0453 2796 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
17:14:23.0453 2796 audstub - ok
17:14:23.0468 2796 [ 2F7C0F3E39C45E0127FB78B2F18A41F3 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
17:14:23.0484 2796 avast! Antivirus - ok
17:14:23.0500 2796 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
17:14:23.0500 2796 Beep - ok
17:14:23.0515 2796 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
17:14:23.0578 2796 BITS - ok
17:14:23.0593 2796 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:14:23.0609 2796 Bonjour Service - ok
17:14:23.0625 2796 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
17:14:23.0640 2796 Browser - ok
17:14:23.0656 2796 [ 04E1C782CF14B7282EBC633B0FD3ED16 ] Cardex C:\WINDOWS\system32\drivers\TBPANEL.SYS
17:14:23.0656 2796 Cardex - ok
17:14:23.0687 2796 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
17:14:23.0687 2796 cbidf2k - ok
17:14:23.0687 2796 cd20xrnt - ok
17:14:23.0734 2796 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
17:14:23.0734 2796 Cdaudio - ok
17:14:23.0796 2796 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
17:14:23.0828 2796 Cdfs - ok
17:14:23.0859 2796 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:14:23.0859 2796 Cdrom - ok
17:14:23.0859 2796 Changer - ok
17:14:23.0921 2796 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
17:14:23.0937 2796 CiSvc - ok
17:14:23.0937 2796 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
17:14:23.0953 2796 ClipSrv - ok
17:14:23.0984 2796 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:14:24.0031 2796 clr_optimization_v2.0.50727_32 - ok
17:14:24.0062 2796 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:14:24.0093 2796 clr_optimization_v4.0.30319_32 - ok
17:14:24.0093 2796 CmdIde - ok
17:14:24.0093 2796 COMSysApp - ok
17:14:24.0109 2796 Cpqarray - ok
17:14:24.0125 2796 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
17:14:24.0125 2796 CryptSvc - ok
17:14:24.0125 2796 dac2w2k - ok
17:14:24.0125 2796 dac960nt - ok
17:14:24.0171 2796 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
17:14:24.0187 2796 DcomLaunch - ok
17:14:24.0218 2796 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
17:14:24.0218 2796 Dhcp - ok
17:14:24.0234 2796 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
17:14:24.0234 2796 Disk - ok
17:14:24.0234 2796 dmadmin - ok
17:14:24.0250 2796 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
17:14:24.0265 2796 dmboot - ok
17:14:24.0265 2796 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
17:14:24.0281 2796 dmio - ok
17:14:24.0281 2796 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
17:14:24.0281 2796 dmload - ok
17:14:24.0296 2796 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
17:14:24.0312 2796 dmserver - ok
17:14:24.0328 2796 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
17:14:24.0328 2796 DMusic - ok
17:14:24.0359 2796 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
17:14:24.0359 2796 Dnscache - ok
17:14:24.0406 2796 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
17:14:24.0421 2796 Dot3svc - ok
17:14:24.0421 2796 dpti2o - ok
17:14:24.0437 2796 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
17:14:24.0437 2796 drmkaud - ok
17:14:24.0468 2796 [ 687AF6BB383885FF6A64071B189A7F3E ] dtsoftbus01 C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
17:14:24.0468 2796 dtsoftbus01 - ok
17:14:24.0484 2796 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
17:14:24.0500 2796 EapHost - ok
17:14:24.0515 2796 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
17:14:24.0515 2796 ERSvc - ok
17:14:24.0531 2796 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
17:14:24.0546 2796 Eventlog - ok
17:14:24.0562 2796 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
17:14:24.0562 2796 EventSystem - ok
17:14:24.0578 2796 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
17:14:24.0578 2796 Fastfat - ok
17:14:24.0625 2796 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
17:14:24.0625 2796 FastUserSwitchingCompatibility - ok
17:14:24.0640 2796 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
17:14:24.0640 2796 Fdc - ok
17:14:24.0656 2796 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
17:14:24.0671 2796 Fips - ok
17:14:24.0718 2796 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:14:24.0734 2796 FLEXnet Licensing Service - ok
17:14:24.0750 2796 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
17:14:24.0750 2796 Flpydisk - ok
17:14:24.0765 2796 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
17:14:24.0765 2796 FltMgr - ok
17:14:24.0796 2796 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
17:14:24.0796 2796 FontCache3.0.0.0 - ok
17:14:24.0812 2796 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:14:24.0812 2796 Fs_Rec - ok
17:14:24.0828 2796 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:14:24.0828 2796 Ftdisk - ok
17:14:24.0843 2796 [ AD6BD6BDC97BEDE8A5507EE01220C00F ] gdrv C:\WINDOWS\gdrv.sys
17:14:25.0078 2796 gdrv - ok
17:14:25.0093 2796 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
17:14:25.0093 2796 GEARAspiWDM - ok
17:14:25.0109 2796 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:14:25.0109 2796 Gpc - ok
17:14:25.0140 2796 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
17:14:25.0140 2796 gupdate - ok
17:14:25.0140 2796 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
17:14:25.0156 2796 gupdatem - ok
17:14:25.0156 2796 [ D30B31375C40309425C21EFE75DB90BB ] hamachi C:\WINDOWS\system32\DRIVERS\hamachi.sys
17:14:25.0156 2796 hamachi - ok
17:14:25.0187 2796 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
17:14:25.0203 2796 HDAudBus - ok
17:14:25.0250 2796 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
17:14:25.0250 2796 helpsvc - ok
17:14:25.0265 2796 [ 00E25EE90166B3E1BE6E74AEBF858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
17:14:25.0265 2796 HidServ - ok
17:14:25.0265 2796 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:14:25.0265 2796 hidusb - ok
17:14:25.0312 2796 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
17:14:25.0312 2796 hkmsvc - ok
17:14:25.0312 2796 hpn - ok
17:14:25.0328 2796 [ 30CA91E657CEDE2F95359D6EF186F650 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
17:14:25.0328 2796 HPZid412 - ok
17:14:25.0343 2796 [ EFD31AFA752AA7C7BBB57BCBE2B01C78 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
17:14:25.0343 2796 HPZipr12 - ok
17:14:25.0343 2796 [ ABCB05CCDBF03000354B9553820E39F8 ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
17:14:25.0359 2796 HPZius12 - ok
17:14:25.0375 2796 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
17:14:25.0406 2796 HTTP - ok
17:14:25.0437 2796 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
17:14:25.0453 2796 HTTPFilter - ok
17:14:25.0453 2796 i2omgmt - ok
17:14:25.0453 2796 i2omp - ok
17:14:25.0468 2796 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:14:25.0468 2796 i8042prt - ok
17:14:25.0515 2796 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
17:14:25.0531 2796 IDriverT - ok
17:14:25.0562 2796 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:14:25.0578 2796 idsvc - ok
17:14:25.0593 2796 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
17:14:25.0593 2796 Imapi - ok
17:14:25.0609 2796 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
17:14:25.0609 2796 ImapiService - ok
17:14:25.0625 2796 ini910u - ok
17:14:25.0718 2796 [ 60D7460B07012D364CED11DD9FD83E1F ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
17:14:25.0750 2796 IntcAzAudAddService - ok
17:14:25.0765 2796 IntelIde - ok
17:14:25.0781 2796 [ 27B290D632AF2CF3CF40BFDDB7370985 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
17:14:25.0781 2796 intelppm - ok
17:14:25.0796 2796 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
17:14:25.0796 2796 Ip6Fw - ok
17:14:25.0812 2796 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:14:25.0812 2796 IpFilterDriver - ok
17:14:25.0812 2796 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:14:25.0812 2796 IpInIp - ok
17:14:25.0828 2796 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:14:25.0843 2796 IpNat - ok
17:14:25.0875 2796 [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
17:14:25.0890 2796 iPod Service - ok
17:14:25.0890 2796 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:14:25.0890 2796 IPSec - ok
17:14:25.0906 2796 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
17:14:25.0921 2796 IRENUM - ok
17:14:25.0921 2796 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:14:25.0921 2796 isapnp - ok
17:14:25.0937 2796 [ C995C0E8B4503FAC38793BB0236AD246 ] JGOGO C:\WINDOWS\system32\DRIVERS\JGOGO.sys
17:14:25.0937 2796 JGOGO - ok
17:14:25.0953 2796 [ CFC43157695843F42C9FC36C725450DF ] JRAID C:\WINDOWS\system32\DRIVERS\jraid.sys
17:14:25.0953 2796 JRAID - ok
17:14:25.0968 2796 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:14:25.0984 2796 Kbdclass - ok
17:14:25.0984 2796 [ 86C8F23616C6C6E5B2776901C17B945B ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
17:14:25.0984 2796 kbdhid - ok
17:14:26.0015 2796 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
17:14:26.0031 2796 kmixer - ok
17:14:26.0031 2796 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
17:14:26.0046 2796 KSecDD - ok
17:14:26.0062 2796 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
17:14:26.0062 2796 lanmanserver - ok
17:14:26.0109 2796 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
17:14:26.0125 2796 lanmanworkstation - ok
17:14:26.0140 2796 lbrtfdc - ok
17:14:26.0187 2796 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
17:14:26.0203 2796 LmHosts - ok
17:14:26.0234 2796 [ A3E700D78EEC390F1208098CDCA5C6B6 ] MarvinBus C:\WINDOWS\system32\DRIVERS\MarvinBus.sys
17:14:26.0250 2796 MarvinBus - ok
17:14:26.0265 2796 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
17:14:26.0281 2796 Messenger - ok
17:14:26.0312 2796 Microsoft SharePoint Workspace Audit Service - ok
17:14:26.0328 2796 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
17:14:26.0328 2796 mnmdd - ok
17:14:26.0359 2796 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
17:14:26.0375 2796 mnmsrvc - ok
17:14:26.0390 2796 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
17:14:26.0390 2796 Modem - ok
17:14:26.0406 2796 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:14:26.0406 2796 Mouclass - ok
17:14:26.0421 2796 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:14:26.0421 2796 mouhid - ok
17:14:26.0421 2796 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
17:14:26.0437 2796 MountMgr - ok
17:14:26.0468 2796 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
17:14:26.0468 2796 MozillaMaintenance - ok
17:14:26.0484 2796 mraid35x - ok
17:14:26.0500 2796 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:14:26.0515 2796 MRxDAV - ok
17:14:26.0546 2796 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:14:26.0546 2796 MRxSmb - ok
17:14:26.0578 2796 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
17:14:26.0578 2796 MSDTC - ok
17:14:26.0593 2796 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
17:14:26.0593 2796 Msfs - ok
17:14:26.0609 2796 MSIServer - ok
17:14:26.0625 2796 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:14:26.0625 2796 MSKSSRV - ok
17:14:26.0625 2796 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:14:26.0625 2796 MSPCLOCK - ok
17:14:26.0640 2796 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
17:14:26.0640 2796 MSPQM - ok
17:14:26.0640 2796 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:14:26.0640 2796 mssmbios - ok
17:14:26.0671 2796 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
17:14:26.0671 2796 Mup - ok
17:14:26.0703 2796 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
17:14:26.0718 2796 napagent - ok
17:14:26.0765 2796 [ 89844C3D3A7AAE8999E229C88E452633 ] NBService C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
17:14:26.0781 2796 NBService - ok
17:14:26.0796 2796 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
17:14:26.0796 2796 NDIS - ok
17:14:26.0843 2796 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:14:26.0843 2796 NdisTapi - ok
17:14:26.0859 2796 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:14:26.0859 2796 Ndisuio - ok
17:14:26.0875 2796 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:14:26.0875 2796 NdisWan - ok
17:14:26.0890 2796 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
17:14:26.0890 2796 NDProxy - ok
17:14:26.0890 2796 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
17:14:26.0890 2796 NetBIOS - ok
17:14:26.0921 2796 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
17:14:26.0921 2796 NetBT - ok
17:14:26.0953 2796 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
17:14:26.0953 2796 NetDDE - ok
17:14:26.0968 2796 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
17:14:26.0968 2796 NetDDEdsdm - ok
17:14:26.0984 2796 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
17:14:26.0984 2796 Netlogon - ok
17:14:27.0000 2796 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
17:14:27.0015 2796 Netman - ok
17:14:27.0046 2796 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:14:27.0062 2796 NetTcpPortSharing - ok
17:14:27.0078 2796 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
17:14:27.0078 2796 Nla - ok
17:14:27.0125 2796 [ 433049770B810D7C83C5C94CDB3E09D2 ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
17:14:27.0125 2796 NMIndexingService - ok
17:14:27.0125 2796 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
17:14:27.0140 2796 Npfs - ok
17:14:27.0140 2796 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
17:14:27.0156 2796 Ntfs - ok
17:14:27.0156 2796 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
17:14:27.0171 2796 NtLmSsp - ok
17:14:27.0203 2796 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
17:14:27.0218 2796 NtmsSvc - ok
17:14:27.0218 2796 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
17:14:27.0234 2796 Null - ok
17:14:27.0296 2796 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
17:14:27.0328 2796 nv - ok
17:14:27.0359 2796 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:14:27.0359 2796 NwlnkFlt - ok
17:14:27.0359 2796 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:14:27.0359 2796 NwlnkFwd - ok
17:14:27.0375 2796 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:14:27.0390 2796 ose - ok
17:14:27.0484 2796 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:14:27.0578 2796 osppsvc - ok
17:14:27.0578 2796 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
17:14:27.0593 2796 Parport - ok
17:14:27.0593 2796 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
17:14:27.0593 2796 PartMgr - ok
17:14:27.0625 2796 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
17:14:27.0640 2796 ParVdm - ok
17:14:27.0640 2796 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
17:14:27.0656 2796 PCI - ok
17:14:27.0656 2796 PCIDump - ok
17:14:27.0671 2796 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
17:14:27.0671 2796 PCIIde - ok
17:14:27.0687 2796 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
17:14:27.0687 2796 Pcmcia - ok
17:14:27.0687 2796 PDCOMP - ok
17:14:27.0703 2796 PDFRAME - ok
17:14:27.0703 2796 PDRELI - ok
17:14:27.0703 2796 PDRFRAME - ok
17:14:27.0718 2796 perc2 - ok
17:14:27.0718 2796 perc2hib - ok
17:14:27.0750 2796 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
17:14:27.0765 2796 PlugPlay - ok
17:14:27.0796 2796 [ D31F88C5F19EEFA366A415D6BC5F2ABC ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
17:14:27.0796 2796 Pml Driver HPZ12 - ok
17:14:27.0796 2796 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
17:14:27.0812 2796 PolicyAgent - ok
17:14:27.0812 2796 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:14:27.0828 2796 PptpMiniport - ok
17:14:27.0828 2796 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
17:14:27.0828 2796 ProtectedStorage - ok
17:14:27.0843 2796 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
17:14:27.0843 2796 PSched - ok
17:14:27.0859 2796 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:14:27.0859 2796 Ptilink - ok
17:14:27.0875 2796 [ 40FEDD328F98245AD201CF5F9F311724 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
17:14:27.0875 2796 PxHelp20 - ok
17:14:27.0875 2796 ql1080 - ok
17:14:27.0890 2796 Ql10wnt - ok
17:14:27.0890 2796 ql12160 - ok
17:14:27.0890 2796 ql1240 - ok
17:14:27.0890 2796 ql1280 - ok
17:14:27.0906 2796 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:14:27.0906 2796 RasAcd - ok
17:14:27.0921 2796 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
17:14:27.0937 2796 RasAuto - ok
17:14:27.0937 2796 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:14:27.0937 2796 Rasl2tp - ok
17:14:27.0953 2796 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
17:14:27.0968 2796 RasMan - ok
17:14:27.0984 2796 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:14:27.0984 2796 RasPppoe - ok
17:14:27.0984 2796 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
17:14:28.0000 2796 Raspti - ok
17:14:28.0015 2796 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:14:28.0015 2796 Rdbss - ok
17:14:28.0015 2796 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:14:28.0015 2796 RDPCDD - ok
17:14:28.0046 2796 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
17:14:28.0062 2796 RDPWD - ok
17:14:28.0062 2796 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
17:14:28.0078 2796 RDSessMgr - ok
17:14:28.0093 2796 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
17:14:28.0093 2796 redbook - ok
17:14:28.0125 2796 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
17:14:28.0125 2796 RemoteAccess - ok
17:14:28.0156 2796 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
17:14:28.0156 2796 RpcLocator - ok
17:14:28.0187 2796 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\system32\rpcss.dll
17:14:28.0203 2796 RpcSs - ok
17:14:28.0218 2796 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
17:14:28.0234 2796 RSVP - ok
17:14:28.0234 2796 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
17:14:28.0234 2796 SamSs - ok
17:14:28.0250 2796 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
17:14:28.0265 2796 SCardSvr - ok
17:14:28.0281 2796 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
17:14:28.0296 2796 Schedule - ok
17:14:28.0312 2796 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:14:28.0328 2796 Secdrv - ok
17:14:28.0343 2796 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
17:14:28.0359 2796 seclogon - ok
17:14:28.0375 2796 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
17:14:28.0375 2796 SENS - ok
17:14:28.0390 2796 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
17:14:28.0390 2796 serenum - ok
17:14:28.0406 2796 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
17:14:28.0406 2796 Serial - ok
17:14:28.0453 2796 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
17:14:28.0453 2796 Sfloppy - ok
17:14:28.0468 2796 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
17:14:28.0484 2796 SharedAccess - ok
17:14:28.0500 2796 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
17:14:28.0515 2796 ShellHWDetection - ok
17:14:28.0531 2796 Simbad - ok
17:14:28.0687 2796 [ 0F97E7A47A52F4A36969F0FC319654C2 ] Skype C2C Service C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
17:14:28.0734 2796 Skype C2C Service - ok
17:14:28.0781 2796 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
17:14:28.0781 2796 SkypeUpdate - ok
17:14:28.0781 2796 Sparrow - ok
17:14:28.0796 2796 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
17:14:28.0812 2796 splitter - ok
17:14:28.0828 2796 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
17:14:28.0843 2796 Spooler - ok
17:14:28.0859 2796 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
17:14:28.0859 2796 sr - ok
17:14:28.0875 2796 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
17:14:28.0890 2796 srservice - ok
17:14:28.0890 2796 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
17:14:28.0906 2796 Srv - ok
17:14:28.0953 2796 [ 406776FE3C2B66796BAC1A7AFB9AC8A1 ] ssadbus C:\WINDOWS\system32\DRIVERS\ssadbus.sys
17:14:28.0953 2796 ssadbus - ok
17:14:28.0968 2796 [ B19532D015A5D295E2AA34BB521202CF ] ssadmdfl C:\WINDOWS\system32\DRIVERS\ssadmdfl.sys
17:14:28.0968 2796 ssadmdfl - ok
17:14:29.0000 2796 [ 2AEBF9108E6F435458B9499C27394DA4 ] ssadmdm C:\WINDOWS\system32\DRIVERS\ssadmdm.sys
17:14:29.0000 2796 ssadmdm - ok
17:14:29.0015 2796 [ 28F893C9B4E98DEE5AE3C24DB56B1B11 ] ssadserd C:\WINDOWS\system32\DRIVERS\ssadserd.sys
17:14:29.0031 2796 ssadserd - ok
17:14:29.0046 2796 [ FFE42941E0326C322F40B0B79A46493C ] sscdbus C:\WINDOWS\system32\DRIVERS\sscdbus.sys
17:14:29.0062 2796 sscdbus - ok
17:14:29.0078 2796 [ A68E7D87ADFBB8C50D88CD58230C6819 ] sscdmdfl C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
17:14:29.0078 2796 sscdmdfl - ok
17:14:29.0093 2796 [ B534B24151281856EC2F69ED3D6D60DD ] sscdmdm C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
17:14:29.0093 2796 sscdmdm - ok
17:14:29.0125 2796 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
17:14:29.0125 2796 SSDPSRV - ok
17:14:29.0140 2796 [ 06CDA2A5A549BC455D004461E6BC5B33 ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
17:14:29.0156 2796 StillCam - ok
17:14:29.0156 2796 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
17:14:29.0171 2796 stisvc - ok
17:14:29.0187 2796 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
17:14:29.0187 2796 swenum - ok
17:14:29.0250 2796 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
17:14:29.0250 2796 SwitchBoard - ok
17:14:29.0265 2796 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
17:14:29.0281 2796 swmidi - ok
17:14:29.0281 2796 SwPrv - ok
17:14:29.0281 2796 symc810 - ok
17:14:29.0296 2796 symc8xx - ok
17:14:29.0296 2796 sym_hi - ok
17:14:29.0296 2796 sym_u3 - ok
17:14:29.0312 2796 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
17:14:29.0312 2796 sysaudio - ok
17:14:29.0343 2796 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
17:14:29.0343 2796 SysmonLog - ok
17:14:29.0359 2796 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
17:14:29.0375 2796 TapiSrv - ok
17:14:29.0390 2796 [ 04E1C782CF14B7282EBC633B0FD3ED16 ] TBPanel C:\WINDOWS\system32\drivers\TBPanel.sys
17:14:29.0390 2796 TBPanel - ok
17:14:29.0406 2796 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:14:29.0421 2796 Tcpip - ok
17:14:29.0437 2796 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
17:14:29.0437 2796 TDPIPE - ok
17:14:29.0453 2796 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
17:14:29.0453 2796 TDTCP - ok
17:14:29.0468 2796 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
17:14:29.0468 2796 TermDD - ok
17:14:29.0484 2796 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
17:14:29.0500 2796 TermService - ok
17:14:29.0515 2796 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
17:14:29.0531 2796 Themes - ok
17:14:29.0531 2796 TosIde - ok
17:14:29.0531 2796 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
17:14:29.0546 2796 TrkWks - ok
17:14:29.0562 2796 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
17:14:29.0562 2796 Udfs - ok
17:14:29.0578 2796 ultra - ok
17:14:29.0578 2796 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
17:14:29.0593 2796 Update - ok
17:14:29.0609 2796 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
17:14:29.0625 2796 upnphost - ok
17:14:29.0625 2796 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
17:14:29.0640 2796 UPS - ok
17:14:29.0656 2796 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
17:14:29.0656 2796 USBAAPL - ok
17:14:29.0671 2796 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:14:29.0671 2796 usbccgp - ok
17:14:29.0687 2796 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:14:29.0687 2796 usbehci - ok
17:14:29.0703 2796 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:14:29.0703 2796 usbhub - ok
17:14:29.0734 2796 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
17:14:29.0734 2796 usbprint - ok
17:14:29.0750 2796 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
17:14:29.0765 2796 usbscan - ok
17:14:29.0781 2796 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:14:29.0796 2796 USBSTOR - ok
17:14:29.0796 2796 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:14:29.0812 2796 usbuhci - ok
17:14:29.0828 2796 [ A7A771AEBB09B7932BA79D086CC7FD21 ] VD_FileDisk C:\WINDOWS\system32\drivers\VD_FileDisk.sys
17:14:29.0828 2796 VD_FileDisk - ok
17:14:29.0843 2796 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
17:14:29.0843 2796 VgaSave - ok
17:14:29.0843 2796 ViaIde - ok
17:14:29.0859 2796 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
17:14:29.0859 2796 VolSnap - ok
17:14:29.0875 2796 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
17:14:29.0890 2796 VSS - ok
17:14:29.0906 2796 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
17:14:29.0921 2796 W32Time - ok
17:14:29.0921 2796 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:14:29.0937 2796 Wanarp - ok
17:14:29.0968 2796 [ FD47474BD21794508AF449D9D91AF6E6 ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
17:14:29.0968 2796 Wdf01000 - ok
17:14:29.0984 2796 WDICA - ok
17:14:30.0000 2796 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
17:14:30.0000 2796 wdmaud - ok
17:14:30.0015 2796 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
17:14:30.0031 2796 WebClient - ok
17:14:30.0078 2796 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
17:14:30.0078 2796 winmgmt - ok
17:14:30.0109 2796 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
17:14:30.0109 2796 WmdmPmSN - ok
17:14:30.0125 2796 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
17:14:30.0125 2796 WmiApSrv - ok
17:14:30.0171 2796 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
17:14:30.0187 2796 WMPNetworkSvc - ok
17:14:30.0265 2796 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
17:14:30.0265 2796 WPFFontCache_v0400 - ok
17:14:30.0296 2796 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
17:14:30.0296 2796 wscsvc - ok
17:14:30.0312 2796 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
17:14:30.0328 2796 wuauserv - ok
17:14:30.0359 2796 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
17:14:30.0359 2796 WudfPf - ok
17:14:30.0359 2796 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
17:14:30.0375 2796 WudfRd - ok
17:14:30.0375 2796 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
17:14:30.0390 2796 WudfSvc - ok
17:14:30.0421 2796 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
17:14:30.0500 2796 WZCSVC - ok
17:14:30.0515 2796 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
17:14:30.0531 2796 xmlprov - ok
17:14:30.0562 2796 [ 96F714B7431C297373038F5DF8B53685 ] yukonwxp C:\WINDOWS\system32\DRIVERS\yk51x86.sys
17:14:30.0562 2796 yukonwxp - ok
17:14:30.0562 2796 ================ Scan global ===============================
17:14:30.0593 2796 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
17:14:30.0625 2796 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
17:14:30.0656 2796 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
17:14:30.0671 2796 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
17:14:30.0687 2796 [Global] - ok
17:14:30.0687 2796 ================ Scan MBR ==================================
17:14:30.0703 2796 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
17:14:30.0859 2796 \Device\Harddisk0\DR0 - ok
17:14:30.0859 2796 ================ Scan VBR ==================================
17:14:30.0859 2796 [ 310416D9C908BD884ED97CB4FBA36842 ] \Device\Harddisk0\DR0\Partition1
17:14:30.0859 2796 \Device\Harddisk0\DR0\Partition1 - ok
17:14:30.0875 2796 [ 3E1987A732718D7AB946370BE3411155 ] \Device\Harddisk0\DR0\Partition2
17:14:30.0875 2796 \Device\Harddisk0\DR0\Partition2 - ok
17:14:30.0890 2796 [ B7391531982DD6F34155141F229FE769 ] \Device\Harddisk0\DR0\Partition3
17:14:30.0890 2796 \Device\Harddisk0\DR0\Partition3 - ok
17:14:30.0890 2796 ============================================================
17:14:30.0890 2796 Scan finished
17:14:30.0890 2796 ============================================================
17:14:30.0906 3548 Detected object count: 0
17:14:30.0906 3548 Actual detected object count: 0
17:14:43.0859 3412 Deinitialize success
Re: Prosím o zkontrolování logu - zpomalené PC
Protože jsem překročil maximální počet znaků (60 000 
), dávám sem poslední log:
ComboFix (by sUBs)
ComboFix 12-08-20.01 - Pája 20.08.2012 17:38:28.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2046.1253 [GMT 2:00]
Spuštěný z: c:\documents and settings\Pßja\Dokumenty\Sta×enÚ soubory\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\docume~1\PJA~1\LOCALS~1\Temp\bd7c47bb-f5c0-417c-a180-ec348d87718a\CliSecureRT.dll
c:\documents and settings\Pája\Local Settings\Temp\bd7c47bb-f5c0-417c-a180-ec348d87718a\CliSecureRT.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-07-20 do 2012-08-20 )))))))))))))))))))))))))))))))
.
.
2012-08-16 16:02 . 2012-08-16 16:02 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ATI
2012-08-16 15:37 . 2012-08-16 15:37 -------- d-----w- c:\program files\Driver-Soft
2012-08-16 14:26 . 2012-08-16 14:26 -------- d-----w- c:\documents and settings\Pája\Local Settings\Data aplikací\ATI
2012-08-16 14:26 . 2012-08-16 14:26 -------- d-----w- c:\documents and settings\Pája\Data aplikací\ATI
2012-08-16 14:17 . 2012-05-14 06:12 103040 ----a-w- c:\windows\system32\drivers\AtihdXP3.sys
2012-08-16 14:17 . 2012-08-16 14:17 0 ----a-w- c:\windows\ativpsrm.bin
2012-08-16 13:59 . 2012-08-16 15:53 -------- d-----w- C:\AMD
2012-08-16 13:45 . 2012-08-16 13:45 -------- d-----w- c:\program files\AMD APP
2012-08-16 13:44 . 2012-08-16 15:58 -------- d-----w- c:\program files\ATI Technologies
2012-08-16 13:44 . 2012-08-16 13:44 -------- d-----w- c:\program files\ATI
2012-08-16 13:23 . 2012-08-16 13:23 -------- d-----w- c:\program files\GIGABYTE
2012-08-16 13:23 . 2012-08-16 13:23 -------- d-----w- c:\windows\Downloaded Installations
2012-08-12 10:15 . 2012-08-12 10:15 -------- d-----w- c:\program files\CPUID
2012-08-12 10:03 . 2012-08-12 10:03 -------- d-----w- c:\program files\Lavalys
2012-08-10 07:27 . 2012-08-05 18:42 -------- d-----w- C:\Ocelová pěst CZ - DVD
2012-08-09 12:13 . 2012-08-09 12:13 -------- d-----w- c:\documents and settings\Pája\Data aplikací\HateML
2012-08-08 14:21 . 2012-08-08 14:21 -------- d-----w- c:\documents and settings\Pája\Data aplikací\HellShare Upload Manager
2012-08-08 14:17 . 2012-08-08 14:17 -------- d-----w- c:\program files\HellShare Upload Manager
2012-07-28 07:23 . 2012-07-28 07:23 -------- d-----w- c:\documents and settings\Pája\Data aplikací\YTD
2012-07-28 07:23 . 2012-07-28 07:23 -------- d-----w- c:\documents and settings\Pája\Data aplikací\wtxpcom
2012-07-28 06:22 . 2012-07-28 06:22 -------- d-----w- c:\documents and settings\Pája\Data aplikací\Search Settings
2012-07-25 11:34 . 2012-07-25 11:34 -------- d-----w- c:\program files\Common Files\Skype
2012-07-22 13:51 . 2012-07-22 13:51 -------- d-----w- c:\documents and settings\Pája\Local Settings\Data aplikací\Websurf_Browser
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-16 13:36 . 2012-04-03 15:28 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-16 13:36 . 2012-04-03 15:28 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-28 04:05 . 2012-04-03 15:00 6646784 ----a-w- c:\windows\system32\drivers\ati2mtag.sys
2012-07-28 02:01 . 2008-04-14 03:21 305664 ----a-w- c:\windows\system32\ati2dvag.dll
2012-07-28 01:57 . 2008-04-14 03:21 4615648 ----a-w- c:\windows\system32\ati3duag.dll
2012-07-28 01:34 . 2008-04-14 03:21 3578112 ----a-w- c:\windows\system32\ativvaxx.dll
2012-07-28 01:17 . 2008-04-14 03:21 675840 ----a-w- c:\windows\system32\ati2cqag.dll
2012-07-06 13:58 . 2006-03-02 12:00 78336 ----a-w- c:\windows\system32\browser.dll
2012-07-04 14:05 . 2012-04-03 14:28 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-07-03 18:22 . 2006-03-02 12:00 1866112 ----a-w- c:\windows\system32\win32k.sys
2012-07-03 16:21 . 2012-04-03 15:37 54232 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-07-03 16:21 . 2012-04-03 15:37 353688 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-07-03 16:21 . 2012-04-03 15:37 21256 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-07-03 16:21 . 2012-04-03 15:37 35928 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-07-03 16:21 . 2012-04-03 15:37 97608 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2012-07-03 16:21 . 2012-04-03 15:37 89624 ----a-w- c:\windows\system32\drivers\aswmon.sys
2012-07-03 16:21 . 2012-04-03 15:37 721000 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-07-03 16:21 . 2012-04-03 15:37 25256 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2012-07-03 16:21 . 2012-04-03 15:36 41224 ----a-w- c:\windows\avastSS.scr
2012-07-03 16:21 . 2012-04-03 15:36 227648 ----a-w- c:\windows\system32\aswBoot.exe
2012-07-02 17:38 . 2006-03-02 12:00 916992 ----a-w- c:\windows\system32\wininet.dll
2012-07-02 17:38 . 2006-03-02 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2012-07-02 17:38 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-07-02 12:05 . 2006-03-02 12:00 385024 ------w- c:\windows\system32\html.iec
2012-06-06 06:49 . 2012-06-06 06:49 1070152 ----a-w- c:\windows\system32\MSCOMCTL.OCX
2012-06-05 15:49 . 2008-04-14 03:21 1372672 ------w- c:\windows\system32\msxml6.dll
2012-06-05 15:49 . 2006-03-02 12:00 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-04 04:32 . 2006-03-02 12:00 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 13:19 . 2009-08-06 17:24 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 13:19 . 2009-08-06 17:24 22552 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 13:19 . 2012-04-03 14:30 329240 ----a-w- c:\windows\system32\wucltui.dll
2012-06-02 13:19 . 2012-04-03 14:30 210968 ----a-w- c:\windows\system32\wuweb.dll
2012-06-02 13:19 . 2012-04-03 14:30 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 13:19 . 2012-04-03 14:30 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 13:19 . 2012-04-03 14:30 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 13:19 . 2009-08-06 17:24 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 13:19 . 2009-08-06 17:24 18456 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-06-02 13:19 . 2009-08-06 17:24 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 13:19 . 2006-03-02 12:00 97304 ----a-w- c:\windows\system32\cdm.dll
2012-06-02 13:19 . 2012-04-03 14:30 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 13:19 . 2012-04-03 14:30 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 13:19 . 2012-04-03 18:04 17648 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-06-02 13:18 . 2012-04-03 18:04 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-06-02 13:18 . 2012-04-03 18:04 214256 ----a-w- c:\windows\system32\muweb.dll
2012-05-31 13:22 . 2006-03-02 12:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2012-07-18 11:31 . 2012-04-03 15:06 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-07-03 16:21 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2012-02-13 3481408]
"KiesHelper"="c:\program files\Samsung\Kies\KiesHelper.exe" [2012-03-31 954256]
"KiesPDLR"="c:\program files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2012-03-31 21392]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-03-12 153136]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2012-07-13 17418928]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2006-11-14 16270848]
"SkyTel"="SkyTel.EXE" [2006-05-16 2879488]
"JMB36X IDE Setup"="c:\windows\RaidTool\xInsIDE.exe" [2010-09-07 43608]
"36X Raid Configurer"="c:\windows\system32\xRaidSetup.exe" [2010-09-07 1976920]
"Gainward"="c:\windows\TBPanel.exe" [2007-04-23 2173744]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-07-03 4273976]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 500208]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-05-30 59280]
"KiesTrayAgent"="c:\program files\Samsung\Kies\KiesTrayAgent.exe" [2012-03-31 3521424]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2011-03-24 49208]
"PDFPrint"="c:\program files\PDF24\pdf24.exe" [2012-04-03 160840]
"USBToolTip"="c:\progra~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe" [2007-02-20 199752]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-07-27 98304]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\TC UP\\PLUGINS\\Media\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\ICQ7.7\\ICQ.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\TC UP\\TOTALCMD.EXE"=
"c:\\WINDOWS\\system32\\muzapp.exe"=
"c:\\Program Files\\UBISOFT\\Tom Clancy's Rainbow Six Vegas 2\\Binaries\\R6Vegas2_Game.exe"=
"c:\\Program Files\\Ubisoft2\\Ghost Recon Advanced Warfighter 2\\graw2.exe"=
"c:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"=
"c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Pinnacle\\Studio 15\\Programs\\RM.exe"=
"c:\\Program Files\\Pinnacle\\Studio 15\\Programs\\Studio.exe"=
"c:\\Program Files\\Pinnacle\\Studio 15\\Programs\\umi.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [3.4.2012 17:37 721000]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [3.4.2012 17:37 353688]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [3.4.2012 17:21 242240]
R1 VD_FileDisk;VD_FileDisk;c:\windows\system32\drivers\vd_filedisk.sys [26.1.2011 19:28 24680]
R2 acedrv11;acedrv11;c:\windows\system32\drivers\acedrv11.sys [24.2.2010 12:22 185472]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [3.4.2012 17:37 21256]
R2 Skype C2C Service;Skype C2C Service;c:\documents and settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [5.7.2012 18:41 3048136]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdXP3.sys [16.8.2012 16:17 103040]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [9.1.2010 21:37 4640000]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [3.4.2012 17:21 136176]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [13.7.2012 13:28 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [3.4.2012 17:28 250056]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\drivers\ssadadb.sys [22.4.2012 12:45 30312]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [3.4.2012 17:21 136176]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [12.6.2011 11:15 31125880]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [25.4.2012 14:11 113120]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\drivers\ssadbus.sys [22.4.2012 12:45 96488]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\drivers\ssadmdfl.sys [22.4.2012 12:45 12776]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\drivers\ssadmdm.sys [22.4.2012 12:45 121576]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\drivers\ssadserd.sys [22.4.2012 12:45 98152]
S3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [19.2.2010 13:37 517096]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
Obsah adresáře 'Naplánované úlohy'
.
2012-08-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-03 13:36]
.
2012-07-19 c:\windows\Tasks\AdobeAAMUpdater-1.0-DOMA-D09628956E-Pája.job
- c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [2012-04-04 05:19]
.
2012-08-20 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 15:57]
.
2012-08-20 c:\windows\Tasks\AutoKMS.job
- c:\windows\AutoKMS\AutoKMS.exe [2012-04-04 14:08]
.
2012-08-20 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2012-07-02 16:21]
.
2012-08-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-03 15:21]
.
2012-08-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-03 15:21]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files\ICQ7.7\ICQ.exe
TCP: DhcpNameServer = 192.168.15.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKCU-Run-AdobeBridge - (no file)
HKLM-Run-TaskTray - (no file)
AddRemove-01_Simmental - c:\program files\SAMSUNG\USB Drivers\01_Simmental\Uninstall.exe
AddRemove-02_Siberian - c:\program files\SAMSUNG\USB Drivers\02_Siberian\Uninstall.exe
AddRemove-03_Swallowtail - c:\program files\SAMSUNG\USB Drivers\03_Swallowtail\Uninstall.exe
AddRemove-04_semseyite - c:\program files\SAMSUNG\USB Drivers\04_semseyite\Uninstall.exe
AddRemove-05_Sloan - c:\program files\SAMSUNG\USB Drivers\05_Sloan\Uninstall.exe
AddRemove-06_Spencer - c:\program files\SAMSUNG\USB Drivers\06_Spencer\Uninstall.exe
AddRemove-07_Schorl - c:\program files\SAMSUNG\USB Drivers\07_Schorl\Uninstall.exe
AddRemove-08_EMPChipset - c:\program files\SAMSUNG\USB Drivers\08_EMPChipset\Uninstall.exe
AddRemove-09_Hsp - c:\program files\SAMSUNG\USB Drivers\09_Hsp\Uninstall.exe
AddRemove-11_HSP_Plus_Default - c:\program files\SAMSUNG\USB Drivers\11_HSP_Plus_Default\Uninstall.exe
AddRemove-12_Symbian_USB_Download_Driver - c:\program files\SAMSUNG\USB Drivers\12_Symbian_USB_Download_Driver\Uninstall.exe
AddRemove-15_Symbian_Samsung_PC_DLC_Driver - c:\program files\SAMSUNG\USB Drivers\15_Symbian_Samsung_PC_DLC_Driver\Uninstall.exe
AddRemove-16_Shrewsbury - c:\program files\SAMSUNG\USB Drivers\16_Shrewsbury\Uninstall.exe
AddRemove-17_EMP_Chipset2 - c:\program files\SAMSUNG\USB Drivers\17_EMP_Chipset2\Uninstall.exe
AddRemove-18_Zinia_Serial_Driver - c:\program files\SAMSUNG\USB Drivers\18_Zinia_Serial_Driver\Uninstall.exe
AddRemove-19_VIA_driver - c:\program files\SAMSUNG\USB Drivers\19_VIA_driver\Uninstall.exe
AddRemove-20_NXP_Driver - c:\program files\SAMSUNG\USB Drivers\20_NXP_Driver\Uninstall.exe
AddRemove-21_Searsburg - c:\program files\SAMSUNG\USB Drivers\21_Searsburg\Uninstall.exe
AddRemove-22_WiBro_WiMAX - c:\program files\Samsung\USB Drivers\22_WiBro_WiMAX\Uninstall.exe
AddRemove-24_flashusbdriver - c:\program files\Samsung\USB Drivers\24_flashusbdriver\Uninstall.exe
AddRemove-25_escape - c:\program files\Samsung\USB Drivers\25_escape\Uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-08-20 17:50
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(844)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
- - - - - - - > 'explorer.exe'(560)
c:\windows\system32\msi.dll
c:\progra~1\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf
c:\progra~1\MICROS~2\Office14\1029\GrooveIntlResource.dll
c:\program files\iTunes\iTunesMiniPlayer.dll
c:\program files\iTunes\iTunesMiniPlayer.Resources\cs.lproj\iTunesMiniPlayerLocalized.dll
c:\program files\iTunes\iTunesMiniPlayer.Resources\iTunesMiniPlayer.dll
c:\progra~1\WINDOW~2\wmpband.dll
c:\program files\Common Files\Ahead\Lib\NeroDigitalExt.dll
c:\program files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\windows\system32\HPZipm12.exe
c:\windows\RTHDCPL.EXE
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\Common Files\Ahead\Lib\NMIndexingService.exe
c:\program files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Celkový čas: 2012-08-20 17:55:17 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-08-20 15:55
.
Před spuštěním: Volných bajtů: 25 273 683 968
Po spuštění: Volných bajtů: 25 219 059 712
.
- - End Of File - - CE7C741D9AC024530E8F62A92364694E
), dávám sem poslední log:ComboFix (by sUBs)
ComboFix 12-08-20.01 - Pája 20.08.2012 17:38:28.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2046.1253 [GMT 2:00]
Spuštěný z: c:\documents and settings\Pßja\Dokumenty\Sta×enÚ soubory\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\docume~1\PJA~1\LOCALS~1\Temp\bd7c47bb-f5c0-417c-a180-ec348d87718a\CliSecureRT.dll
c:\documents and settings\Pája\Local Settings\Temp\bd7c47bb-f5c0-417c-a180-ec348d87718a\CliSecureRT.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-07-20 do 2012-08-20 )))))))))))))))))))))))))))))))
.
.
2012-08-16 16:02 . 2012-08-16 16:02 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ATI
2012-08-16 15:37 . 2012-08-16 15:37 -------- d-----w- c:\program files\Driver-Soft
2012-08-16 14:26 . 2012-08-16 14:26 -------- d-----w- c:\documents and settings\Pája\Local Settings\Data aplikací\ATI
2012-08-16 14:26 . 2012-08-16 14:26 -------- d-----w- c:\documents and settings\Pája\Data aplikací\ATI
2012-08-16 14:17 . 2012-05-14 06:12 103040 ----a-w- c:\windows\system32\drivers\AtihdXP3.sys
2012-08-16 14:17 . 2012-08-16 14:17 0 ----a-w- c:\windows\ativpsrm.bin
2012-08-16 13:59 . 2012-08-16 15:53 -------- d-----w- C:\AMD
2012-08-16 13:45 . 2012-08-16 13:45 -------- d-----w- c:\program files\AMD APP
2012-08-16 13:44 . 2012-08-16 15:58 -------- d-----w- c:\program files\ATI Technologies
2012-08-16 13:44 . 2012-08-16 13:44 -------- d-----w- c:\program files\ATI
2012-08-16 13:23 . 2012-08-16 13:23 -------- d-----w- c:\program files\GIGABYTE
2012-08-16 13:23 . 2012-08-16 13:23 -------- d-----w- c:\windows\Downloaded Installations
2012-08-12 10:15 . 2012-08-12 10:15 -------- d-----w- c:\program files\CPUID
2012-08-12 10:03 . 2012-08-12 10:03 -------- d-----w- c:\program files\Lavalys
2012-08-10 07:27 . 2012-08-05 18:42 -------- d-----w- C:\Ocelová pěst CZ - DVD
2012-08-09 12:13 . 2012-08-09 12:13 -------- d-----w- c:\documents and settings\Pája\Data aplikací\HateML
2012-08-08 14:21 . 2012-08-08 14:21 -------- d-----w- c:\documents and settings\Pája\Data aplikací\HellShare Upload Manager
2012-08-08 14:17 . 2012-08-08 14:17 -------- d-----w- c:\program files\HellShare Upload Manager
2012-07-28 07:23 . 2012-07-28 07:23 -------- d-----w- c:\documents and settings\Pája\Data aplikací\YTD
2012-07-28 07:23 . 2012-07-28 07:23 -------- d-----w- c:\documents and settings\Pája\Data aplikací\wtxpcom
2012-07-28 06:22 . 2012-07-28 06:22 -------- d-----w- c:\documents and settings\Pája\Data aplikací\Search Settings
2012-07-25 11:34 . 2012-07-25 11:34 -------- d-----w- c:\program files\Common Files\Skype
2012-07-22 13:51 . 2012-07-22 13:51 -------- d-----w- c:\documents and settings\Pája\Local Settings\Data aplikací\Websurf_Browser
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-16 13:36 . 2012-04-03 15:28 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-16 13:36 . 2012-04-03 15:28 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-28 04:05 . 2012-04-03 15:00 6646784 ----a-w- c:\windows\system32\drivers\ati2mtag.sys
2012-07-28 02:01 . 2008-04-14 03:21 305664 ----a-w- c:\windows\system32\ati2dvag.dll
2012-07-28 01:57 . 2008-04-14 03:21 4615648 ----a-w- c:\windows\system32\ati3duag.dll
2012-07-28 01:34 . 2008-04-14 03:21 3578112 ----a-w- c:\windows\system32\ativvaxx.dll
2012-07-28 01:17 . 2008-04-14 03:21 675840 ----a-w- c:\windows\system32\ati2cqag.dll
2012-07-06 13:58 . 2006-03-02 12:00 78336 ----a-w- c:\windows\system32\browser.dll
2012-07-04 14:05 . 2012-04-03 14:28 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-07-03 18:22 . 2006-03-02 12:00 1866112 ----a-w- c:\windows\system32\win32k.sys
2012-07-03 16:21 . 2012-04-03 15:37 54232 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-07-03 16:21 . 2012-04-03 15:37 353688 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-07-03 16:21 . 2012-04-03 15:37 21256 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-07-03 16:21 . 2012-04-03 15:37 35928 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-07-03 16:21 . 2012-04-03 15:37 97608 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2012-07-03 16:21 . 2012-04-03 15:37 89624 ----a-w- c:\windows\system32\drivers\aswmon.sys
2012-07-03 16:21 . 2012-04-03 15:37 721000 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-07-03 16:21 . 2012-04-03 15:37 25256 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2012-07-03 16:21 . 2012-04-03 15:36 41224 ----a-w- c:\windows\avastSS.scr
2012-07-03 16:21 . 2012-04-03 15:36 227648 ----a-w- c:\windows\system32\aswBoot.exe
2012-07-02 17:38 . 2006-03-02 12:00 916992 ----a-w- c:\windows\system32\wininet.dll
2012-07-02 17:38 . 2006-03-02 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2012-07-02 17:38 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-07-02 12:05 . 2006-03-02 12:00 385024 ------w- c:\windows\system32\html.iec
2012-06-06 06:49 . 2012-06-06 06:49 1070152 ----a-w- c:\windows\system32\MSCOMCTL.OCX
2012-06-05 15:49 . 2008-04-14 03:21 1372672 ------w- c:\windows\system32\msxml6.dll
2012-06-05 15:49 . 2006-03-02 12:00 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-04 04:32 . 2006-03-02 12:00 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 13:19 . 2009-08-06 17:24 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 13:19 . 2009-08-06 17:24 22552 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 13:19 . 2012-04-03 14:30 329240 ----a-w- c:\windows\system32\wucltui.dll
2012-06-02 13:19 . 2012-04-03 14:30 210968 ----a-w- c:\windows\system32\wuweb.dll
2012-06-02 13:19 . 2012-04-03 14:30 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 13:19 . 2012-04-03 14:30 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 13:19 . 2012-04-03 14:30 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 13:19 . 2009-08-06 17:24 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 13:19 . 2009-08-06 17:24 18456 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-06-02 13:19 . 2009-08-06 17:24 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 13:19 . 2006-03-02 12:00 97304 ----a-w- c:\windows\system32\cdm.dll
2012-06-02 13:19 . 2012-04-03 14:30 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 13:19 . 2012-04-03 14:30 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 13:19 . 2012-04-03 18:04 17648 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-06-02 13:18 . 2012-04-03 18:04 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-06-02 13:18 . 2012-04-03 18:04 214256 ----a-w- c:\windows\system32\muweb.dll
2012-05-31 13:22 . 2006-03-02 12:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2012-07-18 11:31 . 2012-04-03 15:06 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-07-03 16:21 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2012-02-13 3481408]
"KiesHelper"="c:\program files\Samsung\Kies\KiesHelper.exe" [2012-03-31 954256]
"KiesPDLR"="c:\program files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2012-03-31 21392]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-03-12 153136]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2012-07-13 17418928]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2006-11-14 16270848]
"SkyTel"="SkyTel.EXE" [2006-05-16 2879488]
"JMB36X IDE Setup"="c:\windows\RaidTool\xInsIDE.exe" [2010-09-07 43608]
"36X Raid Configurer"="c:\windows\system32\xRaidSetup.exe" [2010-09-07 1976920]
"Gainward"="c:\windows\TBPanel.exe" [2007-04-23 2173744]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-07-03 4273976]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 500208]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-05-30 59280]
"KiesTrayAgent"="c:\program files\Samsung\Kies\KiesTrayAgent.exe" [2012-03-31 3521424]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2011-03-24 49208]
"PDFPrint"="c:\program files\PDF24\pdf24.exe" [2012-04-03 160840]
"USBToolTip"="c:\progra~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe" [2007-02-20 199752]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-07-27 98304]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\TC UP\\PLUGINS\\Media\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\ICQ7.7\\ICQ.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\TC UP\\TOTALCMD.EXE"=
"c:\\WINDOWS\\system32\\muzapp.exe"=
"c:\\Program Files\\UBISOFT\\Tom Clancy's Rainbow Six Vegas 2\\Binaries\\R6Vegas2_Game.exe"=
"c:\\Program Files\\Ubisoft2\\Ghost Recon Advanced Warfighter 2\\graw2.exe"=
"c:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"=
"c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Pinnacle\\Studio 15\\Programs\\RM.exe"=
"c:\\Program Files\\Pinnacle\\Studio 15\\Programs\\Studio.exe"=
"c:\\Program Files\\Pinnacle\\Studio 15\\Programs\\umi.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [3.4.2012 17:37 721000]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [3.4.2012 17:37 353688]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [3.4.2012 17:21 242240]
R1 VD_FileDisk;VD_FileDisk;c:\windows\system32\drivers\vd_filedisk.sys [26.1.2011 19:28 24680]
R2 acedrv11;acedrv11;c:\windows\system32\drivers\acedrv11.sys [24.2.2010 12:22 185472]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [3.4.2012 17:37 21256]
R2 Skype C2C Service;Skype C2C Service;c:\documents and settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [5.7.2012 18:41 3048136]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdXP3.sys [16.8.2012 16:17 103040]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [9.1.2010 21:37 4640000]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [3.4.2012 17:21 136176]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [13.7.2012 13:28 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [3.4.2012 17:28 250056]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\drivers\ssadadb.sys [22.4.2012 12:45 30312]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [3.4.2012 17:21 136176]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [12.6.2011 11:15 31125880]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [25.4.2012 14:11 113120]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\drivers\ssadbus.sys [22.4.2012 12:45 96488]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\drivers\ssadmdfl.sys [22.4.2012 12:45 12776]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\drivers\ssadmdm.sys [22.4.2012 12:45 121576]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\drivers\ssadserd.sys [22.4.2012 12:45 98152]
S3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [19.2.2010 13:37 517096]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
Obsah adresáře 'Naplánované úlohy'
.
2012-08-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-03 13:36]
.
2012-07-19 c:\windows\Tasks\AdobeAAMUpdater-1.0-DOMA-D09628956E-Pája.job
- c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [2012-04-04 05:19]
.
2012-08-20 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 15:57]
.
2012-08-20 c:\windows\Tasks\AutoKMS.job
- c:\windows\AutoKMS\AutoKMS.exe [2012-04-04 14:08]
.
2012-08-20 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2012-07-02 16:21]
.
2012-08-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-03 15:21]
.
2012-08-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-03 15:21]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files\ICQ7.7\ICQ.exe
TCP: DhcpNameServer = 192.168.15.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKCU-Run-AdobeBridge - (no file)
HKLM-Run-TaskTray - (no file)
AddRemove-01_Simmental - c:\program files\SAMSUNG\USB Drivers\01_Simmental\Uninstall.exe
AddRemove-02_Siberian - c:\program files\SAMSUNG\USB Drivers\02_Siberian\Uninstall.exe
AddRemove-03_Swallowtail - c:\program files\SAMSUNG\USB Drivers\03_Swallowtail\Uninstall.exe
AddRemove-04_semseyite - c:\program files\SAMSUNG\USB Drivers\04_semseyite\Uninstall.exe
AddRemove-05_Sloan - c:\program files\SAMSUNG\USB Drivers\05_Sloan\Uninstall.exe
AddRemove-06_Spencer - c:\program files\SAMSUNG\USB Drivers\06_Spencer\Uninstall.exe
AddRemove-07_Schorl - c:\program files\SAMSUNG\USB Drivers\07_Schorl\Uninstall.exe
AddRemove-08_EMPChipset - c:\program files\SAMSUNG\USB Drivers\08_EMPChipset\Uninstall.exe
AddRemove-09_Hsp - c:\program files\SAMSUNG\USB Drivers\09_Hsp\Uninstall.exe
AddRemove-11_HSP_Plus_Default - c:\program files\SAMSUNG\USB Drivers\11_HSP_Plus_Default\Uninstall.exe
AddRemove-12_Symbian_USB_Download_Driver - c:\program files\SAMSUNG\USB Drivers\12_Symbian_USB_Download_Driver\Uninstall.exe
AddRemove-15_Symbian_Samsung_PC_DLC_Driver - c:\program files\SAMSUNG\USB Drivers\15_Symbian_Samsung_PC_DLC_Driver\Uninstall.exe
AddRemove-16_Shrewsbury - c:\program files\SAMSUNG\USB Drivers\16_Shrewsbury\Uninstall.exe
AddRemove-17_EMP_Chipset2 - c:\program files\SAMSUNG\USB Drivers\17_EMP_Chipset2\Uninstall.exe
AddRemove-18_Zinia_Serial_Driver - c:\program files\SAMSUNG\USB Drivers\18_Zinia_Serial_Driver\Uninstall.exe
AddRemove-19_VIA_driver - c:\program files\SAMSUNG\USB Drivers\19_VIA_driver\Uninstall.exe
AddRemove-20_NXP_Driver - c:\program files\SAMSUNG\USB Drivers\20_NXP_Driver\Uninstall.exe
AddRemove-21_Searsburg - c:\program files\SAMSUNG\USB Drivers\21_Searsburg\Uninstall.exe
AddRemove-22_WiBro_WiMAX - c:\program files\Samsung\USB Drivers\22_WiBro_WiMAX\Uninstall.exe
AddRemove-24_flashusbdriver - c:\program files\Samsung\USB Drivers\24_flashusbdriver\Uninstall.exe
AddRemove-25_escape - c:\program files\Samsung\USB Drivers\25_escape\Uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-08-20 17:50
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(844)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
- - - - - - - > 'explorer.exe'(560)
c:\windows\system32\msi.dll
c:\progra~1\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf
c:\progra~1\MICROS~2\Office14\1029\GrooveIntlResource.dll
c:\program files\iTunes\iTunesMiniPlayer.dll
c:\program files\iTunes\iTunesMiniPlayer.Resources\cs.lproj\iTunesMiniPlayerLocalized.dll
c:\program files\iTunes\iTunesMiniPlayer.Resources\iTunesMiniPlayer.dll
c:\progra~1\WINDOW~2\wmpband.dll
c:\program files\Common Files\Ahead\Lib\NeroDigitalExt.dll
c:\program files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\windows\system32\HPZipm12.exe
c:\windows\RTHDCPL.EXE
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\Common Files\Ahead\Lib\NMIndexingService.exe
c:\program files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Celkový čas: 2012-08-20 17:55:17 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-08-20 15:55
.
Před spuštěním: Volných bajtů: 25 273 683 968
Po spuštění: Volných bajtů: 25 219 059 712
.
- - End Of File - - CE7C741D9AC024530E8F62A92364694E
-
memphisto
- Guru Level 13
- Příspěvky: 21113
- Registrován: září 06
- Bydliště: Zlín - České Budějovice
- Pohlaví:
- Stav:
Offline
Re: Prosím o zkontrolování logu - zpomalené PC
Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE
Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.
Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upus.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE
Kód: Vybrat vše
KillAll::
Folder::
c:\documents and settings\Pája\Data aplikací\Search Settings
Driver::
gupdate
File::
c:\program files\Google\Update\GoogleUpdate.exe
c:\windows\Tasks\AutoKMS.job
c:\windows\AutoKMS\AutoKMS.exe
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.
Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upus.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Re: Prosím o zkontrolování logu - zpomalené PC
log:
ComboFix 12-08-20.02 - Pája 20.08.2012 20:59:25.2.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2046.1454 [GMT 2:00]
Spuštěný z: c:\documents and settings\Pája\Dokumenty\Stažené soubory\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Pája\Plocha\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
FILE ::
"c:\program files\Google\Update\GoogleUpdate.exe"
"c:\windows\AutoKMS\AutoKMS.exe"
"c:\windows\Tasks\AutoKMS.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_GUPDATE
-------\Service_gupdate
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-07-20 do 2012-08-20 )))))))))))))))))))))))))))))))
.
.
2012-08-19 13:28 . 2012-08-19 13:28 -------- d-----w- c:\documents and settings\Pája\Data aplikací\Malwarebytes
2012-08-19 13:27 . 2012-08-19 13:27 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2012-08-19 13:27 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-19 13:27 . 2012-08-19 13:27 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-08-19 13:08 . 2012-08-19 13:08 -------- d-sh--w- c:\documents and settings\Pája\IECompatCache
2012-08-19 12:59 . 2012-08-19 12:59 388096 ----a-r- c:\documents and settings\Pája\Data aplikací\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-08-16 17:33 . 2012-08-16 17:33 -------- d-----w- c:\documents and settings\Pája\Local Settings\Data aplikací\Activision
2012-08-16 17:04 . 2012-08-16 17:04 -------- d-----w- c:\program files\Activision
2012-08-16 16:02 . 2012-08-16 16:02 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ATI
2012-08-16 15:37 . 2012-08-16 15:37 -------- d-----w- c:\program files\Driver-Soft
2012-08-16 14:26 . 2012-08-16 14:26 -------- d-----w- c:\documents and settings\Pája\Local Settings\Data aplikací\ATI
2012-08-16 14:26 . 2012-08-16 14:26 -------- d-----w- c:\documents and settings\Pája\Data aplikací\ATI
2012-08-16 14:17 . 2012-05-14 06:12 103040 ----a-w- c:\windows\system32\drivers\AtihdXP3.sys
2012-08-16 14:17 . 2012-08-16 14:17 0 ----a-w- c:\windows\ativpsrm.bin
2012-08-16 13:59 . 2012-08-16 15:53 -------- d-----w- C:\AMD
2012-08-16 13:45 . 2012-08-16 13:45 -------- d-----w- c:\program files\AMD APP
2012-08-16 13:44 . 2012-08-16 15:58 -------- d-----w- c:\program files\ATI Technologies
2012-08-16 13:44 . 2012-08-16 13:44 -------- d-----w- c:\program files\ATI
2012-08-16 13:23 . 2012-08-16 13:23 -------- d-----w- c:\program files\GIGABYTE
2012-08-16 13:23 . 2012-08-16 13:23 -------- d-----w- c:\windows\Downloaded Installations
2012-08-12 10:15 . 2012-08-12 10:15 -------- d-----w- c:\program files\CPUID
2012-08-12 10:03 . 2012-08-12 10:03 -------- d-----w- c:\program files\Lavalys
2012-08-10 07:27 . 2012-08-05 18:42 -------- d-----w- C:\Ocelová pěst CZ - DVD
2012-08-09 12:13 . 2012-08-09 12:13 -------- d-----w- c:\documents and settings\Pája\Data aplikací\HateML
2012-08-08 14:21 . 2012-08-08 14:21 -------- d-----w- c:\documents and settings\Pája\Data aplikací\HellShare Upload Manager
2012-08-08 14:17 . 2012-08-08 14:17 -------- d-----w- c:\program files\HellShare Upload Manager
2012-07-28 07:23 . 2012-07-28 07:23 -------- d-----w- c:\documents and settings\Pája\Data aplikací\YTD
2012-07-28 07:23 . 2012-07-28 07:23 -------- d-----w- c:\documents and settings\Pája\Data aplikací\wtxpcom
2012-07-28 06:22 . 2012-07-28 06:22 -------- d-----w- c:\documents and settings\Pája\Data aplikací\Search Settings
2012-07-25 11:34 . 2012-07-25 11:34 -------- d-----w- c:\program files\Common Files\Skype
2012-07-22 13:51 . 2012-07-22 13:51 -------- d-----w- c:\documents and settings\Pája\Local Settings\Data aplikací\Websurf_Browser
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-16 13:36 . 2012-04-03 15:28 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-16 13:36 . 2012-04-03 15:28 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-28 04:05 . 2012-04-03 15:00 6646784 ----a-w- c:\windows\system32\drivers\ati2mtag.sys
2012-07-28 02:01 . 2008-04-14 03:21 305664 ----a-w- c:\windows\system32\ati2dvag.dll
2012-07-28 01:57 . 2008-04-14 03:21 4615648 ----a-w- c:\windows\system32\ati3duag.dll
2012-07-28 01:34 . 2008-04-14 03:21 3578112 ----a-w- c:\windows\system32\ativvaxx.dll
2012-07-28 01:17 . 2008-04-14 03:21 675840 ----a-w- c:\windows\system32\ati2cqag.dll
2012-07-06 13:58 . 2006-03-02 12:00 78336 ----a-w- c:\windows\system32\browser.dll
2012-07-04 14:05 . 2012-04-03 14:28 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-07-03 18:22 . 2006-03-02 12:00 1866112 ----a-w- c:\windows\system32\win32k.sys
2012-07-03 16:21 . 2012-04-03 15:37 54232 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-07-03 16:21 . 2012-04-03 15:37 353688 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-07-03 16:21 . 2012-04-03 15:37 21256 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-07-03 16:21 . 2012-04-03 15:37 35928 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-07-03 16:21 . 2012-04-03 15:37 97608 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2012-07-03 16:21 . 2012-04-03 15:37 89624 ----a-w- c:\windows\system32\drivers\aswmon.sys
2012-07-03 16:21 . 2012-04-03 15:37 721000 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-07-03 16:21 . 2012-04-03 15:37 25256 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2012-07-03 16:21 . 2012-04-03 15:36 41224 ----a-w- c:\windows\avastSS.scr
2012-07-03 16:21 . 2012-04-03 15:36 227648 ----a-w- c:\windows\system32\aswBoot.exe
2012-07-02 17:38 . 2006-03-02 12:00 916992 ----a-w- c:\windows\system32\wininet.dll
2012-07-02 17:38 . 2006-03-02 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2012-07-02 17:38 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-07-02 12:05 . 2006-03-02 12:00 385024 ------w- c:\windows\system32\html.iec
2012-06-06 06:49 . 2012-06-06 06:49 1070152 ----a-w- c:\windows\system32\MSCOMCTL.OCX
2012-06-05 15:49 . 2008-04-14 03:21 1372672 ------w- c:\windows\system32\msxml6.dll
2012-06-05 15:49 . 2006-03-02 12:00 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-04 04:32 . 2006-03-02 12:00 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 13:19 . 2009-08-06 17:24 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 13:19 . 2009-08-06 17:24 22552 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 13:19 . 2012-04-03 14:30 329240 ----a-w- c:\windows\system32\wucltui.dll
2012-06-02 13:19 . 2012-04-03 14:30 210968 ----a-w- c:\windows\system32\wuweb.dll
2012-06-02 13:19 . 2012-04-03 14:30 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 13:19 . 2012-04-03 14:30 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 13:19 . 2012-04-03 14:30 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 13:19 . 2009-08-06 17:24 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 13:19 . 2009-08-06 17:24 18456 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-06-02 13:19 . 2009-08-06 17:24 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 13:19 . 2006-03-02 12:00 97304 ----a-w- c:\windows\system32\cdm.dll
2012-06-02 13:19 . 2012-04-03 14:30 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 13:19 . 2012-04-03 14:30 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 13:19 . 2012-04-03 18:04 17648 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-06-02 13:18 . 2012-04-03 18:04 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-06-02 13:18 . 2012-04-03 18:04 214256 ----a-w- c:\windows\system32\muweb.dll
2012-05-31 13:22 . 2006-03-02 12:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2012-07-18 11:31 . 2012-04-03 15:06 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-07-03 16:21 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2012-02-13 3481408]
"KiesHelper"="c:\program files\Samsung\Kies\KiesHelper.exe" [2012-03-31 954256]
"KiesPDLR"="c:\program files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2012-03-31 21392]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-03-12 153136]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2012-07-13 17418928]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2006-11-14 16270848]
"SkyTel"="SkyTel.EXE" [2006-05-16 2879488]
"JMB36X IDE Setup"="c:\windows\RaidTool\xInsIDE.exe" [2010-09-07 43608]
"36X Raid Configurer"="c:\windows\system32\xRaidSetup.exe" [2010-09-07 1976920]
"Gainward"="c:\windows\TBPanel.exe" [2007-04-23 2173744]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-07-03 4273976]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 500208]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-05-30 59280]
"KiesTrayAgent"="c:\program files\Samsung\Kies\KiesTrayAgent.exe" [2012-03-31 3521424]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2011-03-24 49208]
"PDFPrint"="c:\program files\PDF24\pdf24.exe" [2012-04-03 160840]
"USBToolTip"="c:\progra~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe" [2007-02-20 199752]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-07-27 98304]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\TC UP\\PLUGINS\\Media\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\ICQ7.7\\ICQ.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\TC UP\\TOTALCMD.EXE"=
"c:\\WINDOWS\\system32\\muzapp.exe"=
"c:\\Program Files\\UBISOFT\\Tom Clancy's Rainbow Six Vegas 2\\Binaries\\R6Vegas2_Game.exe"=
"c:\\Program Files\\Ubisoft2\\Ghost Recon Advanced Warfighter 2\\graw2.exe"=
"c:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"=
"c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Pinnacle\\Studio 15\\Programs\\RM.exe"=
"c:\\Program Files\\Pinnacle\\Studio 15\\Programs\\Studio.exe"=
"c:\\Program Files\\Pinnacle\\Studio 15\\Programs\\umi.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [3.4.2012 17:37 721000]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [3.4.2012 17:37 353688]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [3.4.2012 17:21 242240]
R1 VD_FileDisk;VD_FileDisk;c:\windows\system32\drivers\vd_filedisk.sys [26.1.2011 19:28 24680]
R2 acedrv11;acedrv11;c:\windows\system32\drivers\acedrv11.sys [24.2.2010 12:22 185472]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [3.4.2012 17:37 21256]
R2 Skype C2C Service;Skype C2C Service;c:\documents and settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [5.7.2012 18:41 3048136]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdXP3.sys [16.8.2012 16:17 103040]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [9.1.2010 21:37 4640000]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [13.7.2012 13:28 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [3.4.2012 17:28 250056]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\drivers\ssadadb.sys [22.4.2012 12:45 30312]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [3.4.2012 17:21 136176]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [12.6.2011 11:15 31125880]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [25.4.2012 14:11 113120]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\drivers\ssadbus.sys [22.4.2012 12:45 96488]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\drivers\ssadmdfl.sys [22.4.2012 12:45 12776]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\drivers\ssadmdm.sys [22.4.2012 12:45 121576]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\drivers\ssadserd.sys [22.4.2012 12:45 98152]
S3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [19.2.2010 13:37 517096]
.
Obsah adresáře 'Naplánované úlohy'
.
2012-08-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-03 13:36]
.
2012-07-19 c:\windows\Tasks\AdobeAAMUpdater-1.0-DOMA-D09628956E-Pája.job
- c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [2012-04-04 05:19]
.
2012-08-20 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 15:57]
.
2012-08-20 c:\windows\Tasks\AutoKMS.job
- c:\windows\AutoKMS\AutoKMS.exe [2012-04-04 14:08]
.
2012-08-20 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2012-07-02 16:21]
.
2012-08-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-03 15:21]
.
2012-08-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-03 15:21]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files\ICQ7.7\ICQ.exe
TCP: DhcpNameServer = 192.168.15.1
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-08-20 21:12
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(844)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
- - - - - - - > 'explorer.exe'(2672)
c:\windows\system32\msi.dll
c:\progra~1\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf
c:\progra~1\MICROS~2\Office14\1029\GrooveIntlResource.dll
c:\program files\iTunes\iTunesMiniPlayer.dll
c:\program files\iTunes\iTunesMiniPlayer.Resources\cs.lproj\iTunesMiniPlayerLocalized.dll
c:\program files\iTunes\iTunesMiniPlayer.Resources\iTunesMiniPlayer.dll
c:\progra~1\WINDOW~2\wmpband.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\windows\system32\HPZipm12.exe
c:\windows\RTHDCPL.EXE
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\Common Files\Ahead\Lib\NMIndexingService.exe
c:\program files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
c:\windows\system32\wscntfy.exe
c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
.
**************************************************************************
.
Celkový čas: 2012-08-20 21:16:27 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-08-20 19:16
ComboFix2.txt 2012-08-20 15:55
.
Před spuštěním: Volných bajtů: 25 216 454 656
Po spuštění: Volných bajtů: 25 082 269 696
.
- - End Of File - - 0B07C22822D136363334E3EC19E54AB5
ComboFix 12-08-20.02 - Pája 20.08.2012 20:59:25.2.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2046.1454 [GMT 2:00]
Spuštěný z: c:\documents and settings\Pája\Dokumenty\Stažené soubory\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Pája\Plocha\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
FILE ::
"c:\program files\Google\Update\GoogleUpdate.exe"
"c:\windows\AutoKMS\AutoKMS.exe"
"c:\windows\Tasks\AutoKMS.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_GUPDATE
-------\Service_gupdate
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-07-20 do 2012-08-20 )))))))))))))))))))))))))))))))
.
.
2012-08-19 13:28 . 2012-08-19 13:28 -------- d-----w- c:\documents and settings\Pája\Data aplikací\Malwarebytes
2012-08-19 13:27 . 2012-08-19 13:27 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2012-08-19 13:27 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-19 13:27 . 2012-08-19 13:27 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-08-19 13:08 . 2012-08-19 13:08 -------- d-sh--w- c:\documents and settings\Pája\IECompatCache
2012-08-19 12:59 . 2012-08-19 12:59 388096 ----a-r- c:\documents and settings\Pája\Data aplikací\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-08-16 17:33 . 2012-08-16 17:33 -------- d-----w- c:\documents and settings\Pája\Local Settings\Data aplikací\Activision
2012-08-16 17:04 . 2012-08-16 17:04 -------- d-----w- c:\program files\Activision
2012-08-16 16:02 . 2012-08-16 16:02 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ATI
2012-08-16 15:37 . 2012-08-16 15:37 -------- d-----w- c:\program files\Driver-Soft
2012-08-16 14:26 . 2012-08-16 14:26 -------- d-----w- c:\documents and settings\Pája\Local Settings\Data aplikací\ATI
2012-08-16 14:26 . 2012-08-16 14:26 -------- d-----w- c:\documents and settings\Pája\Data aplikací\ATI
2012-08-16 14:17 . 2012-05-14 06:12 103040 ----a-w- c:\windows\system32\drivers\AtihdXP3.sys
2012-08-16 14:17 . 2012-08-16 14:17 0 ----a-w- c:\windows\ativpsrm.bin
2012-08-16 13:59 . 2012-08-16 15:53 -------- d-----w- C:\AMD
2012-08-16 13:45 . 2012-08-16 13:45 -------- d-----w- c:\program files\AMD APP
2012-08-16 13:44 . 2012-08-16 15:58 -------- d-----w- c:\program files\ATI Technologies
2012-08-16 13:44 . 2012-08-16 13:44 -------- d-----w- c:\program files\ATI
2012-08-16 13:23 . 2012-08-16 13:23 -------- d-----w- c:\program files\GIGABYTE
2012-08-16 13:23 . 2012-08-16 13:23 -------- d-----w- c:\windows\Downloaded Installations
2012-08-12 10:15 . 2012-08-12 10:15 -------- d-----w- c:\program files\CPUID
2012-08-12 10:03 . 2012-08-12 10:03 -------- d-----w- c:\program files\Lavalys
2012-08-10 07:27 . 2012-08-05 18:42 -------- d-----w- C:\Ocelová pěst CZ - DVD
2012-08-09 12:13 . 2012-08-09 12:13 -------- d-----w- c:\documents and settings\Pája\Data aplikací\HateML
2012-08-08 14:21 . 2012-08-08 14:21 -------- d-----w- c:\documents and settings\Pája\Data aplikací\HellShare Upload Manager
2012-08-08 14:17 . 2012-08-08 14:17 -------- d-----w- c:\program files\HellShare Upload Manager
2012-07-28 07:23 . 2012-07-28 07:23 -------- d-----w- c:\documents and settings\Pája\Data aplikací\YTD
2012-07-28 07:23 . 2012-07-28 07:23 -------- d-----w- c:\documents and settings\Pája\Data aplikací\wtxpcom
2012-07-28 06:22 . 2012-07-28 06:22 -------- d-----w- c:\documents and settings\Pája\Data aplikací\Search Settings
2012-07-25 11:34 . 2012-07-25 11:34 -------- d-----w- c:\program files\Common Files\Skype
2012-07-22 13:51 . 2012-07-22 13:51 -------- d-----w- c:\documents and settings\Pája\Local Settings\Data aplikací\Websurf_Browser
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-16 13:36 . 2012-04-03 15:28 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-16 13:36 . 2012-04-03 15:28 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-28 04:05 . 2012-04-03 15:00 6646784 ----a-w- c:\windows\system32\drivers\ati2mtag.sys
2012-07-28 02:01 . 2008-04-14 03:21 305664 ----a-w- c:\windows\system32\ati2dvag.dll
2012-07-28 01:57 . 2008-04-14 03:21 4615648 ----a-w- c:\windows\system32\ati3duag.dll
2012-07-28 01:34 . 2008-04-14 03:21 3578112 ----a-w- c:\windows\system32\ativvaxx.dll
2012-07-28 01:17 . 2008-04-14 03:21 675840 ----a-w- c:\windows\system32\ati2cqag.dll
2012-07-06 13:58 . 2006-03-02 12:00 78336 ----a-w- c:\windows\system32\browser.dll
2012-07-04 14:05 . 2012-04-03 14:28 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-07-03 18:22 . 2006-03-02 12:00 1866112 ----a-w- c:\windows\system32\win32k.sys
2012-07-03 16:21 . 2012-04-03 15:37 54232 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-07-03 16:21 . 2012-04-03 15:37 353688 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-07-03 16:21 . 2012-04-03 15:37 21256 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-07-03 16:21 . 2012-04-03 15:37 35928 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-07-03 16:21 . 2012-04-03 15:37 97608 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2012-07-03 16:21 . 2012-04-03 15:37 89624 ----a-w- c:\windows\system32\drivers\aswmon.sys
2012-07-03 16:21 . 2012-04-03 15:37 721000 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-07-03 16:21 . 2012-04-03 15:37 25256 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2012-07-03 16:21 . 2012-04-03 15:36 41224 ----a-w- c:\windows\avastSS.scr
2012-07-03 16:21 . 2012-04-03 15:36 227648 ----a-w- c:\windows\system32\aswBoot.exe
2012-07-02 17:38 . 2006-03-02 12:00 916992 ----a-w- c:\windows\system32\wininet.dll
2012-07-02 17:38 . 2006-03-02 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2012-07-02 17:38 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-07-02 12:05 . 2006-03-02 12:00 385024 ------w- c:\windows\system32\html.iec
2012-06-06 06:49 . 2012-06-06 06:49 1070152 ----a-w- c:\windows\system32\MSCOMCTL.OCX
2012-06-05 15:49 . 2008-04-14 03:21 1372672 ------w- c:\windows\system32\msxml6.dll
2012-06-05 15:49 . 2006-03-02 12:00 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-04 04:32 . 2006-03-02 12:00 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 13:19 . 2009-08-06 17:24 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 13:19 . 2009-08-06 17:24 22552 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 13:19 . 2012-04-03 14:30 329240 ----a-w- c:\windows\system32\wucltui.dll
2012-06-02 13:19 . 2012-04-03 14:30 210968 ----a-w- c:\windows\system32\wuweb.dll
2012-06-02 13:19 . 2012-04-03 14:30 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 13:19 . 2012-04-03 14:30 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 13:19 . 2012-04-03 14:30 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 13:19 . 2009-08-06 17:24 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 13:19 . 2009-08-06 17:24 18456 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-06-02 13:19 . 2009-08-06 17:24 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 13:19 . 2006-03-02 12:00 97304 ----a-w- c:\windows\system32\cdm.dll
2012-06-02 13:19 . 2012-04-03 14:30 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 13:19 . 2012-04-03 14:30 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 13:19 . 2012-04-03 18:04 17648 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-06-02 13:18 . 2012-04-03 18:04 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-06-02 13:18 . 2012-04-03 18:04 214256 ----a-w- c:\windows\system32\muweb.dll
2012-05-31 13:22 . 2006-03-02 12:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2012-07-18 11:31 . 2012-04-03 15:06 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-07-03 16:21 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2012-02-13 3481408]
"KiesHelper"="c:\program files\Samsung\Kies\KiesHelper.exe" [2012-03-31 954256]
"KiesPDLR"="c:\program files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2012-03-31 21392]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-03-12 153136]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2012-07-13 17418928]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2006-11-14 16270848]
"SkyTel"="SkyTel.EXE" [2006-05-16 2879488]
"JMB36X IDE Setup"="c:\windows\RaidTool\xInsIDE.exe" [2010-09-07 43608]
"36X Raid Configurer"="c:\windows\system32\xRaidSetup.exe" [2010-09-07 1976920]
"Gainward"="c:\windows\TBPanel.exe" [2007-04-23 2173744]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-07-03 4273976]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 500208]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-05-30 59280]
"KiesTrayAgent"="c:\program files\Samsung\Kies\KiesTrayAgent.exe" [2012-03-31 3521424]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2011-03-24 49208]
"PDFPrint"="c:\program files\PDF24\pdf24.exe" [2012-04-03 160840]
"USBToolTip"="c:\progra~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe" [2007-02-20 199752]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-07-27 98304]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\TC UP\\PLUGINS\\Media\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\ICQ7.7\\ICQ.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\TC UP\\TOTALCMD.EXE"=
"c:\\WINDOWS\\system32\\muzapp.exe"=
"c:\\Program Files\\UBISOFT\\Tom Clancy's Rainbow Six Vegas 2\\Binaries\\R6Vegas2_Game.exe"=
"c:\\Program Files\\Ubisoft2\\Ghost Recon Advanced Warfighter 2\\graw2.exe"=
"c:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"=
"c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Pinnacle\\Studio 15\\Programs\\RM.exe"=
"c:\\Program Files\\Pinnacle\\Studio 15\\Programs\\Studio.exe"=
"c:\\Program Files\\Pinnacle\\Studio 15\\Programs\\umi.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [3.4.2012 17:37 721000]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [3.4.2012 17:37 353688]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [3.4.2012 17:21 242240]
R1 VD_FileDisk;VD_FileDisk;c:\windows\system32\drivers\vd_filedisk.sys [26.1.2011 19:28 24680]
R2 acedrv11;acedrv11;c:\windows\system32\drivers\acedrv11.sys [24.2.2010 12:22 185472]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [3.4.2012 17:37 21256]
R2 Skype C2C Service;Skype C2C Service;c:\documents and settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [5.7.2012 18:41 3048136]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdXP3.sys [16.8.2012 16:17 103040]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [9.1.2010 21:37 4640000]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [13.7.2012 13:28 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [3.4.2012 17:28 250056]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\drivers\ssadadb.sys [22.4.2012 12:45 30312]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [3.4.2012 17:21 136176]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [12.6.2011 11:15 31125880]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [25.4.2012 14:11 113120]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\drivers\ssadbus.sys [22.4.2012 12:45 96488]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\drivers\ssadmdfl.sys [22.4.2012 12:45 12776]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\drivers\ssadmdm.sys [22.4.2012 12:45 121576]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\drivers\ssadserd.sys [22.4.2012 12:45 98152]
S3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [19.2.2010 13:37 517096]
.
Obsah adresáře 'Naplánované úlohy'
.
2012-08-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-03 13:36]
.
2012-07-19 c:\windows\Tasks\AdobeAAMUpdater-1.0-DOMA-D09628956E-Pája.job
- c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [2012-04-04 05:19]
.
2012-08-20 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 15:57]
.
2012-08-20 c:\windows\Tasks\AutoKMS.job
- c:\windows\AutoKMS\AutoKMS.exe [2012-04-04 14:08]
.
2012-08-20 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2012-07-02 16:21]
.
2012-08-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-03 15:21]
.
2012-08-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-03 15:21]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files\ICQ7.7\ICQ.exe
TCP: DhcpNameServer = 192.168.15.1
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-08-20 21:12
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(844)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
- - - - - - - > 'explorer.exe'(2672)
c:\windows\system32\msi.dll
c:\progra~1\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf
c:\progra~1\MICROS~2\Office14\1029\GrooveIntlResource.dll
c:\program files\iTunes\iTunesMiniPlayer.dll
c:\program files\iTunes\iTunesMiniPlayer.Resources\cs.lproj\iTunesMiniPlayerLocalized.dll
c:\program files\iTunes\iTunesMiniPlayer.Resources\iTunesMiniPlayer.dll
c:\progra~1\WINDOW~2\wmpband.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\windows\system32\HPZipm12.exe
c:\windows\RTHDCPL.EXE
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\Common Files\Ahead\Lib\NMIndexingService.exe
c:\program files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
c:\windows\system32\wscntfy.exe
c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
.
**************************************************************************
.
Celkový čas: 2012-08-20 21:16:27 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-08-20 19:16
ComboFix2.txt 2012-08-20 15:55
.
Před spuštěním: Volných bajtů: 25 216 454 656
Po spuštění: Volných bajtů: 25 082 269 696
.
- - End Of File - - 0B07C22822D136363334E3EC19E54AB5
-
memphisto
- Guru Level 13
- Příspěvky: 21113
- Registrován: září 06
- Bydliště: Zlín - České Budějovice
- Pohlaví:
- Stav:
Offline
Re: Prosím o zkontrolování logu - zpomalené PC
Nic se neprovedlo. Znovu a nebo v nouzovém režimu
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 83 hostů