PC-HELP.CZ

Dobrý den prosím o kontrolu logu.

Odeslatod Htman » před 5 minutami
Logfile of random's system information tool 1.09 (written by random/random)
Run by Vašek at 2012-10-13 17:48:11
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 31 GB (40%) free of 76 GB
Total RAM: 2047 MB (71% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:48:14, on 13.10.2012
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\ITE\ITE IT8212 ATA RAID Controller\RaidMgr.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\Vašek\Plocha\Plocha\Programy\mozzila\firefox.exe
C:\Documents and Settings\Vašek\Plocha\Plocha\Programy\mozzila\plugin-container.exe
C:\Documents and Settings\Vašek\Plocha\Plocha\Programy\EVEREST\EVEREST Home Edition\everest.bin
C:\Documents and Settings\Vašek\Dokumenty\Stažené soubory\HiJackThis.exe
C:\WINDOWS\system32\svchost.exe
C:\Documents and Settings\Vašek\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Vašek.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BHO_PROJECT - {BA0454C5-FD30-428E-8DB9-3FF87A612F64} - (no file)
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Zástupce stránky vlastností sběrnice High Definition Audio] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Documents and Settings\Vašek\Plocha\Plocha\Programy\Daemon Lite\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - Global Startup: AirLive 802.11G Wireless Utility.lnk = C:\Program Files\OVISLINK\Common\AirliveUI.exe
O4 - Global Startup: RAID Manager.lnk = ?
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

--
End of file - 3793 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\avast! Emergency Update.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Vašek\Data aplikací\Mozilla\Firefox\Profiles\xmdec4wu.default

prefs.js - "browser.startup.homepage" - "https://www.google.cz/"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.4.402.278 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_278.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Documents and Settings\Vašek\Plocha\Plocha\Programy\mozzila\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Documents and Settings\Vašek\Plocha\Plocha\Programy\mozzila\components\
binary.manifest
browsercomps.dll

C:\Documents and Settings\Vašek\Plocha\Plocha\Programy\mozzila\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\Vašek\Data aplikací\Mozilla\Firefox\Profiles\xmdec4wu.default\extensions\
plugin@videofiledownload.com

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-27 63944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0454C5-FD30-428E-8DB9-3FF87A612F64}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-02-10 61440]
"Zástupce stránky vlastností sběrnice High Definition Audio"=C:\WINDOWS\system32\HDAudPropShortcut.exe [2004-03-17 61952]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-07-27 919008]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-08-21 4282728]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Documents and Settings\Vašek\Plocha\Plocha\Programy\Daemon Lite\DAEMON Tools Lite\DTLite.exe [2012-04-11 3672384]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
AirLive 802.11G Wireless Utility.lnk - C:\Program Files\OVISLINK\Common\AirliveUI.exe
RAID Manager.lnk - C:\Program Files\ITE\ITE IT8212 ATA RAID Controller\RaidMgr.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2010-02-11 155648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\usmt\migwiz.exe"="C:\WINDOWS\system32\usmt\migwiz.exe:*:Enabled:Průvodce přenesením souborů a nastavení"
"C:\Documents and Settings\Vašek\Plocha\Plocha\Programy\Bit torrent\BitTorrent.exe"="C:\Documents and Settings\Vašek\Plocha\Plocha\Programy\Bit torrent\BitTorrent.exe:*:Enabled:BitTorrent"
"C:\Documents and Settings\Vašek\Plocha\hry\Vietcong\Vietcong\vietcong.exe"="C:\Documents and Settings\Vašek\Plocha\hry\Vietcong\Vietcong\vietcong.exe:*:Enabled:vietcong"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======List of files/folders created in the last 1 month======

2012-10-13 17:48:11 ----D---- C:\rsit
2012-09-24 16:16:25 ----D---- C:\Program Files\TeamViewer
2012-09-23 18:59:30 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2012-09-23 14:30:25 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2012-09-23 14:30:25 ----A---- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2012-09-23 14:30:23 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2012-09-23 14:30:23 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2012-09-23 14:30:22 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2012-09-23 14:30:21 ----A---- C:\WINDOWS\system32\drivers\aswmon2.sys
2012-09-23 14:30:21 ----A---- C:\WINDOWS\system32\drivers\aswmon.sys
2012-09-23 14:30:21 ----A---- C:\WINDOWS\system32\drivers\aavmker4.sys
2012-09-23 14:30:02 ----A---- C:\WINDOWS\avastSS.scr
2012-09-23 14:30:01 ----A---- C:\WINDOWS\system32\aswBoot.exe
2012-09-23 14:29:42 ----D---- C:\Program Files\AVAST Software
2012-09-23 14:29:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2012-09-22 11:54:16 ----D---- C:\WINDOWS\Prefetch
2012-09-22 11:42:23 ----D---- C:\WINDOWS\system32\cs-cz
2012-09-22 11:42:22 ----D---- C:\WINDOWS\l2schemas
2012-09-22 11:40:58 ----D---- C:\WINDOWS\ServicePackFiles
2012-09-22 11:39:20 ----D---- C:\WINDOWS\network diagnostic
2012-09-22 11:37:50 ----A---- C:\WINDOWS\002895_.tmp
2012-09-22 11:35:24 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2012-09-21 22:02:50 ----D---- C:\WINDOWS\system32\en-US
2012-09-21 22:02:40 ----D---- C:\Program Files\Microsoft.NET
2012-09-21 21:55:26 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2012-09-21 21:55:23 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
2012-09-21 21:33:19 ----D---- C:\Documents and Settings\Vašek\Data aplikací\Skype
2012-09-21 21:32:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2012-09-20 17:34:06 ----D---- C:\Documents and Settings\Vašek\Data aplikací\Audacity
2012-09-20 15:40:55 ----D---- C:\Documents and Settings\Vašek\Data aplikací\TS3Client
2012-09-18 22:51:43 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2012-09-18 22:51:43 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2012-09-18 22:51:43 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2012-09-18 22:51:42 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2012-09-18 22:51:42 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2012-09-18 22:51:42 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2012-09-18 22:51:41 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2012-09-18 22:51:00 ----D---- C:\WINDOWS\Logs
2012-09-17 17:41:51 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2012-09-17 17:41:50 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2012-09-17 17:41:50 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2012-09-17 17:41:49 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2012-09-17 17:41:49 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2012-09-17 17:41:49 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2012-09-17 17:41:49 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2012-09-17 17:41:48 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2012-09-17 17:41:48 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2012-09-17 17:41:47 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2012-09-17 17:41:47 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2012-09-17 17:41:46 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2012-09-17 17:41:46 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2012-09-17 17:41:46 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2012-09-17 17:41:46 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2012-09-17 17:41:46 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2012-09-17 17:41:45 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2012-09-17 17:41:45 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2012-09-17 17:41:45 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2012-09-17 17:41:44 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2012-09-17 17:41:44 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2012-09-17 17:41:42 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2012-09-17 17:41:42 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2012-09-17 17:41:41 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2012-09-17 17:41:40 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2012-09-17 17:41:40 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2012-09-17 17:41:40 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2012-09-17 17:41:40 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2012-09-17 17:41:40 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2012-09-17 17:41:40 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2012-09-17 17:41:39 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2012-09-17 17:41:39 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2012-09-17 17:41:39 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2012-09-17 17:41:39 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2012-09-17 17:41:39 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2012-09-17 17:41:30 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2012-09-17 17:41:29 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2012-09-17 17:41:29 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2012-09-17 17:41:29 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2012-09-17 17:41:28 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2012-09-17 17:41:28 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2012-09-17 17:41:28 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2012-09-17 17:41:25 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2012-09-16 19:24:01 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2012-09-16 19:23:58 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2012-09-16 19:14:12 ----N---- C:\WINDOWS\system32\spmsg.dll
2012-09-16 19:14:03 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803$
2012-09-16 11:58:19 ----A---- C:\WINDOWS\system32\CmdLineExt.dll
2012-09-15 11:49:32 ----D---- C:\Documents and Settings\Vašek\Data aplikací\EurekaLog
2012-09-15 08:09:32 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-09-14 16:11:01 ----A---- C:\WINDOWS\system32\ssleay32.dll
2012-09-14 16:11:01 ----A---- C:\WINDOWS\system32\msvcr71.dll
2012-09-14 16:11:01 ----A---- C:\WINDOWS\system32\libeay32.dll
2012-09-14 16:11:01 ----A---- C:\WINDOWS\system32\bassmidi.dll
2012-09-14 16:11:01 ----A---- C:\WINDOWS\system32\bassflac.dll
2012-09-14 16:11:01 ----A---- C:\WINDOWS\system32\bass.dll
2012-09-14 15:04:43 ----D---- C:\Program Files\Adobe

======List of files/folders modified in the last 1 month======

2012-10-13 17:48:13 ----D---- C:\Program Files\trend micro
2012-10-13 17:44:24 ----D---- C:\WINDOWS\temp
2012-10-13 17:44:24 ----D---- C:\WINDOWS
2012-10-13 17:33:08 ----D---- C:\WINDOWS\system32
2012-10-13 17:33:08 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-10-13 14:20:05 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-10-11 13:26:00 ----SHD---- C:\WINDOWS\Installer
2012-10-11 13:25:58 ----D---- C:\Config.Msi
2012-10-11 13:25:20 ----D---- C:\WINDOWS\WinSxS
2012-10-11 13:17:09 ----D---- C:\Documents and Settings\Vašek\Data aplikací\DAEMON Tools Lite
2012-10-11 13:17:08 ----D---- C:\Documents and Settings\Vašek\Data aplikací\BitTorrent
2012-10-11 13:16:48 ----D---- C:\WINDOWS\Debug
2012-10-10 17:00:57 ----D---- C:\Program Files\Common Files
2012-10-10 17:00:56 ----RD---- C:\Program Files
2012-10-10 17:00:30 ----D---- C:\Program Files\Opera
2012-10-10 17:00:29 ----D---- C:\Documents and Settings\Vašek\Data aplikací\Opera
2012-10-07 16:17:06 ----D---- C:\Documents and Settings\Vašek\Data aplikací\vlc
2012-09-25 21:54:19 ----RSD---- C:\WINDOWS\assembly
2012-09-25 21:54:19 ----D---- C:\WINDOWS\Microsoft.NET
2012-09-25 21:31:03 ----D---- C:\WINDOWS\system32\CatRoot2
2012-09-25 21:23:25 ----D---- C:\WINDOWS\system32\mui
2012-09-25 21:21:19 ----HD---- C:\WINDOWS\inf
2012-09-25 18:13:10 ----D---- C:\WINDOWS\system32\CatRoot
2012-09-23 18:59:45 ----SD---- C:\WINDOWS\Tasks
2012-09-23 14:30:25 ----D---- C:\WINDOWS\system32\drivers
2012-09-23 14:06:27 ----D---- C:\WINDOWS\system32\wbem
2012-09-23 14:06:27 ----D---- C:\WINDOWS\AppPatch
2012-09-23 14:06:25 ----RSD---- C:\WINDOWS\Fonts
2012-09-23 14:05:35 ----D---- C:\WINDOWS\system32\config
2012-09-23 14:05:24 ----D---- C:\WINDOWS\Registration
2012-09-23 14:04:07 ----D---- C:\WINDOWS\ehome
2012-09-23 14:04:04 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-09-23 14:01:55 ----D---- C:\WINDOWS\system32\usmt
2012-09-23 14:01:55 ----D---- C:\WINDOWS\system
2012-09-23 14:01:54 ----D---- C:\WINDOWS\system32\oobe
2012-09-23 14:01:53 ----D---- C:\WINDOWS\system32\Setup
2012-09-23 14:01:45 ----D---- C:\Program Files\Common Files\System
2012-09-23 14:01:44 ----D---- C:\WINDOWS\Help
2012-09-23 14:01:44 ----D---- C:\Program Files\Windows NT
2012-09-23 14:01:44 ----D---- C:\Program Files\Outlook Express
2012-09-23 14:01:43 ----D---- C:\WINDOWS\system32\Com
2012-09-23 14:01:43 ----D---- C:\Program Files\Windows Media Player
2012-09-23 14:01:43 ----D---- C:\Program Files\NetMeeting
2012-09-23 14:01:41 ----D---- C:\WINDOWS\srchasst
2012-09-23 14:01:41 ----D---- C:\WINDOWS\ime
2012-09-23 14:01:40 ----D---- C:\WINDOWS\msagent
2012-09-23 14:01:39 ----D---- C:\WINDOWS\system32\Restore
2012-09-23 14:01:39 ----D---- C:\WINDOWS\system32\npp
2012-09-23 14:01:39 ----D---- C:\Program Files\Movie Maker
2012-09-23 14:01:39 ----D---- C:\Program Files\Internet Explorer
2012-09-23 14:01:01 ----D---- C:\WINDOWS\PeerNet
2012-09-23 14:00:53 ----D---- C:\WINDOWS\system32\inetsrv
2012-09-23 14:00:46 ----D---- C:\Program Files\Messenger
2012-09-22 16:31:44 ----HD---- C:\Program Files\InstallShield Installation Information
2012-09-22 11:53:01 ----D---- C:\WINDOWS\security
2012-09-20 17:34:07 ----D---- C:\Documents and Settings
2012-09-18 22:51:45 ----D---- C:\WINDOWS\system32\DirectX
2012-09-14 15:08:00 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2012-09-14 15:04:43 ----D---- C:\Program Files\Common Files\Adobe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iteraid;ITERAID_Service_Install; C:\WINDOWS\system32\DRIVERS\iteraid.sys [2004-06-01 24971]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2004-08-18 61056]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-08-21 25256]
R1 AswRdr;aswRdr; C:\WINDOWS\system32\drivers\AswRdr.sys [2012-08-21 35928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-08-21 729752]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-08-21 355632]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-08-21 54232]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-18 39936]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.5.3.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2012-08-21 21419]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-08-21 21256]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-08-21 97608]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-18 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2010-02-11 3565056]
R3 cmudax;C-Media High Definition Audio Interface; C:\WINDOWS\system32\drivers\cmudax.sys [2004-07-28 1258432]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2012-08-03 242240]
R3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Documents and Settings\Vašek\Plocha\Plocha\Programy\EVEREST\EVEREST Home Edition\kerneld.wnt []
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2004-04-26 135168]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-18 61824]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-18 20480]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2004-10-27 223104]
S3 HdAudAddService;Ovladač funkcí Microsoft UAA pro služby sběrnice High Definition Audio; C:\WINDOWS\system32\drivers\HdAudio.sys [2004-03-17 113664]
S3 RT73;AirLive WT-2000USB; C:\WINDOWS\system32\DRIVERS\rt73.sys [2007-09-30 451968]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2010-02-11 602112]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-08-21 44808]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2010-02-10 593920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-06 114144]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Htman
nováček

Příspěvky: 4
Pohlaví: Nespecifikováno

Příště nepiš vše velkými písmeny, jelikož to je nezdvořilé. Název přepsán. Díky za pochopení. Pic

To původní vlákno prosím zamkni!

dej sem log z HijackThis

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Satan já jsem tu nový nevím jak mazat temáta, nebo zamikat :)

Mě už z toho vynech, poslouchej memphista!

No radši bych použil ComboFix, ale nevyznám se takže je to na vás :)


Malwarebytes Anti-Malware 1.65.0.1400
www.malwarebytes.org

Verze databáze: v2012.10.14.05

Windows XP Service Pack 2 x86 NTFS
Internet Explorer 6.0.2900.2180
Vašek :: DOMA [administrátor]

14.10.2012 21:37:26
mbam-log-2012-10-14 (21-41-29).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 178918
Uplynulý čas: 3 minut, 45 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 2
HKCR\AppID\{186E19A3-B909-4F48-B687-BB81EB8BC7CE} (Trojan.BHO) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Google\Chrome\Extensions\kincjchfokkeneeofpeefomkikfkiedl (PUP.FCTPlugin) -> Žádná instrukce nebyla provedena.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

Nevyznáš se, ale radši bys použil? Tak s chutí do toho. O kontrolu míň až ti to zboří systém...

- Takže spus znovu MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- ujistit se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Remove Selected
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit

Stáhni si TDSSKiller

Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je oznaèen pro odstranění, stačí restartovat počítač.

Doufám, že jsem vše provedl správně jo a ten Combofix vám hodím později...
Anti Malware
Malwarebytes Anti-Malware 1.65.0.1400
www.malwarebytes.org

Verze databáze: v2012.10.14.05

Windows XP Service Pack 2 x86 NTFS
Internet Explorer 6.0.2900.2180
Vašek :: DOMA [administrátor]

15.10.2012 16:19:11
mbam-log-2012-10-15 (16-19-11).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 179017
Uplynulý čas: 6 minut, 34 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 2
HKCR\AppID\{186E19A3-B909-4F48-B687-BB81EB8BC7CE} (Trojan.BHO) -> Umístnění do karantény a smazání se zdařilo.
HKLM\SOFTWARE\Google\Chrome\Extensions\kincjchfokkeneeofpeefomkikfkiedl (PUP.FCTPlugin) -> Umístnění do karantény a smazání se zdařilo.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

17:11:25.0343 3700 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
17:11:25.0609 3700 ============================================================
17:11:25.0609 3700 Current date / time: 2012/10/15 17:11:25.0609
17:11:25.0609 3700 SystemInfo:
17:11:25.0609 3700
17:11:25.0609 3700 OS Version: 5.1.2600 ServicePack: 2.0
17:11:25.0609 3700 Product type: Workstation
17:11:25.0609 3700 ComputerName: DOMA
17:11:25.0609 3700 UserName: Vašek
17:11:25.0609 3700 Windows directory: C:\WINDOWS
17:11:25.0609 3700 System windows directory: C:\WINDOWS
17:11:25.0609 3700 Processor architecture: Intel x86
17:11:25.0609 3700 Number of processors: 2
17:11:25.0609 3700 Page size: 0x1000
17:11:25.0609 3700 Boot type: Normal boot
17:11:25.0609 3700 ============================================================
17:11:26.0687 3700 Drive \Device\Harddisk0\DR0 - Size: 0x9516AE000 (37.27 Gb), SectorSize: 0x200, Cylinders: 0x1301, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
17:11:26.0687 3700 Drive \Device\Harddisk1\DR1 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
17:11:26.0703 3700 Drive \Device\Harddisk2\DR4 - Size: 0xEAD00000 (3.67 Gb), SectorSize: 0x800, Cylinders: 0x77, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:11:26.0703 3700 ============================================================
17:11:26.0703 3700 \Device\Harddisk0\DR0:
17:11:26.0703 3700 MBR partitions:
17:11:26.0703 3700 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4A852C1
17:11:26.0703 3700 \Device\Harddisk1\DR1:
17:11:26.0703 3700 MBR partitions:
17:11:26.0703 3700 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x950A5C1
17:11:26.0703 3700 \Device\Harddisk2\DR4:
17:11:26.0703 3700 MBR partitions:
17:11:26.0703 3700 \Device\Harddisk2\DR4\Partition1: MBR, Type 0xB, StartLBA 0x7, BlocksNum 0x1D59F9
17:11:26.0703 3700 ============================================================
17:11:26.0718 3700 D: <-> \Device\Harddisk0\DR0\Partition1
17:11:26.0734 3700 C: <-> \Device\Harddisk1\DR1\Partition1
17:11:26.0734 3700 ============================================================
17:11:26.0734 3700 Initialize success
17:11:26.0734 3700 ============================================================
17:11:29.0765 2232 ============================================================
17:11:29.0765 2232 Scan started
17:11:29.0765 2232 Mode: Manual;
17:11:29.0765 2232 ============================================================
17:11:30.0750 2232 ================ Scan system memory ========================
17:11:30.0750 2232 System memory - ok
17:11:30.0750 2232 ================ Scan services =============================
17:11:30.0890 2232 [ 0352A73CD6B1782EA3ED7A03A8268F55 ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
17:11:30.0890 2232 Aavmker4 - ok
17:11:30.0890 2232 Abiosdsk - ok
17:11:30.0906 2232 abp480n5 - ok
17:11:30.0937 2232 [ FA2FBCDA96D2385F773B059FE5A125A6 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:11:30.0937 2232 ACPI - ok
17:11:30.0968 2232 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
17:11:30.0968 2232 ACPIEC - ok
17:11:30.0968 2232 adpu160m - ok
17:11:31.0000 2232 [ 841F385C6CFAF66B58FBD898722BB4F0 ] aec C:\WINDOWS\system32\drivers\aec.sys
17:11:31.0000 2232 aec - ok
17:11:31.0031 2232 [ 15E655BAA989444F56787EF558823643 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
17:11:31.0031 2232 AegisP - ok
17:11:31.0046 2232 [ 5AC495F4CB807B2B98AD2AD591E6D92E ] AFD C:\WINDOWS\System32\drivers\afd.sys
17:11:31.0046 2232 AFD - ok
17:11:31.0062 2232 Aha154x - ok
17:11:31.0062 2232 aic78u2 - ok
17:11:31.0062 2232 aic78xx - ok
17:11:31.0093 2232 [ 026DDAA7E6F8D49DF82C7A98BAE5D0D1 ] Alerter C:\WINDOWS\system32\alrsvc.dll
17:11:31.0109 2232 Alerter - ok
17:11:31.0125 2232 [ B3F690BF43F93A012A52F28F234FAA1B ] ALG C:\WINDOWS\System32\alg.exe
17:11:31.0125 2232 ALG - ok
17:11:31.0125 2232 AliIde - ok
17:11:31.0140 2232 amsint - ok
17:11:31.0156 2232 [ 421184F91EAE5C6E78E653C6B32AAE84 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
17:11:31.0156 2232 AppMgmt - ok
17:11:31.0171 2232 [ F0D692B0BFFB46E30EB3CEA168BBC49F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
17:11:31.0171 2232 Arp1394 - ok
17:11:31.0171 2232 asc - ok
17:11:31.0187 2232 asc3350p - ok
17:11:31.0187 2232 asc3550 - ok
17:11:31.0281 2232 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
17:11:31.0296 2232 aspnet_state - ok
17:11:31.0312 2232 [ F5DC168BF77572D51BE28BA261B30CB4 ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
17:11:31.0312 2232 aswFsBlk - ok
17:11:31.0343 2232 [ 2B9B1DF809E965EF63402CBBA6DB50AE ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
17:11:31.0343 2232 aswMon2 - ok
17:11:31.0359 2232 [ B7D5E4486BA658ED08624D8084ABB830 ] AswRdr C:\WINDOWS\system32\drivers\AswRdr.sys
17:11:31.0359 2232 AswRdr - ok
17:11:31.0375 2232 [ 30E45AF8B4D83176CA850FC9699E860B ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
17:11:31.0375 2232 aswSnx - ok
17:11:31.0437 2232 [ F04BDBCB965C05C51F4A7DE7B62063D6 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
17:11:31.0437 2232 aswSP - ok
17:11:31.0453 2232 [ DFE9152ABFA89BB8CFDC057409B2D4DA ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
17:11:31.0468 2232 aswTdi - ok
17:11:31.0484 2232 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:11:31.0484 2232 AsyncMac - ok
17:11:31.0718 2232 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
17:11:31.0718 2232 atapi - ok
17:11:31.0734 2232 Atdisk - ok
17:11:31.0796 2232 [ 471087B5E1E01CC82604E81EA14781D8 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
17:11:31.0812 2232 Ati HotKey Poller - ok
17:11:31.0984 2232 [ B979BA0120B6DB757196A8E2E873FE3C ] ATI Smart C:\WINDOWS\system32\ati2sgag.exe
17:11:32.0000 2232 ATI Smart - ok
17:11:32.0093 2232 [ C0B86ECB324E50F6BBD529F9D5C6B24B ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
17:11:32.0125 2232 ati2mtag - ok
17:11:32.0171 2232 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:11:32.0171 2232 Atmarpc - ok
17:11:32.0187 2232 [ 40D78F514C8588EF12EC718D2AF0FC4E ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
17:11:32.0203 2232 AudioSrv - ok
17:11:32.0218 2232 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
17:11:32.0218 2232 audstub - ok
17:11:32.0265 2232 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
17:11:32.0265 2232 avast! Antivirus - ok
17:11:32.0296 2232 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
17:11:32.0296 2232 Beep - ok
17:11:32.0343 2232 [ E774A26610EC92674273486612C11CFC ] BITS C:\WINDOWS\system32\qmgr.dll
17:11:32.0359 2232 BITS - ok
17:11:32.0390 2232 [ F219E27E88107A50544153898DD8178E ] Browser C:\WINDOWS\System32\browser.dll
17:11:32.0390 2232 Browser - ok
17:11:32.0437 2232 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
17:11:32.0437 2232 cbidf2k - ok
17:11:32.0437 2232 cd20xrnt - ok
17:11:32.0453 2232 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
17:11:32.0453 2232 Cdaudio - ok
17:11:32.0468 2232 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
17:11:32.0484 2232 Cdfs - ok
17:11:32.0484 2232 [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:11:32.0484 2232 Cdrom - ok
17:11:32.0500 2232 Changer - ok
17:11:32.0500 2232 [ 9E21229E04E1D301BB40222FE4641CB2 ] CiSvc C:\WINDOWS\system32\cisvc.exe
17:11:32.0500 2232 CiSvc - ok
17:11:32.0515 2232 [ D3DC45553C8025338E08A60E95B1B91D ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
17:11:32.0531 2232 ClipSrv - ok
17:11:32.0578 2232 [ 3C4D595E7F9B747325AEF28B4ADCAAE5 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:11:32.0578 2232 clr_optimization_v2.0.50727_32 - ok
17:11:32.0625 2232 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:11:32.0625 2232 clr_optimization_v4.0.30319_32 - ok
17:11:32.0640 2232 CmdIde - ok
17:11:32.0687 2232 [ 1F8AA894511E22AA01E3144221C41214 ] cmudax C:\WINDOWS\system32\drivers\cmudax.sys
17:11:32.0703 2232 cmudax - ok
17:11:32.0703 2232 COMSysApp - ok
17:11:32.0718 2232 Cpqarray - ok
17:11:32.0734 2232 [ 70D2A1756F4B2067658A186C963FCABD ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
17:11:32.0734 2232 CryptSvc - ok
17:11:32.0750 2232 dac2w2k - ok
17:11:32.0750 2232 dac960nt - ok
17:11:32.0781 2232 [ C72C15EE57E248C66E57C76CAB086CF2 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
17:11:32.0796 2232 DcomLaunch - ok
17:11:32.0828 2232 [ 562830EFB7CF367FB773FEA5256E67C8 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
17:11:32.0828 2232 Dhcp - ok
17:11:32.0843 2232 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
17:11:32.0843 2232 Disk - ok
17:11:32.0843 2232 dmadmin - ok
17:11:32.0890 2232 [ E1968EDEC81C430108FEB23AB07BDB14 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
17:11:32.0906 2232 dmboot - ok
17:11:32.0937 2232 [ 1B1520A82E396E46B9AE9FA6B03FF6C6 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
17:11:32.0937 2232 dmio - ok
17:11:32.0953 2232 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
17:11:32.0953 2232 dmload - ok
17:11:32.0968 2232 [ 7B3CA72885923EB947221F17F3E3AC59 ] dmserver C:\WINDOWS\System32\dmserver.dll
17:11:32.0968 2232 dmserver - ok
17:11:32.0984 2232 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
17:11:32.0984 2232 DMusic - ok
17:11:32.0984 2232 [ F605B3F5674D67587C4B6C9E92A3E025 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
17:11:33.0000 2232 Dnscache - ok
17:11:33.0000 2232 dpti2o - ok
17:11:33.0015 2232 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
17:11:33.0015 2232 drmkaud - ok
17:11:33.0046 2232 [ 687AF6BB383885FF6A64071B189A7F3E ] dtsoftbus01 C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
17:11:33.0046 2232 dtsoftbus01 - ok
17:11:33.0062 2232 [ D6F7428B201E33BC80066B47144CB568 ] ERSvc C:\WINDOWS\System32\ersvc.dll
17:11:33.0062 2232 ERSvc - ok
17:11:33.0093 2232 [ 6E401E61F952FBBF708AFBECEFAFAE81 ] Eventlog C:\WINDOWS\system32\services.exe
17:11:33.0093 2232 Eventlog - ok
17:11:33.0109 2232 [ 972378B907070F64932A87C90A035487 ] EventSystem C:\WINDOWS\system32\es.dll
17:11:33.0125 2232 EventSystem - ok
17:11:33.0140 2232 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
17:11:33.0156 2232 Fastfat - ok
17:11:33.0187 2232 [ 8BA76BD2A943F642F267A296A15776D2 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
17:11:33.0203 2232 FastUserSwitchingCompatibility - ok
17:11:33.0203 2232 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
17:11:33.0203 2232 Fdc - ok
17:11:33.0218 2232 [ 266DAB58619B17BDF37FABBD48D875CA ] Fips C:\WINDOWS\system32\drivers\Fips.sys
17:11:33.0234 2232 Fips - ok
17:11:33.0234 2232 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
17:11:33.0234 2232 Flpydisk - ok
17:11:33.0265 2232 [ 157754F0DF355A9E0A6F54721914F9C6 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
17:11:33.0265 2232 FltMgr - ok
17:11:33.0265 2232 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:11:33.0281 2232 Fs_Rec - ok
17:11:33.0296 2232 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:11:33.0296 2232 Ftdisk - ok
17:11:33.0328 2232 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:11:33.0328 2232 Gpc - ok
17:11:33.0359 2232 [ 160B24FD894E79E71C983EA403A6E6E7 ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys
17:11:33.0359 2232 HdAudAddService - ok
17:11:33.0375 2232 [ CBBB304DC69E0B56F789852F6455F7EC ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
17:11:33.0390 2232 HDAudBus - ok
17:11:33.0437 2232 [ F59152272782FED8A8197FA788287F68 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
17:11:33.0453 2232 helpsvc - ok
17:11:33.0484 2232 [ D2DCF769E5A70027058AD5BE1F9B55BF ] HidServ C:\WINDOWS\System32\hidserv.dll
17:11:33.0484 2232 HidServ - ok
17:11:33.0515 2232 [ 1DE6783B918F540149AA69943BDFEBA8 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:11:33.0515 2232 HidUsb - ok
17:11:33.0515 2232 hpn - ok
17:11:33.0546 2232 [ C19B522A9AE0BBC3293397F3055E80A1 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
17:11:33.0562 2232 HTTP - ok
17:11:33.0578 2232 [ DA826826C5C9116F47E0CD0CA8CC7C11 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
17:11:33.0593 2232 HTTPFilter - ok
17:11:33.0609 2232 i2omgmt - ok
17:11:33.0609 2232 i2omp - ok
17:11:33.0625 2232 [ 0F42DE9909B5DBF2C48DD1A79D491AF5 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:11:33.0625 2232 i8042prt - ok
17:11:33.0671 2232 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
17:11:33.0671 2232 IDriverT - ok
17:11:33.0687 2232 [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
17:11:33.0687 2232 Imapi - ok
17:11:33.0718 2232 [ CF9D286B34CB4912F3B28B4972D5CB33 ] ImapiService C:\WINDOWS\system32\imapi.exe
17:11:33.0734 2232 ImapiService - ok
17:11:33.0734 2232 ini910u - ok
17:11:33.0765 2232 [ EF4FDA4841001A4B98C411797DB8894A ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
17:11:33.0765 2232 IntelIde - ok
17:11:33.0781 2232 [ 10A3AC0F0DF720AD3C3FD13861D50EB9 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
17:11:33.0781 2232 intelppm - ok
17:11:33.0781 2232 [ 4448006B6BC60E6C027932CFC38D6855 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
17:11:33.0781 2232 Ip6Fw - ok
17:11:33.0812 2232 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:11:33.0828 2232 IpFilterDriver - ok
17:11:33.0828 2232 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:11:33.0828 2232 IpInIp - ok
17:11:33.0843 2232 [ B5A8E215AC29D24D60B4D1250EF05ACE ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:11:33.0843 2232 IpNat - ok
17:11:33.0843 2232 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:11:33.0843 2232 IPSec - ok
17:11:33.0859 2232 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
17:11:33.0859 2232 IRENUM - ok
17:11:33.0875 2232 [ 1091528512E4DD7ED5FDDCC4DF1C53D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:11:33.0875 2232 isapnp - ok
17:11:33.0890 2232 [ C53360C1932904FE89C6BE55378628CB ] iteraid C:\WINDOWS\system32\DRIVERS\iteraid.sys
17:11:33.0890 2232 iteraid - ok
17:11:33.0906 2232 [ 6F877BF8DC01A550CD666F3BEDB2213C ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:11:33.0906 2232 Kbdclass - ok
17:11:33.0921 2232 [ 065B5A83AA78C0C7047BF22E0AB5C821 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
17:11:33.0921 2232 kbdhid - ok
17:11:33.0937 2232 [ D93CAD07C5683DB066B0B2D2D3790EAD ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
17:11:33.0937 2232 kmixer - ok
17:11:33.0953 2232 [ EB7FFE87FD367EA8FCA0506F74A87FBB ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
17:11:33.0953 2232 KSecDD - ok
17:11:33.0984 2232 [ 6D6BDD68B775986577C48A8DF961A05C ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
17:11:34.0000 2232 lanmanserver - ok
17:11:34.0015 2232 [ 69B0569AAE33F0D5057CA0E8577AAF07 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
17:11:34.0031 2232 lanmanworkstation - ok
17:11:34.0031 2232 lbrtfdc - ok
17:11:34.0046 2232 [ F9EE6D2AAB0690B34AE35BA9921A1414 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
17:11:34.0062 2232 LmHosts - ok
17:11:34.0078 2232 [ 65E794E86468B61F2BC79ABC48BC4433 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
17:11:34.0078 2232 MBAMProtector - ok
17:11:34.0218 2232 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Documents and Settings\Vašek\Plocha\Plocha\Programy\mamb\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:11:34.0234 2232 MBAMScheduler - ok
17:11:34.0265 2232 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Documents and Settings\Vašek\Plocha\Plocha\Programy\mamb\Malwarebytes' Anti-Malware\mbamservice.exe
17:11:34.0281 2232 MBAMService - ok
17:11:34.0328 2232 [ 8B2FCBD881879B55BE40B41F12FFC431 ] Messenger C:\WINDOWS\System32\msgsvc.dll
17:11:34.0328 2232 Messenger - ok
17:11:34.0359 2232 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
17:11:34.0359 2232 mnmdd - ok
17:11:34.0390 2232 [ 7D137132D6A9B41EF800E59A771ED48C ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
17:11:34.0406 2232 mnmsrvc - ok
17:11:34.0453 2232 [ 60210DEB037846AFE521EBF349964F6B ] Modem C:\WINDOWS\system32\drivers\Modem.sys
17:11:34.0453 2232 Modem - ok
17:11:34.0453 2232 [ B160EC94114715675509115986400FD9 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:11:34.0468 2232 Mouclass - ok
17:11:34.0484 2232 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
17:11:34.0484 2232 MountMgr - ok
17:11:34.0531 2232 [ 4D7F2682D29B92A6251B17957AA0B985 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
17:11:34.0531 2232 MozillaMaintenance - ok
17:11:34.0546 2232 mraid35x - ok
17:11:34.0546 2232 [ 46EDCC8F2DB2F322C24F48785CB46366 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:11:34.0562 2232 MRxDAV - ok
17:11:34.0578 2232 [ 1FD607FC67F7F7C633C3DA65BFC53D18 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:11:34.0578 2232 MRxSmb - ok
17:11:34.0593 2232 [ 944A24032AED84C59455B981F6CA1C1A ] MSDTC C:\WINDOWS\system32\msdtc.exe
17:11:34.0593 2232 MSDTC - ok
17:11:34.0609 2232 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
17:11:34.0625 2232 Msfs - ok
17:11:34.0625 2232 MSIServer - ok
17:11:34.0625 2232 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:11:34.0640 2232 MSKSSRV - ok
17:11:34.0640 2232 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:11:34.0640 2232 MSPCLOCK - ok
17:11:34.0640 2232 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
17:11:34.0656 2232 MSPQM - ok
17:11:34.0656 2232 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:11:34.0656 2232 mssmbios - ok
17:11:34.0671 2232 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
17:11:34.0671 2232 Mup - ok
17:11:34.0687 2232 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
17:11:34.0687 2232 NDIS - ok
17:11:34.0703 2232 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:11:34.0703 2232 NdisTapi - ok
17:11:34.0703 2232 [ 34D6CD56409DA9A7ED573E1C90A308BF ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:11:34.0703 2232 Ndisuio - ok
17:11:34.0734 2232 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:11:34.0734 2232 NdisWan - ok
17:11:34.0765 2232 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
17:11:34.0765 2232 NDProxy - ok
17:11:34.0765 2232 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
17:11:34.0781 2232 NetBIOS - ok
17:11:34.0781 2232 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
17:11:34.0781 2232 NetBT - ok
17:11:34.0796 2232 [ 818053225BF4AAC5F0F718001E492F70 ] NetDDE C:\WINDOWS\system32\netdde.exe
17:11:34.0812 2232 NetDDE - ok
17:11:34.0812 2232 [ 818053225BF4AAC5F0F718001E492F70 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
17:11:34.0828 2232 NetDDEdsdm - ok
17:11:34.0859 2232 [ 82A362FE1D4980B71B588D9C10748511 ] Netlogon C:\WINDOWS\system32\lsass.exe
17:11:34.0859 2232 Netlogon - ok
17:11:34.0890 2232 [ AF342D2781225A8769686E0D47E3123E ] Netman C:\WINDOWS\System32\netman.dll
17:11:34.0906 2232 Netman - ok
17:11:34.0953 2232 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:11:34.0953 2232 NetTcpPortSharing - ok
17:11:34.0984 2232 [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
17:11:34.0984 2232 NIC1394 - ok
17:11:35.0015 2232 [ 64C078BD4EFD441C3F159EDC5EA4420A ] Nla C:\WINDOWS\System32\mswsock.dll
17:11:35.0031 2232 Nla - ok
17:11:35.0031 2232 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
17:11:35.0031 2232 Npfs - ok
17:11:35.0062 2232 [ B78BE402C3F63DD55521F73876951CDD ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
17:11:35.0078 2232 Ntfs - ok
17:11:35.0078 2232 [ 82A362FE1D4980B71B588D9C10748511 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
17:11:35.0078 2232 NtLmSsp - ok
17:11:35.0125 2232 [ D8D2B13BA93AE830B1A637DF571D1195 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
17:11:35.0140 2232 NtmsSvc - ok
17:11:35.0156 2232 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
17:11:35.0171 2232 Null - ok
17:11:35.0171 2232 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:11:35.0171 2232 NwlnkFlt - ok
17:11:35.0187 2232 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:11:35.0187 2232 NwlnkFwd - ok
17:11:35.0187 2232 [ 0951DB8E5823EA366B0E408D71E1BA2A ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
17:11:35.0203 2232 ohci1394 - ok
17:11:35.0203 2232 [ 76A18CAA2FEFB28A4CED38D76837E86E ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
17:11:35.0203 2232 Parport - ok
17:11:35.0218 2232 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
17:11:35.0218 2232 PartMgr - ok
17:11:35.0250 2232 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
17:11:35.0250 2232 ParVdm - ok
17:11:35.0265 2232 [ B7979F37BB7B9DF2230046134955E6E7 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
17:11:35.0265 2232 PCI - ok
17:11:35.0265 2232 PCIDump - ok
17:11:35.0281 2232 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\drivers\PCIIde.sys
17:11:35.0281 2232 PCIIde - ok
17:11:35.0312 2232 [ 90505755634407D4EF4C6DEA60FC1DF9 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
17:11:35.0312 2232 Pcmcia - ok
17:11:35.0312 2232 PDCOMP - ok
17:11:35.0328 2232 PDFRAME - ok
17:11:35.0328 2232 PDRELI - ok
17:11:35.0343 2232 PDRFRAME - ok
17:11:35.0343 2232 perc2 - ok
17:11:35.0343 2232 perc2hib - ok
17:11:35.0406 2232 [ 6E401E61F952FBBF708AFBECEFAFAE81 ] PlugPlay C:\WINDOWS\system32\services.exe
17:11:35.0421 2232 PlugPlay - ok
17:11:35.0421 2232 [ 82A362FE1D4980B71B588D9C10748511 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
17:11:35.0437 2232 PolicyAgent - ok
17:11:35.0453 2232 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:11:35.0453 2232 PptpMiniport - ok
17:11:35.0453 2232 [ 82A362FE1D4980B71B588D9C10748511 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
17:11:35.0468 2232 ProtectedStorage - ok
17:11:35.0468 2232 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
17:11:35.0484 2232 PSched - ok
17:11:35.0484 2232 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:11:35.0484 2232 Ptilink - ok
17:11:35.0500 2232 ql1080 - ok
17:11:35.0500 2232 Ql10wnt - ok
17:11:35.0500 2232 ql12160 - ok
17:11:35.0515 2232 ql1240 - ok
17:11:35.0515 2232 ql1280 - ok
17:11:35.0531 2232 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:11:35.0531 2232 RasAcd - ok
17:11:35.0562 2232 [ E68B6F9A726A444059705AB43B5656D1 ] RasAuto C:\WINDOWS\System32\rasauto.dll
17:11:35.0578 2232 RasAuto - ok
17:11:35.0593 2232 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:11:35.0593 2232 Rasl2tp - ok
17:11:35.0625 2232 [ 6E519D777C91E90592403C9F981FDF03 ] RasMan C:\WINDOWS\System32\rasmans.dll
17:11:35.0640 2232 RasMan - ok
17:11:35.0640 2232 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:11:35.0640 2232 RasPppoe - ok
17:11:35.0656 2232 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
17:11:35.0656 2232 Raspti - ok
17:11:35.0671 2232 [ 29D66245ADBA878FFF574CD66ABD2884 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:11:35.0671 2232 Rdbss - ok
17:11:35.0687 2232 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:11:35.0687 2232 RDPCDD - ok
17:11:35.0718 2232 [ A2CAE2C60BC37E0751EF9DDA7CEAF4AD ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
17:11:35.0718 2232 rdpdr - ok
17:11:35.0750 2232 [ D4F5643D7714EF499AE9527FDCD50894 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
17:11:35.0750 2232 RDPWD - ok
17:11:35.0765 2232 [ 125ACF258DA9633F748131A0E0185AF3 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
17:11:35.0781 2232 RDSessMgr - ok
17:11:35.0781 2232 [ ABA13D33E1F888C9A68599A48A8840D6 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
17:11:35.0781 2232 redbook - ok
17:11:35.0796 2232 [ EB5E1A601E5A1908A87E4D5A41803D98 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
17:11:35.0812 2232 RemoteAccess - ok
17:11:35.0828 2232 [ 5B21208FCF8970BB61FE98E19D828714 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
17:11:35.0843 2232 RemoteRegistry - ok
17:11:35.0843 2232 [ C8A3B668985D61249F2DC71716C58DE8 ] RpcLocator C:\WINDOWS\system32\locator.exe
17:11:35.0859 2232 RpcLocator - ok
17:11:35.0875 2232 [ C72C15EE57E248C66E57C76CAB086CF2 ] RpcSs C:\WINDOWS\System32\rpcss.dll
17:11:35.0890 2232 RpcSs - ok
17:11:35.0937 2232 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
17:11:35.0937 2232 RSVP - ok
17:11:36.0000 2232 [ 4F153709D0691C6DE8C9A4C5E813907C ] RT73 C:\WINDOWS\system32\DRIVERS\rt73.sys
17:11:36.0000 2232 RT73 - ok
17:11:36.0000 2232 [ 82A362FE1D4980B71B588D9C10748511 ] SamSs C:\WINDOWS\system32\lsass.exe
17:11:36.0015 2232 SamSs - ok
17:11:36.0015 2232 [ C177354E995CC1AA1F767BCD9980434A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
17:11:36.0031 2232 SCardSvr - ok
17:11:36.0078 2232 [ 29AC93307C6182DBE336BCA314947F28 ] Schedule C:\WINDOWS\system32\schedsvc.dll
17:11:36.0093 2232 Schedule - ok
17:11:36.0093 2232 [ 314A998B1732C1ACD6B6459EC9961AD8 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:11:36.0093 2232 Secdrv - ok
17:11:36.0109 2232 [ C76CB8A133374FAC6805F83FF7B7DA03 ] seclogon C:\WINDOWS\System32\seclogon.dll
17:11:36.0125 2232 seclogon - ok
17:11:36.0125 2232 [ 220AD85BA9C5B3011296354011B901CC ] SENS C:\WINDOWS\system32\sens.dll
17:11:36.0140 2232 SENS - ok
17:11:36.0156 2232 [ A2D868AEEFF612E70E213C451A70CAFB ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
17:11:36.0156 2232 serenum - ok
17:11:36.0156 2232 [ C1DDBC85251551A840212999DA3D95F3 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
17:11:36.0156 2232 Serial - ok
17:11:36.0187 2232 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
17:11:36.0187 2232 Sfloppy - ok
17:11:36.0203 2232 [ 6A93501BCDEBF159109429B022C0FF83 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
17:11:36.0218 2232 SharedAccess - ok
17:11:36.0234 2232 [ 8BA76BD2A943F642F267A296A15776D2 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
17:11:36.0250 2232 ShellHWDetection - ok
17:11:36.0250 2232 Simbad - ok
17:11:36.0265 2232 Sparrow - ok
17:11:36.0296 2232 [ 8E186B8F23295D1E42C573B82B80D548 ] splitter C:\WINDOWS\system32\drivers\splitter.sys
17:11:36.0296 2232 splitter - ok
17:11:36.0328 2232 [ 21B6FAA88044A41640E03EBB68BE93E8 ] Spooler C:\WINDOWS\system32\spoolsv.exe
17:11:36.0343 2232 Spooler - ok
17:11:36.0375 2232 [ A74035EA526DB97D9D50D2143A55F5CF ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
17:11:36.0375 2232 sr - ok
17:11:36.0390 2232 [ 3CD57F31A64D32FDB28918B16D1E6AAC ] srservice C:\WINDOWS\system32\srsvc.dll
17:11:36.0406 2232 srservice - ok
17:11:36.0437 2232 [ 20B7E396720353E4117D64D9DCB926CA ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
17:11:36.0437 2232 Srv - ok
17:11:36.0453 2232 [ 88C28F53F53438DAFCD95E99C837C61E ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
17:11:36.0468 2232 SSDPSRV - ok
17:11:36.0500 2232 [ 0645CCDDDD27F96EEA3534C1DEF736D9 ] stisvc C:\WINDOWS\system32\wiaservc.dll
17:11:36.0515 2232 stisvc - ok
17:11:36.0531 2232 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
17:11:36.0531 2232 swenum - ok
17:11:36.0546 2232 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
17:11:36.0562 2232 swmidi - ok
17:11:36.0562 2232 SwPrv - ok
17:11:36.0562 2232 symc810 - ok
17:11:36.0578 2232 symc8xx - ok
17:11:36.0578 2232 sym_hi - ok
17:11:36.0593 2232 sym_u3 - ok
17:11:36.0609 2232 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
17:11:36.0609 2232 sysaudio - ok
17:11:36.0625 2232 [ D9C9ECFF4904E6151525C533AEEDF8F4 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
17:11:36.0640 2232 SysmonLog - ok
17:11:36.0671 2232 [ 37162D29CD61519E6F5EA0DE99786FF6 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
17:11:36.0687 2232 TapiSrv - ok
17:11:36.0718 2232 [ 9F4B36614A0FC234525BA224957DE55C ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:11:36.0718 2232 Tcpip - ok
17:11:36.0734 2232 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
17:11:36.0734 2232 TDPIPE - ok
17:11:36.0750 2232 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
17:11:36.0750 2232 TDTCP - ok
17:11:36.0765 2232 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
17:11:36.0765 2232 TermDD - ok
17:11:36.0796 2232 [ 2F5919F2F6EE7A845893D9C3AA2BC56A ] TermService C:\WINDOWS\System32\termsrv.dll
17:11:36.0812 2232 TermService - ok
17:11:36.0843 2232 [ 8BA76BD2A943F642F267A296A15776D2 ] Themes C:\WINDOWS\System32\shsvcs.dll
17:11:36.0859 2232 Themes - ok
17:11:36.0890 2232 [ 535C2FB97336BAFA509F4783DD1E5746 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
17:11:36.0906 2232 TlntSvr - ok
17:11:36.0921 2232 TosIde - ok
17:11:36.0937 2232 [ 4DCE17221B1A87FB47E36842F3E38753 ] TrkWks C:\WINDOWS\system32\trkwks.dll
17:11:36.0953 2232 TrkWks - ok
17:11:36.0984 2232 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
17:11:36.0984 2232 Udfs - ok
17:11:36.0984 2232 ultra - ok
17:11:37.0015 2232 [ AFF2E5045961BBC0A602BB6F95EB1345 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
17:11:37.0015 2232 Update - ok
17:11:37.0046 2232 [ 984FC1518B0D5B31D76F0E63608E0500 ] upnphost C:\WINDOWS\System32\upnphost.dll
17:11:37.0078 2232 upnphost - ok
17:11:37.0093 2232 [ 6148A3BA4D9CC628357FC92014FEA30E ] UPS C:\WINDOWS\System32\ups.exe
17:11:37.0109 2232 UPS - ok
17:11:37.0140 2232 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:11:37.0156 2232 usbccgp - ok
17:11:37.0171 2232 [ 15E993BA2F6946B2BFBBFCD30398621E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:11:37.0171 2232 usbehci - ok
17:11:37.0171 2232 [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:11:37.0187 2232 usbhub - ok
17:11:37.0203 2232 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:11:37.0203 2232 USBSTOR - ok
17:11:37.0234 2232 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:11:37.0234 2232 usbuhci - ok
17:11:37.0250 2232 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
17:11:37.0250 2232 VgaSave - ok
17:11:37.0250 2232 ViaIde - ok
17:11:37.0265 2232 [ CD8CCE067F7E9CBD762C00BDDDECAA34 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
17:11:37.0265 2232 VolSnap - ok
17:11:37.0296 2232 [ 043539881667BB37B07524032D6FFC3E ] VSS C:\WINDOWS\System32\vssvc.exe
17:11:37.0328 2232 VSS - ok
17:11:37.0359 2232 [ 2CEEBB402187AE56B585701F3D191FB3 ] W32Time C:\WINDOWS\system32\w32time.dll
17:11:37.0375 2232 W32Time - ok
17:11:37.0390 2232 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:11:37.0406 2232 Wanarp - ok
17:11:37.0406 2232 WDICA - ok
17:11:37.0437 2232 [ 2797F33EBF50466020C430EE4F037933 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
17:11:37.0437 2232 wdmaud - ok
17:11:37.0468 2232 [ 3791ADF1D3466AC6B4B662D3F79CBFEC ] WebClient C:\WINDOWS\System32\webclnt.dll
17:11:37.0484 2232 WebClient - ok
17:11:37.0515 2232 [ E12084EA622BDF2262C637BEF15DD85C ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
17:11:37.0531 2232 winmgmt - ok
17:11:37.0562 2232 [ E02E913B3841717A890A644EE167B9A5 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
17:11:37.0578 2232 WmdmPmSN - ok
17:11:37.0609 2232 [ 0CDC4A0C6B820FAD99FB4CA74CD0C476 ] Wmi C:\WINDOWS\System32\advapi32.dll
17:11:37.0625 2232 Wmi - ok
17:11:37.0656 2232 [ BCD21B989F0FD4ACE78287FC01B4693D ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
17:11:37.0671 2232 WmiApSrv - ok
17:11:37.0750 2232 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
17:11:37.0796 2232 WPFFontCache_v0400 - ok
17:11:37.0828 2232 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
17:11:37.0828 2232 WS2IFSL - ok
17:11:37.0843 2232 [ 4ADED1ADEF25041D9827F9A79C0FDA13 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
17:11:37.0859 2232 wscsvc - ok
17:11:37.0875 2232 [ 21F5169CA14E0B25C757644456F637DF ] wuauserv C:\WINDOWS\system32\wuauserv.dll
17:11:37.0890 2232 wuauserv - ok
17:11:37.0921 2232 [ 325CEDEF696EF4B649DDCD3968D085C9 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
17:11:37.0937 2232 WZCSVC - ok
17:11:37.0953 2232 [ 9B835D4C64860B155A1701D5092EC9E4 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
17:11:37.0968 2232 xmlprov - ok
17:11:38.0015 2232 [ B29E7A2E211494AC05C2575D4725497A ] yukonwxp C:\WINDOWS\system32\DRIVERS\yk51x86.sys
17:11:38.0015 2232 yukonwxp - ok
17:11:38.0031 2232 ================ Scan global ===============================
17:11:38.0046 2232 [ F642F3368D2839798DA79E7BA9218481 ] C:\WINDOWS\system32\basesrv.dll
17:11:38.0093 2232 [ E4E57FBA176F2752527B1D53A663D2D7 ] C:\WINDOWS\system32\winsrv.dll
17:11:38.0125 2232 [ E4E57FBA176F2752527B1D53A663D2D7 ] C:\WINDOWS\system32\winsrv.dll
17:11:38.0156 2232 [ 6E401E61F952FBBF708AFBECEFAFAE81 ] C:\WINDOWS\system32\services.exe
17:11:38.0171 2232 [Global] - ok
17:11:38.0171 2232 ================ Scan MBR ==================================
17:11:38.0171 2232 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
17:11:38.0375 2232 \Device\Harddisk0\DR0 - ok
17:11:38.0406 2232 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk1\DR1
17:11:38.0609 2232 \Device\Harddisk1\DR1 - ok
17:11:38.0625 2232 [ 0519801742033545B239298C04AE2289 ] \Device\Harddisk2\DR4
17:11:38.0640 2232 \Device\Harddisk2\DR4 - ok
17:11:38.0640 2232 ================ Scan VBR ==================================
17:11:38.0640 2232 [ 2F43E6F5E27747796849451D32281813 ] \Device\Harddisk0\DR0\Partition1
17:11:38.0640 2232 \Device\Harddisk0\DR0\Partition1 - ok
17:11:38.0640 2232 [ 925A588F0EA52AC9B844DFEEA4B7593A ] \Device\Harddisk1\DR1\Partition1
17:11:38.0656 2232 \Device\Harddisk1\DR1\Partition1 - ok
17:11:38.0656 2232 [ 4525E49BC5440AC1050AF372BC20219A ] \Device\Harddisk2\DR4\Partition1
17:11:38.0656 2232 \Device\Harddisk2\DR4\Partition1 - ok
17:11:38.0656 2232 ============================================================
17:11:38.0656 2232 Scan finished
17:11:38.0656 2232 ============================================================
17:11:38.0671 2120 Detected object count: 0
17:11:38.0671 2120 Actual detected object count: 0
17:11:58.0703 3452 ============================================================
17:11:58.0703 3452 Scan started
17:11:58.0703 3452 Mode: Manual;
17:11:58.0703 3452 ============================================================
17:11:59.0218 3452 ================ Scan system memory ========================
17:11:59.0218 3452 System memory - ok
17:11:59.0218 3452 ================ Scan services =============================
17:11:59.0625 3452 [ 0352A73CD6B1782EA3ED7A03A8268F55 ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
17:11:59.0625 3452 Aavmker4 - ok
17:11:59.0625 3452 Abiosdsk - ok
17:11:59.0625 3452 abp480n5 - ok
17:11:59.0656 3452 [ FA2FBCDA96D2385F773B059FE5A125A6 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:11:59.0671 3452 ACPI - ok
17:11:59.0703 3452 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
17:11:59.0703 3452 ACPIEC - ok
17:11:59.0703 3452 adpu160m - ok
17:11:59.0734 3452 [ 841F385C6CFAF66B58FBD898722BB4F0 ] aec C:\WINDOWS\system32\drivers\aec.sys
17:11:59.0734 3452 aec - ok
17:11:59.0765 3452 [ 15E655BAA989444F56787EF558823643 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
17:11:59.0765 3452 AegisP - ok
17:11:59.0781 3452 [ 5AC495F4CB807B2B98AD2AD591E6D92E ] AFD C:\WINDOWS\System32\drivers\afd.sys
17:11:59.0781 3452 AFD - ok
17:11:59.0781 3452 Aha154x - ok
17:11:59.0796 3452 aic78u2 - ok
17:11:59.0796 3452 aic78xx - ok
17:11:59.0828 3452 [ 026DDAA7E6F8D49DF82C7A98BAE5D0D1 ] Alerter C:\WINDOWS\system32\alrsvc.dll
17:11:59.0828 3452 Alerter - ok
17:11:59.0843 3452 [ B3F690BF43F93A012A52F28F234FAA1B ] ALG C:\WINDOWS\System32\alg.exe
17:11:59.0859 3452 ALG - ok
17:11:59.0859 3452 AliIde - ok
17:11:59.0859 3452 amsint - ok
17:11:59.0890 3452 [ 421184F91EAE5C6E78E653C6B32AAE84 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
17:11:59.0890 3452 AppMgmt - ok
17:11:59.0906 3452 [ F0D692B0BFFB46E30EB3CEA168BBC49F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
17:11:59.0906 3452 Arp1394 - ok
17:11:59.0906 3452 asc - ok
17:11:59.0921 3452 asc3350p - ok
17:11:59.0921 3452 asc3550 - ok
17:12:00.0015 3452 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
17:12:00.0015 3452 aspnet_state - ok
17:12:00.0046 3452 [ F5DC168BF77572D51BE28BA261B30CB4 ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
17:12:00.0046 3452 aswFsBlk - ok
17:12:00.0078 3452 [ 2B9B1DF809E965EF63402CBBA6DB50AE ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
17:12:00.0078 3452 aswMon2 - ok
17:12:00.0078 3452 [ B7D5E4486BA658ED08624D8084ABB830 ] AswRdr C:\WINDOWS\system32\drivers\AswRdr.sys
17:12:00.0093 3452 AswRdr - ok
17:12:00.0109 3452 [ 30E45AF8B4D83176CA850FC9699E860B ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
17:12:00.0109 3452 aswSnx - ok
17:12:00.0140 3452 [ F04BDBCB965C05C51F4A7DE7B62063D6 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
17:12:00.0156 3452 aswSP - ok
17:12:00.0156 3452 [ DFE9152ABFA89BB8CFDC057409B2D4DA ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
17:12:00.0156 3452 aswTdi - ok
17:12:00.0187 3452 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:12:00.0187 3452 AsyncMac - ok
17:12:00.0203 3452 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
17:12:00.0203 3452 atapi - ok
17:12:00.0203 3452 Atdisk - ok
17:12:00.0265 3452 [ 471087B5E1E01CC82604E81EA14781D8 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
17:12:00.0265 3452 Ati HotKey Poller - ok
17:12:00.0312 3452 [ B979BA0120B6DB757196A8E2E873FE3C ] ATI Smart C:\WINDOWS\system32\ati2sgag.exe
17:12:00.0312 3452 ATI Smart - ok
17:12:00.0421 3452 [ C0B86ECB324E50F6BBD529F9D5C6B24B ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
17:12:00.0437 3452 ati2mtag - ok
17:12:00.0484 3452 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:12:00.0484 3452 Atmarpc - ok
17:12:00.0515 3452 [ 40D78F514C8588EF12EC718D2AF0FC4E ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
17:12:00.0515 3452 AudioSrv - ok
17:12:00.0531 3452 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
17:12:00.0531 3452 audstub - ok
17:12:00.0578 3452 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
17:12:00.0578 3452 avast! Antivirus - ok
17:12:00.0609 3452 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
17:12:00.0609 3452 Beep - ok
17:12:00.0640 3452 [ E774A26610EC92674273486612C11CFC ] BITS C:\WINDOWS\system32\qmgr.dll
17:12:00.0656 3452 BITS - ok
17:12:00.0687 3452 [ F219E27E88107A50544153898DD8178E ] Browser C:\WINDOWS\System32\browser.dll
17:12:00.0703 3452 Browser - ok
17:12:00.0734 3452 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
17:12:00.0734 3452 cbidf2k - ok
17:12:00.0734 3452 cd20xrnt - ok
17:12:00.0765 3452 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
17:12:00.0765 3452 Cdaudio - ok
17:12:00.0781 3452 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
17:12:00.0781 3452 Cdfs - ok
17:12:00.0812 3452 [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:12:00.0812 3452 Cdrom - ok
17:12:00.0828 3452 Changer - ok
17:12:00.0828 3452 [ 9E21229E04E1D301BB40222FE4641CB2 ] CiSvc C:\WINDOWS\system32\cisvc.exe
17:12:00.0828 3452 CiSvc - ok
17:12:00.0843 3452 [ D3DC45553C8025338E08A60E95B1B91D ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
17:12:00.0843 3452 ClipSrv - ok
17:12:00.0875 3452 [ 3C4D595E7F9B747325AEF28B4ADCAAE5 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:12:00.0875 3452 clr_optimization_v2.0.50727_32 - ok
17:12:00.0906 3452 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:12:00.0906 3452 clr_optimization_v4.0.30319_32 - ok
17:12:00.0906 3452 CmdIde - ok

17:12:00.0968 3452 [ 1F8AA894511E22AA01E3144221C41214 ] cmudax C:\WINDOWS\system32\drivers\cmudax.sys
17:12:00.0984 3452 cmudax - ok
17:12:00.0984 3452 COMSysApp - ok
17:12:01.0000 3452 Cpqarray - ok
17:12:01.0031 3452 [ 70D2A1756F4B2067658A186C963FCABD ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
17:12:01.0031 3452 CryptSvc - ok
17:12:01.0031 3452 dac2w2k - ok
17:12:01.0046 3452 dac960nt - ok
17:12:01.0078 3452 [ C72C15EE57E248C66E57C76CAB086CF2 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
17:12:01.0093 3452 DcomLaunch - ok
17:12:01.0125 3452 [ 562830EFB7CF367FB773FEA5256E67C8 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
17:12:01.0125 3452 Dhcp - ok
17:12:01.0140 3452 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
17:12:01.0140 3452 Disk - ok
17:12:01.0140 3452 dmadmin - ok
17:12:01.0187 3452 [ E1968EDEC81C430108FEB23AB07BDB14 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
17:12:01.0203 3452 dmboot - ok
17:12:01.0203 3452 [ 1B1520A82E396E46B9AE9FA6B03FF6C6 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
17:12:01.0218 3452 dmio - ok
17:12:01.0234 3452 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
17:12:01.0250 3452 dmload - ok
17:12:01.0265 3452 [ 7B3CA72885923EB947221F17F3E3AC59 ] dmserver C:\WINDOWS\System32\dmserver.dll
17:12:01.0265 3452 dmserver - ok
17:12:01.0265 3452 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
17:12:01.0265 3452 DMusic - ok
17:12:01.0281 3452 [ F605B3F5674D67587C4B6C9E92A3E025 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
17:12:01.0281 3452 Dnscache - ok
17:12:01.0296 3452 dpti2o - ok
17:12:01.0296 3452 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
17:12:01.0296 3452 drmkaud - ok
17:12:01.0328 3452 [ 687AF6BB383885FF6A64071B189A7F3E ] dtsoftbus01 C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
17:12:01.0328 3452 dtsoftbus01 - ok
17:12:01.0359 3452 [ D6F7428B201E33BC80066B47144CB568 ] ERSvc C:\WINDOWS\System32\ersvc.dll
17:12:01.0359 3452 ERSvc - ok
17:12:01.0390 3452 [ 6E401E61F952FBBF708AFBECEFAFAE81 ] Eventlog C:\WINDOWS\system32\services.exe
17:12:01.0406 3452 Eventlog - ok
17:12:01.0406 3452 [ 972378B907070F64932A87C90A035487 ] EventSystem C:\WINDOWS\system32\es.dll
17:12:01.0421 3452 EventSystem - ok
17:12:01.0453 3452 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
17:12:01.0453 3452 Fastfat - ok
17:12:01.0484 3452 [ 8BA76BD2A943F642F267A296A15776D2 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
17:12:01.0484 3452 FastUserSwitchingCompatibility - ok
17:12:01.0500 3452 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
17:12:01.0500 3452 Fdc - ok
17:12:01.0531 3452 [ 266DAB58619B17BDF37FABBD48D875CA ] Fips C:\WINDOWS\system32\drivers\Fips.sys
17:12:01.0531 3452 Fips - ok
17:12:01.0531 3452 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
17:12:01.0531 3452 Flpydisk - ok
17:12:01.0546 3452 [ 157754F0DF355A9E0A6F54721914F9C6 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
17:12:01.0546 3452 FltMgr - ok
17:12:01.0562 3452 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:12:01.0562 3452 Fs_Rec - ok
17:12:01.0578 3452 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:12:01.0578 3452 Ftdisk - ok
17:12:01.0609 3452 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:12:01.0609 3452 Gpc - ok
17:12:01.0640 3452 [ 160B24FD894E79E71C983EA403A6E6E7 ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys
17:12:01.0640 3452 HdAudAddService - ok
17:12:01.0671 3452 [ CBBB304DC69E0B56F789852F6455F7EC ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
17:12:01.0671 3452 HDAudBus - ok
17:12:01.0750 3452 [ F59152272782FED8A8197FA788287F68 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
17:12:01.0750 3452 helpsvc - ok
17:12:01.0765 3452 [ D2DCF769E5A70027058AD5BE1F9B55BF ] HidServ C:\WINDOWS\System32\hidserv.dll
17:12:01.0781 3452 HidServ - ok
17:12:01.0796 3452 [ 1DE6783B918F540149AA69943BDFEBA8 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:12:01.0796 3452 HidUsb - ok
17:12:01.0812 3452 hpn - ok
17:12:01.0843 3452 [ C19B522A9AE0BBC3293397F3055E80A1 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
17:12:01.0843 3452 HTTP - ok
17:12:01.0875 3452 [ DA826826C5C9116F47E0CD0CA8CC7C11 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
17:12:01.0890 3452 HTTPFilter - ok
17:12:01.0906 3452 i2omgmt - ok
17:12:01.0906 3452 i2omp - ok
17:12:01.0921 3452 [ 0F42DE9909B5DBF2C48DD1A79D491AF5 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:12:01.0921 3452 i8042prt - ok
17:12:01.0968 3452 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
17:12:01.0968 3452 IDriverT - ok
17:12:01.0984 3452 [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
17:12:01.0984 3452 Imapi - ok
17:12:02.0015 3452 [ CF9D286B34CB4912F3B28B4972D5CB33 ] ImapiService C:\WINDOWS\system32\imapi.exe
17:12:02.0031 3452 ImapiService - ok
17:12:02.0031 3452 ini910u - ok
17:12:02.0062 3452 [ EF4FDA4841001A4B98C411797DB8894A ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
17:12:02.0062 3452 IntelIde - ok
17:12:02.0078 3452 [ 10A3AC0F0DF720AD3C3FD13861D50EB9 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
17:12:02.0078 3452 intelppm - ok
17:12:02.0078 3452 [ 4448006B6BC60E6C027932CFC38D6855 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
17:12:02.0078 3452 Ip6Fw - ok
17:12:02.0125 3452 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:12:02.0125 3452 IpFilterDriver - ok
17:12:02.0125 3452 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:12:02.0125 3452 IpInIp - ok
17:12:02.0140 3452 [ B5A8E215AC29D24D60B4D1250EF05ACE ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:12:02.0140 3452 IpNat - ok
17:12:02.0140 3452 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:12:02.0156 3452 IPSec - ok
17:12:02.0156 3452 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
17:12:02.0156 3452 IRENUM - ok
17:12:02.0171 3452 [ 1091528512E4DD7ED5FDDCC4DF1C53D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:12:02.0171 3452 isapnp - ok
17:12:02.0187 3452 [ C53360C1932904FE89C6BE55378628CB ] iteraid C:\WINDOWS\system32\DRIVERS\iteraid.sys
17:12:02.0187 3452 iteraid - ok
17:12:02.0203 3452 [ 6F877BF8DC01A550CD666F3BEDB2213C ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:12:02.0203 3452 Kbdclass - ok
17:12:02.0218 3452 [ 065B5A83AA78C0C7047BF22E0AB5C821 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
17:12:02.0218 3452 kbdhid - ok
17:12:02.0234 3452 [ D93CAD07C5683DB066B0B2D2D3790EAD ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
17:12:02.0234 3452 kmixer - ok
17:12:02.0250 3452 [ EB7FFE87FD367EA8FCA0506F74A87FBB ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
17:12:02.0250 3452 KSecDD - ok
17:12:02.0281 3452 [ 6D6BDD68B775986577C48A8DF961A05C ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
17:12:02.0296 3452 lanmanserver - ok
17:12:02.0312 3452 [ 69B0569AAE33F0D5057CA0E8577AAF07 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
17:12:02.0328 3452 lanmanworkstation - ok
17:12:02.0328 3452 lbrtfdc - ok
17:12:02.0343 3452 [ F9EE6D2AAB0690B34AE35BA9921A1414 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
17:12:02.0359 3452 LmHosts - ok
17:12:02.0375 3452 [ 65E794E86468B61F2BC79ABC48BC4433 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
17:12:02.0390 3452 MBAMProtector - ok
17:12:02.0500 3452 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Documents and Settings\Vašek\Plocha\Plocha\Programy\mamb\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:12:02.0500 3452 MBAMScheduler - ok
17:12:02.0531 3452 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Documents and Settings\Vašek\Plocha\Plocha\Programy\mamb\Malwarebytes' Anti-Malware\mbamservice.exe
17:12:02.0546 3452 MBAMService - ok
17:12:02.0578 3452 [ 8B2FCBD881879B55BE40B41F12FFC431 ] Messenger C:\WINDOWS\System32\msgsvc.dll
17:12:02.0578 3452 Messenger - ok
17:12:02.0609 3452 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
17:12:02.0609 3452 mnmdd - ok
17:12:02.0656 3452 [ 7D137132D6A9B41EF800E59A771ED48C ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
17:12:02.0656 3452 mnmsrvc - ok
17:12:02.0703 3452 [ 60210DEB037846AFE521EBF349964F6B ] Modem C:\WINDOWS\system32\drivers\Modem.sys
17:12:02.0703 3452 Modem - ok
17:12:02.0703 3452 [ B160EC94114715675509115986400FD9 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:12:02.0718 3452 Mouclass - ok
17:12:02.0734 3452 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
17:12:02.0734 3452 MountMgr - ok
17:12:02.0781 3452 [ 4D7F2682D29B92A6251B17957AA0B985 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
17:12:02.0781 3452 MozillaMaintenance - ok
17:12:02.0796 3452 mraid35x - ok
17:12:02.0796 3452 [ 46EDCC8F2DB2F322C24F48785CB46366 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:12:02.0796 3452 MRxDAV - ok
17:12:02.0828 3452 [ 1FD607FC67F7F7C633C3DA65BFC53D18 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:12:02.0828 3452 MRxSmb - ok
17:12:02.0843 3452 [ 944A24032AED84C59455B981F6CA1C1A ] MSDTC C:\WINDOWS\system32\msdtc.exe
17:12:02.0843 3452 MSDTC - ok
17:12:02.0859 3452 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
17:12:02.0859 3452 Msfs - ok
17:12:02.0875 3452 MSIServer - ok
17:12:02.0875 3452 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:12:02.0875 3452 MSKSSRV - ok
17:12:02.0890 3452 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:12:02.0890 3452 MSPCLOCK - ok
17:12:02.0890 3452 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
17:12:02.0906 3452 MSPQM - ok
17:12:02.0906 3452 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:12:02.0906 3452 mssmbios - ok
17:12:02.0921 3452 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
17:12:02.0921 3452 Mup - ok
17:12:02.0921 3452 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
17:12:02.0937 3452 NDIS - ok
17:12:02.0937 3452 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:12:02.0937 3452 NdisTapi - ok
17:12:02.0953 3452 [ 34D6CD56409DA9A7ED573E1C90A308BF ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:12:02.0953 3452 Ndisuio - ok
17:12:02.0984 3452 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:12:02.0984 3452 NdisWan - ok
17:12:03.0000 3452 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
17:12:03.0000 3452 NDProxy - ok
17:12:03.0015 3452 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
17:12:03.0015 3452 NetBIOS - ok
17:12:03.0031 3452 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
17:12:03.0031 3452 NetBT - ok
17:12:03.0046 3452 [ 818053225BF4AAC5F0F718001E492F70 ] NetDDE C:\WINDOWS\system32\netdde.exe
17:12:03.0046 3452 NetDDE - ok
17:12:03.0062 3452 [ 818053225BF4AAC5F0F718001E492F70 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
17:12:03.0062 3452 NetDDEdsdm - ok
17:12:03.0093 3452 [ 82A362FE1D4980B71B588D9C10748511 ] Netlogon C:\WINDOWS\system32\lsass.exe
17:12:03.0093 3452 Netlogon - ok
17:12:03.0125 3452 [ AF342D2781225A8769686E0D47E3123E ] Netman C:\WINDOWS\System32\netman.dll
17:12:03.0140 3452 Netman - ok
17:12:03.0187 3452 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:12:03.0187 3452 NetTcpPortSharing - ok
17:12:03.0218 3452 [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
17:12:03.0218 3452 NIC1394 - ok
17:12:03.0250 3452 [ 64C078BD4EFD441C3F159EDC5EA4420A ] Nla C:\WINDOWS\System32\mswsock.dll
17:12:03.0265 3452 Nla - ok
17:12:03.0265 3452 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
17:12:03.0265 3452 Npfs - ok
17:12:03.0296 3452 [ B78BE402C3F63DD55521F73876951CDD ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
17:12:03.0296 3452 Ntfs - ok
17:12:03.0312 3452 [ 82A362FE1D4980B71B588D9C10748511 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
17:12:03.0312 3452 NtLmSsp - ok
17:12:03.0343 3452 [ D8D2B13BA93AE830B1A637DF571D1195 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
17:12:03.0359 3452 NtmsSvc - ok
17:12:03.0390 3452 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
17:12:03.0390 3452 Null - ok
17:12:03.0406 3452 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:12:03.0406 3452 NwlnkFlt - ok
17:12:03.0406 3452 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:12:03.0406 3452 NwlnkFwd - ok
17:12:03.0421 3452 [ 0951DB8E5823EA366B0E408D71E1BA2A ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
17:12:03.0421 3452 ohci1394 - ok
17:12:03.0421 3452 [ 76A18CAA2FEFB28A4CED38D76837E86E ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
17:12:03.0437 3452 Parport - ok
17:12:03.0453 3452 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
17:12:03.0453 3452 PartMgr - ok
17:12:03.0468 3452 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
17:12:03.0468 3452 ParVdm - ok
17:12:03.0484 3452 [ B7979F37BB7B9DF2230046134955E6E7 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
17:12:03.0484 3452 PCI - ok
17:12:03.0484 3452 PCIDump - ok
17:12:03.0500 3452 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\drivers\PCIIde.sys
17:12:03.0515 3452 PCIIde - ok
17:12:03.0531 3452 [ 90505755634407D4EF4C6DEA60FC1DF9 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
17:12:03.0531 3452 Pcmcia - ok
17:12:03.0546 3452 PDCOMP - ok
17:12:03.0546 3452 PDFRAME - ok
17:12:03.0546 3452 PDRELI - ok
17:12:03.0562 3452 PDRFRAME - ok
17:12:03.0562 3452 perc2 - ok
17:12:03.0578 3452 perc2hib - ok
17:12:03.0609 3452 [ 6E401E61F952FBBF708AFBECEFAFAE81 ] PlugPlay C:\WINDOWS\system32\services.exe
17:12:03.0625 3452 PlugPlay - ok
17:12:03.0625 3452 [ 82A362FE1D4980B71B588D9C10748511 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
17:12:03.0640 3452 PolicyAgent - ok
17:12:03.0671 3452 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:12:03.0671 3452 PptpMiniport - ok
17:12:03.0671 3452 [ 82A362FE1D4980B71B588D9C10748511 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
17:12:03.0687 3452 ProtectedStorage - ok
17:12:03.0687 3452 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
17:12:03.0687 3452 PSched - ok
17:12:03.0718 3452 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:12:03.0718 3452 Ptilink - ok
17:12:03.0734 3452 ql1080 - ok
17:12:03.0734 3452 Ql10wnt - ok
17:12:03.0750 3452 ql12160 - ok
17:12:03.0750 3452 ql1240 - ok
17:12:03.0765 3452 ql1280 - ok
17:12:03.0765 3452 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:12:03.0765 3452 RasAcd - ok
17:12:03.0796 3452 [ E68B6F9A726A444059705AB43B5656D1 ] RasAuto C:\WINDOWS\System32\rasauto.dll
17:12:03.0796 3452 RasAuto - ok
17:12:03.0812 3452 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:12:03.0812 3452 Rasl2tp - ok
17:12:03.0828 3452 [ 6E519D777C91E90592403C9F981FDF03 ] RasMan C:\WINDOWS\System32\rasmans.dll
17:12:03.0843 3452 RasMan - ok
17:12:03.0843 3452 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:12:03.0859 3452 RasPppoe - ok
17:12:03.0859 3452 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
17:12:03.0859 3452 Raspti - ok
17:12:03.0875 3452 [ 29D66245ADBA878FFF574CD66ABD2884 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:12:03.0890 3452 Rdbss - ok
17:12:03.0890 3452 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:12:03.0890 3452 RDPCDD - ok
17:12:03.0921 3452 [ A2CAE2C60BC37E0751EF9DDA7CEAF4AD ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
17:12:03.0921 3452 rdpdr - ok
17:12:03.0953 3452 [ D4F5643D7714EF499AE9527FDCD50894 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
17:12:03.0953 3452 RDPWD - ok
17:12:03.0968 3452 [ 125ACF258DA9633F748131A0E0185AF3 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
17:12:03.0984 3452 RDSessMgr - ok
17:12:03.0984 3452 [ ABA13D33E1F888C9A68599A48A8840D6 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
17:12:03.0984 3452 redbook - ok
17:12:04.0015 3452 [ EB5E1A601E5A1908A87E4D5A41803D98 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
17:12:04.0015 3452 RemoteAccess - ok
17:12:04.0031 3452 [ 5B21208FCF8970BB61FE98E19D828714 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
17:12:04.0046 3452 RemoteRegistry - ok
17:12:04.0046 3452 [ C8A3B668985D61249F2DC71716C58DE8 ] RpcLocator C:\WINDOWS\system32\locator.exe
17:12:04.0062 3452 RpcLocator - ok
17:12:04.0078 3452 [ C72C15EE57E248C66E57C76CAB086CF2 ] RpcSs C:\WINDOWS\System32\rpcss.dll
17:12:04.0093 3452 RpcSs - ok
17:12:04.0140 3452 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
17:12:04.0156 3452 RSVP - ok
17:12:04.0218 3452 [ 4F153709D0691C6DE8C9A4C5E813907C ] RT73 C:\WINDOWS\system32\DRIVERS\rt73.sys
17:12:04.0218 3452 RT73 - ok
17:12:04.0218 3452 [ 82A362FE1D4980B71B588D9C10748511 ] SamSs C:\WINDOWS\system32\lsass.exe
17:12:04.0234 3452 SamSs - ok
17:12:04.0234 3452 [ C177354E995CC1AA1F767BCD9980434A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
17:12:04.0250 3452 SCardSvr - ok
17:12:04.0296 3452 [ 29AC93307C6182DBE336BCA314947F28 ] Schedule C:\WINDOWS\system32\schedsvc.dll
17:12:04.0296 3452 Schedule - ok
17:12:04.0312 3452 [ 314A998B1732C1ACD6B6459EC9961AD8 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:12:04.0312 3452 Secdrv - ok
17:12:04.0328 3452 [ C76CB8A133374FAC6805F83FF7B7DA03 ] seclogon C:\WINDOWS\System32\seclogon.dll
17:12:04.0343 3452 seclogon - ok
17:12:04.0343 3452 [ 220AD85BA9C5B3011296354011B901CC ] SENS C:\WINDOWS\system32\sens.dll
17:12:04.0359 3452 SENS - ok
17:12:04.0359 3452 [ A2D868AEEFF612E70E213C451A70CAFB ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
17:12:04.0359 3452 serenum - ok
17:12:04.0375 3452 [ C1DDBC85251551A840212999DA3D95F3 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
17:12:04.0375 3452 Serial - ok
17:12:04.0390 3452 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
17:12:04.0390 3452 Sfloppy - ok
17:12:04.0421 3452 [ 6A93501BCDEBF159109429B022C0FF83 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
17:12:04.0421 3452 SharedAccess - ok
17:12:04.0453 3452 [ 8BA76BD2A943F642F267A296A15776D2 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
17:12:04.0468 3452 ShellHWDetection - ok
17:12:04.0468 3452 Simbad - ok
17:12:04.0484 3452 Sparrow - ok
17:12:04.0515 3452 [ 8E186B8F23295D1E42C573B82B80D548 ] splitter C:\WINDOWS\system32\drivers\splitter.sys
17:12:04.0515 3452 splitter - ok
17:12:04.0546 3452 [ 21B6FAA88044A41640E03EBB68BE93E8 ] Spooler C:\WINDOWS\system32\spoolsv.exe
17:12:04.0546 3452 Spooler - ok
17:12:04.0578 3452 [ A74035EA526DB97D9D50D2143A55F5CF ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
17:12:04.0578 3452 sr - ok
17:12:04.0609 3452 [ 3CD57F31A64D32FDB28918B16D1E6AAC ] srservice C:\WINDOWS\system32\srsvc.dll
17:12:04.0609 3452 srservice - ok
17:12:04.0640 3452 [ 20B7E396720353E4117D64D9DCB926CA ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
17:12:04.0640 3452 Srv - ok
17:12:04.0656 3452 [ 88C28F53F53438DAFCD95E99C837C61E ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
17:12:04.0671 3452 SSDPSRV - ok
17:12:04.0703 3452 [ 0645CCDDDD27F96EEA3534C1DEF736D9 ] stisvc C:\WINDOWS\system32\wiaservc.dll
17:12:04.0718 3452 stisvc - ok
17:12:04.0734 3452 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
17:12:04.0734 3452 swenum - ok
17:12:04.0765 3452 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
17:12:04.0765 3452 swmidi - ok
17:12:04.0765 3452 SwPrv - ok
17:12:04.0781 3452 symc810 - ok
17:12:04.0781 3452 symc8xx - ok
17:12:04.0796 3452 sym_hi - ok
17:12:04.0796 3452 sym_u3 - ok
17:12:04.0828 3452 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
17:12:04.0828 3452 sysaudio - ok
17:12:04.0843 3452 [ D9C9ECFF4904E6151525C533AEEDF8F4 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
17:12:04.0859 3452 SysmonLog - ok
17:12:04.0890 3452 [ 37162D29CD61519E6F5EA0DE99786FF6 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
17:12:04.0906 3452 TapiSrv - ok
17:12:04.0937 3452 [ 9F4B36614A0FC234525BA224957DE55C ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:12:04.0937 3452 Tcpip - ok
17:12:04.0953 3452 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
17:12:04.0953 3452 TDPIPE - ok
17:12:04.0968 3452 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
17:12:04.0968 3452 TDTCP - ok
17:12:04.0984 3452 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
17:12:04.0984 3452 TermDD - ok
17:12:05.0015 3452 [ 2F5919F2F6EE7A845893D9C3AA2BC56A ] TermService C:\WINDOWS\System32\termsrv.dll
17:12:05.0031 3452 TermService - ok
17:12:05.0046 3452 [ 8BA76BD2A943F642F267A296A15776D2 ] Themes C:\WINDOWS\System32\shsvcs.dll
17:12:05.0062 3452 Themes - ok
17:12:05.0109 3452 [ 535C2FB97336BAFA509F4783DD1E5746 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
17:12:05.0125 3452 TlntSvr - ok
17:12:05.0125 3452 TosIde - ok
17:12:05.0156 3452 [ 4DCE17221B1A87FB47E36842F3E38753 ] TrkWks C:\WINDOWS\system32\trkwks.dll
17:12:05.0171 3452 TrkWks - ok
17:12:05.0203 3452 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
17:12:05.0203 3452 Udfs - ok
17:12:05.0203 3452 ultra - ok
17:12:05.0234 3452 [ AFF2E5045961BBC0A602BB6F95EB1345 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
17:12:05.0234 3452 Update - ok
17:12:05.0265 3452 [ 984FC1518B0D5B31D76F0E63608E0500 ] upnphost C:\WINDOWS\System32\upnphost.dll
17:12:05.0281 3452 upnphost - ok
17:12:05.0312 3452 [ 6148A3BA4D9CC628357FC92014FEA30E ] UPS C:\WINDOWS\System32\ups.exe
17:12:05.0328 3452 UPS - ok
17:12:05.0359 3452 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:12:05.0359 3452 usbccgp - ok
17:12:05.0375 3452 [ 15E993BA2F6946B2BFBBFCD30398621E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:12:05.0375 3452 usbehci - ok
17:12:05.0390 3452 [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:12:05.0390 3452 usbhub - ok
17:12:05.0406 3452 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:12:05.0406 3452 USBSTOR - ok
17:12:05.0437 3452 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:12:05.0437 3452 usbuhci - ok
17:12:05.0453 3452 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
17:12:05.0453 3452 VgaSave - ok
17:12:05.0453 3452 ViaIde - ok
17:12:05.0484 3452 [ CD8CCE067F7E9CBD762C00BDDDECAA34 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
17:12:05.0484 3452 VolSnap - ok
17:12:05.0515 3452 [ 043539881667BB37B07524032D6FFC3E ] VSS C:\WINDOWS\System32\vssvc.exe
17:12:05.0531 3452 VSS - ok
17:12:05.0546 3452 [ 2CEEBB402187AE56B585701F3D191FB3 ] W32Time C:\WINDOWS\system32\w32time.dll
17:12:05.0562 3452 W32Time - ok
17:12:05.0593 3452 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:12:05.0593 3452 Wanarp - ok
17:12:05.0609 3452 WDICA - ok
17:12:05.0625 3452 [ 2797F33EBF50466020C430EE4F037933 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
17:12:05.0640 3452 wdmaud - ok
17:12:05.0656 3452 [ 3791ADF1D3466AC6B4B662D3F79CBFEC ] WebClient C:\WINDOWS\System32\webclnt.dll
17:12:05.0671 3452 WebClient - ok
17:12:05.0718 3452 [ E12084EA622BDF2262C637BEF15DD85C ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
17:12:05.0718 3452 winmgmt - ok
17:12:05.0765 3452 [ E02E913B3841717A890A644EE167B9A5 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
17:12:05.0765 3452 WmdmPmSN - ok
17:12:05.0812 3452 [ 0CDC4A0C6B820FAD99FB4CA74CD0C476 ] Wmi C:\WINDOWS\System32\advapi32.dll
17:12:05.0812 3452 Wmi - ok
17:12:05.0859 3452 [ BCD21B989F0FD4ACE78287FC01B4693D ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
17:12:05.0859 3452 WmiApSrv - ok
17:12:05.0953 3452 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
17:12:05.0953 3452 WPFFontCache_v0400 - ok
17:12:06.0000 3452 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
17:12:06.0000 3452 WS2IFSL - ok
17:12:06.0015 3452 [ 4ADED1ADEF25041D9827F9A79C0FDA13 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
17:12:06.0031 3452 wscsvc - ok
17:12:06.0046 3452 [ 21F5169CA14E0B25C757644456F637DF ] wuauserv C:\WINDOWS\system32\wuauserv.dll
17:12:06.0062 3452 wuauserv - ok
17:12:06.0093 3452 [ 325CEDEF696EF4B649DDCD3968D085C9 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
17:12:06.0109 3452 WZCSVC - ok
17:12:06.0125 3452 [ 9B835D4C64860B155A1701D5092EC9E4 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
17:12:06.0140 3452 xmlprov - ok
17:12:06.0187 3452 [ B29E7A2E211494AC05C2575D4725497A ] yukonwxp C:\WINDOWS\system32\DRIVERS\yk51x86.sys
17:12:06.0187 3452 yukonwxp - ok
17:12:06.0203 3452 ================ Scan global ===============================
17:12:06.0234 3452 [ F642F3368D2839798DA79E7BA9218481 ] C:\WINDOWS\system32\basesrv.dll
17:12:06.0265 3452 [ E4E57FBA176F2752527B1D53A663D2D7 ] C:\WINDOWS\system32\winsrv.dll
17:12:06.0296 3452 [ E4E57FBA176F2752527B1D53A663D2D7 ] C:\WINDOWS\system32\winsrv.dll
17:12:06.0328 3452 [ 6E401E61F952FBBF708AFBECEFAFAE81 ] C:\WINDOWS\system32\services.exe
17:12:06.0328 3452 [Global] - ok
17:12:06.0328 3452 ================ Scan MBR ==================================
17:12:06.0343 3452 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
17:12:06.0421 3452 \Device\Harddisk0\DR0 - ok
17:12:06.0453 3452 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk1\DR1
17:12:06.0656 3452 \Device\Harddisk1\DR1 - ok
17:12:06.0671 3452 [ 0519801742033545B239298C04AE2289 ] \Device\Harddisk2\DR4
17:12:06.0687 3452 \Device\Harddisk2\DR4 - ok
17:12:06.0687 3452 ================ Scan VBR ==================================
17:12:06.0687 3452 [ 2F43E6F5E27747796849451D32281813 ] \Device\Harddisk0\DR0\Partition1
17:12:06.0687 3452 \Device\Harddisk0\DR0\Partition1 - ok
17:12:06.0687 3452 [ 925A588F0EA52AC9B844DFEEA4B7593A ] \Device\Harddisk1\DR1\Partition1
17:12:06.0703 3452 \Device\Harddisk1\DR1\Partition1 - ok
17:12:06.0703 3452 [ 4525E49BC5440AC1050AF372BC20219A ] \Device\Harddisk2\DR4\Partition1
17:12:06.0703 3452 \Device\Harddisk2\DR4\Partition1 - ok
17:12:06.0703 3452 ============================================================
17:12:06.0703 3452 Scan finished
17:12:06.0703 3452 ============================================================
17:12:06.0718 0788 Detected object count: 0
17:12:06.0718 0788 Actual detected object count: 0
17:12:08.0187 1756 Deinitialize success

ComboFix 12-10-14.03 - Vašek 15.10.2012 18:21:18.3.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.2047.1520 [GMT 2:00]
Spuštěný z: c:\documents and settings\VaÜek\Plocha\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-09-15 do 2012-10-15 )))))))))))))))))))))))))))))))
.
.
2012-10-14 19:36 . 2012-09-07 15:04 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-10-14 14:26 . 2004-08-17 13:49 21504 -c--a-w- c:\windows\system32\dllcache\hidserv.dll
2012-10-14 14:26 . 2004-08-17 13:49 21504 ----a-w- c:\windows\system32\hidserv.dll
2012-10-14 14:26 . 2004-08-17 13:45 14848 -c--a-w- c:\windows\system32\dllcache\kbdhid.sys
2012-10-14 14:26 . 2004-08-17 13:45 14848 ----a-w- c:\windows\system32\drivers\kbdhid.sys
2012-10-14 14:26 . 2001-08-17 20:02 9600 -c--a-w- c:\windows\system32\dllcache\hidusb.sys
2012-10-14 14:26 . 2001-08-17 20:02 9600 ----a-w- c:\windows\system32\drivers\hidusb.sys
2012-10-14 14:26 . 2004-08-03 21:08 31616 -c--a-w- c:\windows\system32\dllcache\usbccgp.sys
2012-10-14 14:26 . 2004-08-03 21:08 31616 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2012-10-13 15:48 . 2012-10-13 15:48 -------- d-----w- C:\rsit
2012-09-25 19:50 . 2012-09-25 19:50 -------- d-----w- c:\documents and settings\Vašek\Local Settings\Data aplikací\L_&_D_Productions
2012-09-24 14:16 . 2012-09-24 14:16 -------- d-----w- c:\program files\TeamViewer
2012-09-23 16:59 . 2012-09-23 16:59 696240 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-09-23 12:30 . 2012-08-21 09:13 355632 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-09-23 12:30 . 2012-08-21 09:13 21256 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-09-23 12:30 . 2012-08-21 09:13 54232 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-09-23 12:30 . 2012-08-21 09:13 35928 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-09-23 12:30 . 2012-08-21 09:13 729752 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-09-23 12:30 . 2012-08-21 09:13 97608 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2012-09-23 12:30 . 2012-08-21 09:13 89624 ----a-w- c:\windows\system32\drivers\aswmon.sys
2012-09-23 12:30 . 2012-08-21 09:13 25256 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2012-09-23 12:30 . 2012-08-21 09:12 41224 ----a-w- c:\windows\avastSS.scr
2012-09-23 12:30 . 2012-08-21 09:12 227648 ----a-w- c:\windows\system32\aswBoot.exe
2012-09-23 12:29 . 2012-09-23 12:29 -------- d-----w- c:\program files\AVAST Software
2012-09-23 12:29 . 2012-09-23 12:29 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVAST Software
2012-09-23 12:05 . 2012-09-23 12:05 -------- d-----w- c:\windows\system32\wbem\Repository
2012-09-22 09:42 . 2012-09-22 09:42 -------- d-----w- c:\windows\system32\cs-cz
2012-09-22 09:42 . 2012-09-22 09:42 -------- d-----w- c:\windows\l2schemas
2012-09-22 09:40 . 2012-09-22 09:40 -------- d-----w- c:\windows\ServicePackFiles
2012-09-22 09:37 . 2006-12-28 22:31 19569 ----a-w- c:\windows\002895_.tmp
2012-09-21 20:02 . 2012-09-21 20:02 -------- d-----w- c:\program files\Microsoft.NET
2012-09-21 19:55 . 2006-10-16 14:10 23856 ----a-w- c:\windows\system32\spupdsvc.exe
2012-09-21 19:33 . 2012-10-10 15:00 -------- d-----w- c:\documents and settings\Vašek\Data aplikací\Skype
2012-09-21 19:32 . 2012-10-10 15:00 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Skype
2012-09-20 15:34 . 2012-10-03 13:36 -------- d-----w- c:\documents and settings\Vašek\Data aplikací\Audacity
2012-09-20 13:40 . 2012-10-11 21:47 -------- d-----w- c:\documents and settings\Vašek\Data aplikací\TS3Client
2012-09-18 20:52 . 2012-09-19 21:05 -------- d-----w- c:\documents and settings\Vašek\Local Settings\Data aplikací\The Witcher
2012-09-18 20:51 . 2008-05-30 12:19 507400 ----a-w- c:\windows\system32\XAudio2_1.dll
2012-09-18 20:51 . 2008-05-30 12:18 238088 ----a-w- c:\windows\system32\xactengine3_1.dll
2012-09-18 20:51 . 2008-05-30 12:17 65032 ----a-w- c:\windows\system32\XAPOFX1_0.dll
2012-09-18 20:51 . 2008-05-30 12:17 25608 ----a-w- c:\windows\system32\X3DAudio1_4.dll
2012-09-18 20:51 . 2008-05-30 12:11 467984 ----a-w- c:\windows\system32\d3dx10_38.dll
2012-09-18 20:51 . 2008-05-30 12:11 1491992 ----a-w- c:\windows\system32\D3DCompiler_38.dll
2012-09-18 20:51 . 2008-05-30 12:11 3850760 ----a-w- c:\windows\system32\D3DX9_38.dll
2012-09-18 20:51 . 2012-10-11 11:16 -------- d-----w- c:\windows\Logs
2012-09-16 17:24 . 2005-05-26 13:34 2297552 ----a-w- c:\windows\system32\d3dx9_26.dll
2012-09-16 09:58 . 2012-09-16 09:58 98304 ----a-w- c:\windows\system32\CmdLineExt.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-23 16:59 . 2012-08-03 13:24 73136 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-21 20:48 . 2012-08-21 20:48 38983 ---h-tw- c:\documents and settings\Vašek\2608TRIP.bat
2012-08-21 20:48 . 2012-08-21 20:48 38983 ---h-tw- c:\documents and settings\Vašek\2608TRIP.bat
2012-08-21 16:35 . 2012-08-21 16:35 21419 ----a-w- c:\windows\system32\drivers\AegisP.sys
2012-08-04 20:15 . 2012-08-05 21:32 12528 ----a-w- c:\windows\system32\drivers\secdrv.sys
2012-08-03 21:32 . 2012-08-03 21:32 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-08-21 09:12 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\documents and settings\Vašek\Plocha\Plocha\Programy\Daemon Lite\DAEMON Tools Lite\DTLite.exe" [2012-04-11 3672384]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-02-10 61440]
"Zástupce stránky vlastností sběrnice High Definition Audio"="HDAudPropShortcut.exe" [2004-03-17 61952]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-08-21 4282728]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
AirLive 802.11G Wireless Utility.lnk - c:\program files\OVISLINK\Common\AirliveUI.exe [N/A]
RAID Manager.lnk - c:\program files\ITE\ITE IT8212 ATA RAID Controller\RaidMgr.exe [2012-8-2 724992]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\usmt\\migwiz.exe"=
"c:\\Documents and Settings\\Vašek\\Plocha\\Plocha\\Programy\\Bit torrent\\BitTorrent.exe"=
"c:\\Documents and Settings\\Vašek\\Plocha\\hry\\Vietcong\\Vietcong\\vietcong.exe"=
.
R0 iteraid;ITERAID_Service_Install;c:\windows\system32\drivers\iteraid.sys [2.8.2012 18:16 24971]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [23.9.2012 14:30 729752]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [23.9.2012 14:30 355632]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [23.9.2012 14:30 21256]
R3 cmudax;C-Media High Definition Audio Interface;c:\windows\system32\drivers\cmudax.sys [2.8.2012 16:01 1258432]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [3.8.2012 23:32 242240]
S2 MBAMService;MBAMService;c:\documents and settings\Vašek\Plocha\Plocha\Programy\mamb\Malwarebytes' Anti-Malware\mbamservice.exe [14.10.2012 21:36 676936]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [14.10.2012 21:36 22856]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [15.9.2012 8:09 115168]
.
Obsah adresáře 'Naplánované úlohy'
.
2012-10-15 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2012-09-23 09:12]
.
.
------- Doplňkový sken -------
.
uInternet Connection Wizard,ShellNext = iexplore
TCP: DhcpNameServer = 192.168.3.1
FF - ProfilePath - c:\documents and settings\Vašek\Data aplikací\Mozilla\Firefox\Profiles\xmdec4wu.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.google.cz/
FF - ExtSQL: 2012-09-16 16:01; plugin@videofiledownload.com; c:\documents and settings\Vašek\Data aplikací\Mozilla\Firefox\Profiles\xmdec4wu.default\extensions\plugin@videofiledownload.com
FF - ExtSQL: 2012-09-23 14:35; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
user_pref('extensions.autoDisableScopes', 0);user_pref('security.csp.enable', false);user_pref('security.OCSP.enabled', 0);user_pref('extensions.autoDisableScopes', 0);user_pref('security.csp.enable', false);user_pref('security.OCSP.enabled', 0);user_pref('extensions.autoDisableScopes', 0);user_pref('security.csp.enable', false);user_pref('security.OCSP.enabled', 0);user_pref('extensions.autoDisableScopes', 0);user_pref('security.csp.enable', false);user_pref('security.OCSP.enabled', 0);
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-10-15 18:26
Windows 5.1.2600 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(760)
c:\windows\system32\Ati2evxx.dll
.
- - - - - - - > 'explorer.exe'(4032)
c:\windows\system32\MSCTF.dll
.
Celkový čas: 2012-10-15 18:27:39
ComboFix-quarantined-files.txt 2012-10-15 16:27
.
Před spuštěním: Volných bajtů: 32 293 392 384
Po spuštění: Volných bajtů: 32 264 466 432
.
- - End Of File - - 273E9401983C027198BFD90136C239EC

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

Stáhni AdwCleaner

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.