Blikání kolečka u kurzoru myši

Příspěvekod **adavyp** » 30 lis 2012 19:32

Zdravím,
Problém je takový, že mi asi v 3 sekundových intervalech blikne modré kolečko u kurzoru. Nevím, jestli je to SW závada, ale děje se zajímavá věc, a to že problém zmizí, když zapnu Task manager. Asi tam je nějakej proces, který nechce, aby byl viděn. A antivirus mi hlásí hrozbu o souboru SYSWOW64. Můžete se na to mrknout?

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:30:01, on 30.11.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16455)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_110.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_110.exe
C:\Users\Adam\Desktop\HiJackThis204.exe
C:\Windows\SysWOW64\update\igfxupdate.exe
C:\Windows\SysWOW64\WerFault.exe

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Roxio UPnP Renderer 11 - Unknown owner - C:\Program Files (x86)\Roxio Creator 2009 Ultimate\Digital Home 11\RoxioUPnPRenderer11.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7115 bytes

Reklama

Příspěvekod **Žbeky** » 30 lis 2012 23:22

Fixni:

Kód: Vybrat vše

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
- Pokud používáš Firefox, klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Chrome, nic dalšího nevybírej a dej Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(ZATÍM SÁM NIC NEMAŽ!).
Vlož sem pak obsah toho logu.

Příspěvekod **adavyp** » 01 pro 2012 00:11

MbAM nenašel nic.
Vyčištěno. Nicméně problém přetrvává. Zapomněl jsem dodat, že mi to vytáčí CPU.

Příspěvekod **Orcus** » 01 pro 2012 09:08

Stáhni si TDSSKiller

Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

====================================================

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.

Pokud budou problémy , spusť v nouz. režimu.

Příspěvekod **adavyp** » 01 pro 2012 09:22

09:21:27.0077 3324 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
09:21:27.0435 3324 ============================================================
09:21:27.0435 3324 Current date / time: 2012/12/01 09:21:27.0435
09:21:27.0435 3324 SystemInfo:
09:21:27.0435 3324
09:21:27.0435 3324 OS Version: 6.1.7601 ServicePack: 1.0
09:21:27.0435 3324 Product type: Workstation
09:21:27.0435 3324 ComputerName: ADAM-PC
09:21:27.0435 3324 UserName: Adam
09:21:27.0435 3324 Windows directory: C:\Windows
09:21:27.0435 3324 System windows directory: C:\Windows
09:21:27.0435 3324 Running under WOW64
09:21:27.0435 3324 Processor architecture: Intel x64
09:21:27.0435 3324 Number of processors: 2
09:21:27.0435 3324 Page size: 0x1000
09:21:27.0435 3324 Boot type: Normal boot
09:21:27.0435 3324 ============================================================
09:21:30.0618 3324 Drive \Device\Harddisk0\DR0 - Size: 0x7470AFDE00 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:21:30.0649 3324 ============================================================
09:21:30.0649 3324 \Device\Harddisk0\DR0:
09:21:30.0649 3324 MBR partitions:
09:21:30.0649 3324 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x19BE6286
09:21:30.0665 3324 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x19BEA1C3, BlocksNum 0x2079AA7E
09:21:30.0665 3324 ============================================================
09:21:30.0680 3324 D: <-> \Device\Harddisk0\DR0\Partition2
09:21:30.0711 3324 C: <-> \Device\Harddisk0\DR0\Partition1
09:21:30.0711 3324 ============================================================
09:21:30.0711 3324 Initialize success
09:21:30.0711 3324 ============================================================
09:21:44.0081 3372 ============================================================
09:21:44.0081 3372 Scan started
09:21:44.0081 3372 Mode: Manual;
09:21:44.0081 3372 ============================================================
09:21:45.0906 3372 ================ Scan system memory ========================
09:21:45.0906 3372 System memory - ok
09:21:45.0906 3372 ================ Scan services =============================
09:21:46.0015 3372 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
09:21:46.0015 3372 1394ohci - ok
09:21:46.0062 3372 [ E0A8525A951ADDB4655BC2068566407D ] 61883 C:\Windows\system32\DRIVERS\61883.sys
09:21:46.0062 3372 61883 - ok
09:21:46.0155 3372 [ A15069EEC83EBC54150564B2585CFDBA ] 9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269 C:\Program Files (x86)\Roxio\BackOnTrack\Disaster Recovery\SaibSVC.exe
09:21:46.0155 3372 9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269 - ok
09:21:46.0187 3372 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
09:21:46.0202 3372 ACPI - ok
09:21:46.0218 3372 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
09:21:46.0218 3372 AcpiPmi - ok
09:21:46.0249 3372 [ 2F0683FD2DF1D92E891CACA14B45A8C1 ] adfs C:\Windows\system32\drivers\adfs.sys
09:21:46.0249 3372 adfs - ok
09:21:46.0296 3372 [ 5DDC0A8D2CD60BDA593DDAF45821CE08 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
09:21:46.0296 3372 Adobe LM Service - ok
09:21:46.0405 3372 [ B1EA9681502EE57F87DB71D726288A5B ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
09:21:46.0405 3372 AdobeARMservice - ok
09:21:46.0436 3372 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
09:21:46.0452 3372 adp94xx - ok
09:21:46.0452 3372 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
09:21:46.0467 3372 adpahci - ok
09:21:46.0467 3372 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
09:21:46.0467 3372 adpu320 - ok
09:21:46.0499 3372 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
09:21:46.0499 3372 AeLookupSvc - ok
09:21:46.0545 3372 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
09:21:46.0545 3372 AFD - ok
09:21:46.0577 3372 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
09:21:46.0577 3372 agp440 - ok
09:21:46.0608 3372 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
09:21:46.0608 3372 ALG - ok
09:21:46.0623 3372 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
09:21:46.0623 3372 aliide - ok
09:21:46.0655 3372 [ 4C1E3649C89C7D542CD18ECC5210099D ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
09:21:46.0655 3372 AMD External Events Utility - ok
09:21:46.0717 3372 AMD FUEL Service - ok
09:21:46.0748 3372 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
09:21:46.0764 3372 amdide - ok
09:21:46.0779 3372 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
09:21:46.0779 3372 amdiox64 - ok
09:21:46.0811 3372 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
09:21:46.0811 3372 AmdK8 - ok
09:21:46.0998 3372 [ A3C0A15B39F979E8F3EABA901D72ECD7 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
09:21:47.0154 3372 amdkmdag - ok
09:21:47.0185 3372 [ 20F3CD38B107C1BD747C0EA37D450165 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
09:21:47.0185 3372 amdkmdap - ok
09:21:47.0201 3372 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
09:21:47.0201 3372 AmdPPM - ok
09:21:47.0232 3372 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
09:21:47.0247 3372 amdsata - ok
09:21:47.0263 3372 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
09:21:47.0263 3372 amdsbs - ok
09:21:47.0279 3372 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
09:21:47.0279 3372 amdxata - ok
09:21:47.0372 3372 [ 5A528A540B1AEE8B1C77ED65094E8CDF ] AODDriver4.01 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
09:21:47.0372 3372 AODDriver4.01 - ok
09:21:47.0419 3372 [ 5A528A540B1AEE8B1C77ED65094E8CDF ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
09:21:47.0419 3372 AODDriver4.2 - ok
09:21:47.0544 3372 [ CCA0610205BFE4EA3A7B7319AE7EF2A2 ] AODDriver4.2.0 C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys
09:21:47.0544 3372 AODDriver4.2.0 - ok
09:21:47.0591 3372 [ 01CB9EE6ADAED004E86F9870A14F86EB ] AODService C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe
09:21:47.0606 3372 AODService - ok
09:21:47.0637 3372 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
09:21:47.0637 3372 AppID - ok
09:21:47.0684 3372 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
09:21:47.0684 3372 AppIDSvc - ok
09:21:47.0715 3372 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
09:21:47.0715 3372 Appinfo - ok
09:21:47.0778 3372 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
09:21:47.0778 3372 AppMgmt - ok
09:21:47.0793 3372 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
09:21:47.0793 3372 arc - ok
09:21:47.0809 3372 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
09:21:47.0809 3372 arcsas - ok
09:21:47.0903 3372 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
09:21:47.0918 3372 aspnet_state - ok
09:21:47.0965 3372 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
09:21:47.0965 3372 aswFsBlk - ok
09:21:48.0012 3372 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
09:21:48.0012 3372 aswMonFlt - ok
09:21:48.0043 3372 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
09:21:48.0043 3372 aswRdr - ok
09:21:48.0105 3372 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
09:21:48.0121 3372 aswSnx - ok
09:21:48.0152 3372 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
09:21:48.0152 3372 aswSP - ok
09:21:48.0183 3372 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
09:21:48.0183 3372 aswTdi - ok
09:21:48.0199 3372 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
09:21:48.0199 3372 AsyncMac - ok
09:21:48.0215 3372 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
09:21:48.0215 3372 atapi - ok
09:21:48.0246 3372 [ 4BF5BCA6E2608CD8A00BC4A6673A9F47 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
09:21:48.0246 3372 AtiHDAudioService - ok
09:21:48.0277 3372 [ FB7602C5C508BE281368AAE0B61B51C6 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
09:21:48.0277 3372 AtiHdmiService - ok
09:21:48.0464 3372 [ A3C0A15B39F979E8F3EABA901D72ECD7 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
09:21:48.0527 3372 atikmdag - ok
09:21:48.0542 3372 atillk64 - ok
09:21:48.0573 3372 [ B07E6681D303A612680223C729B021E2 ] ATITool C:\Windows\system32\DRIVERS\ATITool64.sys
09:21:48.0573 3372 ATITool - ok
09:21:48.0605 3372 [ FC0E8778C000291CAF60EB88C011E931 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
09:21:48.0605 3372 atksgt - ok
09:21:48.0651 3372 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
09:21:48.0651 3372 AudioEndpointBuilder - ok
09:21:48.0683 3372 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
09:21:48.0683 3372 AudioSrv - ok
09:21:48.0745 3372 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
09:21:48.0745 3372 avast! Antivirus - ok
09:21:48.0792 3372 [ 16FABE84916623D0607E4A975544032C ] Avc C:\Windows\system32\DRIVERS\avc.sys
09:21:48.0792 3372 Avc - ok
09:21:48.0823 3372 [ 48BC86147A89AD4FAC28A554747A2DB2 ] aver7700 C:\Windows\system32\Drivers\aver7700.sys
09:21:48.0823 3372 aver7700 - ok
09:21:48.0839 3372 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
09:21:48.0854 3372 AxInstSV - ok
09:21:48.0870 3372 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
09:21:48.0885 3372 b06bdrv - ok
09:21:48.0901 3372 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
09:21:48.0901 3372 b57nd60a - ok
09:21:48.0917 3372 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
09:21:48.0932 3372 BDESVC - ok
09:21:48.0948 3372 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
09:21:48.0948 3372 Beep - ok
09:21:48.0995 3372 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
09:21:48.0995 3372 BFE - ok
09:21:49.0010 3372 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
09:21:49.0026 3372 BITS - ok
09:21:49.0041 3372 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
09:21:49.0041 3372 blbdrive - ok
09:21:49.0073 3372 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
09:21:49.0073 3372 bowser - ok
09:21:49.0073 3372 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
09:21:49.0088 3372 BrFiltLo - ok
09:21:49.0088 3372 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
09:21:49.0088 3372 BrFiltUp - ok
09:21:49.0104 3372 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
09:21:49.0104 3372 BridgeMP - ok
09:21:49.0135 3372 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
09:21:49.0135 3372 Browser - ok
09:21:49.0151 3372 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
09:21:49.0151 3372 Brserid - ok
09:21:49.0166 3372 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
09:21:49.0166 3372 BrSerWdm - ok
09:21:49.0166 3372 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
09:21:49.0166 3372 BrUsbMdm - ok
09:21:49.0166 3372 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
09:21:49.0182 3372 BrUsbSer - ok
09:21:49.0182 3372 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
09:21:49.0182 3372 BTHMODEM - ok
09:21:49.0197 3372 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
09:21:49.0197 3372 bthserv - ok
09:21:49.0229 3372 catchme - ok
09:21:49.0244 3372 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
09:21:49.0244 3372 cdfs - ok
09:21:49.0275 3372 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
09:21:49.0275 3372 cdrom - ok
09:21:49.0291 3372 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
09:21:49.0291 3372 CertPropSvc - ok
09:21:49.0307 3372 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
09:21:49.0307 3372 circlass - ok
09:21:49.0338 3372 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
09:21:49.0338 3372 CLFS - ok
09:21:49.0400 3372 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:21:49.0400 3372 clr_optimization_v2.0.50727_32 - ok
09:21:49.0447 3372 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:21:49.0447 3372 clr_optimization_v2.0.50727_64 - ok
09:21:49.0478 3372 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:21:49.0525 3372 clr_optimization_v4.0.30319_32 - ok
09:21:49.0541 3372 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
09:21:49.0541 3372 clr_optimization_v4.0.30319_64 - ok
09:21:49.0572 3372 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
09:21:49.0572 3372 CmBatt - ok
09:21:49.0587 3372 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
09:21:49.0587 3372 cmdide - ok
09:21:49.0619 3372 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
09:21:49.0634 3372 CNG - ok
09:21:49.0650 3372 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
09:21:49.0650 3372 Compbatt - ok
09:21:49.0665 3372 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
09:21:49.0665 3372 CompositeBus - ok
09:21:49.0681 3372 COMSysApp - ok
09:21:49.0697 3372 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
09:21:49.0697 3372 crcdisk - ok
09:21:49.0728 3372 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
09:21:49.0728 3372 CryptSvc - ok
09:21:49.0790 3372 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
09:21:49.0790 3372 CSC - ok
09:21:49.0853 3372 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
09:21:49.0868 3372 CscService - ok
09:21:49.0899 3372 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
09:21:49.0899 3372 DcomLaunch - ok
09:21:49.0931 3372 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
09:21:49.0931 3372 defragsvc - ok
09:21:50.0024 3372 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
09:21:50.0024 3372 DfsC - ok
09:21:50.0055 3372 [ 2D589A2C024B2FB238535DB9F7B3597D ] DgiVecp C:\Windows\system32\Drivers\DgiVecp.sys
09:21:50.0071 3372 DgiVecp - ok
09:21:50.0087 3372 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
09:21:50.0087 3372 Dhcp - ok
09:21:50.0118 3372 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
09:21:50.0133 3372 discache - ok
09:21:50.0149 3372 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
09:21:50.0149 3372 Disk - ok
09:21:50.0165 3372 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
09:21:50.0165 3372 Dnscache - ok
09:21:50.0196 3372 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
09:21:50.0196 3372 dot3svc - ok
09:21:50.0211 3372 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
09:21:50.0211 3372 DPS - ok
09:21:50.0227 3372 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
09:21:50.0227 3372 drmkaud - ok
09:21:50.0258 3372 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
09:21:50.0258 3372 dtsoftbus01 - ok
09:21:50.0321 3372 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
09:21:50.0321 3372 DXGKrnl - ok
09:21:50.0352 3372 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
09:21:50.0367 3372 EapHost - ok
09:21:50.0430 3372 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
09:21:50.0492 3372 ebdrv - ok
09:21:50.0523 3372 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
09:21:50.0523 3372 EFS - ok
09:21:50.0570 3372 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
09:21:50.0586 3372 ehRecvr - ok
09:21:50.0601 3372 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
09:21:50.0601 3372 ehSched - ok
09:21:50.0648 3372 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
09:21:50.0664 3372 elxstor - ok
09:21:50.0679 3372 [ 9EAFB3B3B60B8AD958985152A9309ACA ] epmntdrv C:\Windows\system32\epmntdrv.sys
09:21:50.0695 3372 epmntdrv - ok
09:21:50.0711 3372 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
09:21:50.0711 3372 ErrDev - ok
09:21:50.0742 3372 [ FB949ED2C93C878A189039F3D7730942 ] EuGdiDrv C:\Windows\system32\EuGdiDrv.sys
09:21:50.0742 3372 EuGdiDrv - ok
09:21:50.0789 3372 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
09:21:50.0789 3372 EventSystem - ok
09:21:50.0820 3372 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
09:21:50.0820 3372 exfat - ok
09:21:50.0851 3372 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
09:21:50.0851 3372 fastfat - ok
09:21:50.0882 3372 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
09:21:50.0898 3372 Fax - ok
09:21:50.0898 3372 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
09:21:50.0898 3372 fdc - ok
09:21:50.0929 3372 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
09:21:50.0929 3372 fdPHost - ok
09:21:50.0945 3372 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
09:21:50.0945 3372 FDResPub - ok
09:21:50.0945 3372 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
09:21:50.0960 3372 FileInfo - ok
09:21:50.0960 3372 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
09:21:50.0960 3372 Filetrace - ok
09:21:51.0007 3372 [ 1F63900E2EB00101B9ACA2B7A870704E ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
09:21:51.0023 3372 FLEXnet Licensing Service - ok
09:21:51.0069 3372 [ 1C3FB052A0BB72EDAED90785C34D6EED ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
09:21:51.0085 3372 FLEXnet Licensing Service 64 - ok
09:21:51.0085 3372 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
09:21:51.0101 3372 flpydisk - ok
09:21:51.0116 3372 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
09:21:51.0132 3372 FltMgr - ok
09:21:51.0163 3372 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
09:21:51.0179 3372 FontCache - ok
09:21:51.0225 3372 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:21:51.0225 3372 FontCache3.0.0.0 - ok
09:21:51.0241 3372 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
09:21:51.0241 3372 FsDepends - ok
09:21:51.0257 3372 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
09:21:51.0257 3372 Fs_Rec - ok
09:21:51.0288 3372 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
09:21:51.0303 3372 fvevol - ok
09:21:51.0319 3372 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
09:21:51.0319 3372 gagp30kx - ok
09:21:51.0335 3372 [ F51FB25E1328FA14F446A8B24AC52709 ] gdrv C:\Windows\gdrv.sys
09:21:51.0335 3372 gdrv - ok
09:21:51.0381 3372 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
09:21:51.0381 3372 gpsvc - ok
09:21:51.0397 3372 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
09:21:51.0397 3372 hcw85cir - ok
09:21:51.0428 3372 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
09:21:51.0428 3372 HdAudAddService - ok
09:21:51.0475 3372 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
09:21:51.0475 3372 HDAudBus - ok
09:21:51.0491 3372 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
09:21:51.0506 3372 HidBatt - ok
09:21:51.0522 3372 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
09:21:51.0522 3372 HidBth - ok
09:21:51.0537 3372 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
09:21:51.0537 3372 HidIr - ok
09:21:51.0569 3372 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
09:21:51.0569 3372 hidserv - ok
09:21:51.0600 3372 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
09:21:51.0615 3372 HidUsb - ok
09:21:51.0647 3372 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
09:21:51.0647 3372 hkmsvc - ok
09:21:51.0678 3372 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
09:21:51.0678 3372 HomeGroupListener - ok
09:21:51.0693 3372 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
09:21:51.0709 3372 HomeGroupProvider - ok
09:21:51.0725 3372 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
09:21:51.0725 3372 HpSAMD - ok
09:21:51.0771 3372 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
09:21:51.0787 3372 HTTP - ok
09:21:51.0803 3372 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
09:21:51.0818 3372 hwpolicy - ok
09:21:51.0834 3372 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
09:21:51.0834 3372 i8042prt - ok
09:21:51.0865 3372 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
09:21:51.0865 3372 iaStorV - ok
09:21:51.0927 3372 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
09:21:51.0943 3372 IDriverT - ok
09:21:51.0990 3372 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:21:51.0990 3372 idsvc - ok
09:21:52.0021 3372 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
09:21:52.0021 3372 iirsp - ok
09:21:52.0052 3372 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
09:21:52.0068 3372 IKEEXT - ok
09:21:52.0255 3372 [ 6BCD9505F0AB48EDDA1EE250987B0EB4 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
09:21:52.0271 3372 IntcAzAudAddService - ok
09:21:52.0286 3372 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
09:21:52.0286 3372 intelide - ok
09:21:52.0302 3372 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
09:21:52.0302 3372 intelppm - ok
09:21:52.0333 3372 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
09:21:52.0333 3372 IPBusEnum - ok
09:21:52.0349 3372 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:21:52.0364 3372 IpFilterDriver - ok
09:21:52.0395 3372 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
09:21:52.0395 3372 iphlpsvc - ok
09:21:52.0427 3372 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
09:21:52.0427 3372 IPMIDRV - ok
09:21:52.0442 3372 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
09:21:52.0442 3372 IPNAT - ok
09:21:52.0458 3372 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
09:21:52.0458 3372 IRENUM - ok
09:21:52.0473 3372 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
09:21:52.0473 3372 isapnp - ok
09:21:52.0489 3372 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
09:21:52.0489 3372 iScsiPrt - ok
09:21:52.0520 3372 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
09:21:52.0520 3372 kbdclass - ok
09:21:52.0536 3372 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
09:21:52.0536 3372 kbdhid - ok
09:21:52.0551 3372 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
09:21:52.0567 3372 KeyIso - ok
09:21:52.0598 3372 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
09:21:52.0598 3372 KSecDD - ok
09:21:52.0614 3372 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
09:21:52.0629 3372 KSecPkg - ok
09:21:52.0645 3372 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
09:21:52.0645 3372 ksthunk - ok
09:21:52.0661 3372 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
09:21:52.0676 3372 KtmRm - ok
09:21:52.0707 3372 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
09:21:52.0723 3372 LanmanServer - ok
09:21:52.0739 3372 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
09:21:52.0754 3372 LanmanWorkstation - ok
09:21:52.0770 3372 [ 156AB2E56DC3CA0B582E3362E07CDED7 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
09:21:52.0770 3372 lirsgt - ok
09:21:52.0801 3372 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
09:21:52.0801 3372 lltdio - ok
09:21:52.0817 3372 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
09:21:52.0832 3372 lltdsvc - ok
09:21:52.0848 3372 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
09:21:52.0848 3372 lmhosts - ok
09:21:52.0879 3372 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
09:21:52.0879 3372 LSI_FC - ok
09:21:52.0895 3372 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
09:21:52.0895 3372 LSI_SAS - ok
09:21:52.0910 3372 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
09:21:52.0910 3372 LSI_SAS2 - ok
09:21:52.0926 3372 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
09:21:52.0926 3372 LSI_SCSI - ok
09:21:52.0941 3372 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
09:21:52.0957 3372 luafv - ok
09:21:52.0973 3372 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
09:21:52.0973 3372 Mcx2Svc - ok
09:21:52.0988 3372 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
09:21:52.0988 3372 megasas - ok
09:21:53.0004 3372 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
09:21:53.0004 3372 MegaSR - ok
09:21:53.0051 3372 Microsoft SharePoint Workspace Audit Service - ok
09:21:53.0082 3372 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
09:21:53.0097 3372 MMCSS - ok
09:21:53.0113 3372 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
09:21:53.0113 3372 Modem - ok
09:21:53.0129 3372 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
09:21:53.0129 3372 monitor - ok
09:21:53.0144 3372 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
09:21:53.0144 3372 mouclass - ok
09:21:53.0160 3372 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
09:21:53.0160 3372 mouhid - ok
09:21:53.0191 3372 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
09:21:53.0191 3372 mountmgr - ok
09:21:53.0238 3372 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
09:21:53.0238 3372 MozillaMaintenance - ok
09:21:53.0285 3372 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
09:21:53.0285 3372 mpio - ok
09:21:53.0300 3372 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
09:21:53.0300 3372 mpsdrv - ok
09:21:53.0331 3372 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
09:21:53.0347 3372 MpsSvc - ok
09:21:53.0378 3372 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
09:21:53.0378 3372 MRxDAV - ok
09:21:53.0409 3372 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
09:21:53.0409 3372 mrxsmb - ok
09:21:53.0441 3372 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:21:53.0441 3372 mrxsmb10 - ok
09:21:53.0456 3372 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:21:53.0456 3372 mrxsmb20 - ok
09:21:53.0472 3372 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
09:21:53.0472 3372 msahci - ok
09:21:53.0503 3372 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
09:21:53.0503 3372 msdsm - ok
09:21:53.0534 3372 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
09:21:53.0550 3372 MSDTC - ok
09:21:53.0597 3372 [ 72949A24D37A20A54B3D4D3DADBB55E9 ] MSDV C:\Windows\system32\DRIVERS\msdv.sys
09:21:53.0597 3372 MSDV - ok
09:21:53.0612 3372 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
09:21:53.0612 3372 Msfs - ok
09:21:53.0628 3372 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
09:21:53.0628 3372 mshidkmdf - ok
09:21:53.0643 3372 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
09:21:53.0643 3372 msisadrv - ok
09:21:53.0675 3372 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
09:21:53.0690 3372 MSiSCSI - ok
09:21:53.0690 3372 msiserver - ok
09:21:53.0706 3372 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
09:21:53.0706 3372 MSKSSRV - ok
09:21:53.0721 3372 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
09:21:53.0721 3372 MSPCLOCK - ok
09:21:53.0737 3372 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
09:21:53.0737 3372 MSPQM - ok
09:21:53.0768 3372 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
09:21:53.0768 3372 MsRPC - ok
09:21:53.0784 3372 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
09:21:53.0784 3372 mssmbios - ok
09:21:53.0799 3372 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
09:21:53.0799 3372 MSTEE - ok
09:21:53.0815 3372 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
09:21:53.0815 3372 MTConfig - ok
09:21:53.0831 3372 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
09:21:53.0831 3372 Mup - ok
09:21:53.0846 3372 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
09:21:53.0846 3372 napagent - ok
09:21:53.0862 3372 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
09:21:53.0862 3372 NativeWifiP - ok
09:21:53.0909 3372 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
09:21:53.0909 3372 NDIS - ok
09:21:53.0924 3372 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
09:21:53.0924 3372 NdisCap - ok
09:21:53.0940 3372 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
09:21:53.0940 3372 NdisTapi - ok
09:21:53.0971 3372 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
09:21:53.0971 3372 Ndisuio - ok
09:21:53.0987 3372 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
09:21:53.0987 3372 NdisWan - ok
09:21:54.0018 3372 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
09:21:54.0018 3372 NDProxy - ok
09:21:54.0033 3372 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
09:21:54.0049 3372 NetBIOS - ok
09:21:54.0080 3372 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
09:21:54.0080 3372 NetBT - ok
09:21:54.0111 3372 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
09:21:54.0111 3372 Netlogon - ok
09:21:54.0143 3372 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
09:21:54.0143 3372 Netman - ok
09:21:54.0189 3372 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:21:54.0189 3372 NetMsmqActivator - ok
09:21:54.0205 3372 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:21:54.0205 3372 NetPipeActivator - ok
09:21:54.0236 3372 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
09:21:54.0252 3372 netprofm - ok
09:21:54.0252 3372 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:21:54.0267 3372 NetTcpActivator - ok
09:21:54.0267 3372 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:21:54.0267 3372 NetTcpPortSharing - ok
09:21:54.0314 3372 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys

Příspěvekod **adavyp** » 01 pro 2012 09:23

09:21:54.0314 3372 nfrd960 - ok
09:21:54.0345 3372 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
09:21:54.0345 3372 NlaSvc - ok
09:21:54.0377 3372 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
09:21:54.0377 3372 Npfs - ok
09:21:54.0408 3372 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
09:21:54.0408 3372 nsi - ok
09:21:54.0423 3372 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
09:21:54.0423 3372 nsiproxy - ok
09:21:54.0533 3372 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
09:21:54.0564 3372 Ntfs - ok
09:21:54.0595 3372 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
09:21:54.0595 3372 Null - ok
09:21:54.0611 3372 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
09:21:54.0611 3372 nvraid - ok
09:21:54.0642 3372 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
09:21:54.0642 3372 nvstor - ok
09:21:54.0673 3372 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
09:21:54.0673 3372 nv_agp - ok
09:21:54.0689 3372 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
09:21:54.0689 3372 ohci1394 - ok
09:21:54.0735 3372 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:21:54.0735 3372 ose - ok
09:21:54.0845 3372 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
09:21:54.0923 3372 osppsvc - ok
09:21:54.0969 3372 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
09:21:54.0969 3372 p2pimsvc - ok
09:21:54.0985 3372 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
09:21:55.0001 3372 p2psvc - ok
09:21:55.0016 3372 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
09:21:55.0016 3372 Parport - ok
09:21:55.0047 3372 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
09:21:55.0047 3372 partmgr - ok
09:21:55.0063 3372 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
09:21:55.0063 3372 PcaSvc - ok
09:21:55.0094 3372 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
09:21:55.0110 3372 pci - ok
09:21:55.0125 3372 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
09:21:55.0125 3372 pciide - ok
09:21:55.0141 3372 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
09:21:55.0141 3372 pcmcia - ok
09:21:55.0172 3372 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
09:21:55.0172 3372 pcw - ok
09:21:55.0203 3372 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
09:21:55.0203 3372 PEAUTH - ok
09:21:55.0250 3372 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
09:21:55.0281 3372 PeerDistSvc - ok
09:21:55.0344 3372 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
09:21:55.0359 3372 PerfHost - ok
09:21:55.0406 3372 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
09:21:55.0437 3372 pla - ok
09:21:55.0469 3372 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
09:21:55.0484 3372 PlugPlay - ok
09:21:55.0500 3372 PnkBstrA - ok
09:21:55.0515 3372 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
09:21:55.0515 3372 PNRPAutoReg - ok
09:21:55.0531 3372 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
09:21:55.0547 3372 PNRPsvc - ok
09:21:55.0547 3372 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
09:21:55.0562 3372 PolicyAgent - ok
09:21:55.0578 3372 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
09:21:55.0593 3372 Power - ok
09:21:55.0609 3372 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
09:21:55.0609 3372 PptpMiniport - ok
09:21:55.0625 3372 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
09:21:55.0625 3372 Processor - ok
09:21:55.0640 3372 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
09:21:55.0656 3372 ProfSvc - ok
09:21:55.0656 3372 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
09:21:55.0671 3372 ProtectedStorage - ok
09:21:55.0687 3372 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
09:21:55.0687 3372 Psched - ok
09:21:55.0703 3372 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
09:21:55.0703 3372 PxHlpa64 - ok
09:21:55.0765 3372 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
09:21:55.0796 3372 ql2300 - ok
09:21:55.0812 3372 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
09:21:55.0812 3372 ql40xx - ok
09:21:55.0843 3372 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
09:21:55.0843 3372 QWAVE - ok
09:21:55.0859 3372 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
09:21:55.0859 3372 QWAVEdrv - ok
09:21:55.0874 3372 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
09:21:55.0874 3372 RasAcd - ok
09:21:55.0890 3372 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
09:21:55.0890 3372 RasAgileVpn - ok
09:21:55.0905 3372 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
09:21:55.0905 3372 RasAuto - ok
09:21:55.0921 3372 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
09:21:55.0921 3372 Rasl2tp - ok
09:21:55.0952 3372 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
09:21:55.0952 3372 RasMan - ok
09:21:55.0968 3372 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
09:21:55.0968 3372 RasPppoe - ok
09:21:55.0968 3372 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
09:21:55.0968 3372 RasSstp - ok
09:21:55.0983 3372 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
09:21:55.0999 3372 rdbss - ok
09:21:55.0999 3372 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
09:21:55.0999 3372 rdpbus - ok
09:21:56.0015 3372 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
09:21:56.0015 3372 RDPCDD - ok
09:21:56.0030 3372 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
09:21:56.0030 3372 RDPDR - ok
09:21:56.0046 3372 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
09:21:56.0046 3372 RDPENCDD - ok
09:21:56.0046 3372 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
09:21:56.0046 3372 RDPREFMP - ok
09:21:56.0093 3372 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
09:21:56.0093 3372 RdpVideoMiniport - ok
09:21:56.0124 3372 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
09:21:56.0124 3372 RDPWD - ok
09:21:56.0155 3372 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
09:21:56.0171 3372 rdyboost - ok
09:21:56.0186 3372 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
09:21:56.0186 3372 RemoteAccess - ok
09:21:56.0217 3372 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
09:21:56.0217 3372 RemoteRegistry - ok
09:21:56.0249 3372 [ CAF88D6573D21CD2AA27001DDBFDC74D ] RMCAST C:\Windows\system32\DRIVERS\RMCAST.sys
09:21:56.0249 3372 RMCAST - ok
09:21:56.0342 3372 [ FF578453D3B3ADAAB22D7151D7F9E592 ] RoxMediaDB12 C:\Program Files (x86)\Common Files\Roxio Shared\12.0\SharedCOM\RoxMediaDB12.exe
09:21:56.0373 3372 RoxMediaDB12 - ok
09:21:56.0405 3372 [ 71B38B8DF1A9B55FC0FB64958CC7B9DD ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\12.0\SharedCOM\RoxWatch12.exe
09:21:56.0405 3372 RoxWatch12 - ok
09:21:56.0436 3372 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
09:21:56.0451 3372 RpcEptMapper - ok
09:21:56.0483 3372 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
09:21:56.0483 3372 RpcLocator - ok
09:21:56.0514 3372 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
09:21:56.0529 3372 RpcSs - ok
09:21:56.0561 3372 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
09:21:56.0561 3372 rspndr - ok
09:21:56.0576 3372 [ 730C8393DFC90386D5A1ECB24DD6C614 ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
09:21:56.0576 3372 RTHDMIAzAudService - ok
09:21:56.0607 3372 [ 68DD0457D18FCCEF7384AE84022F0C86 ] RTL8023x64 C:\Windows\system32\DRIVERS\Rtnic64.sys
09:21:56.0623 3372 RTL8023x64 - ok
09:21:56.0639 3372 [ ABCB5A38A0D85BDF69B7877E1AD1EED5 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
09:21:56.0654 3372 RTL8167 - ok
09:21:56.0670 3372 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
09:21:56.0670 3372 s3cap - ok
09:21:56.0717 3372 [ 27DB9153D259D632D15483DEEAB799ED ] Sahdad64 C:\Windows\system32\Drivers\Sahdad64.sys
09:21:56.0717 3372 Sahdad64 - ok
09:21:56.0732 3372 [ F77849D909B90BCACFCF7295AECF299B ] Saibad64 C:\Windows\system32\Drivers\Saibad64.sys
09:21:56.0732 3372 Saibad64 - ok
09:21:56.0763 3372 [ 704D415290A568F68DE20942DAC23F7E ] SaibVdAd64 C:\Windows\system32\Drivers\SaibVdAd64.sys
09:21:56.0763 3372 SaibVdAd64 - ok
09:21:56.0795 3372 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
09:21:56.0795 3372 SamSs - ok
09:21:56.0826 3372 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
09:21:56.0841 3372 sbp2port - ok
09:21:56.0888 3372 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
09:21:56.0919 3372 SCardSvr - ok
09:21:56.0935 3372 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
09:21:56.0935 3372 scfilter - ok
09:21:56.0997 3372 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
09:21:57.0044 3372 Schedule - ok
09:21:57.0060 3372 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
09:21:57.0075 3372 SCPolicySvc - ok
09:21:57.0091 3372 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
09:21:57.0107 3372 SDRSVC - ok
09:21:57.0153 3372 [ EA0FD928C8B7635C5528F2D7B8419EF1 ] SearchIndexer C:\Windows\system32\SearchIndexer.dll
09:21:57.0169 3372 SearchIndexer - ok
09:21:57.0200 3372 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
09:21:57.0200 3372 secdrv - ok
09:21:57.0216 3372 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
09:21:57.0216 3372 seclogon - ok
09:21:57.0247 3372 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
09:21:57.0263 3372 SENS - ok
09:21:57.0263 3372 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
09:21:57.0278 3372 SensrSvc - ok
09:21:57.0278 3372 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
09:21:57.0278 3372 Serenum - ok
09:21:57.0294 3372 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
09:21:57.0294 3372 Serial - ok
09:21:57.0325 3372 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
09:21:57.0325 3372 sermouse - ok
09:21:57.0341 3372 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
09:21:57.0356 3372 SessionEnv - ok
09:21:57.0372 3372 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
09:21:57.0372 3372 sffdisk - ok
09:21:57.0387 3372 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
09:21:57.0387 3372 sffp_mmc - ok
09:21:57.0403 3372 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
09:21:57.0403 3372 sffp_sd - ok
09:21:57.0419 3372 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
09:21:57.0419 3372 sfloppy - ok
09:21:57.0465 3372 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
09:21:57.0465 3372 SharedAccess - ok
09:21:57.0512 3372 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
09:21:57.0512 3372 ShellHWDetection - ok
09:21:57.0543 3372 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
09:21:57.0543 3372 SiSRaid2 - ok
09:21:57.0559 3372 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
09:21:57.0559 3372 SiSRaid4 - ok
09:21:57.0575 3372 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
09:21:57.0575 3372 Smb - ok
09:21:57.0606 3372 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
09:21:57.0621 3372 SNMPTRAP - ok
09:21:57.0637 3372 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
09:21:57.0637 3372 spldr - ok
09:21:57.0668 3372 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
09:21:57.0684 3372 Spooler - ok
09:21:57.0762 3372 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
09:21:57.0855 3372 sppsvc - ok
09:21:57.0887 3372 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
09:21:57.0887 3372 sppuinotify - ok
09:21:57.0902 3372 [ A15860E920B02C9A7CE8F3A6C2FF1E3A ] sptd C:\Windows\System32\Drivers\sptd.sys
09:21:57.0918 3372 sptd - ok
09:21:57.0949 3372 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
09:21:57.0949 3372 srv - ok
09:21:57.0980 3372 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
09:21:57.0980 3372 srv2 - ok
09:21:57.0996 3372 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
09:21:57.0996 3372 srvnet - ok
09:21:58.0011 3372 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
09:21:58.0011 3372 SSDPSRV - ok
09:21:58.0043 3372 [ 0211AB46B73A2623B86C1CFCB30579AB ] SSPORT C:\Windows\system32\Drivers\SSPORT.sys
09:21:58.0043 3372 SSPORT - ok
09:21:58.0043 3372 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
09:21:58.0058 3372 SstpSvc - ok
09:21:58.0074 3372 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
09:21:58.0074 3372 stexstor - ok
09:21:58.0105 3372 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
09:21:58.0121 3372 stisvc - ok
09:21:58.0136 3372 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
09:21:58.0136 3372 storflt - ok
09:21:58.0152 3372 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
09:21:58.0152 3372 storvsc - ok
09:21:58.0183 3372 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
09:21:58.0183 3372 swenum - ok
09:21:58.0199 3372 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
09:21:58.0199 3372 swprv - ok
09:21:58.0214 3372 Synth3dVsc - ok
09:21:58.0261 3372 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
09:21:58.0292 3372 SysMain - ok
09:21:58.0323 3372 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
09:21:58.0339 3372 TabletInputService - ok
09:21:58.0355 3372 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
09:21:58.0355 3372 TapiSrv - ok
09:21:58.0386 3372 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
09:21:58.0386 3372 TBS - ok
09:21:58.0448 3372 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
09:21:58.0479 3372 Tcpip - ok
09:21:58.0526 3372 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
09:21:58.0557 3372 TCPIP6 - ok
09:21:58.0573 3372 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
09:21:58.0573 3372 tcpipreg - ok
09:21:58.0604 3372 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
09:21:58.0604 3372 TDPIPE - ok
09:21:58.0620 3372 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
09:21:58.0620 3372 TDTCP - ok
09:21:58.0651 3372 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
09:21:58.0651 3372 tdx - ok
09:21:58.0682 3372 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
09:21:58.0682 3372 TermDD - ok
09:21:58.0698 3372 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
09:21:58.0713 3372 TermService - ok
09:21:58.0729 3372 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
09:21:58.0729 3372 Themes - ok
09:21:58.0760 3372 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
09:21:58.0760 3372 THREADORDER - ok
09:21:58.0791 3372 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
09:21:58.0791 3372 TrkWks - ok
09:21:58.0838 3372 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
09:21:58.0838 3372 TrustedInstaller - ok
09:21:58.0869 3372 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
09:21:58.0869 3372 tssecsrv - ok
09:21:58.0901 3372 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
09:21:58.0901 3372 TsUsbFlt - ok
09:21:58.0916 3372 tsusbhub - ok
09:21:58.0932 3372 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
09:21:58.0932 3372 tunnel - ok
09:21:58.0947 3372 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
09:21:58.0963 3372 uagp35 - ok
09:21:58.0979 3372 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
09:21:58.0979 3372 udfs - ok
09:21:59.0025 3372 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
09:21:59.0025 3372 UI0Detect - ok
09:21:59.0041 3372 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
09:21:59.0041 3372 uliagpkx - ok
09:21:59.0057 3372 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
09:21:59.0057 3372 umbus - ok
09:21:59.0072 3372 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
09:21:59.0088 3372 UmPass - ok
09:21:59.0088 3372 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
09:21:59.0103 3372 UmRdpService - ok
09:21:59.0119 3372 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
09:21:59.0135 3372 upnphost - ok
09:21:59.0150 3372 [ B26AFB54A534D634523C4FB66765B026 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
09:21:59.0150 3372 usbccgp - ok
09:21:59.0166 3372 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
09:21:59.0166 3372 usbcir - ok
09:21:59.0197 3372 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
09:21:59.0197 3372 usbehci - ok
09:21:59.0244 3372 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
09:21:59.0291 3372 usbhub - ok
09:21:59.0322 3372 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
09:21:59.0322 3372 usbohci - ok
09:21:59.0369 3372 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
09:21:59.0369 3372 usbprint - ok
09:21:59.0400 3372 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
09:21:59.0415 3372 usbscan - ok
09:21:59.0415 3372 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:21:59.0431 3372 USBSTOR - ok
09:21:59.0447 3372 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
09:21:59.0447 3372 usbuhci - ok
09:21:59.0462 3372 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
09:21:59.0478 3372 UxSms - ok
09:21:59.0478 3372 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
09:21:59.0493 3372 VaultSvc - ok
09:21:59.0509 3372 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
09:21:59.0509 3372 vdrvroot - ok
09:21:59.0540 3372 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
09:21:59.0556 3372 vds - ok
09:21:59.0571 3372 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
09:21:59.0571 3372 vga - ok
09:21:59.0587 3372 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
09:21:59.0587 3372 VgaSave - ok
09:21:59.0603 3372 VGPU - ok
09:21:59.0618 3372 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
09:21:59.0618 3372 vhdmp - ok
09:21:59.0634 3372 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
09:21:59.0634 3372 viaide - ok
09:21:59.0649 3372 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
09:21:59.0665 3372 vmbus - ok
09:21:59.0665 3372 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
09:21:59.0681 3372 VMBusHID - ok
09:21:59.0696 3372 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
09:21:59.0696 3372 volmgr - ok
09:21:59.0712 3372 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
09:21:59.0712 3372 volmgrx - ok
09:21:59.0743 3372 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
09:21:59.0743 3372 volsnap - ok
09:21:59.0774 3372 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
09:21:59.0774 3372 vsmraid - ok
09:21:59.0821 3372 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
09:21:59.0837 3372 VSS - ok
09:21:59.0852 3372 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
09:21:59.0852 3372 vwifibus - ok
09:21:59.0883 3372 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
09:21:59.0899 3372 W32Time - ok
09:21:59.0915 3372 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
09:21:59.0930 3372 WacomPen - ok
09:21:59.0946 3372 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
09:21:59.0946 3372 WANARP - ok
09:21:59.0961 3372 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
09:21:59.0961 3372 Wanarpv6 - ok
09:22:00.0008 3372 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
09:22:00.0039 3372 WatAdminSvc - ok
09:22:00.0086 3372 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
09:22:00.0117 3372 wbengine - ok
09:22:00.0133 3372 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
09:22:00.0149 3372 WbioSrvc - ok
09:22:00.0164 3372 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
09:22:00.0164 3372 wcncsvc - ok
09:22:00.0180 3372 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
09:22:00.0180 3372 WcsPlugInService - ok
09:22:00.0195 3372 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
09:22:00.0211 3372 Wd - ok
09:22:00.0242 3372 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
09:22:00.0242 3372 Wdf01000 - ok
09:22:00.0258 3372 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
09:22:00.0258 3372 WdiServiceHost - ok
09:22:00.0273 3372 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
09:22:00.0273 3372 WdiSystemHost - ok
09:22:00.0289 3372 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
09:22:00.0289 3372 WebClient - ok
09:22:00.0305 3372 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
09:22:00.0320 3372 Wecsvc - ok
09:22:00.0336 3372 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
09:22:00.0336 3372 wercplsupport - ok
09:22:00.0351 3372 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
09:22:00.0351 3372 WerSvc - ok
09:22:00.0367 3372 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
09:22:00.0367 3372 WfpLwf - ok
09:22:00.0383 3372 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
09:22:00.0383 3372 WIMMount - ok
09:22:00.0398 3372 WinDefend - ok
09:22:00.0398 3372 WinHttpAutoProxySvc - ok
09:22:00.0461 3372 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
09:22:00.0461 3372 Winmgmt - ok
09:22:00.0523 3372 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
09:22:00.0554 3372 WinRM - ok
09:22:00.0601 3372 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
09:22:00.0601 3372 WinUsb - ok
09:22:00.0648 3372 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
09:22:00.0663 3372 Wlansvc - ok
09:22:00.0695 3372 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
09:22:00.0695 3372 WmiAcpi - ok
09:22:00.0726 3372 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
09:22:00.0726 3372 wmiApSrv - ok
09:22:00.0741 3372 WMPNetworkSvc - ok
09:22:00.0757 3372 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
09:22:00.0757 3372 WPCSvc - ok
09:22:00.0788 3372 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
09:22:00.0788 3372 WPDBusEnum - ok
09:22:00.0819 3372 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
09:22:00.0819 3372 ws2ifsl - ok
09:22:00.0835 3372 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
09:22:00.0835 3372 wscsvc - ok
09:22:00.0851 3372 WSearch - ok
09:22:00.0913 3372 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
09:22:00.0960 3372 wuauserv - ok
09:22:00.0991 3372 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
09:22:00.0991 3372 WudfPf - ok
09:22:01.0007 3372 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
09:22:01.0007 3372 WUDFRd - ok
09:22:01.0038 3372 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
09:22:01.0038 3372 wudfsvc - ok
09:22:01.0069 3372 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
09:22:01.0069 3372 WwanSvc - ok
09:22:01.0100 3372 ================ Scan global ===============================
09:22:01.0131 3372 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
09:22:01.0147 3372 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
09:22:01.0163 3372 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
09:22:01.0194 3372 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
09:22:01.0209 3372 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
09:22:01.0225 3372 [Global] - ok
09:22:01.0225 3372 ================ Scan MBR ==================================
09:22:01.0241 3372 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
09:22:01.0584 3372 \Device\Harddisk0\DR0 - ok
09:22:01.0584 3372 ================ Scan VBR ==================================
09:22:01.0599 3372 [ BF459E88E72ACCDCF0F41C76935F60E2 ] \Device\Harddisk0\DR0\Partition1
09:22:01.0615 3372 \Device\Harddisk0\DR0\Partition1 - ok
09:22:01.0631 3372 [ 940F3A6C2E2726CE32A2C82767DC2DC2 ] \Device\Harddisk0\DR0\Partition2
09:22:01.0646 3372 \Device\Harddisk0\DR0\Partition2 - ok
09:22:01.0646 3372 ============================================================
09:22:01.0646 3372 Scan finished
09:22:01.0646 3372 ============================================================
09:22:01.0662 2716 Detected object count: 0
09:22:01.0662 2716 Actual detected object count: 0

Příspěvekod **adavyp** » 01 pro 2012 09:44

ComboFix 12-12-01.01 - Adam 01.12.2012 9:26.5.2 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4093.2614 [GMT 1:00]
Spuštěný z: c:\users\Adam\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\update
c:\windows\SysWow64\update\diablo121016.cl
c:\windows\SysWow64\update\diakgcn121016.cl
c:\windows\SysWow64\update\igfxupdate.exe
c:\windows\SysWow64\update\libcurl-4.dll
c:\windows\SysWow64\update\libeay32.dll
c:\windows\SysWow64\update\libidn-11.dll
c:\windows\SysWow64\update\libusb-1.0.dll
c:\windows\SysWow64\update\phatk121016.cl
c:\windows\SysWow64\update\poclbm121016.cl
c:\windows\SysWow64\update\pthreadGC2.dll
c:\windows\SysWow64\update\ssleay32.dll
c:\windows\SysWow64\update\zlib1.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-11-01 do 2012-12-01 )))))))))))))))))))))))))))))))
.
.
2012-12-01 08:35 . 2012-12-01 08:35 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-11-30 19:34 . 2012-11-30 20:11 -------- d-----w- c:\users\Adam\AppData\Roaming\FixCleaner
2012-11-30 19:34 . 2012-11-30 20:13 -------- d-----w- c:\program files (x86)\FixCleaner
2012-11-29 14:55 . 2012-11-29 14:55 -------- d-----w- c:\users\Adam\AppData\Roaming\Xi
2012-11-27 16:06 . 2012-11-27 16:06 -------- d-----w- c:\programdata\ATI
2012-11-27 16:06 . 2012-11-27 16:06 -------- d-----w- c:\program files (x86)\AMD APP
2012-11-26 17:12 . 2012-11-14 12:18 269824 ----a-w- c:\windows\SysWow64\igfxupdate.exe
2012-11-25 13:31 . 2012-11-25 13:32 -------- d-----w- c:\program files (x86)\Common Files\Steam
2012-11-25 11:33 . 2012-11-25 11:33 -------- d-----w- c:\users\Adam\AppData\Local\SKIDROW
2012-11-19 18:49 . 2012-11-19 18:49 -------- d-----w- c:\users\Adam\AppData\Roaming\Amazon
2012-11-19 18:48 . 2012-11-27 19:18 -------- d-----w- c:\users\Adam\.kindle
2012-11-19 18:46 . 2012-11-27 19:18 -------- d-----w- C:\Kindle Previewer
2012-11-17 09:37 . 2012-07-26 07:40 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\wdf01000.sys.mui
2012-11-17 09:37 . 2012-07-26 04:55 785512 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2012-11-17 09:37 . 2012-07-26 04:55 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2012-11-17 09:37 . 2012-07-26 04:47 2560 ----a-w- c:\windows\system32\drivers\en-US\wdf01000.sys.mui
2012-11-17 09:37 . 2012-07-26 02:36 9728 ----a-w- c:\windows\system32\Wdfres.dll
2012-11-17 09:27 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2012-11-17 09:27 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2012-11-17 09:27 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2012-11-17 09:27 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2012-11-17 09:27 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2012-11-17 09:27 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2012-11-17 09:27 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2012-11-17 09:26 . 2012-10-18 18:25 3149824 ----a-w- c:\windows\system32\win32k.sys
2012-11-17 09:26 . 2012-08-30 18:03 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-11-17 09:26 . 2012-08-30 17:12 3968880 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-11-17 09:26 . 2012-08-30 17:12 3914096 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-11-17 09:24 . 2012-09-14 19:19 2048 ----a-w- c:\windows\system32\tzres.dll
2012-11-17 09:23 . 2012-06-02 05:41 1464320 ----a-w- c:\windows\system32\crypt32.dll
2012-11-17 09:23 . 2012-06-02 05:41 184320 ----a-w- c:\windows\system32\cryptsvc.dll
2012-11-17 09:23 . 2012-06-02 04:36 1159680 ----a-w- c:\windows\SysWow64\crypt32.dll
2012-11-17 09:23 . 2012-06-02 05:41 140288 ----a-w- c:\windows\system32\cryptnet.dll
2012-11-17 09:23 . 2012-06-02 04:36 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2012-11-17 09:23 . 2012-06-02 04:36 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2012-11-13 18:14 . 2009-08-19 22:50 24416 ----a-r- c:\windows\system32\AdobePDFUI.dll
2012-11-13 18:14 . 2009-08-19 22:50 52568 ----a-r- c:\windows\system32\AdobePDF.dll
2012-11-12 12:17 . 2012-11-14 12:18 410112 ----a-w- c:\windows\system32\taskhost.rs
2012-11-12 12:17 . 2012-11-14 12:18 307712 ----a-w- c:\windows\system32\SearchIndexer.dll
2012-11-12 12:17 . 2012-11-14 12:18 269824 ----a-w- c:\windows\system32\SearchEngine.rs
2012-11-05 18:48 . 2012-11-05 18:48 -------- d-sh--w- c:\programdata\DSS
2012-11-03 17:59 . 2012-11-03 17:59 -------- d-----w- c:\program files (x86)\AMD AVT
2012-11-01 17:12 . 2012-11-04 11:58 -------- d-----w- c:\users\Adam\AppData\Local\Deployment
2012-11-01 17:12 . 2012-11-01 17:12 -------- d-----w- c:\users\Adam\AppData\Local\Apps
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-11-17 09:03 . 2012-08-13 16:33 697272 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-11-17 09:03 . 2011-05-14 07:18 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-11-11 13:25 . 2011-10-01 17:14 280600 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2012-11-11 13:25 . 2011-08-29 17:14 280600 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2012-11-10 18:13 . 2011-08-29 17:14 280600 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2012-10-30 22:51 . 2012-08-13 16:35 59728 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-10-30 22:51 . 2012-08-13 16:35 370288 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-10-30 22:51 . 2012-08-13 16:35 984144 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-10-30 22:51 . 2012-08-13 16:35 71600 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2012-10-30 22:51 . 2012-08-13 16:35 25232 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-10-30 22:51 . 2012-08-13 16:35 41224 ----a-w- c:\windows\avastSS.scr
2012-10-30 22:50 . 2012-08-13 16:35 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
2012-10-30 22:50 . 2011-01-06 14:08 285328 ----a-w- c:\windows\system32\aswBoot.exe
2012-10-29 20:04 . 2011-01-08 07:40 66395536 ----a-w- c:\windows\system32\MRT.exe
2012-10-15 16:59 . 2012-08-13 16:35 54072 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2012-09-29 18:54 . 2012-10-29 18:01 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-28 14:37 . 2012-09-28 14:37 221696 ----a-w- c:\windows\system32\clinfo.exe
2012-09-28 14:36 . 2012-09-28 14:36 75776 ----a-w- c:\windows\system32\OpenVideo64.dll
2012-09-28 14:36 . 2012-09-28 14:36 65536 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2012-09-28 14:36 . 2012-09-28 14:36 63488 ----a-w- c:\windows\system32\OVDecode64.dll
2012-09-28 14:36 . 2012-09-28 14:36 56320 ----a-w- c:\windows\SysWow64\OVDecode.dll
2012-09-28 14:36 . 2012-09-28 14:36 32635904 ----a-w- c:\windows\system32\amdocl64.dll
2012-09-28 14:32 . 2012-09-28 14:32 27341824 ----a-w- c:\windows\SysWow64\amdocl.dll
2012-09-28 02:23 . 2009-11-04 15:23 5557928 ----a-w- c:\windows\SysWow64\atiumdag.dll
2012-09-28 02:21 . 2012-09-28 02:21 10697216 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2012-09-28 02:05 . 2012-09-28 02:05 70144 ----a-w- c:\windows\system32\coinst_9.002.dll
2012-09-28 02:03 . 2012-09-28 02:03 163840 ----a-w- c:\windows\system32\atiapfxx.exe
2012-09-28 02:02 . 2012-09-28 02:02 51200 ----a-w- c:\windows\system32\aticalrt64.dll
2012-09-28 02:02 . 2012-09-28 02:02 46080 ----a-w- c:\windows\SysWow64\aticalrt.dll
2012-09-28 02:02 . 2012-09-28 02:02 44544 ----a-w- c:\windows\system32\aticalcl64.dll
2012-09-28 02:02 . 2012-09-28 02:02 44032 ----a-w- c:\windows\SysWow64\aticalcl.dll
2012-09-28 02:02 . 2012-09-28 02:02 16082432 ----a-w- c:\windows\system32\aticaldd64.dll
2012-09-28 01:59 . 2012-09-28 01:59 23825920 ----a-w- c:\windows\system32\atio6axx.dll
2012-09-28 01:57 . 2011-12-06 02:29 13703168 ----a-w- c:\windows\SysWow64\aticaldd.dll
2012-09-28 01:43 . 2011-12-06 03:17 935424 ----a-w- c:\windows\SysWow64\aticfx32.dll
2012-09-28 01:41 . 2011-12-06 03:16 1120768 ----a-w- c:\windows\system32\aticfx64.dll
2012-09-28 01:41 . 2012-09-28 01:41 19624960 ----a-w- c:\windows\SysWow64\atioglxx.dll
2012-09-28 01:39 . 2012-09-28 01:39 6536192 ----a-w- c:\windows\SysWow64\atidxx32.dll
2012-09-28 01:39 . 2012-09-28 01:39 442368 ----a-w- c:\windows\system32\atidemgy.dll
2012-09-28 01:39 . 2012-09-28 01:39 538112 ----a-w- c:\windows\system32\atieclxx.exe
2012-09-28 01:38 . 2012-09-28 01:38 239616 ----a-w- c:\windows\system32\atiesrxx.exe
2012-09-28 01:36 . 2012-09-28 01:36 120320 ----a-w- c:\windows\system32\atitmm64.dll
2012-09-28 01:36 . 2012-09-28 01:36 21504 ----a-w- c:\windows\system32\atimuixx.dll
2012-09-28 01:36 . 2012-09-28 01:36 59392 ----a-w- c:\windows\system32\atiedu64.dll
2012-09-28 01:36 . 2012-09-28 01:36 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll
2012-09-28 01:31 . 2011-12-06 02:39 3127296 ----a-w- c:\windows\system32\atiumd6a.dll
2012-09-28 01:25 . 2011-12-06 02:24 6704640 ----a-w- c:\windows\system32\atiumd64.dll
2012-09-28 01:22 . 2009-11-04 15:31 7167488 ----a-w- c:\windows\system32\atidxx64.dll
2012-09-28 01:22 . 2009-11-04 15:05 2691584 ----a-w- c:\windows\SysWow64\atiumdva.dll
2012-09-28 01:13 . 2012-09-28 01:13 595456 ----a-w- c:\windows\system32\atiadlxx.dll
2012-09-28 01:13 . 2012-09-28 01:13 405504 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2012-09-28 01:13 . 2012-09-28 01:13 17920 ----a-w- c:\windows\system32\atig6pxx.dll
2012-09-28 01:13 . 2012-09-28 01:13 14848 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2012-09-28 01:13 . 2012-09-28 01:13 14848 ----a-w- c:\windows\system32\atiglpxx.dll
2012-09-28 01:13 . 2012-09-28 01:13 41984 ----a-w- c:\windows\system32\atig6txx.dll
2012-09-28 01:13 . 2011-12-06 02:12 33280 ----a-w- c:\windows\SysWow64\atigktxx.dll
2012-09-28 01:12 . 2012-09-28 01:12 56320 ----a-w- c:\windows\system32\atimpc64.dll
2012-09-28 01:12 . 2012-09-28 01:12 56320 ----a-w- c:\windows\system32\amdpcom64.dll
2012-09-28 01:12 . 2012-09-28 01:12 460288 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2012-09-28 01:12 . 2012-09-28 01:12 56832 ----a-w- c:\windows\SysWow64\atimpc32.dll
2012-09-28 01:12 . 2012-09-28 01:12 56832 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2012-09-28 01:11 . 2011-12-06 02:11 129536 ----a-w- c:\windows\system32\atiuxp64.dll
2012-09-28 01:11 . 2012-09-28 01:11 109568 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2012-09-28 01:11 . 2011-12-06 02:11 103424 ----a-w- c:\windows\system32\atiu9p64.dll
2012-09-28 01:10 . 2011-12-06 02:11 82944 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2012-09-28 01:09 . 2012-09-28 01:09 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2012-09-24 21:16 . 2012-08-06 07:44 821736 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
2012-09-24 21:16 . 2011-01-13 17:54 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-09-24 21:16 . 2012-10-20 12:31 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
R2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2010-11-17 115216]
R3 atillk64;atillk64; [x]
R3 aver7700;AVerMedia aver7700 DVB-T;c:\windows\system32\Drivers\aver7700.sys [2006-10-24 229888]
R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2011-03-24 16776]
R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2011-03-24 9096]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 Roxio UPnP Renderer 11;Roxio UPnP Renderer 11; [x]
R3 Synth3dVsc;Synth3dVsc; [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 tsusbhub;tsusbhub; [x]
R3 VGPU;VGPU; [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-01-06 1255736]
R4 9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269;Roxio SAIB Service;c:\program files (x86)\Roxio\BackOnTrack\Disaster Recovery\SaibSVC.exe [2009-06-02 457200]
R4 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-09-28 239616]
R4 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-09-28 361984]
R4 AODService;AODService;c:\program files (x86)\AMD\OverDrive\AODAssist.exe [2012-05-10 136616]
R4 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-05-01 1038088]
R4 RoxMediaDB12;RoxMediaDB12;c:\program files (x86)\Common Files\Roxio Shared\12.0\SharedCOM\RoxMediaDB12.exe [2009-07-24 1116656]
R4 RoxWatch12;Roxio Hard Drive Watcher 12;c:\program files (x86)\Common Files\Roxio Shared\12.0\SharedCOM\RoxWatch12.exe [2009-07-24 219632]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
S0 Sahdad64;HDD Filter Driver;c:\windows\System32\Drivers\Sahdad64.sys [2009-06-02 27120]
S0 Saibad64;Volume Filter Driver;c:\windows\System32\Drivers\Saibad64.sys [2009-06-02 19952]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 SaibVdAd64;Virtual Disk Driver;c:\windows\system32\Drivers\SaibVdAd64.sys [2009-06-02 27632]
S2 AODDriver4.01;AODDriver4.01;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
S2 AODDriver4.2.0;AODDriver4.2.0;c:\program files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [2012-05-10 57472]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
S2 SearchIndexer;Search Indexer;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 SSPORT;SSPORT;c:\windows\system32\Drivers\SSPORT.sys [2008-01-10 11576]
S3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-08-05 283200]
S3 RTL8023x64;Realtek 10/100 NIC Family NDIS x64 Driver;c:\windows\system32\DRIVERS\Rtnic64.sys [2009-06-10 51712]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-03-01 187392]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - 99863927
*Deregistered* - 99863927
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
SearchIndexer
SearchIndexer
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
mLocal Page = c:\windows\SYSTEM32\blank.htm
IE: Append Link Target to Existing PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert link target to existing PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert to Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
Trusted Zone: mojebanka.cz\*
Trusted Zone: mojebanka.cz\*
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\wylj5co3.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/
FF - ExtSQL: 2012-11-01 18:35; {DDC359D1-844A-42a7-9AA1-88A850A938A8}; c:\users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\wylj5co3.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
.
.
------- Asociace souborů -------
.
.txt=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1857932118-1107588196-3233847496-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
Celkový čas: 2012-12-01 09:42:30
ComboFix-quarantined-files.txt 2012-12-01 08:42
.
Před spuštěním: Volných bajtů: 60 743 757 824
Po spuštění: Volných bajtů: 60 135 936 000
.
- - End Of File - - C82EB0771C7033EFA601360C06ED98FC

Příspěvekod **adavyp** » 01 pro 2012 09:47

Nicméně po vypnutí správce úloh CPU stále pracuje na 100 %.

Příspěvekod **Žbeky** » 01 pro 2012 19:19

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::

DirLook::
c:\programdata\DSS

Folder::
c:\users\Adam\AppData\Roaming\FixCleaner
c:\program files (x86)\FixCleaner
c:\users\Adam\AppData\Roaming\Xi

File::
c:\windows\SysWow64\igfxupdate.exe
c:\windows\system32\taskhost.rs
c:\windows\system32\SearchIndexer.dll
c:\windows\system32\SearchEngine.rs

Driver::
SearchIndexer

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu

Toto otestuj na Virustotal
c:\windows\system32\svchost.exe

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/40 , nebo 1/40. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Příspěvekod **adavyp** » 01 pro 2012 20:49

Vypadá to, že problémy pominuly.

ComboFix 12-12-01.01 - Adam 01.12.2012 20:26:05.6.2 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4093.2490 [GMT 1:00]
Spuštěný z: c:\users\Adam\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Adam\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\system32\SearchEngine.rs"
"c:\windows\system32\SearchIndexer.dll"
"c:\windows\system32\taskhost.rs"
"c:\windows\SysWow64\igfxupdate.exe"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Adam\AppData\Roaming\FixCleaner
c:\users\Adam\AppData\Roaming\FixCleaner\Logs\2012-11-30 20-34-390.log
c:\users\Adam\AppData\Roaming\FixCleaner\Logs\2012-11-30 20-34-460.log
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\filelist.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-0.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-1.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-10.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-100.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-101.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-102.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-103.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-104.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-105.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-106.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-107.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-108.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-109.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-11.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-110.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-111.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-112.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-113.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-114.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-115.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-116.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-117.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-118.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-119.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-12.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-120.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-121.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-122.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-123.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-124.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-125.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-126.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-127.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-128.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-129.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-13.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-130.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-131.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-132.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-133.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-134.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-135.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-136.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-137.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-138.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-139.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-14.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-140.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-141.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-142.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-143.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-144.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-145.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-146.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-147.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-148.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-149.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-15.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-150.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-151.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-152.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-153.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-154.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-155.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-156.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-157.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-158.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-159.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-16.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-160.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-161.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-162.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-163.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-164.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-165.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-166.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-167.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-168.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-169.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-17.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-170.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-171.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-172.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-173.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-174.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-175.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-176.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-177.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-178.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-179.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-18.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-180.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-181.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-182.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-183.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-184.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-185.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-186.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-187.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-188.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-189.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-19.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-190.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-191.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-192.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-193.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-194.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-195.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-196.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-197.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-198.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-199.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-2.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-20.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-200.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-201.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-202.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-203.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-204.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-205.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-206.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-207.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-208.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-209.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-21.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-210.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-211.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-212.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-213.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-214.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-215.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-216.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-217.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-218.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-219.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-22.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-220.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-221.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-222.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-223.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-224.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-225.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-226.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-227.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-228.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-229.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-23.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-230.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-231.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-232.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-233.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-234.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-235.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-236.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-237.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-238.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-239.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-24.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-240.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-241.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-242.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-243.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-244.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-245.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-246.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-247.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-248.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-249.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-25.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-250.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-251.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-252.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-253.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-254.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-255.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-256.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-257.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-258.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-259.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-26.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-260.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-261.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-262.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-263.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-264.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-265.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-266.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-267.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-268.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-269.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-27.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-270.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-271.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-272.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-273.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-274.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-275.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-276.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-277.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-278.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-279.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-28.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-280.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-281.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-282.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-283.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-284.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-285.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-286.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-287.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-288.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-289.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-29.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-290.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-291.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-292.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-293.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-294.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-295.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-296.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-297.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-298.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-299.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-3.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-30.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-300.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-31.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-32.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-33.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-34.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-35.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-36.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-37.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-38.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-39.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-4.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-40.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-41.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-42.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-43.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-44.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-45.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-46.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-47.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-48.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-49.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-5.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-50.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-51.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-52.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-53.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-54.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-55.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-56.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-57.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-58.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-59.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-6.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-60.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-61.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-62.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-63.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-64.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-65.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-66.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-67.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-68.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-69.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-7.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-70.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-71.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-72.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-73.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-74.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-75.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-76.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-77.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-78.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-79.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-8.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-80.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-81.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-82.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-83.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-84.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-85.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-86.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-87.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-88.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-89.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-9.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-90.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-91.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-92.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-93.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-94.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-95.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-96.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-97.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-98.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-130\regb-99.db
c:\users\Adam\AppData\Roaming\FixCleaner\QuarantineW\2012-11-30 21-11-250\filelist.db
c:\users\Adam\AppData\Roaming\FixCleaner\Results\Evidence.db
c:\users\Adam\AppData\Roaming\FixCleaner\Results\Junk.db
c:\users\Adam\AppData\Roaming\FixCleaner\Results\MSUpdate.db
c:\users\Adam\AppData\Roaming\FixCleaner\Results\Registry.db
c:\users\Adam\AppData\Roaming\FixCleaner\Results\Update.db
c:\users\Adam\AppData\Roaming\FixCleaner\spy_ignore.db
c:\users\Adam\AppData\Roaming\Xi
c:\users\Adam\AppData\Roaming\Xi\NetXfer\dhtkey.dat
c:\users\Adam\AppData\Roaming\Xi\NetXfer\jian.dat
c:\users\Adam\AppData\Roaming\Xi\NetXfer\Net.database
c:\users\Adam\AppData\Roaming\Xi\NetXfer\Net.database.copy
c:\users\Adam\AppData\Roaming\Xi\NetXfer\Net.empeer
c:\users\Adam\AppData\Roaming\Xi\NetXfer\nodes.dat
c:\users\Adam\AppData\Roaming\Xi\NetXfer\pian.dat
c:\users\Adam\AppData\Roaming\Xi\NetXfer\yuan.dat
c:\users\Adam\AppData\Roaming\Xi\NetXfer\zhuang.dat
c:\windows\system32\SearchEngine.rs
c:\windows\system32\SearchIndexer.dll
c:\windows\system32\taskhost.rs
c:\windows\SysWow64\igfxupdate.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_SearchIndexer
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-11-01 do 2012-12-01 )))))))))))))))))))))))))))))))
.
.
2012-12-01 19:33 . 2012-12-01 19:33 -------- d-----w- c:\users\Public\AppData\Local\temp
2012-12-01 19:33 . 2012-12-01 19:33 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-11-27 16:06 . 2012-11-27 16:06 -------- d-----w- c:\programdata\ATI
2012-11-27 16:06 . 2012-11-27 16:06 -------- d-----w- c:\program files (x86)\AMD APP
2012-11-25 13:31 . 2012-11-25 13:32 -------- d-----w- c:\program files (x86)\Common Files\Steam
2012-11-25 11:33 . 2012-11-25 11:33 -------- d-----w- c:\users\Adam\AppData\Local\SKIDROW
2012-11-19 18:49 . 2012-11-19 18:49 -------- d-----w- c:\users\Adam\AppData\Roaming\Amazon
2012-11-19 18:48 . 2012-12-01 10:36 -------- d-----w- c:\users\Adam\.kindle
2012-11-19 18:46 . 2012-12-01 10:36 -------- d-----w- C:\Kindle Previewer
2012-11-17 09:37 . 2012-07-26 07:40 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\wdf01000.sys.mui
2012-11-17 09:37 . 2012-07-26 04:55 785512 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2012-11-17 09:37 . 2012-07-26 04:55 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2012-11-17 09:37 . 2012-07-26 04:47 2560 ----a-w- c:\windows\system32\drivers\en-US\wdf01000.sys.mui
2012-11-17 09:37 . 2012-07-26 02:36 9728 ----a-w- c:\windows\system32\Wdfres.dll
2012-11-17 09:27 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2012-11-17 09:27 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2012-11-17 09:27 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2012-11-17 09:27 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2012-11-17 09:27 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2012-11-17 09:27 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2012-11-17 09:27 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2012-11-17 09:26 . 2012-10-18 18:25 3149824 ----a-w- c:\windows\system32\win32k.sys
2012-11-17 09:26 . 2012-08-30 18:03 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-11-17 09:26 . 2012-08-30 17:12 3968880 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-11-17 09:26 . 2012-08-30 17:12 3914096 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-11-17 09:24 . 2012-09-14 19:19 2048 ----a-w- c:\windows\system32\tzres.dll
2012-11-17 09:23 . 2012-06-02 05:41 1464320 ----a-w- c:\windows\system32\crypt32.dll
2012-11-17 09:23 . 2012-06-02 05:41 184320 ----a-w- c:\windows\system32\cryptsvc.dll
2012-11-17 09:23 . 2012-06-02 04:36 1159680 ----a-w- c:\windows\SysWow64\crypt32.dll
2012-11-17 09:23 . 2012-06-02 05:41 140288 ----a-w- c:\windows\system32\cryptnet.dll
2012-11-17 09:23 . 2012-06-02 04:36 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2012-11-17 09:23 . 2012-06-02 04:36 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2012-11-13 18:14 . 2009-08-19 22:50 24416 ----a-r- c:\windows\system32\AdobePDFUI.dll
2012-11-13 18:14 . 2009-08-19 22:50 52568 ----a-r- c:\windows\system32\AdobePDF.dll
2012-11-05 18:48 . 2012-11-05 18:48 -------- d-sh--w- c:\programdata\DSS
2012-11-03 17:59 . 2012-11-03 17:59 -------- d-----w- c:\program files (x86)\AMD AVT
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-11-17 09:03 . 2012-08-13 16:33 697272 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-11-17 09:03 . 2011-05-14 07:18 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-11-11 13:25 . 2011-10-01 17:14 280600 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2012-11-11 13:25 . 2011-08-29 17:14 280600 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2012-11-10 18:13 . 2011-08-29 17:14 280600 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2012-10-30 22:51 . 2012-08-13 16:35 59728 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-10-30 22:51 . 2012-08-13 16:35 370288 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-10-30 22:51 . 2012-08-13 16:35 984144 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-10-30 22:51 . 2012-08-13 16:35 71600 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2012-10-30 22:51 . 2012-08-13 16:35 25232 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-10-30 22:51 . 2012-08-13 16:35 41224 ----a-w- c:\windows\avastSS.scr
2012-10-30 22:50 . 2012-08-13 16:35 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
2012-10-30 22:50 . 2011-01-06 14:08 285328 ----a-w- c:\windows\system32\aswBoot.exe
2012-10-29 20:04 . 2011-01-08 07:40 66395536 ----a-w- c:\windows\system32\MRT.exe
2012-10-15 16:59 . 2012-08-13 16:35 54072 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2012-09-29 18:54 . 2012-10-29 18:01 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-28 14:37 . 2012-09-28 14:37 221696 ----a-w- c:\windows\system32\clinfo.exe
2012-09-28 14:36 . 2012-09-28 14:36 75776 ----a-w- c:\windows\system32\OpenVideo64.dll
2012-09-28 14:36 . 2012-09-28 14:36 65536 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2012-09-28 14:36 . 2012-09-28 14:36 63488 ----a-w- c:\windows\system32\OVDecode64.dll
2012-09-28 14:36 . 2012-09-28 14:36 56320 ----a-w- c:\windows\SysWow64\OVDecode.dll
2012-09-28 14:36 . 2012-09-28 14:36 32635904 ----a-w- c:\windows\system32\amdocl64.dll
2012-09-28 14:32 . 2012-09-28 14:32 27341824 ----a-w- c:\windows\SysWow64\amdocl.dll
2012-09-28 02:23 . 2009-11-04 15:23 5557928 ----a-w- c:\windows\SysWow64\atiumdag.dll
2012-09-28 02:21 . 2012-09-28 02:21 10697216 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2012-09-28 02:05 . 2012-09-28 02:05 70144 ----a-w- c:\windows\system32\coinst_9.002.dll
2012-09-28 02:03 . 2012-09-28 02:03 163840 ----a-w- c:\windows\system32\atiapfxx.exe
2012-09-28 02:02 . 2012-09-28 02:02 51200 ----a-w- c:\windows\system32\aticalrt64.dll
2012-09-28 02:02 . 2012-09-28 02:02 46080 ----a-w- c:\windows\SysWow64\aticalrt.dll
2012-09-28 02:02 . 2012-09-28 02:02 44544 ----a-w- c:\windows\system32\aticalcl64.dll
2012-09-28 02:02 . 2012-09-28 02:02 44032 ----a-w- c:\windows\SysWow64\aticalcl.dll
2012-09-28 02:02 . 2012-09-28 02:02 16082432 ----a-w- c:\windows\system32\aticaldd64.dll
2012-09-28 01:59 . 2012-09-28 01:59 23825920 ----a-w- c:\windows\system32\atio6axx.dll
2012-09-28 01:57 . 2011-12-06 02:29 13703168 ----a-w- c:\windows\SysWow64\aticaldd.dll
2012-09-28 01:43 . 2011-12-06 03:17 935424 ----a-w- c:\windows\SysWow64\aticfx32.dll
2012-09-28 01:41 . 2011-12-06 03:16 1120768 ----a-w- c:\windows\system32\aticfx64.dll
2012-09-28 01:41 . 2012-09-28 01:41 19624960 ----a-w- c:\windows\SysWow64\atioglxx.dll
2012-09-28 01:39 . 2012-09-28 01:39 6536192 ----a-w- c:\windows\SysWow64\atidxx32.dll
2012-09-28 01:39 . 2012-09-28 01:39 442368 ----a-w- c:\windows\system32\atidemgy.dll
2012-09-28 01:39 . 2012-09-28 01:39 538112 ----a-w- c:\windows\system32\atieclxx.exe
2012-09-28 01:38 . 2012-09-28 01:38 239616 ----a-w- c:\windows\system32\atiesrxx.exe
2012-09-28 01:36 . 2012-09-28 01:36 120320 ----a-w- c:\windows\system32\atitmm64.dll
2012-09-28 01:36 . 2012-09-28 01:36 21504 ----a-w- c:\windows\system32\atimuixx.dll
2012-09-28 01:36 . 2012-09-28 01:36 59392 ----a-w- c:\windows\system32\atiedu64.dll
2012-09-28 01:36 . 2012-09-28 01:36 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll
2012-09-28 01:31 . 2011-12-06 02:39 3127296 ----a-w- c:\windows\system32\atiumd6a.dll
2012-09-28 01:25 . 2011-12-06 02:24 6704640 ----a-w- c:\windows\system32\atiumd64.dll
2012-09-28 01:22 . 2009-11-04 15:31 7167488 ----a-w- c:\windows\system32\atidxx64.dll
2012-09-28 01:22 . 2009-11-04 15:05 2691584 ----a-w- c:\windows\SysWow64\atiumdva.dll
2012-09-28 01:13 . 2012-09-28 01:13 595456 ----a-w- c:\windows\system32\atiadlxx.dll
2012-09-28 01:13 . 2012-09-28 01:13 405504 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2012-09-28 01:13 . 2012-09-28 01:13 17920 ----a-w- c:\windows\system32\atig6pxx.dll
2012-09-28 01:13 . 2012-09-28 01:13 14848 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2012-09-28 01:13 . 2012-09-28 01:13 14848 ----a-w- c:\windows\system32\atiglpxx.dll
2012-09-28 01:13 . 2012-09-28 01:13 41984 ----a-w- c:\windows\system32\atig6txx.dll
2012-09-28 01:13 . 2011-12-06 02:12 33280 ----a-w- c:\windows\SysWow64\atigktxx.dll
2012-09-28 01:12 . 2012-09-28 01:12 56320 ----a-w- c:\windows\system32\atimpc64.dll
2012-09-28 01:12 . 2012-09-28 01:12 56320 ----a-w- c:\windows\system32\amdpcom64.dll
2012-09-28 01:12 . 2012-09-28 01:12 460288 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2012-09-28 01:12 . 2012-09-28 01:12 56832 ----a-w- c:\windows\SysWow64\atimpc32.dll
2012-09-28 01:12 . 2012-09-28 01:12 56832 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2012-09-28 01:11 . 2011-12-06 02:11 129536 ----a-w- c:\windows\system32\atiuxp64.dll
2012-09-28 01:11 . 2012-09-28 01:11 109568 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2012-09-28 01:11 . 2011-12-06 02:11 103424 ----a-w- c:\windows\system32\atiu9p64.dll
2012-09-28 01:10 . 2011-12-06 02:11 82944 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2012-09-28 01:09 . 2012-09-28 01:09 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2012-09-24 21:16 . 2012-08-06 07:44 821736 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
2012-09-24 21:16 . 2011-01-13 17:54 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-09-24 21:16 . 2012-10-20 12:31 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
.
.
(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
---- Directory of c:\programdata\DSS ----
.
2012-11-05 18:48 . 2012-11-05 18:48 4357 ----a-w- c:\programdata\DSS\Content Activation\readme.txt
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
"AdobeCS4ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-09-23 926896]
"Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" [2009-10-02 640376]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
R2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2010-11-17 115216]
R3 atillk64;atillk64; [x]
R3 aver7700;AVerMedia aver7700 DVB-T;c:\windows\system32\Drivers\aver7700.sys [2006-10-24 229888]
R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2011-03-24 16776]
R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2011-03-24 9096]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-05-01 1038088]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 Roxio UPnP Renderer 11;Roxio UPnP Renderer 11; [x]
R3 Synth3dVsc;Synth3dVsc; [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 tsusbhub;tsusbhub; [x]
R3 VGPU;VGPU; [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-01-06 1255736]
R4 9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269;Roxio SAIB Service;c:\program files (x86)\Roxio\BackOnTrack\Disaster Recovery\SaibSVC.exe [2009-06-02 457200]
R4 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-09-28 239616]
R4 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-09-28 361984]
R4 AODService;AODService;c:\program files (x86)\AMD\OverDrive\AODAssist.exe [2012-05-10 136616]
R4 RoxMediaDB12;RoxMediaDB12;c:\program files (x86)\Common Files\Roxio Shared\12.0\SharedCOM\RoxMediaDB12.exe [2009-07-24 1116656]
R4 RoxWatch12;Roxio Hard Drive Watcher 12;c:\program files (x86)\Common Files\Roxio Shared\12.0\SharedCOM\RoxWatch12.exe [2009-07-24 219632]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
S0 Sahdad64;HDD Filter Driver;c:\windows\System32\Drivers\Sahdad64.sys [2009-06-02 27120]
S0 Saibad64;Volume Filter Driver;c:\windows\System32\Drivers\Saibad64.sys [2009-06-02 19952]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 SaibVdAd64;Virtual Disk Driver;c:\windows\system32\Drivers\SaibVdAd64.sys [2009-06-02 27632]
S2 AODDriver4.01;AODDriver4.01;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
S2 AODDriver4.2.0;AODDriver4.2.0;c:\program files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [2012-05-10 57472]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
S2 SSPORT;SSPORT;c:\windows\system32\Drivers\SSPORT.sys [2008-01-10 11576]
S3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-08-05 283200]
S3 RTL8023x64;Realtek 10/100 NIC Family NDIS x64 Driver;c:\windows\system32\DRIVERS\Rtnic64.sys [2009-06-10 51712]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-03-01 187392]
.
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
SearchIndexer
SearchIndexer
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
mLocal Page = c:\windows\SYSTEM32\blank.htm
IE: Append Link Target to Existing PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert link target to existing PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert to Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
Trusted Zone: mojebanka.cz\*
Trusted Zone: mojebanka.cz\*
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\wylj5co3.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/
FF - ExtSQL: 2012-11-01 18:35; {DDC359D1-844A-42a7-9AA1-88A850A938A8}; c:\users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\wylj5co3.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1857932118-1107588196-3233847496-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\SysWOW64\PnkBstrA.exe
.
**************************************************************************
.
Celkový čas: 2012-12-01 20:38:54 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-12-01 19:38
ComboFix2.txt 2012-12-01 08:42
.
Před spuštěním: Volných bajtů: 59 506 892 800
Po spuštění: Volných bajtů: 59 040 980 992
.
- - End Of File - - 0C7A44257C1A5FAB5E317D47A712FE35

https://www.virustotal.com/file/93b2ed4 ... 354391200/

Příspěvekod **Žbeky** » 02 pro 2012 09:59

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj AVG , Avast,Avira či Microsoft Security Essentials následně T-Cleaner smaž a zapni si AVG , Avast, Avira či Microsoft Security Essentials

+ Nový log z HJT

Stáhni si aswMBR na svojí plochu.
Poklepej na aswMBR.exe. Klikni na Scan.
Po skenu klikni na aswASW.log a ulož si ho na plochu, vlož sem celý obsah toho logu.

Jak se chová PC?

Příspěvekod **adavyp** » 02 pro 2012 10:09

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:09:29, on 2.12.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16455)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_110.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_110.exe
C:\Users\Adam\Desktop\HiJackThis204.exe

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Roxio UPnP Renderer 11 - Unknown owner - (no file)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7263 bytes

Blikání kolečka u kurzoru myši Vyřešeno

Blikání kolečka u kurzoru myši

Re: Blikání kolečka u kurzoru myši

Re: Blikání kolečka u kurzoru myši

Re: Blikání kolečka u kurzoru myši

Re: Blikání kolečka u kurzoru myši

Re: Blikání kolečka u kurzoru myši

Re: Blikání kolečka u kurzoru myši

Re: Blikání kolečka u kurzoru myši

Re: Blikání kolečka u kurzoru myši

Re: Blikání kolečka u kurzoru myši

Re: Blikání kolečka u kurzoru myši

Re: Blikání kolečka u kurzoru myši

Kdo je online