Prosim o kontrolu - nalezene viry

Leelaa · Příspěvekod **Leelaa** » 22 úno 2014 21:31

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:25:35, on 22.2.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16750)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Software Informer\softinfo.exe
C:\Windows\SOUNDMAN.EXE
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Bota\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files\Mobogenie\DaemonProcess.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{841C3BA2-2820-42D2-BBBE-F61B3A1137EC}: NameServer = 213.211.50.1,213.211.50.2
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

--
End of file - 5633 bytes

Dekuji.

Reklama

Příspěvekod **jaro3** » 23 úno 2014 10:00

jaké?

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode)

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Pokud budou problémy , spusť v nouz. režimu.

Leelaa · Příspěvekod **Leelaa** » 03 bře 2014 09:43

# AdwCleaner v3.020 - Report created 03/03/2014 at 09:36:49
# Updated 27/02/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)
# Username : Bota - BOTA-PC
# Running from : C:\Users\Bota\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

File Found : C:\Program Files\WebCakeLayers.crx
File Found : C:\Users\Bota\AppData\Roaming\Mozilla\Firefox\Profiles\qp8otmkf.default\user.js
Folder Found C:\Program Files\Mobogenie
Folder Found C:\Program Files\Web Cake
Folder Found C:\ProgramData\Tarma Installer
Folder Found C:\Users\Bota\AppData\Local\genienext
Folder Found C:\Users\Bota\AppData\Local\Mobogenie
Folder Found C:\Users\Bota\AppData\LocalLow\Toolbar4
Folder Found C:\Users\Bota\AppData\Roaming\Betcat
Folder Found C:\Users\Bota\AppData\Roaming\newnext.me
Folder Found C:\Users\Bota\AppData\Roaming\OpenCandy
Folder Found C:\Users\Bota\AppData\Roaming\Web Cake
Folder Found C:\Users\Bota\Documents\Mobogenie

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\Softonic
Key Found : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Key Found : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Found : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Found : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Found : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Found : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Key Found : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbTask
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
Key Found : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_djvu-viewer-plug-in_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_djvu-viewer-plug-in_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_mkv-player_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_mkv-player_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_utorrent_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_utorrent_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Found : HKLM\Software\Speedchecker Limited
Key Found : HKLM\Software\Tarma Installer

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16518

-\\ Mozilla Firefox v24.0 (cs)

[ File : C:\Users\Bota\AppData\Roaming\Mozilla\Firefox\Profiles\qp8otmkf.default\prefs.js ]

-\\ Google Chrome v33.0.1750.117

[ File : C:\Users\Bota\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [4760 octets] - [03/03/2014 09:36:49]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [4820 octets] ##########

Příspěvekod **jaro3** » 03 bře 2014 09:53

Odinstaluj:
Spybot - Search & Destroy 2

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool by Thisisu

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

Ještě MbAM.

Leelaa · Příspěvekod **Leelaa** » 03 bře 2014 10:04

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2014.03.03.02

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 11.0.9600.16518
Bota :: BOTA-PC [administrátor]

Ochrana: Povolena

3.3.2014 9:49:33
MBAM-log-2014-03-03 (10-03-19).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 205202
Uplynulý čas: 8 minut, 27 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 1
HKLM\SOFTWARE\Speedchecker Limited\PC Speed Up (PUP.Optional.PCSpeedUp.A) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 5
C:\Users\Bota\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\Bota\AppData\Roaming\OpenCandy\EAAE55EAF0BC421AB7A3C10E448BF300 (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\Bota\AppData\Roaming\OpenCandy\OpenCandy_EAAE55EAF0BC421AB7A3C10E448BF300 (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\Bota\AppData\Roaming\newnext.me (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.
C:\Users\Bota\AppData\Roaming\newnext.me\cache (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 3
C:\Users\Bota\AppData\Roaming\OpenCandy\EAAE55EAF0BC421AB7A3C10E448BF300\PCSU_SL_3.1.2.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\Bota\AppData\Roaming\newnext.me\nengine.cookie (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.
C:\Users\Bota\AppData\Roaming\newnext.me\cache\spark.bin (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.

(konec)

Příspěvekod **jaro3** » 03 bře 2014 10:10

. spusť znovu MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Ukaž výsledky
- ujisti se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Můžeš sem pak vložit nový log z MbAM.

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

Leelaa · Příspěvekod **Leelaa** » 03 bře 2014 10:39

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.2 (02.20.2014:1)
OS: Windows 7 Ultimate x86
Ran by Bota on po 03.03.2014 at 10:23:58,85
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\Users\Bota\AppData\Roaming\software informer"
Successfully deleted: [Folder] "C:\Program Files\software informer"

~~~ FireFox

Successfully deleted: [Folder] C:\Users\Bota\AppData\Roaming\mozilla\firefox\profiles\qp8otmkf.default\extensions\staged
Emptied folder: C:\Users\Bota\AppData\Roaming\mozilla\firefox\profiles\qp8otmkf.default\minidumps [41 files]

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 03.03.2014 at 10:33:03,18
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Příspěvekod **jaro3** » 03 bře 2014 10:52

A MbAM a RK?

Leelaa · Příspěvekod **Leelaa** » 03 bře 2014 11:00

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2014.03.03.02

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 11.0.9600.16518
Bota :: BOTA-PC [administrátor]

Ochrana: Povolena

3.3.2014 10:42:25
mbam-log-2014-03-03 (10-42-25).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 205278
Uplynulý čas: 8 minut, 12 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

RogueKiller V8.8.10 [Feb 28 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : Bota [Práva správce]
Mód : Kontrola -- Datum : 03/03/2014 10:58:44
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 7 ¤¤¤
[DNS][PUM] HKLM\[...]\CCSet\[...]\{841C3BA2-2820-42D2-BBBE-F61B3A1137EC} : NameServer (213.211.50.1,213.211.50.2 [CZECH REPUBLIC (CZ) - CZECH REPUBLIC (CZ)]) -> NALEZENO
[DNS][PUM] HKLM\[...]\CS001\[...]\{841C3BA2-2820-42D2-BBBE-F61B3A1137EC} : NameServer (213.211.50.1,213.211.50.2 [CZECH REPUBLIC (CZ) - CZECH REPUBLIC (CZ)]) -> NALEZENO
[DNS][PUM] HKLM\[...]\CS002\[...]\{841C3BA2-2820-42D2-BBBE-F61B3A1137EC} : NameServer (213.211.50.1,213.211.50.2 [CZECH REPUBLIC (CZ) - CZECH REPUBLIC (CZ)]) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤
-> D:\windows\system32\config\SYSTEM | DRVINFO [Drv - D:] | SYSTEMINFO [Sys - C:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
-> D:\windows\system32\config\SOFTWARE | DRVINFO [Drv - D:] | SYSTEMINFO [Sys - C:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
-> D:\windows\system32\config\SECURITY | DRVINFO [Drv - D:] | SYSTEMINFO [Sys - C:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
-> D:\windows\system32\config\SAM | DRVINFO [Drv - D:] | SYSTEMINFO [Sys - C:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
-> D:\windows\system32\config\DEFAULT | DRVINFO [Drv - D:] | SYSTEMINFO [Sys - C:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
-> D:\Documents and Settings\admin\NTUSER.DAT | DRVINFO [Drv - D:] | SYSTEMINFO [Sys - C:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
-> D:\Documents and Settings\Default User\NTUSER.DAT | DRVINFO [Drv - D:] | SYSTEMINFO [Sys - C:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
-> D:\Documents and Settings\LocalService\NTUSER.DAT | DRVINFO [Drv - D:] | SYSTEMINFO [Sys - C:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
-> D:\Documents and Settings\NetworkService\NTUSER.DAT | DRVINFO [Drv - D:] | SYSTEMINFO [Sys - C:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD2500AAJB-00J3A0 ATA Device +++++
--- User ---
[MBR] 4404bfa179cc6a14117fd5d9f6c8e4df
[BSP] 550372c13643ee9f5d3f678e9ad37cc1 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 150005 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 307210995 | Size: 88467 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_03032014_105844.txt >>

Příspěvekod **jaro3** » 03 bře 2014 18:36

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "

jen tohle smaž:
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
- Klikni na "Smazat"

- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků

Leelaa · Příspěvekod **Leelaa** » 13 bře 2014 15:34

RogueKiller V8.8.10 [Feb 28 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : Bota [Práva správce]
Mód : Odebrat -- Datum : 03/13/2014 15:32:45
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> VYMAZÁNO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤
-> D:\windows\system32\config\SYSTEM | DRVINFO [Drv - D:] | SYSTEMINFO [Sys - C:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
-> D:\windows\system32\config\SOFTWARE | DRVINFO [Drv - D:] | SYSTEMINFO [Sys - C:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
-> D:\windows\system32\config\SECURITY | DRVINFO [Drv - D:] | SYSTEMINFO [Sys - C:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
-> D:\windows\system32\config\SAM | DRVINFO [Drv - D:] | SYSTEMINFO [Sys - C:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
-> D:\windows\system32\config\DEFAULT | DRVINFO [Drv - D:] | SYSTEMINFO [Sys - C:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
-> D:\Documents and Settings\admin\NTUSER.DAT | DRVINFO [Drv - D:] | SYSTEMINFO [Sys - C:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
-> D:\Documents and Settings\Default User\NTUSER.DAT | DRVINFO [Drv - D:] | SYSTEMINFO [Sys - C:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
-> D:\Documents and Settings\LocalService\NTUSER.DAT | DRVINFO [Drv - D:] | SYSTEMINFO [Sys - C:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
-> D:\Documents and Settings\NetworkService\NTUSER.DAT | DRVINFO [Drv - D:] | SYSTEMINFO [Sys - C:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD2500AAJB-00J3A0 ATA Device +++++
--- User ---
[MBR] 4404bfa179cc6a14117fd5d9f6c8e4df
[BSP] 550372c13643ee9f5d3f678e9ad37cc1 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 150005 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 307210995 | Size: 88467 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_03132014_153245.txt >>
RKreport[0]_S_03032014_105844.txt;RKreport[0]_S_03132014_153238.txt

Leelaa · Příspěvekod **Leelaa** » 13 bře 2014 15:47

15:39:22.0994 2640 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:39:26.0400 2640 ============================================================
15:39:26.0400 2640 Current date / time: 2014/03/13 15:39:26.0400
15:39:26.0400 2640 SystemInfo:
15:39:26.0400 2640
15:39:26.0400 2640 OS Version: 6.1.7601 ServicePack: 1.0
15:39:26.0400 2640 Product type: Workstation
15:39:26.0400 2640 ComputerName: BOTA-PC
15:39:26.0400 2640 UserName: Bota
15:39:26.0400 2640 Windows directory: C:\Windows
15:39:26.0400 2640 System windows directory: C:\Windows
15:39:26.0400 2640 Processor architecture: Intel x86
15:39:26.0400 2640 Number of processors: 1
15:39:26.0400 2640 Page size: 0x1000
15:39:26.0400 2640 Boot type: Normal boot
15:39:26.0400 2640 ============================================================
15:39:28.0822 2640 Drive \Device\Harddisk0\DR0 - Size: 0x3A38A25E00 (232.88 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:39:28.0869 2640 ============================================================
15:39:28.0869 2640 \Device\Harddisk0\DR0:
15:39:28.0869 2640 MBR partitions:
15:39:28.0869 2640 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x124FAAB4
15:39:28.0869 2640 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x124FAAF3, BlocksNum 0xACC9A8E
15:39:28.0869 2640 ============================================================
15:39:28.0900 2640 C: <-> \Device\Harddisk0\DR0\Partition2
15:39:29.0009 2640 D: <-> \Device\Harddisk0\DR0\Partition1
15:39:29.0087 2640 ============================================================
15:39:29.0087 2640 Initialize success
15:39:29.0087 2640 ============================================================
15:39:31.0837 3736 ============================================================
15:39:31.0837 3736 Scan started
15:39:31.0837 3736 Mode: Manual;
15:39:31.0837 3736 ============================================================
15:39:33.0275 3736 ================ Scan system memory ========================
15:39:33.0275 3736 System memory - ok
15:39:33.0275 3736 ================ Scan services =============================
15:39:33.0509 3736 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:39:33.0525 3736 1394ohci - ok
15:39:33.0556 3736 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:39:33.0572 3736 ACPI - ok
15:39:33.0603 3736 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:39:33.0619 3736 AcpiPmi - ok
15:39:33.0759 3736 [ B362181ED3771DC03B4141927C80F801 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
15:39:33.0775 3736 AdobeARMservice - ok
15:39:33.0837 3736 [ 9D96B0D5855FD1B98023B3EEC9F06786 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
15:39:33.0853 3736 AdobeFlashPlayerUpdateSvc - ok
15:39:33.0900 3736 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
15:39:33.0916 3736 adp94xx - ok
15:39:33.0962 3736 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\drivers\adpahci.sys
15:39:33.0978 3736 adpahci - ok
15:39:33.0994 3736 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
15:39:34.0009 3736 adpu320 - ok
15:39:34.0041 3736 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:39:34.0041 3736 AeLookupSvc - ok
15:39:34.0134 3736 [ F81BB7E487EDCEAB630A7EE66CF23913 ] AFD C:\Windows\system32\drivers\afd.sys
15:39:34.0150 3736 AFD - ok
15:39:34.0181 3736 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
15:39:34.0197 3736 agp440 - ok
15:39:34.0228 3736 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
15:39:34.0228 3736 aic78xx - ok
15:39:34.0416 3736 [ 7997B6F02CBDA0E31FA18CC85871B938 ] ALCXWDM C:\Windows\system32\drivers\RTKVAC.SYS
15:39:34.0525 3736 ALCXWDM - ok
15:39:34.0603 3736 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
15:39:34.0619 3736 ALG - ok
15:39:34.0697 3736 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
15:39:34.0697 3736 aliide - ok
15:39:34.0759 3736 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
15:39:34.0759 3736 amdagp - ok
15:39:34.0822 3736 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
15:39:34.0822 3736 amdide - ok
15:39:34.0853 3736 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
15:39:34.0869 3736 AmdK8 - ok
15:39:34.0900 3736 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
15:39:34.0900 3736 AmdPPM - ok
15:39:34.0962 3736 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:39:34.0978 3736 amdsata - ok
15:39:35.0009 3736 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
15:39:35.0025 3736 amdsbs - ok
15:39:35.0041 3736 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:39:35.0056 3736 amdxata - ok
15:39:35.0087 3736 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
15:39:35.0103 3736 AppID - ok
15:39:35.0150 3736 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:39:35.0150 3736 AppIDSvc - ok
15:39:35.0212 3736 [ EACFDF31921F51C097629F1F3C9129B4 ] Appinfo C:\Windows\System32\appinfo.dll
15:39:35.0228 3736 Appinfo - ok
15:39:35.0275 3736 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
15:39:35.0291 3736 AppMgmt - ok
15:39:35.0322 3736 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\drivers\arc.sys
15:39:35.0337 3736 arc - ok
15:39:35.0369 3736 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\drivers\arcsas.sys
15:39:35.0369 3736 arcsas - ok
15:39:35.0494 3736 [ 9D768C43FEF254DD50B1DBF8AD5C4C0B ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
15:39:35.0541 3736 aspnet_state - ok
15:39:35.0587 3736 [ 0EEFB7741B46099FE1AA124F57BEEE41 ] aswKbd C:\Windows\system32\drivers\aswKbd.sys
15:39:35.0587 3736 aswKbd - ok
15:39:35.0697 3736 [ 61953E5E1FFAEAF246A610BEE2554879 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
15:39:35.0697 3736 aswMonFlt - ok
15:39:35.0744 3736 [ E3A9DB9A256311128382D54F40981CFD ] aswNdisFlt C:\Windows\system32\DRIVERS\aswNdisFlt.sys
15:39:35.0775 3736 aswNdisFlt - ok
15:39:35.0837 3736 [ 2206985EF126AB90F3D7F1A020589DC9 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
15:39:35.0853 3736 aswRdr - ok
15:39:35.0869 3736 [ F385467DF95D0A73775CB3B076B8B969 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
15:39:35.0884 3736 aswRvrt - ok
15:39:35.0931 3736 [ 8CD8710457FCC1CDE88CBFA3AA119B92 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
15:39:35.0962 3736 aswSnx - ok
15:39:36.0009 3736 [ C1F95C9481F46B96E23A276639C55AC9 ] aswSP C:\Windows\system32\drivers\aswSP.sys
15:39:36.0025 3736 aswSP - ok
15:39:36.0072 3736 [ BFE2A154BC197656ACA0FF917564406D ] aswStm C:\Windows\system32\drivers\aswStm.sys
15:39:36.0072 3736 aswStm - ok
15:39:36.0087 3736 [ 71B22453B4CE84A4A4B28833ECA7EB18 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
15:39:36.0103 3736 aswTdi - ok
15:39:36.0134 3736 [ 1B0662514A68C3A42E60D240C5ABEF28 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
15:39:36.0150 3736 aswVmm - ok
15:39:36.0166 3736 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:39:36.0166 3736 AsyncMac - ok
15:39:36.0228 3736 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
15:39:36.0228 3736 atapi - ok
15:39:36.0291 3736 [ 28EF18E34D1E383D130AAA4A81415CCA ] ATIAVPCI C:\Windows\system32\DRIVERS\atinavrr.sys
15:39:36.0306 3736 ATIAVPCI - ok
15:39:36.0369 3736 [ 6ADC42CF4A6AB84975CA63DCCFAAF5D8 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW73.sys
15:39:36.0369 3736 AtiHDAudioService - ok
15:39:36.0431 3736 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:39:36.0447 3736 AudioEndpointBuilder - ok
15:39:36.0478 3736 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
15:39:36.0478 3736 Audiosrv - ok
15:39:36.0728 3736 [ CC42F104172B4A62793083D380867317 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
15:39:36.0728 3736 avast! Antivirus - ok
15:39:36.0791 3736 [ 3B5DA02DEA6910A709F19180746FF0CE ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
15:39:36.0791 3736 avast! Firewall - ok
15:39:36.0853 3736 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:39:36.0869 3736 AxInstSV - ok
15:39:36.0931 3736 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\drivers\bxvbdx.sys
15:39:36.0947 3736 b06bdrv - ok
15:39:37.0009 3736 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
15:39:37.0009 3736 b57nd60x - ok
15:39:37.0072 3736 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
15:39:37.0072 3736 BDESVC - ok
15:39:37.0103 3736 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
15:39:37.0103 3736 Beep - ok
15:39:37.0166 3736 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
15:39:37.0181 3736 BFE - ok
15:39:37.0228 3736 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
15:39:37.0259 3736 BITS - ok
15:39:37.0275 3736 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:39:37.0291 3736 blbdrive - ok
15:39:37.0337 3736 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:39:37.0337 3736 bowser - ok
15:39:37.0369 3736 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
15:39:37.0369 3736 BrFiltLo - ok
15:39:37.0416 3736 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
15:39:37.0416 3736 BrFiltUp - ok
15:39:37.0462 3736 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
15:39:37.0462 3736 Browser - ok
15:39:37.0494 3736 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:39:37.0509 3736 Brserid - ok
15:39:37.0541 3736 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:39:37.0541 3736 BrSerWdm - ok
15:39:37.0572 3736 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:39:37.0572 3736 BrUsbMdm - ok
15:39:37.0603 3736 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:39:37.0619 3736 BrUsbSer - ok
15:39:37.0650 3736 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
15:39:37.0650 3736 BTHMODEM - ok
15:39:37.0712 3736 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
15:39:37.0712 3736 bthserv - ok
15:39:37.0744 3736 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:39:37.0759 3736 cdfs - ok
15:39:37.0806 3736 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:39:37.0806 3736 cdrom - ok
15:39:37.0869 3736 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
15:39:37.0869 3736 CertPropSvc - ok
15:39:37.0900 3736 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\drivers\circlass.sys
15:39:37.0900 3736 circlass - ok
15:39:37.0947 3736 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
15:39:37.0947 3736 CLFS - ok
15:39:38.0025 3736 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:39:38.0025 3736 clr_optimization_v2.0.50727_32 - ok
15:39:38.0087 3736 [ E87213F37A13E2B54391E40934F071D0 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:39:38.0150 3736 clr_optimization_v4.0.30319_32 - ok
15:39:38.0181 3736 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
15:39:38.0181 3736 CmBatt - ok
15:39:38.0244 3736 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:39:38.0244 3736 cmdide - ok
15:39:38.0291 3736 [ 85449EEBE8F8EBD6481EFBF0F352B4EB ] CNG C:\Windows\system32\Drivers\cng.sys
15:39:38.0322 3736 CNG - ok
15:39:38.0369 3736 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\drivers\compbatt.sys
15:39:38.0369 3736 Compbatt - ok
15:39:38.0416 3736 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
15:39:38.0416 3736 CompositeBus - ok
15:39:38.0447 3736 COMSysApp - ok
15:39:38.0478 3736 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
15:39:38.0478 3736 crcdisk - ok
15:39:38.0650 3736 [ 7CA1BECEA5DE2643ADDAD32670E7A4C9 ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:39:38.0681 3736 CryptSvc - ok
15:39:38.0744 3736 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
15:39:38.0759 3736 CSC - ok
15:39:38.0791 3736 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
15:39:38.0806 3736 CscService - ok
15:39:38.0884 3736 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
15:39:38.0916 3736 DcomLaunch - ok
15:39:38.0962 3736 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
15:39:38.0978 3736 defragsvc - ok
15:39:39.0009 3736 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:39:39.0025 3736 DfsC - ok
15:39:39.0072 3736 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
15:39:39.0087 3736 Dhcp - ok
15:39:39.0119 3736 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
15:39:39.0119 3736 discache - ok
15:39:39.0150 3736 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\drivers\disk.sys
15:39:39.0150 3736 Disk - ok
15:39:39.0197 3736 [ 2A958EF85DB1B61FFCA65044FA4BCE9E ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
15:39:39.0197 3736 dmvsc - ok
15:39:39.0244 3736 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:39:39.0259 3736 Dnscache - ok
15:39:39.0291 3736 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
15:39:39.0306 3736 dot3svc - ok
15:39:39.0337 3736 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
15:39:39.0353 3736 DPS - ok
15:39:39.0416 3736 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:39:39.0416 3736 drmkaud - ok
15:39:39.0478 3736 [ 687AF6BB383885FF6A64071B189A7F3E ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
15:39:39.0478 3736 dtsoftbus01 - ok
15:39:39.0556 3736 [ 71BC35067CABC02C9453AEAA42B2E43E ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:39:39.0572 3736 DXGKrnl - ok
15:39:39.0634 3736 [ 20DE769B84960606D8DBB2AEC123021A ] E100B C:\Windows\system32\DRIVERS\e100b325.sys
15:39:39.0650 3736 E100B - ok
15:39:39.0697 3736 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
15:39:39.0697 3736 EapHost - ok
15:39:39.0837 3736 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\drivers\evbdx.sys
15:39:39.0916 3736 ebdrv - ok
15:39:39.0978 3736 [ 803B370865D907EA21DC0C2B6A8936B5 ] EFS C:\Windows\System32\lsass.exe
15:39:39.0994 3736 EFS - ok
15:39:40.0056 3736 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:39:40.0087 3736 ehRecvr - ok
15:39:40.0119 3736 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
15:39:40.0119 3736 ehSched - ok
15:39:40.0166 3736 [ FD3821285B943648A32ADC39DACC4E11 ] EL90Xbc C:\Windows\system32\DRIVERS\el90Xbc5.SYS
15:39:40.0166 3736 EL90Xbc - ok
15:39:40.0228 3736 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\drivers\elxstor.sys
15:39:40.0244 3736 elxstor - ok
15:39:40.0275 3736 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:39:40.0275 3736 ErrDev - ok
15:39:40.0353 3736 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
15:39:40.0369 3736 EventSystem - ok
15:39:40.0400 3736 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
15:39:40.0416 3736 exfat - ok
15:39:40.0462 3736 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:39:40.0462 3736 fastfat - ok
15:39:40.0556 3736 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
15:39:40.0603 3736 Fax - ok
15:39:40.0650 3736 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:39:40.0666 3736 fdc - ok
15:39:40.0712 3736 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
15:39:40.0744 3736 fdPHost - ok
15:39:40.0775 3736 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
15:39:40.0775 3736 FDResPub - ok
15:39:40.0806 3736 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:39:40.0806 3736 FileInfo - ok
15:39:40.0837 3736 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:39:40.0837 3736 Filetrace - ok
15:39:40.0869 3736 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:39:40.0869 3736 flpydisk - ok
15:39:40.0916 3736 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:39:40.0931 3736 FltMgr - ok
15:39:40.0994 3736 [ E12C4928B32ACE04610259647F072635 ] FontCache C:\Windows\system32\FntCache.dll
15:39:41.0025 3736 FontCache - ok
15:39:41.0072 3736 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:39:41.0087 3736 FontCache3.0.0.0 - ok
15:39:41.0119 3736 FreshIO - ok
15:39:41.0150 3736 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:39:41.0150 3736 FsDepends - ok
15:39:41.0212 3736 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:39:41.0212 3736 Fs_Rec - ok
15:39:41.0275 3736 [ E306A24D9694C724FA2491278BF50FDB ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:39:41.0275 3736 fvevol - ok
15:39:41.0337 3736 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
15:39:41.0337 3736 gagp30kx - ok
15:39:41.0400 3736 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
15:39:41.0416 3736 gpsvc - ok
15:39:41.0541 3736 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
15:39:41.0556 3736 gupdate - ok
15:39:41.0572 3736 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
15:39:41.0572 3736 gupdatem - ok
15:39:41.0603 3736 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:39:41.0619 3736 hcw85cir - ok
15:39:41.0681 3736 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:39:41.0697 3736 HdAudAddService - ok
15:39:41.0728 3736 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:39:41.0744 3736 HDAudBus - ok
15:39:41.0759 3736 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
15:39:41.0775 3736 HidBatt - ok
15:39:41.0806 3736 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\drivers\hidbth.sys
15:39:41.0806 3736 HidBth - ok
15:39:41.0853 3736 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\drivers\hidir.sys
15:39:41.0853 3736 HidIr - ok
15:39:41.0884 3736 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
15:39:41.0900 3736 hidserv - ok
15:39:41.0962 3736 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\drivers\hidusb.sys
15:39:41.0962 3736 HidUsb - ok
15:39:42.0009 3736 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:39:42.0009 3736 hkmsvc - ok
15:39:42.0056 3736 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:39:42.0056 3736 HomeGroupListener - ok
15:39:42.0103 3736 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:39:42.0119 3736 HomeGroupProvider - ok
15:39:42.0181 3736 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
15:39:42.0181 3736 HpSAMD - ok
15:39:42.0228 3736 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:39:42.0244 3736 HTTP - ok
15:39:42.0275 3736 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:39:42.0275 3736 hwpolicy - ok
15:39:42.0322 3736 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
15:39:42.0322 3736 i8042prt - ok
15:39:42.0384 3736 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:39:42.0416 3736 iaStorV - ok
15:39:42.0478 3736 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:39:42.0509 3736 idsvc - ok
15:39:42.0603 3736 IEEtwCollectorService - ok
15:39:42.0681 3736 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\drivers\iirsp.sys
15:39:42.0697 3736 iirsp - ok
15:39:42.0791 3736 [ B9C54120F46392100478F58F374E5709 ] IKEEXT C:\Windows\System32\ikeext.dll
15:39:42.0806 3736 IKEEXT - ok
15:39:42.0869 3736 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
15:39:42.0869 3736 intelide - ok
15:39:42.0916 3736 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:39:42.0916 3736 intelppm - ok
15:39:42.0962 3736 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:39:42.0978 3736 IPBusEnum - ok
15:39:43.0009 3736 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:39:43.0009 3736 IpFilterDriver - ok
15:39:43.0087 3736 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:39:43.0119 3736 iphlpsvc - ok
15:39:43.0150 3736 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
15:39:43.0150 3736 IPMIDRV - ok
15:39:43.0181 3736 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:39:43.0197 3736 IPNAT - ok
15:39:43.0244 3736 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:39:43.0244 3736 IRENUM - ok
15:39:43.0275 3736 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:39:43.0291 3736 isapnp - ok
15:39:43.0322 3736 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
15:39:43.0337 3736 iScsiPrt - ok
15:39:43.0369 3736 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
15:39:43.0369 3736 kbdclass - ok
15:39:43.0416 3736 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
15:39:43.0416 3736 kbdhid - ok
15:39:43.0447 3736 [ 803B370865D907EA21DC0C2B6A8936B5 ] KeyIso C:\Windows\system32\lsass.exe
15:39:43.0447 3736 KeyIso - ok
15:39:43.0509 3736 [ F286830298323272260332D6ABC905C1 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:39:43.0509 3736 KSecDD - ok
15:39:43.0572 3736 [ D7C760D57B1656DD748B9E4AB6CB5A51 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:39:43.0572 3736 KSecPkg - ok
15:39:43.0619 3736 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
15:39:43.0634 3736 KtmRm - ok
15:39:43.0681 3736 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
15:39:43.0712 3736 LanmanServer - ok
15:39:43.0744 3736 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:39:43.0759 3736 LanmanWorkstation - ok
15:39:43.0822 3736 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:39:43.0837 3736 lltdio - ok
15:39:43.0869 3736 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:39:43.0884 3736 lltdsvc - ok
15:39:43.0916 3736 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
15:39:43.0931 3736 lmhosts - ok
15:39:43.0978 3736 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
15:39:43.0978 3736 LSI_FC - ok
15:39:44.0009 3736 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
15:39:44.0025 3736 LSI_SAS - ok
15:39:44.0056 3736 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
15:39:44.0056 3736 LSI_SAS2 - ok
15:39:44.0087 3736 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
15:39:44.0103 3736 LSI_SCSI - ok
15:39:44.0134 3736 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
15:39:44.0134 3736 luafv - ok
15:39:44.0181 3736 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:39:44.0181 3736 Mcx2Svc - ok
15:39:44.0228 3736 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\drivers\megasas.sys
15:39:44.0228 3736 megasas - ok
15:39:44.0275 3736 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
15:39:44.0275 3736 MegaSR - ok
15:39:44.0306 3736 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
15:39:44.0322 3736 MMCSS - ok
15:39:44.0353 3736 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
15:39:44.0353 3736 Modem - ok
15:39:44.0400 3736 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:39:44.0400 3736 monitor - ok
15:39:44.0431 3736 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\drivers\mouclass.sys
15:39:44.0431 3736 mouclass - ok
15:39:44.0478 3736 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:39:44.0478 3736 mouhid - ok
15:39:44.0494 3736 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:39:44.0556 3736 mountmgr - ok
15:39:44.0634 3736 [ 0329A45C849C9D77901094B8FFE8BBB9 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
15:39:44.0634 3736 MozillaMaintenance - ok
15:39:44.0712 3736 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
15:39:44.0712 3736 mpio - ok
15:39:44.0775 3736 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:39:44.0775 3736 mpsdrv - ok
15:39:44.0822 3736 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:39:44.0853 3736 MpsSvc - ok
15:39:44.0900 3736 [ 21F4B24ACFC79A483515BD986DD9043F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:39:44.0916 3736 MRxDAV - ok
15:39:44.0962 3736 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:39:44.0978 3736 mrxsmb - ok
15:39:45.0025 3736 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:39:45.0041 3736 mrxsmb10 - ok
15:39:45.0087 3736 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:39:45.0103 3736 mrxsmb20 - ok
15:39:45.0150 3736 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
15:39:45.0150 3736 msahci - ok
15:39:45.0181 3736 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:39:45.0197 3736 msdsm - ok
15:39:45.0228 3736 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
15:39:45.0228 3736 MSDTC - ok
15:39:45.0291 3736 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:39:45.0291 3736 Msfs - ok
15:39:45.0322 3736 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:39:45.0322 3736 mshidkmdf - ok
15:39:45.0353 3736 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:39:45.0353 3736 msisadrv - ok
15:39:45.0416 3736 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:39:45.0431 3736 MSiSCSI - ok
15:39:45.0447 3736 msiserver - ok
15:39:45.0478 3736 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:39:45.0494 3736 MSKSSRV - ok
15:39:45.0509 3736 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:39:45.0509 3736 MSPCLOCK - ok
15:39:45.0556 3736 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:39:45.0556 3736 MSPQM - ok
15:39:45.0587 3736 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:39:45.0603 3736 MsRPC - ok
15:39:45.0634 3736 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
15:39:45.0634 3736 mssmbios - ok
15:39:45.0681 3736 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:39:45.0681 3736 MSTEE - ok
15:39:45.0712 3736 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
15:39:45.0712 3736 MTConfig - ok
15:39:45.0744 3736 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
15:39:45.0744 3736 Mup - ok
15:39:45.0806 3736 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
15:39:45.0822 3736 napagent - ok
15:39:45.0884 3736 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:39:45.0884 3736 NativeWifiP - ok
15:39:45.0962 3736 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:39:45.0978 3736 NDIS - ok
15:39:46.0025 3736 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:39:46.0025 3736 NdisCap - ok
15:39:46.0072 3736 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:39:46.0072 3736 NdisTapi - ok
15:39:46.0119 3736 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:39:46.0119 3736 Ndisuio - ok
15:39:46.0150 3736 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:39:46.0150 3736 NdisWan - ok
15:39:46.0181 3736 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:39:46.0181 3736 NDProxy - ok
15:39:46.0212 3736 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:39:46.0212 3736 NetBIOS - ok
15:39:46.0244 3736 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:39:46.0244 3736 NetBT - ok
15:39:46.0275 3736 [ 803B370865D907EA21DC0C2B6A8936B5 ] Netlogon C:\Windows\system32\lsass.exe
15:39:46.0291 3736 Netlogon - ok
15:39:46.0337 3736 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
15:39:46.0369 3736 Netman - ok
15:39:46.0400 3736 [ 21318671BCAD3ACF16638F98D4D00973 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:39:46.0416 3736 NetMsmqActivator - ok
15:39:46.0447 3736 [ 21318671BCAD3ACF16638F98D4D00973 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:39:46.0447 3736 NetPipeActivator - ok
15:39:46.0494 3736 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
15:39:46.0509 3736 netprofm - ok
15:39:46.0572 3736 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:39:46.0572 3736 NetTcpActivator - ok
15:39:46.0603 3736 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:39:46.0603 3736 NetTcpPortSharing - ok
15:39:46.0681 3736 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
15:39:46.0697 3736 nfrd960 - ok
15:39:46.0759 3736 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\Windows\System32\nlasvc.dll
15:39:46.0775 3736 NlaSvc - ok
15:39:46.0869 3736 [ B0575681498D75E0C0432200702B4A0A ] nmwcdnsu C:\Windows\system32\drivers\nmwcdnsu.sys
15:39:46.0869 3736 nmwcdnsu - ok
15:39:46.0916 3736 [ 9699486E10F89163979FCD48A40FE805 ] nmwcdnsuc C:\Windows\system32\drivers\nmwcdnsuc.sys
15:39:46.0916 3736 nmwcdnsuc - ok
15:39:46.0947 3736 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:39:46.0947 3736 Npfs - ok
15:39:46.0994 3736 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
15:39:46.0994 3736 nsi - ok
15:39:47.0025 3736 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:39:47.0025 3736 nsiproxy - ok
15:39:47.0119 3736 [ 5E43D2B0EE64123D4880DFA6626DEFDE ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:39:47.0150 3736 Ntfs - ok
15:39:47.0197 3736 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
15:39:47.0197 3736 Null - ok
15:39:47.0244 3736 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:39:47.0244 3736 nvraid - ok
15:39:47.0306 3736 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:39:47.0322 3736 nvstor - ok
15:39:47.0337 3736 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:39:47.0353 3736 nv_agp - ok
15:39:47.0369 3736 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
15:39:47.0369 3736 ohci1394 - ok
15:39:47.0400 3736 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:39:47.0431 3736 p2pimsvc - ok
15:39:47.0462 3736 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
15:39:47.0494 3736 p2psvc - ok
15:39:47.0541 3736 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
15:39:47.0541 3736 Parport - ok
15:39:47.0587 3736 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:39:47.0587 3736 partmgr - ok
15:39:47.0619 3736 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
15:39:47.0619 3736 Parvdm - ok
15:39:47.0650 3736 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:39:47.0666 3736 PcaSvc - ok
15:39:47.0728 3736 [ F451DCACBAA67F3307305EBD4A39EA07 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfd.sys
15:39:47.0744 3736 pccsmcfd - ok
15:39:47.0775 3736 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
15:39:47.0791 3736 pci - ok
15:39:47.0837 3736 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
15:39:47.0837 3736 pciide - ok
15:39:47.0884 3736 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
15:39:47.0884 3736 pcmcia - ok
15:39:47.0916 3736 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
15:39:47.0916 3736 pcw - ok
15:39:47.0962 3736 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:39:47.0994 3736 PEAUTH - ok
15:39:48.0072 3736 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
15:39:48.0103 3736 PeerDistSvc - ok
15:39:48.0228 3736 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
15:39:48.0291 3736 pla - ok
15:39:48.0369 3736 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:39:48.0400 3736 PlugPlay - ok
15:39:48.0431 3736 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:39:48.0447 3736 PNRPAutoReg - ok
15:39:48.0478 3736 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:39:48.0478 3736 PNRPsvc - ok
15:39:48.0587 3736 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:39:48.0603 3736 PolicyAgent - ok
15:39:48.0650 3736 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll

Prosim o kontrolu - nalezene viry Vyřešeno

Prosim o kontrolu - nalezene viry

Re: Prosim o kontrolu - nalezene viry

Re: Prosim o kontrolu - nalezene viry

Re: Prosim o kontrolu - nalezene viry

Re: Prosim o kontrolu - nalezene viry

Re: Prosim o kontrolu - nalezene viry

Re: Prosim o kontrolu - nalezene viry

Re: Prosim o kontrolu - nalezene viry

Re: Prosim o kontrolu - nalezene viry

Re: Prosim o kontrolu - nalezene viry

Re: Prosim o kontrolu - nalezene viry

Re: Prosim o kontrolu - nalezene viry

Kdo je online