Prosím o kontrolu logu HJT - viz odkaz

LaB · Příspěvekod **LaB** » 27 bře 2014 17:49

Disky už jsou pravda starší...
Mě zaráží, proč to bez nainstalovanýho Esetu jde normálně...

17:47:14.0640 1940 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
17:47:17.0000 1940 ============================================================
17:47:17.0000 1940 Current date / time: 2014/03/27 17:47:17.0000
17:47:17.0000 1940 SystemInfo:
17:47:17.0000 1940
17:47:17.0000 1940 OS Version: 5.1.2600 ServicePack: 3.0
17:47:17.0000 1940 Product type: Workstation
17:47:17.0000 1940 ComputerName: BISOVI-F7MOOQ1M
17:47:17.0000 1940 UserName: Bisovi
17:47:17.0000 1940 Windows directory: C:\WINDOWS
17:47:17.0000 1940 System windows directory: C:\WINDOWS
17:47:17.0000 1940 Processor architecture: Intel x86
17:47:17.0000 1940 Number of processors: 2
17:47:17.0000 1940 Page size: 0x1000
17:47:17.0000 1940 Boot type: Normal boot
17:47:17.0000 1940 ============================================================
17:47:18.0156 1940 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
17:47:18.0156 1940 Drive \Device\Harddisk1\DR1 - Size: 0x1BF4187E00 (111.81 Gb), SectorSize: 0x200, Cylinders: 0x3904, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
17:47:18.0171 1940 Drive \Device\Harddisk2\DR5 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:47:18.0171 1940 ============================================================
17:47:18.0171 1940 \Device\Harddisk0\DR0:
17:47:18.0171 1940 MBR partitions:
17:47:18.0171 1940 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x77FE059
17:47:18.0171 1940 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x77FE098, BlocksNum 0x159C64E9
17:47:18.0171 1940 \Device\Harddisk1\DR1:
17:47:18.0171 1940 MBR partitions:
17:47:18.0171 1940 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xDF9F3C5
17:47:18.0171 1940 \Device\Harddisk2\DR5:
17:47:18.0171 1940 MBR partitions:
17:47:18.0171 1940 \Device\Harddisk2\DR5\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A385030
17:47:18.0171 1940 ============================================================
17:47:18.0187 1940 C: <-> \Device\Harddisk0\DR0\Partition1
17:47:18.0250 1940 D: <-> \Device\Harddisk0\DR0\Partition2
17:47:18.0250 1940 Z: <-> \Device\Harddisk1\DR1\Partition1
17:47:18.0625 1940 E: <-> \Device\Harddisk2\DR5\Partition1
17:47:18.0625 1940 ============================================================
17:47:18.0625 1940 Initialize success
17:47:18.0625 1940 ============================================================
17:47:23.0812 2340 ============================================================
17:47:23.0812 2340 Scan started
17:47:23.0812 2340 Mode: Manual;
17:47:23.0812 2340 ============================================================
17:47:24.0234 2340 ================ Scan system memory ========================
17:47:24.0234 2340 System memory - ok
17:47:24.0234 2340 ================ Scan services =============================
17:47:24.0312 2340 [ 914A9709FC3BF419AD2F85547F2A4832 ] 61883 C:\WINDOWS\system32\DRIVERS\61883.sys
17:47:24.0312 2340 61883 - ok
17:47:24.0312 2340 Abiosdsk - ok
17:47:24.0328 2340 abp480n5 - ok
17:47:24.0359 2340 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:47:24.0359 2340 ACPI - ok
17:47:24.0375 2340 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
17:47:24.0375 2340 ACPIEC - ok
17:47:24.0421 2340 [ 9D96B0D5855FD1B98023B3EEC9F06786 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:47:24.0437 2340 AdobeFlashPlayerUpdateSvc - ok
17:47:24.0437 2340 adpu160m - ok
17:47:24.0453 2340 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
17:47:24.0453 2340 aec - ok
17:47:24.0468 2340 [ 023867B6606FBABCDD52E089C4A507DA ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
17:47:24.0468 2340 AegisP - ok
17:47:24.0484 2340 [ 322D0E36693D6E24A2398BEE62A268CD ] AFD C:\WINDOWS\System32\drivers\afd.sys
17:47:24.0484 2340 AFD - ok
17:47:24.0484 2340 Aha154x - ok
17:47:24.0500 2340 aic78u2 - ok
17:47:24.0500 2340 aic78xx - ok
17:47:24.0515 2340 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
17:47:24.0515 2340 Alerter - ok
17:47:24.0531 2340 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
17:47:24.0531 2340 ALG - ok
17:47:24.0531 2340 AliIde - ok
17:47:24.0578 2340 [ 267FC636801EDC5AB28E14036349E3BE ] Ambfilt C:\WINDOWS\system32\drivers\Ambfilt.sys
17:47:24.0578 2340 Ambfilt - ok
17:47:24.0578 2340 amsint - ok
17:47:24.0609 2340 [ E592751036C1D0A74EC3E57302A03745 ] AppleCharger C:\WINDOWS\system32\DRIVERS\AppleCharger.sys
17:47:24.0609 2340 AppleCharger - ok
17:47:24.0640 2340 [ 6B8E7A90E576D4FE308F97C69060A171 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
17:47:24.0640 2340 AppMgmt - ok
17:47:24.0687 2340 [ 8E2257584B2C52D44B4CB1949947D885 ] AR9271 C:\WINDOWS\system32\DRIVERS\athuw.sys
17:47:24.0703 2340 AR9271 - ok
17:47:24.0734 2340 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
17:47:24.0734 2340 Arp1394 - ok
17:47:24.0734 2340 asc - ok
17:47:24.0734 2340 asc3350p - ok
17:47:24.0750 2340 asc3550 - ok
17:47:24.0781 2340 [ ED8CEE58C1E4C5893F5B2FD686A272BF ] Aspi32 C:\WINDOWS\system32\drivers\Aspi32.sys
17:47:24.0781 2340 Aspi32 - ok
17:47:24.0859 2340 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
17:47:24.0859 2340 aspnet_state - ok
17:47:24.0875 2340 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:47:24.0875 2340 AsyncMac - ok
17:47:24.0875 2340 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
17:47:24.0875 2340 atapi - ok
17:47:24.0875 2340 Atdisk - ok
17:47:24.0921 2340 [ 43C1105CA8492931B45F1A090FA562C8 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
17:47:24.0921 2340 Ati HotKey Poller - ok
17:47:24.0984 2340 [ C026951271D59FF97DEB2A6B4895B416 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
17:47:25.0015 2340 ati2mtag - ok
17:47:25.0031 2340 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:47:25.0031 2340 Atmarpc - ok
17:47:25.0062 2340 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
17:47:25.0062 2340 AudioSrv - ok
17:47:25.0078 2340 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
17:47:25.0078 2340 audstub - ok
17:47:25.0109 2340 [ F8E6956A614F15A0860474C5E2A7DE6B ] Avc C:\WINDOWS\system32\DRIVERS\avc.sys
17:47:25.0109 2340 Avc - ok
17:47:25.0125 2340 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
17:47:25.0125 2340 Beep - ok
17:47:25.0140 2340 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
17:47:25.0156 2340 BITS - ok
17:47:25.0171 2340 [ 249276D3EF1E74B992299CB96099E4D7 ] Browser C:\WINDOWS\System32\browser.dll
17:47:25.0171 2340 Browser - ok
17:47:25.0203 2340 [ 894FFBFC41BE336443BEE9C33010419A ] C-Dilla C:\WINDOWS\system32\drivers\CDANT.SYS
17:47:25.0203 2340 C-Dilla - ok
17:47:25.0234 2340 [ 42C77C40B230E51BE2952F943B1513E7 ] C-DillaSrv C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
17:47:25.0234 2340 C-DillaSrv - ok
17:47:25.0250 2340 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
17:47:25.0250 2340 cbidf2k - ok
17:47:25.0281 2340 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
17:47:25.0281 2340 CCDECODE - ok
17:47:25.0281 2340 cd20xrnt - ok
17:47:25.0296 2340 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
17:47:25.0296 2340 Cdaudio - ok
17:47:25.0296 2340 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
17:47:25.0296 2340 Cdfs - ok
17:47:25.0312 2340 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:47:25.0312 2340 Cdrom - ok
17:47:25.0312 2340 Changer - ok
17:47:25.0343 2340 [ E390DC1D7C461D7D56EC53402F329928 ] cisvc C:\WINDOWS\system32\cisvc.exe
17:47:25.0343 2340 cisvc - ok
17:47:25.0359 2340 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
17:47:25.0359 2340 ClipSrv - ok
17:47:25.0390 2340 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:47:25.0421 2340 clr_optimization_v2.0.50727_32 - ok
17:47:25.0453 2340 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:47:25.0453 2340 clr_optimization_v4.0.30319_32 - ok
17:47:25.0468 2340 CmdIde - ok
17:47:25.0468 2340 COMSysApp - ok
17:47:25.0468 2340 Cpqarray - ok
17:47:25.0500 2340 [ 26CE59F9FC8639FD7FED53CE3B785015 ] cpuz135 C:\WINDOWS\system32\drivers\cpuz135_x32.sys
17:47:25.0500 2340 cpuz135 - ok
17:47:25.0531 2340 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
17:47:25.0531 2340 CryptSvc - ok
17:47:25.0531 2340 dac2w2k - ok
17:47:25.0531 2340 dac960nt - ok
17:47:25.0562 2340 [ C868F3AE15CF71A93F2AA3A32856D839 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
17:47:25.0562 2340 DcomLaunch - ok
17:47:25.0578 2340 dgderdrv - ok
17:47:25.0593 2340 [ 54D0B8343CE8C22412A5F29D32EFD211 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
17:47:25.0593 2340 dg_ssudbus - ok
17:47:25.0625 2340 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
17:47:25.0625 2340 Dhcp - ok
17:47:25.0640 2340 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
17:47:25.0640 2340 Disk - ok
17:47:25.0656 2340 dmadmin - ok
17:47:25.0671 2340 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
17:47:25.0671 2340 dmboot - ok
17:47:25.0687 2340 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
17:47:25.0687 2340 dmio - ok
17:47:25.0718 2340 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
17:47:25.0718 2340 dmload - ok
17:47:25.0734 2340 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
17:47:25.0750 2340 dmserver - ok
17:47:25.0750 2340 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
17:47:25.0750 2340 DMusic - ok
17:47:25.0765 2340 [ 0634B791684B84F4A331F3D3536FEEF8 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
17:47:25.0765 2340 Dnscache - ok
17:47:25.0796 2340 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
17:47:25.0796 2340 Dot3svc - ok
17:47:25.0796 2340 [ 3E4B043F8BC6BE1D4820CC6C9C500306 ] dot4 C:\WINDOWS\system32\DRIVERS\Dot4.sys
17:47:25.0812 2340 dot4 - ok
17:47:25.0828 2340 [ 77CE63A8A34AE23D9FE4C7896D1DEBE7 ] Dot4Print C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys
17:47:25.0828 2340 Dot4Print - ok
17:47:25.0843 2340 [ CCC4092DFC85336F2E1C142483ADEB42 ] dot4usb C:\WINDOWS\system32\DRIVERS\dot4usb.sys
17:47:25.0843 2340 dot4usb - ok
17:47:25.0843 2340 dpti2o - ok
17:47:25.0859 2340 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
17:47:25.0875 2340 drmkaud - ok
17:47:25.0890 2340 [ 0C51F1D7A7501FC948D35AE0FDE764A5 ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
17:47:25.0906 2340 eamon - ok
17:47:25.0921 2340 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
17:47:25.0921 2340 EapHost - ok
17:47:25.0953 2340 [ C79916F203E1A2CBBE99F22D6E5D21DA ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
17:47:25.0953 2340 ehdrv - ok
17:47:26.0093 2340 [ 4CB575D97653FA91FFB02DA3105EB084 ] ekrn C:\Program Files\ESET\ESET Smart Security\ekrn.exe
17:47:26.0093 2340 ekrn - ok
17:47:26.0125 2340 [ 4B6B2C930CD076F8BDEE683512EE05E8 ] epfw C:\WINDOWS\system32\DRIVERS\epfw.sys
17:47:26.0125 2340 epfw - ok
17:47:26.0140 2340 [ BE76566CE5E943B7529CF49025506542 ] Epfwndis C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
17:47:26.0140 2340 Epfwndis - ok
17:47:26.0156 2340 [ B964288A27843BDAFB5EE3A5CFC26A0A ] epfwtdi C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
17:47:26.0156 2340 epfwtdi - ok
17:47:26.0171 2340 [ 57CC1BF06C159DFBB989F5783C0E6A50 ] epmntdrv C:\WINDOWS\system32\epmntdrv.sys
17:47:26.0171 2340 epmntdrv - ok
17:47:26.0187 2340 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
17:47:26.0187 2340 ERSvc - ok
17:47:26.0218 2340 [ 3AF0AE042AFE486B22644CD3FBEBF2E2 ] etdrv C:\WINDOWS\etdrv.sys
17:47:26.0218 2340 etdrv - ok
17:47:26.0234 2340 [ 5F779F5EDAB787F2D090C71A9051F365 ] EuGdiDrv C:\WINDOWS\system32\EuGdiDrv.sys
17:47:26.0234 2340 EuGdiDrv - ok
17:47:26.0250 2340 [ F0D2AE69035092BF22DAD6B50FAB85C2 ] Eventlog C:\WINDOWS\system32\services.exe
17:47:26.0265 2340 Eventlog - ok
17:47:26.0265 2340 [ 260C69FD67687B0DC062FC3D31655857 ] EventSystem C:\WINDOWS\System32\es.dll
17:47:26.0281 2340 EventSystem - ok
17:47:26.0281 2340 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
17:47:26.0281 2340 Fastfat - ok
17:47:26.0312 2340 [ B927443008910B412BEC72FC41C1BAD0 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
17:47:26.0312 2340 FastUserSwitchingCompatibility - ok
17:47:26.0312 2340 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
17:47:26.0312 2340 Fdc - ok
17:47:26.0328 2340 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
17:47:26.0328 2340 Fips - ok
17:47:26.0375 2340 [ F76D04F7413B07DAA029F6520B64B4E8 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:47:26.0375 2340 FLEXnet Licensing Service - ok
17:47:26.0375 2340 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
17:47:26.0375 2340 Flpydisk - ok
17:47:26.0421 2340 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
17:47:26.0421 2340 FltMgr - ok
17:47:26.0421 2340 [ 27C75AC6D6FC808D8244D9C9CEA681D1 ] fltsrv C:\WINDOWS\system32\DRIVERS\fltsrv.sys
17:47:26.0437 2340 fltsrv - ok
17:47:26.0484 2340 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
17:47:26.0484 2340 FontCache3.0.0.0 - ok
17:47:26.0500 2340 [ DDEE99DC54EFA20BD5A442CD733C4462 ] FsUsbExDisk C:\WINDOWS\system32\FsUsbExDisk.SYS
17:47:26.0500 2340 FsUsbExDisk - ok
17:47:26.0515 2340 [ 0796C1E47ADB9825269E64B9DAB4E741 ] FsUsbExService C:\WINDOWS\system32\FsUsbExService.Exe
17:47:26.0515 2340 FsUsbExService - ok
17:47:26.0531 2340 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:47:26.0531 2340 Fs_Rec - ok
17:47:26.0531 2340 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:47:26.0531 2340 Ftdisk - ok
17:47:26.0562 2340 [ D556CB79967E92B5CC69686D16C1D846 ] gdrv C:\WINDOWS\gdrv.sys
17:47:26.0562 2340 gdrv - ok
17:47:26.0578 2340 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:47:26.0578 2340 Gpc - ok
17:47:26.0609 2340 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
17:47:26.0609 2340 HDAudBus - ok
17:47:26.0656 2340 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
17:47:26.0656 2340 helpsvc - ok
17:47:26.0687 2340 [ 00E25EE90166B3E1BE6E74AEBF858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
17:47:26.0687 2340 HidServ - ok
17:47:26.0687 2340 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:47:26.0687 2340 hidusb - ok
17:47:26.0718 2340 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
17:47:26.0718 2340 hkmsvc - ok
17:47:26.0718 2340 hpn - ok
17:47:26.0718 2340 hpt3xx - ok
17:47:26.0750 2340 [ F6AACF5BCE2893E0C1754AFEB672E5C9 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
17:47:26.0750 2340 HTTP - ok
17:47:26.0750 2340 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
17:47:26.0750 2340 HTTPFilter - ok
17:47:26.0765 2340 i2omgmt - ok
17:47:26.0765 2340 i2omp - ok
17:47:26.0765 2340 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:47:26.0765 2340 i8042prt - ok
17:47:26.0828 2340 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
17:47:26.0828 2340 IDriverT - ok
17:47:26.0890 2340 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:47:26.0890 2340 idsvc - ok
17:47:26.0906 2340 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
17:47:26.0906 2340 Imapi - ok
17:47:26.0937 2340 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
17:47:26.0937 2340 ImapiService - ok
17:47:26.0937 2340 ini910u - ok
17:47:27.0046 2340 [ 3F7643F4658EAEE9428AADFB0D002212 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
17:47:27.0078 2340 IntcAzAudAddService - ok
17:47:27.0093 2340 IntelIde - ok
17:47:27.0109 2340 [ 3BB22519A194418D5FEC05D800A19AD0 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
17:47:27.0109 2340 ip6fw - ok
17:47:27.0140 2340 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:47:27.0140 2340 IpFilterDriver - ok
17:47:27.0171 2340 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:47:27.0171 2340 IpInIp - ok
17:47:27.0187 2340 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:47:27.0187 2340 IpNat - ok
17:47:27.0187 2340 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:47:27.0187 2340 IPSec - ok
17:47:27.0203 2340 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
17:47:27.0203 2340 IRENUM - ok
17:47:27.0234 2340 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:47:27.0234 2340 isapnp - ok
17:47:27.0265 2340 [ A5937B2A94424CF1B13A4AD503AF6B2E ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
17:47:27.0265 2340 JavaQuickStarterService - ok
17:47:27.0265 2340 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:47:27.0265 2340 Kbdclass - ok
17:47:27.0281 2340 [ 86C8F23616C6C6E5B2776901C17B945B ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
17:47:27.0281 2340 kbdhid - ok
17:47:27.0281 2340 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
17:47:27.0296 2340 kmixer - ok
17:47:27.0312 2340 [ 1705745D900DABF2D89F90EBADDC7517 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
17:47:27.0312 2340 KSecDD - ok
17:47:27.0328 2340 [ CDA416A81CEDCA675CC3316A0617A213 ] L1c C:\WINDOWS\system32\DRIVERS\l1c51x86.sys
17:47:27.0328 2340 L1c - ok
17:47:27.0343 2340 [ 21920AC69594AB021237054FA728FE46 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
17:47:27.0343 2340 lanmanserver - ok
17:47:27.0359 2340 [ 5190783F51A2D7A8495202C664D7C963 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
17:47:27.0359 2340 lanmanworkstation - ok
17:47:27.0359 2340 lbrtfdc - ok
17:47:27.0406 2340 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
17:47:27.0406 2340 LmHosts - ok
17:47:27.0437 2340 [ BA1347822D01B2D29C14CF09663A6457 ] LVRS C:\WINDOWS\system32\DRIVERS\lvrs.sys
17:47:27.0437 2340 LVRS - ok
17:47:27.0468 2340 [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
17:47:27.0468 2340 MBAMProtector - ok
17:47:27.0515 2340 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:47:27.0515 2340 MBAMScheduler - ok
17:47:27.0531 2340 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
17:47:27.0531 2340 MBAMService - ok
17:47:27.0562 2340 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
17:47:27.0562 2340 Messenger - ok
17:47:27.0593 2340 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
17:47:27.0593 2340 mnmdd - ok
17:47:27.0625 2340 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
17:47:27.0625 2340 mnmsrvc - ok
17:47:27.0640 2340 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
17:47:27.0640 2340 Modem - ok
17:47:27.0687 2340 [ C7D9F9717916B34C1B00DD4834AF485C ] Monfilt C:\WINDOWS\system32\drivers\Monfilt.sys
17:47:27.0687 2340 Monfilt - ok
17:47:27.0718 2340 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:47:27.0718 2340 Mouclass - ok
17:47:27.0750 2340 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:47:27.0750 2340 mouhid - ok
17:47:27.0750 2340 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
17:47:27.0750 2340 MountMgr - ok
17:47:27.0750 2340 mraid35x - ok
17:47:27.0765 2340 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:47:27.0765 2340 MRxDAV - ok
17:47:27.0765 2340 [ 68755F0FF16070178B54674FE5B847B0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:47:27.0765 2340 MRxSmb - ok
17:47:27.0796 2340 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\System32\msdtc.exe
17:47:27.0796 2340 MSDTC - ok
17:47:27.0812 2340 [ 1477849772712BAC69C144DCF2C9CE81 ] MSDV C:\WINDOWS\system32\DRIVERS\msdv.sys
17:47:27.0812 2340 MSDV - ok
17:47:27.0828 2340 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
17:47:27.0828 2340 Msfs - ok
17:47:27.0828 2340 MSIServer - ok
17:47:27.0843 2340 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:47:27.0843 2340 MSKSSRV - ok
17:47:27.0859 2340 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:47:27.0859 2340 MSPCLOCK - ok
17:47:27.0875 2340 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
17:47:27.0875 2340 MSPQM - ok
17:47:27.0890 2340 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:47:27.0890 2340 mssmbios - ok
17:47:27.0906 2340 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
17:47:27.0906 2340 MSTEE - ok
17:47:27.0921 2340 [ 2F625D11385B1A94360BFC70AAEFDEE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
17:47:27.0921 2340 Mup - ok
17:47:27.0937 2340 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
17:47:27.0937 2340 NABTSFEC - ok
17:47:27.0984 2340 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
17:47:27.0984 2340 napagent - ok
17:47:28.0000 2340 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
17:47:28.0000 2340 NDIS - ok
17:47:28.0015 2340 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
17:47:28.0015 2340 NdisIP - ok
17:47:28.0031 2340 [ 1AB3D00C991AB086E69DB84B6C0ED78F ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:47:28.0031 2340 NdisTapi - ok
17:47:28.0031 2340 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:47:28.0046 2340 Ndisuio - ok
17:47:28.0046 2340 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:47:28.0046 2340 NdisWan - ok
17:47:28.0062 2340 [ 6215023940CFD3702B46ABC304E1D45A ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
17:47:28.0062 2340 NDProxy - ok
17:47:28.0140 2340 [ C7F5C284B6F46FCAF6910EA4E644700B ] Nero BackItUp Scheduler 4.0 C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
17:47:28.0140 2340 Nero BackItUp Scheduler 4.0 - ok
17:47:28.0156 2340 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
17:47:28.0156 2340 NetBIOS - ok
17:47:28.0171 2340 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
17:47:28.0171 2340 NetBT - ok
17:47:28.0203 2340 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
17:47:28.0203 2340 NetDDE - ok
17:47:28.0203 2340 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
17:47:28.0203 2340 NetDDEdsdm - ok
17:47:28.0203 2340 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
17:47:28.0203 2340 Netlogon - ok
17:47:28.0218 2340 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
17:47:28.0218 2340 Netman - ok
17:47:28.0250 2340 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:47:28.0250 2340 NetTcpPortSharing - ok
17:47:28.0265 2340 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
17:47:28.0265 2340 NIC1394 - ok
17:47:28.0281 2340 [ AAC97DAB5F8A0573CF10E0EAC42A7724 ] Nla C:\WINDOWS\System32\mswsock.dll
17:47:28.0281 2340 Nla - ok
17:47:28.0296 2340 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
17:47:28.0296 2340 Npfs - ok
17:47:28.0312 2340 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
17:47:28.0312 2340 Ntfs - ok
17:47:28.0328 2340 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
17:47:28.0328 2340 NtLmSsp - ok
17:47:28.0343 2340 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
17:47:28.0343 2340 NtmsSvc - ok
17:47:28.0359 2340 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
17:47:28.0359 2340 Null - ok
17:47:28.0390 2340 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:47:28.0390 2340 NwlnkFlt - ok
17:47:28.0406 2340 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:47:28.0406 2340 NwlnkFwd - ok
17:47:28.0468 2340 [ 84DE1DD996B48B05ACE31AD015FA108A ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:47:28.0468 2340 odserv - ok
17:47:28.0468 2340 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
17:47:28.0468 2340 ohci1394 - ok
17:47:28.0500 2340 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:47:28.0500 2340 ose - ok
17:47:28.0515 2340 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\drivers\Parport.sys
17:47:28.0515 2340 Parport - ok
17:47:28.0531 2340 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
17:47:28.0531 2340 PartMgr - ok
17:47:28.0546 2340 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
17:47:28.0546 2340 ParVdm - ok
17:47:28.0578 2340 [ 175CC28DCF819F78CAA3FBD44AD9E52A ] pccsmcfd C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
17:47:28.0578 2340 pccsmcfd - ok
17:47:28.0593 2340 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
17:47:28.0593 2340 PCI - ok
17:47:28.0593 2340 PCIDump - ok
17:47:28.0609 2340 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
17:47:28.0609 2340 PCIIde - ok
17:47:28.0640 2340 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
17:47:28.0640 2340 Pcmcia - ok
17:47:28.0640 2340 PDCOMP - ok
17:47:28.0640 2340 PDFRAME - ok
17:47:28.0656 2340 PDRELI - ok
17:47:28.0656 2340 PDRFRAME - ok
17:47:28.0656 2340 perc2 - ok
17:47:28.0656 2340 perc2hib - ok
17:47:28.0687 2340 [ F0D2AE69035092BF22DAD6B50FAB85C2 ] PlugPlay C:\WINDOWS\system32\services.exe
17:47:28.0687 2340 PlugPlay - ok
17:47:28.0703 2340 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
17:47:28.0703 2340 PolicyAgent - ok
17:47:28.0718 2340 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:47:28.0718 2340 PptpMiniport - ok
17:47:28.0734 2340 [ 7EB15DCE4EC3A0220BD796A15C18186E ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
17:47:28.0734 2340 Processor - ok
17:47:28.0765 2340 [ 18D9789A4664BF417EEA944D2776091A ] prodrv06 C:\WINDOWS\System32\drivers\prodrv06.sys
17:47:28.0765 2340 prodrv06 - ok
17:47:28.0781 2340 [ 8CC9671A7ED2902E747EE0892E1C8575 ] prohlp02 C:\WINDOWS\system32\drivers\prohlp02.sys
17:47:28.0781 2340 prohlp02 - ok
17:47:28.0796 2340 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
17:47:28.0796 2340 ProtectedStorage - ok
17:47:28.0812 2340 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
17:47:28.0812 2340 PSched - ok
17:47:28.0843 2340 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:47:28.0843 2340 Ptilink - ok
17:47:28.0843 2340 ql1080 - ok
17:47:28.0843 2340 Ql10wnt - ok
17:47:28.0843 2340 ql12160 - ok
17:47:28.0859 2340 ql1240 - ok
17:47:28.0859 2340 ql1280 - ok
17:47:28.0859 2340 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:47:28.0859 2340 RasAcd - ok
17:47:28.0890 2340 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
17:47:28.0890 2340 RasAuto - ok
17:47:28.0906 2340 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:47:28.0906 2340 Rasl2tp - ok
17:47:28.0937 2340 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
17:47:28.0937 2340 RasMan - ok
17:47:28.0953 2340 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:47:28.0953 2340 RasPppoe - ok
17:47:28.0953 2340 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
17:47:28.0953 2340 Raspti - ok
17:47:28.0984 2340 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:47:28.0984 2340 Rdbss - ok
17:47:28.0984 2340 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:47:28.0984 2340 RDPCDD - ok
17:47:29.0000 2340 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
17:47:29.0000 2340 rdpdr - ok
17:47:29.0015 2340 [ 6728E45B66F93C08F11DE2E316FC70DD ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
17:47:29.0015 2340 RDPWD - ok
17:47:29.0031 2340 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
17:47:29.0031 2340 RDSessMgr - ok
17:47:29.0046 2340 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
17:47:29.0046 2340 redbook - ok
17:47:29.0046 2340 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
17:47:29.0046 2340 RemoteAccess - ok
17:47:29.0078 2340 [ 8F31505484A190D5B22274708799F4EC ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
17:47:29.0078 2340 RemoteRegistry - ok
17:47:29.0078 2340 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\System32\locator.exe
17:47:29.0078 2340 RpcLocator - ok
17:47:29.0093 2340 [ C868F3AE15CF71A93F2AA3A32856D839 ] RpcSs C:\WINDOWS\System32\rpcss.dll
17:47:29.0093 2340 RpcSs - ok
17:47:29.0125 2340 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\System32\rsvp.exe
17:47:29.0125 2340 RSVP - ok
17:47:29.0156 2340 [ ACD10C56E4455F203707A679040C3B61 ] RTL8192su C:\WINDOWS\system32\DRIVERS\RTL8192su.sys
17:47:29.0171 2340 RTL8192su - ok
17:47:29.0171 2340 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
17:47:29.0171 2340 SamSs - ok
17:47:29.0171 2340 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
17:47:29.0187 2340 SCardSvr - ok
17:47:29.0218 2340 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
17:47:29.0218 2340 Schedule - ok
17:47:29.0234 2340 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:47:29.0234 2340 Secdrv - ok
17:47:29.0250 2340 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
17:47:29.0250 2340 seclogon - ok
17:47:29.0250 2340 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
17:47:29.0250 2340 SENS - ok
17:47:29.0265 2340 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
17:47:29.0265 2340 serenum - ok
17:47:29.0265 2340 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
17:47:29.0265 2340 Serial - ok
17:47:29.0312 2340 [ 9D38320BB32230349379DF5DDBBF7FCE ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
17:47:29.0312 2340 ServiceLayer - ok
17:47:29.0359 2340 [ 462AEE0EA0481EA8BD45CAC876A4CCC4 ] sfhlp01 C:\WINDOWS\system32\drivers\sfhlp01.sys
17:47:29.0359 2340 sfhlp01 - ok
17:47:29.0375 2340 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
17:47:29.0375 2340 Sfloppy - ok
17:47:29.0406 2340 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
17:47:29.0406 2340 SharedAccess - ok
17:47:29.0421 2340 [ B927443008910B412BEC72FC41C1BAD0 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
17:47:29.0421 2340 ShellHWDetection - ok
17:47:29.0421 2340 Simbad - ok
17:47:29.0453 2340 [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
17:47:29.0453 2340 SkypeUpdate - ok
17:47:29.0468 2340 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
17:47:29.0468 2340 SLIP - ok
17:47:29.0546 2340 [ 3A4F2C0BB87A0895ABEBA341AA1E341B ] Sony PC Companion C:\Program Files\Sony\Sony PC Companion\PCCService.exe
17:47:29.0546 2340 Sony PC Companion - ok
17:47:29.0546 2340 Sparrow - ok
17:47:29.0578 2340 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
17:47:29.0578 2340 splitter - ok
17:47:29.0609 2340 [ CB1090BCA0E7B40D0B5B4E4D66531809 ] Spooler C:\WINDOWS\system32\spoolsv.exe
17:47:29.0609 2340 Spooler - ok
17:47:29.0625 2340 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
17:47:29.0625 2340 sr - ok
17:47:29.0625 2340 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
17:47:29.0640 2340 srservice - ok
17:47:29.0640 2340 [ 5252605079810904E31C332E241CD59B ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
17:47:29.0640 2340 Srv - ok
17:47:29.0656 2340 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
17:47:29.0656 2340 SSDPSRV - ok
17:47:29.0687 2340 [ D2C02234E3E87EA5FE420F045068099B ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
17:47:29.0687 2340 ssudmdm - ok
17:47:29.0703 2340 [ 54946449A0EB74915A4BB34F7EE51A5A ] ss_bus C:\WINDOWS\system32\DRIVERS\ss_bus.sys
17:47:29.0703 2340 ss_bus - ok
17:47:29.0734 2340 [ 4450BC0B2E9D7D9B90E3C3DE4EA00A78 ] ss_mdfl C:\WINDOWS\system32\DRIVERS\ss_mdfl.sys
17:47:29.0734 2340 ss_mdfl - ok
17:47:29.0750 2340 [ 30B8D0DD01EAD1243F329CAF7D7D1517 ] ss_mdm C:\WINDOWS\system32\DRIVERS\ss_mdm.sys
17:47:29.0750 2340 ss_mdm - ok
17:47:29.0781 2340 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
17:47:29.0781 2340 stisvc - ok
17:47:29.0796 2340 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
17:47:29.0796 2340 streamip - ok
17:47:29.0812 2340 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
17:47:29.0812 2340 swenum - ok
17:47:29.0890 2340 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
17:47:29.0890 2340 SwitchBoard - ok
17:47:29.0890 2340 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
17:47:29.0890 2340 swmidi - ok
17:47:29.0906 2340 SwPrv - ok
17:47:29.0906 2340 symc810 - ok
17:47:29.0906 2340 symc8xx - ok
17:47:29.0921 2340 sym_hi - ok
17:47:29.0921 2340 sym_u3 - ok
17:47:29.0953 2340 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
17:47:29.0953 2340 sysaudio - ok
17:47:29.0968 2340 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
17:47:29.0968 2340 SysmonLog - ok
17:47:29.0984 2340 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
17:47:30.0000 2340 TapiSrv - ok
17:47:30.0000 2340 [ 93EA8D04EC73A85DB02EB8805988F733 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:47:30.0000 2340 Tcpip - ok
17:47:30.0031 2340 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
17:47:30.0031 2340 TDPIPE - ok
17:47:30.0031 2340 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
17:47:30.0031 2340 TDTCP - ok
17:47:30.0140 2340 [ F67C21CC4195F6AFC447418FE163E156 ] TeamViewer8 C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
17:47:30.0171 2340 TeamViewer8 - ok
17:47:30.0171 2340 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
17:47:30.0171 2340 TermDD - ok
17:47:30.0203 2340 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
17:47:30.0218 2340 TermService - ok
17:47:30.0218 2340 [ B927443008910B412BEC72FC41C1BAD0 ] Themes C:\WINDOWS\System32\shsvcs.dll
17:47:30.0234 2340 Themes - ok
17:47:30.0250 2340 [ B0B3122BFF3910E0BA97014045467778 ] tifsfilter C:\WINDOWS\system32\DRIVERS\tifsfilt.sys
17:47:30.0250 2340 tifsfilter - ok
17:47:30.0250 2340 [ 13BFE330880AC0CE8672D00AA5AFF738 ] timounter C:\WINDOWS\system32\DRIVERS\timntr.sys
17:47:30.0250 2340 timounter - ok
17:47:30.0281 2340 [ CD0CC7B167D78043A41C98D4921EFB54 ] TlntSvr C:\WINDOWS\System32\tlntsvr.exe
17:47:30.0281 2340 TlntSvr - ok
17:47:30.0296 2340 TosIde - ok
17:47:30.0312 2340 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
17:47:30.0312 2340 TrkWks - ok
17:47:30.0343 2340 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
17:47:30.0343 2340 Udfs - ok
17:47:30.0343 2340 ultra - ok
17:47:30.0359 2340 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
17:47:30.0359 2340 Update - ok
17:47:30.0375 2340 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
17:47:30.0390 2340 upnphost - ok
17:47:30.0390 2340 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
17:47:30.0390 2340 UPS - ok
17:47:30.0421 2340 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
17:47:30.0421 2340 usbaudio - ok
17:47:30.0453 2340 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:47:30.0453 2340 usbccgp - ok
17:47:30.0453 2340 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:47:30.0453 2340 usbehci - ok
17:47:30.0484 2340 [ E5B14557793164DB879EE56F5B59C3E2 ] usbfilter C:\WINDOWS\system32\DRIVERS\usbfilter.sys
17:47:30.0484 2340 usbfilter - ok
17:47:30.0500 2340 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:47:30.0500 2340 usbhub - ok
17:47:30.0500 2340 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
17:47:30.0500 2340 usbohci - ok
17:47:30.0500 2340 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
17:47:30.0500 2340 usbprint - ok
17:47:30.0515 2340 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
17:47:30.0515 2340 usbscan - ok
17:47:30.0531 2340 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:47:30.0531 2340 USBSTOR - ok
17:47:30.0546 2340 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:47:30.0546 2340 usbuhci - ok
17:47:30.0562 2340 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
17:47:30.0562 2340 usbvideo - ok
17:47:30.0562 2340 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
17:47:30.0562 2340 VgaSave - ok
17:47:30.0562 2340 ViaIde - ok
17:47:30.0593 2340 [ E31E9CD40677B84B3ADAA7A0D80DC439 ] vidsflt53 C:\WINDOWS\system32\DRIVERS\vsflt53.sys
17:47:30.0593 2340 vidsflt53 - ok
17:47:30.0593 2340 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
17:47:30.0593 2340 VolSnap - ok
17:47:30.0625 2340 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
17:47:30.0625 2340 VSS - ok
17:47:30.0640 2340 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
17:47:30.0640 2340 W32Time - ok
17:47:30.0671 2340 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:47:30.0671 2340 Wanarp - ok
17:47:30.0703 2340 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
17:47:30.0703 2340 Wdf01000 - ok
17:47:30.0703 2340 WDICA - ok
17:47:30.0718 2340 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
17:47:30.0718 2340 wdmaud - ok
17:47:30.0734 2340 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
17:47:30.0734 2340 WebClient - ok
17:47:30.0750 2340 WinDefend - ok
17:47:30.0796 2340 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
17:47:30.0796 2340 winmgmt - ok
17:47:30.0843 2340 [ FD600B032E741EB6AAB509FC630F7C42 ] WinUSB C:\WINDOWS\system32\DRIVERS\WinUSB.sys
17:47:30.0843 2340 WinUSB - ok
17:47:30.0859 2340 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
17:47:30.0875 2340 WmdmPmSN - ok
17:47:30.0906 2340 [ 6538D6BDE04B56737FE743C24D4CE83D ] Wmi C:\WINDOWS\System32\advapi32.dll
17:47:30.0906 2340 Wmi - ok
17:47:30.0921 2340 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
17:47:30.0921 2340 WmiAcpi - ok
17:47:30.0937 2340 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
17:47:30.0937 2340 WmiApSrv - ok
17:47:30.0968 2340 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
17:47:30.0968 2340 WpdUsb - ok
17:47:31.0015 2340 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
17:47:31.0031 2340 WPFFontCache_v0400 - ok
17:47:31.0046 2340 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
17:47:31.0046 2340 WS2IFSL - ok
17:47:31.0078 2340 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
17:47:31.0078 2340 wscsvc - ok
17:47:31.0093 2340 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
17:47:31.0093 2340 WSTCODEC - ok
17:47:31.0109 2340 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
17:47:31.0109 2340 wuauserv - ok
17:47:31.0125 2340 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
17:47:31.0125 2340 WudfPf - ok
17:47:31.0140 2340 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
17:47:31.0140 2340 WudfRd - ok
17:47:31.0171 2340 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
17:47:31.0171 2340 WudfSvc - ok
17:47:31.0203 2340 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
17:47:31.0203 2340 WZCSVC - ok
17:47:31.0234 2340 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
17:47:31.0234 2340 xmlprov - ok
17:47:31.0234 2340 zgwhsmdm - ok
17:47:31.0250 2340 ================ Scan global ===============================
17:47:31.0281 2340 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
17:47:31.0312 2340 [ 77A41C497ADB0C96D1E8DF6F71D843C0 ] C:\WINDOWS\system32\winsrv.dll
17:47:31.0312 2340 [ 77A41C497ADB0C96D1E8DF6F71D843C0 ] C:\WINDOWS\system32\winsrv.dll
17:47:31.0328 2340 [ F0D2AE69035092BF22DAD6B50FAB85C2 ] C:\WINDOWS\system32\services.exe
17:47:31.0328 2340 [Global] - ok
17:47:31.0328 2340 ================ Scan MBR ==================================
17:47:31.0343 2340 [ 41EF8618353D073CC2CA9050B025E436 ] \Device\Harddisk0\DR0
17:47:31.0500 2340 \Device\Harddisk0\DR0 - ok
17:47:31.0500 2340 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk1\DR1
17:47:31.0515 2340 \Device\Harddisk1\DR1 - ok
17:47:31.0546 2340 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk2\DR5
17:47:31.0546 2340 \Device\Harddisk2\DR5 - ok
17:47:31.0546 2340 ================ Scan VBR ==================================
17:47:31.0546 2340 [ 1B6D36B4DC36FB518ADA9E244D895BA5 ] \Device\Harddisk0\DR0\Partition1
17:47:31.0562 2340 \Device\Harddisk0\DR0\Partition1 - ok
17:47:31.0562 2340 [ 3A359F6732FF0E53214614E4D90E63A9 ] \Device\Harddisk0\DR0\Partition2
17:47:31.0578 2340 \Device\Harddisk0\DR0\Partition2 - ok
17:47:31.0578 2340 [ B42B96553E262DB6FE086658088F2FE4 ] \Device\Harddisk1\DR1\Partition1
17:47:31.0578 2340 \Device\Harddisk1\DR1\Partition1 - ok
17:47:31.0578 2340 [ 056B53D1006AC74569E2B887ABD2706F ] \Device\Harddisk2\DR5\Partition1
17:47:31.0578 2340 \Device\Harddisk2\DR5\Partition1 - ok
17:47:31.0578 2340 ============================================================
17:47:31.0578 2340 Scan finished
17:47:31.0578 2340 ============================================================
17:47:31.0593 3528 Detected object count: 0
17:47:31.0593 3528 Actual detected object count: 0
17:47:40.0390 2716 Deinitialize success

Reklama

Příspěvekod **jaro3** » 28 bře 2014 09:14

Eset je náročnější na prostředky. Zkus Aviru .

Jinak vše OK?

LaB · Příspěvekod **LaB** » 28 bře 2014 09:49

Tu samou sw konfiguraci mám na letitým notebooku a všechno jede jak má. Podle mě musí být v Esetu nějaký nastavení, kde se zapíná a vypíná blokování externích disků. Všude jsem se dočetl, že teková funkce existuje a v Esetu jsem ji nikde nenašel... Taky by nebyl rozdíl v tom, jestli disk připojím před a nebo po zapnutí počítače.
Jinak všechno šlape jak má.

Příspěvekod **jaro3** » 28 bře 2014 18:54

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

LaB · Příspěvekod **LaB** » 30 bře 2014 10:37

V normálním režimu se před mazáním souborů restartoval PC, v nouzáku mi nešel vypnoput eset, přesto CF proběhl. Tady je log:

ComboFix 14-03-24.01 - Bisovi 30.03.2014 10:27:08.12.2 - x86 NETWORK
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2813.2380 [GMT 2:00]
Spuštěný z: c:\documents and settings\Bisovi\Plocha\ComboFix.exe
AV: ESET Smart Security 7.0 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET Personální firewall *Enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Bisovi\WINDOWS
c:\windows\unin0405.exe
c:\windows\winhelp.ini
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-02-28 do 2014-03-30 )))))))))))))))))))))))))))))))
.
.
2014-03-27 16:03 . 2014-03-27 16:03 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ESET
2014-03-26 18:13 . 2014-03-26 18:16 -------- d-----w- C:\AdwCleaner
2014-03-26 17:48 . 2014-03-26 17:48 388096 ----a-r- c:\documents and settings\Bisovi\Data aplikací\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2014-03-26 17:48 . 2014-03-26 17:48 -------- d-----w- c:\program files\Trend Micro
2014-03-23 09:39 . 2014-03-23 09:39 282624 ----a-r- c:\windows\Setup1.exe
2014-03-23 09:39 . 2014-03-23 09:39 73216 ----a-w- c:\windows\ST6UNST.EXE
2014-03-23 09:39 . 2014-03-23 09:39 102400 ----a-w- c:\windows\system32\VB6STKIT.DLL
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-03-12 17:11 . 2012-04-02 17:55 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-03-12 17:11 . 2012-04-02 17:55 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-02-03 14:44 . 2012-12-22 17:43 53248 ----a-w- c:\windows\unrar.dll
2013-12-07 18:04 . 2013-12-07 18:02 320165969 ----a-w- c:\program files\akce_mcl_setup2.exe
2013-11-19 15:04 . 2013-11-03 09:08 1050512 ----a-w- c:\program files\UnityWebPlayer.exe
2013-10-14 16:47 . 2013-10-14 16:46 154854552 ----a-w- c:\program files\HF Designer.exe
2013-10-14 16:07 . 2013-10-14 16:07 41036428 ----a-w- c:\program files\HF-Expres.exe
2013-10-14 16:06 . 2013-10-14 16:07 913832 ----a-w- c:\program files\jxpiinstall.exe
2012-06-06 17:22 . 2012-06-06 18:00 388608 ----a-w- c:\program files\HijackThis.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-04-06 102400]
"RTHDCPL"="RTHDCPL.EXE" [2011-08-09 20055144]
"HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb07.exe" [2002-11-05 188416]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2013-06-13 472984]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"ISUSPM Startup"="c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2005-08-11 249856]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2012-10-25 421888]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2013-09-12 5110672]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
REALTEK 11n USB Wireless LAN Utility.lnk - c:\program files\Realtek\11n USB Wireless LAN Utility\RtWLan.exe /H [2012-6-9 937984]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\startupfolder\C:^Documents and Settings^Bisovi^Nabídka Start^Programy^Po spuštění^Lingea Update Center.lnk]
path=c:\documents and settings\Bisovi\Nabídka Start\Programy\Po spuštění\Lingea Update Center.lnk
backup=c:\windows\pss\Lingea Update Center.lnkStartup
.
[HKLM\~\startupfolder\C:^Documents and Settings^Bisovi^Nabídka Start^Programy^Po spuštění^Logitech . Registrace produktu.lnk]
path=c:\documents and settings\Bisovi\Nabídka Start\Programy\Po spuštění\Logitech . Registrace produktu.lnk
backup=c:\windows\pss\Logitech . Registrace produktu.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
2013-05-08 01:17 642664 ----a-w- c:\program files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher]
2013-05-08 12:14 44128 ----a-w- c:\program files\Adobe\Acrobat 9.0\Acrobat\acrobat_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2013-04-04 21:06 958576 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager]
2011-01-12 05:08 1523360 ----a-w- c:\program files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LWS]
2012-09-12 22:38 204136 ----a-w- c:\program files\Logitech\LWS\Webcam Software\LWS.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware]
2013-04-04 12:50 532040 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2012-10-25 02:12 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2013-04-19 13:19 18678376 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"mnmsrvc"=3 (0x3)
"AdobeFlashPlayerUpdateSvc"=3 (0x3)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Realtek\\11n USB Wireless LAN Utility\\RtWLan.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\WINDOWS\\system32\\muzapp.exe"=
"c:\\Program Files\\TeamViewer\\Version8\\TeamViewer.exe"=
"c:\\Program Files\\TeamViewer\\Version8\\TeamViewer_Service.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1542:TCP"= 1542:TCP:Realtek WPS TCP Prot
"1542:UDP"= 1542:UDP:Realtek WPS UDP Prot
"53:UDP"= 53:UDP:Realtek AP UDP Prot
.
R0 fltsrv;Acronis Storage Filter Management;c:\windows\system32\drivers\fltsrv.sys [10.4.2012 17:39 76768]
R0 vidsflt53;Acronis Disk Storage Filter (53);c:\windows\system32\drivers\vsflt53.sys [11.4.2012 15:33 83392]
R3 L1c;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\l1c51x86.sys [2.4.2012 17:39 75504]
R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\drivers\RTL8192su.sys [9.6.2012 10:21 602912]
R3 usbfilter;AMD USB Filter Driver;c:\windows\system32\drivers\usbfilter.sys [2.4.2012 18:18 30392]
S1 AppleCharger;AppleCharger;c:\windows\system32\drivers\AppleCharger.sys [2.4.2012 17:29 18544]
S1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [20.8.2013 12:50 134248]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x32.sys [25.4.2012 19:33 24328]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [12.9.2013 13:06 1337752]
S2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [16.10.2012 18:43 233472]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [3.4.2012 18:32 701512]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [28.2.2013 18:45 161384]
S2 TeamViewer8;TeamViewer 8;c:\program files\TeamViewer\Version8\TeamViewer_Service.exe [28.12.2013 18:22 5087584]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2.4.2012 18:44 1691480]
S3 AR9271;Wireless Network Adapter Service;c:\windows\system32\drivers\athuw.sys [14.5.2012 18:30 1714176]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\drivers\ssudbus.sys [8.10.2013 17:42 84248]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys --> c:\windows\system32\drivers\dgderdrv.sys [?]
S3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [10.4.2012 16:04 8704]
S3 etdrv;etdrv;c:\windows\etdrv.sys [2.4.2012 18:54 17488]
S3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [10.4.2012 16:04 3072]
S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [16.10.2012 18:43 37344]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [3.4.2012 18:32 22856]
S3 Sony PC Companion;Sony PC Companion;c:\program files\Sony\Sony PC Companion\PCCService.exe [6.7.2013 9:55 155824]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\drivers\ssudmdm.sys [8.10.2013 17:42 181912]
S3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [19.2.2010 13:37 517096]
S3 WinDefend;Windows Defender;c:\windows\System32\svchost.exe -k secsvcs [25.10.2001 14:00 14336]
S3 zgwhsmdm;ZTE WCDMA Handset USB Modem;c:\windows\system32\DRIVERS\zgwhsmdm.sys --> c:\windows\system32\DRIVERS\zgwhsmdm.sys [?]
.
Obsah adresáře 'Naplánované úlohy'
.
2014-03-30 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-02 17:11]
.
2012-06-19 c:\windows\Tasks\AdobeAAMUpdater-1.0-BISOVI-F7MOOQ1M-Bisovi.job
- c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [2013-06-13 12:28]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.idnes.cz/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Převést cíl vazby do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Převést do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Připojit cíl vazby k existujícímu PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Připojit k existujícímu PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
TCP: DhcpNameServer = 192.168.0.1
TCP: Interfaces\{D25446CA-C0F1-4978-AAFA-8BE11186FF5B}: NameServer = 89.111.106.2,89.111.107.249
DPF: {1F831FA2-42FC-11D4-95A6-0080AD30DCE1} - file:///C:/Program%20Files/AutoCAD%202002%20Cz/InstFred.ocx
DPF: {AE563723-B4F5-11D4-A415-00108302FDFD} - file:///C:/Program%20Files/AutoCAD%202002%20Cz/InstBanr.ocx
FF - ProfilePath - c:\documents and settings\Bisovi\Data aplikací\Mozilla\Firefox\Profiles\okm78hap.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
.
.
------- Asociace souborů -------
.
.scr=AutoCADScriptFile
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
MSConfigStartUp-AutoStartNPSAgent - c:\program files\Samsung\Samsung New PC Studio\NPSAgent.exe
MSConfigStartUp-BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} - c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe
AddRemove-MSP614 - c:\windows\unin0405.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-03-30 10:31
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1547161642-117609710-839522115-1003\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_12_0_0_77_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_12_0_0_77_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1196)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
Celkový čas: 2014-03-30 10:32:48
ComboFix-quarantined-files.txt 2014-03-30 08:32
.
Před spuštěním: Volných bajtů: 33 207 595 008
Po spuštění: Volných bajtů: 33 195 036 672
.
- - End Of File - - E23D31B4DC34CFF554BE1BF46BA1A4D8
41EF8618353D073CC2CA9050B025E436

Příspěvekod **memphisto** » 30 bře 2014 16:36

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::
Driver::
cpuz135
SkypeUpdate
dgderdrv
zgwhsmdm

File::
c:\windows\system32\drivers\cpuz135_x32.sys
c:\windows\system32\drivers\dgderdrv.sys
c:\windows\system32\DRIVERS\zgwhsmdm.sys

Folder::
c:\program files\Skype\Updater

RegLock::
[HKEY_USERS\S-1-5-21-1547161642-117609710-839522115-1003\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_12_0_0_77_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_12_0_0_77_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upus.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu

LaB · Příspěvekod **LaB** » 30 bře 2014 20:55

ComboFix 14-03-24.01 - Bisovi 30.03.2014 20:46:23.14.2 - x86 NETWORK
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2813.2375 [GMT 2:00]
Spuštěný z: c:\documents and settings\Bisovi\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Bisovi\Plocha\CFScript.txt
AV: ESET Smart Security 7.0 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET Personální firewall *Enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
.
FILE ::
"c:\windows\system32\drivers\cpuz135_x32.sys"
"c:\windows\system32\drivers\dgderdrv.sys"
"c:\windows\system32\DRIVERS\zgwhsmdm.sys"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Předchozí spuštění -------
.
c:\program files\Skype\Updater\Updater.dll
c:\program files\Skype\Updater\Updater.exe
c:\windows\system32\drivers\cpuz135_x32.sys
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_CPUZ135
-------\Legacy_DGDERDRV
-------\Legacy_SKYPEUPDATE
-------\Service_cpuz135
-------\Service_dgderdrv
-------\Service_SkypeUpdate
-------\Service_zgwhsmdm
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-02-28 do 2014-03-30 )))))))))))))))))))))))))))))))
.
.
2014-03-27 16:03 . 2014-03-27 16:03 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ESET
2014-03-26 18:13 . 2014-03-26 18:16 -------- d-----w- C:\AdwCleaner
2014-03-26 17:48 . 2014-03-26 17:48 388096 ----a-r- c:\documents and settings\Bisovi\Data aplikací\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2014-03-26 17:48 . 2014-03-26 17:48 -------- d-----w- c:\program files\Trend Micro
2014-03-23 09:39 . 2014-03-23 09:39 282624 ----a-r- c:\windows\Setup1.exe
2014-03-23 09:39 . 2014-03-23 09:39 73216 ----a-w- c:\windows\ST6UNST.EXE
2014-03-23 09:39 . 2014-03-23 09:39 102400 ----a-w- c:\windows\system32\VB6STKIT.DLL
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-03-12 17:11 . 2012-04-02 17:55 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-03-12 17:11 . 2012-04-02 17:55 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-02-03 14:44 . 2012-12-22 17:43 53248 ----a-w- c:\windows\unrar.dll
2013-12-07 18:04 . 2013-12-07 18:02 320165969 ----a-w- c:\program files\akce_mcl_setup2.exe
2013-11-19 15:04 . 2013-11-03 09:08 1050512 ----a-w- c:\program files\UnityWebPlayer.exe
2013-10-14 16:47 . 2013-10-14 16:46 154854552 ----a-w- c:\program files\HF Designer.exe
2013-10-14 16:07 . 2013-10-14 16:07 41036428 ----a-w- c:\program files\HF-Expres.exe
2013-10-14 16:06 . 2013-10-14 16:07 913832 ----a-w- c:\program files\jxpiinstall.exe
2012-06-06 17:22 . 2012-06-06 18:00 388608 ----a-w- c:\program files\HijackThis.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-04-06 102400]
"RTHDCPL"="RTHDCPL.EXE" [2011-08-09 20055144]
"HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb07.exe" [2002-11-05 188416]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2013-06-13 472984]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"ISUSPM Startup"="c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2005-08-11 249856]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2012-10-25 421888]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2013-09-12 5110672]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
REALTEK 11n USB Wireless LAN Utility.lnk - c:\program files\Realtek\11n USB Wireless LAN Utility\RtWLan.exe /H [2012-6-9 937984]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\startupfolder\C:^Documents and Settings^Bisovi^Nabídka Start^Programy^Po spuštění^Lingea Update Center.lnk]
path=c:\documents and settings\Bisovi\Nabídka Start\Programy\Po spuštění\Lingea Update Center.lnk
backup=c:\windows\pss\Lingea Update Center.lnkStartup
.
[HKLM\~\startupfolder\C:^Documents and Settings^Bisovi^Nabídka Start^Programy^Po spuštění^Logitech . Registrace produktu.lnk]
path=c:\documents and settings\Bisovi\Nabídka Start\Programy\Po spuštění\Logitech . Registrace produktu.lnk
backup=c:\windows\pss\Logitech . Registrace produktu.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
2013-05-08 01:17 642664 ----a-w- c:\program files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher]
2013-05-08 12:14 44128 ----a-w- c:\program files\Adobe\Acrobat 9.0\Acrobat\acrobat_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2013-04-04 21:06 958576 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager]
2011-01-12 05:08 1523360 ----a-w- c:\program files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LWS]
2012-09-12 22:38 204136 ----a-w- c:\program files\Logitech\LWS\Webcam Software\LWS.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware]
2013-04-04 12:50 532040 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2012-10-25 02:12 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2013-04-19 13:19 18678376 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"mnmsrvc"=3 (0x3)
"AdobeFlashPlayerUpdateSvc"=3 (0x3)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Realtek\\11n USB Wireless LAN Utility\\RtWLan.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\WINDOWS\\system32\\muzapp.exe"=
"c:\\Program Files\\TeamViewer\\Version8\\TeamViewer.exe"=
"c:\\Program Files\\TeamViewer\\Version8\\TeamViewer_Service.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1542:TCP"= 1542:TCP:Realtek WPS TCP Prot
"1542:UDP"= 1542:UDP:Realtek WPS UDP Prot
"53:UDP"= 53:UDP:Realtek AP UDP Prot
.
R0 fltsrv;Acronis Storage Filter Management;c:\windows\system32\drivers\fltsrv.sys [10.4.2012 17:39 76768]
R0 vidsflt53;Acronis Disk Storage Filter (53);c:\windows\system32\drivers\vsflt53.sys [11.4.2012 15:33 83392]
R3 L1c;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\l1c51x86.sys [2.4.2012 17:39 75504]
R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\drivers\RTL8192su.sys [9.6.2012 10:21 602912]
R3 usbfilter;AMD USB Filter Driver;c:\windows\system32\drivers\usbfilter.sys [2.4.2012 18:18 30392]
S1 AppleCharger;AppleCharger;c:\windows\system32\drivers\AppleCharger.sys [2.4.2012 17:29 18544]
S1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [20.8.2013 12:50 134248]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [12.9.2013 13:06 1337752]
S2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [16.10.2012 18:43 233472]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [3.4.2012 18:32 701512]
S2 TeamViewer8;TeamViewer 8;c:\program files\TeamViewer\Version8\TeamViewer_Service.exe [28.12.2013 18:22 5087584]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2.4.2012 18:44 1691480]
S3 AR9271;Wireless Network Adapter Service;c:\windows\system32\drivers\athuw.sys [14.5.2012 18:30 1714176]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\drivers\ssudbus.sys [8.10.2013 17:42 84248]
S3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [10.4.2012 16:04 8704]
S3 etdrv;etdrv;c:\windows\etdrv.sys [2.4.2012 18:54 17488]
S3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [10.4.2012 16:04 3072]
S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [16.10.2012 18:43 37344]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [3.4.2012 18:32 22856]
S3 Sony PC Companion;Sony PC Companion;c:\program files\Sony\Sony PC Companion\PCCService.exe [6.7.2013 9:55 155824]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\drivers\ssudmdm.sys [8.10.2013 17:42 181912]
S3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [19.2.2010 13:37 517096]
S3 WinDefend;Windows Defender;c:\windows\System32\svchost.exe -k secsvcs [25.10.2001 14:00 14336]
.
Obsah adresáře 'Naplánované úlohy'
.
2014-03-30 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-02 17:11]
.
2012-06-19 c:\windows\Tasks\AdobeAAMUpdater-1.0-BISOVI-F7MOOQ1M-Bisovi.job
- c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [2013-06-13 12:28]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.idnes.cz/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Převést cíl vazby do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Převést do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Připojit cíl vazby k existujícímu PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Připojit k existujícímu PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
TCP: DhcpNameServer = 192.168.0.1
TCP: Interfaces\{D25446CA-C0F1-4978-AAFA-8BE11186FF5B}: NameServer = 89.111.106.2,89.111.107.249
DPF: {1F831FA2-42FC-11D4-95A6-0080AD30DCE1} - file:///C:/Program%20Files/AutoCAD%202002%20Cz/InstFred.ocx
DPF: {AE563723-B4F5-11D4-A415-00108302FDFD} - file:///C:/Program%20Files/AutoCAD%202002%20Cz/InstBanr.ocx
FF - ProfilePath - c:\documents and settings\Bisovi\Data aplikací\Mozilla\Firefox\Profiles\okm78hap.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-03-30 20:51
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1547161642-117609710-839522115-1003\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1204)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
- - - - - - - > 'explorer.exe'(324)
c:\windows\system32\ieframe.dll
c:\windows\system32\msi.dll
.
Celkový čas: 2014-03-30 20:54:25 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-03-30 18:54
ComboFix2.txt 2014-03-30 08:32
.
Před spuštěním: Volných bajtů: 33 148 477 440
Po spuštění: Volných bajtů: 33 138 225 152
.
- - End Of File - - 1EE19EC0E45681E83475600E9E538C65
41EF8618353D073CC2CA9050B025E436

LaB · Příspěvekod **LaB** » 30 bře 2014 21:00

Je zajímavý, že v nouzovým režimu externí disk připojit jde a normálně funguje...

Příspěvekod **jaro3** » 31 bře 2014 09:39

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

Vlož nový log z HJT

Co máš za PC? Možná už na ten antivir nestačí.

Při nouz. režimu není zapnuto hafo programů , takže to tolik nezatěžuje CPU a RAM.

LaB · Příspěvekod **LaB** » 31 bře 2014 10:12

Udělám odpoledne...
Konfiguraci teď z hlavy dohromady nedám, ale je to běžnej kancelářskej PC s dvoujádrem AMD, 4GB Ram a všechno statní funguje naprosto v pořádku. Problém nastane jen když strčím do USB přenosný HD. Ty samý programy i s Esetem jedou na mnohem starším notebooku s Celeronem M s 1,5 GB RAM a externí disky taky šlapou.

Edit: Tady je konfigurace:

Win XP SP3
Základní deska Gigabyte 880GM-USB3 880G AM3+, DDR3, SATA2, VGA, DVI, HDMI, GLAN, USB3.0, PCIE2.0 mATX
Procesor AMD Athlon II X2 260 (3.2GHz, 2MB, AM3, 65W) Box
Paměť DIMM DDR3 4096MB 1333 TRANSCEND CL9 JetRam
Grafická karta Integrovaná
Zvuková karta Integrovaná
Case Eurocase MIDITOWER ML5435 (BLACK/SILVER) 400W FORTRON ATX

LaB · Příspěvekod **LaB** » 31 bře 2014 16:58

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:57:15, on 31.3.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Realtek\11n USB Wireless LAN Utility\RtWLan.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.idnes.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: REALTEK 11n USB Wireless LAN Utility.lnk = C:\Program Files\Realtek\11n USB Wireless LAN Utility\RtWLan.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Převést do Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Připojit cíl vazby k existujícímu PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Připojit k existujícímu PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1F831FA2-42FC-11D4-95A6-0080AD30DCE1} (InstaFred) - file:///C:/Program%20Files/AutoCAD%202002%20Cz/InstFred.ocx
O16 - DPF: {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} (Ovládací prvek AcDcToday) - file:///C:/Program%20Files/AutoCAD%202002%20Cz/AcDcToday.ocx
O16 - DPF: {AE563723-B4F5-11D4-A415-00108302FDFD} (NOXLATE-BANR) - file:///C:/Program%20Files/AutoCAD%202002%20Cz/InstBanr.ocx
O16 - DPF: {F281A59C-7B65-11D3-8617-0010830243BD} (Prvek AcPreview) - file:///C:/Program%20Files/AutoCAD%202002%20Cz/AcPreview.ocx
O17 - HKLM\System\CCS\Services\Tcpip\..\{D25446CA-C0F1-4978-AAFA-8BE11186FF5B}: NameServer = 89.111.106.2,89.111.107.249
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files\Sony\Sony PC Companion\PCCService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe

--
End of file - 7601 bytes

Příspěvekod **jaro3** » 01 dub 2014 09:33

Na Tvé konfiguraci by s Esetem problém být neměl , máš nainstalované ovladače pro USB?

Prosím o kontrolu logu HJT - viz odkaz Vyřešeno

Re: Prosím o kontrolu logu HJT - viz odkaz

Re: Prosím o kontrolu logu HJT - viz odkaz

Re: Prosím o kontrolu logu HJT - viz odkaz

Re: Prosím o kontrolu logu HJT - viz odkaz

Re: Prosím o kontrolu logu HJT - viz odkaz

Re: Prosím o kontrolu logu HJT - viz odkaz

Re: Prosím o kontrolu logu HJT - viz odkaz

Re: Prosím o kontrolu logu HJT - viz odkaz

Re: Prosím o kontrolu logu HJT - viz odkaz

Re: Prosím o kontrolu logu HJT - viz odkaz

Re: Prosím o kontrolu logu HJT - viz odkaz

Re: Prosím o kontrolu logu HJT - viz odkaz

Kdo je online