Prosím o kontrolu logu - nejde internet

[jaro3]

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků

[Reklama]

[Eronn]

Tady to je. Omlouvám se, že to tak dlouho trvalo.

RogueKiller V8.8.12 [Mar 20 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Started in : Normal mode
User : Robert [Admin rights]
Mode : Remove -- Date : 04/12/2014 18:48:50
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 29 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : cz.seznam.software.autoupdate ("C:\Users\Robert\AppData\Roaming\Seznam.cz\szninstall.exe" -c [x]) -> DELETED
[RUN][SUSP PATH] HKCU\[...]\Run : cz.seznam.software.szndesktop ("C:\Users\Robert\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q [x]) -> DELETED
[RUN][SUSP PATH] HKUS\S-1-5-21-2839465811-2135754940-2986549850-1006\[...]\Run : cz.seznam.software.autoupdate ("C:\Users\Robert\AppData\Roaming\Seznam.cz\szninstall.exe" -c [x]) -> [0x2] The system cannot find the file specified.
[RUN][SUSP PATH] HKUS\S-1-5-21-2839465811-2135754940-2986549850-1006\[...]\Run : cz.seznam.software.szndesktop ("C:\Users\Robert\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q [x]) -> [0x2] The system cannot find the file specified.
[IFEO] HKLM\[...]\bpsvc.exe : Debugger (tasklist.exe [7]) -> DELETED
[IFEO] HKLM\[...]\browsersafeguard.exe : Debugger (tasklist.exe [7]) -> DELETED
[IFEO] HKLM\[...]\dprotectsvc.exe : Debugger (tasklist.exe [7]) -> DELETED
[IFEO] HKLM\[...]\jumpflip : Debugger (tasklist.exe [7]) -> DELETED
[IFEO] HKLM\[...]\protectedsearch.exe : Debugger (tasklist.exe [7]) -> DELETED
[IFEO] HKLM\[...]\rjatydimofu.exe : Debugger (tasklist.exe [7]) -> DELETED
[IFEO] HKLM\[...]\searchinstaller.exe : Debugger (tasklist.exe [7]) -> DELETED
[IFEO] HKLM\[...]\searchprotection.exe : Debugger (tasklist.exe [7]) -> DELETED
[IFEO] HKLM\[...]\searchprotector.exe : Debugger (tasklist.exe [7]) -> DELETED
[IFEO] HKLM\[...]\searchsettings.exe : Debugger (tasklist.exe [7]) -> DELETED
[IFEO] HKLM\[...]\searchsettings64.exe : Debugger (tasklist.exe [7]) -> DELETED
[IFEO] HKLM\[...]\snapdo.exe : Debugger (tasklist.exe [7]) -> DELETED
[IFEO] HKLM\[...]\stinst32.exe : Debugger (tasklist.exe [7]) -> DELETED
[IFEO] HKLM\[...]\stinst64.exe : Debugger (tasklist.exe [7]) -> DELETED
[IFEO] HKLM\[...]\umbrella.exe : Debugger (tasklist.exe [7]) -> DELETED
[IFEO] HKLM\[...]\utiljumpflip.exe : Debugger (tasklist.exe [7]) -> DELETED
[IFEO] HKLM\[...]\volaro : Debugger (tasklist.exe [7]) -> DELETED
[IFEO] HKLM\[...]\vonteera : Debugger (tasklist.exe [7]) -> DELETED
[IFEO] HKLM\[...]\websteroids.exe : Debugger (tasklist.exe [7]) -> DELETED
[IFEO] HKLM\[...]\websteroidsservice.exe : Debugger (tasklist.exe [7]) -> DELETED
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> DELETED
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> DELETED
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> REPLACED (1)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Scheduled tasks : 2 ¤¤¤
[V1][SUSP PATH] Installer for avg_safeguard.job : C:\Program Files\Uniblue\SpeedUpMyPC\thirdpartyinstaller.exe - C:\Users\Robert\AppData\Local\Temp\Uniblue\Offers\AVG_Safeguard.exe --stat-prefix sp --provider web --offer-name avg_safeguard --params "/PASSWORD=TB38GF9P66 /DISTRIBUTIONSOURCE=ub011 /FINISHURL=hxxp://toolbar.avg.com/p-install?lang=us /PROFILE=SATB /BROWSER=ALL /LOCAL=us /SILENT /INSTALL /ENABLEDSP /ENABLEHOMEPAGE" --verbose --remove-task [x][x][-] -> DELETED
[V2][SUSP PATH] Installer for avg_safeguard : C:\Program Files\Uniblue\SpeedUpMyPC\thirdpartyinstaller.exe - C:\Users\Robert\AppData\Local\Temp\Uniblue\Offers\AVG_Safeguard.exe --stat-prefix sp --provider web --offer-name avg_safeguard --params "/PASSWORD=TB38GF9P66 /DISTRIBUTIONSOURCE=ub011 /FINISHURL=hxxp://toolbar.avg.com/p-install?lang=us /PROFILE=SATB /BROWSER=ALL /LOCAL=us /SILENT /INSTALL /ENABLEDSP /ENABLEHOMEPAGE" --verbose --remove-task [x][x][-] -> DELETED

¤¤¤ Startup Entries : 1 ¤¤¤
[uzivatel][SUSP UNIC] Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk : C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk @C:\PROGRA~1\MICROS~1\Office12\ONENOTEM.EXE /tsr [-][7] -> DELETED

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [LOADED] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost
::1 localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) Hitachi HTS723232L9A360 +++++
--- User ---
[MBR] 03dc381cb2cbe022dd5b7dd6a5a28d72
[BSP] 8e1131f04a82c65dbfd504b926da483c : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 305243 MB
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[0]_D_04122014_184850.txt >>
RKreport[0]_S_04122014_184835.txt

[Eronn]

18:49:51.0642 5788 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:49:51.0688 5788 ============================================================
18:49:51.0688 5788 Current date / time: 2014/04/12 18:49:51.0688
18:49:51.0688 5788 SystemInfo:
18:49:51.0688 5788
18:49:51.0688 5788 OS Version: 6.1.7601 ServicePack: 1.0
18:49:51.0688 5788 Product type: Workstation
18:49:51.0688 5788 ComputerName: UZIVATEL-PC
18:49:51.0688 5788 UserName: Robert
18:49:51.0688 5788 Windows directory: C:\Windows
18:49:51.0688 5788 System windows directory: C:\Windows
18:49:51.0688 5788 Processor architecture: Intel x86
18:49:51.0688 5788 Number of processors: 2
18:49:51.0688 5788 Page size: 0x1000
18:49:51.0688 5788 Boot type: Normal boot
18:49:51.0688 5788 ============================================================
18:49:52.0234 5788 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
18:49:52.0234 5788 ============================================================
18:49:52.0234 5788 \Device\Harddisk0\DR0:
18:49:52.0234 5788 MBR partitions:
18:49:52.0234 5788 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2542D800
18:49:52.0234 5788 ============================================================
18:49:52.0234 5788 C: <-> \Device\Harddisk0\DR0\Partition1
18:49:52.0234 5788 ============================================================
18:49:52.0234 5788 Initialize success
18:49:52.0234 5788 ============================================================
18:50:08.0271 5828 ============================================================
18:50:08.0271 5828 Scan started
18:50:08.0271 5828 Mode: Manual;
18:50:08.0271 5828 ============================================================
18:50:08.0568 5828 ================ Scan system memory ========================
18:50:08.0568 5828 System memory - ok
18:50:08.0568 5828 ================ Scan services =============================
18:50:08.0770 5828 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:50:08.0770 5828 1394ohci - ok
18:50:08.0833 5828 [ 00659E56339389469473AEC41587E706 ] ac.sharedstore C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe
18:50:08.0833 5828 ac.sharedstore - ok
18:50:08.0864 5828 [ 4DF5E6215A102A192B2B6DBB61F2FBA5 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys
18:50:08.0864 5828 Accelerometer - ok
18:50:08.0895 5828 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:50:08.0895 5828 ACPI - ok
18:50:08.0926 5828 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:50:08.0926 5828 AcpiPmi - ok
18:50:08.0942 5828 [ 6C61BCEB60C2C187E6F96001FD69493E ] ADIHdAudAddService C:\Windows\system32\drivers\ADIHdAud.sys
18:50:08.0942 5828 ADIHdAudAddService - ok
18:50:08.0973 5828 [ 303C174A7303A7702A68653152FC65A0 ] Adobe LM Service C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
18:50:08.0973 5828 Adobe LM Service - ok
18:50:09.0051 5828 [ B362181ED3771DC03B4141927C80F801 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
18:50:09.0051 5828 AdobeARMservice - ok
18:50:09.0145 5828 [ 9D96B0D5855FD1B98023B3EEC9F06786 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:50:09.0145 5828 AdobeFlashPlayerUpdateSvc - ok
18:50:09.0207 5828 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:50:09.0207 5828 adp94xx - ok
18:50:09.0238 5828 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:50:09.0238 5828 adpahci - ok
18:50:09.0316 5828 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:50:09.0316 5828 adpu320 - ok
18:50:09.0504 5828 [ 4DC6B0772D1698F04FC79053A21C8260 ] AEADIFilters C:\Windows\system32\AEADISRV.EXE
18:50:09.0504 5828 AEADIFilters - ok
18:50:09.0566 5828 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:50:09.0566 5828 AeLookupSvc - ok
18:50:11.0188 5828 [ F81BB7E487EDCEAB630A7EE66CF23913 ] AFD C:\Windows\system32\drivers\afd.sys
18:50:11.0188 5828 AFD - ok
18:50:11.0251 5828 [ 6416F9B6B220F0A890525C38235AFAD7 ] AgereModemAudio C:\Program Files\LSI SoftModem\agrsmsvc.exe
18:50:11.0251 5828 AgereModemAudio - ok
18:50:11.0329 5828 [ FAA5A0B80E011464C7654851CE3D7FE7 ] AgereSoftModem C:\Windows\system32\DRIVERS\AGRSM.sys
18:50:11.0329 5828 AgereSoftModem - ok
18:50:11.0376 5828 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
18:50:11.0376 5828 agp440 - ok
18:50:11.0422 5828 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
18:50:11.0422 5828 aic78xx - ok
18:50:11.0485 5828 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
18:50:11.0485 5828 ALG - ok
18:50:11.0532 5828 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
18:50:11.0532 5828 aliide - ok
18:50:11.0532 5828 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
18:50:11.0532 5828 amdagp - ok
18:50:11.0563 5828 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
18:50:11.0563 5828 amdide - ok
18:50:11.0594 5828 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:50:11.0594 5828 AmdK8 - ok
18:50:11.0594 5828 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:50:11.0594 5828 AmdPPM - ok
18:50:11.0641 5828 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:50:11.0641 5828 amdsata - ok
18:50:11.0672 5828 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:50:11.0672 5828 amdsbs - ok
18:50:11.0703 5828 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:50:11.0703 5828 amdxata - ok
18:50:11.0781 5828 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
18:50:11.0781 5828 AppID - ok
18:50:11.0812 5828 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:50:11.0812 5828 AppIDSvc - ok
18:50:11.0844 5828 [ EACFDF31921F51C097629F1F3C9129B4 ] Appinfo C:\Windows\System32\appinfo.dll
18:50:11.0844 5828 Appinfo - ok
18:50:11.0890 5828 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
18:50:11.0906 5828 AppMgmt - ok
18:50:11.0937 5828 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
18:50:11.0937 5828 arc - ok
18:50:11.0984 5828 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:50:11.0984 5828 arcsas - ok
18:50:12.0062 5828 [ 6D9C17B3B2526539FB1EA68B3BD4D402 ] ASBroker C:\Program Files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll
18:50:12.0078 5828 ASBroker - ok
18:50:12.0093 5828 [ 47F16E188376C7D263CEEAB8FE65A1C2 ] ASChannel C:\Program Files\Hewlett-Packard\IAM\Bin\AsChnl.dll
18:50:12.0093 5828 ASChannel - ok
18:50:12.0327 5828 [ 9D768C43FEF254DD50B1DBF8AD5C4C0B ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
18:50:12.0327 5828 aspnet_state - ok
18:50:12.0374 5828 [ B347D2FEAE2D063943F16EC98634AB89 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
18:50:12.0374 5828 aswMonFlt - ok
18:50:12.0421 5828 [ 769C65057212FB5004679E02EF8145C0 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
18:50:12.0421 5828 aswRdr - ok
18:50:12.0436 5828 [ 84B4C00AE8CDFC52CF68F322D821F34C ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
18:50:12.0436 5828 aswRvrt - ok
18:50:12.0530 5828 [ 3A50AD6AE8D8A0F78F03316F5B93FE45 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
18:50:12.0546 5828 aswSnx - ok
18:50:12.0561 5828 [ B6381B4DC603C558419641BA969930E0 ] aswSP C:\Windows\system32\drivers\aswSP.sys
18:50:12.0561 5828 aswSP - ok
18:50:12.0608 5828 [ 9529E946B8496C1605A9188FFD49DED8 ] aswStm C:\Windows\system32\drivers\aswStm.sys
18:50:12.0608 5828 aswStm - ok
18:50:12.0624 5828 [ 660D572C1452ADCBE200A3EA26AD6404 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
18:50:12.0624 5828 aswTdi - ok
18:50:12.0686 5828 [ 680448905E27BBC6587ADB28597640D6 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
18:50:12.0702 5828 aswVmm - ok
18:50:12.0780 5828 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:50:12.0780 5828 AsyncMac - ok
18:50:12.0842 5828 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
18:50:12.0842 5828 atapi - ok
18:50:13.0060 5828 [ B09D413EB812F65651162C516C75CC5F ] ATService C:\Program Files\Fingerprint Sensor\AtService.exe
18:50:13.0076 5828 ATService - ok
18:50:13.0107 5828 [ 1EC637725AEBE586508626BA50AF3324 ] ATSwpWDF C:\Windows\system32\Drivers\ATSwpWDF.sys
18:50:13.0107 5828 ATSwpWDF - ok
18:50:13.0185 5828 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:50:13.0185 5828 AudioEndpointBuilder - ok
18:50:13.0201 5828 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
18:50:13.0201 5828 Audiosrv - ok
18:50:13.0279 5828 [ BEA8D0FA8805CC2E6BB49728166699C7 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
18:50:13.0279 5828 avast! Antivirus - ok
18:50:13.0326 5828 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:50:13.0326 5828 AxInstSV - ok
18:50:13.0372 5828 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
18:50:13.0372 5828 b06bdrv - ok
18:50:13.0388 5828 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
18:50:13.0388 5828 b57nd60x - ok
18:50:13.0482 5828 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
18:50:13.0482 5828 BDESVC - ok
18:50:13.0528 5828 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
18:50:13.0528 5828 Beep - ok
18:50:13.0560 5828 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
18:50:13.0575 5828 BFE - ok
18:50:13.0653 5828 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
18:50:13.0653 5828 BITS - ok
18:50:13.0669 5828 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:50:13.0669 5828 blbdrive - ok
18:50:13.0716 5828 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:50:13.0716 5828 bowser - ok
18:50:13.0731 5828 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:50:13.0731 5828 BrFiltLo - ok
18:50:13.0778 5828 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:50:13.0778 5828 BrFiltUp - ok
18:50:13.0856 5828 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
18:50:13.0856 5828 Browser - ok
18:50:13.0903 5828 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:50:13.0903 5828 Brserid - ok
18:50:13.0918 5828 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:50:13.0918 5828 BrSerWdm - ok
18:50:13.0934 5828 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:50:13.0934 5828 BrUsbMdm - ok
18:50:13.0965 5828 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:50:13.0965 5828 BrUsbSer - ok
18:50:14.0012 5828 [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
18:50:14.0012 5828 BthEnum - ok
18:50:14.0012 5828 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:50:14.0012 5828 BTHMODEM - ok
18:50:14.0059 5828 [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
18:50:14.0059 5828 BthPan - ok
18:50:14.0090 5828 [ 1153DE2E4F5941E10C399CB5592F78A1 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
18:50:14.0090 5828 BTHPORT - ok
18:50:14.0152 5828 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
18:50:14.0152 5828 bthserv - ok
18:50:14.0246 5828 [ C81E9413A25A439F436B1D4B6A0CF9E9 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
18:50:14.0246 5828 BTHUSB - ok
18:50:14.0386 5828 [ BE531939BB6D153DB63DBBFBD398A713 ] c2cautoupdatesvc C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
18:50:14.0402 5828 c2cautoupdatesvc - ok
18:50:14.0464 5828 [ 33E9F08F675EF94633C8EF8A7C4EADF3 ] c2cpnrsvc C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
18:50:14.0464 5828 c2cpnrsvc - ok
18:50:14.0527 5828 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:50:14.0527 5828 cdfs - ok
18:50:14.0589 5828 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\drivers\cdrom.sys
18:50:14.0589 5828 cdrom - ok
18:50:14.0652 5828 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
18:50:14.0652 5828 CertPropSvc - ok
18:50:14.0698 5828 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:50:14.0698 5828 circlass - ok
18:50:15.0182 5828 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
18:50:15.0182 5828 CLFS - ok
18:50:15.0291 5828 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:50:15.0291 5828 clr_optimization_v2.0.50727_32 - ok
18:50:15.0572 5828 [ E87213F37A13E2B54391E40934F071D0 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:50:15.0572 5828 clr_optimization_v4.0.30319_32 - ok
18:50:16.0071 5828 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:50:16.0071 5828 CmBatt - ok
18:50:16.0102 5828 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:50:16.0102 5828 cmdide - ok
18:50:16.0180 5828 [ 85449EEBE8F8EBD6481EFBF0F352B4EB ] CNG C:\Windows\system32\Drivers\cng.sys
18:50:16.0180 5828 CNG - ok
18:50:16.0243 5828 [ F9A79C5B27037821112C50A9C8FB367A ] Com4QLBEx C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
18:50:16.0243 5828 Com4QLBEx - ok
18:50:16.0274 5828 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:50:16.0274 5828 Compbatt - ok
18:50:16.0305 5828 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
18:50:16.0305 5828 CompositeBus - ok
18:50:16.0321 5828 COMSysApp - ok
18:50:16.0352 5828 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:50:16.0352 5828 crcdisk - ok
18:50:16.0368 5828 [ 7CA1BECEA5DE2643ADDAD32670E7A4C9 ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:50:16.0383 5828 CryptSvc - ok
18:50:16.0430 5828 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
18:50:16.0430 5828 CSC - ok
18:50:16.0477 5828 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
18:50:16.0477 5828 CscService - ok
18:50:16.0524 5828 [ 4D926450AB184BF42AEC1401D264ACDC ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
18:50:16.0524 5828 dc3d - ok
18:50:16.0539 5828 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
18:50:16.0539 5828 DcomLaunch - ok
18:50:16.0586 5828 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
18:50:16.0586 5828 defragsvc - ok
18:50:16.0617 5828 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:50:16.0633 5828 DfsC - ok
18:50:16.0664 5828 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
18:50:16.0664 5828 Dhcp - ok
18:50:16.0711 5828 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
18:50:16.0711 5828 discache - ok
18:50:16.0742 5828 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:50:16.0742 5828 Disk - ok
18:50:16.0773 5828 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:50:16.0789 5828 Dnscache - ok
18:50:17.0179 5828 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
18:50:17.0194 5828 dot3svc - ok
18:50:17.0226 5828 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
18:50:17.0241 5828 DPS - ok
18:50:17.0288 5828 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:50:17.0288 5828 drmkaud - ok
18:50:17.0319 5828 [ 71BC35067CABC02C9453AEAA42B2E43E ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:50:17.0335 5828 DXGKrnl - ok
18:50:17.0366 5828 [ 76A02BC4E8008A8CBAF5CC7EFB9DF839 ] e1yexpress C:\Windows\system32\DRIVERS\e1y6032.sys
18:50:17.0366 5828 e1yexpress - ok
18:50:17.0428 5828 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
18:50:17.0428 5828 EapHost - ok
18:50:17.0678 5828 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
18:50:17.0709 5828 ebdrv - ok
18:50:17.0740 5828 [ 803B370865D907EA21DC0C2B6A8936B5 ] EFS C:\Windows\System32\lsass.exe
18:50:17.0740 5828 EFS - ok
18:50:17.0818 5828 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:50:17.0818 5828 ehRecvr - ok
18:50:17.0865 5828 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
18:50:17.0865 5828 ehSched - ok
18:50:17.0912 5828 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:50:17.0928 5828 elxstor - ok
18:50:17.0959 5828 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:50:17.0959 5828 ErrDev - ok
18:50:18.0037 5828 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
18:50:18.0037 5828 EventSystem - ok
18:50:18.0068 5828 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
18:50:18.0068 5828 exfat - ok
18:50:18.0130 5828 F06DEFF2-5B9C-490D-910F-35D3A9119622 - ok
18:50:18.0146 5828 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:50:18.0146 5828 fastfat - ok
18:50:18.0177 5828 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
18:50:18.0177 5828 Fax - ok
18:50:18.0224 5828 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:50:18.0224 5828 fdc - ok
18:50:18.0240 5828 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
18:50:18.0240 5828 fdPHost - ok
18:50:18.0240 5828 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
18:50:18.0240 5828 FDResPub - ok
18:50:18.0255 5828 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:50:18.0255 5828 FileInfo - ok
18:50:18.0271 5828 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:50:18.0271 5828 Filetrace - ok
18:50:18.0396 5828 [ D60EF46DC0E757FE5EB579DB95B88954 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
18:50:18.0411 5828 FLEXnet Licensing Service - ok
18:50:18.0427 5828 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:50:18.0427 5828 flpydisk - ok
18:50:18.0458 5828 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:50:18.0458 5828 FltMgr - ok
18:50:18.0520 5828 [ E12C4928B32ACE04610259647F072635 ] FontCache C:\Windows\system32\FntCache.dll
18:50:18.0536 5828 FontCache - ok
18:50:18.0630 5828 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:50:18.0630 5828 FontCache3.0.0.0 - ok
18:50:18.0661 5828 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:50:18.0661 5828 FsDepends - ok
18:50:18.0708 5828 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:50:18.0708 5828 Fs_Rec - ok
18:50:18.0739 5828 [ E306A24D9694C724FA2491278BF50FDB ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:50:18.0739 5828 fvevol - ok
18:50:18.0770 5828 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:50:18.0770 5828 gagp30kx - ok
18:50:18.0801 5828 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:50:18.0801 5828 GEARAspiWDM - ok
18:50:18.0848 5828 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
18:50:18.0864 5828 gpsvc - ok
18:50:18.0942 5828 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
18:50:18.0942 5828 gupdate - ok
18:50:18.0957 5828 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
18:50:18.0957 5828 gupdatem - ok
18:50:19.0004 5828 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
18:50:19.0004 5828 gusvc - ok
18:50:19.0020 5828 [ 833051C6C6C42117191935F734CFBD97 ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
18:50:19.0020 5828 hamachi - ok
18:50:19.0066 5828 [ 7DAD592A4D28092D584CFB4DEEF1373D ] HBtnKey C:\Windows\system32\DRIVERS\cpqbttn.sys
18:50:19.0066 5828 HBtnKey - ok
18:50:19.0082 5828 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:50:19.0082 5828 hcw85cir - ok
18:50:19.0113 5828 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
18:50:19.0113 5828 HDAudBus - ok
18:50:19.0129 5828 [ 30D57EE84E1E169D41A6E873B549A096 ] HECI C:\Windows\system32\DRIVERS\HECI.sys
18:50:19.0129 5828 HECI - ok
18:50:19.0160 5828 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:50:19.0160 5828 HidBatt - ok
18:50:19.0176 5828 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:50:19.0176 5828 HidBth - ok
18:50:19.0191 5828 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:50:19.0191 5828 HidIr - ok
18:50:19.0238 5828 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
18:50:19.0238 5828 hidserv - ok
18:50:19.0285 5828 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:50:19.0285 5828 HidUsb - ok
18:50:19.0316 5828 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:50:19.0332 5828 hkmsvc - ok
18:50:19.0363 5828 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:50:19.0363 5828 HomeGroupListener - ok
18:50:19.0410 5828 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:50:19.0425 5828 HomeGroupProvider - ok
18:50:19.0472 5828 [ AA1ECD3306F0C5BB2418D5715199BFF7 ] HP ProtectTools Service C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe
18:50:19.0472 5828 HP ProtectTools Service - ok
18:50:19.0503 5828 [ E1D82F0C8456ABB03B7DF5D623CA47D1 ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys
18:50:19.0503 5828 hpdskflt - ok
18:50:19.0751 5828 [ 4A4A85248DDBA176257913D53FFF393E ] HpFkCryptService C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
18:50:19.0754 5828 HpFkCryptService - ok
18:50:19.0865 5828 [ FCB563B0A23643E5F80B6FF1E60F610F ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
18:50:19.0867 5828 hpqcxs08 - ok
18:50:19.0901 5828 [ 25E443E27165C652723A92D9BDFD4649 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
18:50:19.0903 5828 hpqddsvc - ok
18:50:19.0943 5828 [ 1210960FF8928950D2A786895B0C424A ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
18:50:19.0944 5828 HpqKbFiltr - ok
18:50:19.0969 5828 [ FDF273A845F1FFCCEADF363AAF47582F ] hpqwmiex C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
18:50:19.0970 5828 hpqwmiex - ok
18:50:20.0023 5828 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:50:20.0024 5828 HpSAMD - ok
18:50:20.0109 5828 [ D1F817E61D52816996B8F1EBA9A38276 ] hpsrv C:\Windows\system32\Hpservice.exe
18:50:20.0111 5828 hpsrv - ok
18:50:20.0171 5828 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:50:20.0175 5828 HTTP - ok
18:50:20.0211 5828 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:50:20.0212 5828 hwpolicy - ok
18:50:20.0283 5828 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
18:50:20.0284 5828 i8042prt - ok
18:50:20.0359 5828 [ F54B3DB096ABD6E9BBBD052FD3878A48 ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
18:50:20.0361 5828 IAANTMON - ok
18:50:20.0390 5828 [ 01446278D4563B3013C92830AE6CBB26 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
18:50:20.0392 5828 iaStor - ok
18:50:20.0483 5828 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:50:20.0501 5828 iaStorV - ok
18:50:20.0564 5828 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:50:20.0568 5828 idsvc - ok
18:50:20.0593 5828 IEEtwCollectorService - ok
18:50:20.0857 5828 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:50:20.0858 5828 iirsp - ok
18:50:20.0903 5828 [ B9C54120F46392100478F58F374E5709 ] IKEEXT C:\Windows\System32\ikeext.dll
18:50:20.0912 5828 IKEEXT - ok
18:50:20.0964 5828 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
18:50:20.0964 5828 intelide - ok
18:50:20.0983 5828 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:50:20.0984 5828 intelppm - ok
18:50:21.0022 5828 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:50:21.0140 5828 IPBusEnum - ok
18:50:21.0160 5828 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:50:21.0161 5828 IpFilterDriver - ok
18:50:21.0197 5828 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:50:21.0205 5828 iphlpsvc - ok
18:50:21.0263 5828 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:50:21.0264 5828 IPMIDRV - ok
18:50:21.0281 5828 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:50:21.0282 5828 IPNAT - ok
18:50:21.0307 5828 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:50:21.0308 5828 IRENUM - ok
18:50:21.0329 5828 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:50:21.0330 5828 isapnp - ok
18:50:21.0358 5828 [ EB34CE31FABD4DC4343FD2AD16D2CAF9 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:50:21.0360 5828 iScsiPrt - ok
18:50:21.0505 5828 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:50:21.0506 5828 kbdclass - ok
18:50:21.0631 5828 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:50:21.0632 5828 kbdhid - ok
18:50:21.0746 5828 [ 803B370865D907EA21DC0C2B6A8936B5 ] KeyIso C:\Windows\system32\lsass.exe
18:50:21.0748 5828 KeyIso - ok
18:50:21.0784 5828 [ F286830298323272260332D6ABC905C1 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:50:21.0785 5828 KSecDD - ok
18:50:21.0801 5828 [ D7C760D57B1656DD748B9E4AB6CB5A51 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:50:21.0803 5828 KSecPkg - ok
18:50:21.0865 5828 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
18:50:21.0873 5828 KtmRm - ok
18:50:22.0036 5828 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
18:50:22.0043 5828 LanmanServer - ok
18:50:22.0060 5828 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:50:22.0065 5828 LanmanWorkstation - ok
18:50:22.0131 5828 [ 83D8BE94E1CBCBE2EA8372DB1A95A159 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
18:50:22.0132 5828 LightScribeService - ok
18:50:22.0259 5828 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:50:22.0260 5828 lltdio - ok
18:50:22.0310 5828 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:50:22.0325 5828 lltdsvc - ok
18:50:22.0373 5828 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
18:50:22.0390 5828 lmhosts - ok
18:50:22.0417 5828 [ 44CBF7F9E2FB9C36ACC892812F8750A0 ] LMS C:\Program Files\Intel\AMT\LMS.exe
18:50:22.0418 5828 LMS - ok
18:50:22.0455 5828 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:50:22.0456 5828 LSI_FC - ok
18:50:22.0464 5828 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:50:22.0465 5828 LSI_SAS - ok
18:50:22.0488 5828 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:50:22.0489 5828 LSI_SAS2 - ok
18:50:22.0521 5828 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:50:22.0522 5828 LSI_SCSI - ok
18:50:22.0547 5828 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
18:50:22.0548 5828 luafv - ok
18:50:22.0605 5828 [ 0C6EA0109CFEDF441F06D031E9A8D1A9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
18:50:22.0606 5828 MBAMProtector - ok
18:50:22.0939 5828 [ 0E08BDD7326E657D59DB40BAD23D8169 ] MBAMScheduler C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
18:50:22.0948 5828 MBAMScheduler - ok
18:50:23.0141 5828 [ A8E7F3DB083EB0839DFC1C763CDD2594 ] MBAMService C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
18:50:23.0145 5828 MBAMService - ok
18:50:23.0320 5828 [ 661B911FA04E73FB073FF9B1C9BD2E05 ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys
18:50:23.0321 5828 MBAMSwissArmy - ok
18:50:23.0945 5828 [ 18898A87CBA96DEA2074C19E140938A8 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
18:50:23.0946 5828 MBAMWebAccessControl - ok
18:50:24.0153 5828 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:50:24.0304 5828 Mcx2Svc - ok
18:50:24.0501 5828 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:50:24.0501 5828 megasas - ok
18:50:24.0954 5828 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:50:24.0956 5828 MegaSR - ok
18:50:25.0122 5828 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
18:50:25.0125 5828 MMCSS - ok
18:50:25.0138 5828 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
18:50:25.0139 5828 Modem - ok
18:50:25.0200 5828 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:50:25.0201 5828 monitor - ok
18:50:25.0276 5828 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:50:25.0276 5828 mouclass - ok
18:50:25.0330 5828 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:50:25.0331 5828 mouhid - ok
18:50:25.0409 5828 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:50:25.0410 5828 mountmgr - ok
18:50:25.0748 5828 [ AEE4E9CC59CDEB55B1ECB0E596E796BE ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:50:25.0750 5828 MozillaMaintenance - ok
18:50:25.0832 5828 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
18:50:25.0834 5828 mpio - ok
18:50:25.0882 5828 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:50:25.0883 5828 mpsdrv - ok
18:50:25.0999 5828 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:50:26.0010 5828 MpsSvc - ok
18:50:26.0219 5828 [ 21F4B24ACFC79A483515BD986DD9043F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:50:26.0221 5828 MRxDAV - ok
18:50:26.0299 5828 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:50:26.0300 5828 mrxsmb - ok
18:50:26.0347 5828 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:50:26.0348 5828 mrxsmb10 - ok
18:50:26.0366 5828 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:50:26.0368 5828 mrxsmb20 - ok
18:50:26.0454 5828 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
18:50:26.0456 5828 msahci - ok
18:50:26.0500 5828 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:50:26.0502 5828 msdsm - ok
18:50:26.0532 5828 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
18:50:26.0535 5828 MSDTC - ok
18:50:26.0732 5828 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:50:26.0733 5828 Msfs - ok
18:50:26.0749 5828 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:50:26.0750 5828 mshidkmdf - ok
18:50:26.0860 5828 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:50:26.0861 5828 msisadrv - ok
18:50:26.0902 5828 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:50:26.0919 5828 MSiSCSI - ok
18:50:26.0924 5828 msiserver - ok
18:50:27.0020 5828 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:50:27.0021 5828 MSKSSRV - ok
18:50:27.0067 5828 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:50:27.0067 5828 MSPCLOCK - ok
18:50:27.0101 5828 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:50:27.0102 5828 MSPQM - ok
18:50:27.0141 5828 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:50:27.0142 5828 MsRPC - ok
18:50:27.0178 5828 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:50:27.0180 5828 mssmbios - ok
18:50:27.0197 5828 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:50:27.0198 5828 MSTEE - ok
18:50:27.0247 5828 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:50:27.0248 5828 MTConfig - ok
18:50:27.0262 5828 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
18:50:27.0263 5828 Mup - ok
18:50:27.0325 5828 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
18:50:27.0333 5828 napagent - ok
18:50:27.0395 5828 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:50:27.0397 5828 NativeWifiP - ok
18:50:27.0462 5828 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:50:27.0466 5828 NDIS - ok
18:50:27.0481 5828 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:50:27.0482 5828 NdisCap - ok
18:50:27.0666 5828 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:50:27.0666 5828 NdisTapi - ok
18:50:27.0726 5828 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:50:27.0727 5828 Ndisuio - ok
18:50:27.0773 5828 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:50:27.0774 5828 NdisWan - ok
18:50:27.0828 5828 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:50:27.0829 5828 NDProxy - ok
18:50:27.0883 5828 [ A081CB6FB9A12668F233EB5414BE3A0E ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
18:50:27.0885 5828 Net Driver HPZ12 - ok
18:50:27.0937 5828 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:50:27.0938 5828 NetBIOS - ok
18:50:27.0967 5828 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:50:27.0968 5828 NetBT - ok
18:50:27.0997 5828 [ 803B370865D907EA21DC0C2B6A8936B5 ] Netlogon C:\Windows\system32\lsass.exe
18:50:28.0002 5828 Netlogon - ok
18:50:28.0080 5828 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
18:50:28.0097 5828 Netman - ok
18:50:28.0178 5828 [ 21318671BCAD3ACF16638F98D4D00973 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:50:28.0179 5828 NetMsmqActivator - ok

[Eronn]

18:50:28.0186 5828 [ 21318671BCAD3ACF16638F98D4D00973 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:50:28.0188 5828 NetPipeActivator - ok
18:50:28.0207 5828 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
18:50:28.0212 5828 netprofm - ok
18:50:28.0230 5828 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:50:28.0232 5828 NetTcpActivator - ok
18:50:28.0239 5828 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:50:28.0240 5828 NetTcpPortSharing - ok
18:50:28.0431 5828 [ 5B2DFA9C5C02DDF2A113CC0F551B59DF ] NETw5s32 C:\Windows\system32\DRIVERS\NETw5s32.sys
18:50:28.0463 5828 NETw5s32 - ok
18:50:28.0605 5828 [ AF1AE2E42B03395560B1CDE03230205C ] netw5v32 C:\Windows\system32\DRIVERS\netw5v32.sys
18:50:28.0630 5828 netw5v32 - ok
18:50:28.0702 5828 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:50:28.0703 5828 nfrd960 - ok
18:50:28.0753 5828 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\Windows\System32\nlasvc.dll
18:50:28.0760 5828 NlaSvc - ok
18:50:28.0804 5828 [ B9730495E0CF674680121E34BD95A73B ] npf C:\Windows\system32\drivers\npf.sys
18:50:28.0805 5828 npf - ok
18:50:28.0814 5828 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:50:28.0815 5828 Npfs - ok
18:50:28.0850 5828 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
18:50:28.0853 5828 nsi - ok
18:50:28.0861 5828 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:50:28.0862 5828 nsiproxy - ok
18:50:28.0904 5828 [ C8DFF8D07755A66C7A4A738930F0FEAC ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:50:28.0910 5828 Ntfs - ok
18:50:28.0930 5828 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
18:50:28.0930 5828 Null - ok
18:50:29.0141 5828 [ 0F96EEF0E62E536B9A683F058FFBDF0C ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:50:29.0188 5828 nvlddmkm - ok
18:50:29.0233 5828 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:50:29.0235 5828 nvraid - ok
18:50:29.0245 5828 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:50:29.0246 5828 nvstor - ok
18:50:29.0299 5828 [ 2C0C764427B4FBCF26D81D073807F8F9 ] nvsvc C:\Windows\system32\nvvsvc.exe
18:50:29.0303 5828 nvsvc - ok
18:50:29.0339 5828 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:50:29.0340 5828 nv_agp - ok
18:50:29.0419 5828 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:50:29.0422 5828 odserv - ok
18:50:29.0443 5828 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:50:29.0444 5828 ohci1394 - ok
18:50:29.0472 5828 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:50:29.0473 5828 ose - ok
18:50:29.0532 5828 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:50:29.0539 5828 p2pimsvc - ok
18:50:29.0568 5828 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
18:50:29.0576 5828 p2psvc - ok
18:50:29.0616 5828 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:50:29.0617 5828 Parport - ok
18:50:29.0658 5828 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:50:29.0659 5828 partmgr - ok
18:50:29.0673 5828 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
18:50:29.0674 5828 Parvdm - ok
18:50:29.0692 5828 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:50:29.0699 5828 PcaSvc - ok
18:50:29.0735 5828 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
18:50:29.0736 5828 pci - ok
18:50:29.0780 5828 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
18:50:29.0781 5828 pciide - ok
18:50:29.0797 5828 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:50:29.0799 5828 pcmcia - ok
18:50:29.0820 5828 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
18:50:29.0821 5828 pcw - ok
18:50:29.0852 5828 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:50:29.0855 5828 PEAUTH - ok
18:50:29.0935 5828 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
18:50:29.0953 5828 PeerDistSvc - ok
18:50:30.0022 5828 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
18:50:30.0048 5828 pla - ok
18:50:30.0077 5828 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:50:30.0085 5828 PlugPlay - ok
18:50:30.0121 5828 [ 65BC271F337637731D3C71455AE1F476 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
18:50:30.0123 5828 Pml Driver HPZ12 - ok
18:50:30.0156 5828 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:50:30.0160 5828 PNRPAutoReg - ok
18:50:30.0207 5828 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:50:30.0211 5828 PNRPsvc - ok
18:50:30.0276 5828 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:50:30.0283 5828 PolicyAgent - ok
18:50:30.0451 5828 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
18:50:30.0457 5828 Power - ok
18:50:30.0535 5828 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:50:30.0536 5828 PptpMiniport - ok
18:50:30.0553 5828 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:50:30.0554 5828 Processor - ok
18:50:30.0605 5828 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
18:50:30.0611 5828 ProfSvc - ok
18:50:30.0621 5828 [ 803B370865D907EA21DC0C2B6A8936B5 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:50:30.0624 5828 ProtectedStorage - ok
18:50:30.0652 5828 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:50:30.0654 5828 Psched - ok
18:50:30.0695 5828 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:50:30.0706 5828 ql2300 - ok
18:50:30.0723 5828 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:50:30.0725 5828 ql40xx - ok
18:50:30.0768 5828 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
18:50:30.0775 5828 QWAVE - ok
18:50:30.0793 5828 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:50:30.0794 5828 QWAVEdrv - ok
18:50:30.0810 5828 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:50:30.0811 5828 RasAcd - ok
18:50:30.0856 5828 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:50:30.0857 5828 RasAgileVpn - ok
18:50:30.0876 5828 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
18:50:30.0881 5828 RasAuto - ok
18:50:30.0915 5828 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:50:30.0916 5828 Rasl2tp - ok
18:50:30.0966 5828 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
18:50:30.0974 5828 RasMan - ok
18:50:31.0003 5828 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:50:31.0004 5828 RasPppoe - ok
18:50:31.0357 5828 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:50:31.0358 5828 RasSstp - ok
18:50:31.0587 5828 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:50:31.0601 5828 rdbss - ok
18:50:31.0624 5828 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:50:31.0625 5828 rdpbus - ok
18:50:31.0678 5828 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:50:31.0679 5828 RDPCDD - ok
18:50:32.0207 5828 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
18:50:32.0209 5828 RDPDR - ok
18:50:32.0237 5828 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:50:32.0238 5828 RDPENCDD - ok
18:50:32.0256 5828 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:50:32.0257 5828 RDPREFMP - ok
18:50:32.0297 5828 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:50:32.0298 5828 RDPWD - ok
18:50:32.0341 5828 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:50:32.0343 5828 rdyboost - ok
18:50:32.0385 5828 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
18:50:32.0389 5828 RemoteAccess - ok
18:50:32.0429 5828 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:50:32.0434 5828 RemoteRegistry - ok
18:50:32.0477 5828 [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
18:50:32.0478 5828 RFCOMM - ok
18:50:32.0511 5828 [ DF672613FBBCD58C38BB0BC2694BCFB0 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
18:50:32.0512 5828 rimmptsk - ok
18:50:32.0520 5828 [ 9BFB54D3559F2FF7301271D29D383564 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
18:50:32.0521 5828 rimsptsk - ok
18:50:32.0529 5828 [ 470FC46E2989F6606043C1C5365B15FD ] rismc32 C:\Windows\system32\DRIVERS\rismc32.sys
18:50:32.0530 5828 rismc32 - ok
18:50:32.0543 5828 [ DCB87DA83CC1010CBC9FC4DC9E395BBC ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
18:50:32.0544 5828 rismxdp - ok
18:50:32.0568 5828 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:50:32.0573 5828 RpcEptMapper - ok
18:50:32.0604 5828 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
18:50:32.0607 5828 RpcLocator - ok
18:50:32.0648 5828 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
18:50:32.0654 5828 RpcSs - ok
18:50:32.0705 5828 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:50:32.0706 5828 rspndr - ok
18:50:32.0726 5828 [ 13335D083935AB88E09C9ACC077355B5 ] RsvLock C:\Windows\system32\drivers\RsvLock.sys
18:50:32.0727 5828 RsvLock - ok
18:50:32.0770 5828 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
18:50:32.0771 5828 s3cap - ok
18:50:32.0800 5828 [ 062B82FA74C895382AB0784D493C8C9C ] SafeBoot C:\Windows\system32\drivers\SafeBoot.sys
18:50:32.0800 5828 Suspicious file (NoAccess): C:\Windows\system32\drivers\SafeBoot.sys. md5: 062B82FA74C895382AB0784D493C8C9C
18:50:32.0809 5828 SafeBoot ( LockedFile.Multi.Generic ) - warning
18:50:32.0809 5828 SafeBoot - detected LockedFile.Multi.Generic (1)
18:50:32.0821 5828 [ 803B370865D907EA21DC0C2B6A8936B5 ] SamSs C:\Windows\system32\lsass.exe
18:50:32.0824 5828 SamSs - ok
18:50:32.0835 5828 [ C9CB2C392C35CBEE2733C836D23DC642 ] SbAlg C:\Windows\system32\drivers\SbAlg.sys
18:50:32.0836 5828 SbAlg - ok
18:50:32.0860 5828 [ B5A8ECDEE930B52FD3BA35700A15EA53 ] SbFsLock C:\Windows\system32\drivers\SbFsLock.sys
18:50:32.0861 5828 SbFsLock - ok
18:50:32.0893 5828 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:50:32.0894 5828 sbp2port - ok
18:50:32.0935 5828 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:50:32.0942 5828 SCardSvr - ok
18:50:32.0952 5828 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:50:32.0953 5828 scfilter - ok
18:50:33.0005 5828 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
18:50:33.0019 5828 Schedule - ok
18:50:33.0056 5828 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:50:33.0057 5828 SCPolicySvc - ok
18:50:33.0108 5828 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\Windows\system32\drivers\sdbus.sys
18:50:33.0109 5828 sdbus - ok
18:50:33.0148 5828 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:50:33.0154 5828 SDRSVC - ok
18:50:33.0187 5828 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:50:33.0188 5828 secdrv - ok
18:50:33.0203 5828 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
18:50:33.0208 5828 seclogon - ok
18:50:33.0230 5828 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
18:50:33.0235 5828 SENS - ok
18:50:33.0271 5828 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:50:33.0275 5828 SensrSvc - ok
18:50:33.0301 5828 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:50:33.0301 5828 Serenum - ok
18:50:33.0312 5828 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:50:33.0313 5828 Serial - ok
18:50:33.0327 5828 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:50:33.0328 5828 sermouse - ok
18:50:33.0371 5828 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
18:50:33.0376 5828 SessionEnv - ok
18:50:33.0388 5828 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:50:33.0389 5828 sffdisk - ok
18:50:33.0405 5828 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:50:33.0406 5828 sffp_mmc - ok
18:50:33.0419 5828 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:50:33.0420 5828 sffp_sd - ok
18:50:33.0458 5828 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:50:33.0459 5828 sfloppy - ok
18:50:33.0508 5828 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:50:33.0537 5828 SharedAccess - ok
18:50:33.0590 5828 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:50:33.0613 5828 ShellHWDetection - ok
18:50:33.0637 5828 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
18:50:33.0638 5828 sisagp - ok
18:50:33.0790 5828 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:50:33.0791 5828 SiSRaid2 - ok
18:50:33.0831 5828 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:50:33.0833 5828 SiSRaid4 - ok
18:50:33.0940 5828 [ 50D9949020E02B847CD48F1243FCB895 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
18:50:33.0942 5828 SkypeUpdate - ok
18:50:33.0976 5828 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:50:33.0980 5828 Smb - ok
18:50:34.0057 5828 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:50:34.0064 5828 SNMPTRAP - ok
18:50:34.0138 5828 [ 44EDD50D218EF1CF76FBF9B9FC58F79D ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys
18:50:34.0147 5828 SNP2UVC - ok
18:50:34.0180 5828 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
18:50:34.0181 5828 spldr - ok
18:50:34.0219 5828 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
18:50:34.0225 5828 Spooler - ok
18:50:34.0345 5828 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
18:50:34.0364 5828 sppsvc - ok
18:50:34.0421 5828 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:50:34.0436 5828 sppuinotify - ok
18:50:34.0650 5828 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
18:50:34.0652 5828 srv - ok
18:50:34.0679 5828 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:50:34.0681 5828 srv2 - ok
18:50:34.0702 5828 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:50:34.0703 5828 srvnet - ok
18:50:34.0756 5828 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:50:34.0761 5828 SSDPSRV - ok
18:50:34.0900 5828 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:50:34.0968 5828 SstpSvc - ok
18:50:35.0006 5828 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:50:35.0007 5828 stexstor - ok
18:50:35.0066 5828 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
18:50:35.0076 5828 StiSvc - ok
18:50:35.0098 5828 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
18:50:35.0100 5828 storflt - ok
18:50:35.0136 5828 [ 0BF669F0A910BEDA4A32258D363AF2A5 ] StorSvc C:\Windows\system32\storsvc.dll
18:50:35.0248 5828 StorSvc - ok
18:50:35.0315 5828 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
18:50:35.0316 5828 storvsc - ok
18:50:35.0356 5828 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
18:50:35.0357 5828 swenum - ok
18:50:35.0374 5828 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
18:50:35.0381 5828 swprv - ok
18:50:35.0550 5828 [ 1DE40024679CDE0E573465253519730E ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
18:50:35.0552 5828 SynTP - ok
18:50:35.0617 5828 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
18:50:35.0627 5828 SysMain - ok
18:50:35.0779 5828 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:50:35.0788 5828 TabletInputService - ok
18:50:35.0841 5828 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
18:50:35.0848 5828 TapiSrv - ok
18:50:35.0892 5828 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
18:50:35.0896 5828 TBS - ok
18:50:36.0180 5828 [ CA59F7C570AF70BC174F477CFE2D9EE3 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:50:36.0196 5828 Tcpip - ok
18:50:36.0338 5828 [ CA59F7C570AF70BC174F477CFE2D9EE3 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:50:36.0345 5828 TCPIP6 - ok
18:50:36.0520 5828 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:50:36.0521 5828 tcpipreg - ok
18:50:36.0568 5828 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:50:36.0569 5828 TDPIPE - ok
18:50:36.0610 5828 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:50:36.0611 5828 TDTCP - ok
18:50:36.0649 5828 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:50:36.0651 5828 tdx - ok
18:50:36.0686 5828 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
18:50:36.0687 5828 TermDD - ok
18:50:36.0859 5828 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
18:50:36.0947 5828 TermService - ok
18:50:36.0982 5828 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
18:50:36.0987 5828 Themes - ok
18:50:37.0004 5828 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
18:50:37.0007 5828 THREADORDER - ok
18:50:37.0057 5828 [ 5AD05191DC8B444A7BA4D79B76C42A30 ] TPM C:\Windows\system32\drivers\tpm.sys
18:50:37.0059 5828 TPM - ok
18:50:37.0132 5828 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
18:50:37.0150 5828 TrkWks - ok
18:50:37.0280 5828 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:50:37.0281 5828 TrustedInstaller - ok
18:50:37.0299 5828 [ B37B08F2E5EEB1A37E448E09BACE1101 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:50:37.0300 5828 tssecsrv - ok
18:50:37.0367 5828 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:50:37.0368 5828 TsUsbFlt - ok
18:50:37.0522 5828 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:50:37.0523 5828 tunnel - ok
18:50:37.0552 5828 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:50:37.0553 5828 uagp35 - ok
18:50:37.0569 5828 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:50:37.0570 5828 udfs - ok
18:50:37.0707 5828 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:50:38.0455 5828 UI0Detect - ok
18:50:38.0508 5828 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:50:38.0509 5828 uliagpkx - ok
18:50:38.0539 5828 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
18:50:38.0540 5828 umbus - ok
18:50:38.0599 5828 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:50:38.0600 5828 UmPass - ok
18:50:38.0673 5828 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
18:50:38.0726 5828 UmRdpService - ok
18:50:38.0857 5828 [ C0AD6D5023060BB22CAC042A50B989D7 ] UNS C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe
18:50:38.0867 5828 UNS - ok
18:50:38.0920 5828 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
18:50:38.0928 5828 upnphost - ok
18:50:38.0964 5828 [ 4B8A9C16B6D9258ED99C512AECB8C555 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
18:50:38.0964 5828 USBAAPL - ok
18:50:39.0021 5828 [ 8EF48FF1C23B1CE6F96D09A45959EB20 ] usbbus C:\Windows\system32\DRIVERS\lgusbbus.sys
18:50:39.0022 5828 usbbus - ok
18:50:39.0051 5828 [ 0803FBA9FE829D61AE26EC0BCC910C46 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:50:39.0052 5828 usbccgp - ok
18:50:39.0094 5828 [ 2352AB5F9F8F097BF9D41D5A4718A041 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:50:39.0095 5828 usbcir - ok
18:50:39.0117 5828 [ A0E24C5C2D0CFF04BBD3753A72FAE80B ] UsbDiag C:\Windows\system32\DRIVERS\lgusbdiag.sys
18:50:39.0118 5828 UsbDiag - ok
18:50:39.0147 5828 [ D40855F89B69305140BBD7E9A3BA2DA6 ] usbehci C:\Windows\system32\drivers\usbehci.sys
18:50:39.0148 5828 usbehci - ok
18:50:39.0177 5828 [ EDF2DF71C4F1E13A6AC75F5224DE655A ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:50:39.0179 5828 usbhub - ok
18:50:39.0200 5828 [ CC09A1132B1F6A8362107CC134E90D0B ] USBModem C:\Windows\system32\DRIVERS\lgusbmodem.sys
18:50:39.0201 5828 USBModem - ok
18:50:39.0225 5828 [ 9828C8D14CC2676421778F0DE638CF97 ] usbohci C:\Windows\system32\drivers\usbohci.sys
18:50:39.0226 5828 usbohci - ok
18:50:39.0272 5828 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:50:39.0273 5828 usbprint - ok
18:50:39.0298 5828 [ FC6B21DB4B5B398AB93DBE59CBF11036 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
18:50:39.0299 5828 usbscan - ok
18:50:39.0353 5828 [ 31181DE6190B39FC8007DFFD1A48FFD6 ] usbser C:\Windows\system32\drivers\usbser.sys
18:50:39.0354 5828 usbser - ok
18:50:39.0389 5828 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:50:39.0390 5828 USBSTOR - ok
18:50:39.0411 5828 [ 800AABFD625EEFF899F7E5496BDE37AB ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:50:39.0412 5828 usbuhci - ok
18:50:39.0451 5828 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
18:50:39.0457 5828 UxSms - ok
18:50:39.0479 5828 [ 803B370865D907EA21DC0C2B6A8936B5 ] VaultSvc C:\Windows\system32\lsass.exe
18:50:39.0482 5828 VaultSvc - ok
18:50:39.0503 5828 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:50:39.0504 5828 vdrvroot - ok
18:50:39.0547 5828 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
18:50:39.0554 5828 vds - ok
18:50:39.0566 5828 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:50:39.0567 5828 vga - ok
18:50:39.0591 5828 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
18:50:39.0592 5828 VgaSave - ok
18:50:39.0623 5828 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:50:39.0624 5828 vhdmp - ok
18:50:39.0647 5828 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
18:50:39.0648 5828 viaagp - ok
18:50:39.0681 5828 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
18:50:39.0682 5828 ViaC7 - ok
18:50:39.0720 5828 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
18:50:39.0721 5828 viaide - ok
18:50:39.0762 5828 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
18:50:39.0764 5828 vmbus - ok
18:50:39.0790 5828 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
18:50:39.0791 5828 VMBusHID - ok
18:50:39.0811 5828 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:50:39.0812 5828 volmgr - ok
18:50:39.0831 5828 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:50:39.0833 5828 volmgrx - ok
18:50:39.0849 5828 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:50:39.0851 5828 volsnap - ok
18:50:39.0876 5828 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:50:39.0877 5828 vsmraid - ok
18:50:39.0926 5828 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
18:50:39.0936 5828 VSS - ok
18:50:39.0947 5828 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
18:50:39.0948 5828 vwifibus - ok
18:50:39.0982 5828 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
18:50:39.0983 5828 vwififlt - ok
18:50:40.0009 5828 [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
18:50:40.0010 5828 vwifimp - ok
18:50:40.0050 5828 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
18:50:40.0057 5828 W32Time - ok
18:50:40.0075 5828 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:50:40.0076 5828 WacomPen - ok
18:50:40.0126 5828 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:50:40.0127 5828 WANARP - ok
18:50:40.0133 5828 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:50:40.0134 5828 Wanarpv6 - ok
18:50:40.0197 5828 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:50:40.0204 5828 WatAdminSvc - ok
18:50:40.0259 5828 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
18:50:40.0269 5828 wbengine - ok
18:50:40.0286 5828 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:50:40.0293 5828 WbioSrvc - ok
18:50:40.0339 5828 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:50:40.0346 5828 wcncsvc - ok
18:50:40.0357 5828 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:50:40.0362 5828 WcsPlugInService - ok
18:50:40.0394 5828 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:50:40.0395 5828 Wd - ok
18:50:40.0432 5828 [ 25944D2CC49E0A6C581D02A74B7D6645 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:50:40.0436 5828 Wdf01000 - ok
18:50:40.0477 5828 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:50:40.0484 5828 WdiServiceHost - ok
18:50:40.0490 5828 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:50:40.0494 5828 WdiSystemHost - ok
18:50:40.0521 5828 [ 75E8EBD7040CE238684333F97014762A ] WebClient C:\Windows\System32\webclnt.dll
18:50:40.0528 5828 WebClient - ok
18:50:40.0547 5828 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:50:40.0554 5828 Wecsvc - ok
18:50:40.0565 5828 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:50:40.0570 5828 wercplsupport - ok
18:50:40.0606 5828 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
18:50:40.0611 5828 WerSvc - ok
18:50:40.0633 5828 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:50:40.0634 5828 WfpLwf - ok
18:50:40.0653 5828 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:50:40.0654 5828 WIMMount - ok
18:50:40.0726 5828 [ 082CF481F659FAE0DE51AD060881EB47 ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
18:50:40.0736 5828 WinDefend - ok
18:50:40.0742 5828 WinHttpAutoProxySvc - ok
18:50:40.0814 5828 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:50:40.0815 5828 Winmgmt - ok
18:50:40.0862 5828 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
18:50:40.0882 5828 WinRM - ok
18:50:40.0943 5828 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:50:40.0944 5828 WinUsb - ok
18:50:40.0997 5828 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
18:50:41.0013 5828 Wlansvc - ok
18:50:41.0044 5828 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:50:41.0046 5828 WmiAcpi - ok
18:50:41.0065 5828 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:50:41.0067 5828 wmiApSrv - ok
18:50:41.0154 5828 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
18:50:41.0160 5828 WMPNetworkSvc - ok
18:50:41.0176 5828 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:50:41.0181 5828 WPCSvc - ok
18:50:41.0223 5828 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:50:41.0229 5828 WPDBusEnum - ok
18:50:41.0261 5828 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:50:41.0262 5828 ws2ifsl - ok
18:50:41.0272 5828 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
18:50:41.0277 5828 wscsvc - ok
18:50:41.0282 5828 WSearch - ok
18:50:41.0348 5828 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
18:50:41.0381 5828 wuauserv - ok
18:50:41.0418 5828 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:50:41.0419 5828 WudfPf - ok
18:50:41.0439 5828 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:50:41.0441 5828 WUDFRd - ok
18:50:41.0472 5828 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:50:41.0478 5828 wudfsvc - ok
18:50:41.0514 5828 [ 7CC38741B8F68F1E0D5D79DA6123666A ] WwanSvc C:\Windows\System32\wwansvc.dll
18:50:41.0522 5828 WwanSvc - ok
18:50:41.0572 5828 ================ Scan global ===============================
18:50:41.0628 5828 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
18:50:41.0670 5828 [ 51BB04243DF6196C06E125898127E397 ] C:\Windows\system32\winsrv.dll
18:50:41.0682 5828 [ 51BB04243DF6196C06E125898127E397 ] C:\Windows\system32\winsrv.dll
18:50:41.0732 5828 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
18:50:41.0762 5828 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
18:50:41.0767 5828 [Global] - ok
18:50:41.0767 5828 ================ Scan MBR ==================================
18:50:41.0784 5828 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:50:42.0032 5828 \Device\Harddisk0\DR0 - ok
18:50:42.0034 5828 ================ Scan VBR ==================================
18:50:42.0036 5828 [ 181FB974B1C03120873AB0781E6C26BA ] \Device\Harddisk0\DR0\Partition1
18:50:42.0037 5828 \Device\Harddisk0\DR0\Partition1 - ok
18:50:42.0039 5828 ============================================================
18:50:42.0039 5828 Scan finished
18:50:42.0039 5828 ============================================================
18:50:42.0046 2468 Detected object count: 1
18:50:42.0046 2468 Actual detected object count: 1
18:50:54.0589 2468 SafeBoot ( LockedFile.Multi.Generic ) - skipped by user
18:50:54.0589 2468 SafeBoot ( LockedFile.Multi.Generic ) - User select action: Skip
18:51:02.0800 5024 Deinitialize success

[jaro3]

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[Eronn]

ComboFix 14-04-12.01 - Robert 13.04.2014 10:33:43.1.2 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1033.18.3036.1926 [GMT 2:00]
Spuštěný z: c:\users\Robert\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
FW: avast! Antivirus *Disabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\sp52110.exe
c:\users\uzivatel\AppData\Roaming\Local
c:\users\uzivatel\AppData\Roaming\Local\Temp\DDM\Settings\(2).ddr
c:\users\uzivatel\AppData\Roaming\Local\Temp\DDM\Settings\.ddr
c:\users\uzivatel\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\(2)
c:\users\uzivatel\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\.ddp
c:\users\uzivatel\AppData\Roaming\Microsoft\~DFKbb999db.tmp
c:\users\uzivatel\AppData\Roaming\Microsoft\1eaadjc.dll
c:\users\uzivatel\AppData\Roaming\Microsoft\bass.dll
c:\users\uzivatel\AppData\Roaming\Microsoft\engine_vx.dll
c:\users\uzivatel\AppData\Roaming\Microsoft\kfgresk.dll
c:\users\uzivatel\AppData\Roaming\Microsoft\mjcriu.dll
c:\users\uzivatel\AppData\Roaming\Microsoft\peaadje.dll
c:\users\uzivatel\AppData\Roaming\Microsoft\qwadjb.dll
c:\users\uzivatel\AppData\Roaming\Microsoft\rsaadjd.dll
c:\windows\security\Database\tmp.edb
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-03-13 do 2014-04-13 )))))))))))))))))))))))))))))))
.
.
2014-04-11 17:10 . 2014-04-11 17:10 -------- d-----w- c:\windows\ERUNT
2014-04-10 19:14 . 2014-04-10 19:14 -------- d-----w- c:\users\Robert\AppData\Local\Adobe
2014-04-10 18:31 . 2014-04-12 17:04 107736 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-04-10 18:31 . 2014-04-10 18:31 -------- d-----w- c:\program files\Malwarebytes Anti-Malware
2014-04-10 18:31 . 2014-04-10 18:31 -------- d-----w- c:\programdata\Malwarebytes
2014-04-10 18:31 . 2014-04-03 07:51 51416 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-04-10 18:31 . 2014-04-03 07:51 73432 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-04-10 18:31 . 2014-04-03 07:50 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-04-10 18:26 . 2014-04-11 17:03 -------- d-----w- C:\AdwCleaner
2014-04-10 14:10 . 2014-04-10 14:10 388096 ----a-r- c:\users\uzivatel\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2014-04-10 13:25 . 2014-04-10 13:25 388096 ----a-r- c:\users\Robert\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2014-04-10 13:25 . 2014-04-10 13:25 -------- d-----w- c:\program files\Trend Micro
2014-04-10 11:35 . 2014-04-10 11:35 -------- d-----w- c:\users\Robert\AppData\Local\Skype
2014-04-09 06:19 . 2014-02-04 02:07 149440 ----a-w- c:\windows\system32\drivers\storport.sys
2014-04-09 06:19 . 2014-02-04 02:07 234432 ----a-w- c:\windows\system32\drivers\msiscsi.sys
2014-04-09 06:19 . 2014-02-04 02:07 27072 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2014-04-09 06:19 . 2014-02-04 02:00 2048 ----a-w- c:\windows\system32\iologmsg.dll
2014-04-09 06:19 . 2014-01-24 02:18 1212352 ----a-w- c:\windows\system32\drivers\ntfs.sys
2014-04-09 06:19 . 2014-03-31 00:13 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2014-04-08 05:47 . 2014-03-07 04:35 7969936 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{151E73BB-2576-40E0-BC0E-4CE8A3C7E9C9}\mpengine.dll
2014-04-07 06:02 . 2014-04-07 06:02 -------- d-----w- C:\extensions
2014-03-23 19:13 . 2014-03-23 19:13 -------- d-----w- c:\users\Robert\AppData\Local\Programs
2014-03-23 18:35 . 2014-03-23 18:35 -------- d-----w- c:\programdata\MFAData
2014-03-23 18:35 . 2014-03-23 18:35 -------- d-----w- c:\users\uzivatel\AppData\Local\MFAData
2014-03-23 18:35 . 2014-03-23 18:35 -------- d-----w- c:\users\uzivatel\AppData\Local\Avg2014
2014-03-23 16:35 . 2014-03-23 16:35 43152 ----a-w- c:\windows\avastSS.scr
2014-03-17 17:21 . 2014-04-09 14:45 -------- d-----w- c:\users\uzivatel\AppData\Roaming\Seznam.cz
2014-03-16 14:55 . 2014-03-16 14:55 -------- d-----w- c:\program files\Seznam.cz
2014-03-16 14:54 . 2014-04-03 10:41 -------- d-----w- c:\program files\PCData
2014-03-15 07:12 . 2014-03-15 07:12 -------- d-----w- c:\users\uzivatel\AppData\Local\Skype
2014-03-15 07:12 . 2014-03-15 07:12 -------- d-----w- c:\program files\Common Files\Skype
2014-03-14 13:10 . 2014-03-14 13:10 -------- d-----w- c:\users\Robert\AppData\Local\Blizzard Entertainment
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-03-23 16:35 . 2014-02-18 20:44 67264 ----a-w- c:\windows\system32\drivers\aswStm.sys
2014-03-23 16:35 . 2014-02-18 20:37 180760 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-03-23 16:35 . 2011-02-28 21:07 776976 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-03-23 16:35 . 2014-02-18 20:37 81768 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2014-03-23 16:35 . 2014-02-18 20:37 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-03-23 16:35 . 2011-02-28 21:08 411552 ----a-w- c:\windows\system32\drivers\aswSP.sys
2014-03-23 16:35 . 2009-10-25 21:59 67824 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-03-23 16:35 . 2011-02-28 21:07 271264 ----a-w- c:\windows\system32\aswBoot.exe
2014-03-11 21:52 . 2013-02-26 14:59 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-03-11 21:52 . 2013-02-26 14:59 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-03-01 04:10 . 2014-03-12 06:46 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2014-03-01 03:52 . 2014-03-12 06:46 61952 ----a-w- c:\windows\system32\iesetup.dll
2014-03-01 03:51 . 2014-03-12 06:46 51200 ----a-w- c:\windows\system32\ieetwproxystub.dll
2014-03-01 03:38 . 2014-03-12 06:46 112128 ----a-w- c:\windows\system32\ieUnatt.exe
2014-03-01 03:38 . 2014-03-12 06:46 108032 ----a-w- c:\windows\system32\ieetwcollector.exe
2014-03-01 03:37 . 2014-03-12 06:46 553472 ----a-w- c:\windows\system32\jscript9diag.dll
2014-03-01 03:31 . 2014-03-12 06:46 646144 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2014-03-01 03:14 . 2014-03-12 06:46 4244480 ----a-w- c:\windows\system32\jscript9.dll
2014-03-01 03:00 . 2014-03-12 06:46 1964032 ----a-w- c:\windows\system32\inetcpl.cpl
2014-03-01 02:32 . 2014-03-12 06:46 1820160 ----a-w- c:\windows\system32\wininet.dll
2014-02-07 01:07 . 2014-03-12 06:46 2349056 ----a-w- c:\windows\system32\win32k.sys
2014-02-04 02:04 . 2014-03-12 06:46 1230336 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-02-04 02:04 . 2014-03-12 06:46 509440 ----a-w- c:\windows\system32\qedit.dll
2014-01-29 02:06 . 2014-03-12 06:46 381440 ----a-w- c:\windows\system32\wer.dll
2014-01-28 02:07 . 2014-03-12 06:46 185344 ----a-w- c:\windows\system32\wwansvc.dll
2014-01-22 14:52 . 2011-02-28 21:08 56080 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2009-11-17 11:25 . 2009-11-17 11:25 14942064 ----a-w- c:\program files\IE8-WindowsVista-x86-CSY.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-03-23 16:34 260976 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2009-06-17 2363392]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-07-30 1545512]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2006-12-10 49152]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-08-25 186904]
"picon"="c:\program files\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe" [2009-07-15 358936]
"nwiz"="nwiz.exe" [2009-06-10 1657376]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2009-05-18 1314816]
"acevents"="c:\program files\ActivIdentity\ActivClient\acevents.exe" [2009-06-03 153640]
"accrdsub"="c:\program files\ActivIdentity\ActivClient\accrdsub.exe" [2009-06-03 400936]
"PTHOSTTR"="c:\program files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE" [2009-08-07 354360]
"CognizanceTS"="c:\progra~1\HEWLET~1\IAM\Bin\ASTSVCC.dll" [2009-07-28 24848]
"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2009-07-27 288312]
"DivX Download Manager"="c:\program files\DivX\DivX Plus Web Player\DDmService.exe" [2010-12-08 63360]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2011-03-21 1230704]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-10-24 421888]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-03-23 3854640]
"seznam-listicka-distribuce"="c:\program files\Seznam.cz\distribution\szninstall.exe" [2013-05-16 1062472]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2007-1-2 210520]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\HEWLET~1\IAM\Bin\APSHook.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\setup\disabledrunkeys]
"QlbCtrl.exe"=c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
.
R1 F06DEFF2-5B9C-490D-910F-35D3A9119622;F06DEFF2-5B9C-490D-910F-35D3A9119622;c:\program files\Movies Toolbar\Datamngr\setmgrc1.cfg [x]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes Anti-Malware\mbamservice.exe [2014-04-03 857912]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-10-23 172192]
R3 dc3d;MS Hardware Device Detection Driver (HID);c:\windows\system32\DRIVERS\dc3d.sys [2010-04-16 22416]
R3 HP ProtectTools Service;HP ProtectTools Service;c:\program files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [2009-08-07 45056]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-03-01 108032]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys [2014-04-03 51416]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [2009-06-04 4231680]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-21 1343400]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 SafeBoot;SafeBoot; [x]
S0 SbAlg;SbAlg; [x]
S0 SbFsLock;SbFsLock; [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2014-03-23 776976]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2014-03-23 411552]
S1 RsvLock;RsvLock; [x]
S2 ac.sharedstore;ActivIdentity Shared Store Service;c:\program files\Common Files\ActivIdentity\ac.sharedstore.exe [2009-06-03 207400]
S2 ASBroker;Logon Session Broker;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 ASChannel;Local Communication Channel;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2014-03-23 67824]
S2 ATService;AuthenTec Fingerprint Service;c:\program files\Fingerprint Sensor\AtService.exe [2009-07-29 1201400]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-03-03 1363584]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-03-03 1748608]
S2 HpFkCryptService;Drive Encryption Service;c:\program files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2009-07-29 256544]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2009-07-08 26168]
S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2009-11-16 50704]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files\Common Files\Intel\Privacy Icon\UNS\UNS.exe [2009-07-15 2058776]
S3 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2014-03-23 67264]
S3 ATSwpWDF;AuthenTec TruePrint USB WDF Driver;c:\windows\system32\Drivers\ATSwpWDF.sys [2009-07-29 482176]
S3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-05-05 228408]
S3 e1yexpress;Intel(R) Gigabit Network Connections Driver;c:\windows\system32\DRIVERS\e1y6032.sys [2008-03-27 224384]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-04-03 23256]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [2014-04-13 107736]
S3 NETw5s32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit;c:\windows\system32\DRIVERS\NETw5s32.sys [2010-01-13 6755840]
S3 rismc32;RICOH Smart Card Reader;c:\windows\system32\DRIVERS\rismc32.sys [2009-07-20 49152]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMSWISSARMY
*NewlyCreated* - WS2IFSL
*Deregistered* - aswFsBlk
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
Cognizance REG_MULTI_SZ ASBroker
Bioscrypt REG_MULTI_SZ ASChannel
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-06-17 10:11 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-03-15 16:29 1150280 ----a-w- c:\program files\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-04-12 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-26 21:52]
.
2014-04-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-10-12 08:59]
.
2014-04-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-10-12 08:59]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000
IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk
FF - ProfilePath - c:\users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\0llfkfuq.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-10 - (no file)
AddRemove-ilividmoviestoolbar181FF - c:\progra~1\MOVIES~1\Datamngr\SRTOOL~1\FF\uninstall.exe
AddRemove-ilividmoviestoolbar181IE - c:\progra~1\MOVIES~1\Datamngr\SRTOOL~1\IE\uninstall.exe
AddRemove-LSI Soft Modem - c:\windows\agrsmdel
AddRemove-{5783F2D7-9001-0405-0002-0060B0CE6BBA} - c:\program files\Autodesk\AutoCAD 2011\Setup\Setup.exe
AddRemove-{C547F361-5750-4CD1-9FB6-BC93827CB6C1} - c:\program files\ParetoLogic\RegCure Pro\uninstall.exe
AddRemove-SeznamInstall - c:\users\Robert\AppData\Roaming\Seznam.cz\szninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\F06DEFF2-5B9C-490D-910F-35D3A9119622]
"ImagePath"="\??\c:\program files\Movies Toolbar\Datamngr\setmgrc1.cfg"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000001
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\rundll32.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\system32\AEADISRV.EXE
c:\program files\LSI SoftModem\agrsmsvc.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Intel\AMT\LMS.exe
c:\program files\Malwarebytes Anti-Malware\mbamscheduler.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\conhost.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\program files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\windows\system32\sppsvc.exe
c:\program files\Malwarebytes Anti-Malware\mbam.exe
c:\program files\Hewlett-Packard\IAM\Bin\AsGHost.exe
.
**************************************************************************
.
Celkový čas: 2014-04-13 10:49:35 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-04-13 08:49
.
Před spuštěním: 64 431 603 712 bytes free
Po spuštění: 63 887 589 376 bytes free
.
- - End Of File - - D9F3B2E56402731407FECE32AB5E228C
A36C5E4F47E84449FF07ED3517B43A31

[memphisto]

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::

Folder::
c:\users\uzivatel\AppData\Local\Avg2014
c:\users\uzivatel\AppData\Roaming\Seznam.cz
c:\program files\Seznam.cz
c:\program files\Movies Toolbar
c:\program files\Skype\Updater

Registry::
"seznam-listicka-distribuce"=-

Driver::
F06DEFF2-5B9C-490D-910F-35D3A9119622
SkypeUpdate

File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

RegLock::
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000001
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upus.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu

[Eronn]

ComboFix 14-04-12.01 - Robert 13.04.2014 20:27:53.2.2 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1033.18.3036.2007 [GMT 2:00]
Spuštěný z: c:\users\Robert\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Robert\Desktop\CFScript.txt.txt
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
FW: avast! Antivirus *Disabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Movies Toolbar
c:\program files\Seznam.cz
c:\program files\Seznam.cz\distribution\install\com.microsoft.msdn.msvcr100-10.0.40219.325-win32.zip
c:\program files\Seznam.cz\distribution\install\cz.seznam.software.autoupdate-1.0.8-win32.zip
c:\program files\Seznam.cz\distribution\install\cz.seznam.software.chromelisticka-1.5.3-win32.zip
c:\program files\Seznam.cz\distribution\install\cz.seznam.software.ielisticka3-3.0.57-win32.zip
c:\program files\Seznam.cz\distribution\install\cz.seznam.software.libfoxcub-3.0.57-win32.zip
c:\program files\Seznam.cz\distribution\install\cz.seznam.software.libfoxloader-3.0.0-win32.zip
c:\program files\Seznam.cz\distribution\install\cz.seznam.software.libszndesktop-2.0.18-win32.zip
c:\program files\Seznam.cz\distribution\install\cz.seznam.software.lightspeed-1210-12.10.6-win32.zip
c:\program files\Seznam.cz\distribution\install\cz.seznam.software.pp-1.0.2-win32.zip
c:\program files\Seznam.cz\distribution\install\cz.seznam.software.szndesktop-2.0.18-win32.zip
c:\program files\Seznam.cz\distribution\install\cz.seznam.software.szninstall-1.1.9-win32.zip
c:\program files\Seznam.cz\distribution\install\cz.seznam.software.sznsetup-1.1.18-win32.zip
c:\program files\Seznam.cz\distribution\install\packages.inf
c:\program files\Seznam.cz\distribution\install\szn-software-base-1.0.0-win32.zip
c:\program files\Seznam.cz\distribution\install\szn-software-fflisticka-2.5.13-win32.zip
c:\program files\Seznam.cz\distribution\install\szn-software-listicka-3.0.0-win32.zip
c:\program files\Seznam.cz\distribution\partner.conf
c:\program files\Seznam.cz\distribution\sources.inf
c:\program files\Seznam.cz\distribution\szninstall.exe
c:\program files\Seznam.cz\distribution\sznsetup.exe
c:\program files\Skype\Updater
c:\program files\Skype\Updater\Updater.dll
c:\program files\Skype\Updater\Updater.exe
c:\users\uzivatel\AppData\Local\Avg2014
c:\users\uzivatel\AppData\Roaming\Seznam.cz
c:\users\uzivatel\AppData\Roaming\Seznam.cz\bin\31994libfoxloader-x64.dll
c:\users\uzivatel\AppData\Roaming\Seznam.cz\bin\31994libfoxloader.dll
c:\users\uzivatel\AppData\Roaming\Seznam.cz\bin\ffkill.exe
c:\users\uzivatel\AppData\Roaming\Seznam.cz\bin\libfoxcub-x64.dll
c:\users\uzivatel\AppData\Roaming\Seznam.cz\bin\libfoxcub.dll
c:\users\uzivatel\AppData\Roaming\Seznam.cz\bin\libchinst.dll
c:\users\uzivatel\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
c:\users\uzivatel\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
c:\users\uzivatel\AppData\Roaming\Seznam.cz\bin\msvcp100.dll
c:\users\uzivatel\AppData\Roaming\Seznam.cz\bin\msvcr100.dll
c:\users\uzivatel\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
c:\users\uzivatel\AppData\Roaming\Seznam.cz\bin\unlockInstance.dll
c:\users\uzivatel\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe
c:\users\uzivatel\AppData\Roaming\Seznam.cz\conf\libfoxcub\emailstates.conf
c:\users\uzivatel\AppData\Roaming\Seznam.cz\conf\libfoxcub\enccfg.conf
c:\users\uzivatel\AppData\Roaming\Seznam.cz\conf\libfoxcub\foxcub.conf
c:\users\uzivatel\AppData\Roaming\Seznam.cz\conf\libfoxcub\regcfg.conf
c:\users\uzivatel\AppData\Roaming\Seznam.cz\conf\libfoxcub\remote.conf
c:\users\uzivatel\AppData\Roaming\Seznam.cz\conf\szndesktop.conf
c:\users\uzivatel\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libfoxcub.conf
c:\users\uzivatel\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libfoxloader.conf
c:\users\uzivatel\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libchinst.conf
c:\users\uzivatel\AppData\Roaming\Seznam.cz\conf\szndesktop.d\unlockInstance.conf
c:\users\uzivatel\AppData\Roaming\Seznam.cz\conf\unlockInstance.conf
c:\users\uzivatel\AppData\Roaming\Seznam.cz\data\chrome\partner.conf
c:\users\uzivatel\AppData\Roaming\Seznam.cz\data\listickaconfig.webpak
c:\users\uzivatel\AppData\Roaming\Seznam.cz\data\listickanastaveni.webpak
c:\users\uzivatel\AppData\Roaming\Seznam.cz\data\speeddial.webpak
c:\users\uzivatel\AppData\Roaming\Seznam.cz\data\szndesktop.webpak
c:\users\uzivatel\AppData\Roaming\Seznam.cz\install.log
c:\users\uzivatel\AppData\Roaming\Seznam.cz\packages.inf
c:\users\uzivatel\AppData\Roaming\Seznam.cz\partner.conf
c:\users\uzivatel\AppData\Roaming\Seznam.cz\sources.inf
c:\users\uzivatel\AppData\Roaming\Seznam.cz\szninstall.exe
c:\users\uzivatel\AppData\Roaming\Seznam.cz\sznsetup.exe
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\com_microsoft_msdn_msvcr100_10_0_40219_325.install.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\com_microsoft_msdn_msvcr100_10_0_40219_325.uninstall.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_autoupdate_1_0_8.install.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_autoupdate_1_0_8.uninstall.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_chromelisticka_1_7_2.install.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_chromelisticka_1_7_2.uninstall.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_ielisticka3_3_1_5.install.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_ielisticka3_3_1_5.uninstall.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxcub_3_1_5.install.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxcub_3_1_5.uninstall.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxcub64_3_1_5.install.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxcub64_3_1_5.uninstall.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.install.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.uninstall.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libszndesktop_2_0_26.install.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libszndesktop_2_0_26.reconfigure.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libszndesktop_2_0_26.uninstall.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_lightspeed_1210_12_10_12.install.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_lightspeed_1210_12_10_12.uninstall.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_pp_1_0_2.install.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_pp_1_0_2.uninstall.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szndesktop_2_0_26.install.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szndesktop_2_0_26.uninstall.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szninstall_1_1_14.install.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szninstall_1_1_14.uninstall.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_sznsetup_1_2_6.install.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_sznsetup_1_2_6.uninstall.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\szn_software_base_1_0_0.install.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\szn_software_base_1_0_0.uninstall.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\szn_software_fflisticka_2_5_16.install.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\szn_software_fflisticka_2_5_16.uninstall.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\szn_software_listicka_3_0_0.install.bat
c:\users\uzivatel\AppData\Roaming\Seznam.cz\uninstall\szn_software_listicka_3_0_0.uninstall.bat
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_F06DEFF2-5B9C-490D-910F-35D3A9119622
-------\Service_F06DEFF2-5B9C-490D-910F-35D3A9119622
-------\Service_SkypeUpdate
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-03-13 do 2014-04-13 )))))))))))))))))))))))))))))))
.
.
2014-04-13 18:36 . 2014-04-13 18:36 -------- d-----w- c:\users\uzivatel\AppData\Local\temp
2014-04-13 18:36 . 2014-04-13 18:36 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-04-13 08:38 . 2014-04-13 18:25 62576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{151E73BB-2576-40E0-BC0E-4CE8A3C7E9C9}\offreg.dll
2014-04-11 17:10 . 2014-04-11 17:10 -------- d-----w- c:\windows\ERUNT
2014-04-10 19:14 . 2014-04-10 19:14 -------- d-----w- c:\users\Robert\AppData\Local\Adobe
2014-04-10 18:31 . 2014-04-13 18:26 107736 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-04-10 18:31 . 2014-04-10 18:31 -------- d-----w- c:\program files\Malwarebytes Anti-Malware
2014-04-10 18:31 . 2014-04-10 18:31 -------- d-----w- c:\programdata\Malwarebytes
2014-04-10 18:31 . 2014-04-03 07:51 51416 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-04-10 18:31 . 2014-04-03 07:51 73432 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-04-10 18:31 . 2014-04-03 07:50 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-04-10 18:26 . 2014-04-11 17:03 -------- d-----w- C:\AdwCleaner
2014-04-10 14:10 . 2014-04-10 14:10 388096 ----a-r- c:\users\uzivatel\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2014-04-10 13:25 . 2014-04-10 13:25 388096 ----a-r- c:\users\Robert\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2014-04-10 13:25 . 2014-04-10 13:25 -------- d-----w- c:\program files\Trend Micro
2014-04-10 11:35 . 2014-04-10 11:35 -------- d-----w- c:\users\Robert\AppData\Local\Skype
2014-04-09 06:19 . 2014-02-04 02:07 149440 ----a-w- c:\windows\system32\drivers\storport.sys
2014-04-09 06:19 . 2014-02-04 02:07 234432 ----a-w- c:\windows\system32\drivers\msiscsi.sys
2014-04-09 06:19 . 2014-02-04 02:07 27072 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2014-04-09 06:19 . 2014-02-04 02:00 2048 ----a-w- c:\windows\system32\iologmsg.dll
2014-04-09 06:19 . 2014-01-24 02:18 1212352 ----a-w- c:\windows\system32\drivers\ntfs.sys
2014-04-09 06:19 . 2014-03-31 00:13 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2014-04-08 05:47 . 2014-03-07 04:35 7969936 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{151E73BB-2576-40E0-BC0E-4CE8A3C7E9C9}\mpengine.dll
2014-04-07 06:02 . 2014-04-07 06:02 -------- d-----w- C:\extensions
2014-03-23 19:13 . 2014-03-23 19:13 -------- d-----w- c:\users\Robert\AppData\Local\Programs
2014-03-23 18:35 . 2014-03-23 18:35 -------- d-----w- c:\programdata\MFAData
2014-03-23 18:35 . 2014-03-23 18:35 -------- d-----w- c:\users\uzivatel\AppData\Local\MFAData
2014-03-23 16:35 . 2014-03-23 16:35 43152 ----a-w- c:\windows\avastSS.scr
2014-03-16 14:54 . 2014-04-03 10:41 -------- d-----w- c:\program files\PCData
2014-03-15 07:12 . 2014-03-15 07:12 -------- d-----w- c:\users\uzivatel\AppData\Local\Skype
2014-03-15 07:12 . 2014-03-15 07:12 -------- d-----w- c:\program files\Common Files\Skype
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-03-23 16:35 . 2014-02-18 20:44 67264 ----a-w- c:\windows\system32\drivers\aswStm.sys
2014-03-23 16:35 . 2014-02-18 20:37 180760 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-03-23 16:35 . 2011-02-28 21:07 776976 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-03-23 16:35 . 2014-02-18 20:37 81768 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2014-03-23 16:35 . 2014-02-18 20:37 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-03-23 16:35 . 2011-02-28 21:08 411552 ----a-w- c:\windows\system32\drivers\aswSP.sys
2014-03-23 16:35 . 2009-10-25 21:59 67824 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-03-23 16:35 . 2011-02-28 21:07 271264 ----a-w- c:\windows\system32\aswBoot.exe
2014-03-11 21:52 . 2013-02-26 14:59 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-03-11 21:52 . 2013-02-26 14:59 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-03-01 04:10 . 2014-03-12 06:46 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2014-03-01 03:52 . 2014-03-12 06:46 61952 ----a-w- c:\windows\system32\iesetup.dll
2014-03-01 03:51 . 2014-03-12 06:46 51200 ----a-w- c:\windows\system32\ieetwproxystub.dll
2014-03-01 03:38 . 2014-03-12 06:46 112128 ----a-w- c:\windows\system32\ieUnatt.exe
2014-03-01 03:38 . 2014-03-12 06:46 108032 ----a-w- c:\windows\system32\ieetwcollector.exe
2014-03-01 03:37 . 2014-03-12 06:46 553472 ----a-w- c:\windows\system32\jscript9diag.dll
2014-03-01 03:31 . 2014-03-12 06:46 646144 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2014-03-01 03:14 . 2014-03-12 06:46 4244480 ----a-w- c:\windows\system32\jscript9.dll
2014-03-01 03:00 . 2014-03-12 06:46 1964032 ----a-w- c:\windows\system32\inetcpl.cpl
2014-03-01 02:32 . 2014-03-12 06:46 1820160 ----a-w- c:\windows\system32\wininet.dll
2014-02-07 01:07 . 2014-03-12 06:46 2349056 ----a-w- c:\windows\system32\win32k.sys
2014-02-04 02:04 . 2014-03-12 06:46 1230336 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-02-04 02:04 . 2014-03-12 06:46 509440 ----a-w- c:\windows\system32\qedit.dll
2014-01-29 02:06 . 2014-03-12 06:46 381440 ----a-w- c:\windows\system32\wer.dll
2014-01-28 02:07 . 2014-03-12 06:46 185344 ----a-w- c:\windows\system32\wwansvc.dll
2014-01-22 14:52 . 2011-02-28 21:08 56080 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2009-11-17 11:25 . 2009-11-17 11:25 14942064 ----a-w- c:\program files\IE8-WindowsVista-x86-CSY.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-03-23 16:34 260976 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2009-06-17 2363392]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-07-30 1545512]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2006-12-10 49152]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-08-25 186904]
"picon"="c:\program files\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe" [2009-07-15 358936]
"nwiz"="nwiz.exe" [2009-06-10 1657376]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2009-05-18 1314816]
"acevents"="c:\program files\ActivIdentity\ActivClient\acevents.exe" [2009-06-03 153640]
"accrdsub"="c:\program files\ActivIdentity\ActivClient\accrdsub.exe" [2009-06-03 400936]
"PTHOSTTR"="c:\program files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE" [2009-08-07 354360]
"CognizanceTS"="c:\progra~1\HEWLET~1\IAM\Bin\ASTSVCC.dll" [2009-07-28 24848]
"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2009-07-27 288312]
"DivX Download Manager"="c:\program files\DivX\DivX Plus Web Player\DDmService.exe" [2010-12-08 63360]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2011-03-21 1230704]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-10-24 421888]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-03-23 3854640]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2007-1-2 210520]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\HEWLET~1\IAM\Bin\APSHook.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\setup\disabledrunkeys]
"QlbCtrl.exe"=c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
.
R2 MBAMService;MBAMService;c:\program files\Malwarebytes Anti-Malware\mbamservice.exe [2014-04-03 857912]
R3 dc3d;MS Hardware Device Detection Driver (HID);c:\windows\system32\DRIVERS\dc3d.sys [2010-04-16 22416]
R3 HP ProtectTools Service;HP ProtectTools Service;c:\program files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [2009-08-07 45056]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-03-01 108032]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [2014-04-13 107736]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys [2014-04-03 51416]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [2009-06-04 4231680]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-21 1343400]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 SafeBoot;SafeBoot; [x]
S0 SbAlg;SbAlg; [x]
S0 SbFsLock;SbFsLock; [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2014-03-23 776976]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2014-03-23 411552]
S1 RsvLock;RsvLock; [x]
S2 ac.sharedstore;ActivIdentity Shared Store Service;c:\program files\Common Files\ActivIdentity\ac.sharedstore.exe [2009-06-03 207400]
S2 ASBroker;Logon Session Broker;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 ASChannel;Local Communication Channel;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2014-03-23 67824]
S2 ATService;AuthenTec Fingerprint Service;c:\program files\Fingerprint Sensor\AtService.exe [2009-07-29 1201400]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-03-03 1363584]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-03-03 1748608]
S2 HpFkCryptService;Drive Encryption Service;c:\program files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2009-07-29 256544]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2009-07-08 26168]
S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2009-11-16 50704]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files\Common Files\Intel\Privacy Icon\UNS\UNS.exe [2009-07-15 2058776]
S3 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2014-03-23 67264]
S3 ATSwpWDF;AuthenTec TruePrint USB WDF Driver;c:\windows\system32\Drivers\ATSwpWDF.sys [2009-07-29 482176]
S3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-05-05 228408]
S3 e1yexpress;Intel(R) Gigabit Network Connections Driver;c:\windows\system32\DRIVERS\e1y6032.sys [2008-03-27 224384]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-04-03 23256]
S3 NETw5s32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit;c:\windows\system32\DRIVERS\NETw5s32.sys [2010-01-13 6755840]
S3 rismc32;RICOH Smart Card Reader;c:\windows\system32\DRIVERS\rismc32.sys [2009-07-20 49152]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*Deregistered* - aswFsBlk
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
Cognizance REG_MULTI_SZ ASBroker
Bioscrypt REG_MULTI_SZ ASChannel
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-06-17 10:11 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-03-15 16:29 1150280 ----a-w- c:\program files\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-04-13 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-26 21:52]
.
2014-04-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-10-12 08:59]
.
2014-04-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-10-12 08:59]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000
IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk
FF - ProfilePath - c:\users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\0llfkfuq.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-Run-seznam-listicka-distribuce - c:\program files\Seznam.cz\distribution\szninstall.exe
.
.
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\rundll32.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\system32\AEADISRV.EXE
c:\program files\LSI SoftModem\agrsmsvc.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Intel\AMT\LMS.exe
c:\program files\Malwarebytes Anti-Malware\mbamscheduler.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\system32\taskhost.exe
c:\program files\Malwarebytes Anti-Malware\mbam.exe
c:\windows\system32\conhost.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\windows\system32\sppsvc.exe
c:\program files\Hewlett-Packard\IAM\Bin\AsGHost.exe
.
**************************************************************************
.
Celkový čas: 2014-04-13 20:45:56 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-04-13 18:45
ComboFix2.txt 2014-04-13 08:49
.
Před spuštěním: 63 985 102 848 bytes free
Po spuštění: 63 557 214 208 bytes free
.
- - End Of File - - 657C3AF820812603C85CE11456400121
A36C5E4F47E84449FF07ED3517B43A31

[jaro3]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.


Vlož nový log z HJT + info o problémech.

[Eronn]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:35:56, on 14.4.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16521)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANOTIF.EXE
C:\Program Files\Common Files\Intel\Privacy Icon\PRIVACYICONCLIENT.EXE
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\pthosttr.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
C:\Program Files\DivX\DivX Plus Web Player\DDMService.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Users\Robert\Desktop\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Credential Manager for HP ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [picon] "C:\Program Files\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe" -startup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [acevents] "C:\Program Files\ActivIdentity\ActivClient\acevents.exe"
O4 - HKLM\..\Run: [accrdsub] "C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe"
O4 - HKLM\..\Run: [PTHOSTTR] C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll,RegisterModule
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [DivX Download Manager] "C:\Program Files\DivX\DivX Plus Web Player\DDmService.exe" start
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\HEWLET~1\IAM\Bin\APSHook.dll
O23 - Service: ActivIdentity Shared Store Service (ac.sharedstore) - ActivIdentity - C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\Windows\system32\AEADISRV.EXE
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: AuthenTec Fingerprint Service (ATService) - AuthenTec, Inc. - C:\Program Files\Fingerprint Sensor\AtService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - McAfee, Inc. - C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard - C:\Windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\AMT\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe

--
End of file - 9747 bytes

Problémy: Při spuštění pc naskočí errory:

acevents.exe: The program can´t start because aspcom.dll is missing from your pc. Try reinstaling acevents.exe to fix this problem.

accrdsub.exe The program can´t start because aspcom.dll is missing from your pc. Try reinstaling accrdsub.exe to fix this problem.

avast! will not be able to protect mail/news (error10013)

Nejde internet a když se pokouším zjistit co je špatně píše to následující:
There might be a problem with the driver for the local Area Connection adapter.
a
Local Area Connection doesn´t have a valid IP configuration.

Dnes se notebook sám restartoval. Napadá Vás jak ho dát zase do kupy? Vážím si vaší pomoci, líbí se mi co děláte až na tom budu finančně lépe, vaše stránky podpořím.

[jaro3]

Děkujeme.

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll,RegisterModule
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab

acevents.exe -- ActivIdentity Event Service

accrdsub.exe-- ActivIdentity card event handler

Asi přeinstalovat program

There might be a problem with the driver for the local Area Connection adapter.
a
Local Area Connection doesn´t have a valid IP configuration.

Zkus nejprve přeinstalovat ovladač síť. karty.

DHCP máš zapnuto?

[Eronn]

Ovladač přeinstalován a píše to znovu:Local Area Connection doesn´t have a valid IP configuration. DHCP mám zapnuto.