nenačítá se stránaka facebook

Lucasefx · Příspěvekod **Lucasefx** » 28 čer 2012 20:07

Ale nepodařilo se mi v nozovým režimu vypnout NOD. Pak mě trochu vylekalo po tom co se to samo restartovalo mi při spuštění jakékoliv aplikace padala hláška že to není možný že se chystám spustit něco z registru kterej je přpravenej k odstranění (něco takovýho). Tak sem to chtěl restartovat a vyvolat tu poslední známou konfiguraci ale málo sem mačkal F8

. Každopádně po restartu už zase jde vše spustit

ComboFix 12-06-28.01 - Lukáš 28.06.2012 19:26:39.3.4 - x64 MINIMAL
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4077.3335 [GMT 2:00]
Spuštěný z: c:\users\LukßÜ\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\LukßÜ\Desktop\CFScript.txt
AV: ESET NOD32 Antivirus 4.2 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 4.2 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-05-28 do 2012-06-28 )))))))))))))))))))))))))))))))
.
.
2012-06-28 17:30 . 2012-06-28 17:30 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-06-28 17:30 . 2012-06-28 17:30 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-06-27 20:04 . 2012-06-27 20:04 -------- d-----w- c:\users\Lukáš\AppData\Local\Adobe
2012-06-27 19:52 . 2012-06-27 19:52 -------- d-----w- c:\users\Lukáš\AppData\Roaming\Malwarebytes
2012-06-27 19:51 . 2012-06-27 19:51 -------- d-----w- c:\programdata\Malwarebytes
2012-06-27 19:51 . 2012-06-27 19:52 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-06-27 19:51 . 2012-04-04 13:56 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-06-26 16:08 . 2012-05-31 04:04 9013136 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{F2C370DD-32B7-483E-8117-B508832E806A}\mpengine.dll
2012-06-25 17:16 . 2012-06-25 17:16 770384 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcr100.dll
2012-06-25 17:16 . 2012-06-25 17:16 421200 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcp100.dll
2012-06-19 16:17 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-19 16:17 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-19 16:17 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll
2012-06-19 16:17 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
2012-06-19 16:17 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll
2012-06-19 16:17 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll
2012-06-19 16:17 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll
2012-06-19 16:17 . 2012-06-02 13:19 186752 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-19 16:17 . 2012-06-02 13:15 36864 ----a-w- c:\windows\system32\wuapp.exe
2012-06-14 16:08 . 2012-04-26 05:41 77312 ----a-w- c:\windows\system32\rdpwsx.dll
2012-06-13 19:54 . 2012-06-13 20:21 -------- d-----w- c:\users\Lukáš\AppData\Local\Microsoft Games
2012-06-13 17:33 . 2012-06-13 17:33 -------- d-----w- c:\users\Lukáš\AppData\Local\Macromedia
2012-05-30 11:39 . 2012-05-30 11:39 -------- d-----w- c:\programdata\Electronic Arts
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-06-24 18:06 . 2012-04-10 06:22 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-06-24 18:06 . 2011-07-12 16:43 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-05-15 10:48 . 2012-05-22 20:26 949056 ----a-w- c:\windows\system32\nvumdshimx.dll
2012-05-15 10:48 . 2012-05-22 20:26 818496 ----a-w- c:\windows\SysWow64\nvumdshim.dll
2012-05-15 10:48 . 2012-05-22 20:26 8139072 ----a-w- c:\windows\system32\nvcuda.dll
2012-05-15 10:48 . 2012-05-22 20:26 8105280 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2012-05-15 10:48 . 2012-05-22 20:26 5982528 ----a-w- c:\windows\SysWow64\nvcuda.dll
2012-05-15 10:48 . 2012-05-22 20:26 364352 ----a-w- c:\windows\system32\nvdecodemft.dll
2012-05-15 10:48 . 2012-05-22 20:26 301376 ----a-w- c:\windows\SysWow64\nvdecodemft.dll
2012-05-15 10:48 . 2012-05-22 20:26 2881856 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-05-15 10:48 . 2012-05-22 20:26 2681664 ----a-w- c:\windows\system32\nvcuvid.dll
2012-05-15 10:48 . 2012-05-22 20:26 25743168 ----a-w- c:\windows\system32\nvoglv64.dll
2012-05-15 10:48 . 2012-05-22 20:26 2524992 ----a-w- c:\windows\SysWow64\nvcuvid.dll
2012-05-15 10:48 . 2012-05-22 20:26 246592 ----a-w- c:\windows\system32\nvinitx.dll
2012-05-15 10:48 . 2012-05-22 20:26 2445120 ----a-w- c:\windows\SysWow64\nvcuvenc.dll
2012-05-15 10:48 . 2012-05-22 20:26 202048 ----a-w- c:\windows\SysWow64\nvinit.dll
2012-05-15 10:48 . 2012-05-22 20:26 19607872 ----a-w- c:\windows\SysWow64\nvoglv32.dll
2012-05-15 10:48 . 2012-05-22 20:26 18044224 ----a-w- c:\windows\system32\nvd3dumx.dll
2012-05-15 10:48 . 2012-05-22 20:26 15322432 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2012-05-15 10:48 . 2012-05-22 20:26 14298944 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-05-15 10:48 . 2012-05-22 20:26 25248064 ----a-w- c:\windows\system32\nvcompiler.dll
2012-05-15 10:48 . 2012-05-22 20:26 2368832 ----a-w- c:\windows\SysWow64\nvapi.dll
2012-05-15 10:48 . 2012-05-22 20:26 17551680 ----a-w- c:\windows\SysWow64\nvcompiler.dll
2012-05-15 10:48 . 2011-08-10 18:28 68928 ----a-w- c:\windows\system32\OpenCL.dll
2012-05-15 10:48 . 2011-08-10 18:28 61248 ----a-w- c:\windows\SysWow64\OpenCL.dll
2012-05-15 10:48 . 2011-08-10 18:28 1738048 ----a-w- c:\windows\system32\nvdispco64.dll
2012-05-15 10:48 . 2011-08-10 18:28 1468224 ----a-w- c:\windows\system32\nvgenco64.dll
2012-05-15 10:48 . 2011-06-09 11:50 2741568 ----a-w- c:\windows\system32\nvapi64.dll
2012-05-15 10:48 . 2011-06-09 11:50 10194752 ----a-w- c:\windows\system32\nvwgf2umx.dll
2012-05-15 09:29 . 2011-06-09 11:50 889664 ----a-w- c:\windows\system32\nvvsvc.exe
2012-05-15 09:29 . 2011-06-09 11:50 63296 ----a-w- c:\windows\system32\nvshext.dll
2012-05-15 09:29 . 2011-06-09 11:50 2561856 ----a-w- c:\windows\system32\nvsvcr.dll
2012-05-15 09:29 . 2011-06-09 11:50 118080 ----a-w- c:\windows\system32\nvmctray.dll
2012-05-15 09:29 . 2012-05-22 20:27 2621723 ----a-w- c:\windows\system32\nvcoproc.bin
2012-05-15 09:29 . 2011-06-09 11:50 3149632 ----a-w- c:\windows\system32\nvsvc64.dll
2012-05-15 09:28 . 2011-06-09 11:50 6151488 ----a-w- c:\windows\system32\nvcpl.dll
2012-05-15 00:21 . 2012-05-15 00:21 423744 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2012-04-18 17:08 . 2012-05-22 20:26 31040 ----a-w- c:\windows\system32\nvhdap64.dll
2012-04-18 17:08 . 2012-05-22 20:26 188736 ----a-w- c:\windows\system32\drivers\nvhda64v.sys
2012-04-18 17:08 . 2012-05-22 20:26 1451840 ----a-w- c:\windows\system32\nvhdagenco6420103.dll
2009-09-07 11:18 1570648 --sha-r- c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\advcheck.dll
2009-01-26 13:31 5365592 --sha-r- c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\SpybotSD.exe
.
.
((((((((((((((((((((((((((((( SnapShot@2012-06-28_07.26.34 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-06-09 12:35 . 2012-06-28 17:17 26994 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2012-06-28 17:17 32690 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2011-07-12 19:51 . 2012-06-28 17:17 12980 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1642426787-1102121018-3953363141-1001_UserData.bin
+ 2011-07-12 16:17 . 2012-06-28 16:59 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2011-07-12 16:17 . 2012-06-27 07:46 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2011-07-12 16:17 . 2012-06-27 07:46 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2011-07-12 16:17 . 2012-06-28 16:59 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2012-06-28 16:59 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-07-14 04:54 . 2012-06-27 07:46 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:46 . 2012-06-28 17:16 95056 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
+ 2011-09-26 21:13 . 2012-06-28 17:09 1980 c:\windows\system32\wdi\ERCQueuedResolutions.dat
- 2012-06-28 07:26 . 2012-06-28 07:26 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-06-28 17:31 . 2012-06-28 17:31 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-06-28 07:26 . 2012-06-28 07:26 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2012-06-28 17:31 . 2012-06-28 17:31 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-07-12 18:08 . 2012-06-28 17:12 242074 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2009-07-14 02:36 . 2012-06-28 08:50 652150 c:\windows\system32\perfh009.dat
- 2009-07-14 02:36 . 2012-06-18 06:16 652150 c:\windows\system32\perfh009.dat
+ 2009-07-14 15:18 . 2012-06-28 08:50 666406 c:\windows\system32\perfh005.dat
- 2009-07-14 15:18 . 2012-06-18 06:16 666406 c:\windows\system32\perfh005.dat
- 2009-07-14 02:36 . 2012-06-18 06:16 121082 c:\windows\system32\perfc009.dat
+ 2009-07-14 02:36 . 2012-06-28 08:50 121082 c:\windows\system32\perfc009.dat
+ 2009-07-14 15:18 . 2012-06-28 08:50 140102 c:\windows\system32\perfc005.dat
- 2009-07-14 15:18 . 2012-06-18 06:16 140102 c:\windows\system32\perfc005.dat
+ 2009-07-14 05:01 . 2012-06-28 17:18 451260 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2009-07-14 05:01 . 2012-06-28 07:25 451260 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2011-07-25 06:43 . 2012-06-28 09:05 3593064 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
- 2011-07-25 06:43 . 2012-06-10 20:07 3593064 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2011-07-12 19:48 . 2012-06-28 09:05 2481280 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1642426787-1102121018-3953363141-1001-12288.dat
- 2011-07-12 19:48 . 2012-06-28 07:25 41078836 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1642426787-1102121018-3953363141-1001-8192.dat
+ 2011-07-12 19:48 . 2012-06-28 17:18 41078836 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1642426787-1102121018-3953363141-1001-8192.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-04-04 462408]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Služba Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-09-05 136176]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-04-04 654408]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-24 250056]
R3 Andbus;LGE Android Platform Composite USB Device;c:\windows\system32\DRIVERS\lgandbus64.sys [x]
R3 AndDiag;LGE Android Platform USB Serial Port;c:\windows\system32\DRIVERS\lganddiag64.sys [x]
R3 AndGps;LGE Android Platform USB GPS NMEA Port;c:\windows\system32\DRIVERS\lgandgps64.sys [x]
R3 ANDModem;LGE Android Platform USB Modem;c:\windows\system32\DRIVERS\lgandmodem64.sys [x]
R3 androidusb;ADB Interface Driver;c:\windows\system32\Drivers\lgandadb.sys [x]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-11-18 1431888]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-09-05 136176]
R3 LgBttPort;LGE Bluetooth TransPort;c:\windows\system32\DRIVERS\lgbtpt64.sys [x]
R3 lgbusenum;LG Bluetooth Bus Enumerator;c:\windows\system32\DRIVERS\lgbtbs64.sys [x]
R3 LGVMODEM;LGE Virtual Modem;c:\windows\system32\DRIVERS\lgvmdm64.sys [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-04-04 24904]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-06-25 113120]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 31800]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 31232]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-06-09 1255736]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-07-13 254528]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2010-12-21 141264]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-04-04 63928]
S2 Autodesk Content Service;Autodesk Content Service;c:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2011-02-02 18656]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2010-12-21 170640]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2011-01-12 810144]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2010-12-21 125296]
S2 sp_rsdrv2;Spyware Terminator Driver Filter;c:\windows\system32\DRIVERS\stflt.sys [2011-11-03 51496]
S2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service;c:\program files (x86)\Spyware Terminator\st_rsser64.exe [2011-09-28 1148632]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-05-15 382272]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys [2010-12-08 122856]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys [2010-12-08 369640]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2012-04-18 188736]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-03-21 452200]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-06-28 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-10 18:06]
.
2012-06-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-09-05 10:22]
.
2012-06-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-09-05 10:22]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-05-03 11842152]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-01-12 2918656]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Download with &Media Finder - c:\program files (x86)\Media Finder\hook.html
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.88.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Canon\CAL\CALMAIN.exe
.
**************************************************************************
.
Celkový čas: 2012-06-28 19:34:39 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-06-28 17:34
ComboFix2.txt 2012-06-28 16:17
ComboFix3.txt 2012-06-28 07:29
.
Před spuštěním: Volných bajtů: 468 679 540 736
Po spuštění: Volných bajtů: 468 511 236 096
.
- - End Of File - - E6B031C5D7F583533DE44EBBB6B02141

Reklama

Příspěvekod **Žbeky** » 28 čer 2012 21:31

Nic to nedělá. Opravdu ten skript kopíruješ správně a uložíš jej?

Lucasefx · Příspěvekod **Lucasefx** » 28 čer 2012 21:57

ano vše jsem dělal jak jsi napsal, momentálně mi jde načíst aji facebook každopádně moc děkuju a uvidím co to bude dělat zítra, ještě pak můžu zkusit jednou ten combofix v tom nouzovým režimu a s vypnutým NODem jestli se mi ho teda podaří vypnout

Příspěvekod **Žbeky** » 28 čer 2012 23:43

Zkus, kdyžtak jej odinstalujem

Lucasefx · Příspěvekod **Lucasefx** » 29 čer 2012 08:40

povedlo se.. teď už to aji něco smázlo

ComboFix 12-06-28.01 - Lukáš 29.06.2012 8:27.4.4 - x64 MINIMAL
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4077.2859 [GMT 2:00]
Spuštěný z: c:\users\Lukáš\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Lukáš\Desktop\CFScript.txt
AV: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
FILE ::
"c:\windows\system32\DRIVERS\stflt.sys"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Google\Update
c:\program files (x86)\Google\Update\1.3.21.111\GoogleCrashHandler.exe
c:\program files (x86)\Google\Update\1.3.21.111\GoogleCrashHandler64.exe
c:\program files (x86)\Google\Update\1.3.21.111\GoogleUpdate.exe
c:\program files (x86)\Google\Update\1.3.21.111\GoogleUpdateBroker.exe
c:\program files (x86)\Google\Update\1.3.21.111\GoogleUpdateHelper.msi
c:\program files (x86)\Google\Update\1.3.21.111\GoogleUpdateOnDemand.exe
c:\program files (x86)\Google\Update\1.3.21.111\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\1.3.21.111\goopdate.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_am.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_ar.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_bg.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_bn.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_ca.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_cs.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_da.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_de.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_el.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_en-GB.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_en.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_es-419.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_es.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_et.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_fa.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_fi.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_fil.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_fr.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_gu.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_hi.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_hr.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_hu.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_id.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_is.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_it.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_iw.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_ja.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_kn.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_ko.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_lt.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_lv.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_ml.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_mr.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_ms.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_nl.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_no.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_pl.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_pt-BR.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_pt-PT.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_ro.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_ru.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_sk.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_sl.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_sr.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_sv.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_sw.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_ta.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_te.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_th.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_tr.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_uk.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_ur.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_vi.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_zh-CN.dll
c:\program files (x86)\Google\Update\1.3.21.111\goopdateres_zh-TW.dll
c:\program files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll
c:\program files (x86)\Google\Update\1.3.21.111\psmachine.dll
c:\program files (x86)\Google\Update\1.3.21.111\psuser.dll
c:\program files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.111\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\Spyware Terminator
c:\program files (x86)\Spyware Terminator\Driver\driver.cab
c:\program files (x86)\Spyware Terminator\Driver\stflt.cat
c:\program files (x86)\Spyware Terminator\Driver\stflt.inf
c:\program files (x86)\Spyware Terminator\Driver\stflt.sys
c:\program files (x86)\Spyware Terminator\SpywareTerminator.exe
c:\program files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
c:\program files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
c:\program files (x86)\Spyware Terminator\st_rsser64.exe
c:\program files (x86)\Spyware Terminator\STShell.dll
c:\program files (x86)\Spyware Terminator\STShell64.dll
c:\program files (x86)\Spyware Terminator\Tools\analyze.xml
c:\program files (x86)\Spyware Terminator\Tools\analyzefile.exe
c:\program files (x86)\Spyware Terminator\Tools\bloatware.xml
c:\program files (x86)\Spyware Terminator\Tools\defsyssettings.exe
c:\program files (x86)\Spyware Terminator\Tools\hardfileremover.exe
c:\program files (x86)\Spyware Terminator\Tools\optimizer.xml
c:\program files (x86)\Spyware Terminator\Tools\ov.xml
c:\program files (x86)\Spyware Terminator\Tools\remover.xml
c:\program files (x86)\Spyware Terminator\Tools\restore.xml
c:\program files (x86)\Spyware Terminator\Tools\startup.xml
c:\program files (x86)\Spyware Terminator\Tools\systemrestore.exe
c:\program files (x86)\Spyware Terminator\Tools\systemsettings.xml
c:\program files (x86)\Spyware Terminator\Tools\unstableaddons.xml
c:\program files (x86)\Spyware Terminator\Tools\virtualkeyboard.xml
c:\program files (x86)\Spyware Terminator\TorrentDll.dll
c:\program files (x86)\Spyware Terminator\unins000.dat
c:\program files (x86)\Spyware Terminator\unins000.exe
c:\program files (x86)\Spyware Terminator\unins000.msg
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\advcheck.dll
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\aports.dll
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\blindman.exe
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Default configuration.ini
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\DelZip179.dll
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Dummies\dummy.cd_clint.dll
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Dummies\dummy.dap.gif
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Dummies\dummy.data.xml
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Dummies\dummy.default.gif
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Dummies\dummy.related.htm
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\AdvWhite.sbs
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Adware.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\AdwareC.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Browserpages.sbs
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\CLSIDs.sbs
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Cookies.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Cookies.sbs
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Dialer.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Dialer.sbs
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\DialerC.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Domains.sbs
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\HeavyDuty.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Hijackers.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\HijackersC.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\HintOfTheDay.sbs
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\iPhone.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Keyloggers.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\KeyloggersC.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Logs.uts
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\LSP.sbs
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Malware.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\MalwareC.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\OperaPlugins.sbs
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\ProcWatch.sbs
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\PUPS.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\PUPSC.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\RegDFLinks.sbs
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\RegWatch.sbs
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\RegXLinks.sbs
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Revision.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Revision.sbs
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Searchpages.sbs
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Security.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\SecurityC.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Services.sbs
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Spybots.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\SpybotsC.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Spyware.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\SpywareC.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Startup.tnfo
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Targets.nfo
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Tracks.uti
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\Trojans.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\TrojansC-02.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\TrojansC-03.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\TrojansC-04.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\TrojansC-05.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\TrojansC.sbi
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\TTLASSH.sbs
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\URL-Blacklist.sbs
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Includes\X509White.sbs
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Languages\Cesky.sbl
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Languages\English.sbl
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\messages.zres
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\OptOut.ini
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Plugins\TCPIPAddress.dll
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\SDFiles.exe
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\SDMain.exe
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\SDUpdate.exe
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\SDWinSec.exe
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Skins\Colorblind.ini
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\SpybotSD.exe
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\sqlite3.dll
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Tools.dll
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Update.exe
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Updates\downloaded.ini
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Updates\online.ini
c:\windows\ConfigSetRoot\!SOFTWARE\Spybot - Search & Destroy\Updates\online.ini.uiz
c:\windows\system32\DRIVERS\stflt.sys
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_SP_RSDRV2
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_sp_rsdrv2
-------\Service_ST2012_Svc
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-05-28 do 2012-06-29 )))))))))))))))))))))))))))))))
.
.
2012-06-29 06:31 . 2012-06-29 06:31 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-06-29 06:31 . 2012-06-29 06:31 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-06-27 20:04 . 2012-06-27 20:04 -------- d-----w- c:\users\Lukáš\AppData\Local\Adobe
2012-06-27 19:52 . 2012-06-27 19:52 -------- d-----w- c:\users\Lukáš\AppData\Roaming\Malwarebytes
2012-06-27 19:51 . 2012-06-27 19:51 -------- d-----w- c:\programdata\Malwarebytes
2012-06-27 19:51 . 2012-06-27 19:52 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-06-27 19:51 . 2012-04-04 13:56 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-06-25 17:16 . 2012-06-25 17:16 770384 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcr100.dll
2012-06-25 17:16 . 2012-06-25 17:16 421200 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcp100.dll
2012-06-19 16:17 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-19 16:17 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-19 16:17 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll
2012-06-19 16:17 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
2012-06-19 16:17 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll
2012-06-19 16:17 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll
2012-06-19 16:17 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll
2012-06-19 16:17 . 2012-06-02 13:19 186752 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-19 16:17 . 2012-06-02 13:15 36864 ----a-w- c:\windows\system32\wuapp.exe
2012-06-14 16:08 . 2012-04-26 05:41 77312 ----a-w- c:\windows\system32\rdpwsx.dll
2012-06-13 19:54 . 2012-06-13 20:21 -------- d-----w- c:\users\Lukáš\AppData\Local\Microsoft Games
2012-06-13 17:33 . 2012-06-13 17:33 -------- d-----w- c:\users\Lukáš\AppData\Local\Macromedia
2012-05-30 11:39 . 2012-05-30 11:39 -------- d-----w- c:\programdata\Electronic Arts
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-06-24 18:06 . 2012-04-10 06:22 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-06-24 18:06 . 2011-07-12 16:43 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-05-15 10:48 . 2012-05-22 20:26 949056 ----a-w- c:\windows\system32\nvumdshimx.dll
2012-05-15 10:48 . 2012-05-22 20:26 818496 ----a-w- c:\windows\SysWow64\nvumdshim.dll
2012-05-15 10:48 . 2012-05-22 20:26 8139072 ----a-w- c:\windows\system32\nvcuda.dll
2012-05-15 10:48 . 2012-05-22 20:26 8105280 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2012-05-15 10:48 . 2012-05-22 20:26 5982528 ----a-w- c:\windows\SysWow64\nvcuda.dll
2012-05-15 10:48 . 2012-05-22 20:26 364352 ----a-w- c:\windows\system32\nvdecodemft.dll
2012-05-15 10:48 . 2012-05-22 20:26 301376 ----a-w- c:\windows\SysWow64\nvdecodemft.dll
2012-05-15 10:48 . 2012-05-22 20:26 2881856 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-05-15 10:48 . 2012-05-22 20:26 2681664 ----a-w- c:\windows\system32\nvcuvid.dll
2012-05-15 10:48 . 2012-05-22 20:26 25743168 ----a-w- c:\windows\system32\nvoglv64.dll
2012-05-15 10:48 . 2012-05-22 20:26 2524992 ----a-w- c:\windows\SysWow64\nvcuvid.dll
2012-05-15 10:48 . 2012-05-22 20:26 246592 ----a-w- c:\windows\system32\nvinitx.dll
2012-05-15 10:48 . 2012-05-22 20:26 2445120 ----a-w- c:\windows\SysWow64\nvcuvenc.dll
2012-05-15 10:48 . 2012-05-22 20:26 202048 ----a-w- c:\windows\SysWow64\nvinit.dll
2012-05-15 10:48 . 2012-05-22 20:26 19607872 ----a-w- c:\windows\SysWow64\nvoglv32.dll
2012-05-15 10:48 . 2012-05-22 20:26 18044224 ----a-w- c:\windows\system32\nvd3dumx.dll
2012-05-15 10:48 . 2012-05-22 20:26 15322432 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2012-05-15 10:48 . 2012-05-22 20:26 14298944 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-05-15 10:48 . 2012-05-22 20:26 25248064 ----a-w- c:\windows\system32\nvcompiler.dll
2012-05-15 10:48 . 2012-05-22 20:26 2368832 ----a-w- c:\windows\SysWow64\nvapi.dll
2012-05-15 10:48 . 2012-05-22 20:26 17551680 ----a-w- c:\windows\SysWow64\nvcompiler.dll
2012-05-15 10:48 . 2011-08-10 18:28 68928 ----a-w- c:\windows\system32\OpenCL.dll
2012-05-15 10:48 . 2011-08-10 18:28 61248 ----a-w- c:\windows\SysWow64\OpenCL.dll
2012-05-15 10:48 . 2011-08-10 18:28 1738048 ----a-w- c:\windows\system32\nvdispco64.dll
2012-05-15 10:48 . 2011-08-10 18:28 1468224 ----a-w- c:\windows\system32\nvgenco64.dll
2012-05-15 10:48 . 2011-06-09 11:50 2741568 ----a-w- c:\windows\system32\nvapi64.dll
2012-05-15 10:48 . 2011-06-09 11:50 10194752 ----a-w- c:\windows\system32\nvwgf2umx.dll
2012-05-15 09:29 . 2011-06-09 11:50 889664 ----a-w- c:\windows\system32\nvvsvc.exe
2012-05-15 09:29 . 2011-06-09 11:50 63296 ----a-w- c:\windows\system32\nvshext.dll
2012-05-15 09:29 . 2011-06-09 11:50 2561856 ----a-w- c:\windows\system32\nvsvcr.dll
2012-05-15 09:29 . 2011-06-09 11:50 118080 ----a-w- c:\windows\system32\nvmctray.dll
2012-05-15 09:29 . 2012-05-22 20:27 2621723 ----a-w- c:\windows\system32\nvcoproc.bin
2012-05-15 09:29 . 2011-06-09 11:50 3149632 ----a-w- c:\windows\system32\nvsvc64.dll
2012-05-15 09:28 . 2011-06-09 11:50 6151488 ----a-w- c:\windows\system32\nvcpl.dll
2012-05-15 00:21 . 2012-05-15 00:21 423744 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2012-04-18 17:08 . 2012-05-22 20:26 31040 ----a-w- c:\windows\system32\nvhdap64.dll
2012-04-18 17:08 . 2012-05-22 20:26 188736 ----a-w- c:\windows\system32\drivers\nvhda64v.sys
2012-04-18 17:08 . 2012-05-22 20:26 1451840 ----a-w- c:\windows\system32\nvhdagenco6420103.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-06-28_07.26.34 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-06-09 12:35 . 2012-06-29 06:19 27346 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2012-06-29 06:19 32714 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2011-07-12 19:51 . 2012-06-29 06:19 12980 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1642426787-1102121018-3953363141-1001_UserData.bin
+ 2011-07-12 16:17 . 2012-06-28 18:34 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2011-07-12 16:17 . 2012-06-27 07:46 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2011-07-12 16:17 . 2012-06-27 07:46 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2011-07-12 16:17 . 2012-06-28 18:34 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2012-06-28 18:34 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-07-14 04:54 . 2012-06-27 07:46 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:46 . 2012-06-28 17:16 95056 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
+ 2011-09-26 21:13 . 2012-06-28 17:09 1980 c:\windows\system32\wdi\ERCQueuedResolutions.dat
- 2012-06-28 07:26 . 2012-06-28 07:26 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-06-29 06:32 . 2012-06-29 06:32 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-06-28 07:26 . 2012-06-28 07:26 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2012-06-29 06:32 . 2012-06-29 06:32 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-07-12 18:08 . 2012-06-28 17:12 242074 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2009-07-14 02:36 . 2012-06-28 08:50 652150 c:\windows\system32\perfh009.dat
- 2009-07-14 02:36 . 2012-06-18 06:16 652150 c:\windows\system32\perfh009.dat
+ 2009-07-14 15:18 . 2012-06-28 08:50 666406 c:\windows\system32\perfh005.dat
- 2009-07-14 15:18 . 2012-06-18 06:16 666406 c:\windows\system32\perfh005.dat
- 2009-07-14 02:36 . 2012-06-18 06:16 121082 c:\windows\system32\perfc009.dat
+ 2009-07-14 02:36 . 2012-06-28 08:50 121082 c:\windows\system32\perfc009.dat
+ 2009-07-14 15:18 . 2012-06-28 08:50 140102 c:\windows\system32\perfc005.dat
- 2009-07-14 15:18 . 2012-06-18 06:16 140102 c:\windows\system32\perfc005.dat
+ 2009-07-14 05:01 . 2012-06-29 06:24 451260 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2009-07-14 05:01 . 2012-06-28 07:25 451260 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2011-07-25 06:43 . 2012-06-28 09:05 3593064 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
- 2011-07-25 06:43 . 2012-06-10 20:07 3593064 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2011-07-12 19:48 . 2012-06-28 09:05 2481280 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1642426787-1102121018-3953363141-1001-12288.dat
- 2011-07-12 19:48 . 2012-06-28 07:25 41078836 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1642426787-1102121018-3953363141-1001-8192.dat
+ 2011-07-12 19:48 . 2012-06-29 06:24 41078836 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1642426787-1102121018-3953363141-1001-8192.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-04-04 654408]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-24 250056]
R3 Andbus;LGE Android Platform Composite USB Device;c:\windows\system32\DRIVERS\lgandbus64.sys [x]
R3 AndDiag;LGE Android Platform USB Serial Port;c:\windows\system32\DRIVERS\lganddiag64.sys [x]
R3 AndGps;LGE Android Platform USB GPS NMEA Port;c:\windows\system32\DRIVERS\lgandgps64.sys [x]
R3 ANDModem;LGE Android Platform USB Modem;c:\windows\system32\DRIVERS\lgandmodem64.sys [x]
R3 androidusb;ADB Interface Driver;c:\windows\system32\Drivers\lgandadb.sys [x]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-11-18 1431888]
R3 LgBttPort;LGE Bluetooth TransPort;c:\windows\system32\DRIVERS\lgbtpt64.sys [x]
R3 lgbusenum;LG Bluetooth Bus Enumerator;c:\windows\system32\DRIVERS\lgbtbs64.sys [x]
R3 LGVMODEM;LGE Virtual Modem;c:\windows\system32\DRIVERS\lgvmdm64.sys [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-04-04 24904]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-06-25 113120]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 31800]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 31232]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-06-09 1255736]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-07-13 254528]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2010-12-21 141264]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-04-04 63928]
S2 Autodesk Content Service;Autodesk Content Service;c:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2011-02-02 18656]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2010-12-21 170640]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2011-01-12 810144]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2010-12-21 125296]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-05-15 382272]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys [2010-12-08 122856]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys [2010-12-08 369640]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2012-04-18 188736]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-03-21 452200]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-06-28 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-10 18:06]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-05-03 11842152]
"combofix"="c:\combofix\CF30671.3XE" [2010-11-20 345088]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Download with &Media Finder - c:\program files (x86)\Media Finder\hook.html
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.88.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
AddRemove-{56736259-613E-4A3B-B428-6235F2E76F44}_is1 - c:\program files (x86)\Spyware Terminator\unins000.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Canon\CAL\CALMAIN.exe
.
**************************************************************************
.
Celkový čas: 2012-06-29 08:35:24 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-06-29 06:35
ComboFix2.txt 2012-06-28 17:34
ComboFix3.txt 2012-06-28 16:17
ComboFix4.txt 2012-06-28 07:29
.
Před spuštěním: Volných bajtů: 466 645 475 328
Po spuštění: Volných bajtů: 466 084 937 728
.
- - End Of File - - 656C80B471C0B77992E5ED6B69794B0D

Příspěvekod **jaro3** » 29 čer 2012 10:17

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

+
Stáhni si TDSSKiller

Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Lucasefx · Příspěvekod **Lucasefx** » 29 čer 2012 10:36

aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-06-29 10:32:01
-----------------------------
10:32:01.465 OS Version: Windows x64 6.1.7601 Service Pack 1
10:32:01.465 Number of processors: 4 586 0x2A07
10:32:01.465 ComputerName: LUCAS UserName: Lukáš
10:32:02.260 Initialize success
10:32:04.440 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-4
10:32:04.440 Disk 0 Vendor: SAMSUNG_HD103SJ 1AJ10001 Size: 953869MB BusType: 11
10:32:04.456 Disk 0 MBR read successfully
10:32:04.456 Disk 0 MBR scan
10:32:04.456 Disk 0 Windows 7 default MBR code
10:32:04.471 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
10:32:04.487 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 953767 MB offset 206848
10:32:04.487 Disk 0 scanning C:\Windows\system32\drivers
10:32:08.964 Service scanning
10:32:17.794 Modules scanning
10:32:17.794 Disk 0 trace - called modules:
10:32:17.809 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
10:32:17.809 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004797060]
10:32:17.825 3 CLASSPNP.SYS[fffff8800165143f] -> nt!IofCallDriver -> [0xfffffa80041391e0]
10:32:17.825 5 ACPI.sys[fffff88000ed47a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-4[0xfffffa8004130060]
10:32:17.841 Scan finished successfully
10:32:23.519 Disk 0 MBR has been saved successfully to "C:\Users\Lukáš\Desktop\MBR.dat"
10:32:23.519 The log file has been saved successfully to "C:\Users\Lukáš\Desktop\aswMBR.txt"

Lucasefx · Příspěvekod **Lucasefx** » 29 čer 2012 10:37

10:32:45.0348 4580 TDSS rootkit removing tool 2.7.42.0 Jun 25 2012 21:18:44
10:32:45.0816 4580 ============================================================
10:32:45.0816 4580 Current date / time: 2012/06/29 10:32:45.0816
10:32:45.0816 4580 SystemInfo:
10:32:45.0816 4580
10:32:45.0816 4580 OS Version: 6.1.7601 ServicePack: 1.0
10:32:45.0816 4580 Product type: Workstation
10:32:45.0816 4580 ComputerName: LUCAS
10:32:45.0816 4580 UserName: Lukáš
10:32:45.0816 4580 Windows directory: C:\Windows
10:32:45.0816 4580 System windows directory: C:\Windows
10:32:45.0816 4580 Running under WOW64
10:32:45.0816 4580 Processor architecture: Intel x64
10:32:45.0816 4580 Number of processors: 4
10:32:45.0816 4580 Page size: 0x1000
10:32:45.0816 4580 Boot type: Normal boot
10:32:45.0816 4580 ============================================================
10:32:46.0752 4580 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:32:46.0767 4580 ============================================================
10:32:46.0767 4580 \Device\Harddisk0\DR0:
10:32:46.0767 4580 MBR partitions:
10:32:46.0767 4580 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
10:32:46.0767 4580 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
10:32:46.0767 4580 ============================================================
10:32:46.0799 4580 C: <-> \Device\Harddisk0\DR0\Partition1
10:32:46.0799 4580 ============================================================
10:32:46.0799 4580 Initialize success
10:32:46.0799 4580 ============================================================
10:32:48.0608 3304 ============================================================
10:32:48.0608 3304 Scan started
10:32:48.0608 3304 Mode: Manual;
10:32:48.0608 3304 ============================================================
10:32:49.0388 3304 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
10:32:49.0419 3304 1394ohci - ok
10:32:49.0451 3304 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
10:32:49.0451 3304 ACPI - ok
10:32:49.0451 3304 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
10:32:49.0451 3304 AcpiPmi - ok
10:32:49.0544 3304 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:32:49.0544 3304 AdobeARMservice - ok
10:32:49.0669 3304 AdobeFlashPlayerUpdateSvc (990dc6edc9f933194d7cd4e65146bc94) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:32:49.0669 3304 AdobeFlashPlayerUpdateSvc - ok
10:32:49.0716 3304 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
10:32:49.0716 3304 adp94xx - ok
10:32:49.0778 3304 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
10:32:49.0794 3304 adpahci - ok
10:32:49.0794 3304 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
10:32:49.0809 3304 adpu320 - ok
10:32:49.0825 3304 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
10:32:49.0825 3304 AeLookupSvc - ok
10:32:49.0887 3304 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
10:32:49.0903 3304 AFD - ok
10:32:49.0934 3304 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
10:32:49.0934 3304 agp440 - ok
10:32:49.0965 3304 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
10:32:49.0965 3304 ALG - ok
10:32:49.0997 3304 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
10:32:49.0997 3304 aliide - ok
10:32:50.0012 3304 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
10:32:50.0012 3304 amdide - ok
10:32:50.0059 3304 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
10:32:50.0059 3304 AmdK8 - ok
10:32:50.0075 3304 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
10:32:50.0075 3304 AmdPPM - ok
10:32:50.0106 3304 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
10:32:50.0106 3304 amdsata - ok
10:32:50.0121 3304 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
10:32:50.0121 3304 amdsbs - ok
10:32:50.0137 3304 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
10:32:50.0137 3304 amdxata - ok
10:32:50.0153 3304 Andbus - ok
10:32:50.0153 3304 AndDiag - ok
10:32:50.0168 3304 AndGps - ok
10:32:50.0168 3304 ANDModem - ok
10:32:50.0184 3304 androidusb - ok
10:32:50.0215 3304 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
10:32:50.0215 3304 AppID - ok
10:32:50.0215 3304 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
10:32:50.0215 3304 AppIDSvc - ok
10:32:50.0262 3304 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
10:32:50.0262 3304 Appinfo - ok
10:32:50.0309 3304 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
10:32:50.0324 3304 arc - ok
10:32:50.0340 3304 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
10:32:50.0340 3304 arcsas - ok
10:32:50.0371 3304 asmthub3 (e1e75921e9eb025009696d4837f531fb) C:\Windows\system32\DRIVERS\asmthub3.sys
10:32:50.0371 3304 asmthub3 - ok
10:32:50.0402 3304 asmtxhci (b0cf9ab16006b61634d4f955345ca5d2) C:\Windows\system32\DRIVERS\asmtxhci.sys
10:32:50.0418 3304 asmtxhci - ok
10:32:50.0465 3304 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:32:50.0465 3304 aspnet_state - ok
10:32:50.0480 3304 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
10:32:50.0480 3304 AsyncMac - ok
10:32:50.0496 3304 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
10:32:50.0496 3304 atapi - ok
10:32:50.0527 3304 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
10:32:50.0543 3304 AudioEndpointBuilder - ok
10:32:50.0543 3304 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
10:32:50.0558 3304 AudioSrv - ok
10:32:50.0636 3304 Autodesk Content Service (1992c2a1867d95aa3a0802539358d162) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
10:32:50.0652 3304 Autodesk Content Service - ok
10:32:50.0699 3304 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
10:32:50.0699 3304 AxInstSV - ok
10:32:50.0745 3304 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
10:32:50.0745 3304 b06bdrv - ok
10:32:50.0792 3304 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
10:32:50.0792 3304 b57nd60a - ok
10:32:50.0839 3304 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
10:32:50.0839 3304 BDESVC - ok
10:32:50.0901 3304 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
10:32:50.0901 3304 Beep - ok
10:32:50.0964 3304 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
10:32:50.0979 3304 BFE - ok
10:32:51.0026 3304 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
10:32:51.0042 3304 BITS - ok
10:32:51.0089 3304 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
10:32:51.0089 3304 blbdrive - ok
10:32:51.0135 3304 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
10:32:51.0151 3304 bowser - ok
10:32:51.0167 3304 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
10:32:51.0167 3304 BrFiltLo - ok
10:32:51.0167 3304 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
10:32:51.0167 3304 BrFiltUp - ok
10:32:51.0213 3304 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
10:32:51.0213 3304 BridgeMP - ok
10:32:51.0260 3304 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
10:32:51.0260 3304 Browser - ok
10:32:51.0291 3304 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
10:32:51.0307 3304 Brserid - ok
10:32:51.0307 3304 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
10:32:51.0307 3304 BrSerWdm - ok
10:32:51.0323 3304 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
10:32:51.0323 3304 BrUsbMdm - ok
10:32:51.0323 3304 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
10:32:51.0338 3304 BrUsbSer - ok
10:32:51.0338 3304 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
10:32:51.0338 3304 BTHMODEM - ok
10:32:51.0354 3304 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
10:32:51.0354 3304 bthserv - ok
10:32:51.0369 3304 catchme - ok
10:32:51.0447 3304 CCALib8 (a9acc4b9730b6d5b0bb2bffdc53f0812) C:\Program Files (x86)\Canon\CAL\CALMAIN.exe
10:32:51.0447 3304 CCALib8 - ok
10:32:51.0463 3304 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
10:32:51.0463 3304 cdfs - ok
10:32:51.0510 3304 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
10:32:51.0510 3304 cdrom - ok
10:32:51.0557 3304 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
10:32:51.0557 3304 CertPropSvc - ok
10:32:51.0588 3304 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
10:32:51.0588 3304 circlass - ok
10:32:51.0635 3304 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
10:32:51.0635 3304 CLFS - ok
10:32:51.0681 3304 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:32:51.0697 3304 clr_optimization_v2.0.50727_32 - ok
10:32:51.0728 3304 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:32:51.0728 3304 clr_optimization_v2.0.50727_64 - ok
10:32:51.0806 3304 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:32:51.0806 3304 clr_optimization_v4.0.30319_32 - ok
10:32:51.0837 3304 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:32:51.0837 3304 clr_optimization_v4.0.30319_64 - ok
10:32:51.0869 3304 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
10:32:51.0869 3304 CmBatt - ok
10:32:51.0884 3304 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
10:32:51.0884 3304 cmdide - ok
10:32:51.0931 3304 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
10:32:51.0947 3304 CNG - ok
10:32:51.0962 3304 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
10:32:51.0962 3304 Compbatt - ok
10:32:51.0993 3304 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
10:32:51.0993 3304 CompositeBus - ok
10:32:52.0009 3304 COMSysApp - ok
10:32:52.0040 3304 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
10:32:52.0040 3304 crcdisk - ok
10:32:52.0087 3304 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
10:32:52.0087 3304 CryptSvc - ok
10:32:52.0118 3304 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
10:32:52.0134 3304 DcomLaunch - ok
10:32:52.0165 3304 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
10:32:52.0165 3304 defragsvc - ok
10:32:52.0212 3304 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
10:32:52.0212 3304 DfsC - ok
10:32:52.0259 3304 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
10:32:52.0259 3304 Dhcp - ok
10:32:52.0321 3304 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
10:32:52.0321 3304 discache - ok
10:32:52.0430 3304 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
10:32:52.0430 3304 Disk - ok
10:32:52.0446 3304 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
10:32:52.0461 3304 Dnscache - ok
10:32:52.0493 3304 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
10:32:52.0493 3304 dot3svc - ok
10:32:52.0524 3304 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
10:32:52.0524 3304 DPS - ok
10:32:52.0571 3304 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
10:32:52.0586 3304 drmkaud - ok
10:32:52.0649 3304 dtsoftbus01 (fb9bef3401ee5ecc2603311b9c64f44a) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
10:32:52.0649 3304 dtsoftbus01 - ok
10:32:52.0695 3304 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
10:32:52.0711 3304 DXGKrnl - ok
10:32:52.0758 3304 eamonm (aca3fe4f18a945b7bf2618a79f6f670b) C:\Windows\system32\DRIVERS\eamonm.sys
10:32:52.0758 3304 eamonm - ok
10:32:52.0789 3304 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
10:32:52.0789 3304 EapHost - ok
10:32:52.0898 3304 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
10:32:52.0929 3304 ebdrv - ok
10:32:52.0992 3304 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
10:32:52.0992 3304 EFS - ok
10:32:53.0039 3304 ehdrv (6672438bdcbfd87250d22112d458294d) C:\Windows\system32\DRIVERS\ehdrv.sys
10:32:53.0070 3304 ehdrv - ok
10:32:53.0101 3304 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
10:32:53.0117 3304 ehRecvr - ok
10:32:53.0148 3304 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
10:32:53.0148 3304 ehSched - ok
10:32:53.0226 3304 EhttpSrv (deb2b067745d92ff17a5068dfd2360bc) C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
10:32:53.0226 3304 EhttpSrv - ok
10:32:53.0273 3304 ekrn (191d8eccc40f05b52fac0513f35ba01d) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
10:32:53.0273 3304 ekrn - ok
10:32:53.0351 3304 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
10:32:53.0351 3304 elxstor - ok
10:32:53.0382 3304 epfwwfpr (954fade8e59f159b0a71d0cfcc99a76e) C:\Windows\system32\DRIVERS\epfwwfpr.sys
10:32:53.0382 3304 epfwwfpr - ok
10:32:53.0413 3304 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
10:32:53.0413 3304 ErrDev - ok
10:32:53.0460 3304 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
10:32:53.0475 3304 EventSystem - ok
10:32:53.0507 3304 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
10:32:53.0507 3304 exfat - ok
10:32:53.0522 3304 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
10:32:53.0522 3304 fastfat - ok
10:32:53.0585 3304 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
10:32:53.0585 3304 Fax - ok
10:32:53.0600 3304 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
10:32:53.0616 3304 fdc - ok
10:32:53.0663 3304 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
10:32:53.0663 3304 fdPHost - ok
10:32:53.0678 3304 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
10:32:53.0678 3304 FDResPub - ok
10:32:53.0678 3304 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
10:32:53.0678 3304 FileInfo - ok
10:32:53.0694 3304 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
10:32:53.0694 3304 Filetrace - ok
10:32:53.0787 3304 FLEXnet Licensing Service 64 (5cee6cd43ae5844c49300ea0b1e557ee) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
10:32:53.0803 3304 FLEXnet Licensing Service 64 - ok
10:32:53.0865 3304 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
10:32:53.0865 3304 flpydisk - ok
10:32:53.0912 3304 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
10:32:53.0912 3304 FltMgr - ok
10:32:53.0959 3304 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
10:32:53.0975 3304 FontCache - ok
10:32:54.0037 3304 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:32:54.0037 3304 FontCache3.0.0.0 - ok
10:32:54.0053 3304 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
10:32:54.0053 3304 FsDepends - ok
10:32:54.0068 3304 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
10:32:54.0068 3304 Fs_Rec - ok
10:32:54.0099 3304 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
10:32:54.0131 3304 fvevol - ok
10:32:54.0177 3304 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
10:32:54.0177 3304 gagp30kx - ok
10:32:54.0209 3304 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
10:32:54.0224 3304 gpsvc - ok
10:32:54.0240 3304 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
10:32:54.0240 3304 hcw85cir - ok
10:32:54.0302 3304 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
10:32:54.0302 3304 HdAudAddService - ok
10:32:54.0318 3304 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
10:32:54.0318 3304 HDAudBus - ok
10:32:54.0349 3304 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
10:32:54.0349 3304 HidBatt - ok
10:32:54.0365 3304 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
10:32:54.0365 3304 HidBth - ok
10:32:54.0380 3304 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
10:32:54.0380 3304 HidIr - ok
10:32:54.0411 3304 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
10:32:54.0411 3304 hidserv - ok
10:32:54.0443 3304 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
10:32:54.0443 3304 HidUsb - ok
10:32:54.0474 3304 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
10:32:54.0474 3304 hkmsvc - ok
10:32:54.0505 3304 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
10:32:54.0505 3304 HomeGroupListener - ok
10:32:54.0536 3304 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
10:32:54.0536 3304 HomeGroupProvider - ok
10:32:54.0567 3304 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
10:32:54.0567 3304 HpSAMD - ok
10:32:54.0645 3304 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
10:32:54.0661 3304 HTTP - ok
10:32:54.0677 3304 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
10:32:54.0677 3304 hwpolicy - ok
10:32:54.0692 3304 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
10:32:54.0692 3304 i8042prt - ok
10:32:54.0755 3304 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
10:32:54.0755 3304 iaStorV - ok
10:32:54.0848 3304 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:32:54.0864 3304 idsvc - ok
10:32:54.0864 3304 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
10:32:54.0879 3304 iirsp - ok
10:32:54.0926 3304 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
10:32:54.0926 3304 IKEEXT - ok
10:32:55.0051 3304 IntcAzAudAddService (26407a11d7e222afb7ce32700abbd9d1) C:\Windows\system32\drivers\RTKVHD64.sys
10:32:55.0082 3304 IntcAzAudAddService - ok
10:32:55.0176 3304 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
10:32:55.0176 3304 intelide - ok
10:32:55.0207 3304 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
10:32:55.0207 3304 intelppm - ok
10:32:55.0238 3304 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
10:32:55.0238 3304 IPBusEnum - ok
10:32:55.0254 3304 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:32:55.0254 3304 IpFilterDriver - ok
10:32:55.0301 3304 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
10:32:55.0301 3304 iphlpsvc - ok
10:32:55.0316 3304 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
10:32:55.0316 3304 IPMIDRV - ok
10:32:55.0347 3304 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
10:32:55.0347 3304 IPNAT - ok
10:32:55.0394 3304 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
10:32:55.0394 3304 IRENUM - ok
10:32:55.0410 3304 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
10:32:55.0410 3304 isapnp - ok
10:32:55.0441 3304 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
10:32:55.0441 3304 iScsiPrt - ok
10:32:55.0472 3304 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
10:32:55.0472 3304 kbdclass - ok
10:32:55.0503 3304 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
10:32:55.0503 3304 kbdhid - ok
10:32:55.0535 3304 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:32:55.0535 3304 KeyIso - ok
10:32:55.0550 3304 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
10:32:55.0550 3304 KSecDD - ok
10:32:55.0566 3304 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
10:32:55.0566 3304 KSecPkg - ok
10:32:55.0581 3304 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
10:32:55.0581 3304 ksthunk - ok
10:32:55.0628 3304 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
10:32:55.0628 3304 KtmRm - ok
10:32:55.0691 3304 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
10:32:55.0691 3304 LanmanServer - ok
10:32:55.0722 3304 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
10:32:55.0722 3304 LanmanWorkstation - ok
10:32:55.0737 3304 LgBttPort - ok
10:32:55.0737 3304 lgbusenum - ok
10:32:55.0737 3304 LGVMODEM - ok
10:32:55.0784 3304 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
10:32:55.0784 3304 lltdio - ok
10:32:55.0815 3304 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
10:32:55.0815 3304 lltdsvc - ok
10:32:55.0815 3304 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
10:32:55.0831 3304 lmhosts - ok
10:32:55.0878 3304 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
10:32:55.0878 3304 LSI_FC - ok
10:32:55.0893 3304 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
10:32:55.0893 3304 LSI_SAS - ok
10:32:55.0909 3304 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
10:32:55.0925 3304 LSI_SAS2 - ok
10:32:55.0940 3304 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
10:32:55.0940 3304 LSI_SCSI - ok
10:32:55.0971 3304 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
10:32:55.0971 3304 luafv - ok
10:32:56.0018 3304 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
10:32:56.0018 3304 MBAMProtector - ok
10:32:56.0065 3304 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
10:32:56.0081 3304 MBAMService - ok
10:32:56.0096 3304 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
10:32:56.0112 3304 Mcx2Svc - ok
10:32:56.0127 3304 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
10:32:56.0127 3304 megasas - ok
10:32:56.0143 3304 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
10:32:56.0174 3304 MegaSR - ok
10:32:56.0221 3304 Microsoft SharePoint Workspace Audit Service - ok
10:32:56.0268 3304 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
10:32:56.0268 3304 MMCSS - ok
10:32:56.0283 3304 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
10:32:56.0283 3304 Modem - ok
10:32:56.0315 3304 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
10:32:56.0315 3304 monitor - ok
10:32:56.0346 3304 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
10:32:56.0346 3304 mouclass - ok
10:32:56.0377 3304 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
10:32:56.0377 3304 mouhid - ok
10:32:56.0393 3304 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
10:32:56.0393 3304 mountmgr - ok
10:32:56.0455 3304 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
10:32:56.0455 3304 MozillaMaintenance - ok
10:32:56.0471 3304 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
10:32:56.0471 3304 mpio - ok
10:32:56.0486 3304 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
10:32:56.0502 3304 mpsdrv - ok
10:32:56.0549 3304 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
10:32:56.0549 3304 MpsSvc - ok
10:32:56.0580 3304 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
10:32:56.0580 3304 MRxDAV - ok
10:32:56.0595 3304 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
10:32:56.0595 3304 mrxsmb - ok
10:32:56.0627 3304 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:32:56.0627 3304 mrxsmb10 - ok
10:32:56.0658 3304 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:32:56.0658 3304 mrxsmb20 - ok
10:32:56.0658 3304 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
10:32:56.0658 3304 msahci - ok
10:32:56.0673 3304 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
10:32:56.0673 3304 msdsm - ok
10:32:56.0705 3304 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
10:32:56.0705 3304 MSDTC - ok
10:32:56.0720 3304 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
10:32:56.0720 3304 Msfs - ok
10:32:56.0751 3304 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
10:32:56.0751 3304 mshidkmdf - ok
10:32:56.0767 3304 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
10:32:56.0767 3304 msisadrv - ok
10:32:56.0783 3304 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
10:32:56.0798 3304 MSiSCSI - ok
10:32:56.0798 3304 msiserver - ok
10:32:56.0814 3304 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
10:32:56.0814 3304 MSKSSRV - ok
10:32:56.0829 3304 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
10:32:56.0829 3304 MSPCLOCK - ok
10:32:56.0845 3304 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
10:32:56.0845 3304 MSPQM - ok
10:32:56.0876 3304 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
10:32:56.0892 3304 MsRPC - ok
10:32:56.0907 3304 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
10:32:56.0907 3304 mssmbios - ok
10:32:56.0923 3304 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
10:32:56.0923 3304 MSTEE - ok
10:32:56.0923 3304 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
10:32:56.0939 3304 MTConfig - ok
10:32:56.0970 3304 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
10:32:56.0970 3304 Mup - ok
10:32:57.0001 3304 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
10:32:57.0001 3304 napagent - ok
10:32:57.0063 3304 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
10:32:57.0095 3304 NativeWifiP - ok
10:32:57.0126 3304 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
10:32:57.0141 3304 NDIS - ok
10:32:57.0157 3304 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
10:32:57.0157 3304 NdisCap - ok
10:32:57.0188 3304 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
10:32:57.0188 3304 NdisTapi - ok
10:32:57.0204 3304 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
10:32:57.0204 3304 Ndisuio - ok
10:32:57.0219 3304 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
10:32:57.0219 3304 NdisWan - ok
10:32:57.0235 3304 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
10:32:57.0235 3304 NDProxy - ok
10:32:57.0251 3304 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
10:32:57.0251 3304 NetBIOS - ok
10:32:57.0282 3304 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
10:32:57.0282 3304 NetBT - ok
10:32:57.0313 3304 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:32:57.0313 3304 Netlogon - ok
10:32:57.0360 3304 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
10:32:57.0360 3304 Netman - ok
10:32:57.0469 3304 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:32:57.0469 3304 NetMsmqActivator - ok
10:32:57.0469 3304 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:32:57.0469 3304 NetPipeActivator - ok
10:32:57.0485 3304 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
10:32:57.0500 3304 netprofm - ok
10:32:57.0500 3304 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:32:57.0500 3304 NetTcpActivator - ok
10:32:57.0500 3304 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:32:57.0500 3304 NetTcpPortSharing - ok
10:32:57.0563 3304 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
10:32:57.0563 3304 nfrd960 - ok
10:32:57.0594 3304 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
10:32:57.0594 3304 NlaSvc - ok
10:32:57.0641 3304 nmwcd (907b5e1e4a592e5edc5e4ccbde4863c2) C:\Windows\system32\drivers\ccdcmbx64.sys
10:32:57.0641 3304 nmwcd - ok
10:32:57.0703 3304 nmwcdc (41c1ac1f3613435eb32d67bcb80a5fa5) C:\Windows\system32\drivers\ccdcmbox64.sys
10:32:57.0703 3304 nmwcdc - ok
10:32:57.0703 3304 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
10:32:57.0719 3304 Npfs - ok
10:32:57.0734 3304 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
10:32:57.0734 3304 nsi - ok
10:32:57.0750 3304 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
10:32:57.0750 3304 nsiproxy - ok
10:32:57.0812 3304 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
10:32:57.0828 3304 Ntfs - ok
10:32:57.0921 3304 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
10:32:57.0937 3304 Null - ok
10:32:57.0968 3304 NVHDA (102806b360d0e6bc6e55bf47ef655d43) C:\Windows\system32\drivers\nvhda64v.sys
10:32:57.0984 3304 NVHDA - ok
10:32:58.0311 3304 nvlddmkm (ba0b4889c40380a01ecdf84c227a89c9) C:\Windows\system32\DRIVERS\nvlddmkm.sys
10:32:58.0452 3304 nvlddmkm - ok
10:32:58.0514 3304 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
10:32:58.0514 3304 nvraid - ok
10:32:58.0530 3304 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
10:32:58.0530 3304 nvstor - ok
10:32:58.0577 3304 nvsvc (06633cf95bea62164c3bfca24bce6b11) C:\Windows\system32\nvvsvc.exe
10:32:58.0592 3304 nvsvc - ok
10:32:58.0686 3304 nvUpdatusService (53b629ce436b110c5689c2f6439e567b) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
10:32:58.0701 3304 nvUpdatusService - ok
10:32:58.0764 3304 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
10:32:58.0764 3304 nv_agp - ok
10:32:58.0779 3304 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
10:32:58.0779 3304 ohci1394 - ok
10:32:58.0857 3304 ose64 (4965b005492cba7719e82b71e3245495) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:32:58.0857 3304 ose64 - ok
10:32:59.0013 3304 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:32:59.0045 3304 osppsvc - ok
10:32:59.0107 3304 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
10:32:59.0123 3304 p2pimsvc - ok
10:32:59.0138 3304 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
10:32:59.0154 3304 p2psvc - ok
10:32:59.0169 3304 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
10:32:59.0169 3304 Parport - ok
10:32:59.0201 3304 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
10:32:59.0201 3304 partmgr - ok
10:32:59.0216 3304 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
10:32:59.0232 3304 PcaSvc - ok
10:32:59.0247 3304 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
10:32:59.0247 3304 pci - ok
10:32:59.0247 3304 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
10:32:59.0247 3304 pciide - ok
10:32:59.0263 3304 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
10:32:59.0279 3304 pcmcia - ok
10:32:59.0294 3304 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
10:32:59.0294 3304 pcw - ok
10:32:59.0325 3304 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
10:32:59.0357 3304 PEAUTH - ok
10:32:59.0388 3304 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
10:32:59.0403 3304 PerfHost - ok
10:32:59.0403 3304 pfc - ok
10:32:59.0466 3304 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
10:32:59.0481 3304 pla - ok
10:32:59.0513 3304 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
10:32:59.0528 3304 PlugPlay - ok
10:32:59.0544 3304 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
10:32:59.0544 3304 PNRPAutoReg - ok
10:32:59.0575 3304 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
10:32:59.0575 3304 PNRPsvc - ok
10:32:59.0606 3304 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
10:32:59.0622 3304 PolicyAgent - ok
10:32:59.0637 3304 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
10:32:59.0637 3304 Power - ok
10:32:59.0700 3304 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
10:32:59.0700 3304 PptpMiniport - ok
10:32:59.0715 3304 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
10:32:59.0715 3304 Processor - ok
10:32:59.0762 3304 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
10:32:59.0762 3304 ProfSvc - ok
10:32:59.0793 3304 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:32:59.0793 3304 ProtectedStorage - ok
10:32:59.0825 3304 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
10:32:59.0840 3304 Psched - ok
10:32:59.0918 3304 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
10:32:59.0934 3304 ql2300 - ok
10:32:59.0996 3304 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
10:32:59.0996 3304 ql40xx - ok
10:33:00.0027 3304 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
10:33:00.0027 3304 QWAVE - ok
10:33:00.0043 3304 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
10:33:00.0059 3304 QWAVEdrv - ok
10:33:00.0074 3304 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
10:33:00.0074 3304 RasAcd - ok
10:33:00.0090 3304 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
10:33:00.0105 3304 RasAgileVpn - ok
10:33:00.0105 3304 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
10:33:00.0121 3304 RasAuto - ok
10:33:00.0137 3304 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
10:33:00.0168 3304 Rasl2tp - ok
10:33:00.0215 3304 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
10:33:00.0230 3304 RasMan - ok
10:33:00.0261 3304 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
10:33:00.0261 3304 RasPppoe - ok
10:33:00.0277 3304 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
10:33:00.0277 3304 RasSstp - ok
10:33:00.0293 3304 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
10:33:00.0293 3304 rdbss - ok
10:33:00.0324 3304 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
10:33:00.0324 3304 rdpbus - ok
10:33:00.0339 3304 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
10:33:00.0339 3304 RDPCDD - ok
10:33:00.0371 3304 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
10:33:00.0371 3304 RDPENCDD - ok
10:33:00.0386 3304 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
10:33:00.0386 3304 RDPREFMP - ok
10:33:00.0417 3304 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
10:33:00.0417 3304 RDPWD - ok
10:33:00.0449 3304 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
10:33:00.0449 3304 rdyboost - ok
10:33:00.0480 3304 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
10:33:00.0480 3304 RemoteAccess - ok
10:33:00.0511 3304 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
10:33:00.0511 3304 RemoteRegistry - ok
10:33:00.0573 3304 Revoflt (9c3ac71a9934b884fac567a8807e9c4d) C:\Windows\system32\DRIVERS\revoflt.sys
10:33:00.0573 3304 Revoflt - ok
10:33:00.0620 3304 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
10:33:00.0620 3304 RpcEptMapper - ok
10:33:00.0636 3304 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
10:33:00.0636 3304 RpcLocator - ok
10:33:00.0667 3304 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
10:33:00.0683 3304 RpcSs - ok
10:33:00.0683 3304 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
10:33:00.0698 3304 rspndr - ok
10:33:00.0745 3304 RTL8167 (16d4e350420baa7e63e16e3fc033e1f5) C:\Windows\system32\DRIVERS\Rt64win7.sys
10:33:00.0745 3304 RTL8167 - ok
10:33:00.0776 3304 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:33:00.0776 3304 SamSs - ok
10:33:00.0807 3304 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
10:33:00.0807 3304 sbp2port - ok
10:33:00.0839 3304 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
10:33:00.0839 3304 SCardSvr - ok
10:33:00.0854 3304 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
10:33:00.0870 3304 scfilter - ok
10:33:00.0932 3304 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
10:33:00.0948 3304 Schedule - ok
10:33:00.0963 3304 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
10:33:00.0963 3304 SCPolicySvc - ok
10:33:00.0979 3304 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
10:33:00.0979 3304 SDRSVC - ok
10:33:01.0026 3304 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
10:33:01.0026 3304 secdrv - ok
10:33:01.0057 3304 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
10:33:01.0057 3304 seclogon - ok
10:33:01.0088 3304 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
10:33:01.0088 3304 SENS - ok
10:33:01.0119 3304 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
10:33:01.0119 3304 SensrSvc - ok
10:33:01.0166 3304 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
10:33:01.0166 3304 Serenum - ok
10:33:01.0197 3304 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
10:33:01.0197 3304 Serial - ok
10:33:01.0260 3304 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
10:33:01.0260 3304 sermouse - ok
10:33:01.0275 3304 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
10:33:01.0291 3304 SessionEnv - ok
10:33:01.0291 3304 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
10:33:01.0291 3304 sffdisk - ok
10:33:01.0307 3304 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
10:33:01.0307 3304 sffp_mmc - ok
10:33:01.0322 3304 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
10:33:01.0322 3304 sffp_sd - ok
10:33:01.0322 3304 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
10:33:01.0322 3304 sfloppy - ok
10:33:01.0369 3304 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
10:33:01.0369 3304 SharedAccess - ok
10:33:01.0400 3304 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
10:33:01.0400 3304 ShellHWDetection - ok
10:33:01.0416 3304 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
10:33:01.0416 3304 SiSRaid2 - ok
10:33:01.0447 3304 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
10:33:01.0447 3304 SiSRaid4 - ok
10:33:01.0494 3304 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
10:33:01.0494 3304 Smb - ok
10:33:01.0525 3304 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
10:33:01.0541 3304 SNMPTRAP - ok
10:33:01.0541 3304 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
10:33:01.0541 3304 spldr - ok
10:33:01.0572 3304 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
10:33:01.0587 3304 Spooler - ok
10:33:01.0681 3304 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
10:33:01.0728 3304 sppsvc - ok
10:33:01.0806 3304 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
10:33:01.0806 3304 sppuinotify - ok
10:33:01.0853 3304 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
10:33:01.0899 3304 srv - ok
10:33:01.0915 3304 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
10:33:01.0931 3304 srv2 - ok
10:33:01.0931 3304 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
10:33:01.0931 3304 srvnet - ok
10:33:01.0977 3304 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
10:33:01.0977 3304 SSDPSRV - ok
10:33:01.0993 3304 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
10:33:01.0993 3304 SstpSvc - ok
10:33:02.0118 3304 Stereo Service (c354621b6b94e10ae7f5cdbe745feb86) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
10:33:02.0133 3304 Stereo Service - ok
10:33:02.0149 3304 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
10:33:02.0149 3304 stexstor - ok
10:33:02.0211 3304 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
10:33:02.0211 3304 stisvc - ok
10:33:02.0227 3304 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
10:33:02.0227 3304 swenum - ok
10:33:02.0258 3304 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
10:33:02.0274 3304 swprv - ok
10:33:02.0336 3304 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
10:33:02.0352 3304 SysMain - ok
10:33:02.0430 3304 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
10:33:02.0430 3304 TabletInputService - ok
10:33:02.0461 3304 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
10:33:02.0477 3304 TapiSrv - ok
10:33:02.0492 3304 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
10:33:02.0492 3304 TBS - ok
10:33:02.0617 3304 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
10:33:02.0633 3304 Tcpip - ok
10:33:02.0711 3304 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
10:33:02.0726 3304 TCPIP6 - ok
10:33:02.0773 3304 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
10:33:02.0773 3304 tcpipreg - ok
10:33:02.0789 3304 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
10:33:02.0789 3304 TDPIPE - ok
10:33:02.0820 3304 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
10:33:02.0820 3304 TDTCP - ok
10:33:02.0867 3304 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
10:33:02.0867 3304 tdx - ok
10:33:02.0898 3304 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
10:33:02.0898 3304 TermDD - ok
10:33:02.0929 3304 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
10:33:02.0945 3304 TermService - ok
10:33:02.0960 3304 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
10:33:02.0960 3304 Themes - ok
10:33:02.0976 3304 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
10:33:02.0976 3304 THREADORDER - ok
10:33:03.0007 3304 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
10:33:03.0007 3304 TrkWks - ok
10:33:03.0038 3304 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
10:33:03.0038 3304 TrustedInstaller - ok
10:33:03.0054 3304 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
10:33:03.0054 3304 tssecsrv - ok
10:33:03.0069 3304 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
10:33:03.0069 3304 TsUsbFlt - ok
10:33:03.0085 3304 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
10:33:03.0085 3304 TsUsbGD - ok
10:33:03.0116 3304 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
10:33:03.0116 3304 tunnel - ok
10:33:03.0147 3304 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
10:33:03.0147 3304 uagp35 - ok
10:33:03.0163 3304 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
10:33:03.0179 3304 udfs - ok
10:33:03.0194 3304 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
10:33:03.0194 3304 UI0Detect - ok
10:33:03.0225 3304 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
10:33:03.0241 3304 uliagpkx - ok
10:33:03.0272 3304 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
10:33:03.0272 3304 umbus - ok
10:33:03.0303 3304 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
10:33:03.0303 3304 UmPass - ok
10:33:03.0319 3304 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
10:33:03.0335 3304 upnphost - ok
10:33:03.0381 3304 upperdev (4e93c8496359e97830c75ac36393654d) C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
10:33:03.0381 3304 upperdev - ok
10:33:03.0428 3304 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
10:33:03.0428 3304 usbccgp - ok
10:33:03.0444 3304 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
10:33:03.0444 3304 usbcir - ok
10:33:03.0459 3304 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
10:33:03.0459 3304 usbehci - ok
10:33:03.0475 3304 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
10:33:03.0491 3304 usbhub - ok
10:33:03.0491 3304 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
10:33:03.0506 3304 usbohci - ok
10:33:03.0506 3304 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\drivers\usbprint.sys
10:33:03.0506 3304 usbprint - ok
10:33:03.0522 3304 usbser (4acee387fa8fd39f83564fcd2fc234f2) C:\Windows\system32\drivers\usbser.sys
10:33:03.0522 3304 usbser - ok
10:33:03.0537 3304 UsbserFilt (8844cb19a37b65e27049d4a7786726a9) C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
10:33:03.0537 3304 UsbserFilt - ok
10:33:03.0553 3304 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:33:03.0553 3304 USBSTOR - ok
10:33:03.0569 3304 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
10:33:03.0569 3304 usbuhci - ok
10:33:03.0569 3304 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
10:33:03.0569 3304 UxSms - ok
10:33:03.0600 3304 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:33:03.0600 3304 VaultSvc - ok
10:33:03.0615 3304 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
10:33:03.0615 3304 vdrvroot - ok
10:33:03.0647 3304 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
10:33:03.0647 3304 vds - ok
10:33:03.0693 3304 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
10:33:03.0693 3304 vga - ok
10:33:03.0709 3304 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
10:33:03.0709 3304 VgaSave - ok
10:33:03.0740 3304 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
10:33:03.0740 3304 vhdmp - ok
10:33:03.0756 3304 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
10:33:03.0756 3304 viaide - ok
10:33:03.0756 3304 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
10:33:03.0756 3304 volmgr - ok
10:33:03.0771 3304 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
10:33:03.0787 3304 volmgrx - ok
10:33:03.0803 3304 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
10:33:03.0803 3304 volsnap - ok
10:33:03.0818 3304 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
10:33:03.0818 3304 vsmraid - ok
10:33:03.0849 3304 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
10:33:03.0865 3304 VSS - ok
10:33:03.0943 3304 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
10:33:03.0959 3304 vwifibus - ok
10:33:04.0005 3304 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
10:33:04.0005 3304 W32Time - ok
10:33:04.0021 3304 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
10:33:04.0021 3304 WacomPen - ok
10:33:04.0083 3304 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
10:33:04.0083 3304 WANARP - ok
10:33:04.0083 3304 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
10:33:04.0083 3304 Wanarpv6 - ok
10:33:04.0146 3304 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
10:33:04.0161 3304 WatAdminSvc - ok
10:33:04.0239 3304 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
10:33:04.0255 3304 wbengine - ok
10:33:04.0286 3304 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
10:33:04.0302 3304 WbioSrvc - ok
10:33:04.0333 3304 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
10:33:04.0333 3304 wcncsvc - ok
10:33:04.0349 3304 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
10:33:04.0364 3304 WcsPlugInService - ok
10:33:04.0380 3304 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
10:33:04.0380 3304 Wd - ok
10:33:04.0427 3304 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
10:33:04.0442 3304 Wdf01000 - ok
10:33:04.0458 3304 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
10:33:04.0458 3304 WdiServiceHost - ok
10:33:04.0458 3304 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
10:33:04.0458 3304 WdiSystemHost - ok
10:33:04.0489 3304 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
10:33:04.0505 3304 WebClient - ok
10:33:04.0505 3304 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
10:33:04.0520 3304 Wecsvc - ok
10:33:04.0536 3304 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
10:33:04.0536 3304 wercplsupport - ok
10:33:04.0567 3304 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
10:33:04.0583 3304 WerSvc - ok
10:33:04.0614 3304 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
10:33:04.0614 3304 WfpLwf - ok
10:33:04.0629 3304 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
10:33:04.0629 3304 WIMMount - ok
10:33:04.0692 3304 WinDefend - ok
10:33:04.0692 3304 WinHttpAutoProxySvc - ok
10:33:04.0739 3304 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
10:33:04.0739 3304 Winmgmt - ok
10:33:04.0801 3304 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
10:33:04.0832 3304 WinRM - ok
10:33:04.0926 3304 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
10:33:04.0926 3304 WinUsb - ok
10:33:04.0988 3304 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
10:33:05.0004 3304 Wlansvc - ok
10:33:05.0129 3304 wlidsvc (98f138897ef4246381d197cb81846d62) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

Lucasefx · Příspěvekod **Lucasefx** » 29 čer 2012 10:38

10:33:05.0160 3304 wlidsvc - ok
10:33:05.0191 3304 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
10:33:05.0191 3304 WmiAcpi - ok
10:33:05.0207 3304 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
10:33:05.0222 3304 wmiApSrv - ok
10:33:05.0253 3304 WMPNetworkSvc - ok
10:33:05.0269 3304 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
10:33:05.0269 3304 WPCSvc - ok
10:33:05.0300 3304 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
10:33:05.0300 3304 WPDBusEnum - ok
10:33:05.0331 3304 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
10:33:05.0331 3304 ws2ifsl - ok
10:33:05.0331 3304 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
10:33:05.0347 3304 wscsvc - ok
10:33:05.0347 3304 WSearch - ok
10:33:05.0425 3304 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
10:33:05.0441 3304 wuauserv - ok
10:33:05.0487 3304 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
10:33:05.0487 3304 WudfPf - ok
10:33:05.0503 3304 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
10:33:05.0503 3304 WUDFRd - ok
10:33:05.0519 3304 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
10:33:05.0519 3304 wudfsvc - ok
10:33:05.0550 3304 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
10:33:05.0550 3304 WwanSvc - ok
10:33:05.0581 3304 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
10:33:05.0706 3304 \Device\Harddisk0\DR0 - ok
10:33:05.0706 3304 Boot (0x1200) (2177b461d5ae66bd938c65d3669f1f0f) \Device\Harddisk0\DR0\Partition0
10:33:05.0706 3304 \Device\Harddisk0\DR0\Partition0 - ok
10:33:05.0721 3304 Boot (0x1200) (7fd62b47bc24560333e849631a8902c8) \Device\Harddisk0\DR0\Partition1
10:33:05.0721 3304 \Device\Harddisk0\DR0\Partition1 - ok
10:33:05.0721 3304 ============================================================
10:33:05.0721 3304 Scan finished
10:33:05.0721 3304 ============================================================
10:33:05.0737 3652 Detected object count: 0
10:33:05.0737 3652 Actual detected object count: 0
10:33:12.0773 2752 Deinitialize success

Příspěvekod **Žbeky** » 29 čer 2012 15:20

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj AVG , Avast,Avira či Microsoft Security Essentials následně T-Cleaner smaž a zapni si AVG , Avast, Avira či Microsoft Security Essentials

+ Nový log z HJT

Jak se chová PC?

Terohlaf · Příspěvekod **Terohlaf** » 29 čer 2012 18:30

Ahoj, mám stejný problém, nevím ale, zda mohu požádat o pomoc tímto způsobem. Poradí mi někdo, pls?

guest · Příspěvekod **guest** » 29 čer 2012 18:48

Vítej na PC-Help!

Můžeš, ale založ si vlastní samostatné téma, dle pravidel a nemontuj to do cizího.

nenačítá se stránaka facebook

Re: nenačítá se stránaka facebook

Re: nenačítá se stránaka facebook

Re: nenačítá se stránaka facebook

Re: nenačítá se stránaka facebook

Re: nenačítá se stránaka facebook

Re: nenačítá se stránaka facebook

Re: nenačítá se stránaka facebook

Re: nenačítá se stránaka facebook

Re: nenačítá se stránaka facebook

Re: nenačítá se stránaka facebook

Re: nenačítá se stránaka facebook

Re: nenačítá se stránaka facebook

Kdo je online