prosím o kontrolu logu sekájí se mi hry Vyřešeno

[juras.hc]

Ahoj, občas se mi stává že hra nejde plynule, ne pořád, ale jen někdy.. a ne že by se to lagovalo moc, ale jen nepatrně, ale štve mě to... je to např. u her Assassins creed revelations kterou bych rozjel aj ''dvakrát'' a u demu Fify 13.. zkoušel jsem i aktualizovat ovladač grafiky, to nepomohlo.. tady je moje sestava.. http://www.alfacomp.cz/php/basket.php?i ... XK0118NY01
a tady log..

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:59:45, on 27.9.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
D:\Program Files (x86)\PowerISO\PWRISOVM.EXE
C:\Program Files (x86)\Ask.com\Updater\Updater.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\AVG\AVG2012\avgtray.exe
C:\Program Files (x86)\AVG Secure Search\vprot.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Users\Pc\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Pc\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Pc\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Pc\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Pc\Downloads\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\12.2.5.32\AVG Secure Search_toolbar.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O3 - Toolbar: Nero Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\12.2.5.32\AVG Secure Search_toolbar.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [PWRISOVM.EXE] D:\Program Files (x86)\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
O4 - HKLM\..\Run: [ROC_roc_ssl_v12] "C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe" / /PROMPT /CMPID=roc_ssl_v12
O4 - HKLM\..\Run: [ROC_ROC_JULY_P1] "C:\Program Files (x86)\AVG Secure Search\ROC_ROC_JULY_P1.exe" / /PROMPT /CMPID=ROC_JULY_P1
O4 - HKLM\..\RunOnce: [EasyTuneVI] C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Pc\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [EADM] "D:\programy\Origin\Origin.exe" -AutoStart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2817804364-3950634721-3114671556-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2817804364-3950634721-3114671556-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\12.2.6\ViProtocol.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater12.2.6 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11194 bytes

[Reklama]

[Orcus]

Odkaz na sestavu nefunguje. Aktualizuj AVG na verzi 2013 a odeber Spyware terminator. 2 AV programy se budou bít. Navíc AVG obsahuje ochranu proti spywaru.

Je opravdu nutné mít Skype zaplý hned po startu? Pokud je to nutný, nefixuj poslední položku v poli kód.

Odinstaluj:

Ask Toolbar
Nero Toolbar
AVG Security Toolbar

Fixni:

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Pc\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

[juras.hc]

díky moc, tady je ten log z toho malwarebytes


Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware) 1.65.0.1400
www.malwarebytes.org

Verze databáze: v2012.09.27.09

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
Pc :: PC-PC [administrátor]

Ochrana: Povolena

27.9.2012 20:20:00
mbam-log-2012-09-27 (20-46-32).txt

Typ: Úplná kontrola (C:\|D:\|E:\|F:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 334347
Uplynulý čas: 24 minut, 37 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 2
C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\ubiorbitapi_r2.dll (Trojan.Agent.CK) -> Žádná instrukce nebyla provedena.
C:\w7lxe-v10.exe\w7lxe-v10.exe (Riskware.Tool.CK) -> Žádná instrukce nebyla provedena.

(konec)

[jaro3]

. Takže spusť znovu MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Ukaž výsledky
- ujisti se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Můžeš sem pak vložit nový log z MbAM.

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[juras.hc]

a ještě to Nero Toolbar sem odinstaloval, ale Ask Toolbar a AVG Security Toolbar nemužu nikde najít..

[juras.hc]

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware) 1.65.0.1400
www.malwarebytes.org

Verze databáze: v2012.09.27.09

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
Pc :: PC-PC [administrátor]

Ochrana: Povolena

27.9.2012 22:13:55
mbam-log-2012-09-27 (22-13-55).txt

Typ: Úplná kontrola (C:\|D:\|E:\|F:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 334923
Uplynulý čas: 23 minut, 45 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 2
C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\ubiorbitapi_r2.dll (Trojan.Agent.CK) -> Umístnění do karantény a smazání se zdařilo.
C:\w7lxe-v10.exe\w7lxe-v10.exe (Riskware.Tool.CK) -> Umístnění do karantény a smazání se zdařilo.

(konec)

[juras.hc]

22:49:09.0139 4436 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
22:49:09.0370 4436 ============================================================
22:49:09.0370 4436 Current date / time: 2012/09/27 22:49:09.0370
22:49:09.0370 4436 SystemInfo:
22:49:09.0370 4436
22:49:09.0370 4436 OS Version: 6.1.7601 ServicePack: 1.0
22:49:09.0370 4436 Product type: Workstation
22:49:09.0370 4436 ComputerName: PC-PC
22:49:09.0370 4436 UserName: Pc
22:49:09.0370 4436 Windows directory: C:\Windows
22:49:09.0370 4436 System windows directory: C:\Windows
22:49:09.0370 4436 Running under WOW64
22:49:09.0370 4436 Processor architecture: Intel x64
22:49:09.0370 4436 Number of processors: 4
22:49:09.0370 4436 Page size: 0x1000
22:49:09.0370 4436 Boot type: Normal boot
22:49:09.0370 4436 ============================================================
22:49:09.0660 4436 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:49:09.0663 4436 Drive \Device\Harddisk1\DR1 - Size: 0xE8DED00000 (931.48 Gb), SectorSize: 0x200, Cylinders: 0x1DAFD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:49:09.0664 4436 ============================================================
22:49:09.0664 4436 \Device\Harddisk0\DR0:
22:49:09.0664 4436 MBR partitions:
22:49:09.0664 4436 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
22:49:09.0665 4436 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1E816000
22:49:09.0665 4436 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1E848800, BlocksNum 0x55EBD800
22:49:09.0665 4436 \Device\Harddisk1\DR1:
22:49:09.0665 4436 MBR partitions:
22:49:09.0665 4436 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x746F6000
22:49:09.0665 4436 ============================================================
22:49:09.0684 4436 C: <-> \Device\Harddisk0\DR0\Partition2
22:49:09.0712 4436 D: <-> \Device\Harddisk0\DR0\Partition3
22:49:09.0716 4436 E: <-> \Device\Harddisk1\DR1\Partition1
22:49:09.0716 4436 ============================================================
22:49:09.0716 4436 Initialize success
22:49:09.0716 4436 ============================================================
22:49:19.0581 3928 ============================================================
22:49:19.0581 3928 Scan started
22:49:19.0581 3928 Mode: Manual;
22:49:19.0581 3928 ============================================================
22:49:20.0971 3928 ================ Scan system memory ========================
22:49:20.0972 3928 System memory - ok
22:49:20.0972 3928 ================ Scan services =============================
22:49:21.0060 3928 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:49:21.0064 3928 1394ohci - ok
22:49:21.0079 3928 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:49:21.0083 3928 ACPI - ok
22:49:21.0089 3928 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:49:21.0092 3928 AcpiPmi - ok
22:49:21.0108 3928 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
22:49:21.0114 3928 adp94xx - ok
22:49:21.0128 3928 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
22:49:21.0134 3928 adpahci - ok
22:49:21.0147 3928 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
22:49:21.0150 3928 adpu320 - ok
22:49:21.0168 3928 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:49:21.0169 3928 AeLookupSvc - ok
22:49:21.0203 3928 [ D31DC7A16DEA4A9BAF179F3D6FBDB38C ] AFD C:\Windows\system32\drivers\afd.sys
22:49:21.0209 3928 AFD - ok
22:49:21.0217 3928 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:49:21.0220 3928 agp440 - ok
22:49:21.0232 3928 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
22:49:21.0235 3928 ALG - ok
22:49:21.0242 3928 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
22:49:21.0245 3928 aliide - ok
22:49:21.0255 3928 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
22:49:21.0258 3928 amdide - ok
22:49:21.0268 3928 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
22:49:21.0271 3928 AmdK8 - ok
22:49:21.0279 3928 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
22:49:21.0282 3928 AmdPPM - ok
22:49:21.0296 3928 [ 6EC6D772EAE38DC17C14AED9B178D24B ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:49:21.0299 3928 amdsata - ok
22:49:21.0309 3928 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
22:49:21.0312 3928 amdsbs - ok
22:49:21.0326 3928 [ 1142A21DB581A84EA5597B03A26EBAA0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:49:21.0327 3928 amdxata - ok
22:49:21.0341 3928 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
22:49:21.0344 3928 AppID - ok
22:49:21.0355 3928 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:49:21.0358 3928 AppIDSvc - ok
22:49:21.0366 3928 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
22:49:21.0368 3928 Appinfo - ok
22:49:21.0392 3928 [ BA957E7ACD2B44FA3B01FAA64F6A9060 ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
22:49:21.0404 3928 AppleCharger - ok
22:49:21.0423 3928 [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
22:49:21.0426 3928 AppleChargerSrv - ok
22:49:21.0436 3928 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
22:49:21.0439 3928 arc - ok
22:49:21.0453 3928 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
22:49:21.0456 3928 arcsas - ok
22:49:21.0473 3928 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:49:21.0476 3928 AsyncMac - ok
22:49:21.0498 3928 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
22:49:21.0499 3928 atapi - ok
22:49:21.0532 3928 [ FC0E8778C000291CAF60EB88C011E931 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
22:49:21.0535 3928 atksgt - ok
22:49:21.0557 3928 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:49:21.0564 3928 AudioEndpointBuilder - ok
22:49:21.0572 3928 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:49:21.0577 3928 AudioSrv - ok
22:49:21.0797 3928 [ 1D7D0D5D33D8B1507EC5FBFE332E5657 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
22:49:21.0894 3928 AVGIDSAgent - ok
22:49:21.0937 3928 [ 5FD4D6C35738899905E16E5284981427 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
22:49:21.0938 3928 AVGIDSDriver - ok
22:49:21.0970 3928 [ 132251CBBB95062E12FF21E212EB8FB4 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
22:49:21.0971 3928 AVGIDSHA - ok
22:49:22.0007 3928 [ 996FCACE7A8EFD926C8BB2C70A40C83F ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
22:49:22.0009 3928 Avgldx64 - ok
22:49:22.0035 3928 [ 3E0E2D8CD63C58A37CF81704E83459DD ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
22:49:22.0038 3928 Avgloga - ok
22:49:22.0060 3928 [ DC353C527816297BD11B13EA60C9BE75 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
22:49:22.0061 3928 Avgmfx64 - ok
22:49:22.0100 3928 [ 639CBC2F67FB25F9AB31957D9BF5CF8F ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
22:49:22.0102 3928 Avgrkx64 - ok
22:49:22.0143 3928 [ 1917293728A872BF520952F69E024FE6 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
22:49:22.0145 3928 Avgtdia - ok
22:49:22.0170 3928 [ A313C4AE276E3C975A1BC27170AA23C6 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
22:49:22.0171 3928 avgtp - ok
22:49:22.0202 3928 [ 42F11F37CC06D9AB6528AF2E215B8799 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
22:49:22.0205 3928 avgwd - ok
22:49:22.0232 3928 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:49:22.0242 3928 AxInstSV - ok
22:49:22.0283 3928 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
22:49:22.0290 3928 b06bdrv - ok
22:49:22.0315 3928 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:49:22.0319 3928 b57nd60a - ok
22:49:22.0335 3928 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
22:49:22.0338 3928 BDESVC - ok
22:49:22.0356 3928 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
22:49:22.0359 3928 Beep - ok
22:49:22.0386 3928 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
22:49:22.0394 3928 BFE - ok
22:49:22.0418 3928 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
22:49:22.0428 3928 BITS - ok
22:49:22.0442 3928 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:49:22.0444 3928 blbdrive - ok
22:49:22.0451 3928 [ 91CE0D3DC57DD377E690A2D324022B08 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:49:22.0453 3928 bowser - ok
22:49:22.0463 3928 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
22:49:22.0466 3928 BrFiltLo - ok
22:49:22.0473 3928 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
22:49:22.0475 3928 BrFiltUp - ok
22:49:22.0484 3928 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
22:49:22.0486 3928 Browser - ok
22:49:22.0495 3928 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:49:22.0500 3928 Brserid - ok
22:49:22.0512 3928 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:49:22.0515 3928 BrSerWdm - ok
22:49:22.0525 3928 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:49:22.0527 3928 BrUsbMdm - ok
22:49:22.0530 3928 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:49:22.0531 3928 BrUsbSer - ok
22:49:22.0543 3928 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
22:49:22.0545 3928 BTHMODEM - ok
22:49:22.0555 3928 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
22:49:22.0557 3928 bthserv - ok
22:49:22.0568 3928 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:49:22.0571 3928 cdfs - ok
22:49:22.0587 3928 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:49:22.0590 3928 cdrom - ok
22:49:22.0599 3928 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
22:49:22.0602 3928 CertPropSvc - ok
22:49:22.0612 3928 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
22:49:22.0614 3928 circlass - ok
22:49:22.0626 3928 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
22:49:22.0630 3928 CLFS - ok
22:49:22.0682 3928 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:49:22.0685 3928 clr_optimization_v2.0.50727_32 - ok
22:49:22.0721 3928 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:49:22.0727 3928 clr_optimization_v2.0.50727_64 - ok
22:49:22.0737 3928 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
22:49:22.0740 3928 CmBatt - ok
22:49:22.0744 3928 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:49:22.0745 3928 cmdide - ok
22:49:22.0766 3928 [ D5FEA92400F12412B3922087C09DA6A5 ] CNG C:\Windows\system32\Drivers\cng.sys
22:49:22.0772 3928 CNG - ok
22:49:22.0775 3928 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
22:49:22.0777 3928 Compbatt - ok
22:49:22.0785 3928 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
22:49:22.0788 3928 CompositeBus - ok
22:49:22.0790 3928 COMSysApp - ok
22:49:22.0794 3928 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
22:49:22.0796 3928 crcdisk - ok
22:49:22.0806 3928 [ 15597883FBE9B056F276ADA3AD87D9AF ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:49:22.0808 3928 CryptSvc - ok
22:49:22.0827 3928 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:49:22.0831 3928 DcomLaunch - ok
22:49:22.0852 3928 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
22:49:22.0855 3928 defragsvc - ok
22:49:22.0866 3928 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:49:22.0869 3928 DfsC - ok
22:49:22.0893 3928 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
22:49:22.0897 3928 Dhcp - ok
22:49:22.0908 3928 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
22:49:22.0909 3928 discache - ok
22:49:22.0921 3928 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
22:49:22.0924 3928 Disk - ok
22:49:22.0938 3928 [ CD55F5355D8F55D44C9F4ED875705BD6 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:49:22.0941 3928 Dnscache - ok
22:49:22.0949 3928 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
22:49:22.0953 3928 dot3svc - ok
22:49:22.0960 3928 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
22:49:22.0963 3928 DPS - ok
22:49:22.0985 3928 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:49:22.0987 3928 drmkaud - ok
22:49:23.0014 3928 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
22:49:23.0016 3928 dtsoftbus01 - ok
22:49:23.0041 3928 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:49:23.0049 3928 DXGKrnl - ok
22:49:23.0069 3928 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
22:49:23.0073 3928 EapHost - ok
22:49:23.0138 3928 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
22:49:23.0213 3928 ebdrv - ok
22:49:23.0234 3928 [ 0793F40B9B8A1BDD266296409DBD91EA ] EFS C:\Windows\System32\lsass.exe
22:49:23.0236 3928 EFS - ok
22:49:23.0285 3928 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:49:23.0293 3928 ehRecvr - ok
22:49:23.0305 3928 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
22:49:23.0309 3928 ehSched - ok
22:49:23.0325 3928 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
22:49:23.0331 3928 elxstor - ok
22:49:23.0338 3928 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:49:23.0340 3928 ErrDev - ok
22:49:23.0357 3928 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
22:49:23.0361 3928 EventSystem - ok
22:49:23.0372 3928 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
22:49:23.0375 3928 exfat - ok
22:49:23.0384 3928 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:49:23.0389 3928 fastfat - ok
22:49:23.0412 3928 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
22:49:23.0418 3928 Fax - ok
22:49:23.0431 3928 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
22:49:23.0433 3928 fdc - ok
22:49:23.0439 3928 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
22:49:23.0441 3928 fdPHost - ok
22:49:23.0448 3928 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
22:49:23.0451 3928 FDResPub - ok
22:49:23.0457 3928 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:49:23.0459 3928 FileInfo - ok
22:49:23.0471 3928 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:49:23.0472 3928 Filetrace - ok
22:49:23.0479 3928 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
22:49:23.0481 3928 flpydisk - ok
22:49:23.0496 3928 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:49:23.0499 3928 FltMgr - ok
22:49:23.0525 3928 [ B4447F606BB19FD8AD0BAFB59B90F5D9 ] FontCache C:\Windows\system32\FntCache.dll
22:49:23.0545 3928 FontCache - ok
22:49:23.0568 3928 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:49:23.0572 3928 FontCache3.0.0.0 - ok
22:49:23.0580 3928 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:49:23.0583 3928 FsDepends - ok
22:49:23.0589 3928 [ E95EF8547DE20CF0603557C0CF7A9462 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:49:23.0590 3928 Fs_Rec - ok
22:49:23.0600 3928 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:49:23.0603 3928 fvevol - ok
22:49:23.0618 3928 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
22:49:23.0620 3928 gagp30kx - ok
22:49:23.0646 3928 [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv C:\Windows\gdrv.sys
22:49:23.0655 3928 gdrv - ok
22:49:23.0673 3928 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
22:49:23.0681 3928 gpsvc - ok
22:49:23.0699 3928 [ 8126331FBD4ED29EB3B356F9C905064D ] GVTDrv64 C:\Windows\GVTDrv64.sys
22:49:23.0700 3928 GVTDrv64 - ok
22:49:23.0723 3928 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
22:49:23.0726 3928 hamachi - ok
22:49:23.0735 3928 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:49:23.0738 3928 hcw85cir - ok
22:49:23.0758 3928 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:49:23.0762 3928 HdAudAddService - ok
22:49:23.0770 3928 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
22:49:23.0772 3928 HDAudBus - ok
22:49:23.0782 3928 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
22:49:23.0784 3928 HidBatt - ok
22:49:23.0793 3928 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
22:49:23.0796 3928 HidBth - ok
22:49:23.0804 3928 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
22:49:23.0807 3928 HidIr - ok
22:49:23.0815 3928 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
22:49:23.0818 3928 hidserv - ok
22:49:23.0841 3928 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:49:23.0844 3928 HidUsb - ok
22:49:23.0860 3928 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:49:23.0863 3928 hkmsvc - ok
22:49:23.0872 3928 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:49:23.0876 3928 HomeGroupListener - ok
22:49:23.0900 3928 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:49:23.0904 3928 HomeGroupProvider - ok
22:49:23.0913 3928 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:49:23.0916 3928 HpSAMD - ok
22:49:23.0942 3928 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:49:23.0951 3928 HTTP - ok
22:49:23.0958 3928 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:49:23.0959 3928 hwpolicy - ok
22:49:23.0968 3928 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
22:49:23.0972 3928 i8042prt - ok
22:49:23.0995 3928 [ C224331A54571C8C9162F7714400BBBD ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
22:49:23.0999 3928 iaStor - ok
22:49:24.0041 3928 [ 7D4B9A48430ED57ACA6373B71D5904CA ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
22:49:24.0042 3928 IAStorDataMgrSvc - ok
22:49:24.0067 3928 [ 3DF4395A7CF8B7A72A5F4606366B8C2D ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:49:24.0074 3928 iaStorV - ok
22:49:24.0091 3928 [ 33D4D4A24791587E83F7EE05A446FB7E ] ICCS C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
22:49:24.0095 3928 ICCS - ok
22:49:24.0133 3928 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
22:49:24.0137 3928 IDriverT - ok
22:49:24.0176 3928 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:49:24.0187 3928 idsvc - ok
22:49:24.0201 3928 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
22:49:24.0204 3928 iirsp - ok
22:49:24.0233 3928 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
22:49:24.0243 3928 IKEEXT - ok
22:49:24.0334 3928 [ ACACD1B925D448558C1C9D0258749451 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:49:24.0356 3928 IntcAzAudAddService - ok
22:49:24.0420 3928 [ 2D66067C7A8A0112156BCD1C0BAA7042 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
22:49:24.0435 3928 Intel(R) Capability Licensing Service Interface - ok
22:49:24.0452 3928 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
22:49:24.0454 3928 intelide - ok
22:49:24.0465 3928 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:49:24.0466 3928 intelppm - ok
22:49:24.0481 3928 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:49:24.0484 3928 IPBusEnum - ok
22:49:24.0500 3928 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:49:24.0502 3928 IpFilterDriver - ok
22:49:24.0532 3928 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:49:24.0538 3928 iphlpsvc - ok
22:49:24.0547 3928 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:49:24.0550 3928 IPMIDRV - ok
22:49:24.0566 3928 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:49:24.0569 3928 IPNAT - ok
22:49:24.0583 3928 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:49:24.0586 3928 IRENUM - ok
22:49:24.0606 3928 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:49:24.0608 3928 isapnp - ok
22:49:24.0621 3928 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:49:24.0625 3928 iScsiPrt - ok
22:49:24.0646 3928 [ 6BCEF45131C8B8E1C558BE540B190B3C ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
22:49:24.0647 3928 iusb3hcs - ok
22:49:24.0663 3928 [ F080EADA8715F811B58BD35BB774F2F9 ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
22:49:24.0667 3928 iusb3hub - ok
22:49:24.0690 3928 [ 0F1756D9396740F053221FA6260FCE66 ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
22:49:24.0697 3928 iusb3xhc - ok
22:49:24.0720 3928 [ 166FC0B36842135BC2D3C32DF70ED0D6 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
22:49:24.0723 3928 jhi_service - ok
22:49:24.0733 3928 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:49:24.0735 3928 kbdclass - ok
22:49:24.0752 3928 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
22:49:24.0755 3928 kbdhid - ok
22:49:24.0766 3928 [ 0793F40B9B8A1BDD266296409DBD91EA ] KeyIso C:\Windows\system32\lsass.exe
22:49:24.0767 3928 KeyIso - ok
22:49:24.0779 3928 [ CCD53B5BD33CE0C889E830D839C8B66E ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:49:24.0782 3928 KSecDD - ok
22:49:24.0791 3928 [ 9FF918A261752C12639E8AD4208D2C2F ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:49:24.0793 3928 KSecPkg - ok
22:49:24.0799 3928 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:49:24.0801 3928 ksthunk - ok
22:49:24.0817 3928 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
22:49:24.0825 3928 KtmRm - ok
22:49:24.0840 3928 [ B8040D3B97B16B89701E31A17353856C ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
22:49:24.0841 3928 L1C - ok
22:49:24.0877 3928 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
22:49:24.0880 3928 LanmanServer - ok
22:49:24.0897 3928 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:49:24.0902 3928 LanmanWorkstation - ok
22:49:24.0946 3928 [ 156AB2E56DC3CA0B582E3362E07CDED7 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
22:49:24.0948 3928 lirsgt - ok
22:49:24.0973 3928 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:49:24.0976 3928 lltdio - ok
22:49:24.0995 3928 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:49:25.0001 3928 lltdsvc - ok
22:49:25.0011 3928 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:49:25.0014 3928 lmhosts - ok
22:49:25.0025 3928 [ C56E64BA70DC822B84D100A6F8D690D3 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
22:49:25.0027 3928 LMS - ok
22:49:25.0050 3928 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
22:49:25.0054 3928 LSI_FC - ok
22:49:25.0061 3928 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
22:49:25.0064 3928 LSI_SAS - ok
22:49:25.0072 3928 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
22:49:25.0075 3928 LSI_SAS2 - ok
22:49:25.0081 3928 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
22:49:25.0084 3928 LSI_SCSI - ok
22:49:25.0094 3928 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
22:49:25.0096 3928 luafv - ok
22:49:25.0119 3928 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
22:49:25.0120 3928 MBAMProtector - ok
22:49:25.0193 3928 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
22:49:25.0198 3928 MBAMScheduler - ok
22:49:25.0217 3928 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
22:49:25.0223 3928 MBAMService - ok
22:49:25.0258 3928 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:49:25.0261 3928 Mcx2Svc - ok
22:49:25.0275 3928 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
22:49:25.0278 3928 megasas - ok
22:49:25.0299 3928 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
22:49:25.0304 3928 MegaSR - ok
22:49:25.0318 3928 [ 6B01B7414A105B9E51652089A03027CF ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
22:49:25.0319 3928 MEIx64 - ok
22:49:25.0326 3928 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
22:49:25.0329 3928 MMCSS - ok
22:49:25.0332 3928 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
22:49:25.0334 3928 Modem - ok
22:49:25.0354 3928 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:49:25.0354 3928 monitor - ok
22:49:25.0369 3928 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:49:25.0370 3928 mouclass - ok
22:49:25.0378 3928 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:49:25.0380 3928 mouhid - ok
22:49:25.0387 3928 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:49:25.0389 3928 mountmgr - ok
22:49:25.0400 3928 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
22:49:25.0403 3928 mpio - ok
22:49:25.0414 3928 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:49:25.0416 3928 mpsdrv - ok
22:49:25.0436 3928 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:49:25.0446 3928 MpsSvc - ok
22:49:25.0464 3928 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:49:25.0466 3928 MRxDAV - ok
22:49:25.0479 3928 [ FAF015B07E3A2874A790A39B7D2C579F ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:49:25.0481 3928 mrxsmb - ok
22:49:25.0497 3928 [ 08E2345DF129082BCDFFDC1440F9C00D ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:49:25.0500 3928 mrxsmb10 - ok
22:49:25.0513 3928 [ 108D87409C5812EF47D81E22843E8C9D ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:49:25.0516 3928 mrxsmb20 - ok
22:49:25.0523 3928 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
22:49:25.0524 3928 msahci - ok
22:49:25.0538 3928 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:49:25.0540 3928 msdsm - ok
22:49:25.0553 3928 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
22:49:25.0555 3928 MSDTC - ok
22:49:25.0566 3928 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:49:25.0569 3928 Msfs - ok
22:49:25.0579 3928 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:49:25.0581 3928 mshidkmdf - ok
22:49:25.0593 3928 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:49:25.0594 3928 msisadrv - ok
22:49:25.0608 3928 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:49:25.0612 3928 MSiSCSI - ok
22:49:25.0614 3928 msiserver - ok
22:49:25.0633 3928 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:49:25.0635 3928 MSKSSRV - ok
22:49:25.0653 3928 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:49:25.0655 3928 MSPCLOCK - ok
22:49:25.0666 3928 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:49:25.0668 3928 MSPQM - ok
22:49:25.0682 3928 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:49:25.0685 3928 MsRPC - ok
22:49:25.0696 3928 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
22:49:25.0696 3928 mssmbios - ok
22:49:25.0699 3928 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:49:25.0700 3928 MSTEE - ok
22:49:25.0710 3928 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
22:49:25.0712 3928 MTConfig - ok
22:49:25.0725 3928 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
22:49:25.0726 3928 Mup - ok
22:49:25.0744 3928 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
22:49:25.0749 3928 napagent - ok
22:49:25.0763 3928 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:49:25.0767 3928 NativeWifiP - ok
22:49:25.0789 3928 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
22:49:25.0797 3928 NDIS - ok
22:49:25.0811 3928 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:49:25.0812 3928 NdisCap - ok
22:49:25.0829 3928 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:49:25.0831 3928 NdisTapi - ok
22:49:25.0844 3928 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:49:25.0846 3928 Ndisuio - ok
22:49:25.0859 3928 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:49:25.0862 3928 NdisWan - ok
22:49:25.0884 3928 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:49:25.0887 3928 NDProxy - ok
22:49:25.0901 3928 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:49:25.0903 3928 NetBIOS - ok
22:49:25.0916 3928 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:49:25.0920 3928 NetBT - ok
22:49:25.0931 3928 [ 0793F40B9B8A1BDD266296409DBD91EA ] Netlogon C:\Windows\system32\lsass.exe
22:49:25.0932 3928 Netlogon - ok
22:49:25.0943 3928 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
22:49:25.0947 3928 Netman - ok
22:49:25.0954 3928 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
22:49:25.0958 3928 netprofm - ok
22:49:25.0977 3928 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:49:25.0980 3928 NetTcpPortSharing - ok
22:49:25.0997 3928 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
22:49:26.0000 3928 nfrd960 - ok
22:49:26.0012 3928 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:49:26.0017 3928 NlaSvc - ok
22:49:26.0030 3928 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:49:26.0033 3928 Npfs - ok
22:49:26.0036 3928 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
22:49:26.0039 3928 nsi - ok
22:49:26.0050 3928 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:49:26.0052 3928 nsiproxy - ok
22:49:26.0090 3928 [ 05D78AA5CB5F3F5C31160BDB955D0B7C ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:49:26.0115 3928 Ntfs - ok
22:49:26.0129 3928 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
22:49:26.0131 3928 Null - ok
22:49:26.0154 3928 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
22:49:26.0155 3928 NVHDA - ok
22:49:26.0353 3928 [ BF7A24A71E1932200D864BC1CE15E596 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:49:26.0403 3928 nvlddmkm - ok
22:49:26.0417 3928 [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48 ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:49:26.0420 3928 nvraid - ok
22:49:26.0429 3928 [ F7CD50FE7139F07E77DA8AC8033D1832 ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:49:26.0431 3928 nvstor - ok
22:49:26.0468 3928 [ 43F91595049DE14C4B61D1E76436164F ] nvsvc C:\Windows\system32\nvvsvc.exe
22:49:26.0477 3928 nvsvc - ok
22:49:26.0513 3928 [ 322B69422836F97B76F4AA59B47507BA ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
22:49:26.0523 3928 nvUpdatusService - ok
22:49:26.0537 3928 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:49:26.0539 3928 nv_agp - ok
22:49:26.0550 3928 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:49:26.0552 3928 ohci1394 - ok
22:49:26.0563 3928 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:49:26.0567 3928 p2pimsvc - ok
22:49:26.0583 3928 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
22:49:26.0587 3928 p2psvc - ok
22:49:26.0594 3928 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
22:49:26.0596 3928 Parport - ok
22:49:26.0608 3928 [ 871EADAC56B0A4C6512BBE32753CCF79 ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:49:26.0610 3928 partmgr - ok
22:49:26.0622 3928 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:49:26.0624 3928 PcaSvc - ok
22:49:26.0636 3928 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
22:49:26.0639 3928 pci - ok
22:49:26.0652 3928 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
22:49:26.0653 3928 pciide - ok
22:49:26.0669 3928 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
22:49:26.0672 3928 pcmcia - ok
22:49:26.0682 3928 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
22:49:26.0683 3928 pcw - ok
22:49:26.0700 3928 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:49:26.0706 3928 PEAUTH - ok
22:49:26.0753 3928 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:49:26.0756 3928 PerfHost - ok
22:49:26.0793 3928 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
22:49:26.0827 3928 pla - ok
22:49:26.0865 3928 [ B806E50427511BCF4AD8E8239C3E25FA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:49:26.0871 3928 PlugPlay - ok
22:49:26.0897 3928 PnkBstrA - ok
22:49:26.0905 3928 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:49:26.0909 3928 PNRPAutoReg - ok
22:49:26.0922 3928 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:49:26.0926 3928 PNRPsvc - ok
22:49:26.0947 3928 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:49:26.0953 3928 PolicyAgent - ok
22:49:26.0959 3928 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
22:49:26.0963 3928 Power - ok
22:49:26.0979 3928 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:49:26.0982 3928 PptpMiniport - ok
22:49:26.0993 3928 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
22:49:26.0996 3928 Processor - ok
22:49:27.0005 3928 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
22:49:27.0009 3928 ProfSvc - ok
22:49:27.0017 3928 [ 0793F40B9B8A1BDD266296409DBD91EA ] ProtectedStorage C:\Windows\system32\lsass.exe
22:49:27.0018 3928 ProtectedStorage - ok
22:49:27.0027 3928 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:49:27.0029 3928 Psched - ok
22:49:27.0066 3928 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
22:49:27.0092 3928 ql2300 - ok
22:49:27.0106 3928 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
22:49:27.0109 3928 ql40xx - ok
22:49:27.0131 3928 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
22:49:27.0135 3928 QWAVE - ok
22:49:27.0142 3928 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:49:27.0144 3928 QWAVEdrv - ok
22:49:27.0150 3928 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:49:27.0152 3928 RasAcd - ok
22:49:27.0172 3928 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:49:27.0174 3928 RasAgileVpn - ok
22:49:27.0184 3928 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
22:49:27.0187 3928 RasAuto - ok
22:49:27.0195 3928 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:49:27.0198 3928 Rasl2tp - ok
22:49:27.0222 3928 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
22:49:27.0226 3928 RasMan - ok
22:49:27.0238 3928 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:49:27.0241 3928 RasPppoe - ok
22:49:27.0251 3928 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:49:27.0254 3928 RasSstp - ok
22:49:27.0266 3928 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:49:27.0269 3928 rdbss - ok
22:49:27.0279 3928 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
22:49:27.0281 3928 rdpbus - ok
22:49:27.0291 3928 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:49:27.0292 3928 RDPCDD - ok
22:49:27.0308 3928 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:49:27.0310 3928 RDPENCDD - ok
22:49:27.0316 3928 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:49:27.0318 3928 RDPREFMP - ok
22:49:27.0331 3928 [ 15B66C206B5CB095BAB980553F38ED23 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:49:27.0334 3928 RDPWD - ok
22:49:27.0345 3928 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:49:27.0347 3928 rdyboost - ok
22:49:27.0368 3928 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:49:27.0371 3928 RemoteAccess - ok
22:49:27.0377 3928 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:49:27.0380 3928 RemoteRegistry - ok
22:49:27.0387 3928 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:49:27.0390 3928 RpcEptMapper - ok
22:49:27.0396 3928 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
22:49:27.0398 3928 RpcLocator - ok
22:49:27.0411 3928 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
22:49:27.0414 3928 RpcSs - ok
22:49:27.0428 3928 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:49:27.0429 3928 rspndr - ok
22:49:27.0432 3928 [ 0793F40B9B8A1BDD266296409DBD91EA ] SamSs C:\Windows\system32\lsass.exe
22:49:27.0432 3928 SamSs - ok
22:49:27.0439 3928 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:49:27.0442 3928 sbp2port - ok
22:49:27.0457 3928 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:49:27.0459 3928 SCardSvr - ok
22:49:27.0487 3928 [ 07237C66E05DA6778E9F3CB67FA00736 ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
22:49:27.0487 3928 SCDEmu - ok
22:49:27.0497 3928 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:49:27.0500 3928 scfilter - ok
22:49:27.0546 3928 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
22:49:27.0559 3928 Schedule - ok
22:49:27.0575 3928 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
22:49:27.0576 3928 SCPolicySvc - ok
22:49:27.0590 3928 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:49:27.0593 3928 SDRSVC - ok
22:49:27.0602 3928 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:49:27.0604 3928 secdrv - ok
22:49:27.0615 3928 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
22:49:27.0617 3928 seclogon - ok
22:49:27.0639 3928 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
22:49:27.0641 3928 SENS - ok
22:49:27.0654 3928 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:49:27.0657 3928 SensrSvc - ok
22:49:27.0690 3928 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
22:49:27.0693 3928 Serenum - ok
22:49:27.0719 3928 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
22:49:27.0722 3928 Serial - ok
22:49:27.0740 3928 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
22:49:27.0743 3928 sermouse - ok
22:49:27.0756 3928 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
22:49:27.0760 3928 SessionEnv - ok
22:49:27.0771 3928 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:49:27.0773 3928 sffdisk - ok
22:49:27.0779 3928 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:49:27.0781 3928 sffp_mmc - ok
22:49:27.0786 3928 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:49:27.0788 3928 sffp_sd - ok
22:49:27.0796 3928 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
22:49:27.0798 3928 sfloppy - ok
22:49:27.0827 3928 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:49:27.0832 3928 SharedAccess - ok
22:49:27.0846 3928 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:49:27.0852 3928 ShellHWDetection - ok

[juras.hc]

22:49:27.0863 3928 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
22:49:27.0866 3928 SiSRaid2 - ok
22:49:27.0878 3928 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
22:49:27.0880 3928 SiSRaid4 - ok
22:49:27.0918 3928 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
22:49:27.0920 3928 SkypeUpdate - ok
22:49:27.0928 3928 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:49:27.0931 3928 Smb - ok
22:49:27.0940 3928 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:49:27.0943 3928 SNMPTRAP - ok
22:49:27.0953 3928 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
22:49:27.0954 3928 spldr - ok
22:49:27.0970 3928 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
22:49:27.0977 3928 Spooler - ok
22:49:28.0057 3928 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
22:49:28.0115 3928 sppsvc - ok
22:49:28.0136 3928 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:49:28.0138 3928 sppuinotify - ok
22:49:28.0179 3928 [ A15860E920B02C9A7CE8F3A6C2FF1E3A ] sptd C:\Windows\System32\Drivers\sptd.sys
22:49:28.0186 3928 sptd - ok
22:49:28.0198 3928 [ 2098B8556D1CEC2ACA9A29CD479E3692 ] srv C:\Windows\system32\DRIVERS\srv.sys
22:49:28.0202 3928 srv - ok
22:49:28.0221 3928 [ D0F73A42040F21F92FD314B42AC5C9E7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:49:28.0225 3928 srv2 - ok
22:49:28.0236 3928 [ 2BA8F3250828CCDB4204ECF2C6F40B6A ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:49:28.0238 3928 srvnet - ok
22:49:28.0257 3928 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:49:28.0260 3928 SSDPSRV - ok
22:49:28.0266 3928 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:49:28.0269 3928 SstpSvc - ok
22:49:28.0309 3928 [ A766CCAD980235FF34E7F8089D3175A3 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
22:49:28.0314 3928 Stereo Service - ok
22:49:28.0329 3928 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
22:49:28.0332 3928 stexstor - ok
22:49:28.0346 3928 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
22:49:28.0353 3928 stisvc - ok
22:49:28.0359 3928 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
22:49:28.0360 3928 swenum - ok
22:49:28.0380 3928 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
22:49:28.0386 3928 swprv - ok
22:49:28.0417 3928 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
22:49:28.0451 3928 SysMain - ok
22:49:28.0462 3928 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:49:28.0472 3928 TabletInputService - ok
22:49:28.0496 3928 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:49:28.0502 3928 TapiSrv - ok
22:49:28.0515 3928 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
22:49:28.0518 3928 TBS - ok
22:49:28.0568 3928 [ 509383E505C973ED7534A06B3D19688D ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:49:28.0602 3928 Tcpip - ok
22:49:28.0651 3928 [ 509383E505C973ED7534A06B3D19688D ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:49:28.0665 3928 TCPIP6 - ok
22:49:28.0679 3928 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:49:28.0681 3928 tcpipreg - ok
22:49:28.0688 3928 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:49:28.0690 3928 TDPIPE - ok
22:49:28.0698 3928 [ E4245BDA3190A582D55ED09E137401A9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:49:28.0700 3928 TDTCP - ok
22:49:28.0712 3928 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:49:28.0714 3928 tdx - ok
22:49:28.0733 3928 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
22:49:28.0735 3928 TermDD - ok
22:49:28.0755 3928 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
22:49:28.0761 3928 TermService - ok
22:49:28.0769 3928 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
22:49:28.0772 3928 Themes - ok
22:49:28.0784 3928 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
22:49:28.0785 3928 THREADORDER - ok
22:49:28.0797 3928 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
22:49:28.0800 3928 TrkWks - ok
22:49:28.0831 3928 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:49:28.0833 3928 TrustedInstaller - ok
22:49:28.0849 3928 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:49:28.0851 3928 tssecsrv - ok
22:49:28.0865 3928 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:49:28.0867 3928 TsUsbFlt - ok
22:49:28.0873 3928 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
22:49:28.0875 3928 TsUsbGD - ok
22:49:28.0888 3928 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:49:28.0891 3928 tunnel - ok
22:49:28.0904 3928 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
22:49:28.0907 3928 uagp35 - ok
22:49:28.0917 3928 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:49:28.0925 3928 udfs - ok
22:49:28.0951 3928 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:49:28.0956 3928 UI0Detect - ok
22:49:28.0987 3928 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:49:28.0990 3928 uliagpkx - ok
22:49:29.0005 3928 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:49:29.0008 3928 umbus - ok
22:49:29.0017 3928 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
22:49:29.0020 3928 UmPass - ok
22:49:29.0050 3928 [ 0F9E1BC7E2BEA1A4108EC9736CF0C2D9 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
22:49:29.0053 3928 UNS - ok
22:49:29.0072 3928 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
22:49:29.0078 3928 upnphost - ok
22:49:29.0109 3928 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
22:49:29.0112 3928 usbaudio - ok
22:49:29.0125 3928 [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:49:29.0129 3928 usbccgp - ok
22:49:29.0137 3928 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:49:29.0141 3928 usbcir - ok
22:49:29.0152 3928 [ 74EE782B1D9C241EFE425565854C661C ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:49:29.0155 3928 usbehci - ok
22:49:29.0171 3928 [ DC96BD9CCB8403251BCF25047573558E ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:49:29.0175 3928 usbhub - ok
22:49:29.0188 3928 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\drivers\usbohci.sys
22:49:29.0190 3928 usbohci - ok
22:49:29.0202 3928 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
22:49:29.0205 3928 usbprint - ok
22:49:29.0219 3928 [ D76510CFA0FC09023077F22C2F979D86 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:49:29.0221 3928 USBSTOR - ok
22:49:29.0229 3928 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
22:49:29.0232 3928 usbuhci - ok
22:49:29.0235 3928 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
22:49:29.0237 3928 UxSms - ok
22:49:29.0244 3928 [ 0793F40B9B8A1BDD266296409DBD91EA ] VaultSvc C:\Windows\system32\lsass.exe
22:49:29.0245 3928 VaultSvc - ok
22:49:29.0251 3928 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:49:29.0252 3928 vdrvroot - ok
22:49:29.0267 3928 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
22:49:29.0271 3928 vds - ok
22:49:29.0282 3928 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:49:29.0284 3928 vga - ok
22:49:29.0294 3928 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
22:49:29.0296 3928 VgaSave - ok
22:49:29.0306 3928 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:49:29.0309 3928 vhdmp - ok
22:49:29.0321 3928 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
22:49:29.0323 3928 viaide - ok
22:49:29.0333 3928 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:49:29.0335 3928 volmgr - ok
22:49:29.0347 3928 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:49:29.0350 3928 volmgrx - ok
22:49:29.0355 3928 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:49:29.0358 3928 volsnap - ok
22:49:29.0368 3928 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
22:49:29.0370 3928 vsmraid - ok
22:49:29.0398 3928 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
22:49:29.0424 3928 VSS - ok
22:49:29.0465 3928 [ CBA3F6EF1E70167DB376B4013F71A62B ] vToolbarUpdater12.2.6 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
22:49:29.0470 3928 vToolbarUpdater12.2.6 - ok
22:49:29.0481 3928 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
22:49:29.0483 3928 vwifibus - ok
22:49:29.0498 3928 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
22:49:29.0502 3928 W32Time - ok
22:49:29.0509 3928 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
22:49:29.0511 3928 WacomPen - ok
22:49:29.0518 3928 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:49:29.0521 3928 WANARP - ok
22:49:29.0523 3928 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:49:29.0523 3928 Wanarpv6 - ok
22:49:29.0551 3928 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
22:49:29.0577 3928 wbengine - ok
22:49:29.0588 3928 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:49:29.0591 3928 WbioSrvc - ok
22:49:29.0600 3928 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:49:29.0604 3928 wcncsvc - ok
22:49:29.0614 3928 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:49:29.0617 3928 WcsPlugInService - ok
22:49:29.0628 3928 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
22:49:29.0630 3928 Wd - ok
22:49:29.0643 3928 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:49:29.0648 3928 Wdf01000 - ok
22:49:29.0655 3928 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:49:29.0658 3928 WdiServiceHost - ok
22:49:29.0660 3928 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:49:29.0661 3928 WdiSystemHost - ok
22:49:29.0674 3928 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
22:49:29.0677 3928 WebClient - ok
22:49:29.0684 3928 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:49:29.0687 3928 Wecsvc - ok
22:49:29.0698 3928 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:49:29.0701 3928 wercplsupport - ok
22:49:29.0717 3928 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
22:49:29.0720 3928 WerSvc - ok
22:49:29.0732 3928 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:49:29.0735 3928 WfpLwf - ok
22:49:29.0744 3928 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:49:29.0747 3928 WIMMount - ok
22:49:29.0761 3928 WinDefend - ok
22:49:29.0765 3928 WinHttpAutoProxySvc - ok
22:49:29.0803 3928 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:49:29.0807 3928 Winmgmt - ok
22:49:29.0845 3928 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
22:49:29.0888 3928 WinRM - ok
22:49:29.0913 3928 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
22:49:29.0922 3928 Wlansvc - ok
22:49:30.0012 3928 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:49:30.0063 3928 wlidsvc - ok
22:49:30.0078 3928 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:49:30.0080 3928 WmiAcpi - ok
22:49:30.0093 3928 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:49:30.0095 3928 wmiApSrv - ok
22:49:30.0098 3928 WMPNetworkSvc - ok
22:49:30.0104 3928 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:49:30.0107 3928 WPCSvc - ok
22:49:30.0114 3928 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:49:30.0117 3928 WPDBusEnum - ok
22:49:30.0128 3928 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:49:30.0130 3928 ws2ifsl - ok
22:49:30.0137 3928 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
22:49:30.0140 3928 wscsvc - ok
22:49:30.0142 3928 WSearch - ok
22:49:30.0210 3928 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
22:49:30.0260 3928 wuauserv - ok
22:49:30.0272 3928 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:49:30.0275 3928 WudfPf - ok
22:49:30.0303 3928 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:49:30.0306 3928 WUDFRd - ok
22:49:30.0318 3928 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:49:30.0321 3928 wudfsvc - ok
22:49:30.0335 3928 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
22:49:30.0340 3928 WwanSvc - ok
22:49:30.0361 3928 [ 2EE48CFCE7CA8E0DB4C44C7476C0943B ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
22:49:30.0364 3928 xusb21 - ok
22:49:30.0368 3928 ================ Scan global ===============================
22:49:30.0387 3928 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:49:30.0404 3928 [ E0406AEF04B088D1C49FC78D0546F689 ] C:\Windows\system32\winsrv.dll
22:49:30.0413 3928 [ E0406AEF04B088D1C49FC78D0546F689 ] C:\Windows\system32\winsrv.dll
22:49:30.0427 3928 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:49:30.0449 3928 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:49:30.0455 3928 [Global] - ok
22:49:30.0456 3928 ================ Scan MBR ==================================
22:49:30.0464 3928 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:49:30.0630 3928 \Device\Harddisk0\DR0 - ok
22:49:30.0633 3928 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
22:49:30.0638 3928 \Device\Harddisk1\DR1 - ok
22:49:30.0639 3928 ================ Scan VBR ==================================
22:49:30.0646 3928 [ 15442BAD2F252B3DBFEE9DA4CAEE0DB1 ] \Device\Harddisk0\DR0\Partition1
22:49:30.0648 3928 \Device\Harddisk0\DR0\Partition1 - ok
22:49:30.0659 3928 [ 69B67E1D1DD0AA46E656613F94A2225A ] \Device\Harddisk0\DR0\Partition2
22:49:30.0661 3928 \Device\Harddisk0\DR0\Partition2 - ok
22:49:30.0680 3928 [ AE2317317D8F9418DF50D6A1B4B77B8E ] \Device\Harddisk0\DR0\Partition3
22:49:30.0683 3928 \Device\Harddisk0\DR0\Partition3 - ok
22:49:30.0686 3928 [ 4AE21F4C5DA1EDE45B67ADA07CB293B0 ] \Device\Harddisk1\DR1\Partition1
22:49:30.0689 3928 \Device\Harddisk1\DR1\Partition1 - ok
22:49:30.0689 3928 ============================================================
22:49:30.0689 3928 Scan finished
22:49:30.0689 3928 ============================================================
22:49:30.0698 0892 Detected object count: 0
22:49:30.0698 0892 Actual detected object count: 0

[juras.hc]

ComboFix 12-09-27.03 - Pc 27.09.2012 23:02:20.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4058.2755 [GMT 2:00]
Spuštěný z: c:\users\Pc\Downloads\ComboFix.exe
AV: AVG Anti-Virus Free Edition 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: AVG Anti-Virus Free Edition 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\ntuser.dat
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-08-27 do 2012-09-27 )))))))))))))))))))))))))))))))
.
.
2012-09-27 21:04 . 2012-09-27 21:04 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-09-27 21:04 . 2012-09-27 21:04 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-09-27 20:44 . 2012-09-27 20:44 -------- d-----w- c:\users\Pc\AppData\Local\AVG Secure Search
2012-09-27 20:00 . 2012-09-27 20:00 388096 ----a-r- c:\users\Pc\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-09-27 20:00 . 2012-09-27 20:00 -------- d-----w- c:\program files (x86)\Trend Micro
2012-09-27 19:04 . 2012-09-27 19:04 -------- d-----w- c:\users\Pc\AppData\Roaming\AVG2013
2012-09-27 19:02 . 2012-09-27 19:02 -------- d-----w- c:\users\Pc\AppData\Roaming\TuneUp Software
2012-09-27 19:02 . 2012-09-27 19:02 -------- d-----w- c:\program files (x86)\AVG Secure Search
2012-09-27 19:01 . 2012-09-27 19:02 -------- d-----w- c:\programdata\AVG2013
2012-09-27 18:59 . 2012-09-27 20:06 -------- d-----w- c:\users\Pc\AppData\Local\Avg2013
2012-09-27 18:59 . 2012-09-27 18:59 -------- d-----w- c:\users\Pc\AppData\Local\MFAData
2012-09-27 18:57 . 2012-09-27 18:57 -------- d-----w- c:\programdata\Spyware Terminator
2012-09-27 18:19 . 2012-09-27 18:19 -------- d-----w- c:\users\Pc\AppData\Roaming\Malwarebytes
2012-09-27 18:18 . 2012-09-27 18:18 -------- d-----w- c:\programdata\Malwarebytes
2012-09-27 18:18 . 2012-09-07 15:04 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-26 16:49 . 2012-09-26 16:49 -------- d-----w- c:\program files\CCleaner
2012-09-25 17:26 . 2012-09-25 17:26 -------- d-----w- C:\temp
2012-09-25 17:24 . 2012-09-25 17:24 -------- d-----w- C:\NVIDIA
2012-09-25 17:19 . 2012-09-25 17:19 -------- d-----w- c:\windows\Sun
2012-09-24 17:32 . 2012-09-24 17:32 51496 ----a-w- c:\windows\system32\drivers\stflt.sys
2012-09-24 17:32 . 2012-09-27 18:55 -------- d-----w- c:\program files (x86)\Spyware Terminator
2012-09-22 10:26 . 2012-09-22 10:26 -------- d-----w- c:\program files\Defraggler
2012-09-22 09:31 . 2012-09-22 09:31 -------- d-sh--w- c:\programdata\DSS
2012-09-22 09:26 . 2012-09-22 09:26 -------- d--h--w- c:\program files (x86)\Common Files\EAInstaller
2012-09-22 07:36 . 2012-09-22 07:38 -------- d-----w- c:\users\Pc\AppData\Roaming\Origin
2012-09-22 07:36 . 2012-09-22 08:57 -------- d-----w- c:\program files (x86)\Origin Games
2012-09-22 07:36 . 2012-09-22 07:36 -------- d-----w- c:\users\Pc\AppData\Local\Origin
2012-09-22 07:34 . 2012-09-22 08:57 -------- d-----w- c:\programdata\Origin
2012-09-17 16:58 . 2012-09-17 16:58 56672 ----a-w- c:\windows\system32\drivers\avgidsha.sys
2012-09-14 19:43 . 2012-09-14 19:43 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2012-09-14 03:34 . 2012-09-14 03:34 105312 ----a-w- c:\windows\system32\drivers\avgmfx64.sys
2012-09-12 09:47 . 2012-09-12 09:47 199520 ----a-w- c:\windows\system32\drivers\avgtdia.sys
2012-09-12 09:47 . 2012-09-12 09:47 175968 ----a-w- c:\windows\system32\drivers\avgldx64.sys
2012-09-04 13:14 . 2012-09-04 13:14 -------- d-----w- c:\users\Pc\AppData\Local\Risen
2012-09-04 13:11 . 2012-09-04 13:11 43680 ----a-w- c:\windows\system32\drivers\lirsgt.sys
2012-09-04 13:11 . 2012-09-04 13:11 314016 ----a-w- c:\windows\system32\drivers\atksgt.sys
2012-09-04 13:11 . 2012-09-04 13:11 -------- d-----w- c:\windows\1C4551A64743409391E41477CD655043.TMP
2012-09-04 13:11 . 2012-09-04 13:11 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2012-09-02 14:51 . 2012-09-02 14:51 -------- d-----w- c:\users\Pc\AppData\Roaming\BlackBean
2012-08-30 08:40 . 2012-08-30 08:40 429416 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2012-08-28 21:46 . 2012-09-27 19:02 -------- d-----w- c:\programdata\AVG Secure Search
2012-08-28 21:46 . 2012-09-05 16:04 31080 ----a-w- c:\windows\system32\drivers\avgtpx64.sys
2012-08-28 21:46 . 2012-08-28 21:46 -------- d-----w- c:\program files (x86)\Common Files\AVG Secure Search
2012-08-28 21:45 . 2012-09-27 19:03 -------- d-----w- C:\$AVG
2012-08-28 21:45 . 2012-09-27 19:04 -------- d-----w- c:\program files (x86)\AVG
2012-08-28 21:41 . 2012-08-28 21:41 -------- d--h--w- c:\programdata\Common Files
2012-08-28 21:38 . 2012-09-27 19:09 -------- d-----w- c:\programdata\MFAData
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-27 20:56 . 2012-05-30 20:42 30528 ----a-w- c:\windows\GVTDrv64.sys
2012-09-27 20:56 . 2012-05-30 21:35 25640 ----a-w- c:\windows\gdrv.sys
2012-08-30 19:14 . 2012-05-31 13:34 14879080 ----a-w- c:\windows\system32\nvwgf2umx.dll
2012-08-30 19:14 . 2012-05-31 13:34 971624 ----a-w- c:\windows\system32\nvumdshimx.dll
2012-08-30 19:14 . 2012-05-31 13:34 18229096 ----a-w- c:\windows\system32\nvd3dumx.dll
2012-08-30 19:14 . 2012-05-31 13:34 1760104 ----a-w- c:\windows\system32\nvdispco64.dll
2012-08-30 19:14 . 2012-05-31 13:34 15291752 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2012-08-30 19:14 . 2012-05-31 13:34 2725224 ----a-w- c:\windows\system32\nvapi64.dll
2012-08-30 19:14 . 2012-05-31 13:34 2422120 ----a-w- c:\windows\SysWow64\nvapi.dll
2012-08-30 16:18 . 2012-05-31 14:08 891240 ----a-w- c:\windows\system32\nvvsvc.exe
2012-08-30 16:18 . 2012-05-31 14:08 63336 ----a-w- c:\windows\system32\nvshext.dll
2012-08-30 16:18 . 2012-05-31 14:08 2557800 ----a-w- c:\windows\system32\nvsvcr.dll
2012-08-30 16:18 . 2012-05-31 14:08 118120 ----a-w- c:\windows\system32\nvmctray.dll
2012-08-30 16:18 . 2012-05-31 14:08 3487434 ----a-w- c:\windows\system32\nvcoproc.bin
2012-08-30 16:18 . 2012-05-31 14:08 3266920 ----a-w- c:\windows\system32\nvsvc64.dll
2012-08-30 16:17 . 2012-05-31 14:08 6198120 ----a-w- c:\windows\system32\nvcpl.dll
2012-08-14 07:11 . 2012-08-14 07:11 71680 ----a-w- c:\windows\system32\frapsv64.dll
2012-08-14 07:11 . 2012-08-14 07:11 65536 ----a-w- c:\windows\SysWow64\frapsvid.dll
2012-08-13 14:40 . 2012-08-13 14:40 150880 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys
2012-08-11 08:54 . 2012-08-11 08:54 189248 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2012-08-11 08:54 . 2012-08-11 08:54 75136 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2012-08-10 02:52 . 2012-08-10 02:52 40288 ----a-w- c:\windows\system32\drivers\avgrkx64.sys
2012-08-09 11:56 . 2012-08-09 11:56 230240 ----a-w- c:\windows\system32\drivers\avgloga.sys
2012-07-05 20:06 . 2012-08-10 19:48 772544 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-07-05 20:06 . 2012-08-10 19:48 687544 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-07-03 07:37 . 2012-05-31 13:34 1472360 ----a-w- c:\windows\system32\nvhdagenco6420103.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2012-09-27 19:02 1734240 ----a-w- c:\program files (x86)\AVG Secure Search\12.2.5.34\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files (x86)\AVG Secure Search\12.2.5.34\AVG Secure Search_toolbar.dll" [2012-09-27 1734240]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"DAEMON Tools Lite"="d:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]
"EADM"="d:\programy\Origin\Origin.exe" [2012-09-22 3341464]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-11-29 284440]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-01-27 291608]
"PWRISOVM.EXE"="d:\program files (x86)\PowerISO\PWRISOVM.EXE" [2009-11-09 180224]
"vProt"="c:\program files (x86)\AVG Secure Search\vprot.exe" [2012-09-27 947808]
"AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2012-09-14 3039352]
"ROC_ROC_NT"="c:\program files (x86)\AVG Secure Search\ROC_ROC_NT.exe" [2012-09-27 856160]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"EasyTuneVI"="c:\program files (x86)\GIGABYTE\ET6\ETCall.exe" [2012-02-01 40960]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [2012-08-20 5751928]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys [2012-09-27 30528]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2011-08-30 160256]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2012-09-17 56672]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys [2012-08-09 230240]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2012-08-10 40288]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys [2012-01-27 16152]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys [2011-11-02 21616]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2012-08-13 150880]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2012-09-12 175968]
S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2012-09-14 105312]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2012-09-12 199520]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys [2012-09-05 31080]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-06-06 283200]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [2012-08-20 184304]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-11-29 13592]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe [2011-12-08 607456]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2011-12-16 161560]
S2 MBAMService;MBAMService;d:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-07 676936]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-08-30 1258856]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-08-30 382312]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-12-16 363800]
S2 vToolbarUpdater12.2.6;vToolbarUpdater12.2.6;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe [2012-09-05 722528]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys [2012-01-27 356120]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys [2012-01-27 787736]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [2011-08-11 104560]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-07 25928]
S3 MEIx64;Intel(R) Management Engine Interface ;c:\windows\system32\DRIVERS\HECIx64.sys [2011-11-09 60184]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2012-07-03 189288]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-09-27 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2817804364-3950634721-3114671556-1000Core.job
- c:\users\Pc\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-30 20:54]
.
2012-09-27 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2817804364-3950634721-3114671556-1000UA.job
- c:\users\Pc\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-30 20:54]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-01-16 12445288]
"SpywareTerminatorUpdater"="c:\program files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe" [2012-09-06 3673808]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.1.1
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\12.2.6\ViProtocol.dll
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-ROC_roc_ssl_v12 - c:\program files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe
Wow6432Node-HKLM-Run-ROC_ROC_JULY_P1 - c:\program files (x86)\AVG Secure Search\ROC_ROC_JULY_P1.exe
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
HKLM-Run-SpywareTerminatorShield - c:\program files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Program Files (x86)\\GIGABYTE\\ET6\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Program Files (x86)\\GIGABYTE\\ET6\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Program Files (x86)\\GIGABYTE\\ET6\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Program Files (x86)\\GIGABYTE\\ET6\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-09-27 23:06:14
ComboFix-quarantined-files.txt 2012-09-27 21:06
.
Před spuštěním: Volných bajtů: 215 779 930 112
Po spuštění: Volných bajtů: 215 419 998 208
.
- - End Of File - - DA2FE5959983406125C6BA85219530FB

[jaro3]

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

ClearJavaCache::

KillAll::
File::
c:\program files (x86)\Skype\Updater\Updater.exe
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2817804364-3950634721-3114671556-1000Core.job
c:\users\Pc\AppData\Local\Google\Update\GoogleUpdate.exe
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2817804364-3950634721-3114671556-1000UA.job
c:\program files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe

Folder::
c:\program files (x86)\Spyware Terminator
c:\windows\1C4551A64743409391E41477CD655043.TMP
c:\program files (x86)\Skype\Updater
c:\users\Pc\AppData\Local\Google\Update

Driver::
SkypeUpdate

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpywareTerminatorUpdater"=-

RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

[juras.hc]

ComboFix 12-09-27.03 - Pc 29.09.2012 18:51:42.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4058.2592 [GMT 2:00]
Spuštěný z: c:\users\Pc\Downloads\ComboFix.exe
Použité ovládací přepínače :: c:\users\Pc\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\program files (x86)\Skype\Updater\Updater.exe"
"c:\program files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe"
"c:\users\Pc\AppData\Local\Google\Update\GoogleUpdate.exe"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2817804364-3950634721-3114671556-1000Core.job"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2817804364-3950634721-3114671556-1000UA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Skype\Updater
c:\program files (x86)\Skype\Updater\Updater.dll
c:\program files (x86)\Skype\Updater\Updater.exe
c:\users\Pc\AppData\Local\Google\Update
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\GoogleCrashHandler.exe
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\GoogleUpdate.exe
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\GoogleUpdateBroker.exe
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\GoogleUpdateHelper.msi
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\GoogleUpdateOnDemand.exe
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\GoogleUpdateSetup.exe
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdate.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_am.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_ar.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_bg.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_bn.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_ca.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_cs.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_da.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_de.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_el.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_en-GB.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_en.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_es-419.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_es.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_et.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_fa.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_fi.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_fil.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_fr.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_gu.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_hi.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_hr.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_hu.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_id.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_is.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_it.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_iw.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_ja.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_kn.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_ko.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_lt.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_lv.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_ml.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_mr.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_ms.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_nl.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_no.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_pl.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_pt-BR.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_pt-PT.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_ro.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_ru.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_sk.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_sl.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_sr.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_sv.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_sw.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_ta.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_te.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_th.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_tr.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_uk.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_ur.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_vi.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_zh-CN.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\goopdateres_zh-TW.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\psmachine.dll
c:\users\Pc\AppData\Local\Google\Update\1.3.21.123\psuser.dll
c:\users\Pc\AppData\Local\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.123\GoogleUpdateSetup.exe
c:\users\Pc\AppData\Local\Google\Update\Download\{43AF5F4F-8BD9-45EB-BC11-719C5A2DB0F0}\GoogleUpdateSetup.exe
c:\users\Pc\AppData\Local\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\22.0.1229.79\22.0.1229.79_21.0.1180.89_chrome_updater.exe
c:\users\Pc\AppData\Local\Google\Update\GoogleUpdate.exe
c:\windows\1C4551A64743409391E41477CD655043.TMP
c:\windows\1C4551A64743409391E41477CD655043.TMP\WiseCustomCalla.dll
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2817804364-3950634721-3114671556-1000Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2817804364-3950634721-3114671556-1000UA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_SkypeUpdate
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-08-28 do 2012-09-29 )))))))))))))))))))))))))))))))
.
.
2012-09-29 16:54 . 2012-09-29 16:54 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-09-29 16:54 . 2012-09-29 16:54 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-09-28 13:01 . 2012-09-28 13:01 -------- d-----w- c:\programdata\RELOADED
2012-09-28 09:35 . 2012-08-21 09:13 142128 ----a-w- c:\windows\system32\drivers\aswFW.sys
2012-09-28 09:35 . 2012-08-21 09:13 266776 ----a-w- c:\windows\system32\drivers\aswNdis2.sys
2012-09-28 09:35 . 2012-08-21 09:13 19600 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2012-09-28 09:35 . 2012-07-13 10:47 12368 ----a-w- c:\windows\system32\drivers\aswNdis.sys
2012-09-28 09:28 . 2012-08-21 09:13 359464 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-09-28 09:28 . 2012-08-21 09:13 25232 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-09-28 09:28 . 2012-08-21 09:13 969200 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-09-28 09:28 . 2012-08-21 09:13 59728 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-09-28 09:28 . 2012-08-21 09:13 54072 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2012-09-28 09:28 . 2012-08-21 09:13 71600 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2012-09-28 09:28 . 2012-08-21 09:12 285328 ----a-w- c:\windows\system32\aswBoot.exe
2012-09-28 09:28 . 2012-08-21 09:12 41224 ----a-w- c:\windows\avastSS.scr
2012-09-28 09:28 . 2012-08-21 09:12 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
2012-09-28 09:28 . 2012-09-28 09:28 -------- d-----w- c:\programdata\AVAST Software
2012-09-28 09:28 . 2012-09-28 09:28 -------- d-----w- c:\program files\AVAST Software
2012-09-27 20:00 . 2012-09-27 20:00 388096 ----a-r- c:\users\Pc\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-09-27 20:00 . 2012-09-27 20:00 -------- d-----w- c:\program files (x86)\Trend Micro
2012-09-27 19:04 . 2012-09-27 19:04 -------- d-----w- c:\users\Pc\AppData\Roaming\AVG2013
2012-09-27 19:02 . 2012-09-27 19:02 -------- d-----w- c:\users\Pc\AppData\Roaming\TuneUp Software
2012-09-27 18:59 . 2012-09-27 20:06 -------- d-----w- c:\users\Pc\AppData\Local\Avg2013
2012-09-27 18:59 . 2012-09-27 18:59 -------- d-----w- c:\users\Pc\AppData\Local\MFAData
2012-09-27 18:19 . 2012-09-27 18:19 -------- d-----w- c:\users\Pc\AppData\Roaming\Malwarebytes
2012-09-27 18:18 . 2012-09-27 18:18 -------- d-----w- c:\programdata\Malwarebytes
2012-09-27 18:18 . 2012-09-07 15:04 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-26 16:49 . 2012-09-26 16:49 -------- d-----w- c:\program files\CCleaner
2012-09-25 17:26 . 2012-09-25 17:26 -------- d-----w- C:\temp
2012-09-25 17:24 . 2012-09-25 17:24 -------- d-----w- C:\NVIDIA
2012-09-25 17:19 . 2012-09-25 17:19 -------- d-----w- c:\windows\Sun
2012-09-24 17:32 . 2012-09-24 17:32 51496 ----a-w- c:\windows\system32\drivers\stflt.sys
2012-09-22 10:26 . 2012-09-22 10:26 -------- d-----w- c:\program files\Defraggler
2012-09-22 09:31 . 2012-09-22 09:31 -------- d-sh--w- c:\programdata\DSS
2012-09-22 09:26 . 2012-09-22 09:26 -------- d--h--w- c:\program files (x86)\Common Files\EAInstaller
2012-09-22 07:36 . 2012-09-22 07:38 -------- d-----w- c:\users\Pc\AppData\Roaming\Origin
2012-09-22 07:34 . 2012-09-29 08:31 -------- d-----w- c:\programdata\Origin
2012-09-14 19:43 . 2012-09-14 19:43 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2012-09-04 13:14 . 2012-09-04 13:14 -------- d-----w- c:\users\Pc\AppData\Local\Risen
2012-09-04 13:11 . 2012-09-04 13:11 43680 ----a-w- c:\windows\system32\drivers\lirsgt.sys
2012-09-04 13:11 . 2012-09-04 13:11 314016 ----a-w- c:\windows\system32\drivers\atksgt.sys
2012-09-04 13:11 . 2012-09-04 13:11 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2012-09-02 14:51 . 2012-09-02 14:51 -------- d-----w- c:\users\Pc\AppData\Roaming\BlackBean
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-29 16:56 . 2012-05-30 21:35 25640 ----a-w- c:\windows\gdrv.sys
2012-09-29 16:03 . 2012-05-30 20:42 30528 ----a-w- c:\windows\GVTDrv64.sys
2012-08-30 19:14 . 2012-05-31 13:34 14879080 ----a-w- c:\windows\system32\nvwgf2umx.dll
2012-08-30 19:14 . 2012-05-31 13:34 971624 ----a-w- c:\windows\system32\nvumdshimx.dll
2012-08-30 19:14 . 2012-05-31 13:34 18229096 ----a-w- c:\windows\system32\nvd3dumx.dll
2012-08-30 19:14 . 2012-05-31 13:34 1760104 ----a-w- c:\windows\system32\nvdispco64.dll
2012-08-30 19:14 . 2012-05-31 13:34 15291752 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2012-08-30 19:14 . 2012-05-31 13:34 2725224 ----a-w- c:\windows\system32\nvapi64.dll
2012-08-30 19:14 . 2012-05-31 13:34 2422120 ----a-w- c:\windows\SysWow64\nvapi.dll
2012-08-30 16:18 . 2012-05-31 14:08 891240 ----a-w- c:\windows\system32\nvvsvc.exe
2012-08-30 16:18 . 2012-05-31 14:08 63336 ----a-w- c:\windows\system32\nvshext.dll
2012-08-30 16:18 . 2012-05-31 14:08 2557800 ----a-w- c:\windows\system32\nvsvcr.dll
2012-08-30 16:18 . 2012-05-31 14:08 118120 ----a-w- c:\windows\system32\nvmctray.dll
2012-08-30 16:18 . 2012-05-31 14:08 3487434 ----a-w- c:\windows\system32\nvcoproc.bin
2012-08-30 16:18 . 2012-05-31 14:08 3266920 ----a-w- c:\windows\system32\nvsvc64.dll
2012-08-30 16:17 . 2012-05-31 14:08 6198120 ----a-w- c:\windows\system32\nvcpl.dll
2012-08-30 08:40 . 2012-08-30 08:40 429416 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2012-08-14 07:11 . 2012-08-14 07:11 71680 ----a-w- c:\windows\system32\frapsv64.dll
2012-08-14 07:11 . 2012-08-14 07:11 65536 ----a-w- c:\windows\SysWow64\frapsvid.dll
2012-08-11 08:54 . 2012-08-11 08:54 189248 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2012-08-11 08:54 . 2012-08-11 08:54 75136 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2012-07-05 20:06 . 2012-08-10 19:48 772544 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-07-05 20:06 . 2012-08-10 19:48 687544 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-07-03 07:37 . 2012-05-31 13:34 1472360 ----a-w- c:\windows\system32\nvhdagenco6420103.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"DAEMON Tools Lite"="d:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-11-29 284440]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-01-27 291608]
"PWRISOVM.EXE"="d:\program files (x86)\PowerISO\PWRISOVM.EXE" [2009-11-09 180224]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-08-21 4282728]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-11-29 13592]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-08-30 1258856]
R2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-12-16 363800]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys [2012-09-29 30528]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2011-08-30 160256]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\DRIVERS\aswNdis.sys [2012-07-13 12368]
S0 aswNdis2;avast! Firewall Core Firewall Service; [x]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys [2012-01-27 16152]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys [2011-11-02 21616]
S1 aswFW;avast! TDI Firewall driver; [x]
S1 aswKbd;aswKbd; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-06-06 283200]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-08-21 71600]
S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe [2012-08-21 133912]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe [2011-12-08 607456]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2011-12-16 161560]
S2 MBAMService;MBAMService;d:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-07 676936]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-08-30 382312]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys [2012-01-27 356120]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys [2012-01-27 787736]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [2011-08-11 104560]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-07 25928]
S3 MEIx64;Intel(R) Management Engine Interface ;c:\windows\system32\DRIVERS\HECIx64.sys [2011-11-09 60184]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2012-07-03 189288]
.
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-08-21 09:11 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-01-16 12445288]
"SpywareTerminatorShield"="c:\program files (x86)\Spyware Terminator\SpywareTerminatorShield.exe" [BU]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.1.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-ROC_ROC_NT - c:\program files (x86)\AVG Secure Search\ROC_ROC_NT.exe
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
.
.
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
d:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\windows\SysWOW64\PnkBstrA.exe
d:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
.
**************************************************************************
.
Celkový čas: 2012-09-29 18:58:22 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-09-29 16:58
ComboFix2.txt 2012-09-27 21:06
.
Před spuštěním: Volných bajtů: 219 075 743 744
Po spuštění: Volných bajtů: 218 832 945 152
.
- - End Of File - - 0ECA5BAB108B493F47E6362B7F2F4378

[juras.hc]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:00:09, on 29.9.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
D:\Program Files (x86)\PowerISO\PWRISOVM.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\Pc\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Pc\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Pc\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Pc\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Pc\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [PWRISOVM.EXE] D:\Program Files (x86)\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-21-2817804364-3950634721-3114671556-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2817804364-3950634721-3114671556-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll (file missing)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8638 bytes