Kontrola HJT Vyřešeno

[neca]

Dobrý den
Prosím o kontrolu logu, z důvodu že můj PC je nestabilní. Někdy při spuštění nabíhá pouze do nabídek spustit nouzovým režimem, nebo funkčním nastavením a tam vykonává smyčku. Po vypnutí z elektřiny pak normálně naběhne do windowsu. Jindy v průběhu práce na PC, vyskakuje opakovaně hláška realthek high audio, odpojen konektor. Někdy zase vyskočí modrá obrazovka s nějakými nápisy, které ani nestačím přečíst a PS se restartuje.
Nejsem počítačový expert a tak vás prosím odborníky zda by jste mi mohli zkusit nějak pomoci.
Předem děkuji za každou pomoc.


Sestava PC
Počítač:
Typ počítače Víceprocesorový osobní počítač s rozhraním ACPI
Operační systém Microsoft Windows XP Home Edition
Aktualizace Service pack Service Pack 3
Internet Explorer 8.0.6001.18702
DirectX 4.09.00.0904 (DirectX 9.0c)
Základní deska:
Typ CPU DualCore AMD Athlon 64 X2 Black Edition, 3025 MHz (14 x 216)
Název základní desky Gigabyte GA-M55S-S3 v1 (2 PCI, 4 PCI-E x1, 1 PCI-E x16, 4 DDR2 DIMM, Audio, Gigabit LAN, IEEE-1394)
Čipová sada základní desky nVIDIA nForce 550, AMD Hammer
Pracovní paměť 2048 MB (DDR2-800 DDR2 SDRAM)
DIMM1: A-Data EXTREME DDR2 800+ 1 GB DDR2-800 DDR2 SDRAM (5-5-5-18 @ 400 MHz) (4-4-4-12 @ 266 MHz) (3-3-3-9 @ 200 MHz)
DIMM2: A-Data EXTREME DDR2 800+ 1 GB DDR2-800 DDR2 SDRAM (5-5-5-18 @ 400 MHz) (4-4-4-12 @ 266 MHz) (3-3-3-9 @ 200 MHz)
Typ BIOSu Award Modular (07/18/06)
Komunikační porty (COM a LPT) Komunikační port (COM1)
Komunikační porty (COM a LPT) Port tiskárny (LPT1)

Zobrazení:
Grafický adaptér ATI Radeon HD 3800 Series (512 MB)
Grafický adaptér ATI Radeon HD 3800 Series (512 MB)
3D-akcelerátor ATI Radeon HD 3870 (RV670)
Monitor Samsung SyncMaster 199BW/940BW/MagicSyncMaster CX915BW (Digital) [19" LCD] (HSALA03166)

Multimédia:
Zvuková karta ATI Radeon HDMI @ ATI Radeon HD 38xx - High Definition Audio Controller
Zvuková karta Realtek ALC883 @ nVIDIA nForce 550 (MCP55) - High Definition Audio Controller

Nosiče dat:
Ovladač IDE NVIDIA nForce Serial ATA Controller
Ovladač IDE NVIDIA nForce Serial ATA Controller
Ovladač IDE PCI Standardní dvoukanálový řadič IDE
Ovladač úložných zařízení A6W3002D IDE Controller
Ovladač úložných zařízení ARBPI5ZJ IDE Controller
Disketová jednotka Disketová jednotka
Disková jednotka WDC WD16 00JS-60MHB5 SCSI Disk Device (149 GB)
Optická jednotka DTSOFT Virtual CdRom Device
Optická jednotka LITE-ON DVDRW LH-18A1P (DVD+R9:8x, DVD-R9:8x, DVD+RW:18x/8x, DVD-RW:18x/6x, DVD-RAM:12x, DVD-ROM:16x, CD:48x/32x/48x DVD+RW/DVD-RW/DVD-RAM)
Optická jednotka PYJIPI 16ZOH6B45YJC SCSI CdRom Device
Optická jednotka SFC QV8HI78X2 SCSI CdRom Device
Optická jednotka SFC QV8HI78X2 SCSI CdRom Device
Stav SMART pevného disku OK

Oddíly:
C: (NTFS) 44123 MB (6431 MB volných)
D: (NTFS) 90483 MB (4295 MB volných)
E: (NTFS) 18018 MB (1755 MB volných)
Celková velikost 149.0 GB (12.2 GB volných)

Vstupní zařízení:
Klávesnice Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
Myš Myš kompatibilní s portem PS/2

Síť:
Primární adresa IP 192.168.1.101
Primární adresa MAC 00-0F-EA-5C-5F-19
Síťový adaptér NVIDIA nForce 10/100/1000 Mbps Ethernet (192.168.1.101)

Periferní zařízení:
Tiskárna Canon MP510 Printer
Tiskárna Microsoft Office Document Image Writer
Tiskárna Microsoft XPS Document Writer
Tiskárna Odeslat do aplikace OneNote 2007
Ovladač FireWire Texas Instruments TSB43AB23 1394A-2000 OHCI PHY/Link-Layer Controller (PHY: TI TSB43AB23)
Ovladač USB1 nVIDIA nForce 550 (MCP55) - OHCI USB 1.1 Controller
Ovladač USB2 nVIDIA nForce 550 (MCP55) - EHCI USB 2.0 Controller

DMI:
DMI Dodavatel BIOSu Award Software International, Inc.
DMI Verze BIOSu F2
DMI Výrobce systému
DMI Typ systému
DMI Verze systému
DMI Sériové číslo systému
DMI Výrobce základní desky Gigabyte Technology Co., Ltd.
DMI Typ základní desky M55S-S3
DMI Verze základní desky
DMI Sériové číslo základní desky
DMI Výrobce skříně
DMI Verze skříně
DMI Sériové číslo skříně
DMI Označení skříně
DMI Typ skříně Desktop Case
DMI celkem / volných patic pro paměti 4 / 2

A ještě dokládám log.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:46:11, on 7.10.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
E:\Nero\InCD\InCDsrv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Acronis\OnlineBackupStandalone\TrueImageMonitor.exe
C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
C:\Program Files\NVIDIA Corporation\Raid\nvraidservice.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
E:\Riva tuner\RivaTuner v2.24\rivatuner206_cz.exe
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
E:\Rootket\RocketDock\RocketDock.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
E:\NetLimiter\NetLimiter 2 Pro\nlsvc.exe
C:\WINDOWS\system32\PnkBstrA.exe
E:\Alcohol 120%\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Documents and Settings\Roman\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Roman\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Roman\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Roman\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = connectionproxy.com:80
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: EWPBrowseObject Class - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - E:\Tiskárna\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: uTorrentBar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTo0.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - E:\Free dowload manager\Free Download Manager\iefdmcks.dll
O2 - BHO: SaversPlanet - {d930602d-a752-4287-828b-ef0b1f48825c} - C:\Program Files\SaversPlanet\prxtbSav2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - E:\Tiskárna\Easy-WebPrint\Toolband.dll
O3 - Toolbar: SaversPlanet Toolbar - {d930602d-a752-4287-828b-ef0b1f48825c} - C:\Program Files\SaversPlanet\prxtbSav2.dll
O3 - Toolbar: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTo0.dll
O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [SAOB Monitor] C:\Program Files\Acronis\OnlineBackupStandalone\TrueImageMonitor.exe
O4 - HKLM\..\Run: [Služba Acronis Scheduler2] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [LWS] C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe -hide
O4 - HKLM\..\Run: [NVRaidService] C:\Program Files\NVIDIA Corporation\Raid\nvraidservice.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [RivaTuner] "E:\Riva tuner\RivaTuner v2.24\rivatuner206_cz.exe" /T
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKCU\..\Run: [RocketDock] "E:\Rootket\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Roman\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [WUAppSetup] C:\Program Files\Common Files\logishrd\WUApp32.exe -v 0x046d -p 0x0824 -f video -m logitech -d 13.30.1394.0 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [WUAppSetup] C:\Program Files\Common Files\logishrd\WUApp32.exe -v 0x046d -p 0x0824 -f video -m logitech -d 13.30.1394.0 (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O8 - Extra context menu item: Stáhnout Free Download Managerem - file://E:\Free dowload manager\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stáhnout vybrané Free Download Managerem - file://E:\Free dowload manager\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Stáhnout vše Free Download Managerem - file://E:\Free dowload manager\Free Download Manager\dlall.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/Shar ... vSniff.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resour ... se6886.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/Shar ... /cabsa.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 1987496531
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} (Java Plug-in 1.6.0_14) -
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Služba Acronis Nonstop Backup (afcdpsrv) - Acronis - C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - E:\Common\Database\bin\fbserver.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - E:\Nero\InCD\InCDsrv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Malware Defender Service (MalwareDefenderService) - Unknown owner - e:\malware defender\mdservice.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NetLimiter (nlsvc) - Locktime Software - E:\NetLimiter\NetLimiter 2 Pro\nlsvc.exe
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - E:\Sandra\SiSoftware Sandra Lite 2009.SP3\RpcAgentSrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - E:\Skype\Updater\Updater.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Unknown owner - C:\WINDOWS\
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
O23 - Service: UMVPFSrv - Logitech Inc. - C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe

--
End of file - 13572 bytes

Děkuji ještě jednou.
Naschledanou

[Reklama]

[Žbeky]

Odinstaluj:
SaversPlanet Toolbar
uTorrentBar Toolbar
SweetPacks Toolbar for Internet Explorer

Fixni:

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = connectionproxy.com:80
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: uTorrentBar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTo0.dll
O2 - BHO: SaversPlanet - {d930602d-a752-4287-828b-ef0b1f48825c} - C:\Program Files\SaversPlanet\prxtbSav2.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: SaversPlanet Toolbar - {d930602d-a752-4287-828b-ef0b1f48825c} - C:\Program Files\SaversPlanet\prxtbSav2.dll
O3 - Toolbar: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTo0.dll
O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Roman\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/Shar ... vSniff.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resour ... se6886.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/Shar ... /cabsa.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 1987496531
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} (Java Plug-in 1.6.0_14) -

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
- Pokud používáš Firefox, klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Chrome, nic dalšího nevybírej a dej Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(ZATÍM SÁM NIC NEMAŽ!).
Vlož sem pak obsah toho logu.


Stáhni si a nainstaluj WhoCrashed
Otevři ho a klikni na Analyze. Program vytvoří zprávu, celou ji zkopíruj a vlož prosím sem.


Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.


Stáhni si Memtest:
Do políčka vlož největší velikost Tvé jednotlivé paměti RAM (256,512 nebo 1024,2048), dej Start, nech nejméně 2h běžet a pokud bude po 2h stále 0 errors, jsou v pořádku.

[Žbeky]

Napřed se nacpeš do cizího tématu a pak sklízíš plody a píšeš mi SZ, jestli ta rada patří tobě? Nevím, co si mám myslet. Příspěvky jsem oddělil

[neca]

Dobrý den
Já se omlouvám zato, že jsem se dle Vás, nacpal do cizího tématu pane operátore, jak jste si jistě všiml, jsem nováček a tak se zde ještě neorientuji.
Toť vše.
Žádné plody nesklízím, to bych Vám asi nepsal.
Teď si můžete myslet co chcete, ale trochu tolerance, zvlášť když jsem slušný by Vám slušela.
Jestli mi pomůžete, budu Vám vděčný, jestli ne, je to na Vás.
Naschledanou

[Orcus]

Samozřejmě, že Ti rádi pomůžem. Ale právě proto, že jsi nováček, tak by jsi ještě měl mít v paměti zdější desatero. 2a třetí puntik:

Nesnažte se řešit jiný problém (i když podobný) v jednom tématu; do tématu nevkládejte příspěvky, které se odklánějí od původní diskuze (tzv. OffTopic příspěvky)

U nějaké hry se to ještě dá dejme tomu přejít, nicméně v logách je pak bordel a my se v tom pak nevyznáme. Ulehčíš to nám i sobě. Žbeky Ti poslal, co máš provést, tak to prosím proveď a dej nám sem vyžádáné informace.

[neca]

Dobrý den
Děkuji za pomoc.

Malwarebytes Anti-Malware 1.65.0.1400
http://www.malwarebytes.org

Verze databáze: v2012.10.07.04

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Roman :: R-EA1E41DDAD294 [administrátor]

8.10.2012 16:37:16
mbam-log-2012-10-08 (16-37-16).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 225975
Uplynulý čas: 10 minut, 38 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)



--------------------------------------------------------------------------------
Welcome to WhoCrashed (HOME EDITION) v 3.06
--------------------------------------------------------------------------------

This program checks for drivers which have been crashing your computer. If your computer has displayed a blue screen of death, suddenly rebooted or shut down then this program will help you find the root cause and possibly a solution.

Whenever a computer suddenly reboots without displaying any notice or blue screen of death, the first thing that is often thought about is a hardware failure. In reality, on Windows most crashes are caused by malfunctioning device drivers and kernel modules. In case of a kernel error, many computers do not show a blue screen unless they are configured for this. Instead these systems suddenly reboot without any notice.

This program will analyze your crash dumps with the single click of a button. It will tell you what drivers are likely to be responsible for crashing your computer. If will report a conclusion which offers suggestions on how to proceed in any situation while the analysis report will display internet links which will help you further troubleshoot any detected problems.


To obtain technical support visit http://www.resplendence.com/support

Click here to check if you have the latest version or if an update is available.

Just click the Analyze button for a comprehensible report ...



--------------------------------------------------------------------------------
Home Edition Notice
--------------------------------------------------------------------------------

This version of WhoCrashed is free for use at home only. If you would like to use this software at work or in a commercial environment you should get the professional edition of WhoCrashed which also allows analysis of crashdumps on remote drives and computers on the network and offers a range of additional features.

Click here for more information on the professional edition.
Click here to buy the the professional edition of WhoCrashed.



--------------------------------------------------------------------------------
System Information (local)
--------------------------------------------------------------------------------

computer name: R-EA1E41DDAD294
windows version: Windows XP Service Pack 3, 5.1, build: 2600
windows dir: C:\WINDOWS
CPU: AuthenticAMD AMD Athlon(tm) 64 X2 Dual Core Processor 5400+ AMD586, level: 15
2 logical processors, active mask: 3
RAM: 2146938880 total
VM: 2147352576, free: 2016845824



--------------------------------------------------------------------------------
Crash Dump Analysis
--------------------------------------------------------------------------------

Crash dump directory: C:\WINDOWS\Minidump

Crash dumps are enabled on your computer.


On Sun 7.10.2012 13:43:27 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\Mini100712-01.dmp
This was probably caused by the following module: atikvmag.dll (atikvmag+0x1372F)
Bugcheck code: 0x10000050 (0xFFFFFFFFB7FA0B04, 0x0, 0xFFFFFFFFBD11172F, 0x0)
Error: CUSTOM_ERROR
file path: C:\WINDOWS\system32\atikvmag.dll
product: Virtual Command And Memory Manager
company: ATI Technologies Inc.
description: Virtual Command And Memory Manager
A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: atikvmag.dll (Virtual Command And Memory Manager, ATI Technologies Inc.).
Google query: atikvmag.dll ATI Technologies Inc. CUSTOM_ERROR





--------------------------------------------------------------------------------
Conclusion
--------------------------------------------------------------------------------

1 crash dumps have been found and analyzed. A third party driver has been identified to be causing system crashes on your computer. It is strongly suggested that you check for updates for these drivers on their company websites. Click on the links below to search with Google for updates for these drivers:

atikvmag.dll (Virtual Command And Memory Manager, ATI Technologies Inc.)

If no updates for these drivers are available, try searching with Google on the names of these drivers in combination the errors that have been reported for these drivers and include the brand and model name of your computer as well in the query. This often yields interesting results from discussions from users who have been experiencing similar problems.


Read the topic general suggestions for troubleshooting system crashes for more information.

Note that it's not always possible to state with certainty whether a reported driver is actually responsible for crashing your system or that the root cause is in another module. Nonetheless it's suggested you look for updates for the products that these drivers belong to and regularly visit Windows update or enable automatic updates for Windows. In case a piece of malfunctioning hardware is causing trouble, a search with Google on the bug check errors together with the model name and brand of your computer may help you investigate this further.

----------------------------------------------------------------------------
CrystalDiskInfo 5.0.5 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows XP Home Edition SP3 [5.1 Build 2600] (x86)
Date : 2012/10/08 18:52:18

-- Controller Map ----------------------------------------------------------
+ PCI Standardní dvoukanálový řadič IDE [ATA]
+ Primární kanál IDE (0)
- LITE-ON DVDRW LH-18A1P
- Sekundární kanál IDE (1)
+ NVIDIA nForce Serial ATA Controller [ATA]
- WDC WD16 00JS-60MHB5 SCSI Disk Device
- NVIDIA nForce Serial ATA Controller [ATA]
+ AFXSULYV IDE Controller [SCSI]
- SFC QV8HI78X2 SCSI CdRom Device
- SFC QV8HI78X2 SCSI CdRom Device
+ ANHYJZQO IDE Controller [SCSI]
- PYJIPI 16ZOH6B45YJC SCSI CdRom Device

-- Disk List ---------------------------------------------------------------
(1) WDC WD1600JS-60MHB5 : 160,0 GB [0/2/0, pd1]

----------------------------------------------------------------------------
(1) WDC WD1600JS-60MHB5
----------------------------------------------------------------------------
Model : WDC WD1600JS-60MHB5
Firmware : 10.02E04
Serial Number : WD-WCANM7348056
Disk Size : 160,0 GB (8,4/137,4/160,0)
Buffer Size : 8192 KB
Queue Depth : 1
# of Sectors : 312581808
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 12290 hod.
Power On Count : 1885 krát
Temparature : 40 C (104 F)
Health Status : Dobrý
Features : S.M.A.R.T., 48bit LBA
APM Level : ----
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 183 180 _21 000000000EE8 Čas na roztočení ploten
04 _98 _98 __0 000000000973 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 _51 000000000000 Počet chybných hledání
09 _84 _84 __0 000000003002 Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 _51 000000000000 Počet pokusů o překalibrování
0C _99 _99 __0 00000000075D Počet cyklů zapnutí zařízení
BE _60 _34 _45 000000000028 Teplota toku vzduchu
C2 107 _81 __0 000000000028 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 200 200 _51 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5743 414E 4D37 3334 3830 3536
020: 0000 4000 0032 3130 2E30 3245 3034 5744 4320 5744
030: 3136 3030 4A53 2D36 304D 4842 3520 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 0000 0406 0000 0048 0040
080: 00FE 0000 706B 7C01 4023 7068 3C01 4023 203F 001B
090: 001B 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 9EB0 12A1 0000 0000 0000 0000 0000 0000 0000 0000
110: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
120: 0000 0000 0000 0000 0000 0000 0000 0000 0021 0000
130: 0000 0000 0000 1663 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 103F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 97A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0F 00 C8 C8 00 00 00 00 00 00 00 03 03
010: 00 B7 B4 E8 0E 00 00 00 00 00 04 32 00 62 62 73
020: 09 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 0F 00 C8 C8 00 00 00 00 00 00 00 09 32
040: 00 54 54 02 30 00 00 00 00 00 0A 13 00 64 64 00
050: 00 00 00 00 00 00 0B 12 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 63 63 5D 07 00 00 00 00 00 BE 22
070: 00 3C 22 28 00 00 00 00 00 00 C2 22 00 6B 51 28
080: 00 00 00 00 00 00 C4 32 00 C8 C8 00 00 00 00 00
090: 00 00 C5 12 00 C8 C8 00 00 00 00 00 00 00 C6 10
0A0: 00 C8 C8 00 00 00 00 00 00 00 C7 3E 00 C8 C8 00
0B0: 00 00 00 00 00 00 C8 09 00 C8 C8 00 00 00 00 00
0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 84 00 18 15 01 7B
170: 03 00 01 00 02 40 06 00 00 00 00 00 00 00 00 00
180: 00 00 01 04 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 C9

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 C8 C8 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 33 C8 C8 C8 C8 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 33 00 00 00 00
050: 00 00 00 00 00 00 0B 33 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 BE 2D
070: 00 00 00 00 00 00 00 00 00 00 C2 00 00 00 00 00
080: 00 00 00 00 00 00 C4 00 00 00 00 00 00 00 00 00
090: 00 00 C5 00 00 00 00 00 00 00 00 00 00 00 C6 00
0A0: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
0B0: 00 00 00 00 00 00 C8 33 C8 C8 C8 C8 00 00 00 00
0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 27

Snad jsem to udělal dobře.

[Žbeky]

Disk OK, ale chtělo by jej to víc chladit

BSOD byla kvůli ovladači grafiky. Aktualizuj jej

Co memtest?


Stáhni si TDSSKiller

Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.

[neca]

Zatím memtest beží, nechám ho tak do 21.00.
Pak dám vědět.
Ovladač na grafiku tedy stáhnu nový. A hard disk začnu chladit přídavným ventilátorem. Nebo je nějaké vhodnější řešení?
Až dojede memtest udělám to ostatní, TDSSKiller a ComboFix.
Tak zatím díky.

[neca]

21:17:31.0703 1368 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
21:17:31.0906 1368 ============================================================
21:17:31.0906 1368 Current date / time: 2012/10/08 21:17:31.0906
21:17:31.0906 1368 SystemInfo:
21:17:31.0906 1368
21:17:31.0906 1368 OS Version: 5.1.2600 ServicePack: 3.0
21:17:31.0906 1368 Product type: Workstation
21:17:31.0906 1368 ComputerName: R-EA1E41DDAD294
21:17:31.0906 1368 UserName: Roman
21:17:31.0906 1368 Windows directory: C:\WINDOWS
21:17:31.0906 1368 System windows directory: C:\WINDOWS
21:17:31.0906 1368 Processor architecture: Intel x86
21:17:31.0906 1368 Number of processors: 2
21:17:31.0906 1368 Page size: 0x1000
21:17:31.0906 1368 Boot type: Normal boot
21:17:31.0906 1368 ============================================================
21:17:32.0968 1368 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000058
21:17:32.0968 1368 ============================================================
21:17:32.0968 1368 \Device\Harddisk0\DR0:
21:17:32.0968 1368 MBR partitions:
21:17:32.0968 1368 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x562DE7A
21:17:32.0984 1368 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x562DEF8, BlocksNum 0xB0B9A10
21:17:33.0000 1368 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x106E7947, BlocksNum 0x233117A
21:17:33.0000 1368 ============================================================
21:17:33.0031 1368 C: <-> \Device\Harddisk0\DR0\Partition1
21:17:33.0062 1368 D: <-> \Device\Harddisk0\DR0\Partition2
21:17:33.0093 1368 E: <-> \Device\Harddisk0\DR0\Partition3
21:17:33.0109 1368 ============================================================
21:17:33.0109 1368 Initialize success
21:17:33.0109 1368 ============================================================
21:17:34.0875 2328 ============================================================
21:17:34.0875 2328 Scan started
21:17:34.0875 2328 Mode: Manual;
21:17:34.0875 2328 ============================================================
21:17:35.0750 2328 ================ Scan system memory ========================
21:17:35.0750 2328 System memory - ok
21:17:35.0750 2328 ================ Scan services =============================
21:17:35.0828 2328 Abiosdsk - ok
21:17:35.0828 2328 abp480n5 - ok
21:17:35.0859 2328 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:17:35.0875 2328 ACPI - ok
21:17:35.0906 2328 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
21:17:35.0906 2328 ACPIEC - ok
21:17:36.0015 2328 [ 10505AD1112AB68ED71ECC08552DAC2E ] AcrSch2Svc C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
21:17:36.0046 2328 AcrSch2Svc - ok
21:17:36.0046 2328 Ad-Watch Connect Filter - ok
21:17:36.0062 2328 Ad-Watch Real-Time Scanner - ok
21:17:36.0062 2328 Ad-Watch Registry Filter - ok
21:17:36.0125 2328 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:17:36.0125 2328 AdobeFlashPlayerUpdateSvc - ok
21:17:36.0125 2328 adpu160m - ok
21:17:36.0140 2328 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
21:17:36.0140 2328 aec - ok
21:17:36.0171 2328 [ 0CBA69E0BDA9F55736239627E49DF31A ] afcdp C:\WINDOWS\system32\DRIVERS\afcdp.sys
21:17:36.0171 2328 afcdp - ok
21:17:36.0281 2328 [ 9A635B24E3EF3632E4197C66207A2DE3 ] afcdpsrv C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
21:17:36.0375 2328 afcdpsrv - ok
21:17:36.0390 2328 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
21:17:36.0390 2328 AFD - ok
21:17:36.0406 2328 Aha154x - ok
21:17:36.0406 2328 aic78u2 - ok
21:17:36.0406 2328 aic78xx - ok
21:17:36.0437 2328 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
21:17:36.0468 2328 Alerter - ok
21:17:36.0484 2328 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
21:17:36.0484 2328 ALG - ok
21:17:36.0484 2328 AliIde - ok
21:17:36.0546 2328 [ 267FC636801EDC5AB28E14036349E3BE ] Ambfilt C:\WINDOWS\system32\drivers\Ambfilt.sys
21:17:36.0593 2328 Ambfilt - ok
21:17:36.0625 2328 [ 99BD5596B5D06C2EAD3CECC6F11999F5 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
21:17:36.0625 2328 AmdK8 - ok
21:17:36.0625 2328 amsint - ok
21:17:36.0656 2328 AODDriver - ok
21:17:36.0656 2328 AppMgmt - ok
21:17:36.0718 2328 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:17:36.0718 2328 Arp1394 - ok
21:17:36.0718 2328 asc - ok
21:17:36.0734 2328 asc3350p - ok
21:17:36.0734 2328 asc3550 - ok
21:17:36.0812 2328 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
21:17:36.0859 2328 aspnet_state - ok
21:17:36.0875 2328 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:17:36.0875 2328 AsyncMac - ok
21:17:36.0890 2328 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
21:17:36.0890 2328 atapi - ok
21:17:36.0890 2328 Atdisk - ok
21:17:36.0937 2328 [ 2A27A3A8634FB9E29F539D6D3ED3646A ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
21:17:36.0953 2328 Ati HotKey Poller - ok
21:17:36.0984 2328 [ 72810C6A63076A480ABCE0E0BA0BC981 ] ATI Smart C:\WINDOWS\system32\ati2sgag.exe
21:17:37.0000 2328 ATI Smart - ok
21:17:37.0078 2328 [ 8763EDE3E0CD40F5C3450571AC57F205 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:17:37.0109 2328 ati2mtag - ok
21:17:37.0140 2328 [ DE4A84289722705231013745C1E15829 ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdXP3.sys
21:17:37.0140 2328 AtiHDAudioService - ok
21:17:37.0171 2328 [ 7E13F3F0F4C4C337A6949A18D1D23089 ] AtiHdmiService C:\WINDOWS\system32\drivers\AtiHdmi.sys
21:17:37.0171 2328 AtiHdmiService - ok
21:17:37.0203 2328 [ 0E4BB35C5305099AC82053AC992E3E0E ] ATITool C:\WINDOWS\system32\DRIVERS\ATITool.sys
21:17:37.0203 2328 ATITool - ok
21:17:37.0218 2328 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:17:37.0218 2328 Atmarpc - ok
21:17:37.0250 2328 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
21:17:37.0250 2328 AudioSrv - ok
21:17:37.0281 2328 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
21:17:37.0281 2328 audstub - ok
21:17:37.0296 2328 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
21:17:37.0296 2328 Beep - ok
21:17:37.0343 2328 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
21:17:37.0468 2328 BITS - ok
21:17:37.0500 2328 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
21:17:37.0500 2328 Browser - ok
21:17:37.0500 2328 catchme - ok
21:17:37.0515 2328 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
21:17:37.0515 2328 cbidf2k - ok
21:17:37.0546 2328 [ FDC06E2ADA8C468EBB161624E03976CF ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:17:37.0562 2328 CCDECODE - ok
21:17:37.0562 2328 cd20xrnt - ok
21:17:37.0593 2328 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
21:17:37.0593 2328 Cdaudio - ok
21:17:37.0609 2328 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
21:17:37.0609 2328 Cdfs - ok
21:17:37.0625 2328 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:17:37.0625 2328 Cdrom - ok
21:17:37.0625 2328 Changer - ok
21:17:37.0656 2328 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
21:17:37.0671 2328 CiSvc - ok
21:17:37.0687 2328 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
21:17:37.0687 2328 ClipSrv - ok
21:17:37.0734 2328 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:17:37.0734 2328 clr_optimization_v2.0.50727_32 - ok
21:17:37.0765 2328 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:17:37.0828 2328 clr_optimization_v4.0.30319_32 - ok
21:17:37.0828 2328 CmdIde - ok
21:17:37.0828 2328 COMSysApp - ok
21:17:37.0843 2328 Cpqarray - ok
21:17:37.0906 2328 cpuz130 - ok
21:17:37.0906 2328 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
21:17:37.0906 2328 CryptSvc - ok
21:17:37.0937 2328 CrystalSysInfo - ok
21:17:37.0937 2328 dac2w2k - ok
21:17:37.0953 2328 dac960nt - ok
21:17:37.0984 2328 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
21:17:38.0000 2328 DcomLaunch - ok
21:17:38.0031 2328 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
21:17:38.0031 2328 Dhcp - ok
21:17:38.0078 2328 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
21:17:38.0078 2328 Disk - ok
21:17:38.0078 2328 dmadmin - ok
21:17:38.0109 2328 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
21:17:38.0140 2328 dmboot - ok
21:17:38.0156 2328 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
21:17:38.0156 2328 dmio - ok
21:17:38.0171 2328 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
21:17:38.0171 2328 dmload - ok
21:17:38.0203 2328 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
21:17:38.0203 2328 dmserver - ok
21:17:38.0234 2328 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
21:17:38.0234 2328 DMusic - ok
21:17:38.0250 2328 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
21:17:38.0265 2328 Dnscache - ok
21:17:38.0281 2328 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
21:17:38.0281 2328 Dot3svc - ok
21:17:38.0296 2328 dpti2o - ok
21:17:38.0296 2328 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
21:17:38.0296 2328 drmkaud - ok
21:17:38.0328 2328 [ 651554E483712B708EDE864D0CA1AA73 ] DrvAgent32 C:\WINDOWS\system32\Drivers\DrvAgent32.sys
21:17:38.0328 2328 DrvAgent32 - ok
21:17:38.0359 2328 [ FB38473835476A6FB272215A1D972AF9 ] dtsoftbus01 C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
21:17:38.0359 2328 dtsoftbus01 - ok
21:17:38.0375 2328 [ 9309C5C9831203436E64CF2AE605C5D7 ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
21:17:38.0375 2328 eamon - ok
21:17:38.0406 2328 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
21:17:38.0406 2328 EapHost - ok
21:17:38.0437 2328 [ DEFF87F04AB5F6DD5EDF2B80853BBE10 ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
21:17:38.0437 2328 ehdrv - ok
21:17:38.0531 2328 [ 3B944199F8EDD76BE94460C0361409AB ] ekrn C:\Program Files\ESET\ESET Smart Security\ekrn.exe
21:17:38.0546 2328 ekrn - ok
21:17:38.0578 2328 [ 16EBD8BF1D5090923694CC972C7CE1B4 ] ENTECH C:\WINDOWS\system32\DRIVERS\ENTECH.sys
21:17:38.0578 2328 ENTECH - ok
21:17:38.0609 2328 [ 5BA193CA0AE31209AAA39939CE6736B2 ] epfw C:\WINDOWS\system32\DRIVERS\epfw.sys
21:17:38.0609 2328 epfw - ok
21:17:38.0640 2328 [ 75D3BCD3E0EDED0AB0F96D9A10FF01C9 ] Epfwndis C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
21:17:38.0640 2328 Epfwndis - ok
21:17:38.0671 2328 [ DC64F26F35E32C9472BBF8ACD84060D3 ] epfwtdi C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
21:17:38.0671 2328 epfwtdi - ok
21:17:38.0703 2328 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
21:17:38.0703 2328 ERSvc - ok
21:17:38.0718 2328 esihdrv - ok
21:17:38.0750 2328 [ 3AF0AE042AFE486B22644CD3FBEBF2E2 ] etdrv C:\WINDOWS\etdrv.sys
21:17:39.0125 2328 etdrv - ok
21:17:39.0156 2328 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
21:17:39.0156 2328 Eventlog - ok
21:17:39.0187 2328 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
21:17:39.0187 2328 EventSystem - ok
21:17:39.0234 2328 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
21:17:39.0234 2328 Fastfat - ok
21:17:39.0265 2328 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
21:17:39.0281 2328 FastUserSwitchingCompatibility - ok
21:17:39.0296 2328 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
21:17:39.0296 2328 Fdc - ok
21:17:39.0312 2328 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
21:17:39.0312 2328 Fips - ok
21:17:39.0406 2328 [ 167D24A045499EBEF438F231976158DF ] FirebirdServerMAGIXInstance E:\Common\Database\bin\fbserver.exe
21:17:39.0468 2328 FirebirdServerMAGIXInstance - ok
21:17:39.0500 2328 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:17:39.0500 2328 Flpydisk - ok
21:17:39.0515 2328 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
21:17:39.0515 2328 FltMgr - ok
21:17:39.0578 2328 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
21:17:39.0578 2328 FontCache3.0.0.0 - ok
21:17:39.0687 2328 [ 34D2E12226269789BB5F292915B089D7 ] ForceWare Intelligent Application Manager (IAM) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
21:17:39.0703 2328 ForceWare Intelligent Application Manager (IAM) - ok
21:17:39.0718 2328 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:17:39.0718 2328 Fs_Rec - ok
21:17:39.0750 2328 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:17:39.0750 2328 Ftdisk - ok
21:17:39.0781 2328 [ D556CB79967E92B5CC69686D16C1D846 ] gdrv C:\WINDOWS\gdrv.sys
21:17:39.0781 2328 gdrv - ok
21:17:39.0812 2328 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:17:39.0812 2328 Gpc - ok
21:17:39.0859 2328 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
21:17:39.0875 2328 gupdate - ok
21:17:39.0875 2328 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
21:17:39.0875 2328 gupdatem - ok
21:17:39.0890 2328 [ F22BF7F345DF95C09942951246AAA28D ] GVCplDrv C:\WINDOWS\system32\drivers\GVCplDrv.sys
21:17:39.0890 2328 GVCplDrv - ok
21:17:39.0921 2328 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:17:39.0921 2328 HDAudBus - ok
21:17:39.0968 2328 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:17:39.0968 2328 helpsvc - ok
21:17:40.0000 2328 [ 0D3AE4ED905DD21C9F0F2752B0FD0DBE ] hgeibflo c:\windows\system32\drivers\hgeibflo.sys
21:17:40.0000 2328 hgeibflo - ok
21:17:40.0000 2328 HidServ - ok
21:17:40.0015 2328 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:17:40.0031 2328 HidUsb - ok
21:17:40.0046 2328 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
21:17:40.0046 2328 hkmsvc - ok
21:17:40.0062 2328 hpn - ok
21:17:40.0093 2328 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
21:17:40.0093 2328 HTTP - ok
21:17:40.0125 2328 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
21:17:40.0125 2328 HTTPFilter - ok
21:17:40.0125 2328 i2omgmt - ok
21:17:40.0140 2328 i2omp - ok
21:17:40.0156 2328 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:17:40.0156 2328 i8042prt - ok
21:17:40.0218 2328 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
21:17:40.0218 2328 IDriverT - ok
21:17:40.0281 2328 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:17:40.0296 2328 idsvc - ok
21:17:40.0359 2328 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
21:17:40.0359 2328 Imapi - ok
21:17:40.0468 2328 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
21:17:40.0484 2328 ImapiService - ok
21:17:40.0515 2328 [ D8A77FC386F9297CE4B692FC83B4BA02 ] InCDfs C:\WINDOWS\system32\drivers\InCDfs.sys
21:17:40.0515 2328 InCDfs - ok
21:17:40.0562 2328 [ 433BB499BCEA1C88B55AA67D1B3EF1DC ] InCDPass C:\WINDOWS\system32\DRIVERS\InCDPass.sys
21:17:40.0562 2328 InCDPass - ok
21:17:40.0593 2328 [ 12DBB035CD2ED0313FAB864470F31C23 ] InCDrec C:\WINDOWS\system32\drivers\InCDrec.sys
21:17:40.0593 2328 InCDrec - ok
21:17:40.0609 2328 [ 9D1ADFE6CE5C2E2A42F3B8AA57821D87 ] incdrm C:\WINDOWS\system32\drivers\incdrm.sys
21:17:40.0609 2328 incdrm - ok
21:17:40.0875 2328 [ 394BF2329AC168F253C74E1EEAD15FAC ] InCDsrv E:\Nero\InCD\InCDsrv.exe
21:17:41.0031 2328 InCDsrv - ok
21:17:41.0046 2328 ini910u - ok
21:17:41.0562 2328 [ 723907CC600271BB216FAAA0B6877678 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
21:17:41.0593 2328 IntcAzAudAddService - ok
21:17:41.0593 2328 IntelIde - ok
21:17:41.0625 2328 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
21:17:41.0625 2328 Ip6Fw - ok
21:17:41.0656 2328 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:17:41.0656 2328 IpFilterDriver - ok
21:17:41.0671 2328 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:17:41.0671 2328 IpInIp - ok
21:17:41.0687 2328 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:17:41.0687 2328 IpNat - ok
21:17:41.0718 2328 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:17:41.0718 2328 IPSec - ok
21:17:41.0734 2328 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
21:17:41.0750 2328 IRENUM - ok
21:17:41.0765 2328 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:17:41.0765 2328 isapnp - ok
21:17:41.0859 2328 [ A12175F063302CD68F8FC6D572D7E5FD ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
21:17:41.0859 2328 JavaQuickStarterService - ok
21:17:41.0875 2328 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:17:41.0875 2328 Kbdclass - ok
21:17:41.0875 2328 kbfiltr - ok
21:17:41.0921 2328 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
21:17:41.0921 2328 kmixer - ok
21:17:41.0937 2328 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
21:17:41.0968 2328 KSecDD - ok
21:17:42.0000 2328 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
21:17:42.0000 2328 lanmanserver - ok
21:17:42.0031 2328 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
21:17:42.0031 2328 lanmanworkstation - ok
21:17:42.0046 2328 lbrtfdc - ok
21:17:42.0062 2328 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
21:17:42.0062 2328 LmHosts - ok
21:17:42.0093 2328 [ 7521C0C58EE91BE90B6CC33E792D10C7 ] LVRS C:\WINDOWS\system32\DRIVERS\lvrs.sys
21:17:42.0093 2328 LVRS - ok
21:17:42.0203 2328 [ 37E57C48AF530DF01CDD4E8A2AD77B51 ] LVUVC C:\WINDOWS\system32\DRIVERS\lvuvc.sys
21:17:42.0312 2328 LVUVC - ok
21:17:42.0312 2328 MalwareDefenderService - ok
21:17:42.0343 2328 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
21:17:42.0343 2328 Messenger - ok
21:17:42.0406 2328 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
21:17:42.0406 2328 Microsoft Office Groove Audit Service - ok
21:17:42.0437 2328 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
21:17:42.0437 2328 mnmdd - ok
21:17:42.0468 2328 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
21:17:42.0468 2328 mnmsrvc - ok
21:17:42.0484 2328 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
21:17:42.0484 2328 Modem - ok
21:17:42.0546 2328 [ C7D9F9717916B34C1B00DD4834AF485C ] Monfilt C:\WINDOWS\system32\drivers\Monfilt.sys
21:17:42.0578 2328 Monfilt - ok
21:17:42.0609 2328 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:17:42.0609 2328 Mouclass - ok
21:17:42.0625 2328 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:17:42.0625 2328 mouhid - ok
21:17:42.0640 2328 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
21:17:42.0640 2328 MountMgr - ok
21:17:42.0656 2328 mraid35x - ok
21:17:42.0671 2328 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:17:42.0671 2328 MRxDAV - ok
21:17:42.0703 2328 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:17:42.0703 2328 MRxSmb - ok
21:17:42.0734 2328 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
21:17:42.0734 2328 MSDTC - ok
21:17:42.0765 2328 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
21:17:42.0765 2328 Msfs - ok
21:17:42.0781 2328 MSIServer - ok
21:17:42.0812 2328 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:17:42.0812 2328 MSKSSRV - ok
21:17:42.0828 2328 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:17:42.0843 2328 MSPCLOCK - ok
21:17:42.0859 2328 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
21:17:42.0859 2328 MSPQM - ok
21:17:42.0875 2328 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:17:42.0875 2328 mssmbios - ok
21:17:42.0906 2328 [ D5059366B361F0E1124753447AF08AA2 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
21:17:42.0906 2328 MSTEE - ok
21:17:42.0921 2328 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
21:17:42.0921 2328 Mup - ok
21:17:42.0937 2328 [ AC31B352CE5E92704056D409834BEB74 ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:17:42.0937 2328 NABTSFEC - ok
21:17:42.0968 2328 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
21:17:42.0984 2328 napagent - ok
21:17:43.0046 2328 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
21:17:43.0062 2328 NDIS - ok
21:17:43.0093 2328 [ ABD7629CF2796250F315C1DD0B6CF7A0 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:17:43.0093 2328 NdisIP - ok
21:17:43.0125 2328 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:17:43.0125 2328 NdisTapi - ok
21:17:43.0140 2328 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:17:43.0140 2328 Ndisuio - ok
21:17:43.0156 2328 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:17:43.0156 2328 NdisWan - ok
21:17:43.0187 2328 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
21:17:43.0187 2328 NDProxy - ok
21:17:43.0250 2328 [ B90E093E7A7250906F1054418B5339C0 ] Nero BackItUp Scheduler 4.0 C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
21:17:43.0281 2328 Nero BackItUp Scheduler 4.0 - ok
21:17:43.0296 2328 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
21:17:43.0312 2328 NetBIOS - ok
21:17:43.0328 2328 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
21:17:43.0328 2328 NetBT - ok
21:17:43.0359 2328 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
21:17:43.0359 2328 NetDDE - ok
21:17:43.0375 2328 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
21:17:43.0375 2328 NetDDEdsdm - ok
21:17:43.0390 2328 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
21:17:43.0390 2328 Netlogon - ok
21:17:43.0437 2328 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
21:17:43.0437 2328 Netman - ok
21:17:43.0453 2328 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:17:43.0484 2328 NetTcpPortSharing - ok
21:17:43.0515 2328 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:17:43.0515 2328 NIC1394 - ok
21:17:43.0546 2328 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
21:17:43.0546 2328 Nla - ok
21:17:43.0625 2328 [ C8F536FB328AFE64A7F18BBFC00B10EE ] nlsvc E:\NetLimiter\NetLimiter 2 Pro\nlsvc.exe
21:17:43.0640 2328 nlsvc - ok
21:17:43.0671 2328 [ 3EE27BCFF781F07A12DF75E8BE852B0E ] nltdi C:\WINDOWS\system32\drivers\nltdi.sys
21:17:43.0671 2328 nltdi - ok
21:17:43.0703 2328 [ 4A8A2AA0706B659175169DECF198E9D7 ] nmwcd C:\WINDOWS\system32\drivers\ccdcmb.sys
21:17:43.0703 2328 nmwcd - ok
21:17:43.0734 2328 [ FD3E61831095AC62E6840D986B5A2016 ] nmwcdc C:\WINDOWS\system32\drivers\ccdcmbo.sys
21:17:43.0734 2328 nmwcdc - ok
21:17:43.0734 2328 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
21:17:43.0734 2328 Npfs - ok
21:17:43.0765 2328 [ 0DC1D52722CEBA645B4D460E66D58AEE ] nSvcIp C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
21:17:43.0765 2328 nSvcIp - ok
21:17:43.0812 2328 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
21:17:43.0828 2328 Ntfs - ok
21:17:43.0828 2328 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
21:17:43.0828 2328 NtLmSsp - ok
21:17:43.0859 2328 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
21:17:43.0875 2328 NtmsSvc - ok
21:17:43.0890 2328 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
21:17:43.0890 2328 Null - ok
21:17:43.0937 2328 [ 7D275ECDA4628318912F6C945D5CF963 ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
21:17:43.0937 2328 NVENETFD - ok
21:17:43.0968 2328 [ 52DCE3B30C9D61C8E20FE3C6DA4BDFB7 ] nvgts C:\WINDOWS\system32\DRIVERS\nvgts.sys
21:17:43.0968 2328 nvgts - ok
21:17:44.0000 2328 [ B64AACEFAD2BE5BFF5353FE681253C67 ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
21:17:44.0000 2328 nvnetbus - ok
21:17:44.0015 2328 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:17:44.0015 2328 NwlnkFlt - ok
21:17:44.0046 2328 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:17:44.0046 2328 NwlnkFwd - ok
21:17:44.0046 2328 oaunbt06u06 - ok
21:17:44.0093 2328 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:17:44.0109 2328 odserv - ok
21:17:44.0140 2328 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:17:44.0140 2328 ohci1394 - ok
21:17:44.0187 2328 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:17:44.0187 2328 ose - ok
21:17:44.0187 2328 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
21:17:44.0187 2328 Parport - ok
21:17:44.0203 2328 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
21:17:44.0203 2328 PartMgr - ok
21:17:44.0218 2328 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
21:17:44.0218 2328 ParVdm - ok
21:17:44.0218 2328 pccsmcfd - ok
21:17:44.0234 2328 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
21:17:44.0234 2328 PCI - ok
21:17:44.0234 2328 PCIDump - ok
21:17:44.0250 2328 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
21:17:44.0250 2328 PCIIde - ok
21:17:44.0265 2328 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
21:17:44.0281 2328 Pcmcia - ok
21:17:44.0296 2328 [ 5B6C11DE7E839C05248CED8825470FEF ] pcouffin C:\WINDOWS\system32\Drivers\pcouffin.sys
21:17:44.0296 2328 pcouffin - ok
21:17:44.0312 2328 PDCOMP - ok
21:17:44.0312 2328 PDFRAME - ok
21:17:44.0312 2328 PDRELI - ok
21:17:44.0328 2328 PDRFRAME - ok
21:17:44.0328 2328 perc2 - ok
21:17:44.0328 2328 perc2hib - ok
21:17:44.0359 2328 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
21:17:44.0359 2328 PlugPlay - ok
21:17:44.0390 2328 [ 19E83B09AB8EE1D837665DA941E2AC44 ] PnkBstrA C:\WINDOWS\system32\PnkBstrA.exe
21:17:44.0390 2328 PnkBstrA - ok
21:17:44.0390 2328 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
21:17:44.0390 2328 PolicyAgent - ok
21:17:44.0406 2328 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:17:44.0406 2328 PptpMiniport - ok
21:17:44.0437 2328 [ 4228630829C0E521C43D882A00533374 ] PQNTDrv C:\WINDOWS\system32\drivers\PQNTDrv.sys
21:17:44.0437 2328 PQNTDrv - ok
21:17:44.0453 2328 [ 7EB15DCE4EC3A0220BD796A15C18186E ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
21:17:44.0453 2328 Processor - ok
21:17:44.0468 2328 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
21:17:44.0468 2328 ProtectedStorage - ok
21:17:44.0468 2328 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
21:17:44.0468 2328 PSched - ok
21:17:44.0468 2328 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:17:44.0468 2328 Ptilink - ok
21:17:44.0484 2328 ql1080 - ok
21:17:44.0484 2328 Ql10wnt - ok
21:17:44.0484 2328 ql12160 - ok
21:17:44.0500 2328 ql1240 - ok
21:17:44.0500 2328 ql1280 - ok
21:17:44.0531 2328 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:17:44.0531 2328 RasAcd - ok
21:17:44.0562 2328 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
21:17:44.0562 2328 RasAuto - ok
21:17:44.0593 2328 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:17:44.0593 2328 Rasl2tp - ok
21:17:44.0609 2328 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
21:17:44.0609 2328 RasMan - ok
21:17:44.0625 2328 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:17:44.0625 2328 RasPppoe - ok
21:17:44.0640 2328 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
21:17:44.0640 2328 Raspti - ok
21:17:44.0656 2328 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:17:44.0656 2328 Rdbss - ok
21:17:44.0687 2328 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:17:44.0687 2328 RDPCDD - ok
21:17:44.0734 2328 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
21:17:44.0734 2328 RDPWD - ok
21:17:44.0765 2328 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
21:17:44.0765 2328 RDSessMgr - ok
21:17:44.0796 2328 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
21:17:44.0796 2328 redbook - ok
21:17:44.0828 2328 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
21:17:44.0828 2328 RemoteAccess - ok
21:17:44.0890 2328 [ C0C8909BE3ECC9DF8089112BF9BE954E ] RivaTuner32 E:\Riva tuner\RivaTuner v2.24\RivaTuner32.sys
21:17:44.0890 2328 RivaTuner32 - ok
21:17:44.0906 2328 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
21:17:44.0906 2328 RpcLocator - ok
21:17:44.0937 2328 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\System32\rpcss.dll
21:17:44.0937 2328 RpcSs - ok
21:17:44.0968 2328 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
21:17:44.0968 2328 RSVP - ok
21:17:45.0000 2328 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
21:17:45.0000 2328 SamSs - ok
21:17:45.0062 2328 [ BFF7F4A05D64A234289559EA9EA70AAC ] SANDRA E:\Sandra\SiSoftware Sandra Lite 2009.SP3\WNt500x86\Sandra.sys
21:17:45.0062 2328 SANDRA - ok
21:17:45.0078 2328 [ 57DEAD8631D3FD991B02CC21196C32D6 ] SandraAgentSrv E:\Sandra\SiSoftware Sandra Lite 2009.SP3\RpcAgentSrv.exe
21:17:45.0078 2328 SandraAgentSrv - ok
21:17:45.0078 2328 saskutil - ok
21:17:45.0109 2328 [ 729248B54AFF21E740054ACEBFDBCB1C ] SBKUPNT C:\WINDOWS\system32\Drivers\SBKUPNT.SYS
21:17:45.0109 2328 SBKUPNT - ok
21:17:45.0140 2328 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
21:17:45.0140 2328 SCardSvr - ok
21:17:45.0171 2328 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
21:17:45.0171 2328 Schedule - ok
21:17:45.0218 2328 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:17:45.0218 2328 Secdrv - ok
21:17:45.0218 2328 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
21:17:45.0234 2328 seclogon - ok
21:17:45.0250 2328 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
21:17:45.0250 2328 SENS - ok
21:17:45.0250 2328 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
21:17:45.0250 2328 serenum - ok
21:17:45.0265 2328 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
21:17:45.0265 2328 Serial - ok
21:17:45.0312 2328 [ 56250672235BBE54BA8A4963B1AC997C ] sfdrv01 C:\WINDOWS\system32\drivers\sfdrv01.sys
21:17:45.0312 2328 sfdrv01 - ok
21:17:45.0328 2328 [ 3AD2B15CCC03FEBFBAF5FF057822AA75 ] sfhlp02 C:\WINDOWS\system32\drivers\sfhlp02.sys
21:17:45.0328 2328 sfhlp02 - ok
21:17:45.0343 2328 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
21:17:45.0343 2328 Sfloppy - ok
21:17:45.0359 2328 [ 798D918D8F20380008277CE3CE5319D1 ] sfsync02 C:\WINDOWS\system32\drivers\sfsync02.sys
21:17:45.0359 2328 sfsync02 - ok
21:17:45.0390 2328 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
21:17:45.0390 2328 SharedAccess - ok
21:17:45.0406 2328 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:17:45.0406 2328 ShellHWDetection - ok
21:17:45.0406 2328 Simbad - ok
21:17:45.0453 2328 [ EA396139541706B4B433641D62EA53CE ] SkypeUpdate E:\Skype\Updater\Updater.exe
21:17:45.0453 2328 SkypeUpdate - ok
21:17:45.0468 2328 [ 1FFC44D6787EC1EA9A2B1440A90FA5C1 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:17:45.0484 2328 SLIP - ok
21:17:45.0500 2328 [ 85BADA660D57BC5AEF52B11CABD6D8F9 ] snapman C:\WINDOWS\system32\DRIVERS\snapman.sys
21:17:45.0500 2328 snapman - ok
21:17:45.0515 2328 [ A1ECEEAA5C5E74B2499EB51D38185B84 ] SONYPVU1 C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
21:17:45.0515 2328 SONYPVU1 - ok
21:17:45.0531 2328 Sparrow - ok
21:17:45.0546 2328 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
21:17:45.0546 2328 splitter - ok
21:17:45.0578 2328 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
21:17:45.0578 2328 Spooler - ok
21:17:45.0609 2328 [ F42EFEFB765235F24B24E1D2B6F99F46 ] sptd C:\WINDOWS\System32\Drivers\sptd.sys
21:17:45.0609 2328 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\sptd.sys. md5: F42EFEFB765235F24B24E1D2B6F99F46
21:17:45.0609 2328 sptd ( LockedFile.Multi.Generic ) - warning
21:17:45.0609 2328 sptd - detected LockedFile.Multi.Generic (1)
21:17:45.0609 2328 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
21:17:45.0625 2328 sr - ok
21:17:45.0656 2328 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
21:17:45.0656 2328 srservice - ok
21:17:45.0687 2328 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
21:17:45.0687 2328 Srv - ok
21:17:45.0734 2328 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
21:17:45.0734 2328 SSDPSRV - ok
21:17:45.0796 2328 [ E5C796B621F6FBA8616511063D7F0FFE ] StarWindServiceAE E:\Alcohol 120%\Alcohol 120\StarWind\StarWindServiceAE.exe
21:17:45.0812 2328 StarWindServiceAE - ok
21:17:45.0843 2328 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
21:17:45.0843 2328 stisvc - ok
21:17:45.0875 2328 [ A9F9FD0212E572B84EDB9EB661F6BC04 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
21:17:45.0875 2328 streamip - ok
21:17:45.0906 2328 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
21:17:45.0906 2328 swenum - ok
21:17:45.0906 2328 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
21:17:45.0906 2328 swmidi - ok
21:17:45.0906 2328 SwPrv - ok
21:17:45.0921 2328 symc810 - ok
21:17:45.0921 2328 symc8xx - ok
21:17:45.0937 2328 sym_hi - ok
21:17:45.0937 2328 sym_u3 - ok
21:17:45.0953 2328 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
21:17:45.0968 2328 sysaudio - ok
21:17:45.0984 2328 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
21:17:45.0984 2328 SysmonLog - ok
21:17:46.0000 2328 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
21:17:46.0015 2328 TapiSrv - ok
21:17:46.0046 2328 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:17:46.0046 2328 Tcpip - ok
21:17:46.0062 2328 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
21:17:46.0062 2328 TDPIPE - ok
21:17:46.0109 2328 [ 431801FCC97034E04A6EFF81136578D7 ] tdrpman273 C:\WINDOWS\system32\DRIVERS\tdrpm273.sys
21:17:46.0140 2328 tdrpman273 - ok
21:17:46.0156 2328 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
21:17:46.0156 2328 TDTCP - ok
21:17:46.0171 2328 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
21:17:46.0171 2328 TermDD - ok
21:17:46.0203 2328 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
21:17:46.0203 2328 TermService - ok
21:17:46.0234 2328 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
21:17:46.0234 2328 Themes - ok
21:17:46.0234 2328 TosIde - ok
21:17:46.0265 2328 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
21:17:46.0281 2328 TrkWks - ok
21:17:46.0296 2328 [ 0D630405311E1AE574BC2EC6681E485E ] TuneUp.Defrag C:\WINDOWS\System32\TuneUpDefragService.exe
21:17:46.0312 2328 TuneUp.Defrag - ok
21:17:46.0390 2328 [ 5DC6DDEE665E075A5937656CFDA53229 ] TuneUp.UtilitiesSvc C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
21:17:46.0437 2328 TuneUp.UtilitiesSvc - ok
21:17:46.0468 2328 [ F2107C9D85EC0DF116939CCCE06AE697 ] TuneUpUtilitiesDrv C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys
21:17:46.0468 2328 TuneUpUtilitiesDrv - ok
21:17:46.0500 2328 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
21:17:46.0500 2328 Udfs - ok
21:17:46.0515 2328 ultra - ok
21:17:46.0578 2328 [ 927754ABF077AEB5504BE4E0F2C60C1B ] UMVPFSrv C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
21:17:46.0578 2328 UMVPFSrv - ok
21:17:46.0625 2328 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
21:17:46.0625 2328 Update - ok
21:17:46.0671 2328 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
21:17:46.0671 2328 upnphost - ok
21:17:46.0703 2328 [ 587E643A4E2FFD9A00F114B057CEB773 ] upperdev C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
21:17:46.0703 2328 upperdev - ok
21:17:46.0718 2328 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
21:17:46.0718 2328 UPS - ok
21:17:46.0750 2328 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
21:17:46.0750 2328 usbaudio - ok
21:17:46.0765 2328 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:17:46.0765 2328 usbccgp - ok
21:17:46.0796 2328 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:17:46.0796 2328 usbehci - ok
21:17:46.0828 2328 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:17:46.0828 2328 usbhub - ok
21:17:46.0859 2328 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
21:17:46.0859 2328 usbohci - ok
21:17:46.0875 2328 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
21:17:46.0875 2328 usbprint - ok
21:17:46.0906 2328 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:17:46.0906 2328 usbscan - ok
21:17:46.0937 2328 [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser C:\WINDOWS\system32\drivers\usbser.sys
21:17:46.0953 2328 usbser - ok
21:17:46.0968 2328 [ FCA6A196D47CB972A0E4ADC0DB9CD17C ] UsbserFilt C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
21:17:46.0968 2328 UsbserFilt - ok
21:17:46.0984 2328 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:17:46.0984 2328 USBSTOR - ok
21:17:47.0000 2328 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
21:17:47.0000 2328 usbvideo - ok
21:17:47.0031 2328 [ 17B8E52E002A574EFD60FFF864A525B1 ] UxTuneUp C:\WINDOWS\System32\uxtuneup.dll
21:17:47.0031 2328 UxTuneUp - ok
21:17:47.0046 2328 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
21:17:47.0046 2328 VgaSave - ok
21:17:47.0046 2328 ViaIde - ok
21:17:47.0062 2328 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
21:17:47.0062 2328 VolSnap - ok
21:17:47.0093 2328 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
21:17:47.0109 2328 VSS - ok
21:17:47.0140 2328 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
21:17:47.0140 2328 W32Time - ok
21:17:47.0156 2328 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:17:47.0156 2328 Wanarp - ok
21:17:47.0187 2328 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
21:17:47.0203 2328 Wdf01000 - ok
21:17:47.0203 2328 WDICA - ok
21:17:47.0218 2328 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
21:17:47.0234 2328 wdmaud - ok
21:17:47.0250 2328 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
21:17:47.0250 2328 WebClient - ok
21:17:47.0312 2328 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
21:17:47.0312 2328 winmgmt - ok
21:17:47.0343 2328 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
21:17:47.0343 2328 WmdmPmSN - ok
21:17:47.0359 2328 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:17:47.0359 2328 WmiApSrv - ok
21:17:47.0437 2328 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
21:17:47.0468 2328 WMPNetworkSvc - ok
21:17:47.0531 2328 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:17:47.0562 2328 WPFFontCache_v0400 - ok
21:17:47.0578 2328 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
21:17:47.0578 2328 WS2IFSL - ok
21:17:47.0593 2328 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
21:17:47.0609 2328 wscsvc - ok
21:17:47.0609 2328 WSearch - ok
21:17:47.0625 2328 [ 233CDD1C06942115802EB7CE6669E099 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
21:17:47.0625 2328 WSTCODEC - ok
21:17:47.0656 2328 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
21:17:47.0656 2328 wuauserv - ok
21:17:47.0687 2328 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:17:47.0687 2328 WudfPf - ok
21:17:47.0703 2328 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:17:47.0703 2328 WudfRd - ok
21:17:47.0718 2328 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
21:17:47.0750 2328 WudfSvc - ok
21:17:47.0921 2328 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
21:17:48.0000 2328 WZCSVC - ok
21:17:48.0062 2328 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
21:17:48.0203 2328 xmlprov - ok

[neca]

Musím tento log na dvakrát kvůly počtu znaku ve zprávě.
2 Díl.

21:17:48.0218 2328 ================ Scan global ===============================
21:17:48.0296 2328 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
21:17:48.0390 2328 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
21:17:48.0453 2328 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
21:17:48.0468 2328 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
21:17:48.0468 2328 [Global] - ok
21:17:48.0468 2328 ================ Scan MBR ==================================
21:17:48.0484 2328 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
21:17:48.0625 2328 \Device\Harddisk0\DR0 - ok
21:17:48.0625 2328 ================ Scan VBR ==================================
21:17:48.0625 2328 [ D8F7B5A8E3FC8B6236DC28CF776CC5E1 ] \Device\Harddisk0\DR0\Partition1
21:17:48.0625 2328 \Device\Harddisk0\DR0\Partition1 - ok
21:17:48.0656 2328 [ F186EEFE8CC020D0B1746B8906968B10 ] \Device\Harddisk0\DR0\Partition2
21:17:48.0656 2328 \Device\Harddisk0\DR0\Partition2 - ok
21:17:48.0671 2328 [ 972D8B8612856A2ADF75021C0B067615 ] \Device\Harddisk0\DR0\Partition3
21:17:48.0671 2328 \Device\Harddisk0\DR0\Partition3 - ok
21:17:48.0671 2328 ============================================================
21:17:48.0671 2328 Scan finished
21:17:48.0671 2328 ============================================================
21:17:48.0687 2304 Detected object count: 1
21:17:48.0687 2304 Actual detected object count: 1
21:17:51.0187 2304 sptd ( LockedFile.Multi.Generic ) - skipped by user
21:17:51.0187 2304 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
21:17:58.0875 4044 ============================================================
21:17:58.0875 4044 Scan started
21:17:58.0875 4044 Mode: Manual;
21:17:58.0875 4044 ============================================================
21:17:59.0140 4044 ================ Scan system memory ========================
21:17:59.0140 4044 System memory - ok
21:17:59.0140 4044 ================ Scan services =============================
21:17:59.0203 4044 Abiosdsk - ok
21:17:59.0203 4044 abp480n5 - ok
21:17:59.0250 4044 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:17:59.0250 4044 ACPI - ok
21:17:59.0281 4044 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
21:17:59.0281 4044 ACPIEC - ok
21:17:59.0390 4044 [ 10505AD1112AB68ED71ECC08552DAC2E ] AcrSch2Svc C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
21:17:59.0390 4044 AcrSch2Svc - ok
21:17:59.0406 4044 Ad-Watch Connect Filter - ok
21:17:59.0406 4044 Ad-Watch Real-Time Scanner - ok
21:17:59.0406 4044 Ad-Watch Registry Filter - ok
21:17:59.0468 4044 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:17:59.0484 4044 AdobeFlashPlayerUpdateSvc - ok
21:17:59.0484 4044 adpu160m - ok
21:17:59.0500 4044 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
21:17:59.0500 4044 aec - ok
21:17:59.0515 4044 [ 0CBA69E0BDA9F55736239627E49DF31A ] afcdp C:\WINDOWS\system32\DRIVERS\afcdp.sys
21:17:59.0515 4044 afcdp - ok
21:17:59.0625 4044 [ 9A635B24E3EF3632E4197C66207A2DE3 ] afcdpsrv C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
21:17:59.0640 4044 afcdpsrv - ok
21:17:59.0671 4044 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
21:17:59.0671 4044 AFD - ok
21:17:59.0671 4044 Aha154x - ok
21:17:59.0671 4044 aic78u2 - ok
21:17:59.0687 4044 aic78xx - ok
21:17:59.0718 4044 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
21:17:59.0718 4044 Alerter - ok
21:17:59.0734 4044 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
21:17:59.0734 4044 ALG - ok
21:17:59.0734 4044 AliIde - ok
21:17:59.0796 4044 [ 267FC636801EDC5AB28E14036349E3BE ] Ambfilt C:\WINDOWS\system32\drivers\Ambfilt.sys
21:17:59.0812 4044 Ambfilt - ok
21:17:59.0843 4044 [ 99BD5596B5D06C2EAD3CECC6F11999F5 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
21:17:59.0843 4044 AmdK8 - ok
21:17:59.0843 4044 amsint - ok
21:17:59.0859 4044 AODDriver - ok
21:17:59.0875 4044 AppMgmt - ok
21:17:59.0906 4044 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:17:59.0906 4044 Arp1394 - ok
21:17:59.0906 4044 asc - ok
21:17:59.0921 4044 asc3350p - ok
21:17:59.0921 4044 asc3550 - ok
21:18:00.0000 4044 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
21:18:00.0000 4044 aspnet_state - ok
21:18:00.0015 4044 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:18:00.0015 4044 AsyncMac - ok
21:18:00.0031 4044 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
21:18:00.0031 4044 atapi - ok
21:18:00.0031 4044 Atdisk - ok
21:18:00.0078 4044 [ 2A27A3A8634FB9E29F539D6D3ED3646A ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
21:18:00.0078 4044 Ati HotKey Poller - ok
21:18:00.0109 4044 [ 72810C6A63076A480ABCE0E0BA0BC981 ] ATI Smart C:\WINDOWS\system32\ati2sgag.exe
21:18:00.0109 4044 ATI Smart - ok
21:18:00.0203 4044 [ 8763EDE3E0CD40F5C3450571AC57F205 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:18:00.0218 4044 ati2mtag - ok
21:18:00.0250 4044 [ DE4A84289722705231013745C1E15829 ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdXP3.sys
21:18:00.0250 4044 AtiHDAudioService - ok
21:18:00.0281 4044 [ 7E13F3F0F4C4C337A6949A18D1D23089 ] AtiHdmiService C:\WINDOWS\system32\drivers\AtiHdmi.sys
21:18:00.0281 4044 AtiHdmiService - ok
21:18:00.0296 4044 [ 0E4BB35C5305099AC82053AC992E3E0E ] ATITool C:\WINDOWS\system32\DRIVERS\ATITool.sys
21:18:00.0312 4044 ATITool - ok
21:18:00.0328 4044 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:18:00.0328 4044 Atmarpc - ok
21:18:00.0359 4044 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
21:18:00.0359 4044 AudioSrv - ok
21:18:00.0390 4044 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
21:18:00.0390 4044 audstub - ok
21:18:00.0406 4044 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
21:18:00.0406 4044 Beep - ok
21:18:00.0421 4044 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
21:18:00.0437 4044 BITS - ok
21:18:00.0453 4044 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
21:18:00.0453 4044 Browser - ok
21:18:00.0453 4044 catchme - ok
21:18:00.0484 4044 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
21:18:00.0484 4044 cbidf2k - ok
21:18:00.0531 4044 [ FDC06E2ADA8C468EBB161624E03976CF ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:18:00.0531 4044 CCDECODE - ok
21:18:00.0531 4044 cd20xrnt - ok
21:18:00.0546 4044 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
21:18:00.0546 4044 Cdaudio - ok
21:18:00.0562 4044 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
21:18:00.0562 4044 Cdfs - ok
21:18:00.0593 4044 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:18:00.0593 4044 Cdrom - ok
21:18:00.0593 4044 Changer - ok
21:18:00.0609 4044 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
21:18:00.0625 4044 CiSvc - ok
21:18:00.0640 4044 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
21:18:00.0640 4044 ClipSrv - ok
21:18:00.0687 4044 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:18:00.0687 4044 clr_optimization_v2.0.50727_32 - ok
21:18:00.0703 4044 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:18:00.0703 4044 clr_optimization_v4.0.30319_32 - ok
21:18:00.0703 4044 CmdIde - ok
21:18:00.0718 4044 COMSysApp - ok
21:18:00.0734 4044 Cpqarray - ok
21:18:00.0796 4044 cpuz130 - ok
21:18:00.0812 4044 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
21:18:00.0812 4044 CryptSvc - ok
21:18:00.0828 4044 CrystalSysInfo - ok
21:18:00.0828 4044 dac2w2k - ok
21:18:00.0843 4044 dac960nt - ok
21:18:00.0890 4044 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
21:18:00.0890 4044 DcomLaunch - ok
21:18:00.0921 4044 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
21:18:00.0921 4044 Dhcp - ok
21:18:00.0953 4044 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
21:18:00.0953 4044 Disk - ok
21:18:00.0953 4044 dmadmin - ok
21:18:00.0984 4044 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
21:18:01.0000 4044 dmboot - ok
21:18:01.0015 4044 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
21:18:01.0015 4044 dmio - ok
21:18:01.0031 4044 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
21:18:01.0031 4044 dmload - ok
21:18:01.0062 4044 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
21:18:01.0062 4044 dmserver - ok
21:18:01.0093 4044 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
21:18:01.0093 4044 DMusic - ok
21:18:01.0109 4044 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
21:18:01.0109 4044 Dnscache - ok
21:18:01.0140 4044 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
21:18:01.0140 4044 Dot3svc - ok
21:18:01.0140 4044 dpti2o - ok
21:18:01.0140 4044 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
21:18:01.0140 4044 drmkaud - ok
21:18:01.0171 4044 [ 651554E483712B708EDE864D0CA1AA73 ] DrvAgent32 C:\WINDOWS\system32\Drivers\DrvAgent32.sys
21:18:01.0171 4044 DrvAgent32 - ok
21:18:01.0203 4044 [ FB38473835476A6FB272215A1D972AF9 ] dtsoftbus01 C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
21:18:01.0203 4044 dtsoftbus01 - ok
21:18:01.0218 4044 [ 9309C5C9831203436E64CF2AE605C5D7 ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
21:18:01.0218 4044 eamon - ok
21:18:01.0234 4044 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
21:18:01.0250 4044 EapHost - ok
21:18:01.0281 4044 [ DEFF87F04AB5F6DD5EDF2B80853BBE10 ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
21:18:01.0281 4044 ehdrv - ok
21:18:01.0375 4044 [ 3B944199F8EDD76BE94460C0361409AB ] ekrn C:\Program Files\ESET\ESET Smart Security\ekrn.exe
21:18:01.0390 4044 ekrn - ok
21:18:01.0421 4044 [ 16EBD8BF1D5090923694CC972C7CE1B4 ] ENTECH C:\WINDOWS\system32\DRIVERS\ENTECH.sys
21:18:01.0421 4044 ENTECH - ok
21:18:01.0453 4044 [ 5BA193CA0AE31209AAA39939CE6736B2 ] epfw C:\WINDOWS\system32\DRIVERS\epfw.sys
21:18:01.0453 4044 epfw - ok
21:18:01.0484 4044 [ 75D3BCD3E0EDED0AB0F96D9A10FF01C9 ] Epfwndis C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
21:18:01.0484 4044 Epfwndis - ok
21:18:01.0515 4044 [ DC64F26F35E32C9472BBF8ACD84060D3 ] epfwtdi C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
21:18:01.0515 4044 epfwtdi - ok
21:18:01.0546 4044 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
21:18:01.0546 4044 ERSvc - ok
21:18:01.0562 4044 esihdrv - ok
21:18:01.0593 4044 [ 3AF0AE042AFE486B22644CD3FBEBF2E2 ] etdrv C:\WINDOWS\etdrv.sys
21:18:01.0593 4044 etdrv - ok
21:18:01.0625 4044 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
21:18:01.0625 4044 Eventlog - ok
21:18:01.0640 4044 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
21:18:01.0640 4044 EventSystem - ok
21:18:01.0671 4044 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
21:18:01.0671 4044 Fastfat - ok
21:18:01.0703 4044 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
21:18:01.0703 4044 FastUserSwitchingCompatibility - ok
21:18:01.0718 4044 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
21:18:01.0718 4044 Fdc - ok
21:18:01.0734 4044 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
21:18:01.0734 4044 Fips - ok
21:18:01.0828 4044 [ 167D24A045499EBEF438F231976158DF ] FirebirdServerMAGIXInstance E:\Common\Database\bin\fbserver.exe
21:18:01.0843 4044 FirebirdServerMAGIXInstance - ok
21:18:01.0859 4044 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:18:01.0859 4044 Flpydisk - ok
21:18:01.0890 4044 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
21:18:01.0890 4044 FltMgr - ok
21:18:01.0953 4044 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
21:18:01.0953 4044 FontCache3.0.0.0 - ok
21:18:02.0046 4044 [ 34D2E12226269789BB5F292915B089D7 ] ForceWare Intelligent Application Manager (IAM) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
21:18:02.0046 4044 ForceWare Intelligent Application Manager (IAM) - ok
21:18:02.0062 4044 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:18:02.0062 4044 Fs_Rec - ok
21:18:02.0078 4044 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:18:02.0078 4044 Ftdisk - ok
21:18:02.0109 4044 [ D556CB79967E92B5CC69686D16C1D846 ] gdrv C:\WINDOWS\gdrv.sys
21:18:02.0109 4044 gdrv - ok
21:18:02.0140 4044 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:18:02.0140 4044 Gpc - ok
21:18:02.0203 4044 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
21:18:02.0203 4044 gupdate - ok
21:18:02.0203 4044 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
21:18:02.0203 4044 gupdatem - ok
21:18:02.0250 4044 [ F22BF7F345DF95C09942951246AAA28D ] GVCplDrv C:\WINDOWS\system32\drivers\GVCplDrv.sys
21:18:02.0250 4044 GVCplDrv - ok
21:18:02.0265 4044 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:18:02.0265 4044 HDAudBus - ok
21:18:02.0328 4044 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:18:02.0328 4044 helpsvc - ok
21:18:02.0359 4044 [ 0D3AE4ED905DD21C9F0F2752B0FD0DBE ] hgeibflo c:\windows\system32\drivers\hgeibflo.sys
21:18:02.0359 4044 hgeibflo - ok
21:18:02.0359 4044 HidServ - ok
21:18:02.0390 4044 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:18:02.0390 4044 HidUsb - ok
21:18:02.0406 4044 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
21:18:02.0406 4044 hkmsvc - ok
21:18:02.0421 4044 hpn - ok
21:18:02.0453 4044 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
21:18:02.0453 4044 HTTP - ok
21:18:02.0484 4044 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
21:18:02.0484 4044 HTTPFilter - ok
21:18:02.0484 4044 i2omgmt - ok
21:18:02.0500 4044 i2omp - ok
21:18:02.0531 4044 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:18:02.0531 4044 i8042prt - ok
21:18:02.0578 4044 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
21:18:02.0578 4044 IDriverT - ok
21:18:02.0640 4044 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:18:02.0640 4044 idsvc - ok
21:18:02.0671 4044 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
21:18:02.0671 4044 Imapi - ok
21:18:02.0703 4044 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
21:18:02.0703 4044 ImapiService - ok
21:18:02.0734 4044 [ D8A77FC386F9297CE4B692FC83B4BA02 ] InCDfs C:\WINDOWS\system32\drivers\InCDfs.sys
21:18:02.0750 4044 InCDfs - ok
21:18:02.0750 4044 [ 433BB499BCEA1C88B55AA67D1B3EF1DC ] InCDPass C:\WINDOWS\system32\DRIVERS\InCDPass.sys
21:18:02.0750 4044 InCDPass - ok
21:18:02.0765 4044 [ 12DBB035CD2ED0313FAB864470F31C23 ] InCDrec C:\WINDOWS\system32\drivers\InCDrec.sys
21:18:02.0765 4044 InCDrec - ok
21:18:02.0781 4044 [ 9D1ADFE6CE5C2E2A42F3B8AA57821D87 ] incdrm C:\WINDOWS\system32\drivers\incdrm.sys
21:18:02.0781 4044 incdrm - ok
21:18:02.0859 4044 [ 394BF2329AC168F253C74E1EEAD15FAC ] InCDsrv E:\Nero\InCD\InCDsrv.exe
21:18:02.0859 4044 InCDsrv - ok
21:18:02.0875 4044 ini910u - ok
21:18:03.0046 4044 [ 723907CC600271BB216FAAA0B6877678 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
21:18:03.0062 4044 IntcAzAudAddService - ok
21:18:03.0078 4044 IntelIde - ok
21:18:03.0109 4044 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
21:18:03.0109 4044 Ip6Fw - ok
21:18:03.0140 4044 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:18:03.0140 4044 IpFilterDriver - ok
21:18:03.0140 4044 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:18:03.0140 4044 IpInIp - ok
21:18:03.0156 4044 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:18:03.0171 4044 IpNat - ok
21:18:03.0171 4044 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:18:03.0171 4044 IPSec - ok
21:18:03.0187 4044 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
21:18:03.0187 4044 IRENUM - ok
21:18:03.0218 4044 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:18:03.0218 4044 isapnp - ok
21:18:03.0312 4044 [ A12175F063302CD68F8FC6D572D7E5FD ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
21:18:03.0312 4044 JavaQuickStarterService - ok
21:18:03.0328 4044 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:18:03.0328 4044 Kbdclass - ok
21:18:03.0343 4044 kbfiltr - ok
21:18:03.0359 4044 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
21:18:03.0359 4044 kmixer - ok
21:18:03.0375 4044 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
21:18:03.0375 4044 KSecDD - ok
21:18:03.0406 4044 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
21:18:03.0406 4044 lanmanserver - ok
21:18:03.0437 4044 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
21:18:03.0437 4044 lanmanworkstation - ok
21:18:03.0453 4044 lbrtfdc - ok
21:18:03.0484 4044 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
21:18:03.0484 4044 LmHosts - ok
21:18:03.0515 4044 [ 7521C0C58EE91BE90B6CC33E792D10C7 ] LVRS C:\WINDOWS\system32\DRIVERS\lvrs.sys
21:18:03.0515 4044 LVRS - ok
21:18:03.0625 4044 [ 37E57C48AF530DF01CDD4E8A2AD77B51 ] LVUVC C:\WINDOWS\system32\DRIVERS\lvuvc.sys
21:18:03.0656 4044 LVUVC - ok
21:18:03.0656 4044 MalwareDefenderService - ok
21:18:03.0671 4044 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
21:18:03.0687 4044 Messenger - ok
21:18:03.0718 4044 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
21:18:03.0718 4044 Microsoft Office Groove Audit Service - ok
21:18:03.0750 4044 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
21:18:03.0750 4044 mnmdd - ok
21:18:03.0781 4044 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
21:18:03.0781 4044 mnmsrvc - ok
21:18:03.0796 4044 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
21:18:03.0796 4044 Modem - ok
21:18:03.0859 4044 [ C7D9F9717916B34C1B00DD4834AF485C ] Monfilt C:\WINDOWS\system32\drivers\Monfilt.sys
21:18:03.0859 4044 Monfilt - ok
21:18:03.0890 4044 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:18:03.0890 4044 Mouclass - ok
21:18:03.0921 4044 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:18:03.0921 4044 mouhid - ok
21:18:03.0937 4044 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
21:18:03.0937 4044 MountMgr - ok
21:18:03.0937 4044 mraid35x - ok
21:18:03.0953 4044 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:18:03.0968 4044 MRxDAV - ok
21:18:03.0984 4044 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:18:04.0000 4044 MRxSmb - ok
21:18:04.0015 4044 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
21:18:04.0015 4044 MSDTC - ok
21:18:04.0046 4044 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
21:18:04.0046 4044 Msfs - ok
21:18:04.0046 4044 MSIServer - ok
21:18:04.0062 4044 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:18:04.0062 4044 MSKSSRV - ok
21:18:04.0078 4044 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:18:04.0078 4044 MSPCLOCK - ok
21:18:04.0093 4044 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
21:18:04.0093 4044 MSPQM - ok
21:18:04.0125 4044 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:18:04.0125 4044 mssmbios - ok
21:18:04.0156 4044 [ D5059366B361F0E1124753447AF08AA2 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
21:18:04.0156 4044 MSTEE - ok
21:18:04.0171 4044 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
21:18:04.0171 4044 Mup - ok
21:18:04.0187 4044 [ AC31B352CE5E92704056D409834BEB74 ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:18:04.0187 4044 NABTSFEC - ok
21:18:04.0218 4044 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
21:18:04.0218 4044 napagent - ok
21:18:04.0265 4044 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
21:18:04.0265 4044 NDIS - ok
21:18:04.0296 4044 [ ABD7629CF2796250F315C1DD0B6CF7A0 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:18:04.0296 4044 NdisIP - ok
21:18:04.0328 4044 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:18:04.0328 4044 NdisTapi - ok
21:18:04.0343 4044 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:18:04.0343 4044 Ndisuio - ok
21:18:04.0359 4044 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:18:04.0359 4044 NdisWan - ok
21:18:04.0390 4044 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
21:18:04.0390 4044 NDProxy - ok
21:18:04.0468 4044 [ B90E093E7A7250906F1054418B5339C0 ] Nero BackItUp Scheduler 4.0 C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
21:18:04.0468 4044 Nero BackItUp Scheduler 4.0 - ok
21:18:04.0484 4044 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
21:18:04.0484 4044 NetBIOS - ok
21:18:04.0515 4044 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
21:18:04.0515 4044 NetBT - ok
21:18:04.0546 4044 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
21:18:04.0546 4044 NetDDE - ok
21:18:04.0546 4044 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
21:18:04.0546 4044 NetDDEdsdm - ok
21:18:04.0578 4044 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
21:18:04.0578 4044 Netlogon - ok
21:18:04.0609 4044 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
21:18:04.0609 4044 Netman - ok
21:18:04.0640 4044 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:18:04.0640 4044 NetTcpPortSharing - ok
21:18:04.0671 4044 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:18:04.0671 4044 NIC1394 - ok
21:18:04.0718 4044 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
21:18:04.0718 4044 Nla - ok
21:18:04.0781 4044 [ C8F536FB328AFE64A7F18BBFC00B10EE ] nlsvc E:\NetLimiter\NetLimiter 2 Pro\nlsvc.exe
21:18:04.0796 4044 nlsvc - ok
21:18:04.0828 4044 [ 3EE27BCFF781F07A12DF75E8BE852B0E ] nltdi C:\WINDOWS\system32\drivers\nltdi.sys
21:18:04.0828 4044 nltdi - ok
21:18:04.0859 4044 [ 4A8A2AA0706B659175169DECF198E9D7 ] nmwcd C:\WINDOWS\system32\drivers\ccdcmb.sys
21:18:04.0859 4044 nmwcd - ok
21:18:04.0875 4044 [ FD3E61831095AC62E6840D986B5A2016 ] nmwcdc C:\WINDOWS\system32\drivers\ccdcmbo.sys
21:18:04.0875 4044 nmwcdc - ok
21:18:04.0890 4044 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
21:18:04.0890 4044 Npfs - ok
21:18:04.0921 4044 [ 0DC1D52722CEBA645B4D460E66D58AEE ] nSvcIp C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
21:18:04.0921 4044 nSvcIp - ok
21:18:04.0968 4044 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
21:18:04.0968 4044 Ntfs - ok
21:18:04.0984 4044 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
21:18:04.0984 4044 NtLmSsp - ok
21:18:05.0015 4044 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
21:18:05.0031 4044 NtmsSvc - ok
21:18:05.0046 4044 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
21:18:05.0046 4044 Null - ok
21:18:05.0078 4044 [ 7D275ECDA4628318912F6C945D5CF963 ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
21:18:05.0093 4044 NVENETFD - ok
21:18:05.0109 4044 [ 52DCE3B30C9D61C8E20FE3C6DA4BDFB7 ] nvgts C:\WINDOWS\system32\DRIVERS\nvgts.sys
21:18:05.0109 4044 nvgts - ok
21:18:05.0140 4044 [ B64AACEFAD2BE5BFF5353FE681253C67 ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
21:18:05.0140 4044 nvnetbus - ok
21:18:05.0156 4044 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:18:05.0156 4044 NwlnkFlt - ok
21:18:05.0171 4044 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:18:05.0187 4044 NwlnkFwd - ok
21:18:05.0187 4044 oaunbt06u06 - ok
21:18:05.0234 4044 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:18:05.0234 4044 odserv - ok
21:18:05.0250 4044 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:18:05.0250 4044 ohci1394 - ok
21:18:05.0281 4044 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:18:05.0281 4044 ose - ok
21:18:05.0296 4044 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
21:18:05.0296 4044 Parport - ok
21:18:05.0312 4044 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
21:18:05.0312 4044 PartMgr - ok
21:18:05.0343 4044 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
21:18:05.0343 4044 ParVdm - ok
21:18:05.0343 4044 pccsmcfd - ok
21:18:05.0359 4044 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
21:18:05.0359 4044 PCI - ok
21:18:05.0359 4044 PCIDump - ok
21:18:05.0375 4044 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
21:18:05.0375 4044 PCIIde - ok
21:18:05.0390 4044 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
21:18:05.0390 4044 Pcmcia - ok
21:18:05.0421 4044 [ 5B6C11DE7E839C05248CED8825470FEF ] pcouffin C:\WINDOWS\system32\Drivers\pcouffin.sys
21:18:05.0421 4044 pcouffin - ok
21:18:05.0421 4044 PDCOMP - ok
21:18:05.0421 4044 PDFRAME - ok
21:18:05.0437 4044 PDRELI - ok
21:18:05.0437 4044 PDRFRAME - ok
21:18:05.0437 4044 perc2 - ok
21:18:05.0453 4044 perc2hib - ok
21:18:05.0468 4044 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
21:18:05.0484 4044 PlugPlay - ok
21:18:05.0500 4044 [ 19E83B09AB8EE1D837665DA941E2AC44 ] PnkBstrA C:\WINDOWS\system32\PnkBstrA.exe
21:18:05.0500 4044 PnkBstrA - ok
21:18:05.0500 4044 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
21:18:05.0500 4044 PolicyAgent - ok
21:18:05.0515 4044 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:18:05.0515 4044 PptpMiniport - ok
21:18:05.0546 4044 [ 4228630829C0E521C43D882A00533374 ] PQNTDrv C:\WINDOWS\system32\drivers\PQNTDrv.sys
21:18:05.0546 4044 PQNTDrv - ok
21:18:05.0578 4044 [ 7EB15DCE4EC3A0220BD796A15C18186E ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
21:18:05.0578 4044 Processor - ok
21:18:05.0578 4044 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
21:18:05.0578 4044 ProtectedStorage - ok
21:18:05.0578 4044 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
21:18:05.0578 4044 PSched - ok
21:18:05.0593 4044 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:18:05.0593 4044 Ptilink - ok
21:18:05.0593 4044 ql1080 - ok
21:18:05.0593 4044 Ql10wnt - ok
21:18:05.0609 4044 ql12160 - ok
21:18:05.0609 4044 ql1240 - ok
21:18:05.0609 4044 ql1280 - ok
21:18:05.0640 4044 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:18:05.0640 4044 RasAcd - ok
21:18:05.0656 4044 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
21:18:05.0656 4044 RasAuto - ok
21:18:05.0687 4044 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:18:05.0687 4044 Rasl2tp - ok
21:18:05.0703 4044 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
21:18:05.0718 4044 RasMan - ok
21:18:05.0718 4044 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:18:05.0718 4044 RasPppoe - ok
21:18:05.0734 4044 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
21:18:05.0734 4044 Raspti - ok
21:18:05.0765 4044 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:18:05.0765 4044 Rdbss - ok
21:18:05.0796 4044 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:18:05.0796 4044 RDPCDD - ok
21:18:05.0828 4044 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
21:18:05.0828 4044 RDPWD - ok
21:18:05.0843 4044 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
21:18:05.0843 4044 RDSessMgr - ok
21:18:05.0875 4044 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
21:18:05.0875 4044 redbook - ok
21:18:05.0906 4044 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
21:18:05.0906 4044 RemoteAccess - ok
21:18:05.0968 4044 [ C0C8909BE3ECC9DF8089112BF9BE954E ] RivaTuner32 E:\Riva tuner\RivaTuner v2.24\RivaTuner32.sys
21:18:05.0968 4044 RivaTuner32 - ok
21:18:05.0984 4044 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
21:18:05.0984 4044 RpcLocator - ok
21:18:06.0015 4044 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\System32\rpcss.dll
21:18:06.0015 4044 RpcSs - ok
21:18:06.0062 4044 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
21:18:06.0062 4044 RSVP - ok
21:18:06.0078 4044 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
21:18:06.0078 4044 SamSs - ok
21:18:06.0140 4044 [ BFF7F4A05D64A234289559EA9EA70AAC ] SANDRA E:\Sandra\SiSoftware Sandra Lite 2009.SP3\WNt500x86\Sandra.sys
21:18:06.0140 4044 SANDRA - ok
21:18:06.0140 4044 [ 57DEAD8631D3FD991B02CC21196C32D6 ] SandraAgentSrv E:\Sandra\SiSoftware Sandra Lite 2009.SP3\RpcAgentSrv.exe
21:18:06.0156 4044 SandraAgentSrv - ok
21:18:06.0156 4044 saskutil - ok
21:18:06.0187 4044 [ 729248B54AFF21E740054ACEBFDBCB1C ] SBKUPNT C:\WINDOWS\system32\Drivers\SBKUPNT.SYS
21:18:06.0187 4044 SBKUPNT - ok
21:18:06.0203 4044 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
21:18:06.0203 4044 SCardSvr - ok
21:18:06.0250 4044 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
21:18:06.0250 4044 Schedule - ok
21:18:06.0265 4044 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:18:06.0265 4044 Secdrv - ok
21:18:06.0265 4044 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
21:18:06.0281 4044 seclogon - ok
21:18:06.0296 4044 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
21:18:06.0296 4044 SENS - ok
21:18:06.0296 4044 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
21:18:06.0296 4044 serenum - ok
21:18:06.0312 4044 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
21:18:06.0312 4044 Serial - ok
21:18:06.0359 4044 [ 56250672235BBE54BA8A4963B1AC997C ] sfdrv01 C:\WINDOWS\system32\drivers\sfdrv01.sys
21:18:06.0359 4044 sfdrv01 - ok
21:18:06.0375 4044 [ 3AD2B15CCC03FEBFBAF5FF057822AA75 ] sfhlp02 C:\WINDOWS\system32\drivers\sfhlp02.sys
21:18:06.0375 4044 sfhlp02 - ok
21:18:06.0406 4044 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
21:18:06.0406 4044 Sfloppy - ok
21:18:06.0406 4044 [ 798D918D8F20380008277CE3CE5319D1 ] sfsync02 C:\WINDOWS\system32\drivers\sfsync02.sys
21:18:06.0406 4044 sfsync02 - ok
21:18:06.0437 4044 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
21:18:06.0437 4044 SharedAccess - ok
21:18:06.0453 4044 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:18:06.0453 4044 ShellHWDetection - ok
21:18:06.0468 4044 Simbad - ok
21:18:06.0500 4044 [ EA396139541706B4B433641D62EA53CE ] SkypeUpdate E:\Skype\Updater\Updater.exe
21:18:06.0500 4044 SkypeUpdate - ok
21:18:06.0531 4044 [ 1FFC44D6787EC1EA9A2B1440A90FA5C1 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:18:06.0531 4044 SLIP - ok
21:18:06.0546 4044 [ 85BADA660D57BC5AEF52B11CABD6D8F9 ] snapman C:\WINDOWS\system32\DRIVERS\snapman.sys
21:18:06.0546 4044 snapman - ok
21:18:06.0578 4044 [ A1ECEEAA5C5E74B2499EB51D38185B84 ] SONYPVU1 C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
21:18:06.0578 4044 SONYPVU1 - ok
21:18:06.0578 4044 Sparrow - ok
21:18:06.0593 4044 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
21:18:06.0593 4044 splitter - ok
21:18:06.0640 4044 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
21:18:06.0640 4044 Spooler - ok
21:18:06.0671 4044 [ F42EFEFB765235F24B24E1D2B6F99F46 ] sptd C:\WINDOWS\System32\Drivers\sptd.sys
21:18:06.0671 4044 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\sptd.sys. md5: F42EFEFB765235F24B24E1D2B6F99F46
21:18:06.0671 4044 sptd ( LockedFile.Multi.Generic ) - warning
21:18:06.0671 4044 sptd - detected LockedFile.Multi.Generic (1)
21:18:06.0687 4044 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
21:18:06.0687 4044 sr - ok
21:18:06.0718 4044 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
21:18:06.0718 4044 srservice - ok
21:18:06.0750 4044 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
21:18:06.0750 4044 Srv - ok
21:18:06.0765 4044 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
21:18:06.0765 4044 SSDPSRV - ok
21:18:06.0843 4044 [ E5C796B621F6FBA8616511063D7F0FFE ] StarWindServiceAE E:\Alcohol 120%\Alcohol 120\StarWind\StarWindServiceAE.exe
21:18:06.0843 4044 StarWindServiceAE - ok
21:18:06.0875 4044 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
21:18:06.0890 4044 stisvc - ok
21:18:06.0906 4044 [ A9F9FD0212E572B84EDB9EB661F6BC04 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
21:18:06.0906 4044 streamip - ok
21:18:06.0937 4044 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
21:18:06.0937 4044 swenum - ok
21:18:06.0937 4044 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
21:18:06.0937 4044 swmidi - ok
21:18:06.0937 4044 SwPrv - ok
21:18:06.0953 4044 symc810 - ok
21:18:06.0953 4044 symc8xx - ok
21:18:06.0968 4044 sym_hi - ok
21:18:06.0968 4044 sym_u3 - ok
21:18:06.0984 4044 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
21:18:06.0984 4044 sysaudio - ok
21:18:07.0000 4044 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
21:18:07.0000 4044 SysmonLog - ok
21:18:07.0015 4044 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
21:18:07.0015 4044 TapiSrv - ok
21:18:07.0062 4044 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:18:07.0062 4044 Tcpip - ok
21:18:07.0078 4044 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
21:18:07.0078 4044 TDPIPE - ok
21:18:07.0125 4044 [ 431801FCC97034E04A6EFF81136578D7 ] tdrpman273 C:\WINDOWS\system32\DRIVERS\tdrpm273.sys
21:18:07.0125 4044 tdrpman273 - ok
21:18:07.0140 4044 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
21:18:07.0140 4044 TDTCP - ok
21:18:07.0156 4044 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
21:18:07.0156 4044 TermDD - ok
21:18:07.0203 4044 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
21:18:07.0203 4044 TermService - ok
21:18:07.0218 4044 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
21:18:07.0218 4044 Themes - ok
21:18:07.0234 4044 TosIde - ok
21:18:07.0265 4044 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
21:18:07.0265 4044 TrkWks - ok
21:18:07.0296 4044 [ 0D630405311E1AE574BC2EC6681E485E ] TuneUp.Defrag C:\WINDOWS\System32\TuneUpDefragService.exe
21:18:07.0296 4044 TuneUp.Defrag - ok
21:18:07.0390 4044 [ 5DC6DDEE665E075A5937656CFDA53229 ] TuneUp.UtilitiesSvc C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
21:18:07.0390 4044 TuneUp.UtilitiesSvc - ok
21:18:07.0421 4044 [ F2107C9D85EC0DF116939CCCE06AE697 ] TuneUpUtilitiesDrv C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys
21:18:07.0437 4044 TuneUpUtilitiesDrv - ok
21:18:07.0468 4044 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
21:18:07.0468 4044 Udfs - ok
21:18:07.0468 4044 ultra - ok
21:18:07.0546 4044 [ 927754ABF077AEB5504BE4E0F2C60C1B ] UMVPFSrv C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
21:18:07.0546 4044 UMVPFSrv - ok
21:18:07.0578 4044 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
21:18:07.0578 4044 Update - ok
21:18:07.0609 4044 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
21:18:07.0609 4044 upnphost - ok
21:18:07.0640 4044 [ 587E643A4E2FFD9A00F114B057CEB773 ] upperdev C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
21:18:07.0640 4044 upperdev - ok
21:18:07.0656 4044 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
21:18:07.0656 4044 UPS - ok
21:18:07.0687 4044 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
21:18:07.0687 4044 usbaudio - ok
21:18:07.0703 4044 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:18:07.0703 4044 usbccgp - ok
21:18:07.0734 4044 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:18:07.0734 4044 usbehci - ok
21:18:07.0765 4044 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:18:07.0765 4044 usbhub - ok
21:18:07.0781 4044 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
21:18:07.0781 4044 usbohci - ok
21:18:07.0796 4044 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
21:18:07.0796 4044 usbprint - ok
21:18:07.0828 4044 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:18:07.0828 4044 usbscan - ok
21:18:07.0859 4044 [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser C:\WINDOWS\system32\drivers\usbser.sys
21:18:07.0859 4044 usbser - ok
21:18:07.0875 4044 [ FCA6A196D47CB972A0E4ADC0DB9CD17C ] UsbserFilt C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
21:18:07.0875 4044 UsbserFilt - ok
21:18:07.0890 4044 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:18:07.0890 4044 USBSTOR - ok
21:18:07.0906 4044 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
21:18:07.0906 4044 usbvideo - ok
21:18:07.0937 4044 [ 17B8E52E002A574EFD60FFF864A525B1 ] UxTuneUp C:\WINDOWS\System32\uxtuneup.dll
21:18:07.0937 4044 UxTuneUp - ok
21:18:07.0953 4044 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
21:18:07.0953 4044 VgaSave - ok
21:18:07.0953 4044 ViaIde - ok
21:18:07.0968 4044 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
21:18:07.0968 4044 VolSnap - ok
21:18:08.0000 4044 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
21:18:08.0015 4044 VSS - ok
21:18:08.0031 4044 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
21:18:08.0046 4044 W32Time - ok
21:18:08.0046 4044 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:18:08.0046 4044 Wanarp - ok
21:18:08.0093 4044 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
21:18:08.0093 4044 Wdf01000 - ok
21:18:08.0093 4044 WDICA - ok
21:18:08.0125 4044 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
21:18:08.0125 4044 wdmaud - ok
21:18:08.0140 4044 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
21:18:08.0140 4044 WebClient - ok
21:18:08.0203 4044 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
21:18:08.0203 4044 winmgmt - ok
21:18:08.0234 4044 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
21:18:08.0234 4044 WmdmPmSN - ok
21:18:08.0250 4044 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:18:08.0265 4044 WmiApSrv - ok
21:18:08.0328 4044 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
21:18:08.0328 4044 WMPNetworkSvc - ok
21:18:08.0406 4044 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:18:08.0406 4044 WPFFontCache_v0400 - ok
21:18:08.0421 4044 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
21:18:08.0421 4044 WS2IFSL - ok
21:18:08.0437 4044 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
21:18:08.0437 4044 wscsvc - ok
21:18:08.0437 4044 WSearch - ok
21:18:08.0468 4044 [ 233CDD1C06942115802EB7CE6669E099 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
21:18:08.0468 4044 WSTCODEC - ok
21:18:08.0484 4044 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
21:18:08.0484 4044 wuauserv - ok
21:18:08.0515 4044 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:18:08.0515 4044 WudfPf - ok
21:18:08.0531 4044 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:18:08.0531 4044 WudfRd - ok
21:18:08.0546 4044 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
21:18:08.0546 4044 WudfSvc - ok
21:18:08.0593 4044 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
21:18:08.0593 4044 WZCSVC - ok
21:18:08.0625 4044 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
21:18:08.0625 4044 xmlprov - ok
21:18:08.0640 4044 ================ Scan global ===============================
21:18:08.0656 4044 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
21:18:08.0671 4044 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
21:18:08.0687 4044 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
21:18:08.0718 4044 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
21:18:08.0718 4044 [Global] - ok
21:18:08.0718 4044 ================ Scan MBR ==================================
21:18:08.0734 4044 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
21:18:08.0875 4044 \Device\Harddisk0\DR0 - ok
21:18:08.0875 4044 ================ Scan VBR ==================================
21:18:08.0875 4044 [ D8F7B5A8E3FC8B6236DC28CF776CC5E1 ] \Device\Harddisk0\DR0\Partition1
21:18:08.0875 4044 \Device\Harddisk0\DR0\Partition1 - ok
21:18:08.0890 4044 [ F186EEFE8CC020D0B1746B8906968B10 ] \Device\Harddisk0\DR0\Partition2
21:18:08.0890 4044 \Device\Harddisk0\DR0\Partition2 - ok
21:18:08.0921 4044 [ 972D8B8612856A2ADF75021C0B067615 ] \Device\Harddisk0\DR0\Partition3
21:18:08.0921 4044 \Device\Harddisk0\DR0\Partition3 - ok
21:18:08.0921 4044 ============================================================
21:18:08.0921 4044 Scan finished
21:18:08.0921 4044 ============================================================
21:18:08.0921 3964 Detected object count: 1
21:18:08.0921 3964 Actual detected object count: 1
21:18:12.0734 3964 sptd ( LockedFile.Multi.Generic ) - skipped by user
21:18:12.0734 3964 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

[neca]

ComboFix 12-10-08.03 - Roman 08.10.2012 21:33:34.10.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1289 [GMT 2:00]
Spuštěný z: c:\documents and settings\Roman\Dokumenty\Downloads\ComboFix.exe
AV: ESET Smart Security 5.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *Disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Roman\g2mdlhlpx.exe
c:\documents and settings\Roman\Local Settings\Temporary Internet Files\dxva_sig.txt
c:\windows\a3kebook.ini
c:\windows\akebook.ini
c:\windows\ANS2000.INI
c:\windows\hopanafawa.exe
c:\windows\IsUn0405.exe
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\sely.exe
c:\windows\system32\_000011_.tmp.dll
c:\windows\system32\dllcache\dlimport.exe
c:\windows\system32\drivers\tcpip.copy
c:\windows\system32\Temp
c:\windows\system32\Temp\KSKD87SFXS
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-09-08 do 2012-10-08 )))))))))))))))))))))))))))))))
.
.
2012-10-08 16:41 . 2012-10-08 16:47 -------- d-----w- c:\program files\WhoCrashed
2012-10-08 06:06 . 2012-06-02 13:18 214256 ----a-w- c:\windows\system32\muweb.dll
2012-10-07 11:57 . 2012-10-07 11:57 2263 ----a-w- c:\documents and settings\All Users\Data aplikací\xmlBA.tmp
2012-10-07 11:57 . 2012-10-07 11:57 13821 ----a-w- c:\documents and settings\All Users\Data aplikací\xmlB9.tmp
2012-10-07 11:57 . 2012-10-07 11:57 10719 ----a-w- c:\documents and settings\All Users\Data aplikací\xmlB8.tmp
2012-10-07 11:45 . 2012-10-07 11:45 388096 ----a-r- c:\documents and settings\Roman\Data aplikací\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-10-07 11:45 . 2012-10-07 11:45 -------- d-----w- c:\program files\Trend Micro
2012-10-05 14:45 . 2012-03-19 17:01 65128 ----a-w- c:\windows\system32\RtkCoInstIIXP.dll
2012-10-05 14:45 . 2011-11-22 14:28 11368 ----a-w- c:\windows\system32\RtkCoLDRXP.dll
2012-10-05 14:39 . 2012-10-05 14:52 -------- d-----w- c:\documents and settings\Roman\Local Settings\Data aplikací\Pokki
2012-09-28 18:59 . 2012-09-28 18:59 -------- d-----w- c:\program files\Fair Trading Technology - MT4
2012-09-27 17:18 . 2012-09-29 08:16 -------- d-----w- c:\documents and settings\Roman\Data aplikací\wargaming.net
2012-09-18 11:11 . 2012-09-18 11:11 0 ----a-w- c:\windows\ativpsrm.bin
2012-09-16 08:03 . 2012-09-16 08:03 -------- d-----w- c:\program files\Common Files\Java
2012-09-16 08:02 . 2012-09-16 08:02 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-21 16:36 . 2012-08-10 09:21 696240 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-09-21 16:36 . 2011-06-08 05:46 73136 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-09-16 08:02 . 2012-07-02 11:04 821736 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-09-16 08:02 . 2012-02-19 17:18 143872 ----a-w- c:\windows\system32\javacpl.cpl
2012-09-16 08:02 . 2010-04-28 15:01 746984 ----a-w- c:\windows\system32\deployJava1.dll
2012-09-07 15:04 . 2012-02-01 08:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-28 15:18 . 2006-03-02 12:00 916992 ----a-w- c:\windows\system32\wininet.dll
2012-08-28 15:18 . 2006-03-02 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2012-08-28 15:18 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-08-28 12:07 . 2006-03-02 12:00 385024 ----a-w- c:\windows\system32\html.iec
2009-08-12 17:33 . 2009-08-12 17:33 16559 ----a-w- c:\program files\Common Files\ugax.com
2009-08-12 17:33 . 2009-08-12 17:33 13901 ----a-w- c:\program files\Common Files\ezolaq.bat
2011-03-18 17:55 . 2011-04-03 19:26 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"="e:\rootket\RocketDock\RocketDock.exe" [2007-09-02 495616]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Acronis Scheduler2 Service"="c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe" [2010-09-23 391144]
"SAOB Monitor"="c:\program files\Acronis\OnlineBackupStandalone\TrueImageMonitor.exe" [2010-09-02 2536752]
"Služba Acronis Scheduler2"="c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe" [2010-09-23 391144]
"LWS"="c:\program files\Logitech\LWS\Webcam Software\LWS.exe" [2011-08-12 205336]
"NVRaidService"="c:\program files\NVIDIA Corporation\Raid\nvraidservice.exe" [2010-04-09 163944]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-02-25 61440]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-08 3076144]
"RivaTuner"="e:\riva tuner\RivaTuner v2.24\rivatuner206_cz.exe" [2009-07-18 2650112]
"SweetIM"="c:\program files\SweetIM\Messenger\SweetIM.exe" [2012-02-16 114992]
"RTHDCPL"="RTHDCPL.EXE" [2012-03-14 20065896]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"WUAppSetup"="c:\program files\Common Files\logishrd\WUApp32.exe" [2011-08-19 465944]
.
c:\documents and settings\Roman\Nabídka Start\Programy\Po spuštění\
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Windows Search.lnk - c:\program files\Windows Desktop Search\WindowsSearch.exe [2008-5-26 123904]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"ForceClassicControlPanel"= 1 (0x1)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" /background
"NetLimiter 2 Client"=e:\netlimiter\NetLimiter 2 Pro\NLClient.exe
"ctfmon.exe"=c:\windows\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe"
"InCD"=e:\nero\InCD\InCD.exe
"NeroFilterCheck"=c:\windows\system32\NeroCheck.exe
"MuralPixAgent"=e:\měnič tapet na ploše\MuralPix\MpAgent.exe /r
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\Activision\\Call of Duty - World at War\\CoDWaWx.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"e:\\E torent stahovač\\uTorrent\\utorrent.exe"=
"e:\\Sandra\\SiSoftware Sandra Lite 2009.SP3\\RpcAgentSrv.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"=
"c:\\Program Files\\Google\\Google Earth\\plugin\\geplugin.exe"=
"c:\\Program Files\\Logitech\\Vid HD\\Vid.exe"=
"e:\\MT 5 Admirál\\metatester.exe"=
"c:\\WINDOWS\\system32\\msiexec.exe"=
"e:\\Skype\\Phone\\Skype.exe"=
"e:\\Sandra\\SiSoftware Sandra Lite 2009.SP3\\WNt500x86\\RpcSandraSrv.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"135:TCP"= 135:TCP:DCOM(135)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)
.
R0 sptd;sptd;\SystemRoot\\SystemRoot\System32\Drivers\sptd.sys --> \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [?]
R0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273);c:\windows\system32\drivers\tdrpm273.sys [9.3.2011 15:53 752128]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2.1.2012 21:47 239168]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [4.8.2011 10:20 118104]
R1 hgeibflo;hgeibflo;c:\windows\system32\drivers\hgeibflo.sys [2.1.2012 23:49 258392]
R1 nltdi;nltdi;c:\windows\system32\drivers\nltdi.sys [23.4.2007 13:03 82200]
R2 afcdpsrv;Služba Acronis Nonstop Backup;c:\program files\Common Files\Acronis\CDP\afcdpsrv.exe [9.3.2011 15:53 3975088]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [8.9.2011 8:34 974944]
R2 SBKUPNT;SBKUPNT;c:\windows\system32\drivers\SBKUPNT.SYS [30.1.2012 20:54 14976]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [30.3.2011 19:00 1523008]
R2 UMVPFSrv;UMVPFSrv;c:\program files\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe [1.4.2011 7:11 450848]
R3 afcdp;afcdp;c:\windows\system32\drivers\afcdp.sys [9.3.2011 15:54 163232]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdXP3.sys [28.11.2011 12:17 100368]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [12.10.2009 20:00 47360]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys [7.10.2010 13:34 10064]
S1 saskutil;SASKUTIL;\??\c:\program files\SUPERAntiSpyware\SASKUTIL.sys --> c:\program files\SUPERAntiSpyware\SASKUTIL.sys [?]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [4.3.2011 17:25 136176]
S2 MalwareDefenderService;Malware Defender Service;e:\malware defender\mdservice.exe --> e:\malware defender\mdservice.exe [?]
S2 oaunbt06u06;oaunbt06u06;\??\c:\windows\system32\drivers\oaunbt06u06.sys --> c:\windows\system32\drivers\oaunbt06u06.sys [?]
S2 SkypeUpdate;Skype Updater;e:\skype\Updater\Updater.exe [3.7.2012 13:19 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [10.8.2012 11:22 250288]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [27.3.2010 20:55 1691480]
S3 AODDriver;AODDriver;\??\c:\program files\GIGABYTE\ET6\i386\AODDriver.sys --> c:\program files\GIGABYTE\ET6\i386\AODDriver.sys [?]
S3 cpuz130;cpuz130;\??\c:\docume~1\Roman\LOCALS~1\Temp\cpuz130\cpuz_x32.sys --> c:\docume~1\Roman\LOCALS~1\Temp\cpuz130\cpuz_x32.sys [?]
S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [27.3.2010 18:47 23456]
S3 esihdrv;esihdrv;\??\c:\docume~1\Roman\LOCALS~1\Temp\esihdrv.sys --> c:\docume~1\Roman\LOCALS~1\Temp\esihdrv.sys [?]
S3 etdrv;etdrv;c:\windows\etdrv.sys [19.7.2009 20:53 17488]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;e:\common\Database\bin\fbserver.exe [13.2.2010 22:30 1527900]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [4.3.2011 17:25 136176]
S3 SandraAgentSrv;SiSoftware Deployment Agent Service;e:\sandra\SiSoftware Sandra Lite 2009.SP3\RpcAgentSrv.exe [26.11.2009 20:01 98488]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - 77651701
*Deregistered* - 77651701
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
2012-10-08 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-10 16:36]
.
2012-05-10 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2006-08-29 12:21]
.
2012-10-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-03-04 15:25]
.
2012-10-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-03-04 15:25]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: E&xportovat do aplikace Microsoft Excel
IE: E&xportovat do aplikace Microsoft Office Excel
IE: Stáhnout Free Download Managerem - file://e:\free dowload manager\Free Download Manager\dllink.htm
IE: Stáhnout vybrané Free Download Managerem - file://e:\free dowload manager\Free Download Manager\dlselected.htm
IE: Stáhnout vše Free Download Managerem - file://e:\free dowload manager\Free Download Manager\dlall.htm
LSP: %SYSTEMROOT%\system32\nvLsp.dll
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\documents and settings\Roman\Data aplikací\Mozilla\Firefox\Profiles\2cvs1s08.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine -
FF - prefs.js: browser.startup.homepage - hxxp://search.babylon.com/?babsrc=HP_ss ... 0fea5c5f19
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.notify.interval - 600000
FF - user.js: content.switch.threshold - 600000
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: extensions.BabylonToolbar_i.ovrDmn - isearch.babylon.com
FF - user.js: extensions.BabylonToolbar_i.id - f0175ba8000000000000000fea5c5f19
FF - user.js: extensions.BabylonToolbar_i.hardId - f0175ba8000000000000000fea5c5f19
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15309
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1717:46
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - tb9
FF - user.js: extensions.BabylonToolbar_i.newTab - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=100489
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
AddRemove-Easy-WebPrint - c:\windows\IsUn0405.exe
AddRemove-{1EAC1D02-C6AC-4FA6-9A44-96258C37C812}_is1 - E:\World
AddRemove-{A9547F93-3477-4057-8BA3-AB85BA5FA4FE} - c:\documents and settings\Roman\Local Settings\Data aplikací\{7C24407D-548F-4211-9AD3-2549A100B03D}\Local Cooling Setup.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-10-08 21:38
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_278_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_278_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1440)
c:\windows\system32\Ati2evxx.dll
.
Celkový čas: 2012-10-08 21:39:51
ComboFix-quarantined-files.txt 2012-10-08 19:39
ComboFix2.txt 2009-08-13 16:36
ComboFix3.txt 2009-08-13 16:08
ComboFix4.txt 2009-08-13 15:58
ComboFix5.txt 2009-08-14 17:20
.
Před spuštěním: 7 130 611 712
Po spuštění: 7 651 852 288
.
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /fastdetect /usepmtimer /NoExecute=OptOut
.
- - End Of File - - F880B669DCACD2D5AD48FCFF05050969

[jaro3]

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

ClearJavaCache::

KillAll::
File::
c:\windows\ativpsrm.bin
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Folder::
c:\program files\SUPERAntiSpyware
c:\program files\Google\Update
e:\skype\Updater

DirLook::
c:\program files\Common Files\ugax.com

Driver::
sptd
saskutil
gupdate
MalwareDefenderService
oaunbt06u06
SkypeUpdate
AODDriver
cpuz130
esihdrv
gupdatem

Firefox::
FF - ProfilePath - c:\documents and settings\Roman\Data aplikací\Mozilla\Firefox\Profiles\2cvs1s08.default\
FF - prefs.js: browser.search.selectedEngine -
FF - prefs.js: browser.startup.homepage - hxxp://search.babylon.com/?babsrc=HP_ss ... 0fea5c5f19
FF - user.js: extensions.BabylonToolbar_i.ovrDmn - isearch.babylon.com
FF - user.js: extensions.BabylonToolbar_i.id - f0175ba8000000000000000fea5c5f19
FF - user.js: extensions.BabylonToolbar_i.hardId - f0175ba8000000000000000fea5c5f19
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15309
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1717:46
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - tb9
FF - user.js: extensions.BabylonToolbar_i.newTab - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=100489
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst

RegLock::
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
c:\documents and settings\All Users\Data aplikací\xmlBA.tmp
c:\documents and settings\All Users\Data aplikací\xmlB9.tmp
c:\documents and settings\All Users\Data aplikací\xmlB8.tmp
c:\program files\Common Files\ezolaq.bat

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.