HJT log - viry, nebo windows? Vyřešeno

[Fucza]

Dobrý den.
Počítač má strašně dlouho odezvu u některých programů, pomalost sama. Nevím, zda by to mohl být virus (nebo něco podobného), popř. mám udělat nějaký test třeba na vytěžování PC? Je tam asi dost "bordelu". Taky nejde internetové bankovnictví KB (Java+aplet) pod žádným prohlížečem. Za tip, odkud se do zkoumání problému pustit díky. Přikládám log z HJT, myslím, že i nějaká havěť by tam být mohla. Ten Smart Notebook (to je podobné jako powerpoint pro interaktivní tabule) od SMART TEch je ze všech nejlínější:-) Předem moc díky.

Při aplikaci HJT taky vyjížděla tato chyba:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:00:02, on 20.3.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\PROGRA~1\AVG\AVG2012\avgrsx.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe
C:\Program Files\SMART Technologies\Education Software\SMARTInk.exe
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\SMART Technologies\Education Software\DesktopMenu.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\AVG\AVG2012\avgnsx.exe
C:\Program Files\SMART Technologies\Education Software\ResponseHardwareService.exe
C:\Program Files\AVG\AVG2012\avgemcx.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\Program Files\FilesFrog Update Checker\update_checker.exe
C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe
C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\Program Files\SMART Technologies\Education Software\ResponseSoftwareService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
E:\Program Files\Skype\Phone\Skype.exe
C:\Temp\TeamViewer\Version8\TeamViewer.exe
C:\Temp\TeamViewer\Version8\tv_w32.exe
c:\temp\teamviewer\version8\TeamViewer_Desktop.exe
C:\Program Files\Opera\opera.exe
C:\Documents and Settings\User1\Plocha\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.mywebsearch.com/index.jhtml ... 857F9B7FC6
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.myheritage.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Web Assistant Helper - {336D0C35-8A85-403a-B9D2-65C292C39087} - C:\Program Files\Web Assistant\Extension32.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll
O2 - BHO: SMART Notebook Download Utility - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Education Software\Win32\NotebookPlugin.dll
O2 - BHO: Incredibar.com Helper Object - {6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99} - C:\Program Files\Incredibar.com\incredibar\1.5.11.14\bh\incredibar.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Incredibar Toolbar - {F9639E4A-801B-4843-AEE3-03D9DA199E77} - C:\Program Files\Incredibar.com\incredibar\1.5.11.14\incredibarTlbr.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [PDVD8LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe"
O4 - HKLM\..\Run: [UpdatePPShortCut] "C:\Program Files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\PowerProducer" UpdateWithCreateOnce "Software\CyberLink\PowerProducer\5.0"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Family Tree Builder Update] C:\Dokumenty\Stažené soubory\MyHeritage\Bin\FTBCheckUpdates.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe"
O4 - HKLM\..\Run: [SMART Board Tools] "C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe"
O4 - HKLM\..\Run: [SMART Ink] "C:\Program Files\SMART Technologies\Education Software\SMARTInk.exe"
O4 - HKLM\..\Run: [Response Desktop Menu] "C:\Program Files\SMART Technologies\Education Software\DesktopMenu.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "E:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [SDP] C:\Program Files\FilesFrog Update Checker\update_checker.exe /auto
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Search - http://tbedits.marineaquariumfree.com/o ... 92913&cv=1
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 7511582734
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\14.2.0\ViProtocol.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Response Hardware - SMART Technologies ULC - C:\Program Files\SMART Technologies\Education Software\ResponseHardwareService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - E:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Služba SMART Board (SMART Board Service) - SMART Technologies - C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe
O23 - Service: SMART Display Controller - SMART Technologies - C:\Program Files\SMART Technologies\Education Software\UCService.exe
O23 - Service: vToolbarUpdater14.2.0 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe
O23 - Service: Web Assistant Updater - Unknown owner - C:\Program Files\Web Assistant\ExtensionUpdaterService.exe

--
End of file - 11278 bytes

[Reklama]

[memphisto]

Toolbarů a zbytečností...

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[Fucza]

Jo, to je pravda. Ty toolbary, to je mor. Díky moc.

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Verze: v2013.03.20.12

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
User1 :: TRILINE [administrátor]

20.3.2013 23:42:33
mbam-log-2013-03-20 (23-42-33).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 205227
Uplynulý čas: 35 minut, 33 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)


# AdwCleaner v2.115 - Log vytvooen 21/03/2013 v 00:30:46
# Aktualizováno 17/03/2013 Xplode
# Operaení systém : Microsoft Windows XP Service Pack 3 (32 bits)
# Uživatel : User1 - TRILINE
# Spuštin systém : Normální
# Spuštino z : C:\Documents and Settings\User1\Plocha\adwcleaner.exe
# Volba [Prohledat]


***** [Služby] *****

Nalezeno : Web Assistant Updater

***** [Soubory / Složky] *****

Složka Nalezeno : C:\Documents and Settings\All Users\Data aplikací\AVG Secure Search
Složka Nalezeno : C:\Documents and Settings\LocalService\Local Settings\Data aplikací\AVG Secure Search
Složka Nalezeno : C:\Documents and Settings\User1\Data aplikací\AVG Secure Search
Složka Nalezeno : C:\Documents and Settings\User1\Data aplikací\incredibar.com
Složka Nalezeno : C:\Documents and Settings\User1\Local Settings\Data aplikací\AVG Secure Search
Složka Nalezeno : C:\Documents and Settings\User1\Nabídka Start\Programy\FilesFrog Update Checker
Složka Nalezeno : C:\Program Files\AVG Secure Search
Složka Nalezeno : C:\Program Files\Common Files\AVG Secure Search
Složka Nalezeno : C:\Program Files\FilesFrog Update Checker
Složka Nalezeno : C:\Program Files\incredibar.com
Složka Nalezeno : C:\Program Files\Web Assistant
Soubor Nalezeno : C:\Documents and Settings\User1\Data aplikací\Mozilla\Firefox\Profiles\sahof05i.default\searchplugins\MyStart Search.xml
Soubor Nalezeno : C:\Documents and Settings\User1\Plocha\Check for Updates.lnk
Soubor Nalezeno : C:\Program Files\Mozilla Firefox\searchplugins\avg-secure-search.xml
Soubor Nalezeno : C:\user.js

***** [Registry] *****

Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Hodnota Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [SDP]
Hodnota Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Hodnota Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{F9639E4A-801B-4843-AEE3-03D9DA199E77}]
Hodnota Nalezeno : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]
Hodnota Nalezeno : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]
Hodnota Nalezeno : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Klíe Nalezeno : HKCU\Software\AVG Secure Search
Klíe Nalezeno : HKCU\Software\IM
Klíe Nalezeno : HKCU\Software\ImInstaller
Klíe Nalezeno : HKCU\Software\incredibar.com
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\MenuExt\&Search
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403A-B9D2-65C292C39087}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F9639E4A-801B-4843-AEE3-03D9DA199E77}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403A-B9D2-65C292C39087}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9639E4A-801B-4843-AEE3-03D9DA199E77}
Klíe Nalezeno : HKCU\Software\Somoto
Klíe Nalezeno : HKCU\Software\Web Assistant
Klíe Nalezeno : HKLM\Software\AVG Secure Search
Klíe Nalezeno : HKLM\Software\AVG Security Toolbar
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{CFE8AAFD-A0F3-4329-84E9-6B679EC93EC2}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{336D0C35-8A85-403A-B9D2-65C292C39087}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{C01315C7-B4E2-4864-B43D-5FAFC414D179}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{C1545464-C77C-4130-A572-1C619E2895FE}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{ED0E67AD-926C-4008-87E5-03CF72AA2A7E}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{EF7FEC6D-451B-4452-9D26-7E10C6B5DB6E}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{F9639E4A-801B-4843-AEE3-03D9DA199E77}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\escort.escortIEPane
Klíe Nalezeno : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\esrv.IncredibarESrvc
Klíe Nalezeno : HKLM\SOFTWARE\Classes\esrv.IncredibarESrvc.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\I
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Incredibar.dskBnd
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Incredibar.dskBnd.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Incredibar.IncredibarHlpr
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Incredibar.IncredibarHlpr.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\IncredibarApp.appCore
Klíe Nalezeno : HKLM\SOFTWARE\Classes\IncredibarApp.appCore.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{22B0769F-794B-4422-AC84-47B123C8986D}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{255E0B2A-D747-4EEF-B7CE-159D73A3656D}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{28ED590D-F5ED-4E05-A87F-1D759F1C6169}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{45D5B93F-E2ED-4AF2-915E-DCDDBDA8C33C}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{771B99AB-636F-4A11-9039-8DFEB927B061}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{A8321AA2-2227-40C7-8525-6C2F4E1B0EBE}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{AA41A731-6814-4A70-A6F1-C0A20FBBFBD5}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{ABBB8A9E-D8AF-40D1-94BE-5175077465FC}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{BF737694-56F6-46FA-9FDC-FA99A5B25FAD}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{CFCD164E-8AC9-478E-9ECC-B616A932016C}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{D5961CC0-B442-4567-8030-67E241EF4CC2}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{E450067F-1C93-41A7-928E-07E5C2EEC680}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{F977D9F2-4BDC-44A6-B508-7C0284C61EED}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Klíe Nalezeno : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Klíe Nalezeno : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{48C9C8B0-A546-46C1-A81F-47A31E623E9D}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{CFE8AAFD-A0F3-4329-84E9-6B679EC93EC2}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Klíe Nalezeno : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla
Klíe Nalezeno : HKLM\Software\incredibar.com
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{74C36554-31F0-49DD-8857-ED6A64DF45BE}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Secure Search
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FilesFrog Update Checker
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\incredibar
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\incredibar
Klíe Nalezeno : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Klíe Nalezeno : HKLM\Software\Web Assistant
Klíe Nalezeno : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Nalezeno : HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Nalezeno : HKU\S-1-5-21-1715567821-1677128483-1606980848-1004\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Nalezeno : HKU\S-1-5-21-1715567821-1677128483-1606980848-1004\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v8.0.6001.18702

[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://home.mywebsearch.com/index.jhtml ... 857F9B7FC6
[HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://isearch.avg.com/tab?cid={7B05F40A-B6C3-4541-BCC6-32A1F391D911}&mid=99c15366d9be47d0b2ebd1482acf9ae8-06ce4fc639803a2e3563922518183d8e94088cb9&lang=cs&ds=AVG&pr=fr&d=2012-08-16 15:22:17&pid=avg&sg=&v=14.2.0.1&sap=nt

-\\ Mozilla Firefox v19.0.2 (en-US)

Soubor : C:\Documents and Settings\User1\Data aplikací\Mozilla\Firefox\Profiles\sahof05i.default\prefs.js

Nalezeno : user_pref("avg.install.installDirPath", "C:\\Documents and Settings\\All Users\\Data aplikací\\AVG S[...]
Nalezeno : user_pref("avg.install.userHPSettings", "hxxp://mystart.incredibar.com/mb174?a=6R8AqOYyUe&i=26");
Nalezeno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb174?a=6R8AqOYyUe&loc=FF_NT");
Nalezeno : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Nalezeno : user_pref("extensions.incredibar_i.aflt", "orgnl");
Nalezeno : user_pref("extensions.incredibar_i.dfltLng", "");
Nalezeno : user_pref("extensions.incredibar_i.did", "10671");
Nalezeno : user_pref("extensions.incredibar_i.excTlbr", false);
Nalezeno : user_pref("extensions.incredibar_i.id", "4c84e82d00000000000000016c2b731b");
Nalezeno : user_pref("extensions.incredibar_i.installerproductid", "26");
Nalezeno : user_pref("extensions.incredibar_i.instlDay", "15550");
Nalezeno : user_pref("extensions.incredibar_i.instlRef", "");
Nalezeno : user_pref("extensions.incredibar_i.ms_url_id", "");
Nalezeno : user_pref("extensions.incredibar_i.newTab", false);
Nalezeno : user_pref("extensions.incredibar_i.ppd", "77777106");
Nalezeno : user_pref("extensions.incredibar_i.prdct", "incredibar");
Nalezeno : user_pref("extensions.incredibar_i.productid", "26");
Nalezeno : user_pref("extensions.incredibar_i.prtnrId", "Incredibar");
Nalezeno : user_pref("extensions.incredibar_i.smplGrp", "none");
Nalezeno : user_pref("extensions.incredibar_i.tlbrId", "base");
Nalezeno : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6R8AqOYyUe&loc=IB[...]
Nalezeno : user_pref("extensions.incredibar_i.upn2", "6R8AqOYyUe");
Nalezeno : user_pref("extensions.incredibar_i.upn2n", "92824787171615782");
Nalezeno : user_pref("extensions.incredibar_i.vrsn", "1.5.11.14");
Nalezeno : user_pref("extensions.incredibar_i.vrsnTs", "1.5.11.147:58:22");
Nalezeno : user_pref("extensions.incredibar_i.vrsni", "1.5.11.14");

-\\ Opera v12.14.1738.0

Soubor : C:\Documents and Settings\User1\Data aplikací\Opera\Opera\operaprefs.ini

[OK] Soubor je eistý.

*************************

AdwCleaner[R1].txt - [15388 octets] - [21/03/2013 00:30:46]

########## EOF - C:\AdwCleaner[R1].txt - [15449 octets] ##########

[memphisto]

V AdwCleaner nech vše smazat a dodej log.

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.

[Fucza]

Zdravím. Logy jsou zde. Předem moc díky.

# AdwCleaner v2.115 - Log vytvooen 21/03/2013 v 17:14:20
# Aktualizováno 17/03/2013 Xplode
# Operaení systém : Microsoft Windows XP Service Pack 3 (32 bits)
# Uživatel : User1 - TRILINE
# Spuštin systém : Normální
# Spuštino z : C:\Documents and Settings\User1\Plocha\adwcleaner.exe
# Volba [Prohledat]


***** [Služby] *****

Nalezeno : Web Assistant Updater

***** [Soubory / Složky] *****

Složka Nalezeno : C:\Documents and Settings\All Users\Data aplikací\AVG Secure Search
Složka Nalezeno : C:\Documents and Settings\LocalService\Local Settings\Data aplikací\AVG Secure Search
Složka Nalezeno : C:\Documents and Settings\User1\Data aplikací\AVG Secure Search
Složka Nalezeno : C:\Documents and Settings\User1\Data aplikací\incredibar.com
Složka Nalezeno : C:\Documents and Settings\User1\Local Settings\Data aplikací\AVG Secure Search
Složka Nalezeno : C:\Documents and Settings\User1\Nabídka Start\Programy\FilesFrog Update Checker
Složka Nalezeno : C:\Program Files\AVG Secure Search
Složka Nalezeno : C:\Program Files\Common Files\AVG Secure Search
Složka Nalezeno : C:\Program Files\FilesFrog Update Checker
Složka Nalezeno : C:\Program Files\incredibar.com
Složka Nalezeno : C:\Program Files\Web Assistant
Soubor Nalezeno : C:\Documents and Settings\User1\Data aplikací\Mozilla\Firefox\Profiles\sahof05i.default\searchplugins\MyStart Search.xml
Soubor Nalezeno : C:\Documents and Settings\User1\Plocha\Check for Updates.lnk
Soubor Nalezeno : C:\Program Files\Mozilla Firefox\searchplugins\avg-secure-search.xml
Soubor Nalezeno : C:\user.js

***** [Registry] *****

Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Hodnota Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [SDP]
Hodnota Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Hodnota Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{F9639E4A-801B-4843-AEE3-03D9DA199E77}]
Hodnota Nalezeno : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]
Hodnota Nalezeno : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]
Hodnota Nalezeno : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Klíe Nalezeno : HKCU\Software\AVG Secure Search
Klíe Nalezeno : HKCU\Software\IM
Klíe Nalezeno : HKCU\Software\ImInstaller
Klíe Nalezeno : HKCU\Software\incredibar.com
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\MenuExt\&Search
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403A-B9D2-65C292C39087}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F9639E4A-801B-4843-AEE3-03D9DA199E77}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403A-B9D2-65C292C39087}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9639E4A-801B-4843-AEE3-03D9DA199E77}
Klíe Nalezeno : HKCU\Software\Somoto
Klíe Nalezeno : HKCU\Software\Web Assistant
Klíe Nalezeno : HKLM\Software\AVG Secure Search
Klíe Nalezeno : HKLM\Software\AVG Security Toolbar
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{CFE8AAFD-A0F3-4329-84E9-6B679EC93EC2}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Klíe Nalezeno : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{336D0C35-8A85-403A-B9D2-65C292C39087}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{C01315C7-B4E2-4864-B43D-5FAFC414D179}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{C1545464-C77C-4130-A572-1C619E2895FE}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{ED0E67AD-926C-4008-87E5-03CF72AA2A7E}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{EF7FEC6D-451B-4452-9D26-7E10C6B5DB6E}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{F9639E4A-801B-4843-AEE3-03D9DA199E77}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\escort.escortIEPane
Klíe Nalezeno : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\esrv.IncredibarESrvc
Klíe Nalezeno : HKLM\SOFTWARE\Classes\esrv.IncredibarESrvc.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\I
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Incredibar.dskBnd
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Incredibar.dskBnd.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Incredibar.IncredibarHlpr
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Incredibar.IncredibarHlpr.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\IncredibarApp.appCore
Klíe Nalezeno : HKLM\SOFTWARE\Classes\IncredibarApp.appCore.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{22B0769F-794B-4422-AC84-47B123C8986D}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{255E0B2A-D747-4EEF-B7CE-159D73A3656D}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{28ED590D-F5ED-4E05-A87F-1D759F1C6169}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{45D5B93F-E2ED-4AF2-915E-DCDDBDA8C33C}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{771B99AB-636F-4A11-9039-8DFEB927B061}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{A8321AA2-2227-40C7-8525-6C2F4E1B0EBE}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{AA41A731-6814-4A70-A6F1-C0A20FBBFBD5}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{ABBB8A9E-D8AF-40D1-94BE-5175077465FC}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{BF737694-56F6-46FA-9FDC-FA99A5B25FAD}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{CFCD164E-8AC9-478E-9ECC-B616A932016C}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{D5961CC0-B442-4567-8030-67E241EF4CC2}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{E450067F-1C93-41A7-928E-07E5C2EEC680}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{F977D9F2-4BDC-44A6-B508-7C0284C61EED}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Klíe Nalezeno : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Klíe Nalezeno : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{48C9C8B0-A546-46C1-A81F-47A31E623E9D}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{CFE8AAFD-A0F3-4329-84E9-6B679EC93EC2}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Klíe Nalezeno : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Klíe Nalezeno : HKLM\SOFTWARE\Google\Chrome\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla
Klíe Nalezeno : HKLM\Software\incredibar.com
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{74C36554-31F0-49DD-8857-ED6A64DF45BE}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Secure Search
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FilesFrog Update Checker
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\incredibar
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker
Klíe Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\incredibar
Klíe Nalezeno : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Klíe Nalezeno : HKLM\Software\Web Assistant
Klíe Nalezeno : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Nalezeno : HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Nalezeno : HKU\S-1-5-21-1715567821-1677128483-1606980848-1004\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Nalezeno : HKU\S-1-5-21-1715567821-1677128483-1606980848-1004\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v8.0.6001.18702

[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://home.mywebsearch.com/index.jhtml ... 857F9B7FC6
[HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://isearch.avg.com/tab?cid={7B05F40A-B6C3-4541-BCC6-32A1F391D911}&mid=99c15366d9be47d0b2ebd1482acf9ae8-06ce4fc639803a2e3563922518183d8e94088cb9&lang=cs&ds=AVG&pr=fr&d=2012-08-16 15:22:17&pid=avg&sg=&v=14.2.0.1&sap=nt

-\\ Mozilla Firefox v19.0.2 (en-US)

Soubor : C:\Documents and Settings\User1\Data aplikací\Mozilla\Firefox\Profiles\sahof05i.default\prefs.js

Nalezeno : user_pref("avg.install.installDirPath", "C:\\Documents and Settings\\All Users\\Data aplikací\\AVG S[...]
Nalezeno : user_pref("avg.install.userHPSettings", "hxxp://mystart.incredibar.com/mb174?a=6R8AqOYyUe&i=26");
Nalezeno : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb174?a=6R8AqOYyUe&loc=FF_NT");
Nalezeno : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Nalezeno : user_pref("extensions.incredibar_i.aflt", "orgnl");
Nalezeno : user_pref("extensions.incredibar_i.dfltLng", "");
Nalezeno : user_pref("extensions.incredibar_i.did", "10671");
Nalezeno : user_pref("extensions.incredibar_i.excTlbr", false);
Nalezeno : user_pref("extensions.incredibar_i.id", "4c84e82d00000000000000016c2b731b");
Nalezeno : user_pref("extensions.incredibar_i.installerproductid", "26");
Nalezeno : user_pref("extensions.incredibar_i.instlDay", "15550");
Nalezeno : user_pref("extensions.incredibar_i.instlRef", "");
Nalezeno : user_pref("extensions.incredibar_i.ms_url_id", "");
Nalezeno : user_pref("extensions.incredibar_i.newTab", false);
Nalezeno : user_pref("extensions.incredibar_i.ppd", "77777106");
Nalezeno : user_pref("extensions.incredibar_i.prdct", "incredibar");
Nalezeno : user_pref("extensions.incredibar_i.productid", "26");
Nalezeno : user_pref("extensions.incredibar_i.prtnrId", "Incredibar");
Nalezeno : user_pref("extensions.incredibar_i.smplGrp", "none");
Nalezeno : user_pref("extensions.incredibar_i.tlbrId", "base");
Nalezeno : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6R8AqOYyUe&loc=IB[...]
Nalezeno : user_pref("extensions.incredibar_i.upn2", "6R8AqOYyUe");
Nalezeno : user_pref("extensions.incredibar_i.upn2n", "92824787171615782");
Nalezeno : user_pref("extensions.incredibar_i.vrsn", "1.5.11.14");
Nalezeno : user_pref("extensions.incredibar_i.vrsnTs", "1.5.11.147:58:22");
Nalezeno : user_pref("extensions.incredibar_i.vrsni", "1.5.11.14");

-\\ Opera v12.14.1738.0

Soubor : C:\Documents and Settings\User1\Data aplikací\Opera\Opera\operaprefs.ini

[OK] Soubor je eistý.

*************************

AdwCleaner[R1].txt - [15519 octets] - [21/03/2013 00:30:46]
AdwCleaner[R2].txt - [15449 octets] - [21/03/2013 17:14:20]

########## EOF - C:\AdwCleaner[R2].txt - [15510 octets] ##########

21:40:01.0687 3632 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
21:40:01.0953 3632 ============================================================
21:40:01.0953 3632 Current date / time: 2013/03/21 21:40:01.0953
21:40:01.0953 3632 SystemInfo:
21:40:01.0953 3632
21:40:01.0953 3632 OS Version: 5.1.2600 ServicePack: 3.0
21:40:01.0953 3632 Product type: Workstation
21:40:01.0953 3632 ComputerName: TRILINE
21:40:01.0953 3632 UserName: User1
21:40:01.0953 3632 Windows directory: C:\WINDOWS
21:40:01.0953 3632 System windows directory: C:\WINDOWS
21:40:01.0953 3632 Processor architecture: Intel x86
21:40:01.0953 3632 Number of processors: 1
21:40:01.0953 3632 Page size: 0x1000
21:40:01.0953 3632 Boot type: Normal boot
21:40:01.0953 3632 ============================================================
21:40:05.0453 3632 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
21:40:05.0453 3632 Drive \Device\Harddisk1\DR1 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
21:40:05.0468 3632 ============================================================
21:40:05.0468 3632 \Device\Harddisk0\DR0:
21:40:05.0468 3632 MBR partitions:
21:40:05.0468 3632 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1869E559
21:40:05.0468 3632 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1869E598, BlocksNum 0x1869E598
21:40:05.0468 3632 \Device\Harddisk0\DR0\Partition3: MBR, Type 0xC, StartLBA 0x30D3CB30, BlocksNum 0x9648111
21:40:05.0468 3632 \Device\Harddisk1\DR1:
21:40:05.0468 3632 MBR partitions:
21:40:05.0468 3632 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x12A14BC1
21:40:05.0468 3632 ============================================================
21:40:05.0484 3632 C: <-> \Device\Harddisk1\DR1\Partition1
21:40:05.0500 3632 E: <-> \Device\Harddisk0\DR0\Partition1
21:40:05.0562 3632 F: <-> \Device\Harddisk0\DR0\Partition2
21:40:05.0578 3632 G: <-> \Device\Harddisk0\DR0\Partition3
21:40:05.0578 3632 ============================================================
21:40:05.0578 3632 Initialize success
21:40:05.0578 3632 ============================================================
21:40:10.0703 0240 ============================================================
21:40:10.0703 0240 Scan started
21:40:10.0703 0240 Mode: Manual;
21:40:10.0703 0240 ============================================================
21:40:11.0640 0240 ================ Scan system memory ========================
21:40:11.0656 0240 System memory - ok
21:40:11.0656 0240 ================ Scan services =============================
21:40:11.0765 0240 Abiosdsk - ok
21:40:11.0781 0240 abp480n5 - ok
21:40:11.0828 0240 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:40:11.0875 0240 ACPI - ok
21:40:11.0937 0240 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
21:40:11.0953 0240 ACPIEC - ok
21:40:11.0968 0240 adpu160m - ok
21:40:12.0015 0240 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
21:40:12.0078 0240 aec - ok
21:40:12.0125 0240 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
21:40:12.0187 0240 AFD - ok
21:40:12.0218 0240 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
21:40:12.0265 0240 agp440 - ok
21:40:12.0296 0240 Aha154x - ok
21:40:12.0312 0240 aic78u2 - ok
21:40:12.0328 0240 aic78xx - ok
21:40:12.0421 0240 [ E34E007C52CEA00B8FFAABF15AE1EFF9 ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
21:40:12.0593 0240 ALCXWDM - ok
21:40:12.0656 0240 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
21:40:12.0656 0240 Alerter - ok
21:40:12.0718 0240 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
21:40:12.0718 0240 ALG - ok
21:40:12.0734 0240 AliIde - ok
21:40:12.0750 0240 amsint - ok
21:40:12.0796 0240 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:40:12.0796 0240 Arp1394 - ok
21:40:12.0812 0240 asc - ok
21:40:12.0828 0240 asc3350p - ok
21:40:12.0843 0240 asc3550 - ok
21:40:12.0968 0240 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
21:40:13.0187 0240 aspnet_state - ok
21:40:13.0203 0240 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:40:13.0218 0240 AsyncMac - ok
21:40:13.0250 0240 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
21:40:13.0265 0240 atapi - ok
21:40:13.0281 0240 Atdisk - ok
21:40:13.0312 0240 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:40:13.0312 0240 Atmarpc - ok
21:40:13.0343 0240 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
21:40:13.0343 0240 AudioSrv - ok
21:40:13.0390 0240 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
21:40:13.0390 0240 audstub - ok
21:40:14.0421 0240 [ 231B6AD3DB2866BC3FDB9979E6B2B61E ] AVGIDSAgent C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
21:40:14.0484 0240 AVGIDSAgent - ok
21:40:14.0531 0240 [ EF67527CC2AD77D22AB1405C6470407E ] AVGIDSDriver C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
21:40:14.0531 0240 AVGIDSDriver - ok
21:40:14.0578 0240 [ 61A7E0B02F82CFF3DB2445BBE50B3589 ] AVGIDSFilter C:\WINDOWS\system32\DRIVERS\avgidsfilterx.sys
21:40:14.0578 0240 AVGIDSFilter - ok
21:40:14.0609 0240 [ D63D83659EEDF60B3A3E620281A888E5 ] AVGIDSHX C:\WINDOWS\system32\DRIVERS\avgidshx.sys
21:40:14.0625 0240 AVGIDSHX - ok
21:40:14.0640 0240 [ BAF975B72062F53D327788E99D64197E ] AVGIDSShim C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
21:40:14.0703 0240 AVGIDSShim - ok
21:40:14.0734 0240 [ 6671345A6E2669AF1966BAF68EC5620F ] Avgldx86 C:\WINDOWS\system32\DRIVERS\avgldx86.sys
21:40:14.0750 0240 Avgldx86 - ok
21:40:14.0765 0240 [ CCDD61545AAEA265977E4B1EFDC74E8C ] Avgmfx86 C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
21:40:14.0765 0240 Avgmfx86 - ok
21:40:14.0796 0240 [ 1FD90B28D2C3100BF4500199C8AD6358 ] Avgrkx86 C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
21:40:14.0796 0240 Avgrkx86 - ok
21:40:14.0937 0240 [ C0BC3B2E3FD625E7F55E1FF863E94592 ] Avgtdix C:\WINDOWS\system32\DRIVERS\avgtdix.sys
21:40:14.0968 0240 Avgtdix - ok
21:40:15.0000 0240 [ CAE7B6E4D7EB17829C526153D19B9C95 ] avgtp C:\WINDOWS\system32\drivers\avgtpx86.sys
21:40:15.0000 0240 avgtp - ok
21:40:15.0046 0240 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files\AVG\AVG2012\avgwdsvc.exe
21:40:15.0046 0240 avgwd - ok
21:40:15.0109 0240 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
21:40:15.0109 0240 Beep - ok
21:40:15.0187 0240 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
21:40:15.0187 0240 BITS - ok
21:40:15.0234 0240 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
21:40:15.0234 0240 Browser - ok
21:40:15.0281 0240 [ B279426E3C0C344893ED78A613A73BDE ] BthEnum C:\WINDOWS\system32\DRIVERS\BthEnum.sys
21:40:15.0296 0240 BthEnum - ok
21:40:15.0312 0240 [ FCA6F069597B62D42495191ACE3FC6C1 ] BTHMODEM C:\WINDOWS\system32\DRIVERS\bthmodem.sys
21:40:15.0328 0240 BTHMODEM - ok
21:40:15.0359 0240 [ 80602B8746D3738F5886CE3D67EF06B6 ] BthPan C:\WINDOWS\system32\DRIVERS\bthpan.sys
21:40:15.0375 0240 BthPan - ok
21:40:15.0421 0240 [ F338662A6C1FC11DD9508F6DFF2C06A2 ] BTHPORT C:\WINDOWS\system32\Drivers\BTHport.sys
21:40:15.0421 0240 BTHPORT - ok
21:40:15.0515 0240 [ 70CA4B3F634C9DCA200832F8DA76E009 ] BthServ C:\WINDOWS\System32\bthserv.dll
21:40:15.0515 0240 BthServ - ok
21:40:15.0531 0240 [ 61364CD71EF63B0F038B7E9DF00F1EFA ] BTHUSB C:\WINDOWS\system32\Drivers\BTHUSB.sys
21:40:15.0546 0240 BTHUSB - ok
21:40:15.0578 0240 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
21:40:15.0578 0240 cbidf2k - ok
21:40:15.0593 0240 cd20xrnt - ok
21:40:15.0625 0240 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
21:40:15.0625 0240 Cdaudio - ok
21:40:15.0640 0240 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
21:40:15.0640 0240 Cdfs - ok
21:40:15.0703 0240 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:40:15.0703 0240 Cdrom - ok
21:40:15.0718 0240 Changer - ok
21:40:15.0765 0240 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
21:40:15.0765 0240 CiSvc - ok
21:40:15.0781 0240 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
21:40:15.0781 0240 ClipSrv - ok
21:40:15.0812 0240 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:40:15.0828 0240 clr_optimization_v2.0.50727_32 - ok
21:40:15.0890 0240 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:40:15.0890 0240 clr_optimization_v4.0.30319_32 - ok
21:40:15.0906 0240 CmdIde - ok
21:40:15.0921 0240 COMSysApp - ok
21:40:15.0953 0240 Cpqarray - ok
21:40:15.0984 0240 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
21:40:16.0000 0240 CryptSvc - ok
21:40:16.0000 0240 dac2w2k - ok
21:40:16.0015 0240 dac960nt - ok
21:40:16.0078 0240 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
21:40:16.0093 0240 DcomLaunch - ok
21:40:16.0109 0240 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
21:40:16.0109 0240 Dhcp - ok
21:40:16.0156 0240 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
21:40:16.0203 0240 Disk - ok
21:40:16.0203 0240 dmadmin - ok
21:40:16.0265 0240 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
21:40:16.0296 0240 dmboot - ok
21:40:16.0343 0240 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
21:40:16.0343 0240 dmio - ok
21:40:16.0375 0240 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
21:40:16.0375 0240 dmload - ok
21:40:16.0406 0240 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
21:40:16.0421 0240 dmserver - ok
21:40:16.0453 0240 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
21:40:16.0453 0240 DMusic - ok
21:40:16.0531 0240 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
21:40:16.0531 0240 Dnscache - ok
21:40:16.0578 0240 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
21:40:16.0609 0240 Dot3svc - ok
21:40:16.0625 0240 dpti2o - ok
21:40:16.0640 0240 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
21:40:16.0640 0240 drmkaud - ok
21:40:16.0671 0240 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
21:40:16.0687 0240 EapHost - ok
21:40:16.0718 0240 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
21:40:16.0718 0240 ERSvc - ok
21:40:16.0765 0240 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
21:40:16.0765 0240 Eventlog - ok
21:40:16.0812 0240 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
21:40:16.0812 0240 EventSystem - ok
21:40:16.0859 0240 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
21:40:16.0859 0240 Fastfat - ok
21:40:16.0953 0240 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
21:40:16.0953 0240 FastUserSwitchingCompatibility - ok
21:40:16.0984 0240 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
21:40:16.0984 0240 Fdc - ok
21:40:17.0000 0240 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
21:40:17.0015 0240 Fips - ok
21:40:17.0390 0240 [ ACEFEEA621DCA62EFB7A7EEA59F5E91B ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
21:40:17.0406 0240 FLEXnet Licensing Service - ok
21:40:17.0437 0240 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:40:17.0453 0240 Flpydisk - ok
21:40:17.0515 0240 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
21:40:17.0531 0240 FltMgr - ok
21:40:17.0609 0240 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
21:40:17.0609 0240 FontCache3.0.0.0 - ok
21:40:17.0640 0240 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:40:17.0640 0240 Fs_Rec - ok
21:40:17.0671 0240 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:40:17.0671 0240 Ftdisk - ok
21:40:17.0718 0240 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:40:17.0734 0240 Gpc - ok
21:40:17.0812 0240 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:40:17.0812 0240 helpsvc - ok
21:40:17.0828 0240 HidServ - ok
21:40:17.0875 0240 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:40:17.0875 0240 hidusb - ok
21:40:17.0921 0240 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
21:40:17.0921 0240 hkmsvc - ok
21:40:17.0937 0240 hpn - ok
21:40:18.0015 0240 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
21:40:18.0015 0240 HTTP - ok
21:40:18.0046 0240 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
21:40:18.0062 0240 HTTPFilter - ok
21:40:18.0062 0240 i2omgmt - ok
21:40:18.0078 0240 i2omp - ok
21:40:18.0109 0240 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:40:18.0109 0240 i8042prt - ok
21:40:18.0187 0240 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:40:18.0234 0240 idsvc - ok
21:40:18.0250 0240 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
21:40:18.0250 0240 Imapi - ok
21:40:18.0281 0240 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
21:40:18.0296 0240 ImapiService - ok
21:40:18.0312 0240 ini910u - ok
21:40:18.0375 0240 [ 57D928E548B38502ABBA7A77A6EB7312 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
21:40:18.0375 0240 IntelIde - ok
21:40:18.0421 0240 [ 27B290D632AF2CF3CF40BFDDB7370985 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:40:18.0421 0240 intelppm - ok
21:40:18.0453 0240 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
21:40:18.0453 0240 Ip6Fw - ok
21:40:18.0468 0240 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:40:18.0468 0240 IpFilterDriver - ok
21:40:18.0484 0240 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:40:18.0500 0240 IpInIp - ok
21:40:18.0531 0240 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:40:18.0531 0240 IpNat - ok
21:40:18.0546 0240 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:40:18.0546 0240 IPSec - ok
21:40:18.0578 0240 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
21:40:18.0578 0240 IRENUM - ok
21:40:18.0625 0240 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:40:18.0625 0240 isapnp - ok
21:40:18.0796 0240 [ 999DB5F88C8E145CCA9D471E33227143 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
21:40:18.0812 0240 JavaQuickStarterService - ok
21:40:18.0859 0240 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:40:18.0859 0240 Kbdclass - ok
21:40:18.0890 0240 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
21:40:18.0890 0240 kmixer - ok
21:40:18.0937 0240 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
21:40:18.0937 0240 KSecDD - ok
21:40:18.0984 0240 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] LanmanServer C:\WINDOWS\System32\srvsvc.dll
21:40:18.0984 0240 LanmanServer - ok
21:40:19.0031 0240 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
21:40:19.0031 0240 lanmanworkstation - ok
21:40:19.0046 0240 lbrtfdc - ok
21:40:19.0109 0240 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
21:40:19.0109 0240 LmHosts - ok
21:40:19.0218 0240 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
21:40:19.0218 0240 MDM - ok
21:40:19.0250 0240 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
21:40:19.0250 0240 Messenger - ok
21:40:19.0296 0240 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
21:40:19.0312 0240 mnmdd - ok
21:40:19.0343 0240 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
21:40:19.0359 0240 mnmsrvc - ok
21:40:19.0375 0240 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
21:40:19.0375 0240 Modem - ok
21:40:19.0406 0240 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:40:19.0421 0240 Mouclass - ok
21:40:19.0453 0240 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:40:19.0468 0240 mouhid - ok
21:40:19.0500 0240 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
21:40:19.0500 0240 MountMgr - ok
21:40:19.0562 0240 [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:40:19.0578 0240 MozillaMaintenance - ok
21:40:19.0609 0240 [ CF105EE42E3F71E648CEBB3F666E1CF0 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
21:40:19.0609 0240 MpFilter - ok
21:40:19.0718 0240 [ A69630D039C38018689190234F866D77 ] MpKslb73564df C:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{B998F3E7-33A9-4B68-B459-BB6C279F94C7}\MpKslb73564df.sys
21:40:19.0718 0240 MpKslb73564df - ok
21:40:19.0734 0240 mraid35x - ok
21:40:19.0765 0240 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:40:19.0765 0240 MRxDAV - ok
21:40:19.0828 0240 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:40:19.0843 0240 MRxSmb - ok
21:40:19.0875 0240 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
21:40:19.0875 0240 MSDTC - ok
21:40:19.0921 0240 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
21:40:19.0921 0240 Msfs - ok
21:40:19.0937 0240 MSIServer - ok
21:40:19.0953 0240 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:40:19.0953 0240 MSKSSRV - ok
21:40:20.0031 0240 [ C1F19D2BACBEE9AB64D9AE69E9859AC0 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
21:40:20.0031 0240 MsMpSvc - ok
21:40:20.0062 0240 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:40:20.0062 0240 MSPCLOCK - ok
21:40:20.0078 0240 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
21:40:20.0078 0240 MSPQM - ok
21:40:20.0125 0240 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:40:20.0125 0240 mssmbios - ok
21:40:20.0171 0240 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
21:40:20.0171 0240 Mup - ok
21:40:20.0234 0240 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
21:40:20.0234 0240 napagent - ok
21:40:20.0312 0240 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
21:40:20.0312 0240 NDIS - ok
21:40:20.0359 0240 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:40:20.0359 0240 NdisTapi - ok
21:40:20.0406 0240 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:40:20.0406 0240 Ndisuio - ok
21:40:20.0453 0240 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:40:20.0453 0240 NdisWan - ok
21:40:20.0484 0240 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
21:40:20.0484 0240 NDProxy - ok
21:40:20.0515 0240 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
21:40:20.0515 0240 NetBIOS - ok
21:40:20.0578 0240 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
21:40:20.0578 0240 NetBT - ok
21:40:20.0640 0240 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
21:40:20.0640 0240 NetDDE - ok
21:40:20.0656 0240 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
21:40:20.0656 0240 NetDDEdsdm - ok
21:40:20.0703 0240 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
21:40:20.0703 0240 Netlogon - ok
21:40:20.0734 0240 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
21:40:20.0734 0240 Netman - ok
21:40:20.0781 0240 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:40:20.0796 0240 NetTcpPortSharing - ok
21:40:20.0843 0240 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:40:20.0843 0240 NIC1394 - ok
21:40:20.0890 0240 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
21:40:20.0906 0240 Nla - ok
21:40:20.0921 0240 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
21:40:20.0921 0240 Npfs - ok
21:40:20.0953 0240 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
21:40:20.0953 0240 Ntfs - ok
21:40:20.0968 0240 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
21:40:20.0968 0240 NtLmSsp - ok
21:40:21.0015 0240 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
21:40:21.0015 0240 NtmsSvc - ok
21:40:21.0046 0240 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
21:40:21.0046 0240 Null - ok
21:40:21.0812 0240 [ 8E72E452B9CC1E455D19E3C9FA964D37 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
21:40:21.0875 0240 nv - ok
21:40:22.0000 0240 [ 934833B3CD462A6F8A96F64D024C8B20 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
21:40:22.0000 0240 NVSvc - ok
21:40:22.0031 0240 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:40:22.0031 0240 NwlnkFlt - ok
21:40:22.0046 0240 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:40:22.0046 0240 NwlnkFwd - ok
21:40:22.0078 0240 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:40:22.0078 0240 ohci1394 - ok
21:40:22.0093 0240 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\drivers\Parport.sys
21:40:22.0109 0240 Parport - ok
21:40:22.0140 0240 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
21:40:22.0140 0240 PartMgr - ok
21:40:22.0171 0240 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
21:40:22.0171 0240 ParVdm - ok
21:40:22.0203 0240 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
21:40:22.0203 0240 PCI - ok
21:40:22.0218 0240 PCIDump - ok
21:40:22.0234 0240 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
21:40:22.0234 0240 PCIIde - ok
21:40:22.0265 0240 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
21:40:22.0265 0240 Pcmcia - ok
21:40:22.0281 0240 PDCOMP - ok
21:40:22.0296 0240 PDFRAME - ok
21:40:22.0312 0240 PDRELI - ok
21:40:22.0328 0240 PDRFRAME - ok
21:40:22.0343 0240 perc2 - ok
21:40:22.0359 0240 perc2hib - ok
21:40:22.0406 0240 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
21:40:22.0421 0240 PlugPlay - ok
21:40:22.0453 0240 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
21:40:22.0453 0240 PolicyAgent - ok
21:40:22.0468 0240 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:40:22.0468 0240 PptpMiniport - ok
21:40:22.0484 0240 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
21:40:22.0500 0240 ProtectedStorage - ok
21:40:22.0515 0240 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
21:40:22.0515 0240 PSched - ok
21:40:22.0531 0240 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:40:22.0531 0240 Ptilink - ok
21:40:22.0546 0240 ql1080 - ok
21:40:22.0562 0240 Ql10wnt - ok
21:40:22.0578 0240 ql12160 - ok
21:40:22.0593 0240 ql1240 - ok
21:40:22.0609 0240 ql1280 - ok
21:40:22.0765 0240 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:40:22.0765 0240 RasAcd - ok
21:40:22.0812 0240 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
21:40:22.0812 0240 RasAuto - ok
21:40:22.0843 0240 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:40:22.0843 0240 Rasl2tp - ok
21:40:22.0890 0240 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
21:40:22.0890 0240 RasMan - ok
21:40:22.0906 0240 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:40:22.0906 0240 RasPppoe - ok
21:40:22.0921 0240 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
21:40:22.0937 0240 Raspti - ok
21:40:22.0968 0240 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:40:22.0968 0240 Rdbss - ok
21:40:22.0984 0240 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:40:22.0984 0240 RDPCDD - ok
21:40:23.0031 0240 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
21:40:23.0046 0240 RDPWD - ok
21:40:23.0109 0240 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
21:40:23.0125 0240 RDSessMgr - ok
21:40:23.0140 0240 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
21:40:23.0156 0240 redbook - ok
21:40:23.0203 0240 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
21:40:23.0203 0240 RemoteAccess - ok
21:40:23.0296 0240 [ 82FC38FE6B5AE9223EF28C02A123D1DF ] Response Hardware C:\Program Files\SMART Technologies\Education Software\ResponseHardwareService.exe
21:40:23.0343 0240 Response Hardware - ok
21:40:23.0375 0240 [ 851C30DF2807FCFA21E4C681A7D6440E ] RFCOMM C:\WINDOWS\system32\DRIVERS\rfcomm.sys
21:40:23.0375 0240 RFCOMM - ok
21:40:23.0484 0240 [ 8CFCA7E2FD4B57C2BEF929C1C1A4C56E ] RichVideo C:\Program Files\CyberLink\Shared files\RichVideo.exe
21:40:23.0484 0240 RichVideo - ok
21:40:23.0531 0240 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
21:40:23.0531 0240 RpcLocator - ok
21:40:23.0609 0240 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\system32\rpcss.dll
21:40:23.0609 0240 RpcSs - ok
21:40:23.0656 0240 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
21:40:23.0656 0240 RSVP - ok
21:40:23.0703 0240 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
21:40:23.0703 0240 rtl8139 - ok
21:40:23.0718 0240 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
21:40:23.0718 0240 SamSs - ok
21:40:23.0765 0240 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
21:40:23.0765 0240 SCardSvr - ok
21:40:23.0843 0240 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
21:40:23.0843 0240 Schedule - ok
21:40:23.0875 0240 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:40:23.0875 0240 Secdrv - ok
21:40:23.0906 0240 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
21:40:23.0906 0240 seclogon - ok
21:40:23.0953 0240 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
21:40:23.0953 0240 SENS - ok
21:40:23.0968 0240 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
21:40:23.0984 0240 Serial - ok
21:40:24.0046 0240 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
21:40:24.0046 0240 Sfloppy - ok
21:40:24.0093 0240 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
21:40:24.0093 0240 SharedAccess - ok
21:40:24.0171 0240 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:40:24.0171 0240 ShellHWDetection - ok
21:40:24.0187 0240 Simbad - ok
21:40:24.0281 0240 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate E:\Program Files\Skype\Updater\Updater.exe
21:40:24.0312 0240 SkypeUpdate - ok
21:40:24.0484 0240 [ 84CC5357D353A498C2A5A993ABAA3B22 ] SMART Board Service C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe
21:40:25.0328 0240 SMART Board Service - ok
21:40:25.0390 0240 [ 375CF1F67763D729CAB20AD44AB2A732 ] SMART Display Controller C:\Program Files\SMART Technologies\Education Software\UCService.exe
21:40:25.0484 0240 SMART Display Controller - ok
21:40:25.0515 0240 Sparrow - ok
21:40:25.0578 0240 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
21:40:25.0578 0240 splitter - ok
21:40:25.0625 0240 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
21:40:25.0625 0240 Spooler - ok
21:40:25.0687 0240 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
21:40:25.0687 0240 sr - ok
21:40:25.0718 0240 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
21:40:25.0718 0240 srservice - ok
21:40:25.0828 0240 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
21:40:25.0828 0240 Srv - ok
21:40:25.0875 0240 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
21:40:25.0875 0240 SSDPSRV - ok
21:40:25.0937 0240 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
21:40:25.0937 0240 stisvc - ok
21:40:25.0953 0240 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
21:40:25.0953 0240 swenum - ok
21:40:26.0000 0240 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
21:40:26.0000 0240 swmidi - ok
21:40:26.0015 0240 SwPrv - ok
21:40:26.0031 0240 symc810 - ok
21:40:26.0046 0240 symc8xx - ok
21:40:26.0062 0240 sym_hi - ok
21:40:26.0078 0240 sym_u3 - ok
21:40:26.0093 0240 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
21:40:26.0093 0240 sysaudio - ok
21:40:26.0140 0240 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
21:40:26.0140 0240 SysmonLog - ok
21:40:26.0156 0240 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
21:40:26.0171 0240 TapiSrv - ok
21:40:26.0218 0240 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:40:26.0218 0240 Tcpip - ok
21:40:26.0265 0240 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
21:40:26.0265 0240 TDPIPE - ok
21:40:26.0281 0240 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
21:40:26.0281 0240 TDTCP - ok
21:40:26.0312 0240 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
21:40:26.0312 0240 TermDD - ok
21:40:26.0359 0240 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
21:40:26.0359 0240 TermService - ok
21:40:26.0390 0240 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
21:40:26.0406 0240 Themes - ok
21:40:26.0421 0240 TosIde - ok
21:40:26.0437 0240 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
21:40:26.0437 0240 TrkWks - ok
21:40:26.0484 0240 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
21:40:26.0500 0240 Udfs - ok
21:40:26.0515 0240 ultra - ok
21:40:26.0562 0240 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
21:40:26.0578 0240 Update - ok
21:40:26.0593 0240 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
21:40:26.0609 0240 upnphost - ok
21:40:26.0640 0240 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
21:40:26.0640 0240 UPS - ok
21:40:26.0671 0240 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:40:26.0671 0240 usbehci - ok
21:40:26.0687 0240 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:40:26.0687 0240 usbhub - ok
21:40:26.0734 0240 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:40:26.0734 0240 usbscan - ok
21:40:26.0765 0240 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:40:26.0781 0240 USBSTOR - ok
21:40:26.0796 0240 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:40:26.0796 0240 usbuhci - ok
21:40:26.0828 0240 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
21:40:26.0843 0240 VgaSave - ok
21:40:26.0843 0240 ViaIde - ok
21:40:26.0875 0240 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
21:40:26.0875 0240 VolSnap - ok
21:40:26.0921 0240 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
21:40:26.0921 0240 VSS - ok
21:40:26.0937 0240 vToolbarUpdater14.2.0 - ok
21:40:26.0984 0240 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
21:40:26.0984 0240 W32Time - ok
21:40:27.0000 0240 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:40:27.0015 0240 Wanarp - ok
21:40:27.0015 0240 WDICA - ok
21:40:27.0046 0240 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
21:40:27.0046 0240 wdmaud - ok
21:40:27.0062 0240 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
21:40:27.0078 0240 WebClient - ok
21:40:27.0156 0240 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
21:40:27.0171 0240 winmgmt - ok
21:40:27.0234 0240 [ 4D34CEDD74BDBF2B6A935EAE3BF80543 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
21:40:27.0265 0240 WinRM - ok
21:40:27.0328 0240 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
21:40:27.0328 0240 WmdmPmSN - ok
21:40:27.0375 0240 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:40:27.0375 0240 WmiApSrv - ok
21:40:27.0468 0240 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
21:40:27.0531 0240 WMPNetworkSvc - ok
21:40:27.0562 0240 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
21:40:27.0562 0240 WpdUsb - ok
21:40:27.0656 0240 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:40:27.0687 0240 WPFFontCache_v0400 - ok
21:40:27.0734 0240 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
21:40:27.0734 0240 wscsvc - ok
21:40:27.0765 0240 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
21:40:27.0781 0240 wuauserv - ok
21:40:27.0812 0240 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:40:27.0812 0240 WudfPf - ok
21:40:27.0843 0240 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:40:27.0843 0240 WudfRd - ok
21:40:27.0875 0240 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
21:40:27.0890 0240 WudfSvc - ok
21:40:28.0000 0240 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
21:40:28.0000 0240 WZCSVC - ok
21:40:28.0062 0240 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll

[Fucza]

pokračování...
21:40:28.0062 0240 xmlprov - ok
21:40:28.0093 0240 ================ Scan global ===============================
21:40:28.0140 0240 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
21:40:28.0203 0240 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
21:40:28.0234 0240 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
21:40:28.0250 0240 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
21:40:28.0265 0240 [Global] - ok
21:40:28.0265 0240 ================ Scan MBR ==================================
21:40:28.0281 0240 [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk0\DR0
21:40:28.0484 0240 \Device\Harddisk0\DR0 - ok
21:40:28.0515 0240 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk1\DR1
21:40:28.0703 0240 \Device\Harddisk1\DR1 - ok
21:40:28.0703 0240 ================ Scan VBR ==================================
21:40:28.0703 0240 [ 69E36A40C7A67BC2BB6F80905AEF78D2 ] \Device\Harddisk0\DR0\Partition1
21:40:28.0703 0240 \Device\Harddisk0\DR0\Partition1 - ok
21:40:28.0734 0240 [ 62C48E6A69A268CAD98F1CD456BCA531 ] \Device\Harddisk0\DR0\Partition2
21:40:28.0734 0240 \Device\Harddisk0\DR0\Partition2 - ok
21:40:28.0750 0240 [ 77FF2295829E0F9BD973B1BF960D9881 ] \Device\Harddisk0\DR0\Partition3
21:40:28.0750 0240 \Device\Harddisk0\DR0\Partition3 - ok
21:40:28.0765 0240 [ D801BC44DB01C0C472F10E206147C2C6 ] \Device\Harddisk1\DR1\Partition1
21:40:28.0765 0240 \Device\Harddisk1\DR1\Partition1 - ok
21:40:28.0781 0240 ============================================================
21:40:28.0781 0240 Scan finished
21:40:28.0781 0240 ============================================================
21:40:28.0796 2704 Detected object count: 0
21:40:28.0796 2704 Actual detected object count: 0
21:40:41.0359 0248 ============================================================
21:40:41.0359 0248 Scan started
21:40:41.0359 0248 Mode: Manual;
21:40:41.0359 0248 ============================================================
21:40:41.0890 0248 ================ Scan system memory ========================
21:40:41.0906 0248 System memory - ok
21:40:41.0906 0248 ================ Scan services =============================
21:40:42.0031 0248 Abiosdsk - ok
21:40:42.0046 0248 abp480n5 - ok
21:40:42.0078 0248 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:40:42.0093 0248 ACPI - ok
21:40:42.0140 0248 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
21:40:42.0140 0248 ACPIEC - ok
21:40:42.0156 0248 adpu160m - ok
21:40:42.0187 0248 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
21:40:42.0187 0248 aec - ok
21:40:42.0234 0248 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
21:40:42.0234 0248 AFD - ok
21:40:42.0281 0248 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
21:40:42.0281 0248 agp440 - ok
21:40:42.0296 0248 Aha154x - ok
21:40:42.0312 0248 aic78u2 - ok
21:40:42.0328 0248 aic78xx - ok
21:40:42.0421 0248 [ E34E007C52CEA00B8FFAABF15AE1EFF9 ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
21:40:42.0421 0248 ALCXWDM - ok
21:40:42.0468 0248 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
21:40:42.0468 0248 Alerter - ok
21:40:42.0515 0248 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
21:40:42.0515 0248 ALG - ok
21:40:42.0531 0248 AliIde - ok
21:40:42.0546 0248 amsint - ok
21:40:42.0578 0248 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:40:42.0578 0248 Arp1394 - ok
21:40:42.0593 0248 asc - ok
21:40:42.0609 0248 asc3350p - ok
21:40:42.0625 0248 asc3550 - ok
21:40:42.0734 0248 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
21:40:42.0734 0248 aspnet_state - ok
21:40:42.0750 0248 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:40:42.0765 0248 AsyncMac - ok
21:40:42.0796 0248 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
21:40:42.0812 0248 atapi - ok
21:40:42.0812 0248 Atdisk - ok
21:40:42.0859 0248 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:40:42.0859 0248 Atmarpc - ok
21:40:42.0906 0248 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
21:40:42.0906 0248 AudioSrv - ok
21:40:42.0953 0248 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
21:40:42.0953 0248 audstub - ok
21:40:43.0281 0248 [ 231B6AD3DB2866BC3FDB9979E6B2B61E ] AVGIDSAgent C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
21:40:43.0328 0248 AVGIDSAgent - ok
21:40:43.0359 0248 [ EF67527CC2AD77D22AB1405C6470407E ] AVGIDSDriver C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
21:40:43.0359 0248 AVGIDSDriver - ok
21:40:43.0406 0248 [ 61A7E0B02F82CFF3DB2445BBE50B3589 ] AVGIDSFilter C:\WINDOWS\system32\DRIVERS\avgidsfilterx.sys
21:40:43.0406 0248 AVGIDSFilter - ok
21:40:43.0437 0248 [ D63D83659EEDF60B3A3E620281A888E5 ] AVGIDSHX C:\WINDOWS\system32\DRIVERS\avgidshx.sys
21:40:43.0453 0248 AVGIDSHX - ok
21:40:43.0484 0248 [ BAF975B72062F53D327788E99D64197E ] AVGIDSShim C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
21:40:43.0484 0248 AVGIDSShim - ok
21:40:43.0515 0248 [ 6671345A6E2669AF1966BAF68EC5620F ] Avgldx86 C:\WINDOWS\system32\DRIVERS\avgldx86.sys
21:40:43.0515 0248 Avgldx86 - ok
21:40:43.0531 0248 [ CCDD61545AAEA265977E4B1EFDC74E8C ] Avgmfx86 C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
21:40:43.0531 0248 Avgmfx86 - ok
21:40:43.0546 0248 [ 1FD90B28D2C3100BF4500199C8AD6358 ] Avgrkx86 C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
21:40:43.0546 0248 Avgrkx86 - ok
21:40:43.0609 0248 [ C0BC3B2E3FD625E7F55E1FF863E94592 ] Avgtdix C:\WINDOWS\system32\DRIVERS\avgtdix.sys
21:40:43.0609 0248 Avgtdix - ok
21:40:43.0656 0248 [ CAE7B6E4D7EB17829C526153D19B9C95 ] avgtp C:\WINDOWS\system32\drivers\avgtpx86.sys
21:40:43.0656 0248 avgtp - ok
21:40:43.0703 0248 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files\AVG\AVG2012\avgwdsvc.exe
21:40:43.0703 0248 avgwd - ok
21:40:43.0750 0248 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
21:40:43.0750 0248 Beep - ok
21:40:43.0812 0248 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
21:40:43.0828 0248 BITS - ok
21:40:43.0859 0248 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
21:40:43.0859 0248 Browser - ok
21:40:43.0906 0248 [ B279426E3C0C344893ED78A613A73BDE ] BthEnum C:\WINDOWS\system32\DRIVERS\BthEnum.sys
21:40:43.0906 0248 BthEnum - ok
21:40:43.0921 0248 [ FCA6F069597B62D42495191ACE3FC6C1 ] BTHMODEM C:\WINDOWS\system32\DRIVERS\bthmodem.sys
21:40:43.0937 0248 BTHMODEM - ok
21:40:43.0953 0248 [ 80602B8746D3738F5886CE3D67EF06B6 ] BthPan C:\WINDOWS\system32\DRIVERS\bthpan.sys
21:40:43.0968 0248 BthPan - ok
21:40:44.0000 0248 [ F338662A6C1FC11DD9508F6DFF2C06A2 ] BTHPORT C:\WINDOWS\system32\Drivers\BTHport.sys
21:40:44.0000 0248 BTHPORT - ok
21:40:44.0046 0248 [ 70CA4B3F634C9DCA200832F8DA76E009 ] BthServ C:\WINDOWS\System32\bthserv.dll
21:40:44.0046 0248 BthServ - ok
21:40:44.0062 0248 [ 61364CD71EF63B0F038B7E9DF00F1EFA ] BTHUSB C:\WINDOWS\system32\Drivers\BTHUSB.sys
21:40:44.0062 0248 BTHUSB - ok
21:40:44.0093 0248 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
21:40:44.0093 0248 cbidf2k - ok
21:40:44.0109 0248 cd20xrnt - ok
21:40:44.0156 0248 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
21:40:44.0156 0248 Cdaudio - ok
21:40:44.0187 0248 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
21:40:44.0187 0248 Cdfs - ok
21:40:44.0234 0248 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:40:44.0234 0248 Cdrom - ok
21:40:44.0250 0248 Changer - ok
21:40:44.0296 0248 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
21:40:44.0296 0248 CiSvc - ok
21:40:44.0312 0248 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
21:40:44.0312 0248 ClipSrv - ok
21:40:44.0343 0248 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:40:44.0343 0248 clr_optimization_v2.0.50727_32 - ok
21:40:44.0437 0248 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:40:44.0437 0248 clr_optimization_v4.0.30319_32 - ok
21:40:44.0453 0248 CmdIde - ok
21:40:44.0468 0248 COMSysApp - ok
21:40:44.0484 0248 Cpqarray - ok
21:40:44.0531 0248 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
21:40:44.0531 0248 CryptSvc - ok
21:40:44.0546 0248 dac2w2k - ok
21:40:44.0562 0248 dac960nt - ok
21:40:44.0640 0248 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
21:40:44.0640 0248 DcomLaunch - ok
21:40:44.0671 0248 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
21:40:44.0671 0248 Dhcp - ok
21:40:44.0703 0248 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
21:40:44.0703 0248 Disk - ok
21:40:44.0718 0248 dmadmin - ok
21:40:44.0781 0248 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
21:40:44.0796 0248 dmboot - ok
21:40:44.0812 0248 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
21:40:44.0812 0248 dmio - ok
21:40:44.0828 0248 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
21:40:44.0828 0248 dmload - ok
21:40:44.0859 0248 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
21:40:44.0859 0248 dmserver - ok
21:40:44.0906 0248 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
21:40:44.0906 0248 DMusic - ok
21:40:44.0953 0248 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
21:40:44.0953 0248 Dnscache - ok
21:40:45.0000 0248 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
21:40:45.0000 0248 Dot3svc - ok
21:40:45.0015 0248 dpti2o - ok
21:40:45.0031 0248 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
21:40:45.0031 0248 drmkaud - ok
21:40:45.0062 0248 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
21:40:45.0062 0248 EapHost - ok
21:40:45.0093 0248 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
21:40:45.0093 0248 ERSvc - ok
21:40:45.0156 0248 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
21:40:45.0156 0248 Eventlog - ok
21:40:45.0203 0248 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
21:40:45.0218 0248 EventSystem - ok
21:40:45.0250 0248 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
21:40:45.0250 0248 Fastfat - ok
21:40:45.0296 0248 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
21:40:45.0312 0248 FastUserSwitchingCompatibility - ok
21:40:45.0359 0248 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
21:40:45.0359 0248 Fdc - ok
21:40:45.0406 0248 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
21:40:45.0406 0248 Fips - ok
21:40:45.0515 0248 [ ACEFEEA621DCA62EFB7A7EEA59F5E91B ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
21:40:45.0531 0248 FLEXnet Licensing Service - ok
21:40:45.0562 0248 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:40:45.0562 0248 Flpydisk - ok
21:40:45.0609 0248 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
21:40:45.0625 0248 FltMgr - ok
21:40:45.0671 0248 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
21:40:45.0671 0248 FontCache3.0.0.0 - ok
21:40:45.0687 0248 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:40:45.0687 0248 Fs_Rec - ok
21:40:45.0718 0248 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:40:45.0718 0248 Ftdisk - ok
21:40:45.0765 0248 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:40:45.0765 0248 Gpc - ok
21:40:45.0843 0248 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:40:45.0843 0248 helpsvc - ok
21:40:45.0859 0248 HidServ - ok
21:40:45.0906 0248 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:40:45.0906 0248 hidusb - ok
21:40:45.0953 0248 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
21:40:45.0953 0248 hkmsvc - ok
21:40:45.0968 0248 hpn - ok
21:40:46.0015 0248 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
21:40:46.0015 0248 HTTP - ok
21:40:46.0046 0248 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
21:40:46.0046 0248 HTTPFilter - ok
21:40:46.0062 0248 i2omgmt - ok
21:40:46.0078 0248 i2omp - ok
21:40:46.0109 0248 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:40:46.0109 0248 i8042prt - ok
21:40:46.0203 0248 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:40:46.0218 0248 idsvc - ok
21:40:46.0250 0248 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
21:40:46.0250 0248 Imapi - ok
21:40:46.0296 0248 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
21:40:46.0312 0248 ImapiService - ok
21:40:46.0328 0248 ini910u - ok
21:40:46.0375 0248 [ 57D928E548B38502ABBA7A77A6EB7312 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
21:40:46.0375 0248 IntelIde - ok
21:40:46.0421 0248 [ 27B290D632AF2CF3CF40BFDDB7370985 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:40:46.0421 0248 intelppm - ok
21:40:46.0468 0248 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
21:40:46.0468 0248 Ip6Fw - ok
21:40:46.0500 0248 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:40:46.0500 0248 IpFilterDriver - ok
21:40:46.0515 0248 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:40:46.0515 0248 IpInIp - ok
21:40:46.0578 0248 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:40:46.0578 0248 IpNat - ok
21:40:46.0593 0248 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:40:46.0593 0248 IPSec - ok
21:40:46.0625 0248 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
21:40:46.0625 0248 IRENUM - ok
21:40:46.0671 0248 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:40:46.0671 0248 isapnp - ok
21:40:46.0921 0248 [ 999DB5F88C8E145CCA9D471E33227143 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
21:40:46.0921 0248 JavaQuickStarterService - ok
21:40:46.0968 0248 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:40:46.0968 0248 Kbdclass - ok
21:40:47.0000 0248 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
21:40:47.0000 0248 kmixer - ok
21:40:47.0046 0248 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
21:40:47.0046 0248 KSecDD - ok
21:40:47.0093 0248 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] LanmanServer C:\WINDOWS\System32\srvsvc.dll
21:40:47.0093 0248 LanmanServer - ok
21:40:47.0140 0248 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
21:40:47.0156 0248 lanmanworkstation - ok
21:40:47.0156 0248 lbrtfdc - ok
21:40:47.0218 0248 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
21:40:47.0218 0248 LmHosts - ok
21:40:47.0281 0248 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
21:40:47.0296 0248 MDM - ok
21:40:47.0328 0248 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
21:40:47.0328 0248 Messenger - ok
21:40:47.0375 0248 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
21:40:47.0375 0248 mnmdd - ok
21:40:47.0421 0248 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
21:40:47.0421 0248 mnmsrvc - ok
21:40:47.0468 0248 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
21:40:47.0468 0248 Modem - ok
21:40:47.0500 0248 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:40:47.0500 0248 Mouclass - ok
21:40:47.0546 0248 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:40:47.0546 0248 mouhid - ok
21:40:47.0578 0248 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
21:40:47.0578 0248 MountMgr - ok
21:40:47.0640 0248 [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:40:47.0640 0248 MozillaMaintenance - ok
21:40:47.0703 0248 [ CF105EE42E3F71E648CEBB3F666E1CF0 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
21:40:47.0703 0248 MpFilter - ok
21:40:47.0828 0248 [ A69630D039C38018689190234F866D77 ] MpKslb73564df C:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{B998F3E7-33A9-4B68-B459-BB6C279F94C7}\MpKslb73564df.sys
21:40:47.0828 0248 MpKslb73564df - ok
21:40:47.0843 0248 mraid35x - ok
21:40:47.0875 0248 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:40:47.0875 0248 MRxDAV - ok
21:40:47.0937 0248 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:40:47.0937 0248 MRxSmb - ok
21:40:47.0968 0248 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
21:40:47.0984 0248 MSDTC - ok
21:40:48.0015 0248 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
21:40:48.0015 0248 Msfs - ok
21:40:48.0031 0248 MSIServer - ok
21:40:48.0062 0248 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:40:48.0062 0248 MSKSSRV - ok
21:40:48.0125 0248 [ C1F19D2BACBEE9AB64D9AE69E9859AC0 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
21:40:48.0125 0248 MsMpSvc - ok
21:40:48.0156 0248 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:40:48.0156 0248 MSPCLOCK - ok
21:40:48.0171 0248 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
21:40:48.0171 0248 MSPQM - ok
21:40:48.0203 0248 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:40:48.0203 0248 mssmbios - ok
21:40:48.0250 0248 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
21:40:48.0265 0248 Mup - ok
21:40:48.0312 0248 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
21:40:48.0328 0248 napagent - ok
21:40:48.0359 0248 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
21:40:48.0359 0248 NDIS - ok
21:40:48.0406 0248 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:40:48.0406 0248 NdisTapi - ok
21:40:48.0453 0248 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:40:48.0453 0248 Ndisuio - ok
21:40:48.0484 0248 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:40:48.0484 0248 NdisWan - ok
21:40:48.0515 0248 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
21:40:48.0515 0248 NDProxy - ok
21:40:48.0562 0248 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
21:40:48.0562 0248 NetBIOS - ok
21:40:48.0609 0248 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
21:40:48.0609 0248 NetBT - ok
21:40:48.0656 0248 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
21:40:48.0656 0248 NetDDE - ok
21:40:48.0671 0248 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
21:40:48.0687 0248 NetDDEdsdm - ok
21:40:48.0718 0248 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
21:40:48.0718 0248 Netlogon - ok
21:40:48.0750 0248 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
21:40:48.0765 0248 Netman - ok
21:40:48.0796 0248 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:40:48.0812 0248 NetTcpPortSharing - ok
21:40:48.0843 0248 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:40:48.0859 0248 NIC1394 - ok
21:40:48.0875 0248 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
21:40:48.0890 0248 Nla - ok
21:40:48.0906 0248 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
21:40:48.0906 0248 Npfs - ok
21:40:48.0937 0248 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
21:40:48.0937 0248 Ntfs - ok
21:40:48.0953 0248 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
21:40:48.0968 0248 NtLmSsp - ok
21:40:49.0078 0248 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
21:40:49.0078 0248 NtmsSvc - ok
21:40:49.0109 0248 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
21:40:49.0109 0248 Null - ok
21:40:49.0359 0248 [ 8E72E452B9CC1E455D19E3C9FA964D37 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
21:40:49.0453 0248 nv - ok
21:40:49.0500 0248 [ 934833B3CD462A6F8A96F64D024C8B20 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
21:40:49.0500 0248 NVSvc - ok
21:40:49.0531 0248 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:40:49.0546 0248 NwlnkFlt - ok
21:40:49.0562 0248 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:40:49.0562 0248 NwlnkFwd - ok
21:40:49.0609 0248 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:40:49.0609 0248 ohci1394 - ok
21:40:49.0625 0248 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\drivers\Parport.sys
21:40:49.0640 0248 Parport - ok
21:40:49.0671 0248 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
21:40:49.0671 0248 PartMgr - ok
21:40:49.0703 0248 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
21:40:49.0718 0248 ParVdm - ok
21:40:49.0734 0248 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
21:40:49.0734 0248 PCI - ok
21:40:49.0750 0248 PCIDump - ok
21:40:49.0765 0248 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
21:40:49.0765 0248 PCIIde - ok
21:40:49.0796 0248 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
21:40:49.0796 0248 Pcmcia - ok
21:40:49.0812 0248 PDCOMP - ok
21:40:49.0828 0248 PDFRAME - ok
21:40:49.0843 0248 PDRELI - ok
21:40:49.0859 0248 PDRFRAME - ok
21:40:49.0875 0248 perc2 - ok
21:40:49.0890 0248 perc2hib - ok
21:40:49.0953 0248 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
21:40:49.0953 0248 PlugPlay - ok
21:40:49.0984 0248 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
21:40:49.0984 0248 PolicyAgent - ok
21:40:50.0015 0248 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:40:50.0031 0248 PptpMiniport - ok
21:40:50.0031 0248 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
21:40:50.0046 0248 ProtectedStorage - ok
21:40:50.0062 0248 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
21:40:50.0062 0248 PSched - ok
21:40:50.0078 0248 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:40:50.0078 0248 Ptilink - ok
21:40:50.0093 0248 ql1080 - ok
21:40:50.0109 0248 Ql10wnt - ok
21:40:50.0125 0248 ql12160 - ok
21:40:50.0140 0248 ql1240 - ok
21:40:50.0156 0248 ql1280 - ok
21:40:50.0187 0248 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:40:50.0187 0248 RasAcd - ok
21:40:50.0234 0248 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
21:40:50.0234 0248 RasAuto - ok
21:40:50.0250 0248 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:40:50.0250 0248 Rasl2tp - ok
21:40:50.0281 0248 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
21:40:50.0281 0248 RasMan - ok
21:40:50.0296 0248 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:40:50.0312 0248 RasPppoe - ok
21:40:50.0328 0248 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
21:40:50.0328 0248 Raspti - ok
21:40:50.0359 0248 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:40:50.0359 0248 Rdbss - ok
21:40:50.0390 0248 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:40:50.0390 0248 RDPCDD - ok
21:40:50.0484 0248 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
21:40:50.0484 0248 RDPWD - ok
21:40:50.0531 0248 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
21:40:50.0531 0248 RDSessMgr - ok
21:40:50.0562 0248 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
21:40:50.0562 0248 redbook - ok
21:40:50.0609 0248 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
21:40:50.0609 0248 RemoteAccess - ok
21:40:50.0687 0248 [ 82FC38FE6B5AE9223EF28C02A123D1DF ] Response Hardware C:\Program Files\SMART Technologies\Education Software\ResponseHardwareService.exe
21:40:50.0703 0248 Response Hardware - ok
21:40:50.0750 0248 [ 851C30DF2807FCFA21E4C681A7D6440E ] RFCOMM C:\WINDOWS\system32\DRIVERS\rfcomm.sys
21:40:50.0750 0248 RFCOMM - ok
21:40:50.0859 0248 [ 8CFCA7E2FD4B57C2BEF929C1C1A4C56E ] RichVideo C:\Program Files\CyberLink\Shared files\RichVideo.exe
21:40:50.0859 0248 RichVideo - ok
21:40:50.0906 0248 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
21:40:50.0906 0248 RpcLocator - ok
21:40:50.0953 0248 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\system32\rpcss.dll
21:40:50.0968 0248 RpcSs - ok
21:40:51.0000 0248 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
21:40:51.0015 0248 RSVP - ok
21:40:51.0046 0248 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
21:40:51.0046 0248 rtl8139 - ok
21:40:51.0062 0248 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
21:40:51.0078 0248 SamSs - ok
21:40:51.0109 0248 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
21:40:51.0125 0248 SCardSvr - ok
21:40:51.0187 0248 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
21:40:51.0187 0248 Schedule - ok
21:40:51.0218 0248 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:40:51.0218 0248 Secdrv - ok
21:40:51.0265 0248 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
21:40:51.0281 0248 seclogon - ok
21:40:51.0296 0248 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
21:40:51.0312 0248 SENS - ok
21:40:51.0343 0248 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
21:40:51.0343 0248 Serial - ok
21:40:51.0406 0248 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
21:40:51.0406 0248 Sfloppy - ok
21:40:51.0453 0248 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
21:40:51.0468 0248 SharedAccess - ok
21:40:51.0515 0248 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:40:51.0515 0248 ShellHWDetection - ok
21:40:51.0531 0248 Simbad - ok
21:40:51.0609 0248 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate E:\Program Files\Skype\Updater\Updater.exe
21:40:51.0625 0248 SkypeUpdate - ok
21:40:51.0718 0248 [ 84CC5357D353A498C2A5A993ABAA3B22 ] SMART Board Service C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe
21:40:51.0734 0248 SMART Board Service - ok
21:40:51.0906 0248 [ 375CF1F67763D729CAB20AD44AB2A732 ] SMART Display Controller C:\Program Files\SMART Technologies\Education Software\UCService.exe
21:40:51.0921 0248 SMART Display Controller - ok
21:40:51.0953 0248 Sparrow - ok
21:40:52.0000 0248 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
21:40:52.0000 0248 splitter - ok
21:40:52.0031 0248 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
21:40:52.0046 0248 Spooler - ok
21:40:52.0093 0248 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
21:40:52.0093 0248 sr - ok
21:40:52.0140 0248 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
21:40:52.0156 0248 srservice - ok
21:40:52.0203 0248 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
21:40:52.0203 0248 Srv - ok
21:40:52.0250 0248 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
21:40:52.0265 0248 SSDPSRV - ok
21:40:52.0312 0248 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
21:40:52.0312 0248 stisvc - ok
21:40:52.0343 0248 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
21:40:52.0343 0248 swenum - ok
21:40:52.0390 0248 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
21:40:52.0390 0248 swmidi - ok
21:40:52.0406 0248 SwPrv - ok
21:40:52.0421 0248 symc810 - ok
21:40:52.0437 0248 symc8xx - ok
21:40:52.0453 0248 sym_hi - ok
21:40:52.0468 0248 sym_u3 - ok
21:40:52.0640 0248 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
21:40:52.0640 0248 sysaudio - ok
21:40:52.0687 0248 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
21:40:52.0687 0248 SysmonLog - ok
21:40:52.0734 0248 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
21:40:52.0750 0248 TapiSrv - ok
21:40:52.0812 0248 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:40:52.0812 0248 Tcpip - ok
21:40:52.0843 0248 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
21:40:52.0859 0248 TDPIPE - ok
21:40:52.0875 0248 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
21:40:52.0875 0248 TDTCP - ok
21:40:52.0921 0248 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
21:40:52.0921 0248 TermDD - ok
21:40:52.0953 0248 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
21:40:52.0968 0248 TermService - ok
21:40:53.0000 0248 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
21:40:53.0000 0248 Themes - ok
21:40:53.0015 0248 TosIde - ok
21:40:53.0031 0248 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
21:40:53.0046 0248 TrkWks - ok
21:40:53.0093 0248 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
21:40:53.0093 0248 Udfs - ok
21:40:53.0109 0248 ultra - ok
21:40:53.0171 0248 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
21:40:53.0171 0248 Update - ok
21:40:53.0218 0248 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
21:40:53.0234 0248 upnphost - ok
21:40:53.0265 0248 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
21:40:53.0265 0248 UPS - ok
21:40:53.0296 0248 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:40:53.0296 0248 usbehci - ok
21:40:53.0312 0248 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:40:53.0312 0248 usbhub - ok
21:40:53.0359 0248 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:40:53.0359 0248 usbscan - ok
21:40:53.0406 0248 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:40:53.0406 0248 USBSTOR - ok
21:40:53.0437 0248 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:40:53.0468 0248 usbuhci - ok
21:40:53.0484 0248 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
21:40:53.0484 0248 VgaSave - ok
21:40:53.0500 0248 ViaIde - ok
21:40:53.0531 0248 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
21:40:53.0531 0248 VolSnap - ok
21:40:53.0578 0248 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
21:40:53.0578 0248 VSS - ok
21:40:53.0593 0248 vToolbarUpdater14.2.0 - ok
21:40:53.0656 0248 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
21:40:53.0671 0248 W32Time - ok
21:40:53.0703 0248 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:40:53.0703 0248 Wanarp - ok
21:40:53.0718 0248 WDICA - ok
21:40:53.0734 0248 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
21:40:53.0734 0248 wdmaud - ok
21:40:53.0765 0248 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
21:40:53.0765 0248 WebClient - ok
21:40:53.0859 0248 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
21:40:53.0859 0248 winmgmt - ok
21:40:53.0937 0248 [ 4D34CEDD74BDBF2B6A935EAE3BF80543 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
21:40:53.0953 0248 WinRM - ok
21:40:54.0015 0248 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
21:40:54.0015 0248 WmdmPmSN - ok
21:40:54.0078 0248 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:40:54.0078 0248 WmiApSrv - ok
21:40:54.0171 0248 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
21:40:54.0187 0248 WMPNetworkSvc - ok
21:40:54.0203 0248 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
21:40:54.0203 0248 WpdUsb - ok
21:40:54.0296 0248 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:40:54.0312 0248 WPFFontCache_v0400 - ok
21:40:54.0343 0248 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
21:40:54.0359 0248 wscsvc - ok
21:40:54.0375 0248 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
21:40:54.0390 0248 wuauserv - ok
21:40:54.0421 0248 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:40:54.0437 0248 WudfPf - ok
21:40:54.0468 0248 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:40:54.0468 0248 WudfRd - ok
21:40:54.0500 0248 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
21:40:54.0515 0248 WudfSvc - ok
21:40:54.0578 0248 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
21:40:54.0593 0248 WZCSVC - ok
21:40:54.0640 0248 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
21:40:54.0640 0248 xmlprov - ok
21:40:54.0671 0248 ================ Scan global ===============================
21:40:54.0718 0248 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
21:40:54.0750 0248 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
21:40:54.0796 0248 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
21:40:54.0812 0248 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
21:40:54.0812 0248 [Global] - ok
21:40:54.0828 0248 ================ Scan MBR ==================================
21:40:54.0843 0248 [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk0\DR0
21:40:55.0093 0248 \Device\Harddisk0\DR0 - ok
21:40:55.0109 0248 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk1\DR1
21:40:55.0312 0248 \Device\Harddisk1\DR1 - ok
21:40:55.0328 0248 ================ Scan VBR ==================================
21:40:55.0328 0248 [ 69E36A40C7A67BC2BB6F80905AEF78D2 ] \Device\Harddisk0\DR0\Partition1
21:40:55.0328 0248 \Device\Harddisk0\DR0\Partition1 - ok
21:40:55.0359 0248 [ 62C48E6A69A268CAD98F1CD456BCA531 ] \Device\Harddisk0\DR0\Partition2
21:40:55.0359 0248 \Device\Harddisk0\DR0\Partition2 - ok
21:40:55.0375 0248 [ 77FF2295829E0F9BD973B1BF960D9881 ] \Device\Harddisk0\DR0\Partition3
21:40:55.0375 0248 \Device\Harddisk0\DR0\Partition3 - ok
21:40:55.0390 0248 [ D801BC44DB01C0C472F10E206147C2C6 ] \Device\Harddisk1\DR1\Partition1
21:40:55.0390 0248 \Device\Harddisk1\DR1\Partition1 - ok
21:40:55.0406 0248 ============================================================
21:40:55.0406 0248 Scan finished
21:40:55.0406 0248 ============================================================
21:40:55.0421 3104 Detected object count: 0
21:40:55.0421 3104 Actual detected object count: 0
21:41:04.0078 1780 Deinitialize success

ComboFix 13-03-21.01 - User1 21.03.2013 22:23:00.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.3455.2858 [GMT 1:00]
Spuštěný z: c:\documents and settings\User1\Plocha\ComboFix.exe
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\Cache
c:\windows\system32\Cache\08580b157d111c03.fb
c:\windows\system32\Cache\26c630d098e22dd5.fb
c:\windows\system32\Cache\272512937d9e61a4.fb
c:\windows\system32\Cache\287204568329e189.fb
c:\windows\system32\Cache\28bc8f716fd76a47.fb
c:\windows\system32\Cache\2c53092c95605355.fb
c:\windows\system32\Cache\3039695b29fcd375.fb
c:\windows\system32\Cache\31a0997e9a5b5eb3.fb
c:\windows\system32\Cache\32c84fe32bb74d60.fb
c:\windows\system32\Cache\3917078cb68ec657.fb
c:\windows\system32\Cache\590ba23ce359fd0c.fb
c:\windows\system32\Cache\610289e025a3ee9a.fb
c:\windows\system32\Cache\651c5d3cdbfb8bd1.fb
c:\windows\system32\Cache\6c59ac5e7e7a3ad0.fb
c:\windows\system32\Cache\6d03dad1035885d3.fb
c:\windows\system32\Cache\95f567698be8a182.fb
c:\windows\system32\Cache\a8556537add6dfc5.fb
c:\windows\system32\Cache\ad10a52aff5e038d.fb
c:\windows\system32\Cache\c1fa887b03019701.fb
c:\windows\system32\Cache\c4d28dca2e7648be.fb
c:\windows\system32\Cache\d201ef9910cd39de.fb
c:\windows\system32\Cache\d2e94710a5708128.fb
c:\windows\system32\Cache\d79b9dfe81484ec4.fb
c:\windows\system32\Cache\db231899d75dadfb.fb
c:\windows\system32\Cache\f371478fceae7a27.fb
c:\windows\system32\Cache\f998975c9cc711ee.fb
c:\windows\system32\Cache\ffb72244459ca7de.fb
c:\windows\system32\SETC4.tmp
c:\windows\system32\SETC9.tmp
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\regtlib.exe
F:\install.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-02-21 do 2013-03-21 )))))))))))))))))))))))))))))))
.
.
2013-03-21 21:15 . 2013-03-21 21:15 29904 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{B998F3E7-33A9-4B68-B459-BB6C279F94C7}\MpKsl6ea24ed2.sys
2013-03-21 16:08 . 2013-03-15 07:21 7108640 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{B998F3E7-33A9-4B68-B459-BB6C279F94C7}\mpengine.dll
2013-03-20 23:19 . 2013-02-12 00:32 12928 -c----w- c:\windows\system32\dllcache\usb8023x.sys
2013-03-20 22:31 . 2013-03-20 22:31 -------- d-----w- c:\documents and settings\User1\Data aplikací\Malwarebytes
2013-03-20 22:28 . 2013-03-20 22:28 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2013-03-20 22:27 . 2012-12-14 15:49 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-03-20 22:27 . 2013-03-20 22:30 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-03-19 19:48 . 2013-03-19 19:48 -------- d-----w- c:\documents and settings\User1\Local Settings\Data aplikací\Opera
2013-03-19 19:48 . 2013-03-19 19:48 -------- d-----w- c:\program files\Opera
2013-03-19 19:01 . 2013-03-07 14:30 96664 ----a-w- c:\program files\Mozilla Firefox\webapprt-stub.exe
2013-03-19 19:01 . 2013-03-07 14:30 170232 ----a-w- c:\program files\Mozilla Firefox\webapp-uninstaller.exe
2013-03-19 19:01 . 2013-03-07 14:30 770384 ----a-w- c:\program files\Mozilla Firefox\msvcr100.dll
2013-03-19 19:01 . 2013-03-07 14:30 421200 ----a-w- c:\program files\Mozilla Firefox\msvcp100.dll
2013-03-19 19:01 . 2013-03-07 14:30 74136 ----a-w- c:\program files\Mozilla Firefox\breakpadinjector.dll
2013-03-19 18:56 . 2013-03-19 19:02 -------- d-----w- c:\program files\Mozilla Maintenance Service
2013-03-19 18:55 . 2013-03-07 14:30 2954136 ----a-w- c:\program files\Mozilla Firefox\gkmedias.dll
2013-03-19 18:55 . 2013-03-07 14:30 115608 ----a-w- c:\program files\Mozilla Firefox\maintenanceservice.exe
2013-03-19 18:55 . 2013-03-07 14:30 193584 ----a-w- c:\program files\Mozilla Firefox\maintenanceservice_installer.exe
2013-03-19 18:55 . 2013-03-07 14:30 131480 ----a-w- c:\program files\Mozilla Firefox\mozglue.dll
2013-03-19 15:55 . 2013-02-08 00:45 6954968 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-03-18 16:22 . 2013-03-18 16:22 -------- d-----w- c:\program files\Common Files\Java
2013-03-18 16:22 . 2013-03-18 16:20 143872 ----a-w- c:\windows\system32\javacpl.cpl
2013-03-18 16:21 . 2013-03-18 16:20 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-03-18 16:20 . 2013-03-18 16:20 -------- d-----w- c:\program files\Java
2013-03-12 20:21 . 2013-03-12 20:21 -------- d-----w- c:\documents and settings\User1\Local Settings\Data aplikací\Sun
2013-03-12 20:12 . 2013-03-18 16:20 861088 ----a-w- c:\windows\system32\npDeployJava1.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-18 16:20 . 2011-06-09 08:16 782240 ----a-w- c:\windows\system32\deployJava1.dll
2013-03-02 22:01 . 2012-09-04 12:34 33112 ----a-w- c:\windows\system32\drivers\avgtpx86.sys
2013-02-12 00:32 . 2008-04-14 12:00 12928 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-02-05 20:15 . 2008-04-14 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2013-02-05 20:15 . 2008-04-14 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2013-02-05 20:15 . 2008-04-14 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2013-02-05 05:53 . 2008-04-14 12:00 385024 ------w- c:\windows\system32\html.iec
2013-01-30 10:53 . 2011-06-08 09:00 232336 ------w- c:\windows\system32\MpSigStub.exe
2013-01-26 03:55 . 2008-04-14 12:00 552448 ----a-w- c:\windows\system32\oleaut32.dll
2013-01-20 14:59 . 2010-10-24 19:25 195296 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2013-01-09 21:47 . 2013-01-09 21:47 632064 ----a-w- c:\windows\system32\msvcr80.dll
2013-01-09 21:47 . 2013-01-09 21:47 554240 ----a-w- c:\windows\system32\msvcp80.dll
2013-01-09 21:47 . 2013-01-09 21:47 572928 ----a-w- c:\windows\system32\msvcp90.dll
2013-01-09 21:47 . 2013-01-09 21:47 655872 ----a-w- c:\windows\system32\msvcr90.dll
2013-01-09 21:47 . 2013-01-09 21:47 34048 ----a-w- c:\windows\system32\eEmpty.exe
2013-01-07 07:26 . 2008-04-14 08:06 2071936 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-01-07 07:26 . 2008-04-14 12:00 2195200 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-01-04 10:10 . 2008-04-14 12:00 1867264 ----a-w- c:\windows\system32\win32k.sys
2013-01-02 06:49 . 2008-04-14 12:00 148992 ----a-w- c:\windows\system32\mpg2splt.ax
2013-01-02 06:49 . 2008-04-14 12:00 1294848 ----a-w- c:\windows\system32\quartz.dll
2013-03-07 14:31 . 2011-06-08 07:29 263064 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="e:\program files\Skype\Phone\Skype.exe" [2012-07-13 17418928]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2003-04-24 54784]
"UpdateLBPShortCut"="c:\program files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2009-05-19 222504]
"UpdateP2GoShortCut"="c:\program files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2009-05-19 222504]
"PDVD8LanguageShortcut"="c:\program files\CyberLink\PowerDVD8\Language\Language.exe" [2009-04-15 50472]
"UpdatePPShortCut"="c:\program files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" [2009-05-19 222504]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-05-03 13529088]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-05-03 86016]
"Family Tree Builder Update"="c:\dokumenty\Stažené soubory\MyHeritage\Bin\FTBCheckUpdates.exe" [2011-09-15 225280]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-01-27 947152]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-11-19 2598520]
"SMART Board Tools"="c:\program files\SMART Technologies\Education Software\SMARTBoardTools.exe" [2012-03-09 10132336]
"SMART Ink"="c:\program files\SMART Technologies\Education Software\SMARTInk.exe" [2012-03-21 94064]
"Response Desktop Menu"="c:\program files\SMART Technologies\Education Software\DesktopMenu.exe" [2012-03-02 1960816]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-02-25 437160]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\CyberLink\\PowerDVD8\\PowerDVD8.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgmfapx.exe"=
"e:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\SMART Technologies\\Education Software\\UCGui.exe"=
"c:\\Program Files\\SMART Technologies\\Education Software\\SMARTSNMPAgent.exe"=
"c:\\Program Files\\SMART Technologies\\Education Software\\UCService.exe"=
"c:\\Program Files\\SMART Technologies\\Education Software\\VantageService.exe"=
"c:\\Program Files\\SMART Technologies\\Education Software\\ResponseSoftwareService.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgnsx.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgdiagex.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgemcx.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5985:TCP"= 5985:TCP:*:Disabled:Vzdálená správa systému Windows
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [19.4.2012 3:50 24896]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [13.9.2011 5:30 31952]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [7.10.2011 5:23 250080]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [11.7.2011 0:14 301920]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [4.9.2012 13:34 33112]
R1 MpKsl6ea24ed2;MpKsl6ea24ed2;c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{B998F3E7-33A9-4B68-B459-BB6C279F94C7}\MpKsl6ea24ed2.sys [21.3.2013 22:15 29904]
R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [14.2.2012 3:53 193288]
R2 Response Hardware;Response Hardware;c:\program files\SMART Technologies\Education Software\ResponseHardwareService.exe [2.3.2012 17:24 19312]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [23.12.2011 12:32 142176]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\avgidsfilterx.sys [23.12.2011 12:32 24144]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [23.12.2011 12:32 17232]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2012\avgidsagent.exe [2.11.2012 3:51 5174392]
S2 SkypeUpdate;Skype Updater;e:\program files\Skype\Updater\Updater.exe [13.7.2012 12:28 160944]
S2 SMART Display Controller;SMART Display Controller;c:\program files\SMART Technologies\Education Software\UCService.exe [21.3.2012 15:25 820592]
S2 vToolbarUpdater14.2.0;vToolbarUpdater14.2.0;c:\program files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe --> c:\program files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe [?]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MPKSL6EA24ED2
.
Obsah adresáře 'Naplánované úlohy'
.
2013-03-21 c:\windows\Tasks\Microsoft Antimalware Scheduled Scan.job
- c:\program files\Microsoft Security Client\MpCmdRun.exe [2013-01-27 10:11]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
mStart Page = hxxp://search.myheritage.com
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.100 10.0.0.200
FF - ProfilePath - c:\documents and settings\User1\Data aplikací\Mozilla\Firefox\Profiles\sahof05i.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - ExtSQL: 2013-03-06 18:14; {1E73965B-8B48-48be-9C8D-68B920ABC1C4}; c:\program files\AVG\AVG2012\Firefox4
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-Run-vProt - c:\program files\AVG Secure Search\vprot.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-03-21 22:31
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1715567821-1677128483-1606980848-1004\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
Celkový čas: 2013-03-21 22:33:52
ComboFix-quarantined-files.txt 2013-03-21 21:33
.
Před spuštěním: Volných bajtů: 128 327 454 720
Po spuštění: Volných bajtů: 128 732 073 984
.
- - End Of File - - 98ABD759EE1A745068F4122D52751C16

[jaro3]

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Delete“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
Dva antiviry , jeden odinstaluj , pak znovu Combofix.

[Fucza]

U toho Combofixu byl trochu problém. U fáze 50 se to seklo a ani za boha (20 minut) se to nehlo. Po restartu a novém spuštění se to provedlo klasicky. Nikdy však nedošlo k automatickému restartu (Ani u AdwCleaner, ani u Combofix), Netuším proč. Z antivirů jsem nechal to AVG. Díky,

# AdwCleaner v2.115 - Log vytvooen 22/03/2013 v 15:14:41
# Aktualizováno 17/03/2013 Xplode
# Operaení systém : Microsoft Windows XP Service Pack 3 (32 bits)
# Uživatel : User1 - TRILINE
# Spuštin systém : Normální
# Spuštino z : C:\Documents and Settings\User1\Plocha\adwcleaner.exe
# Volba [Vymazat]


***** [Služby] *****


***** [Soubory / Složky] *****


***** [Registry] *****


***** [Internetové prohlížeee] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry jsou eisté.

-\\ Mozilla Firefox v19.0.2 (en-US)

Soubor : C:\Documents and Settings\User1\Data aplikací\Mozilla\Firefox\Profiles\sahof05i.default\prefs.js

[OK] Soubor je eistý.

-\\ Opera v12.14.1738.0

Soubor : C:\Documents and Settings\User1\Data aplikací\Opera\Opera\operaprefs.ini

[OK] Soubor je eistý.

*************************

AdwCleaner[R1].txt - [15519 octets] - [21/03/2013 00:30:46]
AdwCleaner[R2].txt - [15580 octets] - [21/03/2013 17:14:20]
AdwCleaner[S1].txt - [15310 octets] - [21/03/2013 17:15:53]
AdwCleaner[S2].txt - [1034 octets] - [22/03/2013 15:14:41]

########## EOF - C:\AdwCleaner[S2].txt - [1094 octets] ##########


ComboFix 13-03-21.02 - User1 22.03.2013 16:27:36.3.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.3455.2858 [GMT 1:00]
Spuštěný z: c:\documents and settings\User1\Plocha\ComboFix.exe
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-02-22 do 2013-03-22 )))))))))))))))))))))))))))))))
.
.
2013-03-20 23:19 . 2013-02-12 00:32 12928 -c----w- c:\windows\system32\dllcache\usb8023x.sys
2013-03-20 22:31 . 2013-03-20 22:31 -------- d-----w- c:\documents and settings\User1\Data aplikací\Malwarebytes
2013-03-20 22:28 . 2013-03-20 22:28 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2013-03-20 22:27 . 2012-12-14 15:49 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-03-20 22:27 . 2013-03-20 22:30 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-03-19 19:48 . 2013-03-19 19:48 -------- d-----w- c:\documents and settings\User1\Local Settings\Data aplikací\Opera
2013-03-19 19:48 . 2013-03-19 19:48 -------- d-----w- c:\program files\Opera
2013-03-19 19:01 . 2013-03-07 14:30 96664 ----a-w- c:\program files\Mozilla Firefox\webapprt-stub.exe
2013-03-19 19:01 . 2013-03-07 14:30 170232 ----a-w- c:\program files\Mozilla Firefox\webapp-uninstaller.exe
2013-03-19 19:01 . 2013-03-07 14:30 770384 ----a-w- c:\program files\Mozilla Firefox\msvcr100.dll
2013-03-19 19:01 . 2013-03-07 14:30 421200 ----a-w- c:\program files\Mozilla Firefox\msvcp100.dll
2013-03-19 19:01 . 2013-03-07 14:30 74136 ----a-w- c:\program files\Mozilla Firefox\breakpadinjector.dll
2013-03-19 18:56 . 2013-03-19 19:02 -------- d-----w- c:\program files\Mozilla Maintenance Service
2013-03-19 18:55 . 2013-03-07 14:30 2954136 ----a-w- c:\program files\Mozilla Firefox\gkmedias.dll
2013-03-19 18:55 . 2013-03-07 14:30 115608 ----a-w- c:\program files\Mozilla Firefox\maintenanceservice.exe
2013-03-19 18:55 . 2013-03-07 14:30 193584 ----a-w- c:\program files\Mozilla Firefox\maintenanceservice_installer.exe
2013-03-19 18:55 . 2013-03-07 14:30 131480 ----a-w- c:\program files\Mozilla Firefox\mozglue.dll
2013-03-18 16:22 . 2013-03-18 16:22 -------- d-----w- c:\program files\Common Files\Java
2013-03-18 16:22 . 2013-03-18 16:20 143872 ----a-w- c:\windows\system32\javacpl.cpl
2013-03-18 16:21 . 2013-03-18 16:20 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-03-18 16:20 . 2013-03-18 16:20 -------- d-----w- c:\program files\Java
2013-03-12 20:21 . 2013-03-12 20:21 -------- d-----w- c:\documents and settings\User1\Local Settings\Data aplikací\Sun
2013-03-12 20:12 . 2013-03-18 16:20 861088 ----a-w- c:\windows\system32\npDeployJava1.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-18 16:20 . 2011-06-09 08:16 782240 ----a-w- c:\windows\system32\deployJava1.dll
2013-03-02 22:01 . 2012-09-04 12:34 33112 ----a-w- c:\windows\system32\drivers\avgtpx86.sys
2013-02-12 00:32 . 2008-04-14 12:00 12928 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-02-05 20:15 . 2008-04-14 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2013-02-05 20:15 . 2008-04-14 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2013-02-05 20:15 . 2008-04-14 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2013-02-05 05:53 . 2008-04-14 12:00 385024 ------w- c:\windows\system32\html.iec
2013-01-30 10:53 . 2011-06-08 09:00 232336 ------w- c:\windows\system32\MpSigStub.exe
2013-01-26 03:55 . 2008-04-14 12:00 552448 ----a-w- c:\windows\system32\oleaut32.dll
2013-01-09 21:47 . 2013-01-09 21:47 632064 ----a-w- c:\windows\system32\msvcr80.dll
2013-01-09 21:47 . 2013-01-09 21:47 554240 ----a-w- c:\windows\system32\msvcp80.dll
2013-01-09 21:47 . 2013-01-09 21:47 572928 ----a-w- c:\windows\system32\msvcp90.dll
2013-01-09 21:47 . 2013-01-09 21:47 655872 ----a-w- c:\windows\system32\msvcr90.dll
2013-01-09 21:47 . 2013-01-09 21:47 34048 ----a-w- c:\windows\system32\eEmpty.exe
2013-01-07 07:26 . 2008-04-14 08:06 2071936 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-01-07 07:26 . 2008-04-14 12:00 2195200 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-01-04 10:10 . 2008-04-14 12:00 1867264 ----a-w- c:\windows\system32\win32k.sys
2013-01-02 06:49 . 2008-04-14 12:00 148992 ----a-w- c:\windows\system32\mpg2splt.ax
2013-01-02 06:49 . 2008-04-14 12:00 1294848 ----a-w- c:\windows\system32\quartz.dll
2013-03-07 14:31 . 2011-06-08 07:29 263064 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="e:\program files\Skype\Phone\Skype.exe" [2012-07-13 17418928]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2003-04-24 54784]
"UpdateLBPShortCut"="c:\program files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2009-05-19 222504]
"UpdateP2GoShortCut"="c:\program files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2009-05-19 222504]
"PDVD8LanguageShortcut"="c:\program files\CyberLink\PowerDVD8\Language\Language.exe" [2009-04-15 50472]
"UpdatePPShortCut"="c:\program files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" [2009-05-19 222504]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-05-03 13529088]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-05-03 86016]
"Family Tree Builder Update"="c:\dokumenty\Stažené soubory\MyHeritage\Bin\FTBCheckUpdates.exe" [2011-09-15 225280]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-11-19 2598520]
"SMART Board Tools"="c:\program files\SMART Technologies\Education Software\SMARTBoardTools.exe" [2012-03-09 10132336]
"SMART Ink"="c:\program files\SMART Technologies\Education Software\SMARTInk.exe" [2012-03-21 94064]
"Response Desktop Menu"="c:\program files\SMART Technologies\Education Software\DesktopMenu.exe" [2012-03-02 1960816]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-02-25 437160]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\CyberLink\\PowerDVD8\\PowerDVD8.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgmfapx.exe"=
"e:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\SMART Technologies\\Education Software\\UCGui.exe"=
"c:\\Program Files\\SMART Technologies\\Education Software\\SMARTSNMPAgent.exe"=
"c:\\Program Files\\SMART Technologies\\Education Software\\UCService.exe"=
"c:\\Program Files\\SMART Technologies\\Education Software\\VantageService.exe"=
"c:\\Program Files\\SMART Technologies\\Education Software\\ResponseSoftwareService.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgnsx.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgdiagex.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgemcx.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5985:TCP"= 5985:TCP:*:Disabled:Vzdálená správa systému Windows
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [19.4.2012 3:50 24896]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [13.9.2011 5:30 31952]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [7.10.2011 5:23 250080]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [11.7.2011 0:14 301920]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [4.9.2012 13:34 33112]
R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [14.2.2012 3:53 193288]
R2 Response Hardware;Response Hardware;c:\program files\SMART Technologies\Education Software\ResponseHardwareService.exe [2.3.2012 17:24 19312]
R2 SMART Display Controller;SMART Display Controller;c:\program files\SMART Technologies\Education Software\UCService.exe [21.3.2012 15:25 820592]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [23.12.2011 12:32 142176]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\avgidsfilterx.sys [23.12.2011 12:32 24144]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [23.12.2011 12:32 17232]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2012\avgidsagent.exe [2.11.2012 3:51 5174392]
S2 SkypeUpdate;Skype Updater;e:\program files\Skype\Updater\Updater.exe [13.7.2012 12:28 160944]
S2 vToolbarUpdater14.2.0;vToolbarUpdater14.2.0;c:\program files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe --> c:\program files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe [?]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
mStart Page = hxxp://search.myheritage.com
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.100 10.0.0.200
FF - ProfilePath - c:\documents and settings\User1\Data aplikací\Mozilla\Firefox\Profiles\sahof05i.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - ExtSQL: 2013-03-06 18:14; {1E73965B-8B48-48be-9C8D-68B920ABC1C4}; c:\program files\AVG\AVG2012\Firefox4
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-03-22 16:35
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1715567821-1677128483-1606980848-1004\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(1324)
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Celkový čas: 2013-03-22 16:36:55
ComboFix-quarantined-files.txt 2013-03-22 15:36
ComboFix2.txt 2013-03-21 21:33
.
Před spuštěním: Volných bajtů: 128 886 165 504
Po spuštění: Volných bajtů: 128 878 268 416
.
- - End Of File - - 15F718606C8711DC5D55A43AC04443FA

[memphisto]

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::
Driver::
SkypeUpdate
vToolbarUpdater14.2.0

Folder::
e:\program files\Skype\Updater
c:\program files\Common Files\AVG Secure Search

DDS::
mStart Page = hxxp://search.myheritage.com


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upus.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu

[Fucza]

Log je zde:

ComboFix 13-03-21.02 - User1 23.03.2013 20:18:08.4.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.3455.2918 [GMT 1:00]
Spuštěný z: c:\documents and settings\User1\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\User1\Plocha\CFScript.txt
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
e:\program files\Skype\Updater
e:\program files\Skype\Updater\Updater.dll
e:\program files\Skype\Updater\Updater.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_SKYPEUPDATE
-------\Legacy_VTOOLBARUPDATER14.2.0
-------\Service_SkypeUpdate
-------\Service_vToolbarUpdater14.2.0
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-02-23 do 2013-03-23 )))))))))))))))))))))))))))))))
.
.
2013-03-20 23:19 . 2013-02-12 00:32 12928 -c----w- c:\windows\system32\dllcache\usb8023x.sys
2013-03-20 22:31 . 2013-03-20 22:31 -------- d-----w- c:\documents and settings\User1\Data aplikací\Malwarebytes
2013-03-20 22:28 . 2013-03-20 22:28 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2013-03-20 22:27 . 2012-12-14 15:49 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-03-20 22:27 . 2013-03-20 22:30 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-03-19 19:48 . 2013-03-19 19:48 -------- d-----w- c:\documents and settings\User1\Local Settings\Data aplikací\Opera
2013-03-19 19:48 . 2013-03-19 19:48 -------- d-----w- c:\program files\Opera
2013-03-19 19:01 . 2013-03-07 14:30 96664 ----a-w- c:\program files\Mozilla Firefox\webapprt-stub.exe
2013-03-19 19:01 . 2013-03-07 14:30 170232 ----a-w- c:\program files\Mozilla Firefox\webapp-uninstaller.exe
2013-03-19 19:01 . 2013-03-07 14:30 770384 ----a-w- c:\program files\Mozilla Firefox\msvcr100.dll
2013-03-19 19:01 . 2013-03-07 14:30 421200 ----a-w- c:\program files\Mozilla Firefox\msvcp100.dll
2013-03-19 19:01 . 2013-03-07 14:30 74136 ----a-w- c:\program files\Mozilla Firefox\breakpadinjector.dll
2013-03-19 18:56 . 2013-03-19 19:02 -------- d-----w- c:\program files\Mozilla Maintenance Service
2013-03-19 18:55 . 2013-03-07 14:30 2954136 ----a-w- c:\program files\Mozilla Firefox\gkmedias.dll
2013-03-19 18:55 . 2013-03-07 14:30 115608 ----a-w- c:\program files\Mozilla Firefox\maintenanceservice.exe
2013-03-19 18:55 . 2013-03-07 14:30 193584 ----a-w- c:\program files\Mozilla Firefox\maintenanceservice_installer.exe
2013-03-19 18:55 . 2013-03-07 14:30 131480 ----a-w- c:\program files\Mozilla Firefox\mozglue.dll
2013-03-18 16:22 . 2013-03-18 16:22 -------- d-----w- c:\program files\Common Files\Java
2013-03-18 16:22 . 2013-03-18 16:20 143872 ----a-w- c:\windows\system32\javacpl.cpl
2013-03-18 16:21 . 2013-03-18 16:20 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-03-18 16:20 . 2013-03-18 16:20 -------- d-----w- c:\program files\Java
2013-03-12 20:21 . 2013-03-12 20:21 -------- d-----w- c:\documents and settings\User1\Local Settings\Data aplikací\Sun
2013-03-12 20:12 . 2013-03-18 16:20 861088 ----a-w- c:\windows\system32\npDeployJava1.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-18 16:20 . 2011-06-09 08:16 782240 ----a-w- c:\windows\system32\deployJava1.dll
2013-03-02 22:01 . 2012-09-04 12:34 33112 ----a-w- c:\windows\system32\drivers\avgtpx86.sys
2013-02-12 00:32 . 2008-04-14 12:00 12928 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-02-05 20:15 . 2008-04-14 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2013-02-05 20:15 . 2008-04-14 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2013-02-05 20:15 . 2008-04-14 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2013-02-05 05:53 . 2008-04-14 12:00 385024 ------w- c:\windows\system32\html.iec
2013-01-30 10:53 . 2011-06-08 09:00 232336 ------w- c:\windows\system32\MpSigStub.exe
2013-01-26 03:55 . 2008-04-14 12:00 552448 ----a-w- c:\windows\system32\oleaut32.dll
2013-01-09 21:47 . 2013-01-09 21:47 632064 ----a-w- c:\windows\system32\msvcr80.dll
2013-01-09 21:47 . 2013-01-09 21:47 554240 ----a-w- c:\windows\system32\msvcp80.dll
2013-01-09 21:47 . 2013-01-09 21:47 572928 ----a-w- c:\windows\system32\msvcp90.dll
2013-01-09 21:47 . 2013-01-09 21:47 655872 ----a-w- c:\windows\system32\msvcr90.dll
2013-01-09 21:47 . 2013-01-09 21:47 34048 ----a-w- c:\windows\system32\eEmpty.exe
2013-01-07 07:26 . 2008-04-14 08:06 2071936 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-01-07 07:26 . 2008-04-14 12:00 2195200 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-01-04 10:10 . 2008-04-14 12:00 1867264 ----a-w- c:\windows\system32\win32k.sys
2013-01-02 06:49 . 2008-04-14 12:00 148992 ----a-w- c:\windows\system32\mpg2splt.ax
2013-01-02 06:49 . 2008-04-14 12:00 1294848 ----a-w- c:\windows\system32\quartz.dll
2013-03-07 14:31 . 2011-06-08 07:29 263064 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="e:\program files\Skype\Phone\Skype.exe" [2012-07-13 17418928]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2003-04-24 54784]
"UpdateLBPShortCut"="c:\program files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2009-05-19 222504]
"UpdateP2GoShortCut"="c:\program files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2009-05-19 222504]
"PDVD8LanguageShortcut"="c:\program files\CyberLink\PowerDVD8\Language\Language.exe" [2009-04-15 50472]
"UpdatePPShortCut"="c:\program files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" [2009-05-19 222504]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-05-03 13529088]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-05-03 86016]
"Family Tree Builder Update"="c:\dokumenty\Stažené soubory\MyHeritage\Bin\FTBCheckUpdates.exe" [2011-09-15 225280]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-11-19 2598520]
"SMART Board Tools"="c:\program files\SMART Technologies\Education Software\SMARTBoardTools.exe" [2012-03-09 10132336]
"SMART Ink"="c:\program files\SMART Technologies\Education Software\SMARTInk.exe" [2012-03-21 94064]
"Response Desktop Menu"="c:\program files\SMART Technologies\Education Software\DesktopMenu.exe" [2012-03-02 1960816]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-02-25 437160]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\CyberLink\\PowerDVD8\\PowerDVD8.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgmfapx.exe"=
"e:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\SMART Technologies\\Education Software\\UCGui.exe"=
"c:\\Program Files\\SMART Technologies\\Education Software\\SMARTSNMPAgent.exe"=
"c:\\Program Files\\SMART Technologies\\Education Software\\UCService.exe"=
"c:\\Program Files\\SMART Technologies\\Education Software\\VantageService.exe"=
"c:\\Program Files\\SMART Technologies\\Education Software\\ResponseSoftwareService.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgnsx.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgdiagex.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgemcx.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5985:TCP"= 5985:TCP:*:Disabled:Vzdálená správa systému Windows
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [19.4.2012 3:50 24896]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [13.9.2011 5:30 31952]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [7.10.2011 5:23 250080]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [11.7.2011 0:14 301920]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [4.9.2012 13:34 33112]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2012\avgidsagent.exe [2.11.2012 3:51 5174392]
R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [14.2.2012 3:53 193288]
R2 Response Hardware;Response Hardware;c:\program files\SMART Technologies\Education Software\ResponseHardwareService.exe [2.3.2012 17:24 19312]
R2 SMART Display Controller;SMART Display Controller;c:\program files\SMART Technologies\Education Software\UCService.exe [21.3.2012 15:25 820592]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [23.12.2011 12:32 142176]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\avgidsfilterx.sys [23.12.2011 12:32 24144]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [23.12.2011 12:32 17232]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.100 10.0.0.200
FF - ProfilePath - c:\documents and settings\User1\Data aplikací\Mozilla\Firefox\Profiles\sahof05i.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - ExtSQL: 2013-03-06 18:14; {1E73965B-8B48-48be-9C8D-68B920ABC1C4}; c:\program files\AVG\AVG2012\Firefox4
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-03-23 20:30
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1715567821-1677128483-1606980848-1004\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(2216)
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\progra~1\AVG\AVG2012\avgrsx.exe
c:\program files\AVG\AVG2012\avgcsrvx.exe
c:\program files\Java\jre7\bin\jqs.exe
c:\program files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
c:\windows\system32\nvsvc32.exe
c:\program files\AVG\AVG2012\avgnsx.exe
c:\program files\AVG\AVG2012\avgemcx.exe
c:\program files\CyberLink\Shared files\RichVideo.exe
c:\program files\SMART Technologies\Education Software\SMARTBoardService.exe
c:\windows\SOUNDMAN.EXE
c:\windows\system32\RUNDLL32.EXE
c:\windows\system32\rundll32.exe
c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
c:\program files\SMART Technologies\Education Software\ResponseSoftwareService.exe
.
**************************************************************************
.
Celkový čas: 2013-03-23 20:33:47 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-03-23 19:33
ComboFix2.txt 2013-03-22 15:36
ComboFix3.txt 2013-03-21 21:33
.
Před spuštěním: Volných bajtů: 128 817 111 040
Po spuštění: Volných bajtů: 128 756 416 512
.
- - End Of File - - B05F65628C7C0CE861A1897DA9F1BB98

[memphisto]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj AVG , Avast,Avira či Microsoft Security Essentials následně T-Cleaner smaž a zapni si AVG , Avast, Avira či Microsoft Security Essentials

+ Nový log z HJT

Jak se chová PC?

[Fucza]

Vypadá to dobře. Moc děkuji. Pokud bude odpověď, že tam už nic netřeba fixnout, dám fajfku.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:20:56, on 24.3.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe
C:\Program Files\SMART Technologies\Education Software\SMARTInk.exe
C:\Program Files\SMART Technologies\Education Software\DesktopMenu.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
E:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\SMART Technologies\Education Software\ResponseHardwareService.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe
C:\Program Files\SMART Technologies\Education Software\UCService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\Program Files\SMART Technologies\Education Software\ResponseSoftwareService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Temp\TeamViewer\Version8\TeamViewer.exe
C:\Temp\TeamViewer\Version8\tv_w32.exe
c:\temp\teamviewer\version8\TeamViewer_Desktop.exe
C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
C:\Program Files\AVG\AVG2012\avgemcx.exe
C:\Program Files\AVG\AVG2012\avgnsx.exe
C:\Program Files\AVG\AVG2012\avgrsx.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\Documents and Settings\User1\Plocha\HijackThis.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll
O2 - BHO: SMART Notebook Download Utility - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Education Software\Win32\NotebookPlugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [PDVD8LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe"
O4 - HKLM\..\Run: [UpdatePPShortCut] "C:\Program Files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\PowerProducer" UpdateWithCreateOnce "Software\CyberLink\PowerProducer\5.0"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Family Tree Builder Update] C:\Dokumenty\Stažené soubory\MyHeritage\Bin\FTBCheckUpdates.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [SMART Board Tools] "C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe"
O4 - HKLM\..\Run: [SMART Ink] "C:\Program Files\SMART Technologies\Education Software\SMARTInk.exe"
O4 - HKLM\..\Run: [Response Desktop Menu] "C:\Program Files\SMART Technologies\Education Software\DesktopMenu.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Skype] "E:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 7511582734
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Response Hardware - SMART Technologies ULC - C:\Program Files\SMART Technologies\Education Software\ResponseHardwareService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: Služba SMART Board (SMART Board Service) - SMART Technologies - C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe
O23 - Service: SMART Display Controller - SMART Technologies - C:\Program Files\SMART Technologies\Education Software\UCService.exe

--
End of file - 8998 bytes