Log-kontrola - nelze spustit? Vyřešeno

[Žbeky]

Fixni:

Kód: Vybrat vše

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
- Pokud používáš Firefox, klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Chrome, nic dalšího nevybírej a dej Empty Selected.
Po vyčištění klikni na Exit k zavření programu.

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(ZATÍM SÁM NIC NEMAŽ!).
Vlož sem pak obsah toho logu.

[Reklama]

[zabacek98]

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 220122
Uplynulý čas: 3 minut, 7 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

[Orcus]

Stáhni si TDSSKiller

Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

====================================================

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.

Pokud budou problémy , spusť v nouz. režimu.

[zabacek98]

Jednu hrozbu to našlo, ale neodstranil jsem ji. Na combofixu se již pracuje.....

19:25:36.0822 5132 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:25:37.0180 5132 ============================================================
19:25:37.0180 5132 Current date / time: 2013/04/06 19:25:37.0180
19:25:37.0180 5132 SystemInfo:
19:25:37.0180 5132
19:25:37.0180 5132 OS Version: 6.1.7601 ServicePack: 1.0
19:25:37.0180 5132 Product type: Workstation
19:25:37.0180 5132 ComputerName: VALENTOVI-PC
19:25:37.0180 5132 UserName: Valentovi
19:25:37.0180 5132 Windows directory: C:\Windows
19:25:37.0180 5132 System windows directory: C:\Windows
19:25:37.0180 5132 Processor architecture: Intel x86
19:25:37.0180 5132 Number of processors: 2
19:25:37.0180 5132 Page size: 0x1000
19:25:37.0180 5132 Boot type: Normal boot
19:25:37.0180 5132 ============================================================
19:25:38.0246 5132 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:25:38.0277 5132 ============================================================
19:25:38.0277 5132 \Device\Harddisk0\DR0:
19:25:38.0277 5132 MBR partitions:
19:25:38.0277 5132 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A385000
19:25:38.0277 5132 ============================================================
19:25:38.0300 5132 C: <-> \Device\Harddisk0\DR0\Partition1
19:25:38.0300 5132 ============================================================
19:25:38.0300 5132 Initialize success
19:25:38.0300 5132 ============================================================
19:25:43.0109 5272 ============================================================
19:25:43.0109 5272 Scan started
19:25:43.0109 5272 Mode: Manual;
19:25:43.0109 5272 ============================================================
19:25:44.0136 5272 ================ Scan system memory ========================
19:25:44.0136 5272 System memory - ok
19:25:44.0136 5272 ================ Scan services =============================
19:25:44.0242 5272 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:25:44.0246 5272 1394ohci - ok
19:25:44.0277 5272 [ D9AF0082D3F09F5007E5727798786CD8 ] 3xHybrid C:\Windows\system32\DRIVERS\3xHybrid.sys
19:25:44.0292 5272 3xHybrid - ok
19:25:44.0308 5272 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:25:44.0312 5272 ACPI - ok
19:25:44.0332 5272 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:25:44.0335 5272 AcpiPmi - ok
19:25:44.0394 5272 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
19:25:44.0394 5272 AdobeARMservice - ok
19:25:44.0421 5272 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:25:44.0425 5272 AdobeFlashPlayerUpdateSvc - ok
19:25:44.0464 5272 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
19:25:44.0468 5272 adp94xx - ok
19:25:44.0480 5272 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
19:25:44.0484 5272 adpahci - ok
19:25:44.0496 5272 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
19:25:44.0500 5272 adpu320 - ok
19:25:44.0523 5272 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:25:44.0523 5272 AeLookupSvc - ok
19:25:44.0550 5272 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
19:25:44.0554 5272 AFD - ok
19:25:44.0566 5272 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
19:25:44.0570 5272 agp440 - ok
19:25:44.0585 5272 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
19:25:44.0589 5272 aic78xx - ok
19:25:44.0601 5272 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
19:25:44.0601 5272 ALG - ok
19:25:44.0617 5272 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
19:25:44.0617 5272 aliide - ok
19:25:44.0632 5272 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
19:25:44.0632 5272 amdagp - ok
19:25:44.0648 5272 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
19:25:44.0648 5272 amdide - ok
19:25:44.0660 5272 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
19:25:44.0660 5272 AmdK8 - ok
19:25:44.0675 5272 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
19:25:44.0675 5272 AmdPPM - ok
19:25:44.0691 5272 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:25:44.0691 5272 amdsata - ok
19:25:44.0707 5272 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
19:25:44.0707 5272 amdsbs - ok
19:25:44.0718 5272 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:25:44.0718 5272 amdxata - ok
19:25:44.0738 5272 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
19:25:44.0738 5272 AppID - ok
19:25:44.0753 5272 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:25:44.0753 5272 AppIDSvc - ok
19:25:44.0769 5272 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
19:25:44.0769 5272 Appinfo - ok
19:25:44.0804 5272 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
19:25:44.0808 5272 arc - ok
19:25:44.0820 5272 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
19:25:44.0820 5272 arcsas - ok
19:25:44.0835 5272 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:25:44.0839 5272 AsyncMac - ok
19:25:44.0843 5272 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
19:25:44.0843 5272 atapi - ok
19:25:44.0863 5272 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:25:44.0871 5272 AudioEndpointBuilder - ok
19:25:44.0882 5272 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
19:25:44.0882 5272 Audiosrv - ok
19:25:44.0906 5272 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:25:44.0906 5272 AxInstSV - ok
19:25:44.0929 5272 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
19:25:44.0933 5272 b06bdrv - ok
19:25:44.0960 5272 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
19:25:44.0964 5272 b57nd60x - ok
19:25:44.0992 5272 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
19:25:44.0996 5272 BDESVC - ok
19:25:45.0003 5272 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
19:25:45.0003 5272 Beep - ok
19:25:45.0031 5272 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
19:25:45.0035 5272 BFE - ok
19:25:45.0078 5272 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\system32\qmgr.dll
19:25:45.0097 5272 BITS - ok
19:25:45.0105 5272 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:25:45.0105 5272 blbdrive - ok
19:25:45.0128 5272 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:25:45.0128 5272 bowser - ok
19:25:45.0148 5272 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:25:45.0148 5272 BrFiltLo - ok
19:25:45.0160 5272 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:25:45.0164 5272 BrFiltUp - ok
19:25:45.0195 5272 [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
19:25:45.0195 5272 BridgeMP - ok
19:25:45.0218 5272 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
19:25:45.0218 5272 Browser - ok
19:25:45.0226 5272 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:25:45.0230 5272 Brserid - ok
19:25:45.0234 5272 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:25:45.0238 5272 BrSerWdm - ok
19:25:45.0261 5272 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:25:45.0265 5272 BrUsbMdm - ok
19:25:45.0277 5272 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:25:45.0277 5272 BrUsbSer - ok
19:25:45.0312 5272 [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
19:25:45.0320 5272 BthEnum - ok
19:25:45.0324 5272 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:25:45.0328 5272 BTHMODEM - ok
19:25:45.0363 5272 [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
19:25:45.0363 5272 BthPan - ok
19:25:45.0382 5272 [ 1153DE2E4F5941E10C399CB5592F78A1 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
19:25:45.0386 5272 BTHPORT - ok
19:25:45.0417 5272 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
19:25:45.0417 5272 bthserv - ok
19:25:45.0429 5272 [ C81E9413A25A439F436B1D4B6A0CF9E9 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
19:25:45.0429 5272 BTHUSB - ok
19:25:45.0449 5272 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:25:45.0453 5272 cdfs - ok
19:25:45.0472 5272 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\drivers\cdrom.sys
19:25:45.0476 5272 cdrom - ok
19:25:45.0507 5272 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
19:25:45.0511 5272 CertPropSvc - ok
19:25:45.0519 5272 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
19:25:45.0523 5272 circlass - ok
19:25:45.0535 5272 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
19:25:45.0539 5272 CLFS - ok
19:25:45.0582 5272 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:25:45.0585 5272 clr_optimization_v2.0.50727_32 - ok
19:25:45.0621 5272 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:25:45.0621 5272 clr_optimization_v4.0.30319_32 - ok
19:25:45.0628 5272 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:25:45.0628 5272 CmBatt - ok
19:25:45.0656 5272 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:25:45.0656 5272 cmdide - ok
19:25:45.0679 5272 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
19:25:45.0683 5272 CNG - ok
19:25:45.0699 5272 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:25:45.0699 5272 Compbatt - ok
19:25:45.0726 5272 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
19:25:45.0726 5272 CompositeBus - ok
19:25:45.0738 5272 COMSysApp - ok
19:25:45.0746 5272 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
19:25:45.0746 5272 crcdisk - ok
19:25:45.0789 5272 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:25:45.0789 5272 CryptSvc - ok
19:25:45.0812 5272 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
19:25:45.0816 5272 DcomLaunch - ok
19:25:45.0835 5272 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
19:25:45.0839 5272 defragsvc - ok
19:25:45.0863 5272 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:25:45.0863 5272 DfsC - ok
19:25:45.0878 5272 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
19:25:45.0882 5272 Dhcp - ok
19:25:45.0890 5272 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
19:25:45.0894 5272 discache - ok
19:25:45.0914 5272 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
19:25:45.0914 5272 Disk - ok
19:25:45.0933 5272 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:25:45.0933 5272 Dnscache - ok
19:25:45.0957 5272 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
19:25:45.0960 5272 dot3svc - ok
19:25:45.0988 5272 [ B5E479EB83707DD698F66953E922042C ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
19:25:45.0988 5272 Dot4 - ok
19:25:46.0007 5272 [ CAEFD09B6A6249C53A67D55A9A9FCABF ] Dot4Print C:\Windows\system32\drivers\Dot4Prt.sys
19:25:46.0007 5272 Dot4Print - ok
19:25:46.0023 5272 [ CF491FF38D62143203C065260567E2F7 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
19:25:46.0023 5272 dot4usb - ok
19:25:46.0042 5272 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
19:25:46.0046 5272 DPS - ok
19:25:46.0070 5272 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:25:46.0070 5272 drmkaud - ok
19:25:46.0105 5272 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:25:46.0121 5272 DXGKrnl - ok
19:25:46.0148 5272 EagleXNt - ok
19:25:46.0175 5272 [ C73D90A437907C2398D32CCE618FE808 ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
19:25:46.0179 5272 eamonm - ok
19:25:46.0195 5272 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
19:25:46.0195 5272 EapHost - ok
19:25:46.0285 5272 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
19:25:46.0363 5272 ebdrv - ok
19:25:46.0390 5272 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
19:25:46.0394 5272 EFS - ok
19:25:46.0425 5272 [ 4F72DD48A2ED63A57C1210228A472020 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
19:25:46.0429 5272 ehdrv - ok
19:25:46.0472 5272 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:25:46.0488 5272 ehRecvr - ok
19:25:46.0507 5272 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
19:25:46.0507 5272 ehSched - ok
19:25:46.0574 5272 [ E95AB781773870BD68ABE1AE1B57A8AC ] ekrn C:\Program Files\ESET\ESET Smart Security\ekrn.exe
19:25:46.0585 5272 ekrn - ok
19:25:46.0609 5272 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
19:25:46.0625 5272 elxstor - ok
19:25:46.0660 5272 [ 0C0C50813FC59C145B604B1DCCFFB377 ] epfw C:\Windows\system32\DRIVERS\epfw.sys
19:25:46.0664 5272 epfw - ok
19:25:46.0671 5272 [ A047420F4A55C1695A46468341558136 ] EpfwLWF C:\Windows\system32\DRIVERS\EpfwLWF.sys
19:25:46.0675 5272 EpfwLWF - ok
19:25:46.0687 5272 [ 0C42AA79B74E0454465FAA2D28A5B980 ] epfwwfp C:\Windows\system32\DRIVERS\epfwwfp.sys
19:25:46.0687 5272 epfwwfp - ok
19:25:46.0707 5272 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:25:46.0707 5272 ErrDev - ok
19:25:46.0742 5272 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
19:25:46.0746 5272 EventSystem - ok
19:25:46.0761 5272 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
19:25:46.0765 5272 exfat - ok
19:25:46.0781 5272 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:25:46.0781 5272 fastfat - ok
19:25:46.0816 5272 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
19:25:46.0832 5272 Fax - ok
19:25:46.0851 5272 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:25:46.0851 5272 fdc - ok
19:25:46.0863 5272 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
19:25:46.0867 5272 fdPHost - ok
19:25:46.0878 5272 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
19:25:46.0878 5272 FDResPub - ok
19:25:46.0894 5272 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:25:46.0894 5272 FileInfo - ok
19:25:46.0906 5272 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:25:46.0910 5272 Filetrace - ok
19:25:46.0921 5272 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:25:46.0921 5272 flpydisk - ok
19:25:46.0945 5272 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:25:46.0949 5272 FltMgr - ok
19:25:46.0996 5272 [ E12C4928B32ACE04610259647F072635 ] FontCache C:\Windows\system32\FntCache.dll
19:25:47.0011 5272 FontCache - ok
19:25:47.0054 5272 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:25:47.0066 5272 FontCache3.0.0.0 - ok
19:25:47.0078 5272 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:25:47.0082 5272 FsDepends - ok
19:25:47.0101 5272 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:25:47.0105 5272 Fs_Rec - ok
19:25:47.0128 5272 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:25:47.0132 5272 fvevol - ok
19:25:47.0148 5272 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
19:25:47.0148 5272 gagp30kx - ok
19:25:47.0179 5272 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
19:25:47.0187 5272 gpsvc - ok
19:25:47.0199 5272 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:25:47.0199 5272 hcw85cir - ok
19:25:47.0230 5272 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:25:47.0234 5272 HdAudAddService - ok
19:25:47.0246 5272 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
19:25:47.0250 5272 HDAudBus - ok
19:25:47.0261 5272 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
19:25:47.0261 5272 HidBatt - ok
19:25:47.0296 5272 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:25:47.0296 5272 HidBth - ok
19:25:47.0316 5272 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
19:25:47.0316 5272 HidIr - ok
19:25:47.0335 5272 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\System32\hidserv.dll
19:25:47.0335 5272 hidserv - ok
19:25:47.0359 5272 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:25:47.0363 5272 HidUsb - ok
19:25:47.0378 5272 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:25:47.0382 5272 hkmsvc - ok
19:25:47.0402 5272 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:25:47.0406 5272 HomeGroupListener - ok
19:25:47.0429 5272 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:25:47.0433 5272 HomeGroupProvider - ok
19:25:47.0503 5272 [ 1DAE5C46D42B02A6D5862E1482EFB390 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
19:25:47.0507 5272 hpqcxs08 - ok
19:25:47.0515 5272 [ 99E8EEF42FE2F4AF29B08C3355DD7685 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
19:25:47.0515 5272 hpqddsvc - ok
19:25:47.0539 5272 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:25:47.0542 5272 HpSAMD - ok
19:25:47.0570 5272 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:25:47.0585 5272 HTTP - ok
19:25:47.0605 5272 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:25:47.0609 5272 hwpolicy - ok
19:25:47.0625 5272 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
19:25:47.0625 5272 i8042prt - ok
19:25:47.0640 5272 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:25:47.0640 5272 iaStorV - ok
19:25:47.0675 5272 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:25:47.0695 5272 idsvc - ok
19:25:47.0730 5272 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
19:25:47.0734 5272 iirsp - ok
19:25:47.0765 5272 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
19:25:47.0781 5272 IKEEXT - ok
19:25:47.0820 5272 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
19:25:47.0824 5272 intelide - ok
19:25:47.0843 5272 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:25:47.0847 5272 intelppm - ok
19:25:47.0863 5272 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:25:47.0867 5272 IPBusEnum - ok
19:25:47.0878 5272 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:25:47.0882 5272 IpFilterDriver - ok
19:25:47.0906 5272 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:25:47.0910 5272 iphlpsvc - ok
19:25:47.0925 5272 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:25:47.0964 5272 IPMIDRV - ok
19:25:48.0000 5272 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:25:48.0023 5272 IPNAT - ok
19:25:48.0089 5272 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:25:48.0093 5272 IRENUM - ok
19:25:48.0105 5272 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:25:48.0105 5272 isapnp - ok
19:25:48.0125 5272 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:25:48.0125 5272 iScsiPrt - ok
19:25:48.0144 5272 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
19:25:48.0144 5272 kbdclass - ok
19:25:48.0160 5272 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
19:25:48.0160 5272 kbdhid - ok
19:25:48.0175 5272 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
19:25:48.0175 5272 KeyIso - ok
19:25:48.0191 5272 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:25:48.0195 5272 KSecDD - ok
19:25:48.0207 5272 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:25:48.0210 5272 KSecPkg - ok
19:25:48.0230 5272 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
19:25:48.0234 5272 KtmRm - ok
19:25:48.0257 5272 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\System32\srvsvc.dll
19:25:48.0261 5272 LanmanServer - ok
19:25:48.0273 5272 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:25:48.0277 5272 LanmanWorkstation - ok
19:25:48.0304 5272 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:25:48.0308 5272 lltdio - ok
19:25:48.0328 5272 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:25:48.0332 5272 lltdsvc - ok
19:25:48.0339 5272 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
19:25:48.0343 5272 lmhosts - ok
19:25:48.0363 5272 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
19:25:48.0367 5272 LSI_FC - ok
19:25:48.0382 5272 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
19:25:48.0382 5272 LSI_SAS - ok
19:25:48.0394 5272 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:25:48.0394 5272 LSI_SAS2 - ok
19:25:48.0402 5272 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:25:48.0406 5272 LSI_SCSI - ok
19:25:48.0421 5272 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
19:25:48.0421 5272 luafv - ok
19:25:48.0457 5272 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:25:48.0457 5272 Mcx2Svc - ok
19:25:48.0476 5272 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
19:25:48.0476 5272 megasas - ok
19:25:48.0492 5272 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
19:25:48.0507 5272 MegaSR - ok
19:25:48.0519 5272 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
19:25:48.0519 5272 MMCSS - ok
19:25:48.0535 5272 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
19:25:48.0535 5272 Modem - ok
19:25:48.0550 5272 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:25:48.0550 5272 monitor - ok
19:25:48.0558 5272 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:25:48.0562 5272 mouclass - ok
19:25:48.0582 5272 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:25:48.0582 5272 mouhid - ok
19:25:48.0601 5272 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:25:48.0605 5272 mountmgr - ok
19:25:48.0628 5272 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
19:25:48.0632 5272 mpio - ok
19:25:48.0644 5272 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:25:48.0648 5272 mpsdrv - ok
19:25:48.0679 5272 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:25:48.0687 5272 MpsSvc - ok
19:25:48.0710 5272 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:25:48.0714 5272 MRxDAV - ok
19:25:48.0734 5272 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:25:48.0734 5272 mrxsmb - ok
19:25:48.0753 5272 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:25:48.0757 5272 mrxsmb10 - ok
19:25:48.0773 5272 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:25:48.0777 5272 mrxsmb20 - ok
19:25:48.0792 5272 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
19:25:48.0792 5272 msahci - ok
19:25:48.0804 5272 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:25:48.0808 5272 msdsm - ok
19:25:48.0816 5272 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
19:25:48.0820 5272 MSDTC - ok
19:25:48.0839 5272 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:25:48.0839 5272 Msfs - ok
19:25:48.0847 5272 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:25:48.0847 5272 mshidkmdf - ok
19:25:48.0871 5272 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:25:48.0875 5272 msisadrv - ok
19:25:48.0902 5272 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:25:48.0906 5272 MSiSCSI - ok
19:25:48.0910 5272 msiserver - ok
19:25:48.0925 5272 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:25:48.0925 5272 MSKSSRV - ok
19:25:48.0945 5272 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:25:48.0945 5272 MSPCLOCK - ok
19:25:48.0949 5272 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:25:48.0953 5272 MSPQM - ok
19:25:48.0968 5272 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:25:48.0972 5272 MsRPC - ok
19:25:48.0980 5272 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:25:48.0980 5272 mssmbios - ok
19:25:48.0992 5272 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:25:48.0992 5272 MSTEE - ok
19:25:49.0007 5272 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
19:25:49.0007 5272 MTConfig - ok
19:25:49.0015 5272 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
19:25:49.0019 5272 Mup - ok
19:25:49.0035 5272 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
19:25:49.0039 5272 napagent - ok
19:25:49.0074 5272 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:25:49.0078 5272 NativeWifiP - ok
19:25:49.0105 5272 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
19:25:49.0113 5272 NDIS - ok
19:25:49.0128 5272 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:25:49.0132 5272 NdisCap - ok
19:25:49.0148 5272 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:25:49.0148 5272 NdisTapi - ok
19:25:49.0183 5272 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:25:49.0187 5272 Ndisuio - ok
19:25:49.0203 5272 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:25:49.0218 5272 NdisWan - ok
19:25:49.0246 5272 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:25:49.0250 5272 NDProxy - ok
19:25:49.0277 5272 [ 510C138564486FF926A3F773205C63D1 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
19:25:49.0281 5272 Net Driver HPZ12 - ok
19:25:49.0296 5272 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:25:49.0304 5272 NetBIOS - ok
19:25:49.0343 5272 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys

[zabacek98]

19:25:49.0347 5272 NetBT - ok
19:25:49.0359 5272 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
19:25:49.0359 5272 Netlogon - ok
19:25:49.0390 5272 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
19:25:49.0394 5272 Netman - ok
19:25:49.0410 5272 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
19:25:49.0414 5272 netprofm - ok
19:25:49.0437 5272 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:25:49.0441 5272 NetTcpPortSharing - ok
19:25:49.0457 5272 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
19:25:49.0457 5272 nfrd960 - ok
19:25:49.0476 5272 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\Windows\System32\nlasvc.dll
19:25:49.0480 5272 NlaSvc - ok
19:25:49.0488 5272 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:25:49.0488 5272 Npfs - ok
19:25:49.0503 5272 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
19:25:49.0507 5272 nsi - ok
19:25:49.0515 5272 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:25:49.0515 5272 nsiproxy - ok
19:25:49.0558 5272 [ 0D87503986BB3DFED58E343FE39DDE13 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:25:49.0585 5272 Ntfs - ok
19:25:49.0593 5272 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
19:25:49.0593 5272 Null - ok
19:25:49.0812 5272 [ 0A1B502CBC8230DA74BEFBAADDB58916 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:25:50.0000 5272 nvlddmkm - ok
19:25:50.0042 5272 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:25:50.0042 5272 nvraid - ok
19:25:50.0058 5272 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:25:50.0058 5272 nvstor - ok
19:25:50.0093 5272 [ EB5A13F9139F20AD71ADF4BF79C3AA29 ] nvsvc C:\Windows\system32\nvvsvc.exe
19:25:50.0097 5272 nvsvc - ok
19:25:50.0140 5272 [ 0629259E3AF6BB0534FCECA208973404 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
19:25:50.0164 5272 nvUpdatusService - ok
19:25:50.0179 5272 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:25:50.0183 5272 nv_agp - ok
19:25:50.0253 5272 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:25:50.0261 5272 odserv - ok
19:25:50.0285 5272 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:25:50.0289 5272 ohci1394 - ok
19:25:50.0324 5272 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:25:50.0328 5272 ose - ok
19:25:50.0351 5272 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:25:50.0355 5272 p2pimsvc - ok
19:25:50.0382 5272 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
19:25:50.0386 5272 p2psvc - ok
19:25:50.0414 5272 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:25:50.0417 5272 Parport - ok
19:25:50.0433 5272 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:25:50.0437 5272 partmgr - ok
19:25:50.0441 5272 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
19:25:50.0445 5272 Parvdm - ok
19:25:50.0453 5272 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:25:50.0457 5272 PcaSvc - ok
19:25:50.0468 5272 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
19:25:50.0472 5272 pci - ok
19:25:50.0492 5272 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
19:25:50.0492 5272 pciide - ok
19:25:50.0503 5272 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
19:25:50.0507 5272 pcmcia - ok
19:25:50.0519 5272 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
19:25:50.0523 5272 pcw - ok
19:25:50.0550 5272 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:25:50.0566 5272 PEAUTH - ok
19:25:50.0621 5272 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
19:25:50.0656 5272 pla - ok
19:25:50.0683 5272 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:25:50.0691 5272 PlugPlay - ok
19:25:50.0710 5272 [ 37E5E8FFBAD35605DAEEC3224EA0E465 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
19:25:50.0714 5272 Pml Driver HPZ12 - ok
19:25:50.0722 5272 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:25:50.0726 5272 PNRPAutoReg - ok
19:25:50.0742 5272 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:25:50.0746 5272 PNRPsvc - ok
19:25:50.0765 5272 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:25:50.0769 5272 PolicyAgent - ok
19:25:50.0789 5272 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
19:25:50.0792 5272 Power - ok
19:25:50.0808 5272 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:25:50.0808 5272 PptpMiniport - ok
19:25:50.0828 5272 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
19:25:50.0828 5272 Processor - ok
19:25:50.0855 5272 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
19:25:50.0859 5272 ProfSvc - ok
19:25:50.0875 5272 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:25:50.0875 5272 ProtectedStorage - ok
19:25:50.0894 5272 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:25:50.0894 5272 Psched - ok
19:25:50.0937 5272 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
19:25:50.0968 5272 ql2300 - ok
19:25:50.0984 5272 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
19:25:50.0988 5272 ql40xx - ok
19:25:51.0007 5272 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
19:25:51.0015 5272 QWAVE - ok
19:25:51.0023 5272 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:25:51.0023 5272 QWAVEdrv - ok
19:25:51.0039 5272 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:25:51.0042 5272 RasAcd - ok
19:25:51.0066 5272 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:25:51.0070 5272 RasAgileVpn - ok
19:25:51.0085 5272 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
19:25:51.0089 5272 RasAuto - ok
19:25:51.0101 5272 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:25:51.0105 5272 Rasl2tp - ok
19:25:51.0144 5272 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
19:25:51.0148 5272 RasMan - ok
19:25:51.0156 5272 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:25:51.0160 5272 RasPppoe - ok
19:25:51.0171 5272 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:25:51.0171 5272 RasSstp - ok
19:25:51.0191 5272 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:25:51.0195 5272 rdbss - ok
19:25:51.0207 5272 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:25:51.0207 5272 rdpbus - ok
19:25:51.0226 5272 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:25:51.0226 5272 RDPCDD - ok
19:25:51.0242 5272 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:25:51.0246 5272 RDPENCDD - ok
19:25:51.0257 5272 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:25:51.0257 5272 RDPREFMP - ok
19:25:51.0285 5272 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:25:51.0285 5272 RDPWD - ok
19:25:51.0312 5272 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:25:51.0316 5272 rdyboost - ok
19:25:51.0335 5272 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
19:25:51.0339 5272 RemoteAccess - ok
19:25:51.0351 5272 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:25:51.0355 5272 RemoteRegistry - ok
19:25:51.0378 5272 [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
19:25:51.0382 5272 RFCOMM - ok
19:25:51.0394 5272 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:25:51.0398 5272 RpcEptMapper - ok
19:25:51.0417 5272 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
19:25:51.0421 5272 RpcLocator - ok
19:25:51.0437 5272 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
19:25:51.0441 5272 RpcSs - ok
19:25:51.0453 5272 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:25:51.0453 5272 rspndr - ok
19:25:51.0476 5272 [ 7DFD48E24479B68B258D8770121155A0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
19:25:51.0480 5272 RTL8167 - ok
19:25:51.0492 5272 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
19:25:51.0492 5272 SamSs - ok
19:25:51.0527 5272 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:25:51.0527 5272 sbp2port - ok
19:25:51.0570 5272 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:25:51.0574 5272 SCardSvr - ok
19:25:51.0582 5272 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:25:51.0585 5272 scfilter - ok
19:25:51.0617 5272 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
19:25:51.0632 5272 Schedule - ok
19:25:51.0640 5272 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:25:51.0640 5272 SCPolicySvc - ok
19:25:51.0664 5272 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:25:51.0667 5272 SDRSVC - ok
19:25:51.0683 5272 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:25:51.0687 5272 secdrv - ok
19:25:51.0699 5272 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
19:25:51.0703 5272 seclogon - ok
19:25:51.0722 5272 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\system32\sens.dll
19:25:51.0722 5272 SENS - ok
19:25:51.0746 5272 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:25:51.0753 5272 SensrSvc - ok
19:25:51.0769 5272 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:25:51.0773 5272 Serenum - ok
19:25:51.0785 5272 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
19:25:51.0789 5272 Serial - ok
19:25:51.0800 5272 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
19:25:51.0804 5272 sermouse - ok
19:25:51.0828 5272 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
19:25:51.0832 5272 SessionEnv - ok
19:25:51.0851 5272 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:25:51.0851 5272 sffdisk - ok
19:25:51.0863 5272 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:25:51.0867 5272 sffp_mmc - ok
19:25:51.0878 5272 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:25:51.0878 5272 sffp_sd - ok
19:25:51.0890 5272 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
19:25:51.0890 5272 sfloppy - ok
19:25:51.0917 5272 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:25:51.0925 5272 SharedAccess - ok
19:25:51.0941 5272 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:25:51.0949 5272 ShellHWDetection - ok
19:25:51.0960 5272 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
19:25:51.0960 5272 sisagp - ok
19:25:51.0980 5272 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:25:51.0984 5272 SiSRaid2 - ok
19:25:51.0996 5272 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
19:25:52.0000 5272 SiSRaid4 - ok
19:25:52.0015 5272 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:25:52.0015 5272 Smb - ok
19:25:52.0042 5272 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:25:52.0046 5272 SNMPTRAP - ok
19:25:52.0058 5272 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
19:25:52.0058 5272 spldr - ok
19:25:52.0085 5272 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
19:25:52.0089 5272 Spooler - ok
19:25:52.0160 5272 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
19:25:52.0226 5272 sppsvc - ok
19:25:52.0250 5272 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:25:52.0253 5272 sppuinotify - ok
19:25:52.0285 5272 [ CDDDEC541BC3C96F91ECB48759673505 ] sptd C:\Windows\system32\Drivers\sptd.sys
19:25:52.0285 5272 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: CDDDEC541BC3C96F91ECB48759673505
19:25:52.0304 5272 sptd ( LockedFile.Multi.Generic ) - warning
19:25:52.0304 5272 sptd - detected LockedFile.Multi.Generic (1)
19:25:52.0324 5272 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
19:25:52.0328 5272 srv - ok
19:25:52.0347 5272 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:25:52.0355 5272 srv2 - ok
19:25:52.0371 5272 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:25:52.0371 5272 srvnet - ok
19:25:52.0382 5272 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:25:52.0386 5272 SSDPSRV - ok
19:25:52.0394 5272 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:25:52.0398 5272 SstpSvc - ok
19:25:52.0421 5272 [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
19:25:52.0421 5272 Stereo Service - ok
19:25:52.0449 5272 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
19:25:52.0449 5272 stexstor - ok
19:25:52.0480 5272 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
19:25:52.0496 5272 StiSvc - ok
19:25:52.0507 5272 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
19:25:52.0507 5272 swenum - ok
19:25:52.0523 5272 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
19:25:52.0531 5272 swprv - ok
19:25:52.0562 5272 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
19:25:52.0585 5272 SysMain - ok
19:25:52.0601 5272 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:25:52.0605 5272 TabletInputService - ok
19:25:52.0625 5272 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
19:25:52.0628 5272 TapiSrv - ok
19:25:52.0644 5272 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
19:25:52.0648 5272 TBS - ok
19:25:52.0687 5272 [ 7C0507D2391AF5933600CBCED799F277 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:25:52.0710 5272 Tcpip - ok
19:25:52.0750 5272 [ 7C0507D2391AF5933600CBCED799F277 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:25:52.0757 5272 TCPIP6 - ok
19:25:52.0781 5272 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:25:52.0781 5272 tcpipreg - ok
19:25:52.0804 5272 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:25:52.0804 5272 TDPIPE - ok
19:25:52.0816 5272 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:25:52.0816 5272 TDTCP - ok
19:25:52.0835 5272 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:25:52.0839 5272 tdx - ok
19:25:52.0972 5272 [ 6B1B2F8D62D606B200C2072564090104 ] TeamViewer8 C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
19:25:52.0996 5272 TeamViewer8 - ok
19:25:53.0015 5272 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
19:25:53.0019 5272 TermDD - ok
19:25:53.0046 5272 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
19:25:53.0066 5272 TermService - ok
19:25:53.0074 5272 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
19:25:53.0074 5272 Themes - ok
19:25:53.0085 5272 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
19:25:53.0085 5272 THREADORDER - ok
19:25:53.0128 5272 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
19:25:53.0132 5272 TrkWks - ok
19:25:53.0164 5272 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:25:53.0167 5272 TrustedInstaller - ok
19:25:53.0179 5272 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:25:53.0179 5272 tssecsrv - ok
19:25:53.0195 5272 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:25:53.0195 5272 TsUsbFlt - ok
19:25:53.0218 5272 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:25:53.0222 5272 tunnel - ok
19:25:53.0242 5272 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
19:25:53.0242 5272 uagp35 - ok
19:25:53.0269 5272 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:25:53.0273 5272 udfs - ok
19:25:53.0289 5272 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:25:53.0292 5272 UI0Detect - ok
19:25:53.0308 5272 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:25:53.0308 5272 uliagpkx - ok
19:25:53.0335 5272 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
19:25:53.0335 5272 umbus - ok
19:25:53.0347 5272 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
19:25:53.0347 5272 UmPass - ok
19:25:53.0371 5272 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
19:25:53.0386 5272 upnphost - ok
19:25:53.0410 5272 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:25:53.0410 5272 usbccgp - ok
19:25:53.0429 5272 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:25:53.0429 5272 usbcir - ok
19:25:53.0453 5272 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
19:25:53.0457 5272 usbehci - ok
19:25:53.0468 5272 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:25:53.0472 5272 usbhub - ok
19:25:53.0488 5272 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:25:53.0488 5272 usbohci - ok
19:25:53.0503 5272 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:25:53.0507 5272 usbprint - ok
19:25:53.0523 5272 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
19:25:53.0527 5272 usbscan - ok
19:25:53.0539 5272 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:25:53.0539 5272 USBSTOR - ok
19:25:53.0546 5272 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
19:25:53.0550 5272 usbuhci - ok
19:25:53.0558 5272 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
19:25:53.0562 5272 UxSms - ok
19:25:53.0582 5272 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
19:25:53.0585 5272 VaultSvc - ok
19:25:53.0613 5272 [ B1EF938CEF5C6F24D89E567893E01C39 ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
19:25:53.0617 5272 VBoxNetAdp - ok
19:25:53.0632 5272 VBoxNetFlt - ok
19:25:53.0644 5272 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:25:53.0648 5272 vdrvroot - ok
19:25:53.0667 5272 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
19:25:53.0683 5272 vds - ok
19:25:53.0695 5272 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:25:53.0699 5272 vga - ok
19:25:53.0710 5272 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
19:25:53.0714 5272 VgaSave - ok
19:25:53.0742 5272 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:25:53.0746 5272 vhdmp - ok
19:25:53.0757 5272 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
19:25:53.0757 5272 viaagp - ok
19:25:53.0769 5272 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
19:25:53.0773 5272 ViaC7 - ok
19:25:53.0789 5272 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
19:25:53.0789 5272 viaide - ok
19:25:53.0800 5272 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:25:53.0804 5272 volmgr - ok
19:25:53.0832 5272 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:25:53.0835 5272 volmgrx - ok
19:25:53.0851 5272 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:25:53.0855 5272 volsnap - ok
19:25:53.0875 5272 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
19:25:53.0878 5272 vsmraid - ok
19:25:53.0914 5272 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
19:25:53.0937 5272 VSS - ok
19:25:53.0949 5272 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
19:25:53.0949 5272 vwifibus - ok
19:25:53.0988 5272 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
19:25:53.0996 5272 W32Time - ok
19:25:54.0011 5272 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
19:25:54.0015 5272 WacomPen - ok
19:25:54.0046 5272 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:25:54.0046 5272 WANARP - ok
19:25:54.0050 5272 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:25:54.0054 5272 Wanarpv6 - ok
19:25:54.0097 5272 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:25:54.0105 5272 WatAdminSvc - ok
19:25:54.0136 5272 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
19:25:54.0164 5272 wbengine - ok
19:25:54.0179 5272 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:25:54.0187 5272 WbioSrvc - ok
19:25:54.0207 5272 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:25:54.0210 5272 wcncsvc - ok
19:25:54.0226 5272 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:25:54.0230 5272 WcsPlugInService - ok
19:25:54.0250 5272 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
19:25:54.0250 5272 Wd - ok
19:25:54.0285 5272 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:25:54.0300 5272 Wdf01000 - ok
19:25:54.0308 5272 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:25:54.0312 5272 WdiServiceHost - ok
19:25:54.0316 5272 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:25:54.0316 5272 WdiSystemHost - ok
19:25:54.0335 5272 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
19:25:54.0339 5272 WebClient - ok
19:25:54.0351 5272 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:25:54.0355 5272 Wecsvc - ok
19:25:54.0359 5272 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:25:54.0367 5272 wercplsupport - ok
19:25:54.0394 5272 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
19:25:54.0398 5272 WerSvc - ok
19:25:54.0417 5272 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:25:54.0421 5272 WfpLwf - ok
19:25:54.0437 5272 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:25:54.0441 5272 WIMMount - ok
19:25:54.0484 5272 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
19:25:54.0500 5272 WinDefend - ok
19:25:54.0503 5272 WinHttpAutoProxySvc - ok
19:25:54.0550 5272 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:25:54.0550 5272 Winmgmt - ok
19:25:54.0589 5272 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
19:25:54.0613 5272 WinRM - ok
19:25:54.0660 5272 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
19:25:54.0660 5272 WinUsb - ok
19:25:54.0695 5272 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
19:25:54.0710 5272 Wlansvc - ok
19:25:54.0773 5272 [ 0A70F4022EC2E14C159EFC4F69AA2477 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:25:54.0781 5272 wlidsvc - ok
19:25:54.0800 5272 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:25:54.0800 5272 WmiAcpi - ok
19:25:54.0816 5272 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:25:54.0820 5272 wmiApSrv - ok
19:25:54.0878 5272 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
19:25:54.0906 5272 WMPNetworkSvc - ok
19:25:54.0914 5272 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:25:54.0917 5272 WPCSvc - ok
19:25:54.0937 5272 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:25:54.0941 5272 WPDBusEnum - ok
19:25:54.0960 5272 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:25:54.0964 5272 ws2ifsl - ok
19:25:54.0976 5272 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\system32\wscsvc.dll
19:25:54.0980 5272 wscsvc - ok
19:25:54.0984 5272 WSearch - ok
19:25:55.0046 5272 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
19:25:55.0078 5272 wuauserv - ok
19:25:55.0093 5272 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:25:55.0097 5272 WudfPf - ok
19:25:55.0117 5272 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:25:55.0117 5272 WUDFRd - ok
19:25:55.0128 5272 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:25:55.0132 5272 wudfsvc - ok
19:25:55.0148 5272 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
19:25:55.0152 5272 WwanSvc - ok
19:25:55.0179 5272 ================ Scan global ===============================
19:25:55.0199 5272 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
19:25:55.0226 5272 [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll
19:25:55.0242 5272 [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll
19:25:55.0257 5272 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
19:25:55.0285 5272 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
19:25:55.0289 5272 [Global] - ok
19:25:55.0289 5272 ================ Scan MBR ==================================
19:25:55.0296 5272 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:25:55.0468 5272 \Device\Harddisk0\DR0 - ok
19:25:55.0468 5272 ================ Scan VBR ==================================
19:25:55.0472 5272 [ 06ED0DCD6CFA435476086C56278CEEEC ] \Device\Harddisk0\DR0\Partition1
19:25:55.0476 5272 \Device\Harddisk0\DR0\Partition1 - ok
19:25:55.0476 5272 ============================================================
19:25:55.0476 5272 Scan finished
19:25:55.0476 5272 ============================================================
19:25:55.0488 4016 Detected object count: 1
19:25:55.0488 4016 Actual detected object count: 1
19:26:13.0035 4016 sptd ( LockedFile.Multi.Generic ) - skipped by user
19:26:13.0035 4016 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
19:26:17.0148 4428 Deinitialize success

[zabacek98]

ComboFix 13-04-06.02 - Valentovi 06.04.2013 19:39:40.2.2 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3071.1936 [GMT 2:00]
Spuštěný z: c:\users\Valentovi\Downloads\ComboFix.exe
AV: ESET Smart Security 6.0 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 6.0 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-03-06 do 2013-04-06 )))))))))))))))))))))))))))))))
.
.
2013-04-06 17:44 . 2013-04-06 17:44 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-04-06 17:44 . 2013-04-06 17:44 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-04-06 14:17 . 2013-04-06 14:17 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-04-06 14:17 . 2012-12-14 14:49 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-04-05 17:56 . 2013-04-05 17:56 388096 ----a-r- c:\users\Valentovi\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-04-05 17:56 . 2013-04-05 17:56 -------- d-----w- c:\program files\Trend Micro
2013-04-05 17:32 . 2009-02-27 01:42 31640 ----a-w- c:\windows\system32\msonpmon.dll
2013-04-05 17:32 . 2006-10-26 17:56 33104 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\msonpppr.dll
2013-04-05 17:32 . 2013-04-05 19:29 -------- d-----w- c:\program files\Microsoft Works
2013-04-05 17:29 . 2013-04-05 17:29 -------- d-----r- C:\MSOCache
2013-04-05 06:47 . 2013-03-15 07:21 7108640 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{6794B8E1-E1F0-40FF-95D0-DB1576721CAA}\mpengine.dll
2013-03-24 18:29 . 2013-03-24 18:29 -------- d-----w- c:\users\Valentovi\AppData\Roaming\SUPERAntiSpyware.com
2013-03-22 12:34 . 2013-03-22 12:34 -------- d-----w- c:\program files\Microsoft Silverlight
2013-03-16 21:40 . 2002-02-14 09:36 60416 ----a-w- c:\windows\system32\shdocvw.oca
2013-03-16 21:30 . 2013-03-16 21:30 -------- d-----w- c:\users\Valentovi\AppData\Roaming\Media Player Classic
2013-03-16 21:28 . 2012-07-01 23:15 4102656 ----a-w- c:\windows\system32\x264vfw.dll
2013-03-16 21:28 . 2011-12-07 18:32 216064 ----a-w- c:\windows\system32\lagarith.dll
2013-03-16 21:28 . 2011-06-24 15:28 650752 ----a-w- c:\windows\system32\xvidcore.dll
2013-03-16 21:28 . 2008-09-24 19:41 839680 ----a-w- c:\windows\system32\lameACM.acm
2013-03-16 21:28 . 2004-05-18 19:16 39936 ----a-w- c:\windows\system32\huffyuv.dll
2013-03-16 21:28 . 2012-06-09 18:21 178688 ----a-w- c:\windows\system32\unrar.dll
2013-03-16 21:28 . 2011-06-24 15:44 243200 ----a-w- c:\windows\system32\xvidvfw.dll
2013-03-16 21:28 . 2013-03-07 18:00 112640 ----a-w- c:\windows\system32\ff_vfw.dll
2013-03-16 21:28 . 2013-03-16 21:28 -------- d-----w- c:\program files\K-Lite Codec Pack
2013-03-16 21:22 . 2013-03-16 21:22 -------- d-----w- c:\programdata\PopCap Games
2013-03-16 19:12 . 2013-02-12 03:32 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-03-11 18:00 . 2013-03-11 18:00 -------- d-----w- c:\windows\cs
2013-03-11 18:00 . 2013-03-11 18:00 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2013-03-11 17:59 . 2013-03-11 18:00 -------- d-----w- c:\program files\Windows Live
2013-03-11 17:59 . 2009-09-04 16:44 69464 ----a-w- c:\windows\system32\XAPOFX1_3.dll
2013-03-11 17:59 . 2009-09-04 16:44 515416 ----a-w- c:\windows\system32\XAudio2_5.dll
2013-03-11 17:59 . 2009-09-04 16:29 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2013-03-11 17:59 . 2006-11-29 12:06 3426072 ----a-w- c:\windows\system32\d3dx9_32.dll
2013-03-11 17:57 . 2013-04-06 13:43 -------- d-----w- c:\users\Valentovi\AppData\Local\Windows Live
2013-03-11 17:57 . 2013-03-11 17:57 -------- d-----w- c:\program files\Common Files\Windows Live
2013-03-09 19:35 . 2013-03-11 17:52 -------- d-----w- c:\users\Valentovi\AppData\Roaming\Zoner
2013-03-09 19:35 . 2013-03-09 19:35 -------- d-----w- c:\users\Valentovi\AppData\Local\Zoner
2013-03-09 19:35 . 2013-03-09 19:35 -------- d-----w- c:\programdata\Zoner
2013-03-09 17:58 . 2013-03-09 17:58 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-03-09 17:57 . 2013-03-09 17:57 -------- d-----w- c:\program files\Java
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-12 19:51 . 2013-01-26 14:16 73432 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-03-12 19:51 . 2013-01-26 14:16 693976 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-03-11 23:10 . 2013-02-17 10:45 237088 ------w- c:\windows\system32\MpSigStub.exe
2013-03-11 17:59 . 2010-06-24 10:33 19696 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-03-09 17:57 . 2013-02-23 16:41 861088 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-03-09 17:57 . 2013-02-23 16:41 782240 ----a-w- c:\windows\system32\deployJava1.dll
2013-02-23 19:12 . 2013-02-23 19:12 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2013-02-12 04:48 . 2013-03-13 02:51 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-13 02:51 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-02-02 16:25 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2013-01-13 21:17 . 2013-02-27 14:09 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-01-13 21:17 . 2013-02-27 14:09 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-01-13 21:16 . 2013-02-27 14:09 10752 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-01-13 21:12 . 2013-02-27 14:09 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-01-13 21:11 . 2013-02-27 14:09 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-01-13 21:11 . 2013-02-27 14:09 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-01-13 21:11 . 2013-02-27 14:09 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-01-13 21:11 . 2013-02-27 14:09 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-01-13 21:11 . 2013-02-27 14:09 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-01-13 20:31 . 2013-02-27 14:09 1247744 ----a-w- c:\windows\system32\DWrite.dll
2013-01-13 20:30 . 2013-02-27 14:09 906240 ----a-w- c:\windows\system32\FntCache.dll
2013-01-13 20:22 . 2013-02-27 14:09 1988096 ----a-w- c:\windows\system32\d3d10warp.dll
2013-01-13 20:20 . 2013-02-27 14:09 293376 ----a-w- c:\windows\system32\dxgi.dll
2013-01-13 20:09 . 2013-02-27 14:09 249856 ----a-w- c:\windows\system32\d3d10_1core.dll
2013-01-13 20:08 . 2013-02-27 14:09 220160 ----a-w- c:\windows\system32\d3d10core.dll
2013-01-13 20:08 . 2013-02-27 14:09 1504768 ----a-w- c:\windows\system32\d3d11.dll
2013-01-13 19:54 . 2013-02-27 14:09 604160 ----a-w- c:\windows\system32\d3d10level9.dll
2013-01-13 19:53 . 2013-02-27 14:09 207872 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2013-01-13 19:53 . 2013-02-27 14:09 187392 ----a-w- c:\windows\system32\UIAnimation.dll
2013-01-13 19:48 . 2013-02-27 14:09 161792 ----a-w- c:\windows\system32\d3d10_1.dll
2013-01-13 19:46 . 2013-02-27 14:09 1080832 ----a-w- c:\windows\system32\d3d10.dll
2013-01-13 19:43 . 2013-02-27 14:09 1230336 ----a-w- c:\windows\system32\WindowsCodecs.dll
2013-01-13 19:37 . 2013-02-27 14:09 3419136 ----a-w- c:\windows\system32\d2d1.dll
2013-01-13 19:02 . 2013-02-27 14:09 417792 ----a-w- c:\windows\system32\WMPhoto.dll
2013-01-13 18:34 . 2013-02-27 14:09 364544 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2013-01-13 17:26 . 2013-02-27 14:09 1158144 ----a-w- c:\windows\system32\XpsPrint.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2012-11-26 5074384]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer1"=wdmaud.drv
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
backup=c:\windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
backupExtension=.CommonStartup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-12-03 07:35 946352 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2013-01-26 14:18 116648 ----atw- c:\users\Valentovi\AppData\Local\Google\Update\GoogleUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2007-05-08 15:24 54840 ----a-w- c:\program files\HP\HP Software Update\hpwuSchd2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpqSRMon]
2008-07-22 17:33 150528 ----a-w- c:\program files\HP\Digital Imaging\bin\HpqSRmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2013-01-08 11:59 18706176 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [x]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [x]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 TeamViewer8;TeamViewer 8;c:\program files\TeamViewer\Version8\TeamViewer_Service.exe [x]
S3 3xHybrid;3xHybrid service;c:\windows\system32\DRIVERS\3xHybrid.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt86win7.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMPROTECTOR
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc Mcx2Svc SensrSvc
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
.
Obsah adresáře 'Naplánované úlohy'
.
2013-04-06 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-26 19:51]
.
2013-04-06 c:\windows\Tasks\GlaryInitialize.job
- c:\program files\Glary Utilities\initialize.exe [2013-02-23 23:26]
.
2013-04-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3939440691-867115002-2967159638-1001Core.job
- c:\users\Valentovi\AppData\Local\Google\Update\GoogleUpdate.exe [2013-01-26 14:18]
.
2013-04-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3939440691-867115002-2967159638-1001UA.job
- c:\users\Valentovi\AppData\Local\Google\Update\GoogleUpdate.exe [2013-01-26 14:18]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 10.0.0.138
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2013-04-06 19:45:18
ComboFix-quarantined-files.txt 2013-04-06 17:45
ComboFix2.txt 2013-02-09 13:47
.
Před spuštěním: Volných bajtů: 433 635 659 776
Po spuštění: Volných bajtů: 433 352 617 984
.
- - End Of File - - 64D5CE68FE8EFE524921755F39210844

[jaro3]

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

ClearJavaCache::

KillAll::
File::
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3939440691-867115002-2967159638-1001Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3939440691-867115002-2967159638-1001UA.job

Folder::
c:\users\Valentovi\AppData\Local\Google\Update

Registry::
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]

RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

[zabacek98]

Log z combofixu:

ComboFix 13-04-06.02 - Valentovi 07.04.2013 13:45:15.3.2 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3071.1977 [GMT 2:00]
Spuštěný z: c:\users\Valentovi\Downloads\ComboFix.exe
Použité ovládací přepínače :: c:\users\Valentovi\Desktop\CFScript.txt
AV: ESET Smart Security 6.0 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 6.0 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3939440691-867115002-2967159638-1001Core.job"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3939440691-867115002-2967159638-1001UA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Valentovi\AppData\Local\Google\Update
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler.exe
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\GoogleUpdate.exe
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\GoogleUpdateBroker.exe
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\GoogleUpdateHelper.msi
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\GoogleUpdateOnDemand.exe
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\GoogleUpdateSetup.exe
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdate.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_am.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_ar.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_bg.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_bn.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_ca.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_cs.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_da.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_de.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_el.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_en-GB.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_en.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_es-419.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_es.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_et.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_fa.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_fi.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_fil.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_fr.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_gu.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_hi.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_hr.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_hu.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_id.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_is.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_it.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_iw.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_ja.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_kn.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_ko.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_lt.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_lv.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_ml.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_mr.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_ms.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_nl.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_no.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_pl.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_pt-BR.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_pt-PT.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_ro.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_ru.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_sk.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_sl.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_sr.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_sv.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_sw.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_ta.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_te.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_th.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_tr.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_uk.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_ur.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_vi.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_zh-CN.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\goopdateres_zh-TW.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\psmachine.dll
c:\users\Valentovi\AppData\Local\Google\Update\1.3.21.135\psuser.dll
c:\users\Valentovi\AppData\Local\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.135\GoogleUpdateSetup.exe
c:\users\Valentovi\AppData\Local\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\26.0.1410.43\26.0.1410.43_25.0.1364.172_chrome_updater.exe
c:\users\Valentovi\AppData\Local\Google\Update\GoogleUpdate.exe
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3939440691-867115002-2967159638-1001Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3939440691-867115002-2967159638-1001UA.job
.
Nakažená kopie c:\windows\system32\user32.dll byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\erdnt\cache\user32.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-03-07 do 2013-04-07 )))))))))))))))))))))))))))))))
.
.
2013-04-07 11:50 . 2013-04-07 11:52 -------- d-----w- c:\users\Valentovi\AppData\Local\temp
2013-04-07 11:50 . 2013-04-07 11:50 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-04-07 11:50 . 2013-04-07 11:50 -------- d-----w- c:\users\Public\AppData\Local\temp
2013-04-07 11:50 . 2013-04-07 11:50 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-04-06 17:56 . 2013-04-06 17:56 -------- d-----w- c:\users\Valentovi\AppData\Local\CrashDumps
2013-04-06 14:17 . 2013-04-06 14:17 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-04-06 14:17 . 2012-12-14 14:49 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-04-05 17:56 . 2013-04-05 17:56 388096 ----a-r- c:\users\Valentovi\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-04-05 17:56 . 2013-04-05 17:56 -------- d-----w- c:\program files\Trend Micro
2013-04-05 17:32 . 2009-02-27 01:42 31640 ----a-w- c:\windows\system32\msonpmon.dll
2013-04-05 17:32 . 2006-10-26 17:56 33104 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\msonpppr.dll
2013-04-05 17:32 . 2013-04-05 19:29 -------- d-----w- c:\program files\Microsoft Works
2013-04-05 17:29 . 2013-04-05 17:29 -------- d-----r- C:\MSOCache
2013-04-05 06:47 . 2013-03-15 07:21 7108640 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{6794B8E1-E1F0-40FF-95D0-DB1576721CAA}\mpengine.dll
2013-03-24 18:29 . 2013-03-24 18:29 -------- d-----w- c:\users\Valentovi\AppData\Roaming\SUPERAntiSpyware.com
2013-03-22 12:34 . 2013-03-22 12:34 -------- d-----w- c:\program files\Microsoft Silverlight
2013-03-16 21:40 . 2002-02-14 09:36 60416 ----a-w- c:\windows\system32\shdocvw.oca
2013-03-16 21:30 . 2013-03-16 21:30 -------- d-----w- c:\users\Valentovi\AppData\Roaming\Media Player Classic
2013-03-16 21:28 . 2012-07-01 23:15 4102656 ----a-w- c:\windows\system32\x264vfw.dll
2013-03-16 21:28 . 2011-12-07 18:32 216064 ----a-w- c:\windows\system32\lagarith.dll
2013-03-16 21:28 . 2011-06-24 15:28 650752 ----a-w- c:\windows\system32\xvidcore.dll
2013-03-16 21:28 . 2008-09-24 19:41 839680 ----a-w- c:\windows\system32\lameACM.acm
2013-03-16 21:28 . 2004-05-18 19:16 39936 ----a-w- c:\windows\system32\huffyuv.dll
2013-03-16 21:28 . 2012-06-09 18:21 178688 ----a-w- c:\windows\system32\unrar.dll
2013-03-16 21:28 . 2011-06-24 15:44 243200 ----a-w- c:\windows\system32\xvidvfw.dll
2013-03-16 21:28 . 2013-03-07 18:00 112640 ----a-w- c:\windows\system32\ff_vfw.dll
2013-03-16 21:28 . 2013-03-16 21:28 -------- d-----w- c:\program files\K-Lite Codec Pack
2013-03-16 21:22 . 2013-03-16 21:22 -------- d-----w- c:\programdata\PopCap Games
2013-03-16 19:12 . 2013-02-12 03:32 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-03-11 18:00 . 2013-03-11 18:00 -------- d-----w- c:\windows\cs
2013-03-11 18:00 . 2013-03-11 18:00 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2013-03-11 17:59 . 2013-03-11 18:00 -------- d-----w- c:\program files\Windows Live
2013-03-11 17:59 . 2009-09-04 16:44 69464 ----a-w- c:\windows\system32\XAPOFX1_3.dll
2013-03-11 17:59 . 2009-09-04 16:44 515416 ----a-w- c:\windows\system32\XAudio2_5.dll
2013-03-11 17:59 . 2009-09-04 16:29 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2013-03-11 17:59 . 2006-11-29 12:06 3426072 ----a-w- c:\windows\system32\d3dx9_32.dll
2013-03-11 17:57 . 2013-04-06 13:43 -------- d-----w- c:\users\Valentovi\AppData\Local\Windows Live
2013-03-11 17:57 . 2013-03-11 17:57 -------- d-----w- c:\program files\Common Files\Windows Live
2013-03-09 19:35 . 2013-03-11 17:52 -------- d-----w- c:\users\Valentovi\AppData\Roaming\Zoner
2013-03-09 19:35 . 2013-03-09 19:35 -------- d-----w- c:\users\Valentovi\AppData\Local\Zoner
2013-03-09 19:35 . 2013-03-09 19:35 -------- d-----w- c:\programdata\Zoner
2013-03-09 17:58 . 2013-03-09 17:58 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-03-09 17:57 . 2013-03-09 17:57 -------- d-----w- c:\program files\Java
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-12 19:51 . 2013-01-26 14:16 73432 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-03-12 19:51 . 2013-01-26 14:16 693976 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-03-11 23:10 . 2013-02-17 10:45 237088 ------w- c:\windows\system32\MpSigStub.exe
2013-03-11 17:59 . 2010-06-24 10:33 19696 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-03-09 17:57 . 2013-02-23 16:41 861088 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-03-09 17:57 . 2013-02-23 16:41 782240 ----a-w- c:\windows\system32\deployJava1.dll
2013-02-23 19:12 . 2013-02-23 19:12 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2013-02-12 04:48 . 2013-03-13 02:51 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-13 02:51 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-02-02 16:25 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2013-01-13 21:17 . 2013-02-27 14:09 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-01-13 21:17 . 2013-02-27 14:09 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-01-13 21:16 . 2013-02-27 14:09 10752 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-01-13 21:12 . 2013-02-27 14:09 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-01-13 21:11 . 2013-02-27 14:09 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-01-13 21:11 . 2013-02-27 14:09 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-01-13 21:11 . 2013-02-27 14:09 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-01-13 21:11 . 2013-02-27 14:09 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-01-13 21:11 . 2013-02-27 14:09 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-01-13 20:31 . 2013-02-27 14:09 1247744 ----a-w- c:\windows\system32\DWrite.dll
2013-01-13 20:30 . 2013-02-27 14:09 906240 ----a-w- c:\windows\system32\FntCache.dll
2013-01-13 20:22 . 2013-02-27 14:09 1988096 ----a-w- c:\windows\system32\d3d10warp.dll
2013-01-13 20:20 . 2013-02-27 14:09 293376 ----a-w- c:\windows\system32\dxgi.dll
2013-01-13 20:09 . 2013-02-27 14:09 249856 ----a-w- c:\windows\system32\d3d10_1core.dll
2013-01-13 20:08 . 2013-02-27 14:09 220160 ----a-w- c:\windows\system32\d3d10core.dll
2013-01-13 20:08 . 2013-02-27 14:09 1504768 ----a-w- c:\windows\system32\d3d11.dll
2013-01-13 19:54 . 2013-02-27 14:09 604160 ----a-w- c:\windows\system32\d3d10level9.dll
2013-01-13 19:53 . 2013-02-27 14:09 207872 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2013-01-13 19:53 . 2013-02-27 14:09 187392 ----a-w- c:\windows\system32\UIAnimation.dll
2013-01-13 19:48 . 2013-02-27 14:09 161792 ----a-w- c:\windows\system32\d3d10_1.dll
2013-01-13 19:46 . 2013-02-27 14:09 1080832 ----a-w- c:\windows\system32\d3d10.dll
2013-01-13 19:43 . 2013-02-27 14:09 1230336 ----a-w- c:\windows\system32\WindowsCodecs.dll
2013-01-13 19:37 . 2013-02-27 14:09 3419136 ----a-w- c:\windows\system32\d2d1.dll
2013-01-13 19:02 . 2013-02-27 14:09 417792 ----a-w- c:\windows\system32\WMPhoto.dll
2013-01-13 18:34 . 2013-02-27 14:09 364544 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2013-01-13 17:26 . 2013-02-27 14:09 1158144 ----a-w- c:\windows\system32\XpsPrint.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2012-11-26 5074384]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer1"=wdmaud.drv
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
backup=c:\windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-12-03 07:35 946352 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2007-05-08 15:24 54840 ----a-w- c:\program files\HP\HP Software Update\hpwuSchd2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpqSRMon]
2008-07-22 17:33 150528 ----a-w- c:\program files\HP\Digital Imaging\bin\HpqSRmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2013-01-08 11:59 18706176 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [x]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [x]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 TeamViewer8;TeamViewer 8;c:\program files\TeamViewer\Version8\TeamViewer_Service.exe [x]
S3 3xHybrid;3xHybrid service;c:\windows\system32\DRIVERS\3xHybrid.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt86win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc Mcx2Svc SensrSvc
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
.
Obsah adresáře 'Naplánované úlohy'
.
2013-04-07 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-26 19:51]
.
2013-04-07 c:\windows\Tasks\GlaryInitialize.job
- c:\program files\Glary Utilities\initialize.exe [2013-02-23 23:26]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 10.0.0.138
.
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\system32\taskhost.exe
c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\System32\WUDFHost.exe
c:\windows\system32\conhost.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\DllHost.exe
.
**************************************************************************
.
Celkový čas: 2013-04-07 13:53:55 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-04-07 11:53
ComboFix2.txt 2013-04-06 17:45
ComboFix3.txt 2013-02-09 13:47
.
Před spuštěním: Volných bajtů: 430 160 248 832
Po spuštění: Volných bajtů: 430 101 651 456
.
- - End Of File - - 93124C4D5AD0D147E90278B3C646C8D0

[zabacek98]

HJT zase bohužel nejde spustit... Jdu tedy na bod 3.

EDIT:
log z HJT:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:25:02, on 7.4.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16521)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\Explorer.exe
C:\Program Files\TeamViewer\Version8\TeamViewer.exe
C:\Users\Valentovi\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Valentovi\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Valentovi\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Valentovi\Downloads\hijackthis (2).exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe

--
End of file - 5069 bytes

[zabacek98]

aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-04-07 14:22:02
-----------------------------
14:22:02.372 OS Version: Windows 6.1.7601 Service Pack 1
14:22:02.372 Number of processors: 2 586 0x1706
14:22:02.373 ComputerName: VALENTOVI-PC UserName: Valentovi
14:22:03.463 Initialize success
14:22:24.155 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP5T0L0-6
14:22:24.159 Disk 0 Vendor: WDC_WD5000AAKS-00A7B0 01.03B01 Size: 476940MB BusType: 3
14:22:24.166 Disk 0 MBR read successfully
14:22:24.170 Disk 0 MBR scan
14:22:24.174 Disk 0 Windows 7 default MBR code
14:22:24.186 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 476938 MB offset 2048
14:22:24.194 Disk 0 scanning sectors +976771072
14:22:24.245 Disk 0 scanning C:\Windows\system32\drivers
14:22:28.178 Service scanning
14:22:34.061 Service sptd C:\Windows\System32\Drivers\sptd.sys **LOCKED** 32
14:22:36.432 Modules scanning
14:22:45.123 Disk 0 trace - called modules:
14:22:45.155 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll >>UNKNOWN [0x851801f8]<<
14:22:45.159 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85ff5880]
14:22:45.163 3 CLASSPNP.SYS[8b5ae59e] -> nt!IofCallDriver -> [0x85efe7a8]
14:22:45.170 5 ACPI.sys[8adb83d4] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP5T0L0-6[0x85f06030]
14:22:45.178 \Driver\atapi[0x85ed68f8] -> IRP_MJ_CREATE -> 0x851801f8
14:22:45.194 Scan finished successfully
14:23:04.264 Disk 0 MBR has been saved successfully to "C:\Users\Valentovi\Desktop\MBR.dat"
14:23:04.305 The log file has been saved successfully to "C:\Users\Valentovi\Desktop\aswMBR.txt"

[Žbeky]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

Stáhni si OTC na plochu, spusť jej a klikni na Clean up!

Jak se chová PC?

[zabacek98]

Omlouvám se za zpoždění...
Počítač se chová znatelně rychleji a vůbec se neseká. Děkuji mockrát