Prosím o kontrolu LOGu Vyřešeno

[Laggger164]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:11:18, on 29.5.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Nero\Update\NASvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\IObit\Smart Defrag 2\SmartDefrag.exe
C:\Program Files\IObit\Advanced SystemCare 6\Monitor.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\IObit\Advanced SystemCare 6\Suo10_SmartRAM.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\IObit\Advanced SystemCare 6\DelayLoad.exe
C:\WINDOWS\system32\msfeedssync.exe
C:\Program Files\HiJackThis\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~1\IObit\ADVANC~1\BROWER~1\ASCPLU~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [MRPRun] C:\PROGRA~1\MRP\MRPRun.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [OneTouch Monitor] C:\PROGRA~1\VISION~1\ONETOU~2.EXE
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Advanced SystemCare 6] "C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [SmartRAM] "C:\Program Files\IObit\Advanced SystemCare 6\Suo10_SmartRAM.exe" /m
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 5780 bytes


Vopred ďakujem.

P.S.: Mám problém s tučným písmom na Microsoft Office a pomalým internetom.

[Reklama]

[memphisto]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[Laggger164]

Ja mám len IE a Google Chrome. Ani Mozillu ani Operu nemám. Dá sa ATFcleaner nahradiť CCleanerom?

[jaro3]

Jo , dá.
Vyčisti systém CCleanerem

Pak pokračuj podle rad.

[Laggger164]

Malwarebytes Anti-Malware (Skúšobná verzia) 1.75.0.1300
www.malwarebytes.org

Verzia databázy: v2013.05.30.04

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Jarko :: MOJ_POCITAC [administrátor]

Ochrana: Zapnuté

30.5.2013 15:34:58
mbam-log-2013-05-30 (15-34-58).txt

Typ kontroly: Rýchla kontrola
Možnosti kontroly zapnuté: Pamäť | Po spustení | Registre | Systémové súbory | Heuristika/Extra | Heuristika/Shuriken | PUP | PUM
Možnosti kontroly vypnuté: P2P
Objektov kontrolovaných: 299145
Uplynutý čas: 15 min, 6 sek

Detegované služby pamäte: 0
(Škodlivé položky neboli zistené)

Detegované moduly pamäte: 0
(Škodlivé položky neboli zistené)

Detegované registračné kľúče: 0
(Škodlivé položky neboli zistené)

Detegované registračné hodnoty: 0
(Škodlivé položky neboli zistené)

Detegované položky registračných dát: 0
(Škodlivé položky neboli zistené)

Detegované priečinky: 0
(Škodlivé položky neboli zistené)

Detegované súbory: 0
(Škodlivé položky neboli zistené)

(koniec)





# AdwCleaner v2.301 - Logfile created 05/30/2013 at 15:50:59
# Updated 16/05/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Jarko - MOJ_POCITAC
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Jarko\Desktop\adwcleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

Folder Found : C:\Documents and Settings\Jarko\Desktop\Save
Folder Found : C:\Documents and Settings\Ocko\Application Data\pdfforge

***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Google Chrome v27.0.1453.94

File : C:\Documents and Settings\Jarko\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

Found [l.3167] : urls_to_restore_on_startup = [ "hxxp://www.google.com/", "hxxp://search.babylon.com/?affID=113543&tt=201208_mnt_n_3412_3&babsrc=HP_ss&mntrId=50109ce700000000000000138f57f55f", "hxxp://search.babylon.com/?affID=111304&tt=130812_ppcs2_3312_7&babsrc=HP_ss&mntrId=888187a300000000000000252204d778" ]

File : C:\Documents and Settings\Lukaško\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

Found [l.3051] : urls_to_restore_on_startup = [ "hxxp://home.sweetim.com/?st=6&barid={1AC7CD60-C75E-46F0-A3D6-A897261EFE74}", "hxxp://www.google.com" ]

File : C:\Documents and Settings\Mamka\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

File : C:\Documents and Settings\Ocko\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

Found [l.3110] : urls_to_restore_on_startup = [ "hxxp://www.google.com/", "hxxp://search.babylon.com/?affID=113543&tt=201208_mnt_n_3412_3&babsrc=HP_ss&mntrId=50109ce700000000000000138f57f55f", "hxxp://search.babylon.com/?affID=111304&tt=130812_ppcs2_3312_7&babsrc=HP_ss&mntrId=888187a300000000000000252204d778" ]

File : C:\Documents and Settings\Samko\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [2128 octets] - [30/05/2013 15:50:59]

########## EOF - C:\AdwCleaner[R1].txt - [2188 octets] ##########




Čo ďalej?

[memphisto]

V adw nech vše smazat a dodej log po mazání

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

[Laggger164]

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operačný systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spustené v : Normálny režim
Užívateľ : Jarko [Práva Správcu]
Režim : Kontrola -- Dátum : 05/30/2013 17:27:54
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy : 0 ¤¤¤

¤¤¤ Záznamy Registrov : 1 ¤¤¤
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NÁJDENÉ

¤¤¤ Zvláštne súbory / Adresáre: ¤¤¤

¤¤¤ Ovládač : [NAHRATÉ] ¤¤¤

¤¤¤ Súbor HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: WDC WD800LB-55DNA0 +++++
--- User ---
[MBR] 5f5d881b2c1e44faa67e95e2f4e57336
[BSP] 911c1f615242f271c0a3c57cf9776aa8 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 60000 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 122881185 | Size: 16308 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončené : << RKreport[1]_S_05302013_02d1727.txt >>
RKreport[1]_S_05302013_02d1727.txt





OK čo ďalej?

[jaro3]

Nedal si log ze smazání adwCleaneru..

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.

Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "

- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání skončeno "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.

[Laggger164]

# AdwCleaner v2.301 - Logfile created 05/30/2013 at 17:11:12
# Updated 16/05/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Jarko - MOJ_POCITAC
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Jarko\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Documents and Settings\Jarko\Desktop\Save
Folder Deleted : C:\Documents and Settings\Ocko\Application Data\pdfforge

***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Google Chrome v27.0.1453.94

File : C:\Documents and Settings\Jarko\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

Deleted [l.3167] : urls_to_restore_on_startup = [ "hxxp://www.google.com/", "hxxp://search.babylon.com/?affID=11[...]

File : C:\Documents and Settings\Lukaško\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

Deleted [l.3051] : urls_to_restore_on_startup = [ "hxxp://home.sweetim.com/?st=6&barid={1AC7CD60-C75E-46F0-A3D6-[...]

File : C:\Documents and Settings\Mamka\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

File : C:\Documents and Settings\Ocko\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

Deleted [l.3110] : urls_to_restore_on_startup = [ "hxxp://www.google.com/", "hxxp://search.babylon.com/?affID=11[...]

File : C:\Documents and Settings\Samko\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [2257 octets] - [30/05/2013 15:50:59]
AdwCleaner[R2].txt - [2315 octets] - [30/05/2013 17:09:05]
AdwCleaner[S1].txt - [1826 octets] - [30/05/2013 17:11:12]

########## EOF - C:\AdwCleaner[S1].txt - [1886 octets] ##########




RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operačný systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spustené v : Normálny režim
Užívateľ : Jarko [Práva Správcu]
Režim : Kontrola -- Dátum : 05/31/2013 16:44:33
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy : 0 ¤¤¤

¤¤¤ Záznamy Registrov : 1 ¤¤¤
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NÁJDENÉ

¤¤¤ Zvláštne súbory / Adresáre: ¤¤¤

¤¤¤ Ovládač : [NAHRATÉ] ¤¤¤

¤¤¤ Súbor HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: WDC WD800LB-55DNA0 +++++
--- User ---
[MBR] 5f5d881b2c1e44faa67e95e2f4e57336
[BSP] 911c1f615242f271c0a3c57cf9776aa8 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 60000 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 122881185 | Size: 16308 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončené : << RKreport[2]_S_05312013_02d1644.txt >>
RKreport[1]_S_05302013_02d1727.txt ; RKreport[2]_S_05312013_02d1644.txt

[Laggger164]

17:16:52.0468 0876 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
17:16:53.0890 0876 ============================================================
17:16:53.0890 0876 Current date / time: 2013/05/31 17:16:53.0890
17:16:53.0890 0876 SystemInfo:
17:16:53.0890 0876
17:16:53.0890 0876 OS Version: 5.1.2600 ServicePack: 3.0
17:16:53.0890 0876 Product type: Workstation
17:16:53.0890 0876 ComputerName: MOJ_POCITAC
17:16:53.0890 0876 UserName: Jarko
17:16:53.0890 0876 Windows directory: C:\WINDOWS
17:16:53.0890 0876 System windows directory: C:\WINDOWS
17:16:53.0890 0876 Processor architecture: Intel x86
17:16:53.0890 0876 Number of processors: 1
17:16:53.0890 0876 Page size: 0x1000
17:16:53.0890 0876 Boot type: Normal boot
17:16:53.0890 0876 ============================================================
17:16:55.0781 0876 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
17:16:55.0781 0876 ============================================================
17:16:55.0781 0876 \Device\Harddisk0\DR0:
17:16:55.0781 0876 MBR partitions:
17:16:55.0781 0876 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x7530462
17:16:55.0812 0876 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x75304E0, BlocksNum 0x1FDA120
17:16:55.0812 0876 ============================================================
17:16:55.0843 0876 C: <-> \Device\Harddisk0\DR0\Partition1
17:16:55.0890 0876 E: <-> \Device\Harddisk0\DR0\Partition2
17:16:55.0890 0876 ============================================================
17:16:55.0890 0876 Initialize success
17:16:55.0890 0876 ============================================================
17:17:18.0171 3400 ============================================================
17:17:18.0171 3400 Scan started
17:17:18.0171 3400 Mode: Manual;
17:17:18.0171 3400 ============================================================
17:17:18.0906 3400 ================ Scan system memory ========================
17:17:18.0906 3400 System memory - ok
17:17:18.0921 3400 ================ Scan services =============================
17:17:19.0078 3400 Abiosdsk - ok
17:17:19.0093 3400 abp480n5 - ok
17:17:19.0140 3400 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:17:19.0140 3400 ACPI - ok
17:17:19.0218 3400 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
17:17:19.0218 3400 ACPIEC - ok
17:17:19.0234 3400 adpu160m - ok
17:17:19.0343 3400 [ CBFAA333EBA2E402A0439A3A0E5413F3 ] AdvancedSystemCareService6 C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
17:17:19.0343 3400 AdvancedSystemCareService6 - ok
17:17:19.0375 3400 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
17:17:19.0375 3400 aec - ok
17:17:19.0421 3400 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
17:17:19.0421 3400 AFD - ok
17:17:19.0468 3400 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
17:17:19.0484 3400 agp440 - ok
17:17:19.0500 3400 Aha154x - ok
17:17:19.0515 3400 aic78u2 - ok
17:17:19.0531 3400 aic78xx - ok
17:17:19.0593 3400 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
17:17:19.0593 3400 Alerter - ok
17:17:19.0640 3400 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
17:17:19.0640 3400 ALG - ok
17:17:19.0656 3400 AliIde - ok
17:17:19.0687 3400 amsint - ok
17:17:19.0750 3400 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
17:17:19.0750 3400 AppMgmt - ok
17:17:19.0765 3400 asc - ok
17:17:19.0796 3400 asc3350p - ok
17:17:19.0812 3400 asc3550 - ok
17:17:20.0062 3400 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
17:17:20.0062 3400 aspnet_state - ok
17:17:20.0140 3400 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:17:20.0140 3400 AsyncMac - ok
17:17:20.0187 3400 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
17:17:20.0203 3400 atapi - ok
17:17:20.0234 3400 Atdisk - ok
17:17:20.0281 3400 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:17:20.0281 3400 Atmarpc - ok
17:17:20.0328 3400 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
17:17:20.0328 3400 AudioSrv - ok
17:17:20.0375 3400 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
17:17:20.0375 3400 audstub - ok
17:17:20.0421 3400 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
17:17:20.0421 3400 Beep - ok
17:17:20.0484 3400 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
17:17:20.0500 3400 BITS - ok
17:17:20.0546 3400 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
17:17:20.0546 3400 Browser - ok
17:17:20.0593 3400 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
17:17:20.0609 3400 cbidf2k - ok
17:17:20.0625 3400 cd20xrnt - ok
17:17:20.0687 3400 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
17:17:20.0687 3400 Cdaudio - ok
17:17:20.0718 3400 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
17:17:20.0718 3400 Cdfs - ok
17:17:20.0750 3400 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:17:20.0750 3400 Cdrom - ok
17:17:20.0765 3400 Changer - ok
17:17:21.0031 3400 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
17:17:21.0031 3400 CiSvc - ok
17:17:21.0062 3400 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
17:17:21.0062 3400 ClipSrv - ok
17:17:21.0156 3400 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:17:21.0156 3400 clr_optimization_v2.0.50727_32 - ok
17:17:21.0203 3400 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:17:21.0203 3400 clr_optimization_v4.0.30319_32 - ok
17:17:21.0234 3400 CmdIde - ok
17:17:21.0328 3400 [ E5ADEEF2C0DB43964223F408F1FCC97E ] cmuda C:\WINDOWS\system32\drivers\cmuda.sys
17:17:21.0343 3400 cmuda - ok
17:17:21.0359 3400 COMSysApp - ok
17:17:21.0390 3400 Cpqarray - ok
17:17:21.0437 3400 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
17:17:21.0437 3400 CryptSvc - ok
17:17:21.0468 3400 dac2w2k - ok
17:17:21.0484 3400 dac960nt - ok
17:17:21.0546 3400 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
17:17:21.0562 3400 DcomLaunch - ok
17:17:21.0593 3400 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
17:17:21.0593 3400 Dhcp - ok
17:17:21.0640 3400 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
17:17:21.0640 3400 Disk - ok
17:17:21.0671 3400 dmadmin - ok
17:17:21.0750 3400 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
17:17:21.0750 3400 dmboot - ok
17:17:21.0796 3400 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
17:17:21.0796 3400 dmio - ok
17:17:21.0828 3400 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
17:17:21.0828 3400 dmload - ok
17:17:21.0875 3400 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
17:17:21.0875 3400 dmserver - ok
17:17:21.0906 3400 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
17:17:21.0906 3400 DMusic - ok
17:17:21.0953 3400 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
17:17:21.0953 3400 Dnscache - ok
17:17:22.0015 3400 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
17:17:22.0015 3400 Dot3svc - ok
17:17:22.0046 3400 dpti2o - ok
17:17:22.0078 3400 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
17:17:22.0078 3400 drmkaud - ok
17:17:22.0140 3400 [ 687AF6BB383885FF6A64071B189A7F3E ] dtsoftbus01 C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
17:17:22.0140 3400 dtsoftbus01 - ok
17:17:22.0203 3400 [ 14EA0C26137744636EB25B3FF1F2B02E ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
17:17:22.0203 3400 eamon - ok
17:17:22.0281 3400 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
17:17:22.0281 3400 EapHost - ok
17:17:22.0328 3400 [ 366369746D1818FDD8589D1F2C8A6D03 ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
17:17:22.0328 3400 ehdrv - ok
17:17:22.0484 3400 [ 7FE34FD5652C54BDA8D2DF8AC92E833A ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
17:17:22.0500 3400 ekrn - ok
17:17:22.0562 3400 [ 8BED309AC2E0ACDB9DE6B645B1FBB871 ] epfwtdir C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
17:17:22.0562 3400 epfwtdir - ok
17:17:22.0609 3400 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
17:17:22.0609 3400 ERSvc - ok
17:17:22.0671 3400 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
17:17:22.0671 3400 Eventlog - ok
17:17:22.0718 3400 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\System32\es.dll
17:17:22.0734 3400 EventSystem - ok
17:17:22.0765 3400 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
17:17:22.0781 3400 Fastfat - ok
17:17:22.0812 3400 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
17:17:22.0828 3400 FastUserSwitchingCompatibility - ok
17:17:22.0843 3400 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
17:17:22.0843 3400 Fdc - ok
17:17:22.0890 3400 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
17:17:22.0890 3400 Fips - ok
17:17:22.0921 3400 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
17:17:22.0921 3400 Flpydisk - ok
17:17:22.0953 3400 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
17:17:22.0953 3400 FltMgr - ok
17:17:23.0046 3400 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
17:17:23.0046 3400 FontCache3.0.0.0 - ok
17:17:23.0078 3400 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:17:23.0078 3400 Fs_Rec - ok
17:17:23.0109 3400 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:17:23.0109 3400 Ftdisk - ok
17:17:23.0156 3400 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:17:23.0156 3400 Gpc - ok
17:17:23.0203 3400 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
17:17:23.0218 3400 gupdate - ok
17:17:23.0234 3400 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
17:17:23.0234 3400 gupdatem - ok
17:17:23.0312 3400 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
17:17:23.0312 3400 helpsvc - ok
17:17:23.0390 3400 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
17:17:23.0406 3400 hkmsvc - ok
17:17:23.0421 3400 hpn - ok
17:17:23.0484 3400 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
17:17:23.0484 3400 HTTP - ok
17:17:23.0546 3400 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
17:17:23.0546 3400 HTTPFilter - ok
17:17:23.0578 3400 i2omgmt - ok
17:17:23.0593 3400 i2omp - ok
17:17:23.0640 3400 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:17:23.0640 3400 i8042prt - ok
17:17:23.0765 3400 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:17:23.0765 3400 idsvc - ok
17:17:23.0812 3400 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
17:17:23.0812 3400 Imapi - ok
17:17:23.0859 3400 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\System32\imapi.exe
17:17:23.0859 3400 ImapiService - ok
17:17:23.0890 3400 ini910u - ok
17:17:23.0921 3400 IntelIde - ok
17:17:23.0953 3400 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
17:17:23.0953 3400 intelppm - ok
17:17:24.0000 3400 [ 3BB22519A194418D5FEC05D800A19AD0 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
17:17:24.0000 3400 ip6fw - ok
17:17:24.0062 3400 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:17:24.0062 3400 IpFilterDriver - ok
17:17:24.0109 3400 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:17:24.0109 3400 IpInIp - ok
17:17:24.0156 3400 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:17:24.0156 3400 IpNat - ok
17:17:24.0203 3400 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:17:24.0218 3400 IPSec - ok
17:17:24.0265 3400 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
17:17:24.0265 3400 IRENUM - ok
17:17:24.0328 3400 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:17:24.0328 3400 isapnp - ok
17:17:24.0406 3400 [ 5739F2821D49975CEDE6BF0153D0CF01 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
17:17:24.0406 3400 JavaQuickStarterService - ok
17:17:24.0437 3400 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:17:24.0437 3400 Kbdclass - ok
17:17:24.0468 3400 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
17:17:24.0484 3400 kmixer - ok
17:17:24.0515 3400 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
17:17:24.0515 3400 KSecDD - ok
17:17:24.0578 3400 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
17:17:24.0578 3400 lanmanserver - ok
17:17:24.0625 3400 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
17:17:24.0625 3400 lanmanworkstation - ok
17:17:24.0640 3400 lbrtfdc - ok
17:17:24.0703 3400 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
17:17:24.0703 3400 LmHosts - ok
17:17:24.0750 3400 [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
17:17:24.0750 3400 MBAMProtector - ok
17:17:24.0812 3400 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:17:24.0812 3400 MBAMScheduler - ok
17:17:24.0890 3400 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
17:17:24.0890 3400 MBAMService - ok
17:17:24.0984 3400 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
17:17:24.0984 3400 MDM - ok
17:17:25.0046 3400 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
17:17:25.0046 3400 Messenger - ok
17:17:25.0109 3400 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
17:17:25.0109 3400 mnmdd - ok
17:17:25.0156 3400 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
17:17:25.0171 3400 mnmsrvc - ok
17:17:25.0234 3400 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
17:17:25.0234 3400 Modem - ok
17:17:25.0281 3400 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:17:25.0281 3400 Mouclass - ok
17:17:25.0312 3400 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
17:17:25.0328 3400 MountMgr - ok
17:17:25.0343 3400 mraid35x - ok
17:17:25.0390 3400 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:17:25.0390 3400 MRxDAV - ok
17:17:25.0453 3400 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:17:25.0468 3400 MRxSmb - ok
17:17:25.0515 3400 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\System32\msdtc.exe
17:17:25.0515 3400 MSDTC - ok
17:17:25.0578 3400 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
17:17:25.0578 3400 Msfs - ok
17:17:25.0609 3400 MSIServer - ok
17:17:25.0640 3400 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:17:25.0640 3400 MSKSSRV - ok
17:17:25.0703 3400 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:17:25.0703 3400 MSPCLOCK - ok
17:17:25.0734 3400 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
17:17:25.0734 3400 MSPQM - ok
17:17:25.0781 3400 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:17:25.0781 3400 mssmbios - ok
17:17:25.0828 3400 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
17:17:25.0828 3400 Mup - ok
17:17:25.0890 3400 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
17:17:25.0906 3400 napagent - ok
17:17:26.0046 3400 [ E0E4A1F81A7D69C595A8A9DDAD084C19 ] NAUpdate C:\Program Files\Nero\Update\NASvc.exe
17:17:26.0062 3400 NAUpdate - ok
17:17:26.0093 3400 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
17:17:26.0093 3400 NDIS - ok
17:17:26.0140 3400 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:17:26.0140 3400 NdisTapi - ok
17:17:26.0187 3400 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:17:26.0187 3400 Ndisuio - ok
17:17:26.0234 3400 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:17:26.0234 3400 NdisWan - ok
17:17:26.0281 3400 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
17:17:26.0281 3400 NDProxy - ok
17:17:26.0312 3400 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
17:17:26.0312 3400 NetBIOS - ok
17:17:26.0343 3400 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
17:17:26.0343 3400 NetBT - ok
17:17:26.0406 3400 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
17:17:26.0406 3400 NetDDE - ok
17:17:26.0437 3400 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
17:17:26.0437 3400 NetDDEdsdm - ok
17:17:26.0484 3400 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\System32\lsass.exe
17:17:26.0484 3400 Netlogon - ok
17:17:26.0515 3400 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
17:17:26.0531 3400 Netman - ok
17:17:26.0593 3400 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:17:26.0593 3400 NetTcpPortSharing - ok
17:17:26.0656 3400 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
17:17:26.0656 3400 Nla - ok
17:17:26.0703 3400 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
17:17:26.0703 3400 Npfs - ok
17:17:26.0750 3400 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
17:17:26.0750 3400 Ntfs - ok
17:17:26.0781 3400 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
17:17:26.0781 3400 NtLmSsp - ok
17:17:26.0859 3400 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
17:17:26.0875 3400 NtmsSvc - ok
17:17:26.0906 3400 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
17:17:26.0906 3400 Null - ok
17:17:27.0093 3400 [ C82F94077E2497E6685DA208E2F75B43 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
17:17:27.0140 3400 nv - ok
17:17:27.0171 3400 [ 948C21C77FAD271CC6F851FC46029DD4 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
17:17:27.0171 3400 NVSvc - ok
17:17:27.0234 3400 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:17:27.0234 3400 NwlnkFlt - ok
17:17:27.0250 3400 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:17:27.0250 3400 NwlnkFwd - ok
17:17:27.0312 3400 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:17:27.0312 3400 ose - ok
17:17:27.0359 3400 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
17:17:27.0359 3400 Parport - ok
17:17:27.0390 3400 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
17:17:27.0390 3400 PartMgr - ok
17:17:27.0437 3400 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
17:17:27.0437 3400 ParVdm - ok
17:17:27.0453 3400 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
17:17:27.0453 3400 PCI - ok
17:17:27.0484 3400 PCIDump - ok
17:17:27.0515 3400 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
17:17:27.0515 3400 PCIIde - ok
17:17:27.0562 3400 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
17:17:27.0562 3400 Pcmcia - ok
17:17:27.0578 3400 PDCOMP - ok
17:17:27.0593 3400 PDFRAME - ok
17:17:27.0625 3400 PDRELI - ok
17:17:27.0640 3400 PDRFRAME - ok
17:17:27.0656 3400 perc2 - ok
17:17:27.0671 3400 perc2hib - ok
17:17:27.0750 3400 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
17:17:27.0765 3400 PlugPlay - ok
17:17:27.0781 3400 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\System32\lsass.exe
17:17:27.0781 3400 PolicyAgent - ok
17:17:27.0812 3400 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:17:27.0812 3400 PptpMiniport - ok
17:17:27.0843 3400 [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
17:17:27.0843 3400 Processor - ok
17:17:27.0859 3400 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
17:17:27.0859 3400 ProtectedStorage - ok
17:17:27.0890 3400 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
17:17:27.0890 3400 PSched - ok
17:17:27.0921 3400 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:17:27.0921 3400 Ptilink - ok
17:17:27.0937 3400 ql1080 - ok
17:17:27.0968 3400 Ql10wnt - ok
17:17:27.0984 3400 ql12160 - ok
17:17:28.0000 3400 ql1240 - ok
17:17:28.0015 3400 ql1280 - ok
17:17:28.0062 3400 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:17:28.0062 3400 RasAcd - ok
17:17:28.0125 3400 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
17:17:28.0125 3400 RasAuto - ok
17:17:28.0156 3400 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:17:28.0156 3400 Rasl2tp - ok
17:17:28.0218 3400 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
17:17:28.0218 3400 RasMan - ok
17:17:28.0265 3400 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:17:28.0265 3400 RasPppoe - ok
17:17:28.0281 3400 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
17:17:28.0281 3400 Raspti - ok
17:17:28.0328 3400 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:17:28.0328 3400 Rdbss - ok
17:17:28.0343 3400 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:17:28.0359 3400 RDPCDD - ok
17:17:28.0406 3400 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
17:17:28.0421 3400 rdpdr - ok
17:17:28.0484 3400 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
17:17:28.0484 3400 RDPWD - ok
17:17:28.0515 3400 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
17:17:28.0515 3400 RDSessMgr - ok
17:17:28.0562 3400 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
17:17:28.0562 3400 redbook - ok
17:17:28.0625 3400 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
17:17:28.0625 3400 RemoteAccess - ok
17:17:28.0703 3400 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
17:17:28.0703 3400 RemoteRegistry - ok
17:17:28.0765 3400 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\System32\locator.exe
17:17:28.0765 3400 RpcLocator - ok
17:17:28.0843 3400 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
17:17:28.0843 3400 RpcSs - ok
17:17:28.0890 3400 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\System32\rsvp.exe
17:17:28.0906 3400 RSVP - ok
17:17:28.0953 3400 [ CF84B1F0E8B14D4120AAF9CF35CBB265 ] RTL8023xp C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys
17:17:28.0953 3400 RTL8023xp - ok
17:17:29.0015 3400 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
17:17:29.0015 3400 rtl8139 - ok
17:17:29.0062 3400 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
17:17:29.0062 3400 SamSs - ok
17:17:29.0109 3400 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
17:17:29.0109 3400 SCardSvr - ok
17:17:29.0187 3400 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
17:17:29.0187 3400 Schedule - ok
17:17:29.0250 3400 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:17:29.0265 3400 Secdrv - ok
17:17:29.0312 3400 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
17:17:29.0312 3400 seclogon - ok
17:17:29.0359 3400 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
17:17:29.0359 3400 SENS - ok
17:17:29.0390 3400 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
17:17:29.0390 3400 serenum - ok
17:17:29.0421 3400 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
17:17:29.0421 3400 Serial - ok
17:17:29.0500 3400 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
17:17:29.0500 3400 Sfloppy - ok
17:17:29.0562 3400 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
17:17:29.0562 3400 SharedAccess - ok
17:17:29.0593 3400 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
17:17:29.0609 3400 ShellHWDetection - ok
17:17:29.0625 3400 Simbad - ok
17:17:29.0687 3400 [ 14BB60A4F1C5291217A05D5728C403E6 ] SmartDefragDriver C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
17:17:29.0687 3400 SmartDefragDriver - ok
17:17:29.0718 3400 Sparrow - ok
17:17:29.0750 3400 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
17:17:29.0750 3400 splitter - ok
17:17:29.0812 3400 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
17:17:29.0812 3400 Spooler - ok
17:17:29.0875 3400 [ 68103A2B441BBF3908EBB587F0704D6C ] sptd C:\WINDOWS\System32\Drivers\sptd.sys
17:17:29.0875 3400 sptd - ok
17:17:29.0906 3400 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
17:17:29.0921 3400 sr - ok
17:17:29.0953 3400 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\System32\srsvc.dll
17:17:29.0968 3400 srservice - ok
17:17:30.0031 3400 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
17:17:30.0031 3400 Srv - ok
17:17:30.0109 3400 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
17:17:30.0109 3400 SSDPSRV - ok
17:17:30.0187 3400 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
17:17:30.0187 3400 stisvc - ok
17:17:30.0234 3400 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
17:17:30.0234 3400 swenum - ok
17:17:30.0281 3400 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
17:17:30.0281 3400 swmidi - ok
17:17:30.0312 3400 SwPrv - ok
17:17:30.0343 3400 symc810 - ok
17:17:30.0359 3400 symc8xx - ok
17:17:30.0375 3400 sym_hi - ok
17:17:30.0406 3400 sym_u3 - ok
17:17:30.0421 3400 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
17:17:30.0421 3400 sysaudio - ok
17:17:30.0484 3400 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
17:17:30.0500 3400 SysmonLog - ok
17:17:30.0562 3400 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
17:17:30.0578 3400 TapiSrv - ok
17:17:30.0625 3400 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:17:30.0625 3400 Tcpip - ok
17:17:30.0687 3400 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
17:17:30.0687 3400 TDPIPE - ok
17:17:30.0718 3400 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
17:17:30.0718 3400 TDTCP - ok
17:17:30.0765 3400 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
17:17:30.0765 3400 TermDD - ok
17:17:30.0828 3400 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
17:17:30.0828 3400 TermService - ok
17:17:30.0859 3400 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
17:17:30.0875 3400 Themes - ok
17:17:30.0937 3400 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\System32\tlntsvr.exe
17:17:30.0937 3400 TlntSvr - ok
17:17:30.0953 3400 TosIde - ok
17:17:31.0000 3400 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
17:17:31.0015 3400 TrkWks - ok
17:17:31.0046 3400 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
17:17:31.0046 3400 Udfs - ok
17:17:31.0078 3400 UIUSys - ok
17:17:31.0093 3400 ultra - ok
17:17:31.0171 3400 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
17:17:31.0171 3400 Update - ok
17:17:31.0265 3400 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
17:17:31.0265 3400 upnphost - ok
17:17:31.0312 3400 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
17:17:31.0328 3400 UPS - ok
17:17:31.0390 3400 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:17:31.0390 3400 usbccgp - ok
17:17:31.0437 3400 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:17:31.0437 3400 usbehci - ok
17:17:31.0484 3400 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:17:31.0484 3400 usbhub - ok
17:17:31.0531 3400 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
17:17:31.0531 3400 usbprint - ok
17:17:31.0578 3400 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
17:17:31.0593 3400 usbscan - ok
17:17:31.0640 3400 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:17:31.0640 3400 USBSTOR - ok
17:17:31.0703 3400 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:17:31.0703 3400 usbuhci - ok
17:17:31.0718 3400 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
17:17:31.0718 3400 VgaSave - ok
17:17:31.0750 3400 ViaIde - ok
17:17:31.0781 3400 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
17:17:31.0781 3400 VolSnap - ok
17:17:31.0843 3400 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
17:17:31.0859 3400 VSS - ok
17:17:31.0921 3400 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\System32\w32time.dll
17:17:31.0921 3400 W32Time - ok
17:17:31.0953 3400 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:17:31.0968 3400 Wanarp - ok
17:17:31.0984 3400 WDICA - ok
17:17:32.0015 3400 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
17:17:32.0015 3400 wdmaud - ok
17:17:32.0062 3400 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
17:17:32.0062 3400 WebClient - ok
17:17:32.0140 3400 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
17:17:32.0140 3400 winmgmt - ok
17:17:32.0234 3400 [ 845AF1BA23C8D5E64DEF61BCC441604C ] WinRing0_1_2_0 C:\Program Files\Razer\Razer Game Booster\Driver\WinRing0.sys
17:17:32.0234 3400 WinRing0_1_2_0 - ok
17:17:32.0359 3400 [ 18F347402DA544A780949B8FDF83351B ] WinRM C:\WINDOWS\system32\WsmSvc.dll
17:17:32.0375 3400 WinRM - ok
17:17:32.0453 3400 [ C7E39EA41233E9F5B86C8DA3A9F1E4A8 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
17:17:32.0468 3400 WmdmPmSN - ok
17:17:32.0531 3400 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
17:17:32.0546 3400 Wmi - ok
17:17:32.0625 3400 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
17:17:32.0625 3400 WmiApSrv - ok
17:17:32.0750 3400 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
17:17:32.0765 3400 WPFFontCache_v0400 - ok
17:17:32.0828 3400 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
17:17:32.0828 3400 wscsvc - ok
17:17:32.0859 3400 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
17:17:32.0859 3400 wuauserv - ok
17:17:32.0937 3400 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
17:17:32.0937 3400 WZCSVC - ok
17:17:33.0000 3400 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
17:17:33.0015 3400 xmlprov - ok
17:17:33.0031 3400 ================ Scan global ===============================
17:17:33.0078 3400 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
17:17:33.0125 3400 [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
17:17:33.0156 3400 [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
17:17:33.0171 3400 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
17:17:33.0187 3400 [Global] - ok
17:17:33.0187 3400 ================ Scan MBR ==================================
17:17:33.0203 3400 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
17:17:33.0437 3400 \Device\Harddisk0\DR0 - ok
17:17:33.0453 3400 ================ Scan VBR ==================================
17:17:33.0453 3400 [ 2AE746DF416BEC5D76B0659C4A275F20 ] \Device\Harddisk0\DR0\Partition1
17:17:33.0468 3400 \Device\Harddisk0\DR0\Partition1 - ok
17:17:33.0500 3400 [ 8A6D2034801AB70FDD18F351C29D79E5 ] \Device\Harddisk0\DR0\Partition2
17:17:33.0515 3400 \Device\Harddisk0\DR0\Partition2 - ok
17:17:33.0515 3400 ============================================================
17:17:33.0515 3400 Scan finished
17:17:33.0515 3400 ============================================================
17:17:33.0546 0276 Detected object count: 0
17:17:33.0546 0276 Actual detected object count: 0
17:17:36.0734 2664 Deinitialize success

[memphisto]

Ten log z Rogue je před mazáním

Jsou nějaké problémy s PC?

[Laggger164]

# AdwCleaner v2.301 - Logfile created 05/30/2013 at 17:11:12
# Updated 16/05/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Jarko - MOJ_POCITAC
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Jarko\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Documents and Settings\Jarko\Desktop\Save
Folder Deleted : C:\Documents and Settings\Ocko\Application Data\pdfforge

***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Google Chrome v27.0.1453.94

File : C:\Documents and Settings\Jarko\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

Deleted [l.3167] : urls_to_restore_on_startup = [ "hxxp://www.google.com/", "hxxp://search.babylon.com/?affID=11[...]

File : C:\Documents and Settings\Lukaško\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

Deleted [l.3051] : urls_to_restore_on_startup = [ "hxxp://home.sweetim.com/?st=6&barid={1AC7CD60-C75E-46F0-A3D6-[...]

File : C:\Documents and Settings\Mamka\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

File : C:\Documents and Settings\Ocko\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

Deleted [l.3110] : urls_to_restore_on_startup = [ "hxxp://www.google.com/", "hxxp://search.babylon.com/?affID=11[...]

File : C:\Documents and Settings\Samko\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [2257 octets] - [30/05/2013 15:50:59]
AdwCleaner[R2].txt - [2315 octets] - [30/05/2013 17:09:05]
AdwCleaner[S1].txt - [1826 octets] - [30/05/2013 17:11:12]

########## EOF - C:\AdwCleaner[S1].txt - [1886 octets] ##########



Sorry za moju blbosť