Kontrola logu, zamrzá počítač Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

jakubpolo
Level 2.5
Level 2.5
Příspěvky: 258
Registrován: červen 10
Pohlaví: Muž
Stav:
Offline

Kontrola logu, zamrzá počítač

Příspěvekod jakubpolo » 05 čer 2013 23:29

Zdravím. Poslední dobou mě začal zamrzat počítač. Děje se během normální práce ve Wndowsech, možná jsem měl jen štěstí, možná je to důležité a během náročnějších aplikací se to z nějakého důvodu nestává, těžko říci. Nevím, zda je k tomuto problému potřeba log, ale dát ho sem neuškodí, nějakou dobu jsem to sem nedával, tak tam možná budu mít různé breberky, které ani se zamrzáním nemusí souviset.


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:28:04, on 5.6.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16576)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Miranda IM\miranda32.exe
C:\Users\PoLo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\PoLo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\PoLo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\PoLo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\PoLo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\PoLo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\PoLo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\HiJackThis\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKCU\..\Run: [FileHippo.com] "C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-3002897428-2160201949-2199929802-1051\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-3002897428-2160201949-2199929802-1051\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Global Startup: Eyes Relax.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: Print Spooler (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9652 bytes


Díky :smile:

Reklama
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu, zamrzá počítač

Příspěvekod jaro3 » 06 čer 2013 09:51

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKCU\..\Run: [FileHippo.com] "C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe" /background
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-3002897428-2160201949-2199929802-1051\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab


Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.


Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Pokud budou problémy , spusť v nouz. režimu.

Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

jakubpolo
Level 2.5
Level 2.5
Příspěvky: 258
Registrován: červen 10
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu, zamrzá počítač

Příspěvekod jakubpolo » 06 čer 2013 18:33

Nový Log:
Vypnul jsem všechny programy, bohužel jsem se však zapomněl odpojit od internetu.
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:19:23, on 6.6.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16576)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\PoLo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\PoLo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\PoLo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\PoLo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\PoLo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\PoLo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\PoLo\Downloads\ATF-Cleaner.exe
C:\Users\PoLo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\HiJackThis\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-3002897428-2160201949-2199929802-1051\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - Global Startup: Eyes Relax.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: Print Spooler (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8781 bytes


ATF Cleaner
Používám Google chrome.

TFC
Provedeno, restartováno ručně.

AdwCleaner

# AdwCleaner v2.301 - Logfile created 06/06/2013 at 18:25:41
# Updated 16/05/2013 by Xplode
# Operating system : Windows 7 Professional Service Pack 1 (64 bits)
# User : PoLo - POLO-PC
# Boot Mode : Normal
# Running from : C:\Users\PoLo\Desktop\adwcleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

Folder Found : C:\ProgramData\Tarma Installer
Folder Found : C:\Users\PoLo\AppData\Roaming\Mozilla\Firefox\Profiles\sncof58t.default\jetpack

***** [Registry] *****

Key Found : HKCU\Software\1ClickDownload
Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Found : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Found : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Key Found : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Found : HKLM\SOFTWARE\Tarma Installer

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16576

[OK] Registry is clean.

-\\ Mozilla Firefox v21.0 (cs)

File : C:\Users\PoLo\AppData\Roaming\Mozilla\Firefox\Profiles\sncof58t.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v27.0.1453.110

File : C:\Users\PoLo\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [1823 octets] - [06/06/2013 18:25:41]

########## EOF - C:\AdwCleaner[R1].txt - [1883 octets] ##########

Malwarebytes' Anti-Malware
Log mě vyskočil sám po dokončení skenu, žádné Exit a Ano jsem dát nemohl, jen OK, že sken skončil.
Malwarebytes Anti-Malware 1.75.0.1300
http://www.malwarebytes.org

Database version: v2013.06.06.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16576
PoLo :: POLO-PC [administrator]

6.6.2013 18:28:11
mbam-log-2013-06-06 (18-28-11).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 234697
Time elapsed: 2 minute(s), 25 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

CrystalDiskInfo
----------------------------------------------------------------------------
CrystalDiskInfo 5.6.1 Shizuku Edition (C) 2008-2013 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Professional SP1 [6.1 Build 7601] (x64)
Date : 2013/06/06 18:32:45

-- Controller Map ----------------------------------------------------------
+ Standard Dual Channel PCI IDE Controller [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ Standard Dual Channel PCI IDE Controller [ATA]
+ ATA Channel 0 (0)
- TSSTcorp CDDVDW SH-222AB ATA Device
+ ATA Channel 1 (1)
- SAMSUNG HD103SJ ATA Device

-- Disk List ---------------------------------------------------------------
(1) SAMSUNG HD103SJ : 1000,2 GB [0/1/0, pd1]

----------------------------------------------------------------------------
(1) SAMSUNG HD103SJ
----------------------------------------------------------------------------
Model : SAMSUNG HD103SJ
Firmware : 1AJ10001
Serial Number : S246J9FB806685
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : 32767 KB
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 6
Transfer Mode : SATA/300
Power On Hours : 5692 hod.
Power On Count : 813 krát
Temparature : 31 C (87 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0000h [OFF]
AAM Level : FE00h [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _51 000000000014 Počet chyb čtení
02 252 252 __0 000000000000 Průchodnost disku
03 _71 _69 _25 00000000234B Čas na roztočení ploten
04 100 100 __0 00000000032E Počet spuštění/zastavení
05 252 252 _10 000000000000 Počet přemapovaných sektorů
07 252 252 _51 000000000000 Počet chybných hledání
08 252 252 _15 000000000000 Čas potřebný na vyhledání
09 100 100 __0 00000000163C Hodin v činnosti
0A 252 252 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 252 252 __0 000000000000 Počet pokusů o překalibrování
0C 100 100 __0 00000000032D Počet cyklů zapnutí zařízení
BF 100 100 __0 000000000009 Počet udalostí zaznamenaných otřesovým senzorem
C0 252 252 __0 000000000000 Počet vypnutí disku
C2 _64 _61 __0 0027000B001F Teplota
C3 100 100 __0 000000000000 Počet oprav chybného čtení
C4 252 252 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 252 252 __0 000000000000 Počet podezřelých sektorů
C6 252 252 __0 000000000000 Počet neopravitelných sektorů
C7 100 100 __0 000000000003 Počet chyb v kontrolním součtu UltraDMA
C8 100 100 __0 0000000000B2 Počet chyb při zápisu sektorů
DF 252 252 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony
E1 100 100 __0 00000000032F Počet cyklů načítání/vymazání

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 5332 3436 4A39 4642 3830 3636 3835 2020 2020 2020
020: 0000 FFFF 0004 3141 4A31 3030 3031 5341 4D53 554E
030: 4720 4844 3130 3353 4A20 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1706 0000 004C 0040
080: 01FF 0028 746B 7F69 4123 7469 BC41 4123 407F 004B
090: 004B 0000 FFFE 0000 FE00 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 4000 0000 5002 4E92
110: 05FB BAE1 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 101F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0400 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 9BA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 64 64 14 00 00 00 00 00 00 02 26
010: 00 FC FC 00 00 00 00 00 00 00 03 23 00 47 45 4B
020: 23 00 00 00 00 00 04 32 00 64 64 2E 03 00 00 00
030: 00 00 05 33 00 FC FC 00 00 00 00 00 00 00 07 2E
040: 00 FC FC 00 00 00 00 00 00 00 08 24 00 FC FC 00
050: 00 00 00 00 00 00 09 32 00 64 64 3C 16 00 00 00
060: 00 00 0A 32 00 FC FC 00 00 00 00 00 00 00 0B 32
070: 00 FC FC 00 00 00 00 00 00 00 0C 32 00 64 64 2D
080: 03 00 00 00 00 00 BF 22 00 64 64 09 00 00 00 00
090: 00 00 C0 22 00 FC FC 00 00 00 00 00 00 00 C2 02
0A0: 00 40 3D 1F 00 0B 00 27 00 00 C3 3A 00 64 64 00
0B0: 00 00 00 00 00 00 C4 32 00 FC FC 00 00 00 00 00
0C0: 00 00 C5 32 00 FC FC 00 00 00 00 00 00 00 C6 30
0D0: 00 FC FC 00 00 00 00 00 00 00 C7 36 00 64 64 03
0E0: 00 00 00 00 00 00 C8 2A 00 64 64 B2 00 00 00 00
0F0: 00 00 DF 32 00 FC FC 00 00 00 00 00 00 00 E1 32
100: 00 64 64 2F 03 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 90 24 00 5B
170: 03 00 01 00 02 9C 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 57

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 00 00 00 00 00 00 00 00 00 00 02 00
010: 00 00 00 00 00 00 00 00 00 00 03 19 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 0A 00 00 00 00 00 00 00 00 00 00 07 33
040: 00 00 00 00 00 00 00 00 00 00 08 0F 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 33 00 00 00 00 00 00 00 00 00 00 0B 00
070: 00 00 00 00 00 00 00 00 00 00 0C 00 00 00 00 00
080: 00 00 00 00 00 00 BF 00 00 00 00 00 00 00 00 00
090: 00 00 C0 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C3 00 00 00 00 00
0B0: 00 00 00 00 00 00 C4 00 00 00 00 00 00 00 00 00
0C0: 00 00 C5 00 00 00 00 00 00 00 00 00 00 00 C6 00
0D0: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
0E0: 00 00 00 00 00 00 C8 00 00 00 00 00 00 00 00 00
0F0: 00 00 DF 00 00 00 00 00 00 00 00 00 00 00 E1 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 3B

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu, zamrzá počítač

Příspěvekod jaro3 » 06 čer 2013 19:27

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce
Klikni na „ Vymazat
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit

-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

jakubpolo
Level 2.5
Level 2.5
Příspěvky: 258
Registrován: červen 10
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu, zamrzá počítač

Příspěvekod jakubpolo » 06 čer 2013 20:21

Byl jsem velmi nepříjemně překvapen. Po dokončení mazání AdwCleanerem se počítač restartoval a po načtení Windows to po mě chtělo vyplnit uživatelské jméno a heslo. Naštěstí stačilo vyplnit jen uživ. jméno a heslo nevyplňovat, ale bylo to prostě nepříjemné. Snad jsem nic neudělal špatně. AdwCleaner jsem musel znovu stáhnout, již jsem ho neměl na ploše, tak jsem dal znovu Search a až poté Delete, ale předpokládám, že v tom by problém být neměl. Po nalogováni do Winů mě automaticky vyskočil log s jménem AdwCleaner[S1] obsahující toto:

# AdwCleaner v2.301 - Logfile created 06/06/2013 at 20:06:02
# Updated 16/05/2013 by Xplode
# Operating system : Windows 7 Professional Service Pack 1 (64 bits)
# User : PoLo - POLO-PC
# Boot Mode : Normal
# Running from : C:\Users\PoLo\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Users\PoLo\AppData\Roaming\Mozilla\Firefox\Profiles\sncof58t.default\jetpack

***** [Registry] *****

Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Tarma Installer

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16576

[OK] Registry is clean.

-\\ Mozilla Firefox v21.0 (cs)

File : C:\Users\PoLo\AppData\Roaming\Mozilla\Firefox\Profiles\sncof58t.default\prefs.js

C:\Users\PoLo\AppData\Roaming\Mozilla\Firefox\Profiles\sncof58t.default\user.js ... Deleted !

[OK] File is clean.

-\\ Google Chrome v27.0.1453.110

File : C:\Users\PoLo\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [1948 octets] - [06/06/2013 18:25:41]
AdwCleaner[R2].txt - [2008 octets] - [06/06/2013 20:05:45]
AdwCleaner[S1].txt - [2068 octets] - [06/06/2013 20:06:02]

########## EOF - C:\AdwCleaner[S1].txt - [2128 octets] ##########


RogueKiller
RogueKiller V8.5.4 _x64_ [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/fi ... guekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : PoLo [Admin rights]
Mode : Scan -- Date : 06/06/2013 20:20:19
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 9 ¤¤¤
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND
[HJ] HKLM\[...]\Wow6432Node\System : ConsentPromptBehaviorAdmin (0) -> FOUND
[HJ] HKLM\[...]\System : EnableLUA (0) -> FOUND
[HJ] HKLM\[...]\Wow6432Node\System : EnableLUA (0) -> FOUND
[HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> FOUND
[HJ DESK] HKCU\[...]\ClassicStartMenu : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> FOUND
[HJ DESK] HKCU\[...]\NewStartPanel : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts



¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: SAMSUNG HD103SJ ATA Device +++++
--- User ---
[MBR] af15401c2561ef32d507d8e2d86e1e9f
[BSP] 388cea8c2ec114da55bc6438e8fd854a : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 953767 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[1]_S_06062013_02d2020.txt >>
RKreport[1]_S_06062013_02d2020.txt

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu, zamrzá počítač

Příspěvekod jaro3 » 06 čer 2013 21:41

To slyším poprvé adwCleaner , že spustil úvodní obrazovku..

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.

Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "

- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání skončeno "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Disk:
000000000009 Počet udalostí zaznamenaných otřesovým senzorem

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

jakubpolo
Level 2.5
Level 2.5
Příspěvky: 258
Registrován: červen 10
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu, zamrzá počítač

Příspěvekod jakubpolo » 06 čer 2013 23:15

RogueKiller
RogueKiller V8.5.4 _x64_ [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/fi ... guekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : PoLo [Admin rights]
Mode : Remove -- Date : 06/06/2013 22:48:05
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 7 ¤¤¤
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> REPLACED (2)
[HJ] HKLM\[...]\System : EnableLUA (0) -> REPLACED (1)
[HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> REPLACED (1)
[HJ DESK] HKCU\[...]\ClassicStartMenu : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> REPLACED (0)
[HJ DESK] HKCU\[...]\NewStartPanel : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts



¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: SAMSUNG HD103SJ ATA Device +++++
--- User ---
[MBR] af15401c2561ef32d507d8e2d86e1e9f
[BSP] 388cea8c2ec114da55bc6438e8fd854a : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 953767 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[3]_D_06062013_02d2248.txt >>
RKreport[1]_S_06062013_02d2020.txt ; RKreport[2]_S_06062013_02d2247.txt ; RKreport[3]_D_06062013_02d2248.txt




ComboFix
ComboFix 13-06-06.04 - PoLo 06.06.2013 23:01:48.1.4 - x64 MINIMAL
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1033.18.4094.2649 [GMT 2:00]
Spuštěný z: c:\users\PoLo\Desktop\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-05-06 do 2013-06-06 )))))))))))))))))))))))))))))))
.
.
2013-06-06 21:07 . 2013-06-06 21:07 -------- d-----w- c:\users\PoLo\AppData\Local\temp
2013-06-06 21:07 . 2013-06-06 21:07 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-06-06 16:32 . 2013-06-06 16:32 -------- d-----w- c:\program files (x86)\CrystalDiskInfo
2013-06-06 16:27 . 2013-06-06 16:27 -------- d-----w- c:\users\PoLo\AppData\Roaming\Malwarebytes
2013-06-06 16:27 . 2013-06-06 16:27 -------- d-----w- c:\programdata\Malwarebytes
2013-06-06 16:27 . 2013-06-06 16:27 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-06-06 16:27 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-06-05 21:27 . 2013-06-05 21:27 388096 ----a-r- c:\users\PoLo\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-06-02 09:34 . 2013-06-02 09:35 -------- d-----w- c:\users\PoLo\AppData\Local\PokerStars
2013-06-02 09:34 . 2013-06-02 09:35 -------- d-----w- c:\program files (x86)\PokerStars
2013-06-01 15:01 . 2013-06-01 15:01 -------- d-----w- c:\users\PoLo\AppData\Local\cache
2013-06-01 14:58 . 2013-06-01 21:40 -------- d-----w- c:\users\PoLo\AppData\Local\FullTiltPoker
2013-06-01 14:58 . 2013-06-04 10:47 -------- d-----w- c:\program files (x86)\Full Tilt Poker
2013-06-01 08:29 . 2013-05-13 06:37 9460464 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{3628BAB9-24B5-4128-8078-7BE61CCFBBB4}\mpengine.dll
2013-05-31 22:39 . 2013-05-31 22:39 -------- d-----w- c:\users\PoLo\.android
2013-05-31 22:39 . 2013-05-31 22:39 -------- d-----w- c:\users\PoLo\.swt
2013-05-31 22:37 . 2013-05-31 22:53 -------- d-----w- C:\Flashtool
2013-05-31 22:14 . 2013-05-31 22:14 -------- d-----w- c:\program files (x86)\Sony Mobile
2013-05-26 15:58 . 2013-06-05 16:50 -------- d-----w- c:\users\PoLo\AppData\Roaming\uTorrent
2013-05-24 20:28 . 2013-05-24 20:28 -------- d-----w- c:\users\PoLo\AppData\Local\NVIDIA
2013-05-24 20:14 . 2013-05-31 06:32 -------- d-----w- c:\users\UpdatusUser
2013-05-24 20:14 . 2013-05-12 20:34 6491936 ----a-w- c:\windows\system32\nvcpl.dll
2013-05-24 20:14 . 2013-05-12 20:34 3514656 ----a-w- c:\windows\system32\nvsvc64.dll
2013-05-24 20:14 . 2013-05-12 20:34 884512 ----a-w- c:\windows\system32\nvvsvc.exe
2013-05-24 20:14 . 2013-05-12 20:34 63776 ----a-w- c:\windows\system32\nvshext.dll
2013-05-24 20:14 . 2013-05-12 20:34 237856 ----a-w- c:\windows\system32\nvmctray.dll
2013-05-24 20:14 . 2013-05-08 14:13 3165737 ----a-w- c:\windows\system32\nvcoproc.bin
2013-05-24 20:13 . 2013-05-24 20:25 -------- d-----w- c:\programdata\NVIDIA Corporation
2013-05-15 16:03 . 2013-02-27 05:52 14172672 ----a-w- c:\windows\system32\shell32.dll
2013-05-12 13:43 . 2013-05-12 13:43 566048 ----a-w- c:\windows\SysWow64\nvStreaming.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-15 16:10 . 2012-06-15 19:15 75016696 ----a-w- c:\windows\system32\MRT.exe
2013-05-14 19:22 . 2012-09-13 11:45 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-14 19:22 . 2012-09-13 11:45 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-05-12 21:42 . 2012-09-14 16:05 61216 ----a-w- c:\windows\system32\OpenCL.dll
2013-05-12 21:42 . 2012-09-14 16:05 53024 ----a-w- c:\windows\SysWow64\OpenCL.dll
2013-05-09 08:59 . 2013-03-14 21:21 189936 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-05-09 08:59 . 2013-03-14 21:21 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-05-09 08:59 . 2012-06-15 21:18 378432 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-05-09 08:59 . 2012-06-15 21:18 72016 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-05-09 08:59 . 2012-06-15 21:18 64288 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-05-09 08:59 . 2012-06-15 21:18 1025808 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-05-09 08:59 . 2012-06-15 21:18 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-05-09 08:59 . 2012-06-15 21:18 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-05-09 08:58 . 2012-06-15 21:17 41664 ----a-w- c:\windows\avastSS.scr
2013-05-09 08:58 . 2012-06-15 21:18 287840 ----a-w- c:\windows\system32\aswBoot.exe
2013-05-02 00:06 . 2012-06-15 18:48 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-04-30 21:02 . 2013-04-30 21:02 27760 ----a-w- c:\windows\system32\drivers\ggsemc.sys
2013-04-30 21:02 . 2013-04-30 21:02 1721576 ----a-w- c:\windows\system32\WdfCoInstaller01009.dll
2013-04-30 21:02 . 2013-04-30 21:02 14448 ----a-w- c:\windows\system32\drivers\ggflt.sys
2013-04-13 05:49 . 2013-05-15 16:02 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-15 16:02 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-15 16:02 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-15 16:02 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-15 16:02 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-15 16:02 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-12 14:45 . 2013-04-25 06:30 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-11 14:50 . 2013-04-11 14:50 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-04-04 03:35 . 2013-04-17 18:35 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-04-02 14:09 . 2013-04-02 14:09 4550656 ----a-w- c:\windows\SysWow64\GPhotos.scr
2013-03-21 22:19 . 2013-03-18 15:56 101184 ----a-w- c:\windows\system32\stkMonitor.dll
2013-03-19 06:04 . 2013-04-10 07:35 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-10 07:35 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-10 07:35 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-10 07:35 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-10 07:35 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-10 07:35 112640 ----a-w- c:\windows\system32\smss.exe
2013-03-12 18:44 . 2013-03-12 18:44 97280 ----a-w- c:\windows\system32\mshtmled.dll
2013-03-12 18:44 . 2013-03-12 18:44 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-03-12 18:44 . 2013-03-12 18:44 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-03-12 18:44 . 2013-03-12 18:44 81408 ----a-w- c:\windows\system32\icardie.dll
2013-03-12 18:44 . 2013-03-12 18:44 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-03-12 18:44 . 2013-03-12 18:44 762368 ----a-w- c:\windows\system32\ieapfltr.dll
2013-03-12 18:44 . 2013-03-12 18:44 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-03-12 18:44 . 2013-03-12 18:44 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-03-12 18:44 . 2013-03-12 18:44 62976 ----a-w- c:\windows\system32\pngfilt.dll
2013-03-12 18:44 . 2013-03-12 18:44 61952 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-03-12 18:44 . 2013-03-12 18:44 599552 ----a-w- c:\windows\system32\vbscript.dll
2013-03-12 18:44 . 2013-03-12 18:44 523264 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-03-12 18:44 . 2013-03-12 18:44 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-03-12 18:44 . 2013-03-12 18:44 51200 ----a-w- c:\windows\system32\imgutil.dll
2013-03-12 18:44 . 2013-03-12 18:44 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-03-12 18:44 . 2013-03-12 18:44 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-03-12 18:44 . 2013-03-12 18:44 452096 ----a-w- c:\windows\system32\dxtmsft.dll
2013-03-12 18:44 . 2013-03-12 18:44 441856 ----a-w- c:\windows\system32\html.iec
2013-03-12 18:44 . 2013-03-12 18:44 38400 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-03-12 18:44 . 2013-03-12 18:44 361984 ----a-w- c:\windows\SysWow64\html.iec
2013-03-12 18:44 . 2013-03-12 18:44 281600 ----a-w- c:\windows\system32\dxtrans.dll
2013-03-12 18:44 . 2013-03-12 18:44 27648 ----a-w- c:\windows\system32\licmgr10.dll
2013-03-12 18:44 . 2013-03-12 18:44 270848 ----a-w- c:\windows\system32\iedkcs32.dll
2013-03-12 18:44 . 2013-03-12 18:44 247296 ----a-w- c:\windows\system32\webcheck.dll
2013-03-12 18:44 . 2013-03-12 18:44 235008 ----a-w- c:\windows\system32\url.dll
2013-03-12 18:44 . 2013-03-12 18:44 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-03-12 18:44 . 2013-03-12 18:44 226304 ----a-w- c:\windows\system32\elshyph.dll
2013-03-12 18:44 . 2013-03-12 18:44 216064 ----a-w- c:\windows\system32\msls31.dll
2013-03-12 18:44 . 2013-03-12 18:44 197120 ----a-w- c:\windows\system32\msrating.dll
2013-03-12 18:44 . 2013-03-12 18:44 185344 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-03-12 18:44 . 2013-03-12 18:44 173568 ----a-w- c:\windows\system32\ieUnatt.exe
2013-03-12 18:44 . 2013-03-12 18:44 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-03-12 18:44 . 2013-03-12 18:44 158720 ----a-w- c:\windows\SysWow64\msls31.dll
2013-03-12 18:44 . 2013-03-12 18:44 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2013-03-12 18:44 . 2013-03-12 18:44 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-03-12 18:44 . 2013-03-12 18:44 149504 ----a-w- c:\windows\system32\occache.dll
2013-03-12 18:44 . 2013-03-12 18:44 144896 ----a-w- c:\windows\system32\wextract.exe
2013-03-12 18:44 . 2013-03-12 18:44 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-03-12 18:44 . 2013-03-12 18:44 1400416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-03-12 18:44 . 2013-03-12 18:44 138752 ----a-w- c:\windows\SysWow64\wextract.exe
2013-03-12 18:44 . 2013-03-12 18:44 13824 ----a-w- c:\windows\system32\mshta.exe
2013-03-12 18:44 . 2013-03-12 18:44 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-03-12 18:44 . 2013-03-12 18:44 136192 ----a-w- c:\windows\system32\iepeers.dll
2013-03-12 18:44 . 2013-03-12 18:44 135680 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-03-12 18:44 . 2013-03-12 18:44 12800 ----a-w- c:\windows\SysWow64\mshta.exe
2013-03-12 18:44 . 2013-03-12 18:44 12800 ----a-w- c:\windows\system32\msfeedssync.exe
2013-03-12 18:44 . 2013-03-12 18:44 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-03-12 18:44 . 2013-03-12 18:44 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-03-12 18:44 . 2013-03-12 18:44 102912 ----a-w- c:\windows\system32\inseng.dll
2013-03-10 19:07 . 2012-06-15 21:32 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-03-10 19:07 . 2012-06-15 21:32 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
"amd_dc_opt"="c:\program files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Eyes Relax.lnk - c:\windows\Installer\{9C890D28-9671-4DC2-B017-D5327B9062C8}\EyeIcon.ico [2012-12-2 22534]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
.
R0 aswRvrt;aswRvrt; [x]
R0 aswVmm;aswVmm; [x]
R1 aswSnx;aswSnx; [x]
R1 aswSP;aswSP; [x]
R2 aswFsBlk;aswFsBlk; [x]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys;c:\windows\SYSNATIVE\DRIVERS\ggflt.sys [x]
R3 GGSAFERDriver;GGSAFER Driver;c:\program files (x86)\Garena Plus\Room\safedrv.sys;c:\program files (x86)\Garena Plus\Room\safedrv.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys;c:\windows\SYSNATIVE\Drivers\EtronHub3.sys [x]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys;c:\windows\SYSNATIVE\Drivers\EtronXHCI.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2013-06-06 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-13 19:22]
.
2013-06-06 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-06-26 20:37]
.
2013-06-06 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-06-26 20:37]
.
2013-06-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3002897428-2160201949-2199929802-1000Core.job
- c:\users\PoLo\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-03 17:48]
.
2013-06-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3002897428-2160201949-2199929802-1000UA.job
- c:\users\PoLo\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-03 17:48]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-01-16 12445288]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-05-16 1012000]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SYSTEM32\blank.htm
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\PoLo\AppData\Roaming\Mozilla\Firefox\Profiles\sncof58t.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.neobux.com/c/
FF - ExtSQL: 2013-05-11 20:07; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\PoLo\AppData\Roaming\Mozilla\Firefox\Profiles\sncof58t.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
AddRemove-PokerStars - c:\program files (x86)\PokerStars\PokerStarsUninstall.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2013-06-06 23:09:07
ComboFix-quarantined-files.txt 2013-06-06 21:09
.
Před spuštěním: 776 471 715 840 bytes free
Po spuštění: 775 980 118 016 bytes free
.
- - End Of File - - 6F1BA6985E476F90832A85E64E9307FA

jakubpolo
Level 2.5
Level 2.5
Příspěvky: 258
Registrován: červen 10
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu, zamrzá počítač

Příspěvekod jakubpolo » 06 čer 2013 23:16

TDSSKiller prvmí část
22:49:16.0140 2468 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
22:49:16.0265 2468 ============================================================
22:49:16.0265 2468 Current date / time: 2013/06/06 22:49:16.0265
22:49:16.0265 2468 SystemInfo:
22:49:16.0265 2468
22:49:16.0265 2468 OS Version: 6.1.7601 ServicePack: 1.0
22:49:16.0265 2468 Product type: Workstation
22:49:16.0265 2468 ComputerName: POLO-PC
22:49:16.0265 2468 UserName: PoLo
22:49:16.0265 2468 Windows directory: C:\Windows
22:49:16.0265 2468 System windows directory: C:\Windows
22:49:16.0265 2468 Running under WOW64
22:49:16.0265 2468 Processor architecture: Intel x64
22:49:16.0265 2468 Number of processors: 4
22:49:16.0265 2468 Page size: 0x1000
22:49:16.0265 2468 Boot type: Normal boot
22:49:16.0265 2468 ============================================================
22:49:17.0061 2468 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1F8B1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
22:49:17.0076 2468 ============================================================
22:49:17.0076 2468 \Device\Harddisk0\DR0:
22:49:17.0076 2468 MBR partitions:
22:49:17.0076 2468 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
22:49:17.0076 2468 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
22:49:17.0076 2468 ============================================================
22:49:17.0092 2468 C: <-> \Device\Harddisk0\DR0\Partition2
22:49:17.0092 2468 ============================================================
22:49:17.0092 2468 Initialize success
22:49:17.0092 2468 ============================================================
22:49:21.0803 3296 ============================================================
22:49:21.0803 3296 Scan started
22:49:21.0803 3296 Mode: Manual;
22:49:21.0803 3296 ============================================================
22:49:22.0583 3296 ================ Scan system memory ========================
22:49:22.0583 3296 System memory - ok
22:49:22.0583 3296 ================ Scan services =============================
22:49:22.0708 3296 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:49:22.0708 3296 1394ohci - ok
22:49:22.0723 3296 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:49:22.0723 3296 ACPI - ok
22:49:22.0739 3296 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:49:22.0739 3296 AcpiPmi - ok
22:49:22.0817 3296 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:49:22.0817 3296 AdobeARMservice - ok
22:49:22.0911 3296 [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:49:22.0911 3296 AdobeFlashPlayerUpdateSvc - ok
22:49:22.0942 3296 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
22:49:22.0942 3296 adp94xx - ok
22:49:22.0957 3296 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
22:49:22.0957 3296 adpahci - ok
22:49:22.0973 3296 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
22:49:22.0973 3296 adpu320 - ok
22:49:22.0989 3296 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:49:22.0989 3296 AeLookupSvc - ok
22:49:23.0020 3296 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
22:49:23.0020 3296 AFD - ok
22:49:23.0035 3296 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:49:23.0035 3296 agp440 - ok
22:49:23.0051 3296 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
22:49:23.0051 3296 ALG - ok
22:49:23.0051 3296 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
22:49:23.0051 3296 aliide - ok
22:49:23.0067 3296 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
22:49:23.0067 3296 amdide - ok
22:49:23.0082 3296 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
22:49:23.0082 3296 AmdK8 - ok
22:49:23.0098 3296 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
22:49:23.0098 3296 AmdPPM - ok
22:49:23.0113 3296 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:49:23.0113 3296 amdsata - ok
22:49:23.0129 3296 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
22:49:23.0129 3296 amdsbs - ok
22:49:23.0145 3296 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:49:23.0145 3296 amdxata - ok
22:49:23.0176 3296 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
22:49:23.0176 3296 AppID - ok
22:49:23.0176 3296 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:49:23.0191 3296 AppIDSvc - ok
22:49:23.0223 3296 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
22:49:23.0223 3296 Appinfo - ok
22:49:23.0238 3296 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
22:49:23.0254 3296 AppMgmt - ok
22:49:23.0269 3296 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
22:49:23.0269 3296 arc - ok
22:49:23.0269 3296 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
22:49:23.0269 3296 arcsas - ok
22:49:23.0363 3296 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:49:23.0394 3296 aspnet_state - ok
22:49:23.0410 3296 [ 0BAEFD3F648C6E7AB52990DD9565E4E2 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
22:49:23.0410 3296 aswFsBlk - ok
22:49:23.0441 3296 [ FA562F34ED6633C66170B09182B4C049 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
22:49:23.0441 3296 aswMonFlt - ok
22:49:23.0457 3296 [ 64E2BAB4096C13D2342BC4661C967E07 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
22:49:23.0457 3296 aswRdr - ok
22:49:23.0503 3296 [ 5573AA70993A2BB81525B1C704B88763 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
22:49:23.0503 3296 aswRvrt - ok
22:49:23.0519 3296 [ 10ED1CAB84AA65983C41A11F60294C9B ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
22:49:23.0535 3296 aswSnx - ok
22:49:23.0550 3296 [ 00E5253353717D3CA12A0F5A6F9991EC ] aswSP C:\Windows\system32\drivers\aswSP.sys
22:49:23.0550 3296 aswSP - ok
22:49:23.0566 3296 [ 29DD8E458A84171202AA4979364C30C0 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
22:49:23.0566 3296 aswTdi - ok
22:49:23.0597 3296 [ 6359B99C955DB9F40B653159A0EED261 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
22:49:23.0597 3296 aswVmm - ok
22:49:23.0597 3296 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:49:23.0597 3296 AsyncMac - ok
22:49:23.0613 3296 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
22:49:23.0613 3296 atapi - ok
22:49:23.0644 3296 [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
22:49:23.0644 3296 AtiPcie - ok
22:49:23.0659 3296 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:49:23.0659 3296 AudioEndpointBuilder - ok
22:49:23.0675 3296 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:49:23.0675 3296 AudioSrv - ok
22:49:23.0737 3296 [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
22:49:23.0737 3296 avast! Antivirus - ok
22:49:23.0753 3296 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:49:23.0753 3296 AxInstSV - ok
22:49:23.0784 3296 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
22:49:23.0784 3296 b06bdrv - ok
22:49:23.0800 3296 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:49:23.0815 3296 b57nd60a - ok
22:49:23.0831 3296 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
22:49:23.0831 3296 BDESVC - ok
22:49:23.0862 3296 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
22:49:23.0862 3296 Beep - ok
22:49:23.0893 3296 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
22:49:23.0893 3296 BFE - ok
22:49:23.0909 3296 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
22:49:23.0956 3296 BITS - ok
22:49:24.0003 3296 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:49:24.0003 3296 blbdrive - ok
22:49:24.0081 3296 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:49:24.0081 3296 bowser - ok
22:49:24.0081 3296 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:49:24.0081 3296 BrFiltLo - ok
22:49:24.0096 3296 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:49:24.0096 3296 BrFiltUp - ok
22:49:24.0112 3296 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
22:49:24.0127 3296 Browser - ok
22:49:24.0143 3296 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:49:24.0143 3296 Brserid - ok
22:49:24.0159 3296 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:49:24.0159 3296 BrSerWdm - ok
22:49:24.0159 3296 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:49:24.0159 3296 BrUsbMdm - ok
22:49:24.0159 3296 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:49:24.0159 3296 BrUsbSer - ok
22:49:24.0174 3296 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
22:49:24.0174 3296 BTHMODEM - ok
22:49:24.0190 3296 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
22:49:24.0190 3296 bthserv - ok
22:49:24.0205 3296 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:49:24.0205 3296 cdfs - ok
22:49:24.0237 3296 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:49:24.0237 3296 cdrom - ok
22:49:24.0252 3296 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
22:49:24.0252 3296 CertPropSvc - ok
22:49:24.0268 3296 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
22:49:24.0268 3296 circlass - ok
22:49:24.0299 3296 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
22:49:24.0299 3296 CLFS - ok
22:49:24.0346 3296 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:49:24.0346 3296 clr_optimization_v2.0.50727_32 - ok
22:49:24.0361 3296 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:49:24.0361 3296 clr_optimization_v2.0.50727_64 - ok
22:49:24.0424 3296 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:49:24.0595 3296 clr_optimization_v4.0.30319_32 - ok
22:49:24.0611 3296 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:49:24.0642 3296 clr_optimization_v4.0.30319_64 - ok
22:49:24.0642 3296 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:49:24.0642 3296 CmBatt - ok
22:49:24.0673 3296 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:49:24.0673 3296 cmdide - ok
22:49:24.0689 3296 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
22:49:24.0689 3296 CNG - ok
22:49:24.0705 3296 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:49:24.0705 3296 Compbatt - ok
22:49:24.0783 3296 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
22:49:24.0783 3296 CompositeBus - ok
22:49:24.0783 3296 COMSysApp - ok
22:49:24.0783 3296 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
22:49:24.0783 3296 crcdisk - ok
22:49:24.0845 3296 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:49:24.0845 3296 CryptSvc - ok
22:49:24.0876 3296 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
22:49:24.0876 3296 CSC - ok
22:49:24.0892 3296 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
22:49:24.0892 3296 CscService - ok
22:49:24.0923 3296 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:49:24.0923 3296 DcomLaunch - ok
22:49:24.0954 3296 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
22:49:24.0954 3296 defragsvc - ok
22:49:24.0970 3296 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:49:24.0970 3296 DfsC - ok
22:49:25.0001 3296 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
22:49:25.0001 3296 Dhcp - ok
22:49:25.0001 3296 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
22:49:25.0001 3296 discache - ok
22:49:25.0032 3296 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
22:49:25.0032 3296 Disk - ok
22:49:25.0048 3296 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:49:25.0048 3296 Dnscache - ok
22:49:25.0063 3296 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
22:49:25.0063 3296 dot3svc - ok
22:49:25.0095 3296 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
22:49:25.0095 3296 DPS - ok
22:49:25.0126 3296 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:49:25.0126 3296 drmkaud - ok
22:49:25.0141 3296 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
22:49:25.0157 3296 dtsoftbus01 - ok
22:49:25.0188 3296 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:49:25.0188 3296 DXGKrnl - ok
22:49:25.0204 3296 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
22:49:25.0204 3296 EapHost - ok
22:49:25.0266 3296 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
22:49:25.0266 3296 ebdrv - ok
22:49:25.0297 3296 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
22:49:25.0297 3296 EFS - ok
22:49:25.0344 3296 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:49:25.0344 3296 ehRecvr - ok
22:49:25.0360 3296 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
22:49:25.0360 3296 ehSched - ok
22:49:25.0391 3296 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
22:49:25.0391 3296 elxstor - ok
22:49:25.0407 3296 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:49:25.0407 3296 ErrDev - ok
22:49:25.0438 3296 [ DB6AEC32FAF5BD002D9ED6C38692D42B ] EtronHub3 C:\Windows\system32\Drivers\EtronHub3.sys
22:49:25.0438 3296 EtronHub3 - ok
22:49:25.0453 3296 [ 9CC2F24274741E12F9DF92125EA6D6D8 ] EtronXHCI C:\Windows\system32\Drivers\EtronXHCI.sys
22:49:25.0453 3296 EtronXHCI - ok
22:49:25.0485 3296 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
22:49:25.0485 3296 EventSystem - ok
22:49:25.0485 3296 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
22:49:25.0485 3296 exfat - ok
22:49:25.0500 3296 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:49:25.0500 3296 fastfat - ok
22:49:25.0516 3296 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:49:25.0516 3296 fdc - ok
22:49:25.0531 3296 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
22:49:25.0531 3296 fdPHost - ok
22:49:25.0531 3296 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
22:49:25.0531 3296 FDResPub - ok
22:49:25.0547 3296 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:49:25.0547 3296 FileInfo - ok
22:49:25.0547 3296 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:49:25.0547 3296 Filetrace - ok
22:49:25.0563 3296 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:49:25.0563 3296 flpydisk - ok
22:49:25.0578 3296 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:49:25.0578 3296 FltMgr - ok
22:49:25.0609 3296 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
22:49:25.0609 3296 FontCache - ok
22:49:25.0641 3296 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:49:25.0641 3296 FontCache3.0.0.0 - ok
22:49:25.0656 3296 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:49:25.0656 3296 FsDepends - ok
22:49:25.0672 3296 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:49:25.0672 3296 Fs_Rec - ok
22:49:25.0703 3296 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:49:25.0703 3296 fvevol - ok
22:49:25.0734 3296 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
22:49:25.0734 3296 gagp30kx - ok
22:49:25.0765 3296 [ 16C2A6BCDDA8952C2035DEC861492A19 ] ggflt C:\Windows\system32\DRIVERS\ggflt.sys
22:49:25.0765 3296 ggflt - ok
22:49:25.0843 3296 GGSAFERDriver - ok
22:49:25.0843 3296 [ 6B503DF845EABF3457E49FBBDA26C10E ] ggsemc C:\Windows\system32\DRIVERS\ggsemc.sys
22:49:25.0843 3296 ggsemc - ok
22:49:25.0875 3296 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
22:49:25.0875 3296 gpsvc - ok
22:49:25.0937 3296 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:49:25.0937 3296 gupdate - ok
22:49:25.0937 3296 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:49:25.0937 3296 gupdatem - ok
22:49:25.0968 3296 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
22:49:25.0968 3296 gusvc - ok
22:49:25.0999 3296 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
22:49:25.0999 3296 hamachi - ok
22:49:25.0999 3296 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:49:25.0999 3296 hcw85cir - ok
22:49:26.0046 3296 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:49:26.0046 3296 HdAudAddService - ok
22:49:26.0062 3296 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
22:49:26.0062 3296 HDAudBus - ok
22:49:26.0077 3296 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
22:49:26.0077 3296 HidBatt - ok
22:49:26.0077 3296 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
22:49:26.0077 3296 HidBth - ok
22:49:26.0077 3296 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
22:49:26.0093 3296 HidIr - ok
22:49:26.0109 3296 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
22:49:26.0109 3296 hidserv - ok
22:49:26.0140 3296 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:49:26.0140 3296 HidUsb - ok
22:49:26.0155 3296 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:49:26.0155 3296 hkmsvc - ok
22:49:26.0187 3296 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:49:26.0187 3296 HomeGroupListener - ok
22:49:26.0187 3296 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:49:26.0202 3296 HomeGroupProvider - ok
22:49:26.0218 3296 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:49:26.0218 3296 HpSAMD - ok
22:49:26.0249 3296 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:49:26.0249 3296 HTTP - ok
22:49:26.0265 3296 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:49:26.0265 3296 hwpolicy - ok
22:49:26.0296 3296 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
22:49:26.0296 3296 i8042prt - ok
22:49:26.0311 3296 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:49:26.0311 3296 iaStorV - ok
22:49:26.0358 3296 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:49:26.0358 3296 idsvc - ok
22:49:26.0374 3296 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
22:49:26.0374 3296 iirsp - ok
22:49:26.0405 3296 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
22:49:26.0405 3296 IKEEXT - ok
22:49:26.0467 3296 [ ACACD1B925D448558C1C9D0258749451 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:49:26.0499 3296 IntcAzAudAddService - ok
22:49:26.0499 3296 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
22:49:26.0499 3296 intelide - ok
22:49:26.0514 3296 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:49:26.0530 3296 intelppm - ok
22:49:26.0545 3296 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:49:26.0545 3296 IPBusEnum - ok
22:49:26.0561 3296 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:49:26.0561 3296 IpFilterDriver - ok
22:49:26.0592 3296 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:49:26.0608 3296 iphlpsvc - ok
22:49:26.0608 3296 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:49:26.0608 3296 IPMIDRV - ok
22:49:26.0608 3296 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:49:26.0608 3296 IPNAT - ok
22:49:26.0639 3296 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:49:26.0639 3296 IRENUM - ok
22:49:26.0639 3296 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:49:26.0639 3296 isapnp - ok
22:49:26.0655 3296 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:49:26.0670 3296 iScsiPrt - ok
22:49:26.0686 3296 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:49:26.0686 3296 kbdclass - ok
22:49:26.0701 3296 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:49:26.0701 3296 kbdhid - ok
22:49:26.0701 3296 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
22:49:26.0717 3296 KeyIso - ok
22:49:26.0733 3296 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:49:26.0733 3296 KSecDD - ok
22:49:26.0748 3296 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:49:26.0748 3296 KSecPkg - ok
22:49:26.0764 3296 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:49:26.0764 3296 ksthunk - ok
22:49:26.0779 3296 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
22:49:26.0795 3296 KtmRm - ok
22:49:26.0811 3296 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
22:49:26.0826 3296 LanmanServer - ok
22:49:26.0842 3296 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:49:26.0842 3296 LanmanWorkstation - ok
22:49:26.0873 3296 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:49:26.0873 3296 lltdio - ok
22:49:26.0904 3296 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:49:26.0904 3296 lltdsvc - ok
22:49:26.0920 3296 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:49:26.0920 3296 lmhosts - ok
22:49:26.0935 3296 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
22:49:26.0935 3296 LSI_FC - ok
22:49:26.0935 3296 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
22:49:26.0935 3296 LSI_SAS - ok
22:49:26.0935 3296 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:49:26.0935 3296 LSI_SAS2 - ok
22:49:26.0951 3296 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:49:26.0951 3296 LSI_SCSI - ok
22:49:26.0967 3296 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
22:49:26.0967 3296 luafv - ok
22:49:26.0982 3296 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:49:26.0982 3296 Mcx2Svc - ok
22:49:26.0998 3296 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
22:49:26.0998 3296 megasas - ok
22:49:26.0998 3296 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
22:49:26.0998 3296 MegaSR - ok
22:49:27.0045 3296 Microsoft SharePoint Workspace Audit Service - ok
22:49:27.0060 3296 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
22:49:27.0060 3296 MMCSS - ok
22:49:27.0076 3296 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
22:49:27.0076 3296 Modem - ok
22:49:27.0107 3296 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:49:27.0107 3296 monitor - ok
22:49:27.0123 3296 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:49:27.0123 3296 mouclass - ok
22:49:27.0138 3296 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:49:27.0138 3296 mouhid - ok
22:49:27.0169 3296 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:49:27.0169 3296 mountmgr - ok
22:49:27.0201 3296 [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:49:27.0201 3296 MozillaMaintenance - ok
22:49:27.0216 3296 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
22:49:27.0216 3296 mpio - ok
22:49:27.0247 3296 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:49:27.0247 3296 mpsdrv - ok
22:49:27.0279 3296 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:49:27.0279 3296 MpsSvc - ok
22:49:27.0310 3296 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:49:27.0310 3296 MRxDAV - ok
22:49:27.0325 3296 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:49:27.0325 3296 mrxsmb - ok
22:49:27.0341 3296 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:49:27.0341 3296 mrxsmb10 - ok
22:49:27.0357 3296 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:49:27.0357 3296 mrxsmb20 - ok
22:49:27.0372 3296 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
22:49:27.0372 3296 msahci - ok
22:49:27.0372 3296 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:49:27.0372 3296 msdsm - ok
22:49:27.0388 3296 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
22:49:27.0388 3296 MSDTC - ok
22:49:27.0403 3296 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:49:27.0403 3296 Msfs - ok
22:49:27.0419 3296 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:49:27.0419 3296 mshidkmdf - ok
22:49:27.0435 3296 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:49:27.0435 3296 msisadrv - ok
22:49:27.0466 3296 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:49:27.0466 3296 MSiSCSI - ok
22:49:27.0466 3296 msiserver - ok
22:49:27.0497 3296 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:49:27.0497 3296 MSKSSRV - ok
22:49:27.0497 3296 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:49:27.0497 3296 MSPCLOCK - ok
22:49:27.0497 3296 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:49:27.0497 3296 MSPQM - ok
22:49:27.0513 3296 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:49:27.0528 3296 MsRPC - ok
22:49:27.0544 3296 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
22:49:27.0544 3296 mssmbios - ok
22:49:27.0544 3296 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:49:27.0544 3296 MSTEE - ok
22:49:27.0559 3296 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
22:49:27.0559 3296 MTConfig - ok
22:49:27.0575 3296 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
22:49:27.0575 3296 Mup - ok
22:49:27.0606 3296 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
22:49:27.0606 3296 napagent - ok
22:49:27.0637 3296 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:49:27.0637 3296 NativeWifiP - ok
22:49:27.0684 3296 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
22:49:27.0684 3296 NDIS - ok
22:49:27.0700 3296 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:49:27.0700 3296 NdisCap - ok
22:49:27.0715 3296 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:49:27.0715 3296 NdisTapi - ok
22:49:27.0731 3296 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:49:27.0731 3296 Ndisuio - ok
22:49:27.0747 3296 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:49:27.0747 3296 NdisWan - ok
22:49:27.0778 3296 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:49:27.0778 3296 NDProxy - ok
22:49:27.0793 3296 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:49:27.0793 3296 NetBIOS - ok
22:49:27.0793 3296 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:49:27.0809 3296 NetBT - ok
22:49:27.0809 3296 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
22:49:27.0809 3296 Netlogon - ok
22:49:27.0840 3296 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
22:49:27.0840 3296 Netman - ok
22:49:27.0887 3296 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:49:27.0903 3296 NetMsmqActivator - ok
22:49:27.0903 3296 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:49:27.0903 3296 NetPipeActivator - ok
22:49:27.0918 3296 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
22:49:27.0934 3296 netprofm - ok
22:49:27.0934 3296 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:49:27.0934 3296 NetTcpActivator - ok
22:49:27.0934 3296 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:49:27.0934 3296 NetTcpPortSharing - ok
22:49:27.0949 3296 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
22:49:27.0949 3296 nfrd960 - ok
22:49:27.0965 3296 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:49:27.0965 3296 NlaSvc - ok
22:49:27.0965 3296 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:49:27.0965 3296 Npfs - ok
22:49:27.0996 3296 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
22:49:27.0996 3296 nsi - ok
22:49:27.0996 3296 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:49:27.0996 3296 nsiproxy - ok
22:49:28.0043 3296 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:49:28.0043 3296 Ntfs - ok
22:49:28.0059 3296 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
22:49:28.0059 3296 Null - ok
22:49:28.0105 3296 [ 805F0C2B9C07E4C0F74D0EF70E9E827A ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
22:49:28.0121 3296 NVHDA - ok
22:49:28.0261 3296 [ 7A711D08F1FD1AB8149B6199F84A0EB7 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:49:28.0308 3296 nvlddmkm - ok
22:49:28.0324 3296 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:49:28.0324 3296 nvraid - ok
22:49:28.0339 3296 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:49:28.0339 3296 nvstor - ok
22:49:28.0402 3296 [ B9F3591981D761A5CA1D24C369764D96 ] nvsvc C:\Windows\system32\nvvsvc.exe
22:49:28.0402 3296 nvsvc - ok
22:49:28.0480 3296 [ A9AFE5B0648C8D7A411A72D8222F7F6E ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

jakubpolo
Level 2.5
Level 2.5
Příspěvky: 258
Registrován: červen 10
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu, zamrzá počítač

Příspěvekod jakubpolo » 06 čer 2013 23:16

Druhá část
22:49:28.0495 3296 nvUpdatusService - ok
22:49:28.0511 3296 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:49:28.0511 3296 nv_agp - ok
22:49:28.0527 3296 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:49:28.0527 3296 ohci1394 - ok
22:49:28.0558 3296 [ 4965B005492CBA7719E82B71E3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:49:28.0558 3296 ose64 - ok
22:49:28.0651 3296 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:49:28.0667 3296 osppsvc - ok
22:49:28.0698 3296 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:49:28.0698 3296 p2pimsvc - ok
22:49:28.0714 3296 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
22:49:28.0714 3296 p2psvc - ok
22:49:28.0729 3296 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
22:49:28.0729 3296 Parport - ok
22:49:28.0745 3296 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:49:28.0761 3296 partmgr - ok
22:49:28.0776 3296 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:49:28.0776 3296 PcaSvc - ok
22:49:28.0792 3296 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
22:49:28.0792 3296 pci - ok
22:49:28.0792 3296 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
22:49:28.0792 3296 pciide - ok
22:49:28.0823 3296 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
22:49:28.0823 3296 pcmcia - ok
22:49:28.0839 3296 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
22:49:28.0839 3296 pcw - ok
22:49:28.0854 3296 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:49:28.0854 3296 PEAUTH - ok
22:49:28.0885 3296 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
22:49:28.0901 3296 PeerDistSvc - ok
22:49:28.0963 3296 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:49:28.0963 3296 PerfHost - ok
22:49:28.0995 3296 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
22:49:29.0010 3296 pla - ok
22:49:29.0057 3296 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:49:29.0057 3296 PlugPlay - ok
22:49:29.0073 3296 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:49:29.0073 3296 PNRPAutoReg - ok
22:49:29.0104 3296 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:49:29.0104 3296 PNRPsvc - ok
22:49:29.0119 3296 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:49:29.0135 3296 PolicyAgent - ok
22:49:29.0151 3296 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
22:49:29.0151 3296 Power - ok
22:49:29.0182 3296 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:49:29.0182 3296 PptpMiniport - ok
22:49:29.0197 3296 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
22:49:29.0197 3296 Processor - ok
22:49:29.0229 3296 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
22:49:29.0229 3296 ProfSvc - ok
22:49:29.0229 3296 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:49:29.0229 3296 ProtectedStorage - ok
22:49:29.0260 3296 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:49:29.0260 3296 Psched - ok
22:49:29.0291 3296 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
22:49:29.0291 3296 ql2300 - ok
22:49:29.0307 3296 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
22:49:29.0307 3296 ql40xx - ok
22:49:29.0322 3296 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
22:49:29.0338 3296 QWAVE - ok
22:49:29.0338 3296 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:49:29.0338 3296 QWAVEdrv - ok
22:49:29.0353 3296 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:49:29.0353 3296 RasAcd - ok
22:49:29.0369 3296 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:49:29.0369 3296 RasAgileVpn - ok
22:49:29.0385 3296 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
22:49:29.0385 3296 RasAuto - ok
22:49:29.0400 3296 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:49:29.0400 3296 Rasl2tp - ok
22:49:29.0416 3296 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
22:49:29.0431 3296 RasMan - ok
22:49:29.0447 3296 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:49:29.0447 3296 RasPppoe - ok
22:49:29.0447 3296 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:49:29.0447 3296 RasSstp - ok
22:49:29.0463 3296 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:49:29.0463 3296 rdbss - ok
22:49:29.0478 3296 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
22:49:29.0478 3296 rdpbus - ok
22:49:29.0509 3296 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:49:29.0509 3296 RDPCDD - ok
22:49:29.0525 3296 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
22:49:29.0525 3296 RDPDR - ok
22:49:29.0541 3296 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:49:29.0556 3296 RDPENCDD - ok
22:49:29.0556 3296 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:49:29.0556 3296 RDPREFMP - ok
22:49:29.0603 3296 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
22:49:29.0603 3296 RdpVideoMiniport - ok
22:49:29.0634 3296 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:49:29.0634 3296 RDPWD - ok
22:49:29.0650 3296 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:49:29.0650 3296 rdyboost - ok
22:49:29.0681 3296 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:49:29.0681 3296 RemoteAccess - ok
22:49:29.0681 3296 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:49:29.0681 3296 RemoteRegistry - ok
22:49:29.0697 3296 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:49:29.0712 3296 RpcEptMapper - ok
22:49:29.0712 3296 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
22:49:29.0728 3296 RpcLocator - ok
22:49:29.0743 3296 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
22:49:29.0743 3296 RpcSs - ok
22:49:29.0759 3296 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:49:29.0759 3296 rspndr - ok
22:49:29.0790 3296 [ 7F4F11527AF5A7E4526CB6A146B3E40C ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
22:49:29.0790 3296 RTL8167 - ok
22:49:29.0806 3296 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
22:49:29.0806 3296 s3cap - ok
22:49:29.0821 3296 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
22:49:29.0821 3296 SamSs - ok
22:49:29.0837 3296 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:49:29.0837 3296 sbp2port - ok
22:49:29.0853 3296 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:49:29.0853 3296 SCardSvr - ok
22:49:29.0868 3296 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:49:29.0868 3296 scfilter - ok
22:49:29.0899 3296 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
22:49:29.0915 3296 Schedule - ok
22:49:29.0931 3296 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
22:49:29.0931 3296 SCPolicySvc - ok
22:49:29.0946 3296 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:49:29.0946 3296 SDRSVC - ok
22:49:29.0962 3296 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:49:29.0962 3296 secdrv - ok
22:49:29.0977 3296 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
22:49:29.0977 3296 seclogon - ok
22:49:30.0009 3296 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
22:49:30.0009 3296 SENS - ok
22:49:30.0024 3296 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:49:30.0024 3296 SensrSvc - ok
22:49:30.0055 3296 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
22:49:30.0055 3296 Serenum - ok
22:49:30.0071 3296 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
22:49:30.0071 3296 Serial - ok
22:49:30.0102 3296 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
22:49:30.0102 3296 sermouse - ok
22:49:30.0118 3296 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
22:49:30.0133 3296 SessionEnv - ok
22:49:30.0133 3296 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:49:30.0149 3296 sffdisk - ok
22:49:30.0149 3296 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:49:30.0149 3296 sffp_mmc - ok
22:49:30.0149 3296 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:49:30.0149 3296 sffp_sd - ok
22:49:30.0165 3296 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
22:49:30.0165 3296 sfloppy - ok
22:49:30.0196 3296 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:49:30.0196 3296 SharedAccess - ok
22:49:30.0227 3296 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:49:30.0227 3296 ShellHWDetection - ok
22:49:30.0243 3296 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:49:30.0243 3296 SiSRaid2 - ok
22:49:30.0258 3296 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
22:49:30.0258 3296 SiSRaid4 - ok
22:49:30.0305 3296 [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
22:49:30.0305 3296 SkypeUpdate - ok
22:49:30.0321 3296 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:49:30.0321 3296 Smb - ok
22:49:30.0352 3296 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:49:30.0367 3296 SNMPTRAP - ok
22:49:30.0414 3296 [ 3A4F2C0BB87A0895ABEBA341AA1E341B ] Sony PC Companion C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
22:49:30.0414 3296 Sony PC Companion - ok
22:49:30.0430 3296 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
22:49:30.0430 3296 spldr - ok
22:49:30.0461 3296 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
22:49:30.0477 3296 Spooler - ok
22:49:30.0523 3296 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
22:49:30.0555 3296 sppsvc - ok
22:49:30.0570 3296 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:49:30.0570 3296 sppuinotify - ok
22:49:30.0601 3296 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
22:49:30.0601 3296 srv - ok
22:49:30.0617 3296 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:49:30.0617 3296 srv2 - ok
22:49:30.0633 3296 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:49:30.0633 3296 srvnet - ok
22:49:30.0664 3296 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:49:30.0664 3296 SSDPSRV - ok
22:49:30.0664 3296 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:49:30.0664 3296 SstpSvc - ok
22:49:30.0695 3296 Steam Client Service - ok
22:49:30.0757 3296 [ 0887B293199AA2055888FABA989ED0A6 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
22:49:30.0757 3296 Stereo Service - ok
22:49:30.0789 3296 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
22:49:30.0789 3296 stexstor - ok
22:49:30.0804 3296 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
22:49:30.0820 3296 stisvc - ok
22:49:30.0851 3296 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
22:49:30.0851 3296 storflt - ok
22:49:30.0867 3296 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
22:49:30.0867 3296 StorSvc - ok
22:49:30.0882 3296 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
22:49:30.0882 3296 storvsc - ok
22:49:30.0898 3296 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
22:49:30.0898 3296 swenum - ok
22:49:30.0913 3296 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
22:49:30.0929 3296 swprv - ok
22:49:30.0960 3296 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
22:49:30.0976 3296 SysMain - ok
22:49:30.0991 3296 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:49:30.0991 3296 TabletInputService - ok
22:49:31.0007 3296 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:49:31.0007 3296 TapiSrv - ok
22:49:31.0038 3296 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
22:49:31.0038 3296 TBS - ok
22:49:31.0069 3296 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:49:31.0085 3296 Tcpip - ok
22:49:31.0116 3296 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:49:31.0116 3296 TCPIP6 - ok
22:49:31.0147 3296 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:49:31.0147 3296 tcpipreg - ok
22:49:31.0163 3296 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:49:31.0163 3296 TDPIPE - ok
22:49:31.0179 3296 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:49:31.0179 3296 TDTCP - ok
22:49:31.0210 3296 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:49:31.0210 3296 tdx - ok
22:49:31.0210 3296 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
22:49:31.0225 3296 TermDD - ok
22:49:31.0241 3296 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
22:49:31.0257 3296 TermService - ok
22:49:31.0272 3296 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
22:49:31.0272 3296 Themes - ok
22:49:31.0288 3296 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
22:49:31.0288 3296 THREADORDER - ok
22:49:31.0303 3296 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
22:49:31.0303 3296 TrkWks - ok
22:49:31.0350 3296 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:49:31.0350 3296 TrustedInstaller - ok
22:49:31.0366 3296 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:49:31.0366 3296 tssecsrv - ok
22:49:31.0397 3296 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:49:31.0397 3296 TsUsbFlt - ok
22:49:31.0428 3296 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:49:31.0428 3296 tunnel - ok
22:49:31.0444 3296 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
22:49:31.0444 3296 uagp35 - ok
22:49:31.0475 3296 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:49:31.0475 3296 udfs - ok
22:49:31.0506 3296 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:49:31.0522 3296 UI0Detect - ok
22:49:31.0522 3296 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:49:31.0522 3296 uliagpkx - ok
22:49:31.0553 3296 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
22:49:31.0553 3296 umbus - ok
22:49:31.0553 3296 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
22:49:31.0569 3296 UmPass - ok
22:49:31.0584 3296 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
22:49:31.0584 3296 UmRdpService - ok
22:49:31.0600 3296 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
22:49:31.0615 3296 upnphost - ok
22:49:31.0631 3296 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:49:31.0631 3296 usbccgp - ok
22:49:31.0647 3296 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:49:31.0647 3296 usbcir - ok
22:49:31.0647 3296 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:49:31.0647 3296 usbehci - ok
22:49:31.0662 3296 [ 2C780746DC44A28FE67004DC58173F05 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
22:49:31.0662 3296 usbfilter - ok
22:49:31.0678 3296 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:49:31.0678 3296 usbhub - ok
22:49:31.0693 3296 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
22:49:31.0693 3296 usbohci - ok
22:49:31.0709 3296 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:49:31.0709 3296 usbprint - ok
22:49:31.0725 3296 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:49:31.0725 3296 USBSTOR - ok
22:49:31.0740 3296 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
22:49:31.0740 3296 usbuhci - ok
22:49:31.0771 3296 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
22:49:31.0771 3296 UxSms - ok
22:49:31.0771 3296 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
22:49:31.0771 3296 VaultSvc - ok
22:49:31.0787 3296 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:49:31.0787 3296 vdrvroot - ok
22:49:31.0803 3296 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
22:49:31.0818 3296 vds - ok
22:49:31.0818 3296 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:49:31.0834 3296 vga - ok
22:49:31.0834 3296 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
22:49:31.0834 3296 VgaSave - ok
22:49:31.0849 3296 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:49:31.0849 3296 vhdmp - ok
22:49:31.0865 3296 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
22:49:31.0865 3296 viaide - ok
22:49:31.0881 3296 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
22:49:31.0881 3296 vmbus - ok
22:49:31.0896 3296 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
22:49:31.0896 3296 VMBusHID - ok
22:49:31.0912 3296 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:49:31.0912 3296 volmgr - ok
22:49:31.0927 3296 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:49:31.0927 3296 volmgrx - ok
22:49:31.0943 3296 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:49:31.0943 3296 volsnap - ok
22:49:31.0959 3296 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
22:49:31.0959 3296 vsmraid - ok
22:49:32.0005 3296 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
22:49:32.0005 3296 VSS - ok
22:49:32.0021 3296 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
22:49:32.0021 3296 vwifibus - ok
22:49:32.0037 3296 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
22:49:32.0037 3296 W32Time - ok
22:49:32.0052 3296 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
22:49:32.0052 3296 WacomPen - ok
22:49:32.0068 3296 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:49:32.0068 3296 WANARP - ok
22:49:32.0068 3296 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:49:32.0068 3296 Wanarpv6 - ok
22:49:32.0115 3296 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
22:49:32.0115 3296 WatAdminSvc - ok
22:49:32.0161 3296 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
22:49:32.0161 3296 wbengine - ok
22:49:32.0193 3296 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:49:32.0193 3296 WbioSrvc - ok
22:49:32.0224 3296 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:49:32.0224 3296 wcncsvc - ok
22:49:32.0239 3296 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:49:32.0239 3296 WcsPlugInService - ok
22:49:32.0255 3296 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
22:49:32.0255 3296 Wd - ok
22:49:32.0286 3296 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:49:32.0286 3296 Wdf01000 - ok
22:49:32.0302 3296 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:49:32.0302 3296 WdiServiceHost - ok
22:49:32.0302 3296 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:49:32.0302 3296 WdiSystemHost - ok
22:49:32.0333 3296 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
22:49:32.0333 3296 WebClient - ok
22:49:32.0349 3296 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:49:32.0349 3296 Wecsvc - ok
22:49:32.0364 3296 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:49:32.0364 3296 wercplsupport - ok
22:49:32.0380 3296 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
22:49:32.0380 3296 WerSvc - ok
22:49:32.0395 3296 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:49:32.0395 3296 WfpLwf - ok
22:49:32.0411 3296 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:49:32.0411 3296 WIMMount - ok
22:49:32.0411 3296 WinDefend - ok
22:49:32.0427 3296 WinHttpAutoProxySvc - ok
22:49:32.0473 3296 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:49:32.0473 3296 Winmgmt - ok
22:49:32.0505 3296 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
22:49:32.0520 3296 WinRM - ok
22:49:32.0567 3296 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
22:49:32.0567 3296 WinUsb - ok
22:49:32.0598 3296 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
22:49:32.0614 3296 Wlansvc - ok
22:49:32.0645 3296 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:49:32.0645 3296 WmiAcpi - ok
22:49:32.0661 3296 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:49:32.0661 3296 wmiApSrv - ok
22:49:32.0676 3296 WMPNetworkSvc - ok
22:49:32.0692 3296 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:49:32.0692 3296 WPCSvc - ok
22:49:32.0707 3296 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:49:32.0707 3296 WPDBusEnum - ok
22:49:32.0707 3296 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:49:32.0707 3296 ws2ifsl - ok
22:49:32.0723 3296 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
22:49:32.0723 3296 wscsvc - ok
22:49:32.0723 3296 WSearch - ok
22:49:32.0785 3296 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
22:49:32.0801 3296 wuauserv - ok
22:49:32.0832 3296 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:49:32.0832 3296 WudfPf - ok
22:49:32.0863 3296 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:49:32.0863 3296 WUDFRd - ok
22:49:32.0910 3296 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:49:32.0910 3296 wudfsvc - ok
22:49:32.0941 3296 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
22:49:32.0973 3296 WwanSvc - ok
22:49:32.0973 3296 ================ Scan global ===============================
22:49:33.0004 3296 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:49:33.0019 3296 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
22:49:33.0019 3296 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
22:49:33.0051 3296 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:49:33.0066 3296 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:49:33.0066 3296 [Global] - ok
22:49:33.0066 3296 ================ Scan MBR ==================================
22:49:33.0082 3296 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:49:33.0207 3296 \Device\Harddisk0\DR0 - ok
22:49:33.0207 3296 ================ Scan VBR ==================================
22:49:33.0207 3296 [ FBEDA1F83EF39015761E8114CF8C14FA ] \Device\Harddisk0\DR0\Partition1
22:49:33.0207 3296 \Device\Harddisk0\DR0\Partition1 - ok
22:49:33.0222 3296 [ DB18A73A318000B29C3D94A477764BA4 ] \Device\Harddisk0\DR0\Partition2
22:49:33.0222 3296 \Device\Harddisk0\DR0\Partition2 - ok
22:49:33.0222 3296 ============================================================
22:49:33.0222 3296 Scan finished
22:49:33.0222 3296 ============================================================
22:49:33.0222 1964 Detected object count: 0
22:49:33.0222 1964 Actual detected object count: 0
22:49:38.0386 5012 Deinitialize success

Uživatelský avatar
memphisto
Guru Level 13
Guru Level 13
Příspěvky: 21113
Registrován: září 06
Bydliště: Zlín - České Budějovice
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu, zamrzá počítač

Příspěvekod memphisto » 06 čer 2013 23:27

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::
Registry::
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"=-

Driver::
SkypeUpdate

Folder::
c:\program files (x86)\Skype\Updater

File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3002897428-2160201949-2199929802-1000Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3002897428-2160201949-2199929802-1000UA.job

RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upus.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji

jakubpolo
Level 2.5
Level 2.5
Příspěvky: 258
Registrován: červen 10
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu, zamrzá počítač

Příspěvekod jakubpolo » 06 čer 2013 23:52

ComboFix 13-06-06.04 - PoLo 06.06.2013 23:37:26.2.4 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1033.18.4094.2703 [GMT 2:00]
Spuštěný z: c:\users\PoLo\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\PoLo\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3002897428-2160201949-2199929802-1000Core.job"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3002897428-2160201949-2199929802-1000UA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Skype\Updater
c:\program files (x86)\Skype\Updater\Updater.dll
c:\program files (x86)\Skype\Updater\Updater.exe
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3002897428-2160201949-2199929802-1000Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3002897428-2160201949-2199929802-1000UA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_SkypeUpdate
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-05-06 do 2013-06-06 )))))))))))))))))))))))))))))))
.
.
2013-06-06 21:43 . 2013-06-06 21:44 -------- d-----w- c:\users\PoLo\AppData\Local\temp
2013-06-06 16:32 . 2013-06-06 16:32 -------- d-----w- c:\program files (x86)\CrystalDiskInfo
2013-06-06 16:27 . 2013-06-06 16:27 -------- d-----w- c:\users\PoLo\AppData\Roaming\Malwarebytes
2013-06-06 16:27 . 2013-06-06 16:27 -------- d-----w- c:\programdata\Malwarebytes
2013-06-06 16:27 . 2013-06-06 16:27 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-06-06 16:27 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-06-05 21:27 . 2013-06-05 21:27 388096 ----a-r- c:\users\PoLo\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-06-02 09:34 . 2013-06-02 09:35 -------- d-----w- c:\users\PoLo\AppData\Local\PokerStars
2013-06-02 09:34 . 2013-06-02 09:35 -------- d-----w- c:\program files (x86)\PokerStars
2013-06-01 15:01 . 2013-06-01 15:01 -------- d-----w- c:\users\PoLo\AppData\Local\cache
2013-06-01 14:58 . 2013-06-01 21:40 -------- d-----w- c:\users\PoLo\AppData\Local\FullTiltPoker
2013-06-01 14:58 . 2013-06-04 10:47 -------- d-----w- c:\program files (x86)\Full Tilt Poker
2013-06-01 08:29 . 2013-05-13 06:37 9460464 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{3628BAB9-24B5-4128-8078-7BE61CCFBBB4}\mpengine.dll
2013-05-31 22:39 . 2013-05-31 22:39 -------- d-----w- c:\users\PoLo\.android
2013-05-31 22:39 . 2013-05-31 22:39 -------- d-----w- c:\users\PoLo\.swt
2013-05-31 22:37 . 2013-05-31 22:53 -------- d-----w- C:\Flashtool
2013-05-31 22:14 . 2013-05-31 22:14 -------- d-----w- c:\program files (x86)\Sony Mobile
2013-05-26 15:58 . 2013-06-05 16:50 -------- d-----w- c:\users\PoLo\AppData\Roaming\uTorrent
2013-05-24 20:28 . 2013-05-24 20:28 -------- d-----w- c:\users\PoLo\AppData\Local\NVIDIA
2013-05-24 20:14 . 2013-05-31 06:32 -------- d-----w- c:\users\UpdatusUser
2013-05-24 20:14 . 2013-05-12 20:34 6491936 ----a-w- c:\windows\system32\nvcpl.dll
2013-05-24 20:14 . 2013-05-12 20:34 3514656 ----a-w- c:\windows\system32\nvsvc64.dll
2013-05-24 20:14 . 2013-05-12 20:34 884512 ----a-w- c:\windows\system32\nvvsvc.exe
2013-05-24 20:14 . 2013-05-12 20:34 63776 ----a-w- c:\windows\system32\nvshext.dll
2013-05-24 20:14 . 2013-05-12 20:34 237856 ----a-w- c:\windows\system32\nvmctray.dll
2013-05-24 20:14 . 2013-05-08 14:13 3165737 ----a-w- c:\windows\system32\nvcoproc.bin
2013-05-24 20:13 . 2013-05-24 20:25 -------- d-----w- c:\programdata\NVIDIA Corporation
2013-05-15 16:03 . 2013-02-27 05:52 14172672 ----a-w- c:\windows\system32\shell32.dll
2013-05-12 13:43 . 2013-05-12 13:43 566048 ----a-w- c:\windows\SysWow64\nvStreaming.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-15 16:10 . 2012-06-15 19:15 75016696 ----a-w- c:\windows\system32\MRT.exe
2013-05-14 19:22 . 2012-09-13 11:45 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-14 19:22 . 2012-09-13 11:45 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-05-12 21:42 . 2012-09-14 16:05 61216 ----a-w- c:\windows\system32\OpenCL.dll
2013-05-12 21:42 . 2012-09-14 16:05 53024 ----a-w- c:\windows\SysWow64\OpenCL.dll
2013-05-09 08:59 . 2013-03-14 21:21 189936 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-05-09 08:59 . 2013-03-14 21:21 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-05-09 08:59 . 2012-06-15 21:18 378432 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-05-09 08:59 . 2012-06-15 21:18 72016 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-05-09 08:59 . 2012-06-15 21:18 64288 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-05-09 08:59 . 2012-06-15 21:18 1025808 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-05-09 08:59 . 2012-06-15 21:18 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-05-09 08:59 . 2012-06-15 21:18 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-05-09 08:58 . 2012-06-15 21:17 41664 ----a-w- c:\windows\avastSS.scr
2013-05-09 08:58 . 2012-06-15 21:18 287840 ----a-w- c:\windows\system32\aswBoot.exe
2013-05-02 00:06 . 2012-06-15 18:48 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-04-30 21:02 . 2013-04-30 21:02 27760 ----a-w- c:\windows\system32\drivers\ggsemc.sys
2013-04-30 21:02 . 2013-04-30 21:02 1721576 ----a-w- c:\windows\system32\WdfCoInstaller01009.dll
2013-04-30 21:02 . 2013-04-30 21:02 14448 ----a-w- c:\windows\system32\drivers\ggflt.sys
2013-04-13 05:49 . 2013-05-15 16:02 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-15 16:02 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-15 16:02 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-15 16:02 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-15 16:02 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-15 16:02 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-12 14:45 . 2013-04-25 06:30 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-11 14:50 . 2013-04-11 14:50 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-04-04 03:35 . 2013-04-17 18:35 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-04-02 14:09 . 2013-04-02 14:09 4550656 ----a-w- c:\windows\SysWow64\GPhotos.scr
2013-03-21 22:19 . 2013-03-18 15:56 101184 ----a-w- c:\windows\system32\stkMonitor.dll
2013-03-19 06:04 . 2013-04-10 07:35 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-10 07:35 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-10 07:35 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-10 07:35 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-10 07:35 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-10 07:35 112640 ----a-w- c:\windows\system32\smss.exe
2013-03-12 18:44 . 2013-03-12 18:44 97280 ----a-w- c:\windows\system32\mshtmled.dll
2013-03-12 18:44 . 2013-03-12 18:44 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-03-12 18:44 . 2013-03-12 18:44 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-03-12 18:44 . 2013-03-12 18:44 81408 ----a-w- c:\windows\system32\icardie.dll
2013-03-12 18:44 . 2013-03-12 18:44 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-03-12 18:44 . 2013-03-12 18:44 762368 ----a-w- c:\windows\system32\ieapfltr.dll
2013-03-12 18:44 . 2013-03-12 18:44 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-03-12 18:44 . 2013-03-12 18:44 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-03-12 18:44 . 2013-03-12 18:44 62976 ----a-w- c:\windows\system32\pngfilt.dll
2013-03-12 18:44 . 2013-03-12 18:44 61952 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-03-12 18:44 . 2013-03-12 18:44 599552 ----a-w- c:\windows\system32\vbscript.dll
2013-03-12 18:44 . 2013-03-12 18:44 523264 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-03-12 18:44 . 2013-03-12 18:44 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-03-12 18:44 . 2013-03-12 18:44 51200 ----a-w- c:\windows\system32\imgutil.dll
2013-03-12 18:44 . 2013-03-12 18:44 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-03-12 18:44 . 2013-03-12 18:44 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-03-12 18:44 . 2013-03-12 18:44 452096 ----a-w- c:\windows\system32\dxtmsft.dll
2013-03-12 18:44 . 2013-03-12 18:44 441856 ----a-w- c:\windows\system32\html.iec
2013-03-12 18:44 . 2013-03-12 18:44 38400 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-03-12 18:44 . 2013-03-12 18:44 361984 ----a-w- c:\windows\SysWow64\html.iec
2013-03-12 18:44 . 2013-03-12 18:44 281600 ----a-w- c:\windows\system32\dxtrans.dll
2013-03-12 18:44 . 2013-03-12 18:44 27648 ----a-w- c:\windows\system32\licmgr10.dll
2013-03-12 18:44 . 2013-03-12 18:44 270848 ----a-w- c:\windows\system32\iedkcs32.dll
2013-03-12 18:44 . 2013-03-12 18:44 247296 ----a-w- c:\windows\system32\webcheck.dll
2013-03-12 18:44 . 2013-03-12 18:44 235008 ----a-w- c:\windows\system32\url.dll
2013-03-12 18:44 . 2013-03-12 18:44 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-03-12 18:44 . 2013-03-12 18:44 226304 ----a-w- c:\windows\system32\elshyph.dll
2013-03-12 18:44 . 2013-03-12 18:44 216064 ----a-w- c:\windows\system32\msls31.dll
2013-03-12 18:44 . 2013-03-12 18:44 197120 ----a-w- c:\windows\system32\msrating.dll
2013-03-12 18:44 . 2013-03-12 18:44 185344 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-03-12 18:44 . 2013-03-12 18:44 173568 ----a-w- c:\windows\system32\ieUnatt.exe
2013-03-12 18:44 . 2013-03-12 18:44 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-03-12 18:44 . 2013-03-12 18:44 158720 ----a-w- c:\windows\SysWow64\msls31.dll
2013-03-12 18:44 . 2013-03-12 18:44 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2013-03-12 18:44 . 2013-03-12 18:44 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-03-12 18:44 . 2013-03-12 18:44 149504 ----a-w- c:\windows\system32\occache.dll
2013-03-12 18:44 . 2013-03-12 18:44 144896 ----a-w- c:\windows\system32\wextract.exe
2013-03-12 18:44 . 2013-03-12 18:44 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-03-12 18:44 . 2013-03-12 18:44 1400416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-03-12 18:44 . 2013-03-12 18:44 138752 ----a-w- c:\windows\SysWow64\wextract.exe
2013-03-12 18:44 . 2013-03-12 18:44 13824 ----a-w- c:\windows\system32\mshta.exe
2013-03-12 18:44 . 2013-03-12 18:44 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-03-12 18:44 . 2013-03-12 18:44 136192 ----a-w- c:\windows\system32\iepeers.dll
2013-03-12 18:44 . 2013-03-12 18:44 135680 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-03-12 18:44 . 2013-03-12 18:44 12800 ----a-w- c:\windows\SysWow64\mshta.exe
2013-03-12 18:44 . 2013-03-12 18:44 12800 ----a-w- c:\windows\system32\msfeedssync.exe
2013-03-12 18:44 . 2013-03-12 18:44 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-03-12 18:44 . 2013-03-12 18:44 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-03-12 18:44 . 2013-03-12 18:44 102912 ----a-w- c:\windows\system32\inseng.dll
2013-03-10 19:07 . 2012-06-15 21:32 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-03-10 19:07 . 2012-06-15 21:32 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
"amd_dc_opt"="c:\program files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Eyes Relax.lnk - c:\windows\Installer\{9C890D28-9671-4DC2-B017-D5327B9062C8}\EyeIcon.ico [2012-12-2 22534]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys;c:\windows\SYSNATIVE\DRIVERS\ggflt.sys [x]
R3 GGSAFERDriver;GGSAFER Driver;c:\program files (x86)\Garena Plus\Room\safedrv.sys;c:\program files (x86)\Garena Plus\Room\safedrv.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys;c:\windows\SYSNATIVE\Drivers\EtronHub3.sys [x]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys;c:\windows\SYSNATIVE\Drivers\EtronXHCI.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2013-06-06 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-13 19:22]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-01-16 12445288]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-05-16 1012000]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SYSTEM32\blank.htm
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\PoLo\AppData\Roaming\Mozilla\Firefox\Profiles\sncof58t.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.neobux.com/c/
FF - ExtSQL: 2013-05-11 20:07; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\PoLo\AppData\Roaming\Mozilla\Firefox\Profiles\sncof58t.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-PokerStars - c:\program files (x86)\PokerStars\PokerStarsUninstall.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
.
**************************************************************************
.
Celkový čas: 2013-06-06 23:48:06 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-06-06 21:48
ComboFix2.txt 2013-06-06 21:09
.
Před spuštěním: 776 247 668 736 bytes free
Po spuštění: 775 748 894 720 bytes free
.
- - End Of File - - 9AF814E28680E3B8C14B3230E9D6C7FE

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu, zamrzá počítač

Příspěvekod jaro3 » 07 čer 2013 09:29

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 75 hostů