Kontrola logu HJT

miruska27 · Příspěvekod **miruska27** » 10 srp 2013 21:19

Hezký večer. Prosím o konrolu logu přítelkyně. Jen tak,nikdy nebylo na PC nic děláno.... Děkuji M*
P.S. MBAM je čistý :-o

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:15:53, on 10.8.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\uzivatel\Plocha\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 6084850296
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 6084936000
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 6337 bytes

Reklama

Příspěvekod **memphisto** » 10 srp 2013 23:04

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

miruska27 · Příspěvekod **miruska27** » 10 srp 2013 23:28

ATF provedeno,log z MBAM a ADW cleaner přikládám..... P.S. děkuji :-)

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.08.10.03

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
uzivatel :: HOME-COMPIK [administrátor]

10.8.2013 23:21:08
mbam-log-2013-08-10 (23-21-08).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 201677
Uplynulý čas: 5 minut, 25 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

# AdwCleaner v2.306 - Log vytvooen 10/08/2013 v 23:23:04
# Aktualizováno 19/07/2013 Xplode
# Operaení systém : Microsoft Windows XP Service Pack 3 (32 bits)
# Uživatel : uzivatel - HOME-COMPIK
# Spuštin systém : Normální
# Spuštino z : C:\Documents and Settings\uzivatel\Plocha\adwcleaner.exe
# Volba [Prohledat]

***** [Služby] *****

***** [Soubory / Složky] *****

***** [Registry] *****

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry jsou eisté.

-\\ Mozilla Firefox v22.0 (cs)

Soubor : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\315u8d7c.default\prefs.js

[OK] Soubor je eistý.

-\\ Google Chrome v28.0.1500.95

Soubor : C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Preferences

Nalezeno [l.31] : icon_url = "hxxp://www.ask.com/favicon.ico",
Nalezeno [l.34] : keyword = "ask.com",
Nalezeno [l.38] : search_url = "hxxp://websearch.ask.com/redirect?client=cr&src=kw&tb=ORJ&o=&locale=&apn_uid=2B39F0C5-1589-4743-B218-D3C3762DCDB4&apn_ptnrs=U3&apn_sauid=C24EC906-C3DD-4D6D-AC45-14EAE63F55BD&apn_dtid=OSJ000YYCZ&q={searchTerms}",
Nalezeno [l.39] : suggest_url = "hxxp://ss.websearch.ask.com/query?qsrc=2922&li=ff&sstype=prefix&q={searchTerms}"

*************************

AdwCleaner[R1].txt - [1978 octets] - [31/07/2013 19:59:19]
AdwCleaner[R2].txt - [1594 octets] - [10/08/2013 21:29:10]
AdwCleaner[R3].txt - [1465 octets] - [10/08/2013 23:23:04]
AdwCleaner[S1].txt - [1912 octets] - [31/07/2013 19:59:35]
AdwCleaner[S2].txt - [1528 octets] - [10/08/2013 21:29:33]

########## EOF - C:\AdwCleaner[R3].txt - [1645 octets] ##########

Příspěvekod **memphisto** » 10 srp 2013 23:36

v adw nech vše smazat a dodej log po smazání

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

Stáhni si Junkware Removal Tool

na svojí plochu.
Deaktivuj si svůj antivirový program.
Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

miruska27 · Příspěvekod **miruska27** » 10 srp 2013 23:49

RK je tady....

RogueKiller V8.6.5 [Aug 5 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : uzivatel [Práva správce]
Mód : Kontrola -- Datum : 08/10/2013 23:40:40
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 1 ¤¤¤
[SUSP PATH] adwcleaner.exe -- C:\Documents and Settings\uzivatel\Plocha\adwcleaner.exe [-] -> SMAZÁNO [TermProc]

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: HDS728080PLA380 +++++
--- User ---
[MBR] 66cc677fb8dbe6a7b23f89cc05ff4369
[BSP] dead7618fe46949dec282a76bf471cea : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 78520 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_08102013_234040.txt >>

A tady je JRT

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.4.1 (08.10.2013:1)
OS: Microsoft Windows XP x86
Ran by uzivatel on so 10.08.2013 at 23:43:35,71
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{2995742C-3FD1-4041-95CC-00449193142C}

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\Program Files\driver-soft"

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on so 10.08.2013 at 23:47:21,54
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Příspěvekod **memphisto** » 11 srp 2013 12:12

Stáhni si TDSSKiller

Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

miruska27 · Příspěvekod **miruska27** » 11 srp 2013 12:20

12:17:50.0303 1552 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
12:17:50.0585 1552 ============================================================
12:17:50.0585 1552 Current date / time: 2013/08/11 12:17:50.0585
12:17:50.0585 1552 SystemInfo:
12:17:50.0585 1552
12:17:50.0585 1552 OS Version: 5.1.2600 ServicePack: 3.0
12:17:50.0585 1552 Product type: Workstation
12:17:50.0585 1552 ComputerName: HOME-COMPIK
12:17:50.0585 1552 UserName: uzivatel
12:17:50.0585 1552 Windows directory: C:\WINDOWS
12:17:50.0585 1552 System windows directory: C:\WINDOWS
12:17:50.0585 1552 Processor architecture: Intel x86
12:17:50.0585 1552 Number of processors: 1
12:17:50.0585 1552 Page size: 0x1000
12:17:50.0585 1552 Boot type: Normal boot
12:17:50.0585 1552 ============================================================
12:17:52.0991 1552 Drive \Device\Harddisk0\DR0 - Size: 0x132C467E00 (76.69 Gb), SectorSize: 0x200, Cylinders: 0x271B, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
12:17:53.0116 1552 ============================================================
12:17:53.0116 1552 \Device\Harddisk0\DR0:
12:17:53.0132 1552 MBR partitions:
12:17:53.0132 1552 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x995C65B
12:17:53.0132 1552 ============================================================
12:17:53.0178 1552 C: <-> \Device\Harddisk0\DR0\Partition1
12:17:53.0178 1552 ============================================================
12:17:53.0178 1552 Initialize success
12:17:53.0178 1552 ============================================================
12:18:05.0632 1328 ============================================================
12:18:05.0632 1328 Scan started
12:18:05.0632 1328 Mode: Manual;
12:18:05.0632 1328 ============================================================
12:18:05.0772 1328 ================ Scan system memory ========================
12:18:05.0772 1328 System memory - ok
12:18:05.0788 1328 ================ Scan services =============================
12:18:05.0882 1328 Abiosdsk - ok
12:18:05.0897 1328 abp480n5 - ok
12:18:05.0928 1328 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
12:18:05.0944 1328 ACPI - ok
12:18:05.0975 1328 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
12:18:05.0991 1328 ACPIEC - ok
12:18:06.0069 1328 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:18:06.0069 1328 AdobeFlashPlayerUpdateSvc - ok
12:18:06.0069 1328 adpu160m - ok
12:18:06.0116 1328 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
12:18:06.0132 1328 aec - ok
12:18:06.0178 1328 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
12:18:06.0178 1328 AFD - ok
12:18:06.0194 1328 Aha154x - ok
12:18:06.0194 1328 aic78u2 - ok
12:18:06.0210 1328 aic78xx - ok
12:18:06.0225 1328 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
12:18:06.0225 1328 Alerter - ok
12:18:06.0241 1328 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
12:18:06.0241 1328 ALG - ok
12:18:06.0241 1328 AliIde - ok
12:18:06.0319 1328 [ 267FC636801EDC5AB28E14036349E3BE ] Ambfilt C:\WINDOWS\system32\drivers\Ambfilt.sys
12:18:06.0350 1328 Ambfilt - ok
12:18:06.0366 1328 amsint - ok
12:18:06.0382 1328 [ 6B8E7A90E576D4FE308F97C69060A171 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
12:18:06.0382 1328 AppMgmt - ok
12:18:06.0397 1328 asc - ok
12:18:06.0397 1328 asc3350p - ok
12:18:06.0413 1328 asc3550 - ok
12:18:06.0475 1328 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
12:18:06.0475 1328 aspnet_state - ok
12:18:06.0491 1328 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
12:18:06.0507 1328 AsyncMac - ok
12:18:06.0538 1328 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
12:18:06.0538 1328 atapi - ok
12:18:06.0553 1328 Atdisk - ok
12:18:06.0600 1328 [ 471087B5E1E01CC82604E81EA14781D8 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
12:18:07.0085 1328 Ati HotKey Poller - ok
12:18:07.0132 1328 [ B979BA0120B6DB757196A8E2E873FE3C ] ATI Smart C:\WINDOWS\system32\ati2sgag.exe
12:18:08.0413 1328 ATI Smart - ok
12:18:08.0538 1328 [ C0B86ECB324E50F6BBD529F9D5C6B24B ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
12:18:09.0319 1328 ati2mtag - ok
12:18:09.0350 1328 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
12:18:09.0350 1328 Atmarpc - ok
12:18:09.0366 1328 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
12:18:09.0366 1328 AudioSrv - ok
12:18:09.0413 1328 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
12:18:09.0413 1328 audstub - ok
12:18:09.0460 1328 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
12:18:09.0460 1328 Beep - ok
12:18:09.0507 1328 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
12:18:09.0522 1328 BITS - ok
12:18:09.0569 1328 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
12:18:09.0569 1328 Browser - ok
12:18:09.0600 1328 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
12:18:09.0600 1328 cbidf2k - ok
12:18:09.0616 1328 cd20xrnt - ok
12:18:09.0616 1328 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
12:18:09.0616 1328 Cdaudio - ok
12:18:09.0647 1328 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
12:18:09.0647 1328 Cdfs - ok
12:18:09.0694 1328 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
12:18:09.0694 1328 Cdrom - ok
12:18:09.0710 1328 Changer - ok
12:18:09.0741 1328 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
12:18:09.0741 1328 CiSvc - ok
12:18:09.0757 1328 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
12:18:09.0757 1328 ClipSrv - ok
12:18:09.0819 1328 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:18:09.0819 1328 clr_optimization_v2.0.50727_32 - ok
12:18:09.0850 1328 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:18:09.0913 1328 clr_optimization_v4.0.30319_32 - ok
12:18:09.0928 1328 CmdIde - ok
12:18:09.0944 1328 COMSysApp - ok
12:18:09.0960 1328 Cpqarray - ok
12:18:09.0991 1328 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
12:18:09.0991 1328 CryptSvc - ok
12:18:09.0991 1328 dac2w2k - ok
12:18:10.0007 1328 dac960nt - ok
12:18:10.0053 1328 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
12:18:10.0053 1328 DcomLaunch - ok
12:18:10.0100 1328 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
12:18:10.0100 1328 Dhcp - ok
12:18:10.0116 1328 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
12:18:10.0116 1328 Disk - ok
12:18:10.0132 1328 dmadmin - ok
12:18:10.0178 1328 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
12:18:10.0194 1328 dmboot - ok
12:18:10.0194 1328 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
12:18:10.0210 1328 dmio - ok
12:18:10.0225 1328 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
12:18:10.0225 1328 dmload - ok
12:18:10.0225 1328 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
12:18:10.0225 1328 dmserver - ok
12:18:10.0257 1328 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
12:18:10.0257 1328 DMusic - ok
12:18:10.0303 1328 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
12:18:10.0303 1328 Dnscache - ok
12:18:10.0319 1328 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
12:18:10.0319 1328 Dot3svc - ok
12:18:10.0335 1328 dpti2o - ok
12:18:10.0350 1328 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
12:18:10.0350 1328 drmkaud - ok
12:18:10.0366 1328 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
12:18:10.0366 1328 EapHost - ok
12:18:10.0397 1328 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
12:18:10.0397 1328 ERSvc - ok
12:18:10.0444 1328 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
12:18:10.0444 1328 Eventlog - ok
12:18:10.0491 1328 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
12:18:10.0507 1328 EventSystem - ok
12:18:10.0507 1328 ew_hwusbdev - ok
12:18:10.0522 1328 ew_usbenumfilter - ok
12:18:10.0553 1328 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
12:18:10.0553 1328 Fastfat - ok
12:18:10.0585 1328 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
12:18:10.0600 1328 FastUserSwitchingCompatibility - ok
12:18:10.0600 1328 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
12:18:10.0600 1328 Fdc - ok
12:18:10.0616 1328 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
12:18:10.0616 1328 Fips - ok
12:18:10.0663 1328 [ CA0466B4D477426DABF21EC668E9DC85 ] FIXUSTOR C:\WINDOWS\system32\DRIVERS\fixustor.sys
12:18:10.0678 1328 FIXUSTOR - ok
12:18:10.0710 1328 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
12:18:10.0710 1328 Flpydisk - ok
12:18:10.0741 1328 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
12:18:10.0741 1328 FltMgr - ok
12:18:10.0803 1328 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
12:18:10.0803 1328 FontCache3.0.0.0 - ok
12:18:10.0850 1328 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
12:18:10.0850 1328 Fs_Rec - ok
12:18:10.0850 1328 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
12:18:10.0866 1328 Ftdisk - ok
12:18:10.0882 1328 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
12:18:10.0882 1328 Gpc - ok
12:18:10.0975 1328 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
12:18:10.0991 1328 gupdate - ok
12:18:10.0991 1328 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
12:18:10.0991 1328 gupdatem - ok
12:18:11.0038 1328 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
12:18:11.0038 1328 HDAudBus - ok
12:18:11.0116 1328 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
12:18:11.0116 1328 helpsvc - ok
12:18:11.0147 1328 [ 00E25EE90166B3E1BE6E74AEBF858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
12:18:11.0147 1328 HidServ - ok
12:18:11.0178 1328 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
12:18:11.0178 1328 HidUsb - ok
12:18:11.0210 1328 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
12:18:11.0225 1328 hkmsvc - ok
12:18:11.0225 1328 hpn - ok
12:18:11.0272 1328 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
12:18:11.0272 1328 HTTP - ok
12:18:11.0288 1328 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
12:18:11.0288 1328 HTTPFilter - ok
12:18:11.0303 1328 huawei_cdcacm - ok
12:18:11.0319 1328 huawei_cdcecm - ok
12:18:11.0319 1328 huawei_enumerator - ok
12:18:11.0335 1328 huawei_ext_ctrl - ok
12:18:11.0350 1328 i2omgmt - ok
12:18:11.0366 1328 i2omp - ok
12:18:11.0382 1328 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
12:18:11.0382 1328 i8042prt - ok
12:18:11.0475 1328 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:18:11.0475 1328 idsvc - ok
12:18:11.0507 1328 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
12:18:11.0507 1328 Imapi - ok
12:18:11.0538 1328 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
12:18:11.0538 1328 ImapiService - ok
12:18:11.0553 1328 ini910u - ok
12:18:11.0741 1328 [ A7564CC4E170F1E5B84BAE6BB8C5F16E ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
12:18:11.0913 1328 IntcAzAudAddService - ok
12:18:11.0913 1328 IntelIde - ok
12:18:11.0960 1328 [ 27B290D632AF2CF3CF40BFDDB7370985 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
12:18:11.0960 1328 intelppm - ok
12:18:11.0975 1328 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
12:18:11.0975 1328 Ip6Fw - ok
12:18:12.0007 1328 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
12:18:12.0007 1328 IpFilterDriver - ok
12:18:12.0022 1328 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
12:18:12.0022 1328 IpInIp - ok
12:18:12.0053 1328 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
12:18:12.0053 1328 IpNat - ok
12:18:12.0069 1328 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
12:18:12.0069 1328 IPSec - ok
12:18:12.0100 1328 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
12:18:12.0100 1328 IRENUM - ok
12:18:12.0132 1328 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
12:18:12.0132 1328 isapnp - ok
12:18:12.0241 1328 [ 9ECF00E19736054E019C532AED8228FC ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
12:18:12.0382 1328 JavaQuickStarterService - ok
12:18:12.0413 1328 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
12:18:12.0413 1328 Kbdclass - ok
12:18:12.0428 1328 [ 86C8F23616C6C6E5B2776901C17B945B ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
12:18:12.0428 1328 kbdhid - ok
12:18:12.0460 1328 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
12:18:12.0460 1328 kmixer - ok
12:18:12.0475 1328 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
12:18:12.0491 1328 KSecDD - ok
12:18:12.0522 1328 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] LanmanServer C:\WINDOWS\System32\srvsvc.dll
12:18:12.0522 1328 LanmanServer - ok
12:18:12.0569 1328 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
12:18:12.0569 1328 lanmanworkstation - ok
12:18:12.0600 1328 [ 12E54181D584F72296FD6EC72309BD94 ] LBeepKE C:\WINDOWS\system32\Drivers\LBeepKE.sys
12:18:12.0600 1328 LBeepKE - ok
12:18:12.0600 1328 lbrtfdc - ok
12:18:12.0663 1328 [ 54581F1B8A4B517040AD316E5C430A2C ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
12:18:12.0663 1328 LBTServ - ok
12:18:12.0710 1328 [ 5001C2B3557B53DED02ABED3BCC6FD2D ] LHidFilt C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
12:18:12.0710 1328 LHidFilt - ok
12:18:12.0757 1328 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
12:18:12.0757 1328 LmHosts - ok
12:18:12.0772 1328 [ 3AD9369E5D17014971A11728F198994C ] LMouFilt C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
12:18:12.0772 1328 LMouFilt - ok
12:18:12.0788 1328 [ C8CC93D6677DB60C5454C4FF0DC88495 ] LUsbFilt C:\WINDOWS\system32\Drivers\LUsbFilt.Sys
12:18:12.0788 1328 LUsbFilt - ok
12:18:12.0788 1328 massfilter - ok
12:18:12.0803 1328 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
12:18:12.0819 1328 Messenger - ok
12:18:12.0850 1328 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
12:18:12.0866 1328 mnmdd - ok
12:18:12.0897 1328 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
12:18:12.0897 1328 mnmsrvc - ok
12:18:12.0928 1328 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
12:18:12.0928 1328 Modem - ok
12:18:13.0007 1328 [ C7D9F9717916B34C1B00DD4834AF485C ] Monfilt C:\WINDOWS\system32\drivers\Monfilt.sys
12:18:13.0038 1328 Monfilt - ok
12:18:13.0069 1328 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
12:18:13.0069 1328 Mouclass - ok
12:18:13.0085 1328 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
12:18:13.0085 1328 mouhid - ok
12:18:13.0100 1328 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
12:18:13.0100 1328 MountMgr - ok
12:18:13.0147 1328 [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:18:13.0147 1328 MozillaMaintenance - ok
12:18:13.0178 1328 [ CF105EE42E3F71E648CEBB3F666E1CF0 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
12:18:13.0178 1328 MpFilter - ok
12:18:13.0257 1328 [ A69630D039C38018689190234F866D77 ] MpKslabf86946 c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{A89D55B1-E74B-4425-BB22-025778702676}\MpKslabf86946.sys
12:18:13.0257 1328 MpKslabf86946 - ok
12:18:13.0257 1328 mraid35x - ok
12:18:13.0288 1328 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
12:18:13.0288 1328 MRxDAV - ok
12:18:13.0335 1328 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
12:18:13.0335 1328 MRxSmb - ok
12:18:13.0382 1328 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
12:18:13.0382 1328 MSDTC - ok
12:18:13.0397 1328 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
12:18:13.0397 1328 Msfs - ok
12:18:13.0413 1328 MSIServer - ok
12:18:13.0428 1328 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
12:18:13.0428 1328 MSKSSRV - ok
12:18:13.0507 1328 [ C1F19D2BACBEE9AB64D9AE69E9859AC0 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
12:18:13.0507 1328 MsMpSvc - ok
12:18:13.0507 1328 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
12:18:13.0507 1328 MSPCLOCK - ok
12:18:13.0522 1328 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
12:18:13.0522 1328 MSPQM - ok
12:18:13.0538 1328 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
12:18:13.0538 1328 mssmbios - ok
12:18:13.0538 1328 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
12:18:13.0553 1328 Mup - ok
12:18:13.0569 1328 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
12:18:13.0585 1328 napagent - ok
12:18:13.0600 1328 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
12:18:13.0600 1328 NDIS - ok
12:18:13.0647 1328 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
12:18:13.0647 1328 NdisTapi - ok
12:18:13.0694 1328 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
12:18:13.0694 1328 Ndisuio - ok
12:18:13.0694 1328 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:18:13.0694 1328 NdisWan - ok
12:18:13.0741 1328 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
12:18:13.0741 1328 NDProxy - ok
12:18:13.0788 1328 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
12:18:13.0788 1328 NetBIOS - ok
12:18:13.0819 1328 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
12:18:13.0819 1328 NetBT - ok
12:18:13.0850 1328 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
12:18:13.0850 1328 NetDDE - ok
12:18:13.0866 1328 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
12:18:13.0866 1328 NetDDEdsdm - ok
12:18:13.0897 1328 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
12:18:13.0897 1328 Netlogon - ok
12:18:13.0913 1328 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
12:18:13.0913 1328 Netman - ok
12:18:13.0975 1328 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:18:13.0975 1328 NetTcpPortSharing - ok
12:18:14.0022 1328 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
12:18:14.0022 1328 Nla - ok
12:18:14.0038 1328 [ F6C40E0A565EE3CE5AEEB325E10054F2 ] nmwcd C:\WINDOWS\system32\drivers\ccdcmb.sys
12:18:14.0038 1328 nmwcd - ok
12:18:14.0069 1328 [ 2A394E9E1FA3565E4B2FEA470FFE4D6B ] nmwcdc C:\WINDOWS\system32\drivers\ccdcmbo.sys
12:18:14.0069 1328 nmwcdc - ok
12:18:14.0116 1328 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
12:18:14.0116 1328 Npfs - ok
12:18:14.0132 1328 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
12:18:14.0147 1328 Ntfs - ok
12:18:14.0147 1328 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
12:18:14.0147 1328 NtLmSsp - ok
12:18:14.0210 1328 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
12:18:14.0210 1328 NtmsSvc - ok
12:18:14.0257 1328 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
12:18:14.0257 1328 Null - ok
12:18:14.0272 1328 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
12:18:14.0272 1328 NwlnkFlt - ok
12:18:14.0272 1328 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
12:18:14.0272 1328 NwlnkFwd - ok
12:18:14.0350 1328 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:18:14.0350 1328 ose - ok
12:18:14.0382 1328 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
12:18:14.0382 1328 Parport - ok
12:18:14.0397 1328 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
12:18:14.0397 1328 PartMgr - ok
12:18:14.0444 1328 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
12:18:14.0444 1328 ParVdm - ok
12:18:14.0460 1328 [ F451DCACBAA67F3307305EBD4A39EA07 ] pccsmcfd C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
12:18:14.0460 1328 pccsmcfd - ok
12:18:14.0475 1328 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
12:18:14.0475 1328 PCI - ok
12:18:14.0491 1328 PCIDump - ok
12:18:14.0491 1328 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
12:18:14.0491 1328 PCIIde - ok
12:18:14.0522 1328 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
12:18:14.0522 1328 Pcmcia - ok
12:18:14.0538 1328 PDCOMP - ok
12:18:14.0538 1328 PDFRAME - ok
12:18:14.0553 1328 PDRELI - ok
12:18:14.0569 1328 PDRFRAME - ok
12:18:14.0569 1328 perc2 - ok
12:18:14.0585 1328 perc2hib - ok
12:18:14.0616 1328 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
12:18:14.0616 1328 PlugPlay - ok
12:18:14.0632 1328 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
12:18:14.0632 1328 PolicyAgent - ok
12:18:14.0647 1328 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
12:18:14.0647 1328 PptpMiniport - ok
12:18:14.0663 1328 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
12:18:14.0663 1328 ProtectedStorage - ok
12:18:14.0678 1328 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
12:18:14.0678 1328 PSched - ok
12:18:14.0694 1328 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
12:18:14.0694 1328 Ptilink - ok
12:18:14.0694 1328 ql1080 - ok
12:18:14.0710 1328 Ql10wnt - ok
12:18:14.0725 1328 ql12160 - ok
12:18:14.0725 1328 ql1240 - ok
12:18:14.0741 1328 ql1280 - ok
12:18:14.0757 1328 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
12:18:14.0757 1328 RasAcd - ok
12:18:14.0772 1328 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
12:18:14.0772 1328 RasAuto - ok
12:18:14.0788 1328 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
12:18:14.0788 1328 Rasl2tp - ok
12:18:14.0819 1328 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
12:18:14.0819 1328 RasMan - ok
12:18:14.0819 1328 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
12:18:14.0835 1328 RasPppoe - ok
12:18:14.0835 1328 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
12:18:14.0835 1328 Raspti - ok
12:18:14.0850 1328 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
12:18:14.0866 1328 Rdbss - ok
12:18:14.0866 1328 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
12:18:14.0866 1328 RDPCDD - ok
12:18:14.0897 1328 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
12:18:14.0897 1328 rdpdr - ok
12:18:14.0928 1328 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
12:18:14.0928 1328 RDPWD - ok
12:18:14.0960 1328 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
12:18:14.0960 1328 RDSessMgr - ok
12:18:14.0975 1328 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
12:18:14.0975 1328 redbook - ok
12:18:15.0007 1328 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
12:18:15.0007 1328 RemoteAccess - ok
12:18:15.0038 1328 [ 8F31505484A190D5B22274708799F4EC ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
12:18:15.0038 1328 RemoteRegistry - ok
12:18:15.0038 1328 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
12:18:15.0053 1328 RpcLocator - ok
12:18:15.0069 1328 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\system32\rpcss.dll
12:18:15.0085 1328 RpcSs - ok
12:18:15.0116 1328 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
12:18:15.0116 1328 RSVP - ok
12:18:15.0132 1328 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
12:18:15.0132 1328 SamSs - ok
12:18:15.0147 1328 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
12:18:15.0147 1328 SCardSvr - ok
12:18:15.0194 1328 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
12:18:15.0210 1328 Schedule - ok
12:18:15.0241 1328 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
12:18:15.0241 1328 Secdrv - ok
12:18:15.0257 1328 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
12:18:15.0257 1328 seclogon - ok
12:18:15.0272 1328 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
12:18:15.0272 1328 SENS - ok
12:18:15.0288 1328 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
12:18:15.0288 1328 Serial - ok
12:18:15.0366 1328 [ C3BB6CF8F9EE199005A2AAE2815AD756 ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
12:18:15.0382 1328 ServiceLayer - ok
12:18:15.0444 1328 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
12:18:15.0444 1328 Sfloppy - ok
12:18:15.0475 1328 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
12:18:15.0475 1328 SharedAccess - ok
12:18:15.0491 1328 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
12:18:15.0491 1328 ShellHWDetection - ok
12:18:15.0507 1328 Simbad - ok
12:18:15.0522 1328 Sparrow - ok
12:18:15.0569 1328 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
12:18:15.0569 1328 splitter - ok
12:18:15.0616 1328 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
12:18:15.0616 1328 Spooler - ok
12:18:15.0647 1328 [ 94610C8653635E4459316A0050D55CE7 ] Sr C:\WINDOWS\system32\DRIVERS\sr.sys
12:18:15.0647 1328 Sr - ok
12:18:15.0710 1328 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
12:18:15.0710 1328 srservice - ok
12:18:15.0741 1328 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
12:18:15.0757 1328 Srv - ok
12:18:15.0772 1328 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
12:18:15.0772 1328 SSDPSRV - ok
12:18:15.0835 1328 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
12:18:15.0835 1328 stisvc - ok
12:18:15.0866 1328 [ 7D44E29E0BE040A3D94CA1100D1EFD76 ] SWDUMon C:\WINDOWS\system32\DRIVERS\SWDUMon.sys
12:18:15.0913 1328 SWDUMon - ok
12:18:15.0944 1328 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
12:18:15.0944 1328 swenum - ok
12:18:15.0960 1328 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
12:18:15.0960 1328 swmidi - ok
12:18:15.0975 1328 SwPrv - ok
12:18:15.0991 1328 symc810 - ok
12:18:15.0991 1328 symc8xx - ok
12:18:16.0007 1328 sym_hi - ok
12:18:16.0007 1328 sym_u3 - ok
12:18:16.0022 1328 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
12:18:16.0022 1328 sysaudio - ok
12:18:16.0053 1328 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
12:18:16.0053 1328 SysmonLog - ok
12:18:16.0069 1328 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
12:18:16.0085 1328 TapiSrv - ok
12:18:16.0132 1328 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
12:18:16.0132 1328 Tcpip - ok
12:18:16.0163 1328 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
12:18:16.0163 1328 TDPIPE - ok
12:18:16.0178 1328 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
12:18:16.0178 1328 TDTCP - ok
12:18:16.0225 1328 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
12:18:16.0225 1328 TermDD - ok
12:18:16.0257 1328 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
12:18:16.0257 1328 TermService - ok
12:18:16.0272 1328 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
12:18:16.0272 1328 Themes - ok
12:18:16.0319 1328 [ CD0CC7B167D78043A41C98D4921EFB54 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
12:18:16.0319 1328 TlntSvr - ok
12:18:16.0335 1328 TosIde - ok
12:18:16.0350 1328 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
12:18:16.0350 1328 TrkWks - ok
12:18:16.0382 1328 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
12:18:16.0382 1328 Udfs - ok
12:18:16.0397 1328 ultra - ok
12:18:16.0428 1328 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
12:18:16.0444 1328 Update - ok
12:18:16.0491 1328 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
12:18:16.0491 1328 upnphost - ok
12:18:16.0522 1328 [ 47F5F9D837D80FFD5882A14DB9DA0A67 ] upperdev C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
12:18:16.0522 1328 upperdev - ok
12:18:16.0553 1328 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
12:18:16.0553 1328 UPS - ok
12:18:16.0600 1328 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
12:18:16.0600 1328 usbccgp - ok
12:18:16.0616 1328 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
12:18:16.0616 1328 usbehci - ok
12:18:16.0632 1328 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
12:18:16.0632 1328 usbhub - ok
12:18:16.0647 1328 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
12:18:16.0663 1328 usbscan - ok
12:18:16.0663 1328 [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser C:\WINDOWS\system32\drivers\usbser.sys
12:18:16.0663 1328 usbser - ok
12:18:16.0694 1328 [ E44F0D17BE0908B58DCC99CCB99C6C32 ] UsbserFilt C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
12:18:16.0694 1328 UsbserFilt - ok
12:18:16.0710 1328 [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
12:18:16.0710 1328 usbstor - ok
12:18:16.0757 1328 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
12:18:16.0757 1328 usbuhci - ok
12:18:16.0788 1328 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
12:18:16.0788 1328 VgaSave - ok
12:18:16.0788 1328 ViaIde - ok
12:18:16.0819 1328 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
12:18:16.0819 1328 VolSnap - ok
12:18:16.0850 1328 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
12:18:16.0850 1328 VSS - ok
12:18:16.0882 1328 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
12:18:16.0882 1328 W32Time - ok
12:18:16.0897 1328 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:18:16.0913 1328 Wanarp - ok
12:18:16.0960 1328 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
12:18:16.0975 1328 Wdf01000 - ok
12:18:16.0975 1328 WDICA - ok
12:18:17.0022 1328 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
12:18:17.0022 1328 wdmaud - ok
12:18:17.0038 1328 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
12:18:17.0038 1328 WebClient - ok
12:18:17.0116 1328 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
12:18:17.0132 1328 winmgmt - ok
12:18:17.0178 1328 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
12:18:17.0178 1328 WmdmPmSN - ok
12:18:17.0241 1328 [ 0171CFF34BBA8C5977F18C48D8AEF8C6 ] Wmi C:\WINDOWS\System32\advapi32.dll
12:18:17.0257 1328 Wmi - ok
12:18:17.0272 1328 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
12:18:17.0272 1328 WmiApSrv - ok
12:18:17.0366 1328 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
12:18:17.0382 1328 WMPNetworkSvc - ok
12:18:17.0413 1328 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
12:18:17.0413 1328 WpdUsb - ok
12:18:17.0507 1328 [ B800EEC15851597405784126C407188C ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
12:18:17.0507 1328 WPFFontCache_v0400 - ok
12:18:17.0553 1328 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
12:18:17.0569 1328 wscsvc - ok
12:18:17.0600 1328 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
12:18:17.0600 1328 wuauserv - ok
12:18:17.0632 1328 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
12:18:17.0632 1328 WudfPf - ok
12:18:17.0678 1328 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
12:18:17.0678 1328 WudfRd - ok
12:18:17.0710 1328 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
12:18:17.0710 1328 WudfSvc - ok
12:18:17.0772 1328 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
12:18:17.0772 1328 WZCSVC - ok
12:18:17.0819 1328 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
12:18:17.0819 1328 xmlprov - ok
12:18:17.0882 1328 [ 87F126D0F8DC176B282924DF0417075E ] yukonwxp C:\WINDOWS\system32\DRIVERS\yk51x86.sys
12:18:17.0882 1328 yukonwxp - ok
12:18:17.0882 1328 ZTEusbmdm6k - ok
12:18:17.0897 1328 ZTEusbnmea - ok
12:18:17.0913 1328 ZTEusbser6k - ok
12:18:17.0913 1328 ================ Scan global ===============================
12:18:17.0944 1328 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
12:18:17.0991 1328 [ 4C0AA4ABC4E21672B55D8A700AF2B2A6 ] C:\WINDOWS\system32\winsrv.dll
12:18:18.0007 1328 [ 4C0AA4ABC4E21672B55D8A700AF2B2A6 ] C:\WINDOWS\system32\winsrv.dll
12:18:18.0038 1328 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
12:18:18.0038 1328 [Global] - ok
12:18:18.0038 1328 ================ Scan MBR ==================================
12:18:18.0053 1328 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
12:18:18.0210 1328 \Device\Harddisk0\DR0 - ok
12:18:18.0210 1328 ================ Scan VBR ==================================
12:18:18.0210 1328 [ 20AE99B61864E14DB2D2AED233BF34CA ] \Device\Harddisk0\DR0\Partition1
12:18:18.0210 1328 \Device\Harddisk0\DR0\Partition1 - ok
12:18:18.0210 1328 ============================================================
12:18:18.0210 1328 Scan finished
12:18:18.0210 1328 ============================================================
12:18:18.0225 3696 Detected object count: 0
12:18:18.0225 3696 Actual detected object count: 0
12:18:31.0288 2888 Deinitialize success

Příspěvekod **memphisto** » 11 srp 2013 16:22

Jak je na tom PC? Dodej ještě nový HJT na dočištění

miruska27 · Příspěvekod **miruska27** » 11 srp 2013 22:13

Zdá se lepší,přikládám log z HJT

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:10:45, on 11.8.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\uzivatel\Plocha\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 6084850296
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 6084936000
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 6239 bytes

Příspěvekod **Žbeky** » 11 srp 2013 22:43

Fixni:

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 6084850296
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 6084936000
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab

a pokud nejsou problémy, můžeš dát vyřešeno

Kontrola logu HJT Vyřešeno

Kontrola logu HJT

Re: Kontrola logu HJT

Re: Kontrola logu HJT

Re: Kontrola logu HJT

Re: Kontrola logu HJT

Re: Kontrola logu HJT

Re: Kontrola logu HJT

Re: Kontrola logu HJT

Re: Kontrola logu HJT Vyřešeno

Re: Kontrola logu HJT

Kdo je online