Prosím kontrolu, podezření na spam v PC Vyřešeno

[memphisto]

Tu nastavenou proxy znáš?

[Reklama]

[Scanner]

Já vůbec o žádné proxy nic nevím, nic jsem neměnil, nikam jinam jsem se nepřipojoval.

[memphisto]

Tak dej znovu Rogue a zvol PROXYFIX a pak dodej zase log

[Scanner]

RogueKiller V8.5.4 _x64_ [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Zkuřka [Práva správce]
Mód : Oprava Proxy -- Datum : 05/10/2013 22:20:39
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 1 ¤¤¤
[PROXY IE] HKCU\[...]\Internet Settings : ProxyServer (190.7.212.30:3128) -> VYMAZÁNO

¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤

Dokončeno : << RKreport[4]_PR_05102013_02d2220.txt >>
RKreport[1]_S_05092013_02d2206.txt ; RKreport[2]_S_05092013_02d2247.txt ; RKreport[3]_D_05092013_02d2248.txt ; RKreport[4]_PR_05102013_02d2220.txt

[jaro3]

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[Scanner]

19:04:37.0140 4496 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:04:37.0297 4496 ============================================================
19:04:37.0298 4496 Current date / time: 2013/05/11 19:04:37.0297
19:04:37.0298 4496 SystemInfo:
19:04:37.0298 4496
19:04:37.0298 4496 OS Version: 6.1.7601 ServicePack: 1.0
19:04:37.0298 4496 Product type: Workstation
19:04:37.0298 4496 ComputerName: WEED
19:04:37.0298 4496 UserName: Zkuřka
19:04:37.0298 4496 Windows directory: C:\Windows
19:04:37.0298 4496 System windows directory: C:\Windows
19:04:37.0298 4496 Running under WOW64
19:04:37.0298 4496 Processor architecture: Intel x64
19:04:37.0298 4496 Number of processors: 4
19:04:37.0298 4496 Page size: 0x1000
19:04:37.0298 4496 Boot type: Normal boot
19:04:37.0298 4496 ============================================================
19:04:38.0160 4496 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1F8B1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
19:04:38.0176 4496 Drive \Device\Harddisk1\DR1 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:04:38.0202 4496 ============================================================
19:04:38.0202 4496 \Device\Harddisk0\DR0:
19:04:38.0209 4496 MBR partitions:
19:04:38.0210 4496 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
19:04:38.0210 4496 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xC31E000
19:04:38.0210 4496 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xC350800, BlocksNum 0x683B5800
19:04:38.0210 4496 \Device\Harddisk1\DR1:
19:04:38.0210 4496 MBR partitions:
19:04:38.0210 4496 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x57545000
19:04:38.0210 4496 ============================================================
19:04:38.0229 4496 C: <-> \Device\Harddisk0\DR0\Partition2
19:04:38.0236 4496 D: <-> \Device\Harddisk1\DR1\Partition1
19:04:38.0263 4496 E: <-> \Device\Harddisk0\DR0\Partition3
19:04:38.0263 4496 ============================================================
19:04:38.0263 4496 Initialize success
19:04:38.0263 4496 ============================================================
19:04:39.0533 0748 ============================================================
19:04:39.0533 0748 Scan started
19:04:39.0533 0748 Mode: Manual;
19:04:39.0533 0748 ============================================================
19:04:40.0061 0748 ================ Scan system memory ========================
19:04:40.0061 0748 System memory - ok
19:04:40.0062 0748 ================ Scan services =============================
19:04:40.0151 0748 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:04:40.0153 0748 1394ohci - ok
19:04:40.0172 0748 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:04:40.0175 0748 ACPI - ok
19:04:40.0185 0748 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:04:40.0186 0748 AcpiPmi - ok
19:04:40.0248 0748 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:04:40.0249 0748 AdobeARMservice - ok
19:04:40.0318 0748 [ 479901C99FA62D1C3261B7ACB1228DAD ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:04:40.0321 0748 AdobeFlashPlayerUpdateSvc - ok
19:04:40.0341 0748 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
19:04:40.0345 0748 adp94xx - ok
19:04:40.0354 0748 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
19:04:40.0357 0748 adpahci - ok
19:04:40.0362 0748 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
19:04:40.0364 0748 adpu320 - ok
19:04:40.0484 0748 [ 8539A04EEE824B24A86E7317AB64DFBE ] AdvancedSystemCareService6 E:\Advanced SystemCare Ultimate\ascsvc.exe
19:04:40.0492 0748 AdvancedSystemCareService6 - ok
19:04:40.0521 0748 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:04:40.0522 0748 AeLookupSvc - ok
19:04:40.0546 0748 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
19:04:40.0550 0748 AFD - ok
19:04:40.0576 0748 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:04:40.0577 0748 agp440 - ok
19:04:40.0589 0748 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
19:04:40.0590 0748 ALG - ok
19:04:40.0608 0748 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
19:04:40.0609 0748 aliide - ok
19:04:40.0621 0748 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
19:04:40.0622 0748 amdide - ok
19:04:40.0641 0748 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
19:04:40.0642 0748 AmdK8 - ok
19:04:40.0653 0748 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
19:04:40.0654 0748 AmdPPM - ok
19:04:40.0668 0748 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:04:40.0670 0748 amdsata - ok
19:04:40.0679 0748 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
19:04:40.0681 0748 amdsbs - ok
19:04:40.0690 0748 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:04:40.0690 0748 amdxata - ok
19:04:40.0714 0748 [ E71711D37C48AC40FD3E2866A5ABBA51 ] anvsnddrv C:\Windows\system32\drivers\anvsnddrv.sys
19:04:40.0715 0748 anvsnddrv - ok
19:04:40.0738 0748 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
19:04:40.0739 0748 AppID - ok
19:04:40.0743 0748 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:04:40.0744 0748 AppIDSvc - ok
19:04:40.0754 0748 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
19:04:40.0756 0748 Appinfo - ok
19:04:40.0787 0748 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
19:04:40.0789 0748 AppMgmt - ok
19:04:40.0803 0748 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
19:04:40.0804 0748 arc - ok
19:04:40.0810 0748 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
19:04:40.0811 0748 arcsas - ok
19:04:40.0848 0748 [ E85EA064C10E4B3EC1029B598D0589C6 ] ASCAntivirusSrv E:\Advanced SystemCare Ultimate\ascavsvc.exe
19:04:40.0853 0748 ASCAntivirusSrv - ok
19:04:40.0926 0748 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:04:40.0951 0748 aspnet_state - ok
19:04:40.0977 0748 [ 0BAEFD3F648C6E7AB52990DD9565E4E2 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
19:04:40.0980 0748 aswFsBlk - ok
19:04:41.0019 0748 [ 7A62C389380F6FF3FA952D511D8790B8 ] aswFW C:\Windows\system32\drivers\aswFW.sys
19:04:41.0021 0748 aswFW - ok
19:04:41.0035 0748 [ 890918D53B80B474CFAFB48995B85AF3 ] aswKbd C:\Windows\system32\drivers\aswKbd.sys
19:04:41.0035 0748 aswKbd - ok
19:04:41.0062 0748 [ FA562F34ED6633C66170B09182B4C049 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
19:04:41.0063 0748 aswMonFlt - ok
19:04:41.0092 0748 [ 518B8D447A1975AB46DA093A2E743256 ] aswNdis C:\Windows\system32\DRIVERS\aswNdis.sys
19:04:41.0093 0748 aswNdis - ok
19:04:41.0105 0748 [ 94CCA87794454E1824D59B092B9F70C4 ] aswNdis2 C:\Windows\system32\drivers\aswNdis2.sys
19:04:41.0108 0748 aswNdis2 - ok
19:04:41.0117 0748 [ 64E2BAB4096C13D2342BC4661C967E07 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
19:04:41.0119 0748 aswRdr - ok
19:04:41.0142 0748 [ 5573AA70993A2BB81525B1C704B88763 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
19:04:41.0143 0748 aswRvrt - ok
19:04:41.0182 0748 [ 10ED1CAB84AA65983C41A11F60294C9B ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
19:04:41.0190 0748 aswSnx - ok
19:04:41.0206 0748 [ 00E5253353717D3CA12A0F5A6F9991EC ] aswSP C:\Windows\system32\drivers\aswSP.sys
19:04:41.0210 0748 aswSP - ok
19:04:41.0231 0748 [ 29DD8E458A84171202AA4979364C30C0 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
19:04:41.0232 0748 aswTdi - ok
19:04:41.0259 0748 [ 6359B99C955DB9F40B653159A0EED261 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
19:04:41.0261 0748 aswVmm - ok
19:04:41.0275 0748 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:04:41.0276 0748 AsyncMac - ok
19:04:41.0298 0748 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
19:04:41.0299 0748 atapi - ok
19:04:41.0324 0748 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:04:41.0330 0748 AudioEndpointBuilder - ok
19:04:41.0338 0748 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:04:41.0341 0748 AudioSrv - ok
19:04:41.0403 0748 [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
19:04:41.0404 0748 avast! Antivirus - ok
19:04:41.0419 0748 [ C2009C6A452BD07B30D773349589B762 ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
19:04:41.0420 0748 avast! Firewall - ok
19:04:41.0442 0748 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:04:41.0444 0748 AxInstSV - ok
19:04:41.0468 0748 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
19:04:41.0472 0748 b06bdrv - ok
19:04:41.0483 0748 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:04:41.0486 0748 b57nd60a - ok
19:04:41.0515 0748 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
19:04:41.0516 0748 BDESVC - ok
19:04:41.0523 0748 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
19:04:41.0524 0748 Beep - ok
19:04:41.0549 0748 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
19:04:41.0555 0748 BFE - ok
19:04:41.0578 0748 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
19:04:41.0630 0748 BITS - ok
19:04:41.0649 0748 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:04:41.0651 0748 blbdrive - ok
19:04:41.0677 0748 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:04:41.0678 0748 bowser - ok
19:04:41.0701 0748 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:04:41.0702 0748 BrFiltLo - ok
19:04:41.0705 0748 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:04:41.0706 0748 BrFiltUp - ok
19:04:41.0713 0748 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
19:04:41.0714 0748 BridgeMP - ok
19:04:41.0737 0748 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
19:04:41.0738 0748 Browser - ok
19:04:41.0744 0748 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:04:41.0746 0748 Brserid - ok
19:04:41.0751 0748 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:04:41.0752 0748 BrSerWdm - ok
19:04:41.0755 0748 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:04:41.0756 0748 BrUsbMdm - ok
19:04:41.0760 0748 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:04:41.0761 0748 BrUsbSer - ok
19:04:41.0765 0748 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:04:41.0766 0748 BTHMODEM - ok
19:04:41.0791 0748 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
19:04:41.0793 0748 bthserv - ok
19:04:41.0806 0748 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:04:41.0808 0748 cdfs - ok
19:04:41.0832 0748 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:04:41.0834 0748 cdrom - ok
19:04:41.0853 0748 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
19:04:41.0854 0748 CertPropSvc - ok
19:04:41.0862 0748 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
19:04:41.0863 0748 circlass - ok
19:04:41.0875 0748 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
19:04:41.0879 0748 CLFS - ok
19:04:41.0926 0748 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:04:41.0929 0748 clr_optimization_v2.0.50727_32 - ok
19:04:41.0963 0748 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:04:41.0965 0748 clr_optimization_v2.0.50727_64 - ok
19:04:42.0000 0748 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:04:42.0076 0748 clr_optimization_v4.0.30319_32 - ok
19:04:42.0086 0748 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:04:42.0097 0748 clr_optimization_v4.0.30319_64 - ok
19:04:42.0113 0748 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:04:42.0114 0748 CmBatt - ok
19:04:42.0126 0748 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:04:42.0127 0748 cmdide - ok
19:04:42.0156 0748 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
19:04:42.0160 0748 CNG - ok
19:04:42.0170 0748 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:04:42.0171 0748 Compbatt - ok
19:04:42.0185 0748 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
19:04:42.0186 0748 CompositeBus - ok
19:04:42.0190 0748 COMSysApp - ok
19:04:42.0203 0748 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
19:04:42.0204 0748 crcdisk - ok
19:04:42.0221 0748 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:04:42.0223 0748 CryptSvc - ok
19:04:42.0241 0748 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
19:04:42.0246 0748 CSC - ok
19:04:42.0266 0748 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
19:04:42.0272 0748 CscService - ok
19:04:42.0305 0748 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:04:42.0311 0748 DcomLaunch - ok
19:04:42.0332 0748 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
19:04:42.0335 0748 defragsvc - ok
19:04:42.0351 0748 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:04:42.0352 0748 DfsC - ok
19:04:42.0370 0748 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
19:04:42.0374 0748 Dhcp - ok
19:04:42.0392 0748 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
19:04:42.0393 0748 discache - ok
19:04:42.0403 0748 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
19:04:42.0404 0748 Disk - ok
19:04:42.0422 0748 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:04:42.0424 0748 Dnscache - ok
19:04:42.0449 0748 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
19:04:42.0452 0748 dot3svc - ok
19:04:42.0465 0748 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
19:04:42.0467 0748 DPS - ok
19:04:42.0482 0748 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:04:42.0483 0748 drmkaud - ok
19:04:42.0509 0748 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
19:04:42.0512 0748 dtsoftbus01 - ok
19:04:42.0546 0748 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:04:42.0554 0748 DXGKrnl - ok
19:04:42.0574 0748 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
19:04:42.0576 0748 EapHost - ok
19:04:42.0636 0748 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
19:04:42.0661 0748 ebdrv - ok
19:04:42.0680 0748 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
19:04:42.0681 0748 EFS - ok
19:04:42.0715 0748 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:04:42.0721 0748 ehRecvr - ok
19:04:42.0740 0748 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
19:04:42.0742 0748 ehSched - ok
19:04:42.0758 0748 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
19:04:42.0763 0748 elxstor - ok
19:04:42.0776 0748 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:04:42.0777 0748 ErrDev - ok
19:04:42.0810 0748 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
19:04:42.0814 0748 EventSystem - ok
19:04:42.0826 0748 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
19:04:42.0828 0748 exfat - ok
19:04:42.0850 0748 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:04:42.0852 0748 fastfat - ok
19:04:42.0876 0748 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
19:04:42.0883 0748 Fax - ok
19:04:42.0886 0748 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:04:42.0887 0748 fdc - ok
19:04:42.0899 0748 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
19:04:42.0901 0748 fdPHost - ok
19:04:42.0904 0748 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
19:04:42.0906 0748 FDResPub - ok
19:04:42.0921 0748 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:04:42.0922 0748 FileInfo - ok
19:04:42.0931 0748 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:04:42.0932 0748 Filetrace - ok
19:04:42.0936 0748 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:04:42.0937 0748 flpydisk - ok
19:04:42.0955 0748 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:04:42.0958 0748 FltMgr - ok
19:04:43.0009 0748 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
19:04:43.0019 0748 FontCache - ok
19:04:43.0065 0748 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:04:43.0068 0748 FontCache3.0.0.0 - ok
19:04:43.0099 0748 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:04:43.0100 0748 FsDepends - ok
19:04:43.0138 0748 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:04:43.0139 0748 Fs_Rec - ok
19:04:43.0174 0748 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:04:43.0176 0748 fvevol - ok
19:04:43.0185 0748 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
19:04:43.0186 0748 gagp30kx - ok
19:04:43.0189 0748 gdrv - ok
19:04:43.0219 0748 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
19:04:43.0226 0748 gpsvc - ok
19:04:43.0263 0748 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:04:43.0264 0748 gupdate - ok
19:04:43.0268 0748 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:04:43.0269 0748 gupdatem - ok
19:04:43.0272 0748 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:04:43.0273 0748 hcw85cir - ok
19:04:43.0295 0748 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:04:43.0298 0748 HdAudAddService - ok
19:04:43.0308 0748 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
19:04:43.0309 0748 HDAudBus - ok
19:04:43.0313 0748 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
19:04:43.0315 0748 HidBatt - ok
19:04:43.0318 0748 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:04:43.0320 0748 HidBth - ok
19:04:43.0324 0748 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
19:04:43.0325 0748 HidIr - ok
19:04:43.0333 0748 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
19:04:43.0334 0748 hidserv - ok
19:04:43.0348 0748 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:04:43.0349 0748 HidUsb - ok
19:04:43.0370 0748 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:04:43.0372 0748 hkmsvc - ok
19:04:43.0397 0748 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:04:43.0401 0748 HomeGroupListener - ok
19:04:43.0425 0748 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:04:43.0430 0748 HomeGroupProvider - ok
19:04:43.0440 0748 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:04:43.0441 0748 HpSAMD - ok
19:04:43.0467 0748 [ 4E9CAE3200A46135DE01CE22BAF832BE ] HPSIService C:\Windows\system32\HPSIsvc.exe
19:04:43.0470 0748 HPSIService - ok
19:04:43.0498 0748 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:04:43.0504 0748 HTTP - ok
19:04:43.0518 0748 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:04:43.0519 0748 hwpolicy - ok
19:04:43.0541 0748 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
19:04:43.0543 0748 i8042prt - ok
19:04:43.0571 0748 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:04:43.0575 0748 iaStorV - ok
19:04:43.0604 0748 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:04:43.0611 0748 idsvc - ok
19:04:43.0630 0748 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
19:04:43.0631 0748 iirsp - ok
19:04:43.0656 0748 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
19:04:43.0664 0748 IKEEXT - ok
19:04:43.0671 0748 IntcAzAudAddService - ok
19:04:43.0684 0748 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
19:04:43.0685 0748 intelide - ok
19:04:43.0696 0748 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:04:43.0697 0748 intelppm - ok
19:04:43.0713 0748 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:04:43.0716 0748 IPBusEnum - ok
19:04:43.0732 0748 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:04:43.0733 0748 IpFilterDriver - ok
19:04:43.0761 0748 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:04:43.0766 0748 iphlpsvc - ok
19:04:43.0786 0748 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:04:43.0787 0748 IPMIDRV - ok
19:04:43.0803 0748 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:04:43.0805 0748 IPNAT - ok
19:04:43.0815 0748 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:04:43.0816 0748 IRENUM - ok
19:04:43.0841 0748 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:04:43.0843 0748 isapnp - ok
19:04:43.0861 0748 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:04:43.0864 0748 iScsiPrt - ok
19:04:43.0879 0748 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
19:04:43.0880 0748 kbdclass - ok
19:04:43.0888 0748 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
19:04:43.0889 0748 kbdhid - ok
19:04:43.0896 0748 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
19:04:43.0898 0748 KeyIso - ok
19:04:43.0916 0748 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:04:43.0918 0748 KSecDD - ok
19:04:43.0942 0748 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:04:43.0944 0748 KSecPkg - ok
19:04:43.0963 0748 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:04:43.0964 0748 ksthunk - ok
19:04:43.0992 0748 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
19:04:43.0996 0748 KtmRm - ok
19:04:44.0011 0748 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
19:04:44.0015 0748 LanmanServer - ok
19:04:44.0033 0748 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:04:44.0036 0748 LanmanWorkstation - ok
19:04:44.0046 0748 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:04:44.0047 0748 lltdio - ok
19:04:44.0061 0748 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:04:44.0065 0748 lltdsvc - ok
19:04:44.0075 0748 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:04:44.0077 0748 lmhosts - ok
19:04:44.0091 0748 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
19:04:44.0093 0748 LSI_FC - ok
19:04:44.0097 0748 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
19:04:44.0098 0748 LSI_SAS - ok
19:04:44.0112 0748 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:04:44.0113 0748 LSI_SAS2 - ok
19:04:44.0117 0748 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:04:44.0118 0748 LSI_SCSI - ok
19:04:44.0129 0748 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
19:04:44.0131 0748 luafv - ok
19:04:44.0151 0748 [ 8B03202C731A0B967927EB7E5B2E470C ] mbamchameleon C:\Windows\system32\drivers\mbamchameleon.sys
19:04:44.0152 0748 mbamchameleon - ok
19:04:44.0176 0748 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
19:04:44.0177 0748 MBAMProtector - ok
19:04:44.0219 0748 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler E:\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:04:44.0223 0748 MBAMScheduler - ok
19:04:44.0243 0748 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService E:\Malwarebytes' Anti-Malware\mbamservice.exe
19:04:44.0249 0748 MBAMService - ok
19:04:44.0275 0748 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:04:44.0278 0748 Mcx2Svc - ok
19:04:44.0297 0748 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
19:04:44.0298 0748 megasas - ok
19:04:44.0313 0748 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
19:04:44.0316 0748 MegaSR - ok
19:04:44.0334 0748 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
19:04:44.0335 0748 MEIx64 - ok
19:04:44.0353 0748 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
19:04:44.0355 0748 MMCSS - ok
19:04:44.0368 0748 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
19:04:44.0369 0748 Modem - ok
19:04:44.0391 0748 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:04:44.0393 0748 monitor - ok
19:04:44.0418 0748 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:04:44.0419 0748 mouclass - ok
19:04:44.0428 0748 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:04:44.0429 0748 mouhid - ok
19:04:44.0445 0748 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:04:44.0446 0748 mountmgr - ok
19:04:44.0471 0748 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
19:04:44.0473 0748 mpio - ok
19:04:44.0488 0748 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:04:44.0490 0748 mpsdrv - ok
19:04:44.0518 0748 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:04:44.0526 0748 MpsSvc - ok
19:04:44.0564 0748 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:04:44.0566 0748 MRxDAV - ok
19:04:44.0617 0748 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:04:44.0639 0748 mrxsmb - ok
19:04:44.0718 0748 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:04:44.0727 0748 mrxsmb10 - ok
19:04:44.0739 0748 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:04:44.0740 0748 mrxsmb20 - ok
19:04:44.0751 0748 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
19:04:44.0752 0748 msahci - ok
19:04:44.0764 0748 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:04:44.0766 0748 msdsm - ok
19:04:44.0787 0748 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
19:04:44.0790 0748 MSDTC - ok
19:04:44.0813 0748 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:04:44.0815 0748 Msfs - ok
19:04:44.0823 0748 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:04:44.0824 0748 mshidkmdf - ok
19:04:44.0842 0748 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:04:44.0843 0748 msisadrv - ok
19:04:44.0865 0748 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:04:44.0869 0748 MSiSCSI - ok
19:04:44.0874 0748 msiserver - ok
19:04:44.0886 0748 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:04:44.0887 0748 MSKSSRV - ok
19:04:44.0891 0748 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:04:44.0892 0748 MSPCLOCK - ok
19:04:44.0901 0748 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:04:44.0902 0748 MSPQM - ok
19:04:44.0924 0748 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:04:44.0927 0748 MsRPC - ok
19:04:44.0937 0748 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:04:44.0938 0748 mssmbios - ok
19:04:44.0941 0748 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:04:44.0943 0748 MSTEE - ok
19:04:44.0952 0748 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
19:04:44.0953 0748 MTConfig - ok
19:04:44.0965 0748 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
19:04:44.0966 0748 Mup - ok
19:04:45.0003 0748 [ 705E9675014EB688BEDD967B1ABECF19 ] mvusbews C:\Windows\system32\Drivers\mvusbews.sys
19:04:45.0006 0748 mvusbews - ok
19:04:45.0023 0748 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
19:04:45.0029 0748 napagent - ok
19:04:45.0067 0748 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:04:45.0070 0748 NativeWifiP - ok
19:04:45.0140 0748 [ 3BAE2BFCB6D69E19C8373F635DD544DC ] NBService C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
19:04:45.0146 0748 NBService - ok
19:04:45.0175 0748 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
19:04:45.0183 0748 NDIS - ok
19:04:45.0194 0748 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:04:45.0195 0748 NdisCap - ok
19:04:45.0206 0748 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:04:45.0207 0748 NdisTapi - ok
19:04:45.0223 0748 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:04:45.0224 0748 Ndisuio - ok
19:04:45.0241 0748 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:04:45.0244 0748 NdisWan - ok
19:04:45.0262 0748 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:04:45.0263 0748 NDProxy - ok
19:04:45.0284 0748 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:04:45.0285 0748 NetBIOS - ok
19:04:45.0316 0748 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:04:45.0319 0748 NetBT - ok
19:04:45.0329 0748 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
19:04:45.0331 0748 Netlogon - ok
19:04:45.0352 0748 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
19:04:45.0357 0748 Netman - ok
19:04:45.0377 0748 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:04:45.0400 0748 NetMsmqActivator - ok
19:04:45.0403 0748 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:04:45.0405 0748 NetPipeActivator - ok
19:04:45.0413 0748 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
19:04:45.0418 0748 netprofm - ok
19:04:45.0422 0748 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:04:45.0423 0748 NetTcpActivator - ok
19:04:45.0426 0748 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:04:45.0428 0748 NetTcpPortSharing - ok
19:04:45.0443 0748 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
19:04:45.0444 0748 nfrd960 - ok
19:04:45.0466 0748 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:04:45.0470 0748 NlaSvc - ok

[Scanner]

19:04:45.0526 0748 [ 193FA51DDDD0BFFDED1C340F0434999A ] NMIndexingService C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
19:04:45.0530 0748 NMIndexingService - ok
19:04:45.0552 0748 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:04:45.0553 0748 Npfs - ok
19:04:45.0568 0748 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
19:04:45.0570 0748 nsi - ok
19:04:45.0573 0748 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:04:45.0575 0748 nsiproxy - ok
19:04:45.0620 0748 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:04:45.0634 0748 Ntfs - ok
19:04:45.0648 0748 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
19:04:45.0649 0748 Null - ok
19:04:45.0677 0748 [ B4F53BCA4C688FF47F04FA90098F896E ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
19:04:45.0679 0748 NVHDA - ok
19:04:45.0831 0748 [ 4EE399576F76D38C04745DB739BBC8C7 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:04:45.0912 0748 nvlddmkm - ok
19:04:45.0933 0748 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:04:45.0935 0748 nvraid - ok
19:04:45.0959 0748 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:04:45.0961 0748 nvstor - ok
19:04:45.0995 0748 [ 7335C3D78A7746D76D37F6722CC4A466 ] nvsvc C:\Windows\system32\nvvsvc.exe
19:04:46.0003 0748 nvsvc - ok
19:04:46.0029 0748 [ B7C53DA1C73FF39F4A6248643EFD979A ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
19:04:46.0039 0748 nvUpdatusService - ok
19:04:46.0055 0748 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:04:46.0057 0748 nv_agp - ok
19:04:46.0124 0748 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:04:46.0128 0748 odserv - ok
19:04:46.0151 0748 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:04:46.0152 0748 ohci1394 - ok
19:04:46.0176 0748 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:04:46.0178 0748 ose - ok
19:04:46.0199 0748 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:04:46.0204 0748 p2pimsvc - ok
19:04:46.0227 0748 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
19:04:46.0232 0748 p2psvc - ok
19:04:46.0264 0748 [ 3A6DCEB1848470320E4A3C12D7A35B1C ] PAC207 C:\Windows\system32\DRIVERS\PFC027.SYS
19:04:46.0269 0748 PAC207 - ok
19:04:46.0292 0748 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:04:46.0294 0748 Parport - ok
19:04:46.0320 0748 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:04:46.0321 0748 partmgr - ok
19:04:46.0338 0748 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:04:46.0341 0748 PcaSvc - ok
19:04:46.0360 0748 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
19:04:46.0362 0748 pci - ok
19:04:46.0382 0748 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
19:04:46.0383 0748 pciide - ok
19:04:46.0395 0748 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
19:04:46.0397 0748 pcmcia - ok
19:04:46.0406 0748 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
19:04:46.0407 0748 pcw - ok
19:04:46.0422 0748 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:04:46.0428 0748 PEAUTH - ok
19:04:46.0457 0748 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
19:04:46.0469 0748 PeerDistSvc - ok
19:04:46.0529 0748 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:04:46.0531 0748 PerfHost - ok
19:04:46.0575 0748 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
19:04:46.0587 0748 pla - ok
19:04:46.0603 0748 [ 875E4E0661F3A5994DF9E5E3A0A4F96B ] PLFlash DeviceIoControl Service C:\Windows\SysWOW64\IoctlSvc.exe
19:04:46.0605 0748 PLFlash DeviceIoControl Service - ok
19:04:46.0631 0748 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:04:46.0636 0748 PlugPlay - ok
19:04:46.0641 0748 PnkBstrA - ok
19:04:46.0660 0748 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:04:46.0663 0748 PNRPAutoReg - ok
19:04:46.0674 0748 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:04:46.0677 0748 PNRPsvc - ok
19:04:46.0693 0748 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:04:46.0698 0748 PolicyAgent - ok
19:04:46.0720 0748 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
19:04:46.0724 0748 Power - ok
19:04:46.0744 0748 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:04:46.0746 0748 PptpMiniport - ok
19:04:46.0759 0748 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
19:04:46.0760 0748 Processor - ok
19:04:46.0782 0748 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
19:04:46.0785 0748 ProfSvc - ok
19:04:46.0796 0748 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:04:46.0797 0748 ProtectedStorage - ok
19:04:46.0813 0748 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:04:46.0815 0748 Psched - ok
19:04:46.0849 0748 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
19:04:46.0861 0748 ql2300 - ok
19:04:46.0868 0748 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
19:04:46.0870 0748 ql40xx - ok
19:04:46.0894 0748 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
19:04:46.0899 0748 QWAVE - ok
19:04:46.0911 0748 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:04:46.0912 0748 QWAVEdrv - ok
19:04:46.0925 0748 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:04:46.0926 0748 RasAcd - ok
19:04:46.0950 0748 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:04:46.0951 0748 RasAgileVpn - ok
19:04:46.0956 0748 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
19:04:46.0959 0748 RasAuto - ok
19:04:46.0981 0748 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:04:46.0988 0748 Rasl2tp - ok
19:04:47.0018 0748 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
19:04:47.0022 0748 RasMan - ok
19:04:47.0032 0748 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:04:47.0034 0748 RasPppoe - ok
19:04:47.0041 0748 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:04:47.0051 0748 RasSstp - ok
19:04:47.0062 0748 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:04:47.0065 0748 rdbss - ok
19:04:47.0076 0748 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:04:47.0077 0748 rdpbus - ok
19:04:47.0090 0748 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:04:47.0090 0748 RDPCDD - ok
19:04:47.0118 0748 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
19:04:47.0120 0748 RDPDR - ok
19:04:47.0125 0748 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:04:47.0126 0748 RDPENCDD - ok
19:04:47.0133 0748 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:04:47.0134 0748 RDPREFMP - ok
19:04:47.0159 0748 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:04:47.0161 0748 RdpVideoMiniport - ok
19:04:47.0185 0748 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:04:47.0188 0748 RDPWD - ok
19:04:47.0207 0748 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:04:47.0209 0748 rdyboost - ok
19:04:47.0228 0748 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:04:47.0230 0748 RemoteAccess - ok
19:04:47.0246 0748 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:04:47.0251 0748 RemoteRegistry - ok
19:04:47.0259 0748 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:04:47.0262 0748 RpcEptMapper - ok
19:04:47.0273 0748 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
19:04:47.0275 0748 RpcLocator - ok
19:04:47.0296 0748 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
19:04:47.0302 0748 RpcSs - ok
19:04:47.0321 0748 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:04:47.0323 0748 rspndr - ok
19:04:47.0346 0748 [ 6D3C7E7D82D3DC92DC2A8B0DF9F20F8A ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
19:04:47.0350 0748 RTL8167 - ok
19:04:47.0373 0748 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
19:04:47.0375 0748 s3cap - ok
19:04:47.0387 0748 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
19:04:47.0389 0748 SamSs - ok
19:04:47.0399 0748 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:04:47.0401 0748 sbp2port - ok
19:04:47.0406 0748 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:04:47.0409 0748 SCardSvr - ok
19:04:47.0427 0748 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:04:47.0428 0748 scfilter - ok
19:04:47.0448 0748 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
19:04:47.0467 0748 Schedule - ok
19:04:47.0494 0748 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:04:47.0495 0748 SCPolicySvc - ok
19:04:47.0506 0748 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:04:47.0509 0748 SDRSVC - ok
19:04:47.0518 0748 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:04:47.0519 0748 secdrv - ok
19:04:47.0536 0748 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
19:04:47.0539 0748 seclogon - ok
19:04:47.0549 0748 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
19:04:47.0551 0748 SENS - ok
19:04:47.0564 0748 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:04:47.0567 0748 SensrSvc - ok
19:04:47.0575 0748 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:04:47.0576 0748 Serenum - ok
19:04:47.0591 0748 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
19:04:47.0592 0748 Serial - ok
19:04:47.0614 0748 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
19:04:47.0615 0748 sermouse - ok
19:04:47.0638 0748 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
19:04:47.0641 0748 SessionEnv - ok
19:04:47.0659 0748 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:04:47.0660 0748 sffdisk - ok
19:04:47.0667 0748 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:04:47.0669 0748 sffp_mmc - ok
19:04:47.0679 0748 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:04:47.0679 0748 sffp_sd - ok
19:04:47.0692 0748 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
19:04:47.0693 0748 sfloppy - ok
19:04:47.0724 0748 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:04:47.0728 0748 SharedAccess - ok
19:04:47.0754 0748 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:04:47.0759 0748 ShellHWDetection - ok
19:04:47.0770 0748 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:04:47.0771 0748 SiSRaid2 - ok
19:04:47.0776 0748 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
19:04:47.0777 0748 SiSRaid4 - ok
19:04:47.0817 0748 [ 3467821FD04A66C9786DF0C8C0219A73 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
19:04:47.0819 0748 SkypeUpdate - ok
19:04:47.0823 0748 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:04:47.0825 0748 Smb - ok
19:04:47.0847 0748 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:04:47.0850 0748 SNMPTRAP - ok
19:04:47.0862 0748 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
19:04:47.0863 0748 spldr - ok
19:04:47.0887 0748 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
19:04:47.0894 0748 Spooler - ok
19:04:47.0954 0748 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
19:04:47.0983 0748 sppsvc - ok
19:04:47.0997 0748 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:04:48.0000 0748 sppuinotify - ok
19:04:48.0019 0748 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
19:04:48.0023 0748 srv - ok
19:04:48.0037 0748 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:04:48.0042 0748 srv2 - ok
19:04:48.0056 0748 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:04:48.0059 0748 srvnet - ok
19:04:48.0075 0748 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:04:48.0079 0748 SSDPSRV - ok
19:04:48.0088 0748 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:04:48.0091 0748 SstpSvc - ok
19:04:48.0107 0748 [ EF806D212D34B0E173BAEB3564D53E37 ] ss_bbus C:\Windows\system32\DRIVERS\ss_bbus.sys
19:04:48.0109 0748 ss_bbus - ok
19:04:48.0118 0748 [ 08B1B34ABEBEB6AC2DEA06900C56411E ] ss_bmdfl C:\Windows\system32\DRIVERS\ss_bmdfl.sys
19:04:48.0120 0748 ss_bmdfl - ok
19:04:48.0130 0748 [ 71A9DA6BEAA4CB54DFB827FB78600A5D ] ss_bmdm C:\Windows\system32\DRIVERS\ss_bmdm.sys
19:04:48.0132 0748 ss_bmdm - ok
19:04:48.0161 0748 [ 81F177C1954453AF407604160BD149CB ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
19:04:48.0165 0748 Stereo Service - ok
19:04:48.0180 0748 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
19:04:48.0181 0748 stexstor - ok
19:04:48.0213 0748 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
19:04:48.0221 0748 stisvc - ok
19:04:48.0244 0748 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
19:04:48.0245 0748 storflt - ok
19:04:48.0255 0748 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
19:04:48.0256 0748 storvsc - ok
19:04:48.0269 0748 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
19:04:48.0270 0748 swenum - ok
19:04:48.0295 0748 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
19:04:48.0301 0748 swprv - ok
19:04:48.0304 0748 Synth3dVsc - ok
19:04:48.0342 0748 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
19:04:48.0357 0748 SysMain - ok
19:04:48.0371 0748 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:04:48.0374 0748 TabletInputService - ok
19:04:48.0390 0748 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
19:04:48.0395 0748 TapiSrv - ok
19:04:48.0408 0748 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
19:04:48.0410 0748 TBS - ok
19:04:48.0458 0748 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:04:48.0473 0748 Tcpip - ok
19:04:48.0491 0748 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:04:48.0499 0748 TCPIP6 - ok
19:04:48.0527 0748 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:04:48.0528 0748 tcpipreg - ok
19:04:48.0549 0748 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:04:48.0550 0748 TDPIPE - ok
19:04:48.0570 0748 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:04:48.0571 0748 TDTCP - ok
19:04:48.0586 0748 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:04:48.0588 0748 tdx - ok
19:04:48.0604 0748 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
19:04:48.0606 0748 TermDD - ok
19:04:48.0640 0748 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
19:04:48.0648 0748 TermService - ok
19:04:48.0661 0748 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
19:04:48.0664 0748 Themes - ok
19:04:48.0686 0748 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
19:04:48.0688 0748 THREADORDER - ok
19:04:48.0700 0748 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
19:04:48.0703 0748 TrkWks - ok
19:04:48.0733 0748 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:04:48.0735 0748 TrustedInstaller - ok
19:04:48.0753 0748 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:04:48.0754 0748 tssecsrv - ok
19:04:48.0771 0748 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:04:48.0772 0748 TsUsbFlt - ok
19:04:48.0777 0748 tsusbhub - ok
19:04:48.0797 0748 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:04:48.0799 0748 tunnel - ok
19:04:48.0812 0748 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
19:04:48.0814 0748 uagp35 - ok
19:04:48.0837 0748 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:04:48.0840 0748 udfs - ok
19:04:48.0866 0748 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:04:48.0869 0748 UI0Detect - ok
19:04:48.0890 0748 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:04:48.0892 0748 uliagpkx - ok
19:04:48.0903 0748 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
19:04:48.0905 0748 umbus - ok
19:04:48.0919 0748 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
19:04:48.0920 0748 UmPass - ok
19:04:48.0941 0748 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
19:04:48.0945 0748 UmRdpService - ok
19:04:48.0965 0748 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
19:04:48.0972 0748 upnphost - ok
19:04:48.0991 0748 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:04:48.0993 0748 usbccgp - ok
19:04:49.0006 0748 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:04:49.0008 0748 usbcir - ok
19:04:49.0019 0748 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
19:04:49.0020 0748 usbehci - ok
19:04:49.0035 0748 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:04:49.0048 0748 usbhub - ok
19:04:49.0058 0748 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:04:49.0060 0748 usbohci - ok
19:04:49.0085 0748 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:04:49.0087 0748 usbprint - ok
19:04:49.0108 0748 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
19:04:49.0109 0748 usbscan - ok
19:04:49.0122 0748 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:04:49.0123 0748 USBSTOR - ok
19:04:49.0140 0748 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
19:04:49.0141 0748 usbuhci - ok
19:04:49.0156 0748 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
19:04:49.0159 0748 UxSms - ok
19:04:49.0170 0748 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
19:04:49.0172 0748 VaultSvc - ok
19:04:49.0182 0748 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:04:49.0183 0748 vdrvroot - ok
19:04:49.0205 0748 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
19:04:49.0212 0748 vds - ok
19:04:49.0223 0748 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:04:49.0225 0748 vga - ok
19:04:49.0238 0748 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
19:04:49.0239 0748 VgaSave - ok
19:04:49.0244 0748 VGPU - ok
19:04:49.0258 0748 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:04:49.0271 0748 vhdmp - ok
19:04:49.0281 0748 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
19:04:49.0282 0748 viaide - ok
19:04:49.0296 0748 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
19:04:49.0298 0748 vmbus - ok
19:04:49.0313 0748 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
19:04:49.0314 0748 VMBusHID - ok
19:04:49.0328 0748 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:04:49.0329 0748 volmgr - ok
19:04:49.0350 0748 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:04:49.0353 0748 volmgrx - ok
19:04:49.0359 0748 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:04:49.0362 0748 volsnap - ok
19:04:49.0382 0748 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
19:04:49.0384 0748 vsmraid - ok
19:04:49.0428 0748 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
19:04:49.0442 0748 VSS - ok
19:04:49.0448 0748 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
19:04:49.0449 0748 vwifibus - ok
19:04:49.0473 0748 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
19:04:49.0478 0748 W32Time - ok
19:04:49.0490 0748 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
19:04:49.0492 0748 WacomPen - ok
19:04:49.0505 0748 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:04:49.0515 0748 WANARP - ok
19:04:49.0518 0748 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:04:49.0519 0748 Wanarpv6 - ok
19:04:49.0552 0748 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:04:49.0563 0748 WatAdminSvc - ok
19:04:49.0590 0748 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
19:04:49.0604 0748 wbengine - ok
19:04:49.0625 0748 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:04:49.0629 0748 WbioSrvc - ok
19:04:49.0648 0748 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:04:49.0653 0748 wcncsvc - ok
19:04:49.0671 0748 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:04:49.0674 0748 WcsPlugInService - ok
19:04:49.0688 0748 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
19:04:49.0689 0748 Wd - ok
19:04:49.0709 0748 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:04:49.0716 0748 Wdf01000 - ok
19:04:49.0730 0748 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:04:49.0755 0748 WdiServiceHost - ok
19:04:49.0771 0748 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:04:49.0774 0748 WdiSystemHost - ok
19:04:49.0811 0748 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
19:04:49.0831 0748 WebClient - ok
19:04:49.0850 0748 [ D5BA7D43FA2EF656BF7E98A188391E40 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:04:49.0854 0748 Wecsvc - ok
19:04:49.0869 0748 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:04:49.0872 0748 wercplsupport - ok
19:04:49.0883 0748 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
19:04:49.0887 0748 WerSvc - ok
19:04:49.0896 0748 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:04:49.0897 0748 WfpLwf - ok
19:04:49.0907 0748 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:04:49.0908 0748 WIMMount - ok
19:04:49.0922 0748 WinDefend - ok
19:04:49.0931 0748 WinHttpAutoProxySvc - ok
19:04:49.0962 0748 [ 136760C1E9697BAF4ECDEAE5590A0806 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:04:49.0964 0748 Winmgmt - ok
19:04:50.0010 0748 [ 3BB6B401A780BF434C8F58137DE10BF7 ] WinRM C:\Windows\system32\WsmSvc.dll
19:04:50.0049 0748 WinRM - ok
19:04:50.0092 0748 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
19:04:50.0101 0748 Wlansvc - ok
19:04:50.0172 0748 [ 357CABBF155AFD1D3926E62539D2A3A7 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:04:50.0190 0748 wlidsvc - ok
19:04:50.0216 0748 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:04:50.0217 0748 WmiAcpi - ok
19:04:50.0244 0748 [ 4DF841632B62A7CF19A79A05046A8AB1 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:04:50.0246 0748 wmiApSrv - ok
19:04:50.0260 0748 WMPNetworkSvc - ok
19:04:50.0292 0748 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:04:50.0295 0748 WPCSvc - ok
19:04:50.0315 0748 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:04:50.0319 0748 WPDBusEnum - ok
19:04:50.0339 0748 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:04:50.0340 0748 ws2ifsl - ok
19:04:50.0356 0748 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
19:04:50.0359 0748 wscsvc - ok
19:04:50.0364 0748 WSearch - ok
19:04:50.0420 0748 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
19:04:50.0442 0748 wuauserv - ok
19:04:50.0464 0748 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:04:50.0466 0748 WudfPf - ok
19:04:50.0478 0748 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:04:50.0481 0748 WUDFRd - ok
19:04:50.0490 0748 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:04:50.0493 0748 wudfsvc - ok
19:04:50.0510 0748 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
19:04:50.0514 0748 WwanSvc - ok
19:04:50.0518 0748 ================ Scan global ===============================
19:04:50.0554 0748 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
19:04:50.0580 0748 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
19:04:50.0587 0748 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
19:04:50.0606 0748 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
19:04:50.0619 0748 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
19:04:50.0624 0748 [Global] - ok
19:04:50.0624 0748 ================ Scan MBR ==================================
19:04:50.0633 0748 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:04:50.0952 0748 \Device\Harddisk0\DR0 - ok
19:04:50.0954 0748 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
19:04:50.0964 0748 \Device\Harddisk1\DR1 - ok
19:04:50.0964 0748 ================ Scan VBR ==================================
19:04:50.0967 0748 [ B06BECDA92B35D5CA38C7ACDB09B7DEA ] \Device\Harddisk0\DR0\Partition1
19:04:50.0968 0748 \Device\Harddisk0\DR0\Partition1 - ok
19:04:50.0982 0748 [ B6993455706825420E01637AFE435DF6 ] \Device\Harddisk0\DR0\Partition2
19:04:50.0985 0748 \Device\Harddisk0\DR0\Partition2 - ok
19:04:51.0010 0748 [ 4715BF6AA3CCAF3A2C7F62CD6F157E4A ] \Device\Harddisk0\DR0\Partition3
19:04:51.0011 0748 \Device\Harddisk0\DR0\Partition3 - ok
19:04:51.0013 0748 [ 9F6CD74A41C3F96A98C8B80C3D7E98FC ] \Device\Harddisk1\DR1\Partition1
19:04:51.0016 0748 \Device\Harddisk1\DR1\Partition1 - ok
19:04:51.0016 0748 ============================================================
19:04:51.0016 0748 Scan finished
19:04:51.0016 0748 ============================================================
19:04:51.0024 4572 Detected object count: 0
19:04:51.0024 4572 Actual detected object count: 0
19:04:59.0140 2880 Deinitialize success

[Scanner]

ComboFix 13-05-11.01 - Zkuřka 11.05.2013 19:31:19.2.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4079.2696 [GMT 2:00]
Spuštěný z: c:\users\Zkuřka\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
FW: avast! Antivirus *Disabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\frapsvid.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-04-11 do 2013-05-11 )))))))))))))))))))))))))))))))
.
.
2013-05-09 15:07 . 2013-05-09 15:07 -------- d-----w- c:\program files (x86)\IObit
2013-05-09 15:05 . 2013-05-09 15:05 -------- d-----w- c:\programdata\{D76294E6-03B8-4971-AF2E-3F846161A690}
2013-05-09 15:05 . 2013-05-09 15:05 -------- d-----w- c:\programdata\{5A85B23A-4B58-47D1-9B9C-DFBD7866099F}
2013-05-09 14:09 . 2013-05-09 14:09 -------- d-----w- c:\users\Zkuřka\AppData\Local\SKIDROW
2013-05-08 09:00 . 2013-05-08 09:00 -------- d-sh--w- c:\windows\ftpcache
2013-05-08 09:00 . 2010-04-29 17:10 127800 ----a-w- c:\windows\system32\HPSIsvc.exe
2013-05-08 09:00 . 2012-09-29 11:25 74240 ----a-w- c:\windows\system32\Spool\prtprocs\x64\HPM1210PP.dll
2013-05-08 08:59 . 2012-09-29 11:26 1366528 ----a-w- c:\windows\system32\HPM1210SM.exe
2013-05-08 08:59 . 2012-09-29 11:25 409088 ----a-w- c:\windows\system32\HPM1210LM.DLL
2013-05-08 08:59 . 2012-09-29 11:05 350720 ----a-w- c:\windows\system32\mvhlewsi.DLL
2013-05-08 08:56 . 2013-05-08 08:56 -------- d-----w- c:\program files\HP
2013-05-07 16:12 . 2013-05-07 16:12 -------- d-----w- c:\windows\cs
2013-05-07 16:12 . 2013-05-07 16:12 -------- d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition
2013-05-07 16:11 . 2013-05-07 16:12 -------- d-----w- c:\program files (x86)\Windows Live
2013-05-07 16:10 . 2013-05-08 08:44 -------- d-----w- c:\users\Zkuřka\AppData\Local\Windows Live
2013-05-07 16:09 . 2013-05-07 16:09 -------- d-----w- c:\program files (x86)\Common Files\Windows Live
2013-05-06 13:03 . 2013-05-09 15:11 -------- d-----w- c:\program files (x86)\Microsoft
2013-05-06 12:38 . 2013-05-06 12:38 281688 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-05-06 12:37 . 2013-05-06 12:37 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2013-05-05 17:42 . 2013-05-05 17:42 -------- d-----w- c:\users\Zkuřka\AppData\Roaming\PowerISO
2013-05-03 22:44 . 2013-05-03 22:44 -------- d-----w- c:\programdata\StarApp
2013-05-03 22:24 . 2013-05-03 22:28 -------- d-----w- c:\users\Zkuřka\AppData\Roaming\Systweak
2013-05-03 22:24 . 2013-01-01 16:32 20488 ----a-w- c:\windows\system32\roboot64.exe
2013-04-29 18:59 . 2013-04-29 18:59 -------- d-----w- c:\users\Zkuřka\AppData\Local\Adobe
2013-04-29 09:45 . 2013-04-29 09:45 -------- d-----w- c:\users\Zkuřka\AppData\Local\Chromium
2013-04-29 09:21 . 2013-05-09 08:59 270824 ----a-w- c:\windows\system32\drivers\aswNdis2.sys
2013-04-29 09:21 . 2013-05-09 08:59 131232 ----a-w- c:\windows\system32\drivers\aswFW.sys
2013-04-29 09:21 . 2013-05-09 08:59 22600 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2013-04-29 09:21 . 2013-03-06 22:11 12368 ----a-w- c:\windows\system32\drivers\aswNdis.sys
2013-04-26 16:29 . 2013-04-26 16:29 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-04-26 16:29 . 2013-04-04 03:35 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-04-26 16:21 . 2013-05-09 08:59 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-04-26 16:21 . 2013-05-09 08:59 189936 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-04-25 09:03 . 2013-04-25 09:03 -------- d-----w- c:\users\Zkuřka\AppData\Roaming\HD Tune Pro
2013-04-24 07:41 . 2013-05-09 08:59 378432 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-04-24 07:41 . 2013-05-09 08:59 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-04-24 07:41 . 2013-05-09 08:59 72016 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-04-24 07:41 . 2013-05-09 08:59 64288 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-04-24 07:41 . 2013-05-09 08:59 1025808 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-04-24 07:41 . 2013-05-09 08:59 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-04-24 07:41 . 2013-05-09 08:58 41664 ----a-w- c:\windows\avastSS.scr
2013-04-24 07:41 . 2012-08-21 09:12 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
2013-04-24 07:32 . 2013-04-12 14:45 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-24 07:29 . 2013-04-24 07:29 -------- d-s---w- c:\windows\SysWow64\Microsoft
2013-04-22 12:23 . 2013-05-09 08:58 287840 ----a-w- c:\windows\system32\aswBoot.exe
2013-04-22 12:22 . 2013-04-24 07:40 -------- d-----w- c:\program files\AVAST Software
2013-04-22 12:22 . 2013-04-24 07:40 -------- d-----w- c:\programdata\AVAST Software
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-06 12:38 . 2013-03-02 14:24 281688 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-05-02 00:06 . 2012-11-16 20:36 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-04-26 16:25 . 2012-11-17 11:26 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-04-26 16:25 . 2012-11-17 11:26 691592 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-04-17 18:20 . 2012-11-17 14:53 26432 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
2013-04-10 13:52 . 2012-11-16 20:43 72702784 ----a-w- c:\windows\system32\MRT.exe
2013-04-04 12:50 . 2012-11-17 11:46 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-03-27 05:38 . 2013-03-27 05:38 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-03-19 06:04 . 2013-04-10 13:49 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-10 13:49 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-10 13:49 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-10 13:49 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-10 13:49 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-10 13:49 112640 ----a-w- c:\windows\system32\smss.exe
2013-03-16 07:26 . 2013-03-16 07:26 226304 ----a-w- c:\windows\system32\elshyph.dll
2013-03-16 07:26 . 2013-03-16 07:26 185344 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-03-16 07:26 . 2013-03-16 07:26 158720 ----a-w- c:\windows\SysWow64\msls31.dll
2013-03-16 07:26 . 2013-03-16 07:26 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-03-16 07:26 . 2013-03-16 07:26 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-03-16 07:26 . 2013-03-16 07:26 523264 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-03-16 07:26 . 2013-03-16 07:26 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-03-16 07:26 . 2013-03-16 07:26 138752 ----a-w- c:\windows\SysWow64\wextract.exe
2013-03-16 07:26 . 2013-03-16 07:26 38400 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-03-16 07:26 . 2013-03-16 07:26 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-03-16 07:26 . 2013-03-16 07:26 12800 ----a-w- c:\windows\SysWow64\mshta.exe
2013-03-16 07:26 . 2013-03-16 07:26 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-03-16 07:26 . 2013-03-16 07:26 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-03-16 07:26 . 2013-03-16 07:26 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-03-16 07:26 . 2013-03-16 07:26 61952 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-03-16 07:26 . 2013-03-16 07:26 361984 ----a-w- c:\windows\SysWow64\html.iec
2013-03-16 07:26 . 2013-03-16 07:26 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-03-16 07:26 . 2013-03-16 07:26 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-03-16 07:26 . 2013-03-16 07:26 197120 ----a-w- c:\windows\system32\msrating.dll
2013-03-16 07:26 . 2013-03-16 07:26 97280 ----a-w- c:\windows\system32\mshtmled.dll
2013-03-16 07:26 . 2013-03-16 07:26 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-03-16 07:26 . 2013-03-16 07:26 81408 ----a-w- c:\windows\system32\icardie.dll
2013-03-16 07:26 . 2013-03-16 07:26 762368 ----a-w- c:\windows\system32\ieapfltr.dll
2013-03-16 07:26 . 2013-03-16 07:26 452096 ----a-w- c:\windows\system32\dxtmsft.dll
2013-03-16 07:26 . 2013-03-16 07:26 441856 ----a-w- c:\windows\system32\html.iec
2013-03-16 07:26 . 2013-03-16 07:26 281600 ----a-w- c:\windows\system32\dxtrans.dll
2013-03-16 07:26 . 2013-03-16 07:26 27648 ----a-w- c:\windows\system32\licmgr10.dll
2013-03-16 07:26 . 2013-03-16 07:26 270848 ----a-w- c:\windows\system32\iedkcs32.dll
2013-03-16 07:26 . 2013-03-16 07:26 247296 ----a-w- c:\windows\system32\webcheck.dll
2013-03-16 07:26 . 2013-03-16 07:26 235008 ----a-w- c:\windows\system32\url.dll
2013-03-16 07:26 . 2013-03-16 07:26 216064 ----a-w- c:\windows\system32\msls31.dll
2013-03-16 07:26 . 2013-03-16 07:26 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2013-03-16 07:26 . 2013-03-16 07:26 1400416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-03-16 07:26 . 2013-03-16 07:26 102912 ----a-w- c:\windows\system32\inseng.dll
2013-03-16 07:26 . 2013-03-16 07:26 599552 ----a-w- c:\windows\system32\vbscript.dll
2013-03-16 07:26 . 2013-03-16 07:26 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-03-16 07:26 . 2013-03-16 07:26 144896 ----a-w- c:\windows\system32\wextract.exe
2013-03-16 07:26 . 2013-03-16 07:26 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-03-16 07:26 . 2013-03-16 07:26 62976 ----a-w- c:\windows\system32\pngfilt.dll
2013-03-16 07:26 . 2013-03-16 07:26 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-03-16 07:26 . 2013-03-16 07:26 51200 ----a-w- c:\windows\system32\imgutil.dll
2013-03-16 07:26 . 2013-03-16 07:26 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-03-16 07:26 . 2013-03-16 07:26 173568 ----a-w- c:\windows\system32\ieUnatt.exe
2013-03-16 07:26 . 2013-03-16 07:26 149504 ----a-w- c:\windows\system32\occache.dll
2013-03-16 07:26 . 2013-03-16 07:26 13824 ----a-w- c:\windows\system32\mshta.exe
2013-03-16 07:26 . 2013-03-16 07:26 136192 ----a-w- c:\windows\system32\iepeers.dll
2013-03-16 07:26 . 2013-03-16 07:26 135680 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-03-16 07:26 . 2013-03-16 07:26 12800 ----a-w- c:\windows\system32\msfeedssync.exe
2013-03-16 07:26 . 2013-03-16 07:26 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-03-15 05:53 . 2013-03-27 13:23 7573816 ----a-w- c:\windows\system32\nvopencl.dll
2013-03-15 05:53 . 2013-03-27 13:23 6271872 ----a-w- c:\windows\SysWow64\nvopencl.dll
2013-03-15 05:53 . 2013-03-27 13:23 26956576 ----a-w- c:\windows\system32\nvoglv64.dll
2013-03-15 05:53 . 2013-03-27 13:23 20542752 ----a-w- c:\windows\SysWow64\nvoglv32.dll
2013-03-15 05:53 . 2013-03-27 13:23 13088000 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2013-03-15 05:53 . 2013-03-27 13:23 11048736 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2013-03-15 05:53 . 2013-03-27 13:23 9414456 ----a-w- c:\windows\system32\nvcuda.dll
2013-03-15 05:53 . 2013-03-27 13:23 7959000 ----a-w- c:\windows\SysWow64\nvcuda.dll
2013-03-15 05:53 . 2013-03-27 13:23 2913056 ----a-w- c:\windows\system32\nvcuvid.dll
2013-03-15 05:53 . 2013-03-27 13:23 2728736 ----a-w- c:\windows\SysWow64\nvcuvid.dll
2013-03-15 05:53 . 2013-03-27 13:23 25256736 ----a-w- c:\windows\system32\nvcompiler.dll
2013-03-15 05:53 . 2013-03-27 13:23 2355488 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-03-15 05:53 . 2013-03-27 13:23 1995552 ----a-w- c:\windows\SysWow64\nvcuvenc.dll
2013-03-15 05:53 . 2013-03-27 13:23 1807136 ----a-w- c:\windows\system32\nvdispco6431422.dll
2013-03-15 05:53 . 2013-03-27 13:23 17990800 ----a-w- c:\windows\system32\nvd3dumx.dll
2013-03-15 05:53 . 2013-03-27 13:23 17560352 ----a-w- c:\windows\SysWow64\nvcompiler.dll
2013-03-15 05:53 . 2013-03-27 13:23 1510176 ----a-w- c:\windows\system32\nvdispgenco6431422.dll
2013-03-15 05:53 . 2013-02-26 20:24 2539128 ----a-w- c:\windows\SysWow64\nvapi.dll
2013-03-15 05:53 . 2013-02-03 11:00 15042928 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2013-03-15 05:53 . 2010-10-08 01:19 2864144 ----a-w- c:\windows\system32\nvapi64.dll
2013-03-15 05:53 . 2010-10-08 01:19 15508512 ----a-w- c:\windows\system32\nvwgf2umx.dll
2013-03-15 04:16 . 2010-10-08 09:04 3477280 ----a-w- c:\windows\system32\nvsvc64.dll
2013-03-15 04:16 . 2010-10-08 09:04 6398240 ----a-w- c:\windows\system32\nvcpl.dll
2013-03-15 04:16 . 2010-10-08 09:04 237856 ----a-w- c:\windows\system32\nvmctray.dll
2013-03-15 04:16 . 2010-10-08 09:04 877856 ----a-w- c:\windows\system32\nvvsvc.exe
2013-03-15 04:16 . 2010-10-08 09:04 63776 ----a-w- c:\windows\system32\nvshext.dll
2013-03-15 04:16 . 2010-10-08 09:04 2555680 ----a-w- c:\windows\system32\nvsvcr.dll
2013-03-14 21:07 . 2013-03-14 21:07 559904 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2013-03-08 18:21 . 2012-11-17 11:31 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-03-08 18:21 . 2012-11-17 11:31 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-03-01 03:36 . 2013-04-10 13:49 3153408 ----a-w- c:\windows\system32\win32k.sys
2013-02-26 06:55 . 2013-02-26 06:55 71680 ----a-w- c:\windows\system32\frapsv64.dll
2013-02-21 10:30 . 2013-04-10 13:50 1766912 ----a-w- c:\windows\SysWow64\wininet.dll
2013-02-21 10:29 . 2013-04-10 13:50 2877440 ----a-w- c:\windows\SysWow64\jscript9.dll
2013-02-21 10:29 . 2013-04-10 13:50 61440 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-02-21 10:29 . 2013-04-10 13:50 109056 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-02-21 10:15 . 2013-04-10 13:50 51712 ----a-w- c:\windows\system32\ie4uinit.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Easy Driver Pro"="e:\easy driver pro\DPLauncher.exe" [2012-09-23 147312]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe" [2008-01-22 152872]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-02-28 18672232]
"DAEMON Tools Lite"="e:\daemon tools lite\DTLite.exe" [2013-03-14 3672640]
"Facebook Update"="c:\users\Zkuřka\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2013-04-05 138096]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
.
c:\users\Zkuřka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Verbatim GREEN BUTTON.lnk - e:\verbatim green button\GREEN BUTTON.exe [2012-11-17 463120]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer4"=wdmaud.drv
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 MBAMService;MBAMService;e:\malwarebytes' anti-malware\mbamservice.exe [2013-04-04 701512]
R3 mbamchameleon;mbamchameleon;c:\windows\system32\drivers\mbamchameleon.sys [2013-01-03 36680]
R3 mvusbews;USB EWS Device;c:\windows\system32\Drivers\mvusbews.sys [2012-12-24 20480]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384]
R3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 127488]
R3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 18944]
R3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 161280]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-11-16 1255736]
S0 aswKbd;aswKbd; [x]
S0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\DRIVERS\aswNdis.sys [2013-03-06 12368]
S0 aswNdis2;avast! Firewall Core Firewall Service; [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S1 aswFW;avast! TDI Firewall driver; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-03-27 283200]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-05-09 80816]
S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe [2013-05-09 137960]
S2 HPSIService;HP SI Service;c:\windows\system32\HPSIsvc.exe [2010-04-29 127800]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-03-14 383264]
S3 anvsnddrv;AnvSoft Virtual Sound Device;c:\windows\system32\drivers\anvsnddrv.sys [2011-11-28 33872]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 25928]
S3 PAC207;SoC PC-Camera;c:\windows\system32\DRIVERS\PFC027.SYS [2006-12-05 572416]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-01-13 413800]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-04-10 15:57 1642448 ----a-w- c:\program files (x86)\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-05-11 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-17 16:25]
.
2013-05-11 c:\windows\Tasks\GoogleUpdateTaskMachineCore1cdf8c52842be6a.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-11-16 20:27]
.
2013-05-11 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-11-16 20:27]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Monitor"="c:\windows\PixArt\PAC207\Monitor.exe" [2006-11-03 319488]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - e:\micros~1\Office12\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - e:\micros~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 77.48.254.254 77.48.100.254
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
AddRemove-{CC35AB14-AA93-D991-F950-4D09513E3994} - c:\progra~3\INSTAL~1\{94774~1\Setup.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe
.
**************************************************************************
.
Celkový čas: 2013-05-11 19:53:27 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-05-11 17:53
.
Před spuštěním: Volných bajtů: 45 210 730 496
Po spuštění: Volných bajtů: 44 898 607 104
.
- - End Of File - - 299C23AD0DC8C99F11C5930C39C7B6BE

[jaro3]

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

ClearJavaCache::

KillAll::
File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore1cdf8c52842be6a.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Folder::
c:\program files (x86)\Skype\Updater
c:\program files (x86)\Google\Update

Driver::
SkypeUpdate

RegLock::
BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

[Scanner]

ComboFix 13-05-11.01 - Zkuřka 12.05.2013 10:56:40.3.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4079.2945 [GMT 2:00]
Spuštěný z: c:\users\Zku°ka\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Zku°ka\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
FW: avast! Antivirus *Disabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-04-12 do 2013-05-12 )))))))))))))))))))))))))))))))
.
.
2013-05-12 09:13 . 2013-05-12 09:13 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-05-12 09:13 . 2013-05-12 09:13 -------- d-----w- c:\users\Public\AppData\Local\temp
2013-05-12 09:13 . 2013-05-12 09:13 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-05-11 18:11 . 2013-05-11 18:11 -------- d-----w- c:\program files (x86)\Common Files\Spigot
2013-05-09 15:07 . 2013-05-09 15:07 -------- d-----w- c:\program files (x86)\IObit
2013-05-09 15:05 . 2013-05-09 15:05 -------- d-----w- c:\programdata\{D76294E6-03B8-4971-AF2E-3F846161A690}
2013-05-09 15:05 . 2013-05-09 15:05 -------- d-----w- c:\programdata\{5A85B23A-4B58-47D1-9B9C-DFBD7866099F}
2013-05-09 14:09 . 2013-05-09 14:09 -------- d-----w- c:\users\Zkuřka\AppData\Local\SKIDROW
2013-05-08 09:00 . 2013-05-08 09:00 -------- d-sh--w- c:\windows\ftpcache
2013-05-08 09:00 . 2010-04-29 17:10 127800 ----a-w- c:\windows\system32\HPSIsvc.exe
2013-05-08 09:00 . 2012-09-29 11:25 74240 ----a-w- c:\windows\system32\Spool\prtprocs\x64\HPM1210PP.dll
2013-05-08 08:59 . 2012-09-29 11:26 1366528 ----a-w- c:\windows\system32\HPM1210SM.exe
2013-05-08 08:59 . 2012-09-29 11:25 409088 ----a-w- c:\windows\system32\HPM1210LM.DLL
2013-05-08 08:59 . 2012-09-29 11:05 350720 ----a-w- c:\windows\system32\mvhlewsi.DLL
2013-05-08 08:56 . 2013-05-08 08:56 -------- d-----w- c:\program files\HP
2013-05-07 16:12 . 2013-05-07 16:12 -------- d-----w- c:\windows\cs
2013-05-07 16:12 . 2013-05-07 16:12 -------- d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition
2013-05-07 16:11 . 2013-05-07 16:12 -------- d-----w- c:\program files (x86)\Windows Live
2013-05-07 16:10 . 2013-05-08 08:44 -------- d-----w- c:\users\Zkuřka\AppData\Local\Windows Live
2013-05-07 16:09 . 2013-05-07 16:09 -------- d-----w- c:\program files (x86)\Common Files\Windows Live
2013-05-06 13:03 . 2013-05-09 15:11 -------- d-----w- c:\program files (x86)\Microsoft
2013-05-06 12:38 . 2013-05-06 12:38 281688 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-05-06 12:37 . 2013-05-06 12:37 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2013-05-05 17:42 . 2013-05-05 17:42 -------- d-----w- c:\users\Zkuřka\AppData\Roaming\PowerISO
2013-05-03 22:44 . 2013-05-03 22:44 -------- d-----w- c:\programdata\StarApp
2013-05-03 22:24 . 2013-05-03 22:28 -------- d-----w- c:\users\Zkuřka\AppData\Roaming\Systweak
2013-05-03 22:24 . 2013-01-01 16:32 20488 ----a-w- c:\windows\system32\roboot64.exe
2013-04-29 18:59 . 2013-04-29 18:59 -------- d-----w- c:\users\Zkuřka\AppData\Local\Adobe
2013-04-29 09:45 . 2013-04-29 09:45 -------- d-----w- c:\users\Zkuřka\AppData\Local\Chromium
2013-04-29 09:21 . 2013-05-09 08:59 270824 ----a-w- c:\windows\system32\drivers\aswNdis2.sys
2013-04-29 09:21 . 2013-05-09 08:59 131232 ----a-w- c:\windows\system32\drivers\aswFW.sys
2013-04-29 09:21 . 2013-05-09 08:59 22600 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2013-04-29 09:21 . 2013-03-06 22:11 12368 ----a-w- c:\windows\system32\drivers\aswNdis.sys
2013-04-26 16:29 . 2013-04-26 16:29 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-04-26 16:29 . 2013-04-04 03:35 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-04-26 16:21 . 2013-05-09 08:59 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-04-26 16:21 . 2013-05-09 08:59 189936 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-04-25 09:03 . 2013-04-25 09:03 -------- d-----w- c:\users\Zkuřka\AppData\Roaming\HD Tune Pro
2013-04-24 07:41 . 2013-05-09 08:59 378432 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-04-24 07:41 . 2013-05-09 08:59 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-04-24 07:41 . 2013-05-09 08:59 72016 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-04-24 07:41 . 2013-05-09 08:59 64288 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-04-24 07:41 . 2013-05-09 08:59 1025808 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-04-24 07:41 . 2013-05-09 08:59 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-04-24 07:41 . 2013-05-09 08:58 41664 ----a-w- c:\windows\avastSS.scr
2013-04-24 07:41 . 2012-08-21 09:12 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
2013-04-24 07:32 . 2013-04-12 14:45 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-24 07:29 . 2013-04-24 07:29 -------- d-s---w- c:\windows\SysWow64\Microsoft
2013-04-22 12:23 . 2013-05-09 08:58 287840 ----a-w- c:\windows\system32\aswBoot.exe
2013-04-22 12:22 . 2013-04-24 07:40 -------- d-----w- c:\program files\AVAST Software
2013-04-22 12:22 . 2013-04-24 07:40 -------- d-----w- c:\programdata\AVAST Software
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-06 12:38 . 2013-03-02 14:24 281688 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-05-02 00:06 . 2012-11-16 20:36 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-04-26 16:25 . 2012-11-17 11:26 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-04-26 16:25 . 2012-11-17 11:26 691592 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-04-17 18:20 . 2012-11-17 14:53 26432 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
2013-04-10 13:52 . 2012-11-16 20:43 72702784 ----a-w- c:\windows\system32\MRT.exe
2013-04-04 12:50 . 2012-11-17 11:46 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-03-27 05:38 . 2013-03-27 05:38 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-03-19 06:04 . 2013-04-10 13:49 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-10 13:49 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-10 13:49 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-10 13:49 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-10 13:49 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-10 13:49 112640 ----a-w- c:\windows\system32\smss.exe
2013-03-16 07:26 . 2013-03-16 07:26 226304 ----a-w- c:\windows\system32\elshyph.dll
2013-03-16 07:26 . 2013-03-16 07:26 185344 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-03-16 07:26 . 2013-03-16 07:26 158720 ----a-w- c:\windows\SysWow64\msls31.dll
2013-03-16 07:26 . 2013-03-16 07:26 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-03-16 07:26 . 2013-03-16 07:26 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-03-16 07:26 . 2013-03-16 07:26 523264 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-03-16 07:26 . 2013-03-16 07:26 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-03-16 07:26 . 2013-03-16 07:26 138752 ----a-w- c:\windows\SysWow64\wextract.exe
2013-03-16 07:26 . 2013-03-16 07:26 38400 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-03-16 07:26 . 2013-03-16 07:26 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-03-16 07:26 . 2013-03-16 07:26 12800 ----a-w- c:\windows\SysWow64\mshta.exe
2013-03-16 07:26 . 2013-03-16 07:26 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-03-16 07:26 . 2013-03-16 07:26 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-03-16 07:26 . 2013-03-16 07:26 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-03-16 07:26 . 2013-03-16 07:26 61952 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-03-16 07:26 . 2013-03-16 07:26 361984 ----a-w- c:\windows\SysWow64\html.iec
2013-03-16 07:26 . 2013-03-16 07:26 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-03-16 07:26 . 2013-03-16 07:26 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-03-16 07:26 . 2013-03-16 07:26 197120 ----a-w- c:\windows\system32\msrating.dll
2013-03-16 07:26 . 2013-03-16 07:26 97280 ----a-w- c:\windows\system32\mshtmled.dll
2013-03-16 07:26 . 2013-03-16 07:26 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-03-16 07:26 . 2013-03-16 07:26 81408 ----a-w- c:\windows\system32\icardie.dll
2013-03-16 07:26 . 2013-03-16 07:26 762368 ----a-w- c:\windows\system32\ieapfltr.dll
2013-03-16 07:26 . 2013-03-16 07:26 452096 ----a-w- c:\windows\system32\dxtmsft.dll
2013-03-16 07:26 . 2013-03-16 07:26 441856 ----a-w- c:\windows\system32\html.iec
2013-03-16 07:26 . 2013-03-16 07:26 281600 ----a-w- c:\windows\system32\dxtrans.dll
2013-03-16 07:26 . 2013-03-16 07:26 27648 ----a-w- c:\windows\system32\licmgr10.dll
2013-03-16 07:26 . 2013-03-16 07:26 270848 ----a-w- c:\windows\system32\iedkcs32.dll
2013-03-16 07:26 . 2013-03-16 07:26 247296 ----a-w- c:\windows\system32\webcheck.dll
2013-03-16 07:26 . 2013-03-16 07:26 235008 ----a-w- c:\windows\system32\url.dll
2013-03-16 07:26 . 2013-03-16 07:26 216064 ----a-w- c:\windows\system32\msls31.dll
2013-03-16 07:26 . 2013-03-16 07:26 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2013-03-16 07:26 . 2013-03-16 07:26 1400416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-03-16 07:26 . 2013-03-16 07:26 102912 ----a-w- c:\windows\system32\inseng.dll
2013-03-16 07:26 . 2013-03-16 07:26 599552 ----a-w- c:\windows\system32\vbscript.dll
2013-03-16 07:26 . 2013-03-16 07:26 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-03-16 07:26 . 2013-03-16 07:26 144896 ----a-w- c:\windows\system32\wextract.exe
2013-03-16 07:26 . 2013-03-16 07:26 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-03-16 07:26 . 2013-03-16 07:26 62976 ----a-w- c:\windows\system32\pngfilt.dll
2013-03-16 07:26 . 2013-03-16 07:26 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-03-16 07:26 . 2013-03-16 07:26 51200 ----a-w- c:\windows\system32\imgutil.dll
2013-03-16 07:26 . 2013-03-16 07:26 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-03-16 07:26 . 2013-03-16 07:26 173568 ----a-w- c:\windows\system32\ieUnatt.exe
2013-03-16 07:26 . 2013-03-16 07:26 149504 ----a-w- c:\windows\system32\occache.dll
2013-03-16 07:26 . 2013-03-16 07:26 13824 ----a-w- c:\windows\system32\mshta.exe
2013-03-16 07:26 . 2013-03-16 07:26 136192 ----a-w- c:\windows\system32\iepeers.dll
2013-03-16 07:26 . 2013-03-16 07:26 135680 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-03-16 07:26 . 2013-03-16 07:26 12800 ----a-w- c:\windows\system32\msfeedssync.exe
2013-03-16 07:26 . 2013-03-16 07:26 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-03-15 05:53 . 2013-03-27 13:23 7573816 ----a-w- c:\windows\system32\nvopencl.dll
2013-03-15 05:53 . 2013-03-27 13:23 6271872 ----a-w- c:\windows\SysWow64\nvopencl.dll
2013-03-15 05:53 . 2013-03-27 13:23 26956576 ----a-w- c:\windows\system32\nvoglv64.dll
2013-03-15 05:53 . 2013-03-27 13:23 20542752 ----a-w- c:\windows\SysWow64\nvoglv32.dll
2013-03-15 05:53 . 2013-03-27 13:23 13088000 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2013-03-15 05:53 . 2013-03-27 13:23 11048736 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2013-03-15 05:53 . 2013-03-27 13:23 9414456 ----a-w- c:\windows\system32\nvcuda.dll
2013-03-15 05:53 . 2013-03-27 13:23 7959000 ----a-w- c:\windows\SysWow64\nvcuda.dll
2013-03-15 05:53 . 2013-03-27 13:23 2913056 ----a-w- c:\windows\system32\nvcuvid.dll
2013-03-15 05:53 . 2013-03-27 13:23 2728736 ----a-w- c:\windows\SysWow64\nvcuvid.dll
2013-03-15 05:53 . 2013-03-27 13:23 25256736 ----a-w- c:\windows\system32\nvcompiler.dll
2013-03-15 05:53 . 2013-03-27 13:23 2355488 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-03-15 05:53 . 2013-03-27 13:23 1995552 ----a-w- c:\windows\SysWow64\nvcuvenc.dll
2013-03-15 05:53 . 2013-03-27 13:23 1807136 ----a-w- c:\windows\system32\nvdispco6431422.dll
2013-03-15 05:53 . 2013-03-27 13:23 17990800 ----a-w- c:\windows\system32\nvd3dumx.dll
2013-03-15 05:53 . 2013-03-27 13:23 17560352 ----a-w- c:\windows\SysWow64\nvcompiler.dll
2013-03-15 05:53 . 2013-03-27 13:23 1510176 ----a-w- c:\windows\system32\nvdispgenco6431422.dll
2013-03-15 05:53 . 2013-02-26 20:24 2539128 ----a-w- c:\windows\SysWow64\nvapi.dll
2013-03-15 05:53 . 2013-02-03 11:00 15042928 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2013-03-15 05:53 . 2010-10-08 01:19 2864144 ----a-w- c:\windows\system32\nvapi64.dll
2013-03-15 05:53 . 2010-10-08 01:19 15508512 ----a-w- c:\windows\system32\nvwgf2umx.dll
2013-03-15 04:16 . 2010-10-08 09:04 3477280 ----a-w- c:\windows\system32\nvsvc64.dll
2013-03-15 04:16 . 2010-10-08 09:04 6398240 ----a-w- c:\windows\system32\nvcpl.dll
2013-03-15 04:16 . 2010-10-08 09:04 237856 ----a-w- c:\windows\system32\nvmctray.dll
2013-03-15 04:16 . 2010-10-08 09:04 877856 ----a-w- c:\windows\system32\nvvsvc.exe
2013-03-15 04:16 . 2010-10-08 09:04 63776 ----a-w- c:\windows\system32\nvshext.dll
2013-03-15 04:16 . 2010-10-08 09:04 2555680 ----a-w- c:\windows\system32\nvsvcr.dll
2013-03-14 21:07 . 2013-03-14 21:07 559904 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2013-03-08 18:21 . 2012-11-17 11:31 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-03-08 18:21 . 2012-11-17 11:31 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-03-01 03:36 . 2013-04-10 13:49 3153408 ----a-w- c:\windows\system32\win32k.sys
2013-02-26 06:55 . 2013-02-26 06:55 71680 ----a-w- c:\windows\system32\frapsv64.dll
2013-02-21 10:30 . 2013-04-10 13:50 1766912 ----a-w- c:\windows\SysWow64\wininet.dll
2013-02-21 10:29 . 2013-04-10 13:50 2877440 ----a-w- c:\windows\SysWow64\jscript9.dll
2013-02-21 10:29 . 2013-04-10 13:50 61440 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-02-21 10:29 . 2013-04-10 13:50 109056 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-02-21 10:15 . 2013-04-10 13:50 51712 ----a-w- c:\windows\system32\ie4uinit.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Easy Driver Pro"="e:\easy driver pro\DPLauncher.exe" [2012-09-23 147312]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe" [2008-01-22 152872]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-02-28 18672232]
"DAEMON Tools Lite"="e:\daemon tools lite\DTLite.exe" [2013-03-14 3672640]
"Facebook Update"="c:\users\Zkuřka\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2013-04-05 138096]
"Advanced SystemCare 6"="e:\advanced systemcare 6\ASCTray.exe" [2013-04-18 491840]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
.
c:\users\Zkuřka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Verbatim GREEN BUTTON.lnk - e:\verbatim green button\GREEN BUTTON.exe [2012-11-17 463120]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer4"=wdmaud.drv
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 MBAMService;MBAMService;e:\malwarebytes' anti-malware\mbamservice.exe [2013-04-04 701512]
R3 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe [2013-05-09 137960]
R3 mbamchameleon;mbamchameleon;c:\windows\system32\drivers\mbamchameleon.sys [2013-01-03 36680]
R3 mvusbews;USB EWS Device;c:\windows\system32\Drivers\mvusbews.sys [2012-12-24 20480]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384]
R3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 127488]
R3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 18944]
R3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 161280]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-11-16 1255736]
S0 aswKbd;aswKbd; [x]
S0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\DRIVERS\aswNdis.sys [2013-03-06 12368]
S0 aswNdis2;avast! Firewall Core Firewall Service; [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S1 aswFW;avast! TDI Firewall driver; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-03-27 283200]
S2 AdvancedSystemCareService6;Advanced SystemCare Service 6;e:\advanced systemcare 6\ASCService.exe [2013-04-18 574272]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-05-09 80816]
S2 HPSIService;HP SI Service;c:\windows\system32\HPSIsvc.exe [2010-04-29 127800]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-03-14 383264]
S3 anvsnddrv;AnvSoft Virtual Sound Device;c:\windows\system32\drivers\anvsnddrv.sys [2011-11-28 33872]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 25928]
S3 PAC207;SoC PC-Camera;c:\windows\system32\DRIVERS\PFC027.SYS [2006-12-05 572416]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-01-13 413800]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-04-10 15:57 1642448 ----a-w- c:\program files (x86)\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-05-12 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-17 16:25]
.
2013-05-12 c:\windows\Tasks\GoogleUpdateTaskMachineCore1cdf8c52842be6a.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-11-16 20:27]
.
2013-05-12 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-11-16 20:27]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Monitor"="c:\windows\PixArt\PAC207\Monitor.exe" [2006-11-03 319488]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - e:\micros~1\Office12\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - e:\micros~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 77.48.254.254 77.48.100.254
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-{CC35AB14-AA93-D991-F950-4D09513E3994} - c:\progra~3\INSTAL~1\{94774~1\Setup.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe
.
**************************************************************************
.
Celkový čas: 2013-05-12 11:18:52 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-05-12 09:18
ComboFix2.txt 2013-05-11 17:53
.
Před spuštěním: Volných bajtů: 44 511 940 608
Po spuštění: Volných bajtů: 44 041 736 192
.
- - End Of File - - 4ECF2CCA71B07A1CAA661CEE3926B78D

[Scanner]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:24:36, on 12.5.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal

Running processes:
C:\Windows\PixArt\Pac207\Monitor.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Users\Zkuřka\AppData\Local\Facebook\Update\FacebookUpdate.exe
E:\Advanced SystemCare 6\ASCTray.exe
E:\Verbatim GREEN BUTTON\GREEN BUTTON.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Users\Zkuřka\Desktop\hijackthis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - (no file)
O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - (no file)
O2 - BHO: (no name) - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - (no file)
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file)
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Easy Driver Pro] E:\Easy Driver Pro\DPLauncher.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "E:\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Zkuřka\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Advanced SystemCare 6] "E:\Advanced SystemCare 6\ASCTray.exe" /AutoStart
O4 - Startup: Verbatim GREEN BUTTON.lnk = E:\Verbatim GREEN BUTTON\GREEN BUTTON.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://E:\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://E:\MICROS~1\Office14\ONBttnIE.dll/105
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - E:\Advanced SystemCare 6\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\Windows\system32\HPSIsvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - E:\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - E:\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\SysWOW64\IoctlSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 7779 bytes

[Scanner]

S největší pravděpodobností ten log není kompletní. Pokaždé se my sekl u nějakého kontrolovaného souboru a nejel dál. Zkoušel jsem to i přes nouzák a tam taky tak. Vím že když jsem to dělal minule bylo to do minuty a toto trvá příliš dlouho. Nemůže to být tím že mám aktivovanou měsíční zkušební avast! PREMIER? Nic méně vkládám aspoň ten log.

aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-05-12 11:45:40
-----------------------------
11:45:40.504 OS Version: Windows x64 6.1.7601 Service Pack 1
11:45:40.504 Number of processors: 4 586 0x2A07
11:45:40.519 ComputerName: WEED UserName:
11:45:40.800 Initialize success
11:45:41.783 AVAST engine defs: 13051200
11:45:43.982 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
11:45:43.982 Disk 0 Vendor: Hitachi_HDS721010CLA632 JP4OA41A Size: 953869MB BusType: 3
11:45:43.982 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP0T1L0-1
11:45:43.982 Disk 1 Vendor: SAMSUNG_HD753LJ 1AA01113 Size: 715404MB BusType: 3
11:45:44.092 Disk 0 MBR read successfully
11:45:44.092 Disk 0 MBR scan
11:45:44.372 Disk 0 Windows 7 default MBR code
11:45:44.388 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
11:45:44.513 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 99900 MB offset 206848
11:45:44.560 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 853867 MB offset 204802048
11:45:44.856 Disk 0 scanning C:\Windows\system32\drivers
11:45:54.497 Service scanning
11:46:05.339 Modules scanning
11:46:05.339 Disk 0 trace - called modules:
11:46:05.354 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
11:46:05.354 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80049f4060]
11:46:05.354 3 CLASSPNP.SYS[fffff880013c643f] -> nt!IofCallDriver -> [0xfffffa8004528520]
11:46:05.354 5 ACPI.sys[fffff88000edd7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8004525060]
11:46:05.557 AVAST engine scan C:\Windows
11:46:07.195 AVAST engine scan C:\Windows\system32
11:47:23.932 AVAST engine scan C:\Windows\system32\drivers
11:47:29.251 AVAST engine scan C:\Users\Zkuřka
11:49:23.178 AVAST engine scan C:\ProgramData
12:06:11.829 Disk 0 MBR has been saved successfully to "C:\Users\Zkuřka\Downloads\MBR.dat"
12:06:11.829 The log file has been saved successfully to "C:\Users\Zkuřka\Downloads\aswMBR.txt"